RubyFlow The Ruby and Rails community linklog

×

The Ruby and Rails community linklog

Made a library? Written a blog post? Found a useful tutorial? Share it with the Ruby community here or just enjoy what everyone else has found!

Parsing Unsanitized JSON from Ruby

Versions of the JSON gem > 1.7.5 incorporate a fix addressing CVE-2013-0269 that entails disabling support for parsing unvalidated JSON data from an arbitrary source.

If this is an issue for you (or you suspect it might be!) you may want to checkout my latest blog post containing a few workarounds as well as this pull request submitted to the JSON gem.

Post a comment

You can use basic HTML markup (e.g. <a>) or Markdown.

As you are not logged in, you will be
directed via GitHub to signup or sign in