Whitelist and typecheck your parameters at the controller level
David Heinemeier Hansson, Aaron Weiner
on Oct 18, 2013
N/A