joseph-ravenwolfe
/ action_view_header_caching_handler.rb
Created
December 4, 2013 21:28
Rails DDOS Vulnerability Patch
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # config/initializers/action_view_header_caching_handler.rb | |
| ActiveSupport.on_load(:action_view) do | |
| ActionView::LookupContext::DetailsKey.class_eval do | |
| class << self | |
| alias :old_get :get | |
| def get(details) | |
| if details[:formats] | |
| details = details.dup |
joseph-ravenwolfe
/ html_safe_i18n_exception_handler.rb
Created
December 4, 2013 21:15
Reflective i18n XSS Vulnerability Patch
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # config/initializers/html_safe_i18n_exception_handler.rb | |
| require 'i18n' | |
| # Override exception handler to more carefully html-escape missing-key results. | |
| class HtmlSafeI18nExceptionHandler | |
| Missing = I18n.const_defined?(:MissingTranslation) ? I18n::MissingTranslation : I18n::MissingTranslationData | |
| def initialize(original_exception_handler) | |
| @original_exception_handler = original_exception_handler |
joseph-ravenwolfe
/ client.rb
Last active
December 17, 2015 14:19
— forked from redrory/client.rb
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # What we are going to do is retrieve all of the users. | |
| # | |
| # Then loop through all of the users. For each user that | |
| # we loop through, we will get all of their clients. | |
| # | |
| # Then we will loop through each of that user's clients | |
| # and send that client an email. | |
| # | |
| # We will send the client object into daily_email and | |
| # let daily_mail get whatever information it needs |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Remove .sh from the filename | |
| ZSH_THEME_GIT_PROMPT_PREFIX="%{$reset_color%}%{$fg[red]%}" | |
| ZSH_THEME_GIT_PROMPT_SUFFIX="%{$reset_color%}" | |
| ZSH_THEME_GIT_PROMPT_DIRTY="%{$fg[white]%}*%{$reset_color%}" | |
| ZSH_THEME_GIT_PROMPT_CLEAN="" | |
| # Customized git status, oh-my-zsh currently does not | |
| # allow render dirty status before branch | |
| git_custom_status() { |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| fontName = "Monaco" | |
| fontSize = 19 | |
| tabSize = 2 | |
| softTabs = true | |
| softWrap = false | |
| exclude = "{$exclude,*.tmproj,*.log}" | |
| excludeInFolderSearch = "{$excludeInFolderSearch,db/migrate,log,doc}" |
NewerOlder