Category

Security Tools

This category does not have a description yet. You can add one on github!

5.6
Repository is gone
A long-lived project that still receives updates
Brakeman detects security vulnerabilities in Ruby on Rails applications via static analysis.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
29.21
Repository is gone
A long-lived project that still receives updates
Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built on top of Nokogiri. Loofah excels at HTML sanitization (XSS prevention). It includes some nice HTML sanitizers, which are based on HTML5lib's safelist, so it most likely won't make your codes less secure. (These statements have not been evaluated by Netexperts.) ActiveRecord extensions for sanitization are available in the [`loofah-activerecord` gem](https://github.com/flavorjones/loofah-activerecord).
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
0.0
Repository is gone
Lint your Gemfile!
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
 Popularity
0.21
Repository is gone
A long-lived project that still receives updates
Adds methods to set and authenticate against one time passwords 2FA(Two factor Authentication). Inspired in AM::SecurePassword"
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
 Popularity
0.0
Repository is gone
No release in over 3 years
A rack middleware for whitelisting and blacklisting IPs
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
 Popularity
0.01
Repository is gone
No release in over 3 years
Codesake::Dawn is a security source code scanner for ruby powered code. Starting from January 07, 2015 this gem is renamed to dawnscanner and this version is no longer supported. Please, upgrade your Gemfile.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
 Popularity
0.02
Repository is gone
No release in over 3 years
This plugin replaces the default ERB template handlers with erubis, and switches the behaviour to escape by default rather than requiring you to escape. This is consistent with the behaviour in Rails 3.0.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
 Popularity
0.01
Repository is gone
No release in over 3 years
Tarantula is a big fuzzy spider. It crawls your Rails 2.3 and 3.x applications, fuzzing data to see what breaks.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
 Popularity
0.0
Repository is gone
No release in over 3 years
Shell execution made easy and secure
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
 Popularity
0.01
Repository is gone
No release in over 3 years
Adds 'sudo' methods to update protected ActiveRecord attributes with mass assignment
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
 Popularity
0.01
Repository is gone
No release in over 3 years
Provides two class methods on ActiveController::Base that filter the params hash for that controller's actions. You can think of them as the controller analog of attr_protected and attr_accessible.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
 Popularity
0.15
The project is in a healthy, maintained state
xss_terminate is a plugin in that makes stripping and sanitizing HTML stupid-simple. Install and forget. And forget about forgetting to h() your output, because you won‘t need to anymore.
 Popularity
 Activity
0.01
The project is in a healthy, maintained state
Checks Ruby on Rails models for use of the attr_accessible white list.
 Popularity
 Activity
Repository is gone
 Popularity
 Activity
Repository is gone
 Popularity
 Activity