One of the best things about Rails is that it protects your app from a wide variety of injection attacks with minimal development effort. But we’re never 100% safe. After all, Rails can’t protect us from our own bad decisions. We need to understand the threats so we know when we can lean on Rails and when we can’t. In this article, Diogo Souza introduces us to the OWASP Top 10 list of vulnerabilities and dives into injection vulnerabilities to show us how rails protects us against them and how we can protect ourselves. https://www.honeybadger.io/blog/rails-security-injections/