![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.NetBSD.org] / pkgsrc / www / ruby-actionpack32
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.26, Sun Mar 3 15:59:57 2019 UTC (5 years, 1 month ago) by taca
Branch: MAIN
CVS Tags: HEAD
Changes since 1.25: +1 -1
lines
FILE REMOVED
www/ruby-actionpack32:: remove package Remove ruby-actionpack32, a part of Ruby on Rails 3.2 packages which is already EOL.
Revision 1.25 / (download) - annotate - [select for diffs], Tue Jul 18 14:06:28 2017 UTC (6 years, 9 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2018Q4-base,
pkgsrc-2018Q4,
pkgsrc-2018Q3-base,
pkgsrc-2018Q3,
pkgsrc-2018Q2-base,
pkgsrc-2018Q2,
pkgsrc-2018Q1-base,
pkgsrc-2018Q1,
pkgsrc-2017Q4-base,
pkgsrc-2017Q4,
pkgsrc-2017Q3-base,
pkgsrc-2017Q3
Changes since 1.24: +5 -5
lines
Diff to previous 1.24 (colored)
Update ruby-actionpack32 to 3.2.22.5. * Add missing require to files * Remove dead code and ensure values are strings before calling gsub * Fix failing tests on 3-2-stable branch
Revision 1.23.4.1 / (download) - annotate - [select for diffs], Wed Sep 7 19:03:34 2016 UTC (7 years, 7 months ago) by bsiegert
Branch: pkgsrc-2016Q2
Changes since 1.23: +5 -5
lines
Diff to previous 1.23 (colored) next main 1.24 (colored)
Pullup ticket #5095 - requested by taca www/ruby-actionpack32: security fix Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.24 - devel/ruby-activemodel32/distinfo 1.24 - devel/ruby-activesupport32/distinfo 1.24 - devel/ruby-railties32/distinfo 1.24 - lang/ruby/rails.mk 1.55 - mail/ruby-actionmailer32/distinfo 1.24 - www/ruby-actionpack32/distinfo 1.24 - www/ruby-activeresource32/distinfo 1.24 - www/ruby-rails32/distinfo 1.24 --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:55:08 UTC 2016 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails to 3.2.22.4. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:55:48 UTC 2016 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.22.4, no change except version. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:56:35 UTC 2016 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.22.4, no change except version. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:57:03 UTC 2016 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.22.4, no change except version. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:57:30 UTC 2016 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.22.4, no change except version. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:58:46 UTC 2016 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.22.4. Fix CVE-2016-6316, XSS vulnerability in Action View. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:59:16 UTC 2016 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.22.4, no change except version. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:59:36 UTC 2016 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.22.4, no change except version. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 06:00:48 UTC 2016 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.22.4, no change except version.
Revision 1.24 / (download) - annotate - [select for diffs], Sun Aug 21 05:58:45 2016 UTC (7 years, 7 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2017Q2-base,
pkgsrc-2017Q2,
pkgsrc-2017Q1-base,
pkgsrc-2017Q1,
pkgsrc-2016Q4-base,
pkgsrc-2016Q4,
pkgsrc-2016Q3-base,
pkgsrc-2016Q3
Changes since 1.23: +5 -5
lines
Diff to previous 1.23 (colored)
Update ruby-actionpack32 to 3.2.22.4. Fix CVE-2016-6316, XSS vulnerability in Action View.
Revision 1.21.2.2 / (download) - annotate - [select for diffs], Tue Mar 8 18:58:35 2016 UTC (8 years, 1 month ago) by bsiegert
Branch: pkgsrc-2015Q4
Changes since 1.21.2.1: +4 -4
lines
Diff to previous 1.21.2.1 (colored) to branchpoint 1.21 (colored) next main 1.22 (colored)
Pullup ticket #4947 - requested by taca www/ruby-actionpack32: security fix Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.23 - devel/ruby-activemodel32/distinfo 1.23 - devel/ruby-activesupport32/distinfo 1.23 - devel/ruby-railties32/distinfo 1.23 - lang/ruby/rails.mk 1.54 - mail/ruby-actionmailer32/distinfo 1.23 - www/ruby-actionpack32/distinfo 1.23 - www/ruby-activeresource32/distinfo 1.23 - www/ruby-rails32/distinfo 1.23 --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:23:26 UTC 2016 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails to 3.2.22.2. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:24:32 UTC 2016 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:24:59 UTC 2016 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:25:33 UTC 2016 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:26:08 UTC 2016 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:27:42 UTC 2016 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.22.2. Fixes CVE-2016-2097 and CVE-2016-2098. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:28:40 UTC 2016 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:29:07 UTC 2016 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:29:26 UTC 2016 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.22.2. No chnage except version.
Revision 1.23 / (download) - annotate - [select for diffs], Sat Mar 5 05:27:42 2016 UTC (8 years, 1 month ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2016Q2-base,
pkgsrc-2016Q1-base,
pkgsrc-2016Q1
Branch point for: pkgsrc-2016Q2
Changes since 1.22: +5 -5
lines
Diff to previous 1.22 (colored)
Update ruby-actionpack32 to 3.2.22.2. Fixes CVE-2016-2097 and CVE-2016-2098.
Revision 1.21.2.1 / (download) - annotate - [select for diffs], Wed Feb 10 19:22:42 2016 UTC (8 years, 2 months ago) by bsiegert
Branch: pkgsrc-2015Q4
Changes since 1.21: +5 -5
lines
Diff to previous 1.21 (colored)
Pullup ticket #4915 - requested by taca
devel/ruby-activemodel32: security fix
devel/ruby-activesupport32: security fix
devel/ruby-railties32: security fix
mail/ruby-actionmailer32: security fix
www/ruby-actionpack32: security fix
www/ruby-activeresource32: security fix
www/ruby-rails32: security fix
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.22
- devel/ruby-activemodel32/distinfo 1.22
- devel/ruby-activesupport32/PLIST 1.2
- devel/ruby-activesupport32/distinfo 1.22
- devel/ruby-railties32/Makefile 1.11
- devel/ruby-railties32/distinfo 1.22
- lang/ruby/rails.mk 1.53
- mail/ruby-actionmailer32/distinfo 1.22
- www/ruby-actionpack32/distinfo 1.22
- www/ruby-activeresource32/distinfo 1.22
- www/ruby-rails32/distinfo 1.22
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:42:36 UTC 2016
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log Message:
Start update of Ruby on Rails to 3.2.22.1.
Also tweak _RAILS_{MAJOR,MINOR,TEENY} variable definition.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:43:56 UTC 2016
Modified Files:
pkgsrc/devel/ruby-activesupport32: PLIST distinfo
Log Message:
Update ruby-activesupport32 to 3.2.22.1.
* Add ActiveSupport::SecurityUtils module which is required for
security fix of actionpack.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:45:10 UTC 2016
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log Message:
Update ruby-activemodel32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:46:12 UTC 2016
Modified Files:
pkgsrc/databases/ruby-activerecord32: Makefile distinfo
Log Message:
Update ruby-activerecord32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:47:02 UTC 2016
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log Message:
Update ruby-activeresource32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:48:02 UTC 2016
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log Message:
Note update of ruby-actionpack32 to 3.2.22.1.
* Use secure string comparisons for basic auth username / password.
(CVE-2015-7576)
* Stop caching mime types globally. (CVE-2016-0751)
* Don't short-circuit reject_if proc. (CVE-2015-7577)
* Allow :file to be outside rails root, but anything else must be inside
the rails view directory. (CVE-2016-0752)
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:48:55 UTC 2016
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log Message:
Update ruby-actionmailer32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:49:57 UTC 2016
Modified Files:
pkgsrc/devel/ruby-railties32: Makefile distinfo
Log Message:
Update ruby-railties32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:50:48 UTC 2016
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log Message:
Update ruby-rails32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:46:12 UTC 2016
Modified Files:
pkgsrc/databases/ruby-activerecord32: Makefile distinfo
Log Message:
Update ruby-activerecord32 to 3.2.22.1.
* No change except version.
Revision 1.22 / (download) - annotate - [select for diffs], Mon Feb 1 13:48:02 2016 UTC (8 years, 2 months ago) by taca
Branch: MAIN
Changes since 1.21: +5 -5
lines
Diff to previous 1.21 (colored)
Note update of ruby-actionpack32 to 3.2.22.1. * Use secure string comparisons for basic auth username / password. (CVE-2015-7576) * Stop caching mime types globally. (CVE-2016-0751) * Don't short-circuit reject_if proc. (CVE-2015-7577) * Allow :file to be outside rails root, but anything else must be inside the rails view directory. (CVE-2016-0752)
Revision 1.21 / (download) - annotate - [select for diffs], Wed Nov 4 02:47:32 2015 UTC (8 years, 5 months ago) by agc
Branch: MAIN
CVS Tags: pkgsrc-2015Q4-base
Branch point for: pkgsrc-2015Q4
Changes since 1.20: +2 -1
lines
Diff to previous 1.20 (colored)
Add SHA512 digests for distfiles for www category Problems found locating distfiles: Package haskell-cgi: missing distfile haskell-cgi-20001206.tar.gz Package nginx: missing distfile array-var-nginx-module-0.04.tar.gz Package nginx: missing distfile encrypted-session-nginx-module-0.04.tar.gz Package nginx: missing distfile headers-more-nginx-module-0.261.tar.gz Package nginx: missing distfile nginx_http_push_module-0.692.tar.gz Package nginx: missing distfile set-misc-nginx-module-0.29.tar.gz Package nginx-devel: missing distfile echo-nginx-module-0.58.tar.gz Package nginx-devel: missing distfile form-input-nginx-module-0.11.tar.gz Package nginx-devel: missing distfile lua-nginx-module-0.9.16.tar.gz Package nginx-devel: missing distfile nginx_http_push_module-0.692.tar.gz Package nginx-devel: missing distfile set-misc-nginx-module-0.29.tar.gz Package php-owncloud: missing distfile owncloud-8.2.0.tar.bz2 Otherwise, existing SHA1 digests verified and found to be the same on the machine holding the existing distfiles (morden). All existing SHA1 digests retained for now as an audit trail.
Revision 1.20 / (download) - annotate - [select for diffs], Mon Jun 22 13:53:15 2015 UTC (8 years, 9 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2015Q3-base,
pkgsrc-2015Q3,
pkgsrc-2015Q2-base,
pkgsrc-2015Q2
Changes since 1.19: +4 -4
lines
Diff to previous 1.19 (colored)
Update ruby-actionpack32 to 3.2.22. ## Rails 3.2.22 (Jun 16, 2015) ## * No changes.
Revision 1.17.2.2 / (download) - annotate - [select for diffs], Thu Nov 20 10:19:29 2014 UTC (9 years, 4 months ago) by tron
Branch: pkgsrc-2014Q3
Changes since 1.17.2.1: +3 -3
lines
Diff to previous 1.17.2.1 (colored) to branchpoint 1.17 (colored) next main 1.18 (colored)
Pullup ticket #4552 - requested by taca www/ruby-rails32: security update Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.19 - devel/ruby-activemodel32/distinfo 1.19 - devel/ruby-activesupport32/distinfo 1.19 - devel/ruby-railties32/distinfo 1.19 - lang/ruby/rails.mk 1.51 - mail/ruby-actionmailer32/distinfo 1.19 - www/ruby-actionpack32/distinfo 1.19 - www/ruby-activeresource32/distinfo 1.19 - www/ruby-rails32/distinfo 1.19 --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:41:34 UTC 2014 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails to 3.2.21. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:43:47 UTC 2014 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.21. No change except version number. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:44:09 UTC 2014 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.21. No change except version number. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:44:57 UTC 2014 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.21. No change except version number. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:45:29 UTC 2014 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.21. No change except version number. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:46:18 UTC 2014 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.21. Fix CVE-2014-7829 security problem. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:46:44 UTC 2014 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.21. No change except version number. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:47:04 UTC 2014 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.21. No change except version number. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:47:30 UTC 2014 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.21. No change except version number.
Revision 1.19 / (download) - annotate - [select for diffs], Tue Nov 18 15:46:18 2014 UTC (9 years, 5 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2015Q1-base,
pkgsrc-2015Q1,
pkgsrc-2014Q4-base,
pkgsrc-2014Q4
Changes since 1.18: +4 -4
lines
Diff to previous 1.18 (colored)
Update ruby-actionpack32 to 3.2.21. Fix CVE-2014-7829 security problem.
Revision 1.17.2.1 / (download) - annotate - [select for diffs], Sun Nov 16 14:40:50 2014 UTC (9 years, 5 months ago) by tron
Branch: pkgsrc-2014Q3
Changes since 1.17: +4 -4
lines
Diff to previous 1.17 (colored)
Pullup ticket #4546 - requested by taca www/ruby-rails32: security update Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.18 - devel/ruby-activemodel32/distinfo 1.18 - devel/ruby-activesupport32/distinfo 1.18 - devel/ruby-railties32/Makefile 1.7 - devel/ruby-railties32/distinfo 1.18 - lang/ruby/rails.mk 1.50 - mail/ruby-actionmailer32/distinfo 1.18 - www/ruby-actionpack32/distinfo 1.18 - www/ruby-activeresource32/distinfo 1.18 - www/ruby-rails32/distinfo 1.18 --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 14:57:15 UTC 2014 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails to 3.2.20. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 14:58:24 UTC 2014 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.20; update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 14:59:07 UTC 2014 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.20; update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 14:59:48 UTC 2014 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.20; update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 15:00:10 UTC 2014 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.20; update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 15:00:56 UTC 2014 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.20. Security fix for CVE-2014-7818. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 15:01:54 UTC 2014 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.20; update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 15:02:27 UTC 2014 Modified Files: pkgsrc/devel/ruby-railties32: Makefile distinfo Log Message: Update ruby-railties32 to 3.2.20; update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 15:02:50 UTC 2014 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.20; update of version number only.
Revision 1.18 / (download) - annotate - [select for diffs], Sat Nov 1 15:00:56 2014 UTC (9 years, 5 months ago) by taca
Branch: MAIN
Changes since 1.17: +4 -4
lines
Diff to previous 1.17 (colored)
Update ruby-actionpack32 to 3.2.20. Security fix for CVE-2014-7818.
Revision 1.16.2.1 / (download) - annotate - [select for diffs], Wed Jul 9 21:12:10 2014 UTC (9 years, 9 months ago) by tron
Branch: pkgsrc-2014Q2
Changes since 1.16: +4 -4
lines
Diff to previous 1.16 (colored) next main 1.17 (colored)
Pullup ticket #4448 - requested by taca
databases/ruby-activerecord32: security update
devel/ruby-activemodel32: security update
devel/ruby-activesupport32: security update
devel/ruby-railties32: security update
mail/ruby-actionmailer32: security update
www/ruby-actionpack32: security update
www/ruby-activeresource32: security update
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.17
- devel/ruby-activemodel32/distinfo 1.17
- devel/ruby-activesupport32/distinfo 1.17
- devel/ruby-railties32/distinfo 1.17
- lang/ruby/rails.mk 1.49
- mail/ruby-actionmailer32/distinfo 1.17
- www/ruby-actionpack32/distinfo 1.17
- www/ruby-activeresource32/distinfo 1.17
- www/ruby-rails32/distinfo 1.17
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:36:35 UTC 2014
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log Message:
Start update of Ruby on Rails to 3.2.19.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:38:16 UTC 2014
Modified Files:
pkgsrc/devel/ruby-activesupport32: distinfo
Log Message:
Update ruby-activesupport32 to 3.2.19.
## Rails 3.2.19 (Jul 2, 2014) ##
* Make sure Active Support configurations are applied correctly.
Before this change configuration set using `config.active_support`
would not be set.
*Rafael Mendon=E7a Fran=E7a*
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:38:50 UTC 2014
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log Message:
Update ruby-activemodel32 to 3.2.19.
## Rails 3.2.19 (Jul 2, 2014) ##
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:40:52 UTC 2014
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log Message:
Update ruby-activeresource32 to 3.2.19.
## Rails 3.2.19 (Jul 2, 2014) ##
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:41:43 UTC 2014
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log Message:
Update ruby-actionpack32 to 3.2.19.
## Rails 3.2.19 (Jul 2, 2014) ##
* Fix regression when using `ActionView::Helpers::TranslationHelper#t=
ranslate` with
`options[:raise]`.
This regression was introduced at ec16ba75a5493b9da972eea08bae630eb=
a35b62f.
*Shota Fukumori (sora_h)*
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:42:15 UTC 2014
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log Message:
Update ruby-actionmailer32 to 3.2.19.
## Rails 3.2.19 (Jul 2, 2014) ##
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:42:48 UTC 2014
Modified Files:
pkgsrc/devel/ruby-railties32: distinfo
Log Message:
Update ruby-railties32 to 3.2.19.
## Rails 3.2.19 (Jul 2, 2014) ##
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:43:50 UTC 2014
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log Message:
Update ruby-rails32 to 3.2.19.
This is meta package like ruby gem.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:40:12 UTC 2014
Modified Files:
pkgsrc/databases/ruby-activerecord32: distinfo
Log Message:
Update ruby-activerecord32 to 3.2.19, security fix.
## Rails 3.2.19 (Jul 2, 2014) ##
* Fix SQL Injection Vulnerability in 'bitstring' quoting.
Fixes CVE-2014-3482.
*Rafael MendonḶ°a Fran⺶°a*
Revision 1.17 / (download) - annotate - [select for diffs], Sun Jul 6 07:41:42 2014 UTC (9 years, 9 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2014Q3-base
Branch point for: pkgsrc-2014Q3
Changes since 1.16: +4 -4
lines
Diff to previous 1.16 (colored)
Update ruby-actionpack32 to 3.2.19.
## Rails 3.2.19 (Jul 2, 2014) ##
* Fix regression when using `ActionView::Helpers::TranslationHelper#translate` with
`options[:raise]`.
This regression was introduced at ec16ba75a5493b9da972eea08bae630eba35b62f.
*Shota Fukumori (sora_h)*
Revision 1.16 / (download) - annotate - [select for diffs], Sun May 11 10:04:15 2014 UTC (9 years, 11 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2014Q2-base
Branch point for: pkgsrc-2014Q2
Changes since 1.15: +4 -4
lines
Diff to previous 1.15 (colored)
Update www/ruby-actionpack32 to 3.2.18.
## Rails 3.2.18 (May 6, 2014) ##
* Only accept actions without File::SEPARATOR in the name.
This will avoid directory traversal in implicit render.
Fixes: CVE-2014-0130
*Rafael Mendon¾®á Fran¾®á*
Revision 1.14.2.1 / (download) - annotate - [select for diffs], Tue Mar 11 15:13:13 2014 UTC (10 years, 1 month ago) by tron
Branch: pkgsrc-2013Q4
Changes since 1.14: +4 -4
lines
Diff to previous 1.14 (colored) next main 1.15 (colored)
Pullup ticket #4339 - requested by taca
databases/ruby-activerecord32: security update
devel/ruby-activemodel32: security update
devel/ruby-activesupport32: security update
devel/ruby-railties32: security update
mail/ruby-actionmailer32: security update
www/ruby-actionpack32: security update
www/ruby-activeresource32: security update
www/ruby-rails32: security update
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.15
- devel/ruby-activemodel32/distinfo 1.15
- devel/ruby-activesupport32/distinfo 1.15
- devel/ruby-railties32/distinfo 1.15
- lang/ruby/rails.mk 1.47
- mail/ruby-actionmailer32/distinfo 1.15
- www/ruby-actionpack32/distinfo 1.15
- www/ruby-activeresource32/distinfo 1.15
- www/ruby-rails32/distinfo 1.15
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Mar 2 14:59:25 UTC 2014
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log Message:
Start update of Ruby on Rails to 3.2.17.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Mar 2 15:00:23 UTC 2014
Modified Files:
pkgsrc/devel/ruby-activesupport32: distinfo
Log Message:
Update ruby-activesupport32 to 3.2.17.
Update of version number only.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Mar 2 15:00:59 UTC 2014
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log Message:
Update ruby-activemodel32 to 3.2.17.
Update of version number only.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Mar 2 15:01:36 UTC 2014
Modified Files:
pkgsrc/databases/ruby-activerecord32: distinfo
Log Message:
Update ruby-activerecord32 to 3.2.17.
Update of version number only.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Mar 2 15:02:17 UTC 2014
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log Message:
Update ruby-activeresource32 to 3.2.17.
Update of version number only.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Mar 2 15:03:02 UTC 2014
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log Message:
Update ruby-actionpack32 to 3.2.17.
* Use the reference for the mime type to get the format
Fixes: CVE-2014-0082
* Escape format, negative_format and units options of number helpers
Fixes: CVE-2014-0081
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Mar 2 15:03:37 UTC 2014
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log Message:
Update ruby-actionmailer32 to 3.2.17.
Update of version number only.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Mar 2 15:04:04 UTC 2014
Modified Files:
pkgsrc/devel/ruby-railties32: distinfo
Log Message:
Update ruby-railties32 to 3.2.17.
Update of version number only.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Mar 2 15:04:29 UTC 2014
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log Message:
Update ruby-rails32 to 3.2.17.
Update of version number only.
Revision 1.15 / (download) - annotate - [select for diffs], Sun Mar 2 15:03:02 2014 UTC (10 years, 1 month ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2014Q1-base,
pkgsrc-2014Q1
Changes since 1.14: +4 -4
lines
Diff to previous 1.14 (colored)
Update ruby-actionpack32 to 3.2.17.
* Use the reference for the mime type to get the format
Fixes: CVE-2014-0082
* Escape format, negative_format and units options of number helpers
Fixes: CVE-2014-0081
Revision 1.12.2.2 / (download) - annotate - [select for diffs], Mon Dec 9 17:25:09 2013 UTC (10 years, 4 months ago) by tron
Branch: pkgsrc-2013Q3
Changes since 1.12.2.1: +3 -3
lines
Diff to previous 1.12.2.1 (colored) to branchpoint 1.12 (colored) next main 1.13 (colored)
Pullup ticket #4266 - requested by taca databases/ruby-activerecord32: security update devel/ruby-activemodel32: security update devel/ruby-activesupport32: security update devel/ruby-railties32: security update mail/ruby-actionmailer32: security update www/ruby-actionpack32: security update www/ruby-activeresource32: security update www/ruby-rails32: security update Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.14 - devel/ruby-activemodel32/distinfo 1.14 - devel/ruby-activesupport32/distinfo 1.14 - devel/ruby-railties32/distinfo 1.14 - lang/ruby/rails.mk 1.46 - mail/ruby-actionmailer32/distinfo 1.14 - www/ruby-actionpack32/distinfo 1.14 - www/ruby-activeresource32/distinfo 1.14 - www/ruby-rails32/distinfo 1.14 --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:41:48 UTC 2013 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.2.16. --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:42:52 UTC 2013 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.16. Only version number has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:43:29 UTC 2013 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.16. Only version number has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:44:05 UTC 2013 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: ruby-activerecord32 to 3.2.16. Only version number has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:44:42 UTC 2013 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.16. Only version number has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:45:38 UTC 2013 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.16, security update. * Deep Munge the parameters for GET and POST Fixes CVE-2013-6417 * Stop using i18n's built in HTML error handling. Fixes: CVE-2013-4491 * Escape the unit value provided to number_to_currency Fixes CVE-2013-6415 * Only use valid mime type symbols as cache keys CVE-2013-6414 --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:46:15 UTC 2013 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.16. Only version number has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:46:48 UTC 2013 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.16. Only version number has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:47:17 UTC 2013 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.16. Only version number has updated.
Revision 1.14 / (download) - annotate - [select for diffs], Wed Dec 4 15:45:38 2013 UTC (10 years, 4 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2013Q4-base
Branch point for: pkgsrc-2013Q4
Changes since 1.13: +4 -4
lines
Diff to previous 1.13 (colored)
Update ruby-actionpack32 to 3.2.16, security update. * Deep Munge the parameters for GET and POST Fixes CVE-2013-6417 * Stop using i18n's built in HTML error handling. Fixes: CVE-2013-4491 * Escape the unit value provided to number_to_currency Fixes CVE-2013-6415 * Only use valid mime type symbols as cache keys CVE-2013-6414
Revision 1.12.2.1 / (download) - annotate - [select for diffs], Mon Oct 28 23:37:33 2013 UTC (10 years, 5 months ago) by tron
Branch: pkgsrc-2013Q3
Changes since 1.12: +4 -4
lines
Diff to previous 1.12 (colored)
Pullup ticket #4248 - requested by taca
databases/ruby-activerecord32: security update
devel/ruby-activemodel32: security update
devel/ruby-activesupport32: security update
devel/ruby-railties32: security update
mail/ruby-actionmailer32: security update
www/ruby-actionpack32: security update
www/ruby-activeresource32: security update
www/ruby-rails32: security update
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.13
- devel/ruby-activemodel32/distinfo 1.13
- devel/ruby-activesupport32/distinfo 1.13
- devel/ruby-railties32/distinfo 1.13
- lang/ruby/rails.mk 1.45
- mail/ruby-actionmailer32/distinfo 1.13
- www/ruby-actionpack32/distinfo 1.13
- www/ruby-activeresource32/distinfo 1.13
- www/ruby-rails32/distinfo 1.13
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Oct 18 15:22:42 UTC 2013
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log Message:
Start update of Ruby on Rails 3.2.15.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Oct 18 15:24:38 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activesupport32: distinfo
Log Message:
Update ruby-activesupport32 to 3.2.15.
## Rails 3.2.15 (Oct 16, 2013) ##
* Fix ActiveSupport::Cache::FileStore#cleanup to no longer rely on missing
each_key method.
*Murray Steele*
* Add respond_to_missing? for TaggedLogging which is best practice when
overriding method_missing. This permits wrapping TaggedLogging by another
log abstraction such as em-logger.
*Wolfram Arnold*
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Oct 18 15:26:02 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log Message:
Update ruby-activemodel32 to
## Rails 3.2.15 (Oct 16, 2013) ##
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Oct 18 15:27:20 UTC 2013
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log Message:
Update ruby-actionpack32 to 3.2.15.
## Rails 3.2.15 (Oct 16, 2013) ##
* Fix `ActionDispatch::RemoteIp::GetIp#calculate_ip` to only check for
spoofing attacks if both `HTTP_CLIENT_IP` and `HTTP_X_FORWARDED_FOR` are
set.
Fixes #12410
Backports #10844
*Tamir Duberstein*
* Fix the assert_recognizes test method so that it works when there are
constraints on the querystring.
Issue/Pull Request #9368
Backport #5219
*Brian Hahn*
* Fix to render partial by context(#11605).
*Kassio Borges*
* Fix `ActionDispatch::Assertions::ResponseAssertions#assert_redirected_to`
does not show user-supplied message.
Issue: when `assert_redirected_to` fails due to the response redirect not
matching the expected redirect the user-supplied message (second parameter)
is not shown. This message is only shown if the response is not a redirect.
*Alexey Chernenkov*
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Oct 18 15:30:05 UTC 2013
Modified Files:
pkgsrc/databases/ruby-activerecord32: distinfo
Log Message:
Update ruby-activerecord32 to 3.2.15.
## Rails 3.2.15 (Oct 16, 2013) ##
* When calling the method .find_or_initialize_by_* from a collection_proxy it
should set the inverse_of relation even when the entry was found on the db.
*arthurnn*
* Callbacks on has_many should access the in memory parent if a inverse_of is
set.
*arthurnn*
* Fix `FinderMethods#last` unscoped primary key.
Fixes #11917.
*Eugene Kalenkovich*
* Load fixtures from linked folders.
*Kassio Borges*
* When using optimistic locking, `update` was not passing the column to
`quote_value` to allow the connection adapter to properly determine how to
quote the value. This was affecting certain databases that use specific
colmn types.
Fixes: #6763
*Alfred Wong*
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Oct 18 15:31:00 UTC 2013
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log Message:
Update ruby-activeresource32 to 3.2.15.
## Rails 3.2.15 (Oct 16, 2013) ##
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Oct 18 15:33:16 UTC 2013
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log Message:
Update ruby-actionmailer32 to 3.2.15.
CHANGELOG.md says "No changes." but it fixes possible dos vulnerability.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Oct 18 15:34:47 UTC 2013
Modified Files:
pkgsrc/devel/ruby-railties32: distinfo
Log Message:
Update ruby-railties32 to 3.2.15.
CHANGELOG.md says "No changes." but really it contains a few bug fixes.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Oct 18 15:38:03 UTC 2013
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log Message:
Update ruby-rails32 to 3.2.15.
This is a bug fix release and also contains one security fix.
Revision 1.13 / (download) - annotate - [select for diffs], Fri Oct 18 15:27:20 2013 UTC (10 years, 6 months ago) by taca
Branch: MAIN
Changes since 1.12: +4 -4
lines
Diff to previous 1.12 (colored)
Update ruby-actionpack32 to 3.2.15. ## Rails 3.2.15 (Oct 16, 2013) ## * Fix `ActionDispatch::RemoteIp::GetIp#calculate_ip` to only check for spoofing attacks if both `HTTP_CLIENT_IP` and `HTTP_X_FORWARDED_FOR` are set. Fixes #12410 Backports #10844 *Tamir Duberstein* * Fix the assert_recognizes test method so that it works when there are constraints on the querystring. Issue/Pull Request #9368 Backport #5219 *Brian Hahn* * Fix to render partial by context(#11605). *Kassio Borges* * Fix `ActionDispatch::Assertions::ResponseAssertions#assert_redirected_to` does not show user-supplied message. Issue: when `assert_redirected_to` fails due to the response redirect not matching the expected redirect the user-supplied message (second parameter) is not shown. This message is only shown if the response is not a redirect. *Alexey Chernenkov*
Revision 1.12 / (download) - annotate - [select for diffs], Wed Sep 11 13:35:31 2013 UTC (10 years, 7 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2013Q3-base
Branch point for: pkgsrc-2013Q3
Changes since 1.11: +4 -4
lines
Diff to previous 1.11 (colored)
Update ruby-actionpack32 to 3.2.14
* Merge `:action` from routing scope and assign endpoint if both `:controller`
and `:action` are present. The endpoint assignment only occurs if there is
no `:to` present in the options hash so should only affect routes using the
shorthand syntax (i.e. endpoint is inferred from the the path).
Fixes #9856
*Yves Senn*, *Andrew White*
* Always escape the result of `link_to_unless` method.
Before:
link_to_unless(true, '<b>Showing</b>', 'github.com')
# => "<b>Showing</b>"
After:
link_to_unless(true, '<b>Showing</b>', 'github.com')
# => "<b>Showing</b>"
*dtaniwaki*
* Use a case insensitive URI Regexp for #asset_path.
This fix a problem where the same asset path using different case are generating
different URIs.
Before:
image_tag("HTTP://google.com")
# => "<img alt=\"Google\" src=\"/assets/HTTP://google.com\" />"
image_tag("http://google.com")
# => "<img alt=\"Google\" src=\"http://google.com\" />"
After:
image_tag("HTTP://google.com")
# => "<img alt=\"Google\" src=\"HTTP://google.com\" />"
image_tag("http://google.com")
# => "<img alt=\"Google\" src=\"http://google.com\" />"
*David Celis + Rafael Mendon¾®á Fran¾®á*
* Fix explicit names on multiple file fields. If a file field tag has
the multiple option, it is turned into an array field (appending `[]`),
but if an explicit name is passed to `file_field` the `[]` is not
appended.
Fixes #9830.
*Ryan McGeary*
Revision 1.11 / (download) - annotate - [select for diffs], Tue Mar 19 16:13:26 2013 UTC (11 years, 1 month ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2013Q2-base,
pkgsrc-2013Q2,
pkgsrc-2013Q1-base,
pkgsrc-2013Q1
Changes since 1.10: +4 -4
lines
Diff to previous 1.10 (colored)
Update ruby-actionpack32 to 3.2.13. This is part of security update of Ruby on Rails 3.2.13 and changes are too many to write here. Please refer CHANGELOG.md.
Revision 1.7.2.3 / (download) - annotate - [select for diffs], Fri Feb 15 13:32:28 2013 UTC (11 years, 2 months ago) by tron
Branch: pkgsrc-2012Q4
Changes since 1.7.2.2: +4 -4
lines
Diff to previous 1.7.2.2 (colored) to branchpoint 1.7 (colored) next main 1.8 (colored)
Pullup ticket #4072 - requested by taca
databases/ruby-activerecord32: security update
devel/ruby-activemodel32: security update
devel/ruby-activesupport32: security update
devel/ruby-railties32: security update
mail/ruby-actionmailer32: security update
www/ruby-actionpack32: security update
www/ruby-activeresource32: security update
www/ruby-rails32: security update
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.10
- devel/ruby-activemodel32/distinfo 1.10
- devel/ruby-activesupport32/distinfo 1.10
- devel/ruby-railties32/Makefile 1.4
- devel/ruby-railties32/distinfo 1.10
- lang/ruby/rails.mk 1.40
- mail/ruby-actionmailer32/distinfo 1.10
- www/ruby-actionpack32/distinfo 1.10
- www/ruby-activeresource32/distinfo 1.10
- www/ruby-rails32/distinfo 1.10
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:28:10 UTC 2013
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log Message:
Start update of Ruby on Rails 3.2.12.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:28:59 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activesupport32: distinfo
Log Message:
Update ruby-activesupport32 to 3.2.12.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:29:48 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log Message:
Update ruby-activemodel32 to 3.2.12.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:30:48 UTC 2013
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log Message:
Update ruby-activeresource32 to 3.2.12.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:31:19 UTC 2013
Modified Files:
pkgsrc/databases/ruby-activerecord32: distinfo
Log Message:
Update ruby-activerecord32 to 3.2.12.
## Rails 3.2.12 (unreleased) ##
* Quote numeric values being compared to non-numeric columns. Otherwise,
in some database, the string column values will be coerced to a numeric
allowing 0, 0.0 or false to match any string starting with a non-digit.
Example:
App.where(apikey: 0) # => SELECT * FROM users WHERE apikey = '0'
*Dylan Smith*
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:31:52 UTC 2013
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log Message:
Update ruby-actionpack32 to 3.2.12.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:32:32 UTC 2013
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log Message:
Update of ruby-actionmailer32 to 3.2.12.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:33:08 UTC 2013
Modified Files:
pkgsrc/devel/ruby-railties32: Makefile distinfo
Log Message:
Update ruby-railties32 to 3.2.12.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:33:42 UTC 2013
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log Message:
Update ruby-rails32 to 3.2.12.
Change of version only.
Revision 1.10 / (download) - annotate - [select for diffs], Tue Feb 12 14:31:52 2013 UTC (11 years, 2 months ago) by taca
Branch: MAIN
Changes since 1.9: +4 -4
lines
Diff to previous 1.9 (colored)
Update ruby-actionpack32 to 3.2.12. Change of version only.
Revision 1.7.2.2 / (download) - annotate - [select for diffs], Fri Jan 18 15:41:59 2013 UTC (11 years, 3 months ago) by tron
Branch: pkgsrc-2012Q4
Changes since 1.7.2.1: +4 -4
lines
Diff to previous 1.7.2.1 (colored) to branchpoint 1.7 (colored)
Pullup ticket #4025 - requested by taca
databases/ruby-activerecord32: security update
devel/ruby-activemodel32: security update
devel/ruby-activesupport32: security update
devel/ruby-railties32: security update
mail/ruby-actionmailer32: security update
www/ruby-actionpack32: security update
www/ruby-activeresource32: security update
www/ruby-rails32: security update
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.9
- devel/ruby-activemodel32/distinfo 1.9
- devel/ruby-activesupport32/distinfo 1.9
- devel/ruby-railties32/distinfo 1.9
- lang/ruby/rails.mk 1.37
- mail/ruby-actionmailer32/distinfo 1.9
- www/ruby-actionpack32/distinfo 1.9
- www/ruby-activeresource32/distinfo 1.9
- www/ruby-rails32/distinfo 1.9
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:40:52 UTC 2013
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log Message:
Start update of Ruby on Rails 3.2.11.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:41:15 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activesupport32: distinfo
Log Message:
Update ruby-activesupport32 to 3.2.11.
## Rails 3.2.10 (Jan 8, 2012) ##
* Hash.from_xml raises when it encounters type="symbol" or type="yaml".
Use Hash.from_trusted_xml to parse this XML.
CVE-2013-0156
*Jeremy Kemper*
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:41:45 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log Message:
Update ruby-activemodel32 to 3.2.11.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:42:12 UTC 2013
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log Message:
Update ruby-activeresource32 to 3.2.11.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:43:18 UTC 2013
Modified Files:
pkgsrc/databases/ruby-activerecord32: distinfo
Log Message:
Update ruby-activerecord32 to 3.2.11.
## Rails 3.2.11 ##
* Fix querying with an empty hash *Damien Mathieu* [CVE-2013-0155]
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:43:59 UTC 2013
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log Message:
Update ruby-actionpack32 to 3.2.11.
## Rails 3.2.11 ##
* Strip nils from collections on JSON and XML posts. [CVE-2013-0155]
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:44:21 UTC 2013
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log Message:
Update ruby-actionmailer32 to 3.2.11.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:44:44 UTC 2013
Modified Files:
pkgsrc/devel/ruby-railties32: distinfo
Log Message:
Update ruby-railties32 to 3.2.11.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:45:04 UTC 2013
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log Message:
Update ruby-railties32 to 3.2.11.
Only version has updated.
Revision 1.7.2.1 / (download) - annotate - [select for diffs], Fri Jan 18 14:09:40 2013 UTC (11 years, 3 months ago) by tron
Branch: pkgsrc-2012Q4
Changes since 1.7: +4 -4
lines
Diff to previous 1.7 (colored)
Pullup ticket #4021 - requested by taca
databases/ruby-activerecord32: security update
devel/ruby-activemodel32: security update
devel/ruby-activesupport32: security update
devel/ruby-railties32: security update
mail/ruby-actionmailer32: security update
www/ruby-actionpack32: security update
www/ruby-activeresource32: security update
www/ruby-rails32: security update
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.8
- devel/ruby-activemodel32/distinfo 1.8
- devel/ruby-activesupport32/distinfo 1.8
- devel/ruby-railties32/PLIST 1.3
- devel/ruby-railties32/distinfo 1.8
- lang/ruby/rails.mk 1.34
- mail/ruby-actionmailer32/distinfo 1.8
- www/ruby-actionpack32/distinfo 1.8
- www/ruby-activeresource32/distinfo 1.8
- www/ruby-rails32/distinfo 1.8
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:17:48 UTC 2013
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log Message:
Start updating of Ruby on Rails 3.2.10.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:18:39 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activesupport32: distinfo
Log Message:
Update ruby-activesupport32 to 3.2.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:19:25 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log Message:
Update ruby-activemodel32 to 3.2.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:20:05 UTC 2013
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log Message:
Note update of ruby-activeresource32 to 3.2.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:21:02 UTC 2013
Modified Files:
pkgsrc/databases/ruby-activerecord32: distinfo
Log Message:
Update ruby-activerecord32 to 3.2.10.
## Rails 3.2.10 ##
* CVE-2012-5664 options hashes should only be extracted if there are extra
parameters.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:21:28 UTC 2013
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log Message:
Update ruby-actionpack32 to 3.2.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:22:02 UTC 2013
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log Message:
Update ruby-actionmailer32 to 3.2.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:22:25 UTC 2013
Modified Files:
pkgsrc/devel/ruby-railties32: PLIST distinfo
Log Message:
Update ruby-railties32 to 3.2.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:22:55 UTC 2013
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log Message:
Update ruby-rails32 to 3.2.10.
Only version has updated.
Revision 1.9 / (download) - annotate - [select for diffs], Wed Jan 9 12:43:59 2013 UTC (11 years, 3 months ago) by taca
Branch: MAIN
Changes since 1.8: +4 -4
lines
Diff to previous 1.8 (colored)
Update ruby-actionpack32 to 3.2.11. ## Rails 3.2.11 ## * Strip nils from collections on JSON and XML posts. [CVE-2013-0155]
Revision 1.8 / (download) - annotate - [select for diffs], Sat Jan 5 14:21:27 2013 UTC (11 years, 3 months ago) by taca
Branch: MAIN
Changes since 1.7: +4 -4
lines
Diff to previous 1.7 (colored)
Update ruby-actionpack32 to 3.2.10. Only version has updated.
Revision 1.7 / (download) - annotate - [select for diffs], Sun Dec 16 14:11:35 2012 UTC (11 years, 4 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2012Q4-base
Branch point for: pkgsrc-2012Q4
Changes since 1.6: +4 -4
lines
Diff to previous 1.6 (colored)
Update ruby-actionpack32 to 3.9.2.
## Rails 3.2.9 (unreleased) ##
* Clear url helpers when reloading routes.
*Santiago Pastorino*
* Revert the shorthand routes scoped with `:module` option fix
This added a regression since it is changing the URL mapping.
This makes the stable release backward compatible.
*Rafael Mendonça França*
* Revert the `assert_template` fix to not pass with ever string that matches the template name.
This added a regression since people were relying on this buggy behavior.
This will introduce back #3849 but this stable release will be backward compatible.
Fixes #8068.
*Rafael Mendonça França*
* Revert the rename of internal variable on ActionController::TemplateAssertions to prevent
naming collisions. This added a regression related with shoulda-matchers, since it is
expecting the [instance variable @layouts](https://github.com/thoughtbot/shoulda-matchers/blob/9e1188eea68c47d9a56ce6280e45027da6187ab1/lib/shoulda/matchers/action_controller/render_with_layout_matcher.rb#L74).
This will introduce back #7459 but this stable release will be backward compatible.
Fixes #8068.
*Rafael Mendonça França*
* Accept :remote as symbolic option for `link_to` helper. *Riley Lynch*
* Warn when the `:locals` option is passed to `assert_template` outside of a view test case
Fix #3415
*Yves Senn*
* Rename internal variables on ActionController::TemplateAssertions to prevent
naming collisions. @partials, @templates and @layouts are now prefixed with an underscore.
Fix #7459
*Yves Senn*
* `resource` and `resources` don't modify the passed options hash
Fix #7777
*Yves Senn*
* Precompiled assets include aliases from foo.js to foo/index.js and vice versa.
# Precompiles phone-<digest>.css and aliases phone/index.css to phone.css.
config.assets.precompile = [ 'phone.css' ]
# Precompiles phone/index-<digest>.css and aliases phone.css to phone/index.css.
config.assets.precompile = [ 'phone/index.css' ]
# Both of these work with either precompile thanks to their aliases.
<%= stylesheet_link_tag 'phone', media: 'all' %>
<%= stylesheet_link_tag 'phone/index', media: 'all' %>
*Jeremy Kemper*
* `assert_template` is no more passing with what ever string that matches
with the template name.
Before when we have a template `/layout/hello.html.erb`, `assert_template`
was passing with any string that matches. This behavior allowed false
positive like:
assert_template "layout"
assert_template "out/hello"
Now it only passes with:
assert_template "layout/hello"
assert_template "hello"
Fixes #3849.
*Hugolnx*
* Handle `ActionDispatch::Http::UploadedFile` like `Rack::Test::UploadedFile`, don't call to_param on it. Since
`Rack::Test::UploadedFile` isn't API compatible this is needed to test file uploads that rely on `tempfile`
being available.
*Tim Vandecasteele*
* Respect `config.digest = false` for `asset_path`
Previously, the `asset_path` internals only respected the `:digest`
option, but ignored the global config setting. This meant that
`config.digest = false` could not be used in conjunction with
`config.compile = false` this corrects the behavior.
*Peter Wagenet*
* Fix #7646, the log now displays the correct status code when an exception is raised.
*Yves Senn*
* Fix handling of date selects when using both disabled and discard options.
Fixes #7431.
*Vasiliy Ermolovich*
* Fix select_tag when option_tags is nil.
Fixes #7404.
*Sandeep Ravichandran*
* `javascript_include_tag :all` will now not include `application.js` if the file does not exists. *Prem Sichanugrist*
* Support cookie jar options (e.g., domain :all) for all session stores.
Fixes GH#3047, GH#2483.
*Ravil Bayramgalin*
* Performance Improvement to send_file: Avoid having to pass an open file handle as the response body. Rack::Sendfile
will usually intercept the response and just uses the path directly, so no reason to open the file. This performance
improvement also resolves an issue with jRuby encodings, and is the reason for the backport, see issue #6844.
*Jeremy Kemper & Erich Menge*
Revision 1.4.2.2 / (download) - annotate - [select for diffs], Mon Aug 20 08:22:29 2012 UTC (11 years, 7 months ago) by sbd
Branch: pkgsrc-2012Q2
Changes since 1.4.2.1: +3 -3
lines
Diff to previous 1.4.2.1 (colored) to branchpoint 1.4 (colored) next main 1.5 (colored)
Pullup ticket #3904 - requested by taca
Ruby on Rails 3.2.8 security update
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.6
- devel/ruby-activemodel32/distinfo 1.6
- devel/ruby-activesupport32/distinfo 1.6
- devel/ruby-railties32/distinfo 1.6
- lang/ruby/rails.mk 1.30
- mail/ruby-actionmailer32/distinfo 1.6
- www/ruby-actionpack32/distinfo 1.6
- www/ruby-activeresource32/distinfo 1.6
- www/ruby-rails32/distinfo 1.6
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Aug 12 12:37:06 UTC 2012
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log Message:
Start update of Ruby on Rails 3.2.8.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Aug 12 12:38:09 UTC 2012
Modified Files:
pkgsrc/devel/ruby-activesupport32: distinfo
Log Message:
Update ruby-activesupport32 to 3.2.8.
## Rails 3.2.8 (Aug 9, 2012) ##
* Fix ActiveSupport integration with Mocha > 0.12.1. *Mike Gunderloy*
* Reverted the deprecation of ActiveSupport::JSON::Variable.
*Rafael Mendonçá Françá*
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Aug 12 12:38:41 UTC 2012
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log Message:
Update ruby-activemodel32 to 3.2.8.
## Rails 3.2.8 (Aug 9, 2012) ##
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Aug 12 12:40:00 UTC 2012
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log Message:
Update ruby-actionpack32 to 3.2.8.
## Rails 3.2.8 (Aug 9, 2012) ##
* There is an XSS vulnerability in the strip_tags helper in Ruby on Rails, the
helper doesn't correctly handle malformed html. As a result an attacker can
execute arbitrary javascript through the use of specially crafted malformed
html.
*Marek from Nethemba (www.nethemba.com) & Santiago Pastorino*
* When a "prompt" value is supplied to the `select_tag` helper, the "prompt"
value is not escaped.
If untrusted data is not escaped, and is supplied as the prompt value, there
is a potential for XSS attacks.
Vulnerable code will look something like this:
select_tag("name", options, :prompt => UNTRUSTED_INPUT)
*Santiago Pastorino*
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Aug 12 12:41:02 UTC 2012
Modified Files:
pkgsrc/databases/ruby-activerecord32: distinfo
Log Message:
Update ruby-activerecord32 to 3.2.8.
## Rails 3.2.8 (Aug 9, 2012) ##
* Do not consider the numeric attribute as changed if the old value is zero
and the new value is not a string.
Fixes #7237.
*Rafael Mendonçá Françá*
* Removes the deprecation of `update_attribute`. *fxn*
* Reverted the deprecation of `composed_of`. *Rafael Mendonçá Françá*
* Reverted the deprecation of `*_sql` association options. They will be
deprecated in 4.0 instead. *Jon Leighton*
* Do not eager load AR session store. ActiveRecord::SessionStore depends on
the abstract store in Action Pack. Eager loading this class would break
client code that eager loads Active Record standalone.
Fixes #7160
*Xavier Noria*
* Do not set RAILS_ENV to "development" when using `db:test:prepare` and
related rake tasks.
This was causing the truncation of the development database data when using
RSpec.
Fixes #7175.
*Rafael Mendonçá Françá*
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Aug 12 12:41:37 UTC 2012
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log Message:
Update ruby-activeresource32 to 3.2.8.
## Rails 3.2.8 (Aug 9, 2012) ##
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Aug 12 12:42:14 UTC 2012
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log Message:
Update ruby-actionmailer32 to 3.2.8.
## Rails 3.2.8 (Aug 9, 2012) ##
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Aug 12 12:43:08 UTC 2012
Modified Files:
pkgsrc/devel/ruby-railties32: distinfo
Log Message:
Update ruby-railties32 to 3.2.8.
## Rails 3.2.8 (Aug 9, 2012) ##
* ERB scaffold generator use the `:data => { :confirm => "Text" }` syntax
instead of `:confirm`.
*Rafael Mendonçá Françá*
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Aug 12 12:44:30 UTC 2012
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log Message:
Update ruby-rails32 to 3.2.8.
This is a meta-like package and no changes.
Revision 1.4.2.1 / (download) - annotate - [select for diffs], Sun Aug 12 14:49:00 2012 UTC (11 years, 8 months ago) by tron
Branch: pkgsrc-2012Q2
Changes since 1.4: +4 -4
lines
Diff to previous 1.4 (colored)
Pullup ticket #3896 - requested by taca
databases/ruby-activerecord32: security update
devel/ruby-activemodel32: security update
devel/ruby-activesupport32: security update
devel/ruby-railties32: security update
mail/ruby-actionmailer32: security update
www/ruby-actionpack32: security update
www/ruby-activeresource32: security update
www/ruby-rails32: security update
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.5
- devel/ruby-activemodel32/distinfo 1.5
- devel/ruby-activesupport32/distinfo 1.5
- devel/ruby-railties32/distinfo 1.5
- lang/ruby/rails.mk 1.27
- mail/ruby-actionmailer32/distinfo 1.5
- www/ruby-actionpack32/distinfo 1.5
- www/ruby-activeresource32/distinfo 1.5
- www/ruby-rails32/distinfo 1.5
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jul 31 12:50:28 UTC 2012
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log Message:
Start update of Ruby on Rails 3.2.7.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jul 31 12:51:18 UTC 2012
Modified Files:
pkgsrc/devel/ruby-activesupport32: distinfo
Log Message:
Update ruby-activesupport32 to 3.2.7.
## Rails 3.2.7 (unreleased)
* Hash#fetch(fetch) is not the same as doing hash[key]
* adds a missing require [fixes #6896]
* make sure the inflection rules are loaded when cherry-picking
active_support/core_ext/string/inflections.rb [fixes #6884]
* Merge pull request #6857 from rsutphin/as_core_ext_time_missing_require
* bump AS deprecation_horizon to 4.0
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jul 31 12:52:25 UTC 2012
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log Message:
Update ruby-activemodel32 to 3.2.7.
## Rails 3.2.7 (unreleased)
* `validates_inclusion_of` and `validates_exclusion_of` now accept `:within`
option as alias of `:in` as documented.
* Fix the the backport of the object dup with the ruby 1.9.3p194.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jul 31 12:53:01 UTC 2012
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log Message:
Update ruby-activeresource32 to 3.2.7.
## Rails 3.2.7 (unreleased)
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jul 31 12:53:46 UTC 2012
Modified Files:
pkgsrc/databases/ruby-activerecord32: distinfo
Log Message:
Update ruby-activerecord32 to 3.2.7.
## Rails 3.2.7 (unreleased) ##
* `:finder_sql` and `:counter_sql` options on collection associations
are deprecated. Please transition to using scopes.
*Jon Leighton*
* `:insert_sql` and `:delete_sql` options on `has_and_belongs_to_many`
associations are deprecated. Please transition to using `has_many
:through`
*Jon Leighton*
* `composed_of` has been deprecated. You'll have to write your own accessor
and mutator methods if you'd like to use value objects to represent some
portion of your models.
*Steve Klabnik*
* `update_attribute` has been deprecated. Use `update_column` if
you want to bypass mass-assignment protection, validations, callbacks,
and touching of updated_at. Otherwise please use `update_attributes`.
*Steve Klabnik*
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jul 31 12:55:32 UTC 2012
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log Message:
Update ruby-actionpack32 to 3.2.7.
## Rails 3.2.7 (unreleased) ##
* Do not convert digest auth strings to symbols. CVE-2012-3424
* Bump Journey requirements to 1.0.4
* Add support for optional root segments containing slashes
* Fixed bug creating invalid HTML in select options
* Show in log correct wrapped keys
* Fix NumberHelper options wrapping to prevent verbatim blocks being rendered
instead of line continuations.
* ActionController::Metal doesn't have logger method, check it and then
delegate
* ActionController::Caching depends on RackDelegation and
AbstractController::Callbacks
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jul 31 12:56:13 UTC 2012
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log Message:
Update ruby-actionmailer32 to 3.2.7.
## Rails 3.2.7 (unreleased)
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jul 31 12:56:46 UTC 2012
Modified Files:
pkgsrc/devel/ruby-railties32: distinfo
Log Message:
Update ruby-railties32 to 3.2.7.
## Rails 3.2.7 (unreleased)
* Since Rails 3.2, use layout false to render no layout
* Use strict_args_position! if available from Thor
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jul 31 12:57:33 UTC 2012
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log Message:
Update Update ruby-rails32 to 3.2.17.
This is a meta-like package and no changes.
Revision 1.6 / (download) - annotate - [select for diffs], Sun Aug 12 12:40:00 2012 UTC (11 years, 8 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2012Q3-base,
pkgsrc-2012Q3
Changes since 1.5: +4 -4
lines
Diff to previous 1.5 (colored)
Update ruby-actionpack32 to 3.2.8.
## Rails 3.2.8 (Aug 9, 2012) ##
* There is an XSS vulnerability in the strip_tags helper in Ruby on Rails, the
helper doesn't correctly handle malformed html. As a result an attacker can
execute arbitrary javascript through the use of specially crafted malformed
html.
*Marek from Nethemba (www.nethemba.com) & Santiago Pastorino*
* When a "prompt" value is supplied to the `select_tag` helper, the "prompt"
value is not escaped.
If untrusted data is not escaped, and is supplied as the prompt value, there
is a potential for XSS attacks.
Vulnerable code will look something like this:
select_tag("name", options, :prompt => UNTRUSTED_INPUT)
*Santiago Pastorino*
Revision 1.5 / (download) - annotate - [select for diffs], Tue Jul 31 12:55:32 2012 UTC (11 years, 8 months ago) by taca
Branch: MAIN
Changes since 1.4: +4 -4
lines
Diff to previous 1.4 (colored)
Update ruby-actionpack32 to 3.2.7. ## Rails 3.2.7 (unreleased) ## * Do not convert digest auth strings to symbols. CVE-2012-3424 * Bump Journey requirements to 1.0.4 * Add support for optional root segments containing slashes * Fixed bug creating invalid HTML in select options * Show in log correct wrapped keys * Fix NumberHelper options wrapping to prevent verbatim blocks being rendered instead of line continuations. * ActionController::Metal doesn't have logger method, check it and then delegate * ActionController::Caching depends on RackDelegation and AbstractController::Callbacks
Revision 1.4 / (download) - annotate - [select for diffs], Wed Jun 13 15:15:59 2012 UTC (11 years, 10 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2012Q2-base
Branch point for: pkgsrc-2012Q2
Changes since 1.3: +4 -4
lines
Diff to previous 1.3 (colored)
Update www/ruby-actionpack32 to 3.2.6.
## Rails 3.2.6 (Jun 12, 2012) ##
* nil is removed from array parameter values
CVE-2012-2694
* Deprecate `:confirm` in favor of `':data => { :confirm => "Text" }'` option
for `button_to`, `button_tag`, `image_submit_tag`, `link_to` and
`submit_tag` helpers.
*Carlos Galdino*
* Allow to use mounted_helpers (helpers for accessing mounted engines) in
ActionView::TestCase. *Piotr Sarnacki*
* Include mounted_helpers (helpers for accessing mounted engines) in
ActionDispatch::IntegrationTest by default. *Piotr Sarnacki*
Revision 1.3 / (download) - annotate - [select for diffs], Sat Jun 2 01:40:25 2012 UTC (11 years, 10 months ago) by taca
Branch: MAIN
Changes since 1.2: +4 -4
lines
Diff to previous 1.2 (colored)
Update ruby-actionpack32 to 3.2.5.
3.2.4 had some regression related problem.
## Rails 3.2.4 (May 31, 2012) ##
* Deprecate old APIs for highlight, excerpt and word_wrap *Jeremy Walker*
* Deprecate `:disable_with` in favor of `'data-disable-with'` option for `button_to`, `button_tag` and `submit_tag` helpers.
*Carlos Galdino + Rafael Mendonça França*
* Deprecate `:mouseover` option for `image_tag` helper. *Rafael Mendonça França*
* Deprecate `button_to_function` and `link_to_function` helpers. *Rafael Mendonça França*
* Don't break Haml with textarea newline fix. GH #393, #4000, #5190, #5191
* Fix options handling on labels. GH #2492, #5614
* Added config.action_view.embed_authenticity_token_in_remote_forms to deal
with regression from 16ee611fa
* Set rendered_format when doing render :inline. GH #5632
* Fix the redirect when it receive blocks with arity of 1. Closes #5677
* Strip [nil] from parameters hash. Thanks to Ben Murphy for
reporting this! CVE-2012-2660
Revision 1.2 / (download) - annotate - [select for diffs], Sun Apr 29 13:00:28 2012 UTC (11 years, 11 months ago) by taca
Branch: MAIN
Changes since 1.1: +4 -4
lines
Diff to previous 1.1 (colored)
Update www/ruby-actionpack32 to 3.3.2.
## Rails 3.2.3 (unreleased) ##
* Remove the leading \n added by textarea on assert_select. *Santiago Pastorino*
* Fix #5632, render :inline set the proper rendered format. *Santiago Pastorino*
* Fix textarea rendering when using plugins like HAML. Such plugins encode the first newline character in the content. This issue was introduced in https://github.com/rails/rails/pull/5191 *James Coleman*
* Add `config.action_view.embed_authenticity_token_in_remote_forms` (defaults to true) which allows to set if authenticity token will be included by default in remote forms. If you change it to false, you can still force authenticity token by passing `:authenticity_token => true` in form options *Piotr Sarnacki*
* Do not include the authenticity token in forms where remote: true as ajax forms use the meta-tag value *DHH*
* Turn off verbose mode of rack-cache, we still have X-Rack-Cache to
check that info. Closes #5245. *Santiago Pastorino*
* Fix #5238, rendered_format is not set when template is not rendered. *Piotr Sarnacki*
* Upgrade rack-cache to 1.2. *José Valim*
* ActionController::SessionManagement is deprecated. *Santiago Pastorino*
* Since the router holds references to many parts of the system like engines, controllers and the application itself, inspecting the route set can actually be really slow, therefore we default alias inspect to to_s. *José Valim*
* Add a new line after the textarea opening tag. Closes #393 *Rafael Mendonça França*
* Always pass a respond block from to responder. We should let the responder to decide what to do with the given overridden response block, and not short circuit it. *sikachu*
* Fixes layout rendering regression from 3.2.2. *José Valim*
Revision 1.1.1.1 / (download) - annotate - [select for diffs] (vendor branch), Sun Mar 18 06:47:55 2012 UTC (12 years, 1 month ago) by taca
Branch: TNF
CVS Tags: pkgsrc-base,
pkgsrc-2012Q1-base,
pkgsrc-2012Q1
Changes since 1.1: +0 -0
lines
Diff to previous 1.1 (colored)
Importing ruby-actionpack32 version 3.2.2.
## Rails 3.2.2 (unreleased) ##
* Format lookup for partials is derived from the format in which the template is being rendered. Closes #5025 part 2 *Santiago Pastorino*
* Use the right format when a partial is missing. Closes #5025. *Santiago Pastorino*
* Default responder will now always use your overridden block in `respond_with` to render your response. *Prem Sichanugrist*
* check_box helper with :disabled => true will generate a disabled hidden field to conform with the HTML convention where disabled fields are not submitted with the form.
This is a behavior change, previously the hidden tag had a value of the disabled checkbox.
*Tadas Tamosauskas*
## Rails 3.2.1 (January 26, 2012) ##
* Documentation improvements.
* Allow `form.select` to accept ranges (regression). *Jeremy Walker*
* `datetime_select` works with -/+ infinity dates. *Joe Van Dyk*
## Rails 3.2.0 (January 20, 2012) ##
* Setting config.assets.logger to false turn off Sprockets logger *Guillermo Iguaran*
* Add `config.action_dispatch.default_charset` to configure default charset for ActionDispatch::Response. *Carlos Antonio da Silva*
* Deprecate setting default charset at controller level, use the new `config.action_dispatch.default_charset` instead. *Carlos Antonio da Silva*
* Deprecate ActionController::UnknownAction in favour of AbstractController::ActionNotFound. *Carlos Antonio da Silva*
* Deprecate ActionController::DoubleRenderError in favour of AbstractController::DoubleRenderError. *Carlos Antonio da Silva*
* Deprecate method_missing handling for not found actions, use action_missing instead. *Carlos Antonio da Silva*
* Deprecate ActionController#rescue_action, ActionController#initialize_template_class, and ActionController#assign_shortcuts.
These methods were not being used internally anymore and are going to be removed in Rails 4. *Carlos Antonio da Silva*
* Add config.assets.logger to configure Sprockets logger *Rafael França*
* Use a BodyProxy instead of including a Module that responds to
close. Closes #4441 if Active Record is disabled assets are delivered
correctly *Santiago Pastorino*
* Rails initialization with initialize_on_precompile = false should set assets_dir *Santiago Pastorino*
* Add font_path helper method *Santiago Pastorino*
* Depends on rack ~> 1.4.0 *Santiago Pastorino*
* Add :gzip option to `caches_page`. The default option can be configured globally using `page_cache_compression` *Andrey Sitnik*
* The ShowExceptions middleware now accepts a exceptions application that is responsible to render an exception when the application fails. The application is invoked with a copy of the exception in `env["action_dispatch.exception"]` and with the PATH_INFO rewritten to the status code. *José Valim*
* Add `button_tag` support to ActionView::Helpers::FormBuilder.
This support mimics the default behavior of `submit_tag`.
Example:
<%= form_for @post do |f| %>
<%= f.button %>
<% end %>
* Date helpers accept a new option, `:use_two_digit_numbers = true`, that renders select boxes for months and days with a leading zero without changing the respective values.
For example, this is useful for displaying ISO8601-style dates such as '2011-08-01'. *Lennart Fridén and Kim Persson*
* Make ActiveSupport::Benchmarkable a default module for ActionController::Base, so the #benchmark method is once again available in the controller context like it used to be *DHH*
* Deprecated implied layout lookup in controllers whose parent had a explicit layout set:
class ApplicationController
layout "application"
end
class PostsController < ApplicationController
end
In the example above, Posts controller will no longer automatically look up for a posts layout.
If you need this functionality you could either remove `layout "application"` from ApplicationController or explicitly set it to nil in PostsController. *José Valim*
* Rails will now use your default layout (such as "layouts/application") when you specify a layout with `:only` and `:except` condition, and those conditions fail. *Prem Sichanugrist*
For example, consider this snippet:
class CarsController
layout 'single_car', :only => :show
end
Rails will use 'layouts/single_car' when a request comes in `:show` action, and use 'layouts/application' (or 'layouts/cars', if exists) when a request comes in for any other actions.
* form_for with +:as+ option uses "#{action}_#{as}" as css class and id:
Before:
form_for(@user, :as => 'client') # => "<form class="client_new">..."
Now:
form_for(@user, :as => 'client') # => "<form class="new_client">..."
*Vasiliy Ermolovich*
* Allow rescue responses to be configured through a railtie as in `config.action_dispatch.rescue_responses`. Please look at ActiveRecord::Railtie for an example *José Valim*
* Allow fresh_when/stale? to take a record instead of an options hash *DHH*
* Assets should use the request protocol by default or default to relative if no request is available *Jonathan del Strother*
* Log "Filter chain halted as CALLBACKNAME rendered or redirected" every time a before callback halts *José Valim*
* You can provide a namespace for your form to ensure uniqueness of id attributes on form elements.
The namespace attribute will be prefixed with underscore on the generate HTML id. *Vasiliy Ermolovich*
Example:
<%= form_for(@offer, :namespace => 'namespace') do |f| %>
<%= f.label :version, 'Version' %>:
<%= f.text_field :version %>
<% end %>
* Refactor ActionDispatch::ShowExceptions. The controller is responsible for choosing to show exceptions when `consider_all_requests_local` is false.
It's possible to override `show_detailed_exceptions?` in controllers to specify which requests should provide debugging information on errors. The default value is now false, meaning local requests in production will no longer show the detailed exceptions page unless `show_detailed_exceptions?` is overridden and set to `request.local?`.
* Responders now return 204 No Content for API requests without a response body (as in the new scaffold) *José Valim*
* Added ActionDispatch::RequestId middleware that'll make a unique X-Request-Id header available to the response and enables the ActionDispatch::Request#uuid method. This makes it easy to trace requests from end-to-end in the stack and to identify individual requests in mixed logs like Syslog *DHH*
* Limit the number of options for select_year to 1000.
Pass the :max_years_allowed option to set your own limit.
*Libo Cannici*
* Passing formats or handlers to render :template and friends is deprecated. For example: *Nick Sutterer & José Valim*
render :template => "foo.html.erb"
Instead, you can provide :handlers and :formats directly as option:
render :template => "foo", :formats => [:html, :js], :handlers => :erb
* Changed log level of warning for missing CSRF token from :debug to :warn. *Mike Dillon*
* content_tag_for and div_for can now take the collection of records. It will also yield the record as the first argument if you set a receiving argument in your block *Prem Sichanugrist*
So instead of having to do this:
@items.each do |item|
content_tag_for(:li, item) do
Title: <%= item.title %>
end
end
You can now do this:
content_tag_for(:li, @items) do |item|
Title: <%= item.title %>
end
* send_file now guess the mime type *Esad Hajdarevic*
* Mime type entries for PDF, ZIP and other formats were added *Esad Hajdarevic*
* Generate hidden input before select with :multiple option set to true.
This is useful when you rely on the fact that when no options is set,
the state of select will be sent to rails application. Without hidden field
nothing is sent according to HTML spec *Bogdan Gusiev*
* Refactor ActionController::TestCase cookies *Andrew White*
Assigning cookies for test cases should now use cookies[], e.g:
cookies[:email] = 'user@example.com'
get :index
assert_equal 'user@example.com', cookies[:email]
To clear the cookies, use clear, e.g:
cookies.clear
get :index
assert_nil cookies[:email]
We now no longer write out HTTP_COOKIE and the cookie jar is
persistent between requests so if you need to manipulate the environment
for your test you need to do it before the cookie jar is created.
* ActionController::ParamsWrapper on ActiveRecord models now only wrap
attr_accessible attributes if they were set, if not, only the attributes
returned by the class method attribute_names will be wrapped. This fixes
the wrapping of nested attributes by adding them to attr_accessible.
Revision 1.1 / (download) - annotate - [select for diffs], Sun Mar 18 06:47:55 2012 UTC (12 years, 1 month ago) by taca
Branch: MAIN
Initial revision