July 24, 2014 — kyle.huynh205

RESOLVED : The provided regular expression is using multiline anchors (^ or $), which may present a security risk. Did you mean to use A and z, or forgot to add the :multiline => true option?

Source code :

class Product < ActiveRecord::Base

validates :title, :description, :image_url, :presence => true
validates :price, :numericality => {:greater_than_or_equal_to => 0.01}
validates :title, :uniqueness => true
validates :image_url, :format => {
:with => %r{.(gif|jpg|png)$}i,
:message => ‘must be a URL for GIF, JPG or PNG image.’
}
end

This %r{.(gif|jpg|png)$}i,cause the error. In order to fix it, remember While A and z are Permanent Start of String and End of String anchors. Change the code like this :

class Product < ActiveRecord::Base

validates :title, :description, :image_url, :presence => true
validates :price, :numericality => {:greater_than_or_equal_to => 0.01}
validates :title, :uniqueness => true
validates :image_url, :format => {
:with => %r{A.(gif|jpg|png)/z}i,
:message => ‘must be a URL for GIF, JPG or PNG image.’
}
end

Author
Details

Latest Posts By kyle.huynh205

10.29.24mds and mds_stores cause high cpu in Mac
10.19.24Segmentation Fault 11 when running jupyterhub
11.14.22How to fix Netflix – playing Black screen with sound
11.25.21Format bootable SD Card in Command line
02.25.21Show differences and duplicates between two columns in Google Sheet

Kyle Huynh's blog

Application Developer and Enthusiast Photographer

RESOLVED : The provided regular expression is using multiline anchors (^ or $), which may present a security risk. Did you mean to use A and z, or forgot to add the :multiline => true option?

Latest Posts By kyle.huynh205

Category