1 minutes estimated reading time.
Engine Yard's 17 Rails Security Tips
Christoper Rigor has posted a good set of Ruby on Rails Security 17-Item Checklist on Engine Yard’s blog. Check it out.
He did a good job hitting the important ones without being overly verbose.
If you’re looking for a standard to follow, check out the OWASP ASVS.