[Rails] Re: Is it a security risk using eval in the model?

Thanks for the reply.

> Below I am assuming your arg is a field name which is
> something passed by your own code.

Exactly. arg is simply the name of a field whose value I want to check.
This field is hard-coded into my program.

I don't want to execute any user generated input, rather just check to
see if the user has entered anything.

I am assuming that in this case I am on the safe side using eval.
Is that correct?
--
Posted via http://www.ruby-forum.com/.

--
You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group.
To post to this group, send email to rubyonrails-talk@googlegroups.com.
To unsubscribe from this group, send email to rubyonrails-talk+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en.