www.kalzumeus.com

FEBRUARY 6, 2013

Rubygems used YAML to hold metadata about each gem submitted to it. An attacker was able to create a malicious gem, cause the Rubygems web application to evaluate the metadata contained in it, and thereby compromise the Rubygems server infrastructure. If they see sources that look like attacks they will block all traffic.

Security 101

Security Software Review Ruby Startup 101

Startup Lessons Learned

JANUARY 4, 2009

Ive done this before using a structured comment added to each SQL statement, like this: /*entity customer://1234 */ SELECT name FROM customer WHERE id = 1234 At the expense of some additional parsing overhead in your data-access layer, you get additional metadata associated with every query in your application.

San Francisco 151

San Francisco Architecture Startup Database 151

www.vccafe.com

MARCH 11, 2013

VC Cafe highlights everything you need to know from hosting your code in hackathons to open source legal docs. High Quality, and open sourced! Rovi : Need Metadata for music/movie/actors, etc.? Mantis (Open source). Nagios (open source). Panda (Open source). Seed Startups.

Software Review 53

Software Review Technical Review Startup 53