Git Product home page Git Product logo

Comments (6)

presidentbeef avatar presidentbeef commented on July 24, 2024

Hi, thanks for filing this issue.

There is already a check for this, so I am (somewhat) surprised it is not working.

I created a file as you described above. Brakeman detected it successfully and silenced the mass assignment warnings, so I am afraid I am unable to reproduce this behavior. Is this the exact code you have in that file?

from brakeman.

IdahoEv avatar IdahoEv commented on July 24, 2024

Yeah, that's an exact copy of the file. Let me investigate - the test I'm reporting on was actually run by someone else on my code; I didn't run it myself. She says she was using brakeman 0.5.1.

I'll give it a shot myself and get back to you.

Evan

On Jun 27, 2011, at 12:43 PM, presidentbeef wrote:

Hi, thanks for filing this issue.

There is already a check for this, so I am (somewhat) surprised it is not working.

I created a file as you described above. Brakeman detected it successfully and silenced the mass assignment warnings, so I am afraid I am unable to reproduce this behavior. Is this the exact code you have in that file?

Reply to this email directly or view it on GitHub:
#4 (comment)

from brakeman.

presidentbeef avatar presidentbeef commented on July 24, 2024

Can't reproduce...feel free to reopen if this happens again.

from brakeman.

jobinthepast avatar jobinthepast commented on July 24, 2024

Me too having this problem. I'm using:

brakeman 1.6.2
Rails 3.2.6
RVM 1.14.2
Ruby 1.9.3-p194

already have config.active_record.whitelist_attributes = true in application.rb.

No mass-assignment errors but I know there are many as I just added some attr_accessible to some models.

( I tried with both brakeman and brakmen -o brakeman.html )

Any thoughts?

from brakeman.

presidentbeef avatar presidentbeef commented on July 24, 2024

Hi,

I am afraid I do not understand the issue. Are you seeing mass assignment warnings?

If you have config.active_record.whitelist_attributes = true then you should not get any mass assignment warnings.

from brakeman.

jobinthepast avatar jobinthepast commented on July 24, 2024

Oopps, my bad! I want to see mass-assignment warnings. Changing config.active_record.whitelist_attributes to true does the job. Thanks and sorry for bothering you.

from brakeman.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.