Protecting your data within your database has never been easier. With attr_encrypted, you can easily add a level of security to your application without much refactoring.

Using authentication and authorization, lock down your ActionCable WebSockets so that messages are only sent and received to the intended users.

We may come across a need to run shell commands and Ruby has some built in methods which appear safe, but can introduce major security risks.

In this interview, Frank Rietta, a security expert in web applications, talks about various recommendations for securing a Ruby on Rails application. Many areas are explored from code, staff, servers and infrastructure.

Reduce the number of bots and spam your Ruby on Rails application gets with Google reCAPTCHA v2.