The Security Work That's Actually on You
Rails handles framework-level security defaults — but authorization, rate limiting, CSP, session hardening, and encrypted attributes are decisions only you can make.
Writing on software design, Ruby on Rails development, and AI convergence.
Where I share what I'm exploring in software development, Ruby on Rails, AI, and everything in between.
Rails Has Your Back: Security You Don't Have to Think About
Rails security defaults cover CSRF, SQL injection, XSS, encrypted sessions, and more — here's what the framework handles before you write business logic.
From Prompt to MVP at Claude Colima
The tools and workflow I use to ship Rails MVPs with Claude — from market research to spec-driven development — shared at the Claude Colima meetup.
Why I Bet on Rails — and Why I'm Building Maquina
Fifteen years with Rails and it keeps proving itself. Maquina extends it with generators, AI tools, and UI components — convention over configuration, all the way down.
Recuerd0 Source Code Now Available
Recuerd0's source code is now on GitHub under the OSASSY license. Built with Rails 8.1, SQLite for everything, no Node.js, and deployable via Docker or Kamal 2.x.
Previous
Next