Plugins by Shinya Kasatani

• Safe ERB

  Safe ERB checks if the string written by “<%= %>” in your rhtml template is escaped correctly and raises an error if it is not escaped, which will significantly reduce the possibility of putting cross-site scripting vulnerability into your web application.