- 11 2月, 2013 1 次提交
-
-
由 Tobias Kraze 提交于
-
- 10 2月, 2013 1 次提交
-
-
由 Aaron Patterson 提交于
-
- 06 2月, 2013 2 次提交
-
-
由 Xavier Noria 提交于
Docs: Fixed bad exists? documentation.
-
由 Kelly Stannard 提交于
Base#exists? does not actually take options like finder methods. Trying to use what the documentation suggests will return a PG error because it will look for a column named 'conditions'. I changed the documentation to reflect how the exists? method actually works.
-
- 02 2月, 2013 2 次提交
-
-
由 Rafael Mendonça França 提交于
Closes #9144 Fixes #9145
-
由 Morgan Currie 提交于
use the decimal HTML escape code for single quotes instead of the hex one so webkit-based browsers properly translate the code in form fields
-
- 29 1月, 2013 4 次提交
-
-
由 Carlos Antonio da Silva 提交于
Bump version on 2.3 gemspecs too.
-
由 Pietro Monteiro 提交于
-
由 Aaron Patterson 提交于
-
由 Michael Koziarski 提交于
Fixes CVE-2013-0333. The ActiveSupport::JSON::Backends::Yaml class is present but the functionality has been removed entirely.
-
- 25 1月, 2013 5 次提交
-
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
commit 9ef905f1 Author: Rafael Mendonça França <rafaelmfranca@gmail.com> Date: Tue Aug 7 22:38:40 2012 -0300 Fix tests about single quote escaping commit 780a7187 Author: Santiago Pastorino <santiago@wyeworks.com> Date: Tue Jul 31 22:25:54 2012 -0300 html_escape should escape single quotes https://www.owasp.org/index.php/XSS_%28Cross_Site_Scripting%29_Prevention_Cheat_Sheet#RULE_.231_-_HTML_Escape_Before_Inserting_Untrusted_Data_into_HTML_Element_Content Closes #7215 Conflicts: actionpack/test/controller/new_base/render_template_test.rb actionpack/test/template/asset_tag_helper_test.rb actionpack/test/template/erb_util_test.rb actionpack/test/template/javascript_helper_test.rb actionpack/test/template/template_test.rb activesupport/lib/active_support/core_ext/string/output_safety.rb activesupport/test/core_ext/string_ext_test.rb railties/test/application/assets_test.rb
-
由 Santiago Pastorino 提交于
Thanks to Marek Labos & Nethemba
-
由 Aaron Patterson 提交于
-
- 23 1月, 2013 2 次提交
-
-
由 Steve Klabnik 提交于
Add .gemspec files to 2-3-stable to help Bundler
-
由 John F. Douthat 提交于
-
- 21 1月, 2013 1 次提交
-
-
由 Ernie Miller 提交于
-
- 18 1月, 2013 1 次提交
-
-
由 Jeremy Kemper 提交于
Rack 1.1.3 also changes the Set-Cookie header to expects a newline-delimited string instead of an Array, which breaks Rails 2.3's expectations in a variety of ways. This reverts commit 27a508c9. Conflicts: actionpack/Rakefile
-
- 09 1月, 2013 2 次提交
-
-
由 Aaron Patterson 提交于
-
由 Jeremy Kemper 提交于
-
- 03 1月, 2013 2 次提交
-
-
由 Aaron Patterson 提交于
Backported rails 2.3 fix for CVE-2012-2695
-
由 Mina Naguib 提交于
-
- 24 12月, 2012 1 次提交
-
-
由 Aaron Patterson 提交于
-
- 14 6月, 2012 1 次提交
-
-
由 Justin Collins 提交于
-
- 29 3月, 2012 2 次提交
-
-
由 Xavier Noria 提交于
Doc fixes in 2.3: validates_length_of
-
由 Chris Strom 提交于
-
- 31 12月, 2011 2 次提交
-
-
由 José Valim 提交于
bump up rack version to the one that includes the Hash DoS fix
-
由 Akira Matsuda 提交于
-
- 30 12月, 2011 1 次提交
-
-
由 Aaron Patterson 提交于
Fix bug in `ActionController::Request#remote_ip`
-
- 27 12月, 2011 1 次提交
-
-
由 Daniel Schierbeck 提交于
If HTTP_X_FORWARDED_FOR only contains whitespace, don't try to extract a list of IP addresses from it.
-
- 17 8月, 2011 7 次提交
-
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
-
- 05 8月, 2011 1 次提交
-
-
由 Aaron Patterson 提交于
-
- 28 7月, 2011 1 次提交
-
-
由 Xavier Noria 提交于
-