Object oriented authorization for Rails applications

Critical or Security advisories for 1.1.0

This version doesn't have any advisory. Want to report one?

Changelog for 1.1.0


  • Can retrieve policies via an array of symbols/objects.
  • Add autodetection of param key to permitted_attributes helper.
  • Hide some methods which should not be actions.
  • Permitted attributes should be expanded.
  • Generator uses RSpec.describe according to modern best practices.

Dependencies for 1.1.0

Name Requirement Status
>= 3.0.0

My projects using pundit

Name Locked version Requirement
You should be logged in to see which of your projects use pundit.