May DCRUG: The State of Security in Ruby and Rails + Spree 2.0

  • May 9, 2013 · 7:00 PM
  • This location is shown only to members



Our meetings are open to all experience levels, from total novices to expert Rubyists.

Current agenda:

  • "The State of Security in Ruby and Rails" by Matt Glover

    As Ruby and Rails gain more visibility they also bring in more public scrutiny. Increasingly vulnerabilities are discovered in Ruby, major gems like Rails, and the supporting infrastructure. As motivated Rubyists how do we cope with these problems?

    This talk will cover recent vulnerabilities publicly disclosed in the Ruby world, tools and processes we can use to mitigate these issues and secure our own applications, and what we can do as a Ruby community to improve the state of security across the board.
  • "Introducing the new Spree 2.0" by Sean Schofield

    Spree is one of the most popular Ruby based open source projects in the world.  It is one of the most forked projects on Github and has over 350 different contributors.  While Spree is used for e-commerce its also an excellent example of a large community-driven Ruby project that utilizes a lot of the cutting edge features in Rails.  Sean is the creator of Spree and CEO of Spree Commerce Inc. located in Bethesda, MD.  Come hear sean talk about the Spree project as he highlights some of the cool new features in the Spree 2.0 release.

We now meet monthly at Logik's new headquaters, now located at 1400 I (Eye) Street NW, Suite 800 Washington, DC 20005. The closest Metro stop is McPherson Square. If you're downstairs and need someone to let you into the building or the elevator, please give me a call at [masked] or tweet me at @naffis.

We always need presenters, so if you have a topic or project on which you'd like to do a 30-minute presentation on anything Ruby-related, Rails-related or possibly of interest to Ruby developers, please contact our organizers [masked] and we'll schedule you to speak. If you have presented before, you are welcome to give a presentation on a new topic. This is a great chance for some of you guys and gals lingering in the back of the room to share some of the cool things you are working on. Don't be shy -- you're among fellow geeks. :)

As always, we'll have an ample supply of free pizza and soda for all attendees, so don't worry about eating dinner beforehand.

And we'll be heading to a nearby bar after the meeting, to unwind and socialize with fellow techies.


Join or login to comment.

  • Tony Primerano

    I didn't catch the names of all the companies that were hiring... we should probably make a list here. Mine was at GXS up Gaithersburg.

    Ping me with if you have questions or interest. I suspect there are a few rails developers that drive right by us on their daily drive into DC. ;-)

    1 · May 9, 2013

    • Jessie

      Lookingglass Cyber Solutions is hiring Mid/Sr level developers. We have offices in Ballston in Arlington, VA and in Canton Square in Baltimore, MD. Ping me if you have any questions: [masked] - jobs are posted here:­

      May 10, 2013

    • Tony Primerano

      Not that I'm looking... but where is the Treasury work location? I wanted to try the fed thing a few years back but I swear USA Jobs is a black hole. Answer 100 questions, submit resume and never hear back. :-(

      May 11, 2013

  • A former member
    A former member

    Hey all--I'm sorry I had to head out midway, but I very much enjoyed your talk, Matt! I'm checking out Spree and--for those interested--my firm's looking for engineers to work on challenging financial services apps. We're Lab49 (­) and we're in Dupont Circle; get in touch! (See you all next month!)

    May 10, 2013

  • A former member
    A former member

    Great talks last night guys. Heads up to GXS (heard good things about you guys) and Lookingglass @Jessie - Canton's my old home. Great dev scene up there.

    May 10, 2013

    • Jessie

      Yeah - the Ruby/Rails community in Baltimore is really great. I was surprised at how much I really fell in love with Baltimore as a city in general. Really cool place. Hopefully some folks will check us out and maybe come interview :)

      May 10, 2013

  • Ryan Harvey

    Jim Gay -- you mentioned a code for Ruby Nation. Where do I find that?

    May 9, 2013

  • Tabrez Shaikh

    Loved the talks by Matt and Sean, and it was great meeting everyone! Thanks!

    @Tony - great idea. We (ReelGenie) were one of the companies looking for amazing developers to complement our offshore team. We are a pretty young company focused on storytelling and video processing at high scale. In the short period of our existence, we have launched a fully functional private beta product, and lined up great investors and amazing partners. We were also invited to SxSw Accelerator program and accepted into the Mindshare program earlier this year. As for our offices, we got accepted into the Maryland innovation center in Silver Spring. It's a great location, within blocks of the Silver Spring Metro. Anyone interested in being part of a team building a kickass consumer product or just curious to see our live private beta,can email me for the private link. For general information, you can check the public site ( and our social media pages.

    May 10, 2013

    • Tony Primerano

      I used to work in the SSIC with Root Orange. It is a great location and only a few blocks from DC. Root Orange also did SxSw Accelerator. :-)

      May 10, 2013

    • Tabrez Shaikh

      Yeah, we have heard great things about SSIC and we are excited about it! Good to hear one more upvote!

      May 10, 2013

  • Matt G

    The live slideshow for the state of security presentation is available here: http://slides.recurrentrefactor...­

    You can also download and rebuild/remix it yourself here:­

    1 · May 9, 2013

  • Scott Eisenberg

    Never seen so many people offering jobs! Must have been 10 people.

    2 · May 9, 2013

  • Charles Calvert

    Sorry, not feeling well this evening.

    May 9, 2013

  • Jessie

    I see that there's a rather long waiting list. Should I not bother to attend unless I am confirmed off the waitlist?

    1 · May 8, 2013

  • LisaSchaefer PhD CrowdPublish.TV

    I'm showing up anyway.

    May 8, 2013

Our Sponsors

  • Intridea

    Web and mobile product development.

  • Logikcull

    Instant eDiscovery & Document Review for Anyone. Anywhere.

People in this
Meetup are also in:

Meetup has 16 million members with thousands of interests

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy