Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
Require min of n characters for passwords #39
I can't find a standard, but brakeman, a widely used Rails source analysis tool will warn if the secret token is less than 30 characters long http://brakemanscanner.org/docs/warning_types/session_setting/. I say we set it to 32.