sudo_attributes: Override ActiveRecord protected attributes with ease
With the recent buzz over Github’s mass-assignment security vulnerability, I thought some people might find my sudo_attributes gem useful. It provides a simple API for overriding protected ActiveRecord attributes while not interfering with existing behavior. It is useful in the parts of your application that are not exposed to mass-assignment from external, unfiltered sources.
Post a comment