Sobelow - 0.2.1

Security-focused static analysis for the Phoenix Framework: Github.

Sobelow automatically detects some types of the following security issues:

  • Insecure configuration
  • Cross-Site Scripting
  • SQL injection
  • Directory traversal
  • Unsafe serialization

alembic 3.3.0




  • #44 - @KronicDeth

    • Alembic.Document.from_ecto_changeset/2 converts the errors in ecto_changeset to Alembic.Error.t in a single Alembic.Document.t. Bypasses a bug in JaSerializer where it assumes all fields that don’t end in _id are attribute names, which leads to association names (as opposed to their foreign key) being put under /data/attributes. Alembic.Document.from_ecto_changeset reflects on the Ecto.Changeset.t data struct module to get the __schema__/1 information from the Ecto.Schema.t. It also assumes that if the field maps to no known attribute, association or foreign key, then the error should not have an Alembic.Source.t instead of defaulting to /data/attributes.
    • Update circle.yml

      • Erlang 19.3
      • Elixir 1.4.1

Bug Fixes

  • #43 - @KronicDeth

    • Allow Alembic.Error.t source to be nil
    • Lower minimum coverage because coverage number varies from run to run.

alembic 3.2.1


Bug Fixes

  • Allow Alembic.Error.t source to be nil

ElixirWeekly: The Elixir Community Newsletter, covering community news you easily miss, shared on ElixirStatus and the web, in one email every Thursday.

Testing HTTP requests in Elixir with ExVCR

A basic tutorial to setup ExVCR and how to filter sensitive data in the tests

Zuck, a Facebook API client

Just released Zuck, a Facebook API client for Elixir. Messenger and other cool features coming soon!

Matryoshka, an image transformation reverse proxy

Matryoshka, an image transformation reverse proxy written in elixir. Still in development, feel free to send PR’s :)

A build utility that allows you to to use mix packages in an elixir script

A build utility that allows you to to use mix packages in an elixir script.

Announcing a New Conference! Elixir with Love Conf

Elixir With Love is a proactive conference about introducing developers to this exciting new language and building a diverse Elixir community.

Why changes in Phoenix 1.3 are so important?

That’s a blog post about changes in structure and logic:

Shameless plug: Check out @elixirstatus' other community project:

Credo, a new static code analysis tool that acts as a code linter, but also focusses on teaching coding practices and code consistency.

Cookie package released on hex

Client side or server side cookie should help when working with cookies.

Nested Modules and Auto-Aliasing in Elixir

Do you use nested modules often in Elixir? If so, you should understand how Elixir compiles nested modules behind the scenes - it may work differently than you think!

GraphQL Authentication with Elixir and Absinthe

This guide walks you through the process of setting up an authentication system in your Absinthe-powered GraphQL backend.

A free introduction to Elixir, OTP, Ecto, and Phoenix

We produced five weeks of free content introducing people to Elixir and the basics of OTP, Ecto, and Phoenix. Today we’re announcing that content to the world.

Pour, eh, deploy Elixir applications with carafe!

Today I’m releasing into the wild. Please try it out and let me know how it works for you.

[24h free video] Using Ecto Associations in Phoenix

Being smarter about modifying and inserting associated data.

Signed request query string with Elixir

Simple Elixir module for signing request query strings with HMAC

Behind the magic of Phoenix LiveReload

Phoenix’s live reload functionality instantly refreshes your browser when you update a file in your code editor. From the plug that inserts an iframe to subscribing to filesystem changes, I outline how this flow works.

[24h free video] - Handling database transactions in style, with Ecto.Multi.

Handling database transactions in style, with Ecto.Multi.

From Zero to Hero in Elixir #3 - Reading a File, Atoms and Tuples

Let’s learn how to read a file in Elixir and while at it, have a look at Atoms and Tuples.

Ruby vs. Elixir - Projects & People edition

A blog post highlighting the differences and similarities between the people and projects in the Ruby and Elixir communities.