
Security News
New Website “Is It Really FOSS?” Tracks Transparency in Open Source Distribution Models
A new site reviews software projects to reveal if they’re truly FOSS, making complex licensing and distribution models easy to understand.
TrueWeb is a lightweight Sinatra web VC stack. Currently, it doesn't have strong opinions, to allow flexibility to discover good idioms.
TrueWeb has a basic app structure, similar to Rails. Right now, no conventions are "forced" on you. This is done to allow experimentation and keep things lightweight.
You pick the model library.
Right now there are no generators.
TrueWeb::Controller is a subclass of Sinatra::Base. It's meant to provide an encapsulated unit of functionality within your app. How you group your actions is up to you.
TrueWeb uses the named-routes library.
Here is a good pattern to follow:
module MyApp
Controller.define_routes do
def root; end
get path(:root, "/") do
"Hello World!"
end
def about_us; end
get path(:about_us, "/about-us") do
view("/about-us.html.ms")
end
end
end
Defining the route methods allows certain code editors & ides to locate the definition of action.
uris.about_us # /about-us
FAQs
Unknown package
We found that true-web demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
A new site reviews software projects to reveal if they’re truly FOSS, making complex licensing and distribution models easy to understand.
Security News
Astral unveils pyx, a Python-native package registry in beta, designed to speed installs, enhance security, and integrate deeply with uv.
Security News
The Latio podcast explores how static and runtime reachability help teams prioritize exploitable vulnerabilities and streamline AppSec workflows.