當我使用Brakeman的工具掃描我的代碼時,我收到一條警告消息。據指出,有以的無作用域調用下面的查詢:Brakeman中的「Unscoped call to」警告是什麼?
@applicant = Applicant.find(params[:id])
下面是實際的錯誤消息:
+------------+----------------------+---------+---------------+-----------------------------------------------------------------------------------------------------------------------------------------+
| Confidence | Class | Method | Warning Type | Message |
+------------+----------------------+---------+---------------+-----------------------------------------------------------------------------------------------------------------------------------------+
| Weak | ApplicantsController | show | Unscoped Find | Unscoped call to Applicant#find near line 25: Applicant.find(+params[:id]+) | |
+------------+----------------------+---------+---------------+-----------------------------------------------------------------------------------------------------------------------------------------+
但是,當我用下面的替代上面的查詢,然後它的罰款:
@applicant = Applicant.where("id = ?", params[:id]).first
我不明白第一個查詢有什麼問題。
你能發佈實際的錯誤信息嗎? – mysmallidea
@mysmallidea我有更新的問題,請檢查 –