Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/app/serializers
diff options
context:
space:
mode:
authorGitLab Bot <gitlab-bot@gitlab.com>2022-07-07 06:09:39 +0300
committerGitLab Bot <gitlab-bot@gitlab.com>2022-07-07 06:09:39 +0300
commitf06d16d23c7ea5650ab7ddff3aa75c501dc71067 (patch)
tree8cbd41797f56ec63c3ba365d8c1f89b56ecf0480 /app/serializers
parentdb30e094f208d075d399387696c4fc01368ff756 (diff)
Add latest changes from gitlab-org/gitlab@master
Diffstat (limited to 'app/serializers')
-rw-r--r--app/serializers/README.md4
1 files changed, 4 insertions, 0 deletions
diff --git a/app/serializers/README.md b/app/serializers/README.md
index d83c2061e0b..6bab3c83e1b 100644
--- a/app/serializers/README.md
+++ b/app/serializers/README.md
@@ -22,6 +22,10 @@ Using serializers, instead of `to_json` method, has several benefits:
* it makes it easier to reduce merge conflicts between CE -> EE
* it makes it easier to benefit from domain driven development techniques
+## Security considerations
+
+Consult the `Serialization` section of our [Secure Coding Guidelines](../../doc/development/secure_coding_guidelines.md#serialization) to help avoiding leaking sensitive attributes when using serializers.
+
## What is a serializer?
A serializer is a class that encapsulates all business rules for building a
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-01 19:09:08 +0300