Tom Tuddenham
Tom Tuddenham
Rails 7 alpha 2 is out now. Edgy, but let's upgrade anyway. By the time Rails 7 hits release-candidate (or release) we'll be looking at building out our own formal...
Add a file to guide security reporting, etc. See https://krebsonsecurity.com/2021/09/does-your-organization-have-a-security-txt-file/
Per #22 This is still WIP. Might roll back the data structures.
### Background Already baked into the app is the notion of a [property set](https://github.com/ferrisoxide/brocade.io/blob/master/app/models/property_set.rb), basic collections of facts about a product. Each property set defines the name, type and potentially...
Will need to provide text for defining the legal side of things, including: * Do not guarantee the completeness of any of the data. * Giving credit wherever it is...
It looks like the concept of federated product data pools is already covered in the GS1 standards, under the general banner of GSDN (Global Data Synchronization Network). It'd be worth...
In preparation for write-access to the API, add support for bearer tokens - to be passed in the header when authenticating. Read-only access will not require a token - at...
Time to add `bundle-audit` to the mix. Fix any reported static security issues.
Need to have a CI solution in place. Investigate use of Github Actions as a first call. CI solution will need to: * Run all tests * Run `bundle audit`...
## Background The original Datakick API allowed any client - authenticated or not - to add or update items. This creates risk, as bad-faith third parties could easily pollute the...