the main purpose of this app is to help people organize gifts and avoid embarrassment and unnecessary expenses at many events

why do we have to sanitize the input fields? why do we have to configure more headers? why even if we have https configured do we still have to add many other security elements?

Take a step back and think about what security is in the first place - it is reducing the risk of people engaging in behaviors that you do not want. The list of those behaviors is not consistent between apps, although there is a large base of common concerns. HTTPS resolves one of those common concerns. No more, no less. Expecting one solution to all concerns is not a reasonable expectation.

Because the point of HTTPS is to prevent man in the middle attacks. It isn't supposed to do everything.

I found it interesting, but I'll have to take a closer look to see if I can use it

Thanks! Would appreciate your feedback once you try it out.

great project! congratulations

here are a few:

1. https://www.syntax-stories.com/2024/12/why-ruby-is-not-widel...

2.https://www.infoworld.com/article/2337962/whatever-happened-...

3. https://blog.imodstyle.com/the-decline-of-ruby-what-programm...

4. https://devot.team/blog/why-stick-to-ruby-despite-the-allege...

I myself had opened a room to teach Ruby for free on the site (https://chat-to.dev) and no one joined.

because AI isn't smart enough to deal with the security part and the maintenance of the code.

but they don't seem to be lagging behind with this new image tool they've added

i'm improving my chat site aimed at programmers and technology lovers <https://chat-to.dev>

another class of jobs going to waste

my opinion is that this post doesn't have any self promotion and neither does this account have any of the things you mentioned above. if it did have self promotion i believe i would have been banned by now.