Why are we still clobbering empty array parameters?
You may have noticed that ever since the CVE-2013-0155 security vulnerability, Rails has been clobbering empty (or all-
nil) arrays in parameters down to
Well, kinda. They stopped in 3.0 stable, but continue in Rails 3.1+. It’s time to stop the madness and just compact the
nil values across the board.