This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit


Jump to: navigation, search
This page contains draft content that has never been finished. Please help OWASP update this content! See FixME.
Last revision (yyyy-mm-dd): 2016-07-31
Comment: The second half of this page should be reviewed and finalized.


The OWASP Ruby and Ruby on Rails Technology Knowledge Base is the clearing house for all information related to building secure web/distributed applications and services based on Ruby and RoR technologies. The focus of the project is on guidance for developers and application architects on using Ruby and Ruby related frameworks. Moreover, we aim to provide security related guidance for system administrators managing Ruby and Ruby on Rails based applications and tools.

Community content is key to security information. The project depends on content from developers throughout the Ruby and RoR ecosystem.


  • Provide deep, rich guidance for Ruby and Ruby on Rails developers in using the security features of Ruby and of Ruby related frameworks.
  • Address security in relation to Ruby and derived technologies.
  • Guide system administrators in managing Ruby and RoR related components and applications.
  • Create guidance for use of OWASP components that are designed for use with Ruby or Ruby on Rails.
  • Focus on information about working with and on OWASP tools built using Ruby/RoR or other Ruby technologies.
  • Provide a stream of security related information, like vulnerabilities and security patches, related to the Ruby universe.
  • Build an ecosystem allowing to all actors interested to discuss, share and learn.


OWASP Ruby Technology Knowledge Base is free to use. It is licensed under the Creative Commons Attribution-ShareAlike 3.0 license], so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.


Lead: None.


Last Update: 1/2016

Other Resources

None yet.

Related Projects

Tools Chain






To get involved join the mailing list: OWASP Mailing List repository


(nothing yet)

This category currently contains no pages or media.