From f9b6c4ce15240abda673f0c723b1b35dee5887ff Mon Sep 17 00:00:00 2001 From: Bruno Facca Date: Sat, 22 Apr 2017 17:55:50 -0300 Subject: [PATCH] Fix broken link in TOC --- README.md | 60 ++++++++++++++++++++++++++----------------------------- 1 file changed, 28 insertions(+), 32 deletions(-) diff --git a/README.md b/README.md index 58e1963..6bf7bd4 100644 --- a/README.md +++ b/README.md @@ -21,38 +21,34 @@ earlier versions and fixed in Rails 4 are not included. ## Table of Contents -- [Zen Rails Security Checklist](#zen-rails-security-checklist) - - [Summary](#summary) - - [Supported Rails Versions](#supported-rails-versions) - - [The Checklist](#the-checklist) - - [Injection](#injection) - - [Authentication](#authentication) - - [Sessions & Cookies](#sessions--cookies) - - [Cross-Site Scripting (XSS)](#cross-site-scripting-xss) - - [Handling User Input](#handling-user-input) - - [Output Escaping & Sanitization](#output-escaping--sanitization) - - [HTTP & TLS](#http--tls) - - [Authorization (Pundit)](#authorization-pundit) - - [Files](#files) - - [File Uploads](#file-uploads) - - [File Downloads](#file-downloads) - - [Cross-Site Request Forgery (CSRF)](#cross-site-request-forgery-csrf) - - [Sensitive Data Exposure](#sensitive-data-exposure) - - [Routing, Template Selection, and Redirection](#routing-template-selection-and-redirection) - - [Third-party Software](#third-party-software) - - [Security Tools](#security-tools) - - [Others](#others) - - [Details and Code Samples](#details-and-code-samples) - - [Password validation regex](#password-validation-regex) - - [Pundit: ensure all actions are authorized](#pundit-ensure-all-actions-are-authorized) - - [Pundit: only display appropriate records in select boxes](#pundit-only-display-appropriate-records-in-select-boxes) - - [Convert filter_parameters into a whitelist](#convert-filter_parameters-into-a-whitelist) - - [Authors](#authors) - - [Contributing](#contributing) - - [References and Further Reading](#references-and-further-reading) - - [License](#license) - - Table of contents generated with [DocToc](https://github.com/thlorenz/doctoc) +- [The Checklist](#the-checklist) + - [Injection](#injection) + - [Authentication](#authentication) + - [Sessions & Cookies](#sessions--cookies) + - [Cross-Site Scripting (XSS)](#cross-site-scripting-xss) + - [Handling User Input](#handling-user-input) + - [Output Escaping & Sanitization](#output-escaping--sanitization) + - [HTTP & TLS](#http--tls) + - [Authorization (Pundit)](#authorization-pundit) + - [Files](#files) + - [File Uploads](#file-uploads) + - [File Downloads](#file-downloads) + - [Cross-Site Request Forgery (CSRF)](#cross-site-request-forgery-csrf) + - [Sensitive Data Exposure](#sensitive-data-exposure) + - [Routing, Template Selection, and Redirection](#routing-template-selection-and-redirection) + - [Third-party Software](#third-party-software) + - [Security Tools](#security-tools) + - [Others](#others) +- [Details and Code Samples](#details-and-code-samples) + - [Password validation regex](#password-validation-regex) + - [Pundit: ensure all actions are authorized](#pundit-ensure-all-actions-are-authorized) + - [Pundit: only display appropriate records in select boxes](#pundit-only-display-appropriate-records-in-select-boxes) + - [Convert filter_parameters into a whitelist](#convert-filter_parameters-into-a-whitelist) +- [Authors](#authors) +- [Contributing](#contributing) +- [TODO](#todo) +- [References and Further Reading](#references-and-further-reading) +- [License](#license)