The Ten Most Critical API Security Risks| owasp.org
Website with the collection of all the cheat sheets of the project.| cheatsheetseries.owasp.org
Enforcing canonical URLs by redirecting to params is not safe and may raise an exception. Use strong params with allow_other_host: false for security.| mattbrictson.com