Commits

Show all
Author Commit Message Labels Comments Date
tenderlove
bumping to 2.3.15 crygun
Jeremy Kemper
CVE-2013-0156: Safe XML params parsing. Doesn't allow symbols or yaml.
tenderlove
Merge pull request #6722 from adgear/2-3-stable
Mina Naguib
Merge remote-tracking branch 'rails/2-3-stable' into 2-3-stable
tenderlove
CVE-2012-5664 options hashes should only be extracted if there are extra parameters
Justin Collins
Fix SQL injection via nested hashes in conditions
Xavier Noria
Merge pull request #5653 from eee-c/patch-1
Chris Strom
Better minimum validates_length_of examples (adapted from master).
José Valim
Merge pull request #4247 from amatsuda/hashdos_23
Akira Matsuda
bump up rack version to the one that includes the Hash DoS fix
tenderlove
Merge pull request #4202 from dasch/request-remote-ip
Daniel Schierbeck
Make Request#remote_ip return nil when HTTP_X_FORWARDED_FOR is empty
tenderlove
fixing utf8 escape vulerability
tenderlove
fixing strip tags vulnerability
tenderlove
fixing sql injection problem
tenderlove
2.3.14. yay. :'(
tenderlove
bumping to 2.3.13
tenderlove
fixing response splitting problem
tenderlove
adding notification for rdoc
tenderlove
we should not ignore all gems in here
Xavier Noria
contrib app minor tweak
José Valim
Merge pull request #1740 from Antiarchitect/2-3-stable
Andrey Voronkov
Added tests for OrderedHash merging with block.
Andrey Voronkov
Fix OrderedHash merging with block given.
bcardarella
Remove deprecation warning for ActiveRecord::Errors#generate_message. This is the same API that ActiveModel ended up using and that won't be changing.
tenderlove
find the spec from the source index, then activate it
zenspider
+ Switched to newer rdoc and gem package tasks (and their requires).
zenspider
Removed the bulk of the deprecations by simply not calling refresh.
zenspider
Fixed buggy gem activation. Don't pass a dependency to gem, pass the
zenspider
Removed buggy GemDependency#requirement override. Overrides should NEVER change the semantics of the parent (returning nil if default).
  1. Prev
  2. Next