This section provides an overview of some of the security tools used in the project. See the testing section for the static code analyzer.

If you encounter any errors with this wiki, or the project in general, please submit a new issue!

HTTPS

All connections are made using HTTPS. Any HTTP requests are rerouted to be HTTPS.

User Passwords

User's passwords are both hashed and salted.

Bundler Audit

Navigate to the project's root folder.

cd share-the-food/

Run the audit command on the Rails dependency manager.

bundle audit

Update any package versions that are insecure.