RulesDescriptionExampleKPI
Default Routes Route to that controller containing :action.Securitylow
Format ValidationCalls to validates_format_of ..., :with => // which do not use \A and \z as anchors will cause this warningSecuritylow
Mail LinkVulnerable to a cross-site scripting vulnerability mail_to.Securitylow
Unscoped FindModels which belong to another model should typically be accessed via a scoped query.Securitylow