Hacker News new | ask | show | jobs
by rambot 4868 days ago
Where does the post suggest Rails is the only framework with bugs like this? The article opens with: "The latest Rails security flaw is example of a common anti-pattern. ... a similar issue may also exist in Python’s YAML parser ... I am reminded of similar flaws in other frameworks and libraries." I don't think the goal here was to pick on Rails, but to highlight that its recent security woes might be a sign of a bigger common issue.
1 comments
tptacek 4868 days ago
I'm responding to the comment above, not the post.
link
ScottBurson 4868 days ago
I don't read the comment in question as picking on Rails either ("... frameworks like Rails", it says).

Please see my comment downthread.

link
tptacek 4868 days ago
"Frameworks like every framework" seems like an unintended but accurate generalization that was worth pointing out.
link