The NetBSD Project

CVS log for pkgsrc/www/ruby-rack-protection/Makefile

[BACK] Up to [cvs.NetBSD.org] / pkgsrc / www / ruby-rack-protection

Request diff between arbitrary revisions


Default branch: MAIN


Revision 1.15 / (download) - annotate - [select for diffs], Fri Mar 20 16:29:38 2020 UTC (3 months, 2 weeks ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2020Q2-base, pkgsrc-2020Q2, pkgsrc-2020Q1-base, pkgsrc-2020Q1, HEAD
Changes since 1.14: +2 -2 lines
Diff to previous 1.14 (colored)

www/ruby-rack-protection: update to 2.0.8.1

Update ruby-rack-protection to 2.0.8.1.


### rack-protection

* Don't track the Accept-Language header by default [#1504](https://github.com/sinatra/sinatra/pull/1504) by Artem Chistyakov

Revision 1.14 / (download) - annotate - [select for diffs], Sun Sep 23 17:06:28 2018 UTC (21 months, 2 weeks ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2019Q4-base, pkgsrc-2019Q4, pkgsrc-2019Q3-base, pkgsrc-2019Q3, pkgsrc-2019Q2-base, pkgsrc-2019Q2, pkgsrc-2019Q1-base, pkgsrc-2019Q1, pkgsrc-2018Q4-base, pkgsrc-2018Q4, pkgsrc-2018Q3-base, pkgsrc-2018Q3
Changes since 1.13: +2 -2 lines
Diff to previous 1.13 (colored)

www/ruby-rack-protection: update to 2.0.4

2.0.4 / 2018-09-15

* Don't blow up when passing frozen string to send_file disposition #1137 by
  Andrew Selder

* Fix ubygems LoadError #1436 by Pavel Rosický

* Unescape regex captures #1446 by Jordan Owens

* Slight performance improvements for IndifferentHash #1427 by Mike Pastore

* Improve development support and documentation and source code by Will Yang,
  Jake Craige, Grey Baker and Guilherme Goettems Schneider

2.0.3 / 2018-06-09

* Fix the backports gem regression #1442 by Marc-André Lafortune

2.0.2 / 2018-06-05

* Escape invalid query parameters #1432 by Kunpei Sakai

	o The patch fixes CVE-2018-11627.

* Fix undefined method error for Sinatra::RequiredParams with hash key #1431
  by Arpit Chauhan

* Add xml content-types to valid html_types for Rack::Protection #1413 by
  Reenan Arbitrario

* Encode route parameters using :default_encoding setting #1412 by Brian
  m. Carlson

* Fix unpredictable behaviour from Sinatra::ConfigFile #1244 by John Hope

* Add Sinatra::IndifferentHash#slice #1405 by Shota Iguchi

* Remove status code 205 from drop body response #1398 by Shota Iguchi

* Ignore empty captures from params #1390 by Shota Iguchi

* Improve development support and documentation and source code by Zp Yuan,
  Andreas Finger, Olle Jonsson, Shota Iguchi, Nikita Bulai and Joshua O'Brien

Revision 1.13 / (download) - annotate - [select for diffs], Sat Mar 17 15:52:27 2018 UTC (2 years, 3 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2018Q2-base, pkgsrc-2018Q2, pkgsrc-2018Q1-base, pkgsrc-2018Q1
Changes since 1.12: +3 -3 lines
Diff to previous 1.12 (colored)

www/ruby-rack-protection: update to 2.0.1

0.2.1						2018/02/16

* enhanced path validation in Windows

Revision 1.12 / (download) - annotate - [select for diffs], Mon Jan 8 22:09:48 2018 UTC (2 years, 6 months ago) by taca
Branch: MAIN
Changes since 1.11: +1 -3 lines
Diff to previous 1.11 (colored)

www: allow use of ruby25

Revision 1.11 / (download) - annotate - [select for diffs], Sun Jul 30 22:32:28 2017 UTC (2 years, 11 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2017Q4-base, pkgsrc-2017Q4, pkgsrc-2017Q3-base, pkgsrc-2017Q3
Changes since 1.10: +2 -2 lines
Diff to previous 1.10 (colored)

Switch github HOMEPAGEs to https.

Revision 1.10 / (download) - annotate - [select for diffs], Sun Jun 18 13:48:54 2017 UTC (3 years ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2017Q2-base, pkgsrc-2017Q2
Changes since 1.9: +2 -2 lines
Diff to previous 1.9 (colored)

Add 24 to RUBY_VERSIONS_ACCEPTED.

Revision 1.9 / (download) - annotate - [select for diffs], Mon Jun 5 03:29:38 2017 UTC (3 years, 1 month ago) by taca
Branch: MAIN
Changes since 1.8: +3 -1 lines
Diff to previous 1.8 (colored)

Restrict ruby's version to 22 and 23.

Revision 1.8 / (download) - annotate - [select for diffs], Sun Jun 4 15:18:22 2017 UTC (3 years, 1 month ago) by taca
Branch: MAIN
Changes since 1.7: +3 -3 lines
Diff to previous 1.7 (colored)

Update ruby-rack-protection to 2.0.0.

No its own changes but here is related changes from Sinatra's changes.

 * Modernize Rack::Protection::ContentSecurityPolicy with CSP Level 2 and 3
   Directives #1202 by Glenn Rempe
 * Adds preload option to Rack:Protection:StrictTransport #1209 by Ed Robinson
 * rack-protection: Bundle StrictTransport, CookieTossing, and CSP #1267 by
   Mike Pastore

Revision 1.7 / (download) - annotate - [select for diffs], Fri Mar 13 17:26:00 2015 UTC (5 years, 3 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2017Q1-base, pkgsrc-2017Q1, pkgsrc-2016Q4-base, pkgsrc-2016Q4, pkgsrc-2016Q3-base, pkgsrc-2016Q3, pkgsrc-2016Q2-base, pkgsrc-2016Q2, pkgsrc-2016Q1-base, pkgsrc-2016Q1, pkgsrc-2015Q4-base, pkgsrc-2015Q4, pkgsrc-2015Q3-base, pkgsrc-2015Q3, pkgsrc-2015Q2-base, pkgsrc-2015Q2, pkgsrc-2015Q1-base, pkgsrc-2015Q1
Changes since 1.6: +2 -2 lines
Diff to previous 1.6 (colored)

Update ruby-rack-protection to 1.5.3.

* Discard invalid Referer header.
  If an invalid Referer header such as "http://example.com/bad|uri" is
  provided, ignore the value of it and skip using the Host header fallback.
* refactor instantiation.
* fix typoed header name.
* clarify reaction warning, test it.

Revision 1.6 / (download) - annotate - [select for diffs], Fri Mar 14 19:24:32 2014 UTC (6 years, 3 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2014Q4-base, pkgsrc-2014Q4, pkgsrc-2014Q3-base, pkgsrc-2014Q3, pkgsrc-2014Q2-base, pkgsrc-2014Q2, pkgsrc-2014Q1-base, pkgsrc-2014Q1
Changes since 1.5: +2 -2 lines
Diff to previous 1.5 (colored)

Update ruby-rack-protection to 1.5.2.

Changes are not available, please refer commit log:
<https://github.com/rkh/rack-protection/commits/master>.

Revision 1.5 / (download) - annotate - [select for diffs], Sun Mar 17 16:16:39 2013 UTC (7 years, 3 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2013Q4-base, pkgsrc-2013Q4, pkgsrc-2013Q3-base, pkgsrc-2013Q3, pkgsrc-2013Q2-base, pkgsrc-2013Q2, pkgsrc-2013Q1-base, pkgsrc-2013Q1
Changes since 1.4: +2 -2 lines
Diff to previous 1.4 (colored)

Update ruby-rack-protection to 1.5.0.

* Add a `report` reaction.
  This reaction does not halt the request, but leaves it up to the app to
  react on this information.  This allows e.g. frameworks to ignore failures
  in certain conditions.

Revision 1.4 / (download) - annotate - [select for diffs], Sun Mar 10 13:07:29 2013 UTC (7 years, 4 months ago) by taca
Branch: MAIN
Changes since 1.3: +2 -2 lines
Diff to previous 1.3 (colored)

Update ruby-rack-protection to 1.4.0.

* fix docs
* Introducing :use
* remove note about NoReferrer
*  xhr requests cannot be used for the json attack, fixes #39

Revision 1.3 / (download) - annotate - [select for diffs], Thu Jan 17 12:43:34 2013 UTC (7 years, 5 months ago) by taca
Branch: MAIN
Changes since 1.2: +2 -2 lines
Diff to previous 1.2 (colored)

Update ruby-rack-protection to 1.3.2.

No changes are available, Various bug fixes and improvement.

Revision 1.2 / (download) - annotate - [select for diffs], Sun Jan 8 03:01:22 2012 UTC (8 years, 6 months ago) by obache
Branch: MAIN
CVS Tags: pkgsrc-2012Q4-base, pkgsrc-2012Q4, pkgsrc-2012Q3-base, pkgsrc-2012Q3, pkgsrc-2012Q2-base, pkgsrc-2012Q2, pkgsrc-2012Q1-base, pkgsrc-2012Q1
Changes since 1.1: +2 -2 lines
Diff to previous 1.1 (colored)

Update ruby-rack-protection to 1.2.0.

Changes:
* Show warnings for JsonCsrtf attacks.
* do not enable parameter escaping by default, fixes #8.
* Use more specific namespace declaration in Rack::Builder configuration.
* NotimpelentedError typo fix
* add test that makes sure passingin on :track option works. related to #6.
* deal with PATH_INFO being nil, fixes #7.
* do not track HTTP_VERSION, fixes #6.

Revision 1.1.1.1 / (download) - annotate - [select for diffs] (vendor branch), Fri Dec 16 15:28:34 2011 UTC (8 years, 6 months ago) by taca
Branch: TNF
CVS Tags: pkgsrc-base, pkgsrc-2011Q4-base, pkgsrc-2011Q4
Changes since 1.1: +0 -0 lines
Diff to previous 1.1 (colored)

Importing www/ruby-rack-protection pacakge version 1.1.4.


Rack::Protection

You should use protection!

This gem protects against typical web attacks.
Should work for all Rack apps, including Rails.


Revision 1.1 / (download) - annotate - [select for diffs], Fri Dec 16 15:28:34 2011 UTC (8 years, 6 months ago) by taca
Branch: MAIN

Initial revision

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.




CVSweb <webmaster@jp.NetBSD.org>