Heroku Blog
- News
- Last Updated: June 03, 2024
- Oren Teich
Yesterday, one of our customers let us know about significant performance issues they have experienced on Heroku. They raised an important issue and I want to let our community know about it. In short, Ruby on Rails apps running on Bamboo have experienced a degradation in performance over the past 3 years as we have scaled. We failed to explain how our product works. We failed to help our customers scale. We failed our community at large. I want to personally apologize, and commit to resolving this issue. Our goal is to make Heroku the best platform for all developers.…
- News
- Last Updated: March 28, 2024
- Sara Dornsife
Waza (技) 2013 is less than a month away and we are excited to have a full lineup of speakers who will be talking about their perspectives on art and technique. In between the talks, take part in an unique blend of conversation and craft through the hands-on workshops led by artisans teaching their trades from origami creations, to take-home woodblock prints, and even a hand-crafted and dyed quilt. Take part in this celebration of skill and making at Waza 2013. Waza Keynotes: Michael Lopp: Rands in Repose Michael has been blogging since 2002 as his alter-ego Rands in Repose.…
- News
- Last Updated: May 06, 2024
- Oren Teich
On Friday January 18, security researcher Benjamin Manns notified Heroku of a security vulnerability related to our add-ons program. At a high level, the vulnerability could have resulted in disclosing our Cross-Site Request Forgery tokens (these tokens are used to prevent browser hijacking) to third parties. We quickly addressed the vulnerability and on Sunday, we deployed a patch to remediate the issue. We also reviewed our code for related vulnerabilities and conducted a review of our audit logs to determine the impact of the vulnerability. We found no instances of this issue being exploited. We wish to thank Mr. Manns…
- News
- Last Updated: January 17, 2013
- Craig Kerstiens
An organization's data is its most valuable asset. Unfortunately, that data is usually trapped inside a database with few ways to access it by a privileged handful of people. Too often reports are manually generated and their results pasted into emails; dashboards get built but rapidly become outdated and never answer the right questions. We have so many great tools for collaborating around our source code, why is data still in the dark ages? At Heroku Postgres, we believe that your data should flow like water. Only the most up-to-date data should be available any time you have a decision…
- News
- Last Updated: January 11, 2013
- Sara Dornsife
The Concourse – San Francisco February 28, 2013 Heroku’s Waza (技), the Japanese word for art and technique, is an immersive one-day developer experience focused on craft. Throughout the event you will find technical sessions with added experiences in music, art and technology. The event features technical sessions, hands-on workshops, great food, and traditional music. Registration is now open! Tickets are $300. Last year’s event sold out in a matter of hours. Don’t risk missing out this year — join us for Waza on February 28th, 2013 at the Concourse in San Francisco. We are excited to announce the following…
- News
- Last Updated: January 11, 2013
- Mark McGranaghan
A serious security vulnerability has been found in the Ruby on Rails framework. This exploit affects nearly all applications running Rails and a patch has been made available. Rails developers can get a full list of all your affected Heroku applications by following instructions here. Please address this security vulnerability by immediately upgrading your affected apps to any of the safe versions of Rails listed below. The following Rails versions have been patched and deemed safe from this exploit: 3.2.11 3.1.10 3.0.19 2.3.15 If you do not upgrade, an attacker can trivially gain access to your application, its data, and…
Subscribe to the full-text feed.