- 25 1月, 2013 5 次提交
-
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
commit 9ef905f1 Author: Rafael Mendonça França <rafaelmfranca@gmail.com> Date: Tue Aug 7 22:38:40 2012 -0300 Fix tests about single quote escaping commit 780a7187 Author: Santiago Pastorino <santiago@wyeworks.com> Date: Tue Jul 31 22:25:54 2012 -0300 html_escape should escape single quotes https://www.owasp.org/index.php/XSS_%28Cross_Site_Scripting%29_Prevention_Cheat_Sheet#RULE_.231_-_HTML_Escape_Before_Inserting_Untrusted_Data_into_HTML_Element_Content Closes #7215 Conflicts: actionpack/test/controller/new_base/render_template_test.rb actionpack/test/template/asset_tag_helper_test.rb actionpack/test/template/erb_util_test.rb actionpack/test/template/javascript_helper_test.rb actionpack/test/template/template_test.rb activesupport/lib/active_support/core_ext/string/output_safety.rb activesupport/test/core_ext/string_ext_test.rb railties/test/application/assets_test.rb
-
由 Santiago Pastorino 提交于
Thanks to Marek Labos & Nethemba
-
由 Aaron Patterson 提交于
-
- 23 1月, 2013 2 次提交
-
-
由 Steve Klabnik 提交于
Add .gemspec files to 2-3-stable to help Bundler
-
由 John F. Douthat 提交于
-
- 21 1月, 2013 1 次提交
-
-
由 Ernie Miller 提交于
-
- 18 1月, 2013 1 次提交
-
-
由 Jeremy Kemper 提交于
Rack 1.1.3 also changes the Set-Cookie header to expects a newline-delimited string instead of an Array, which breaks Rails 2.3's expectations in a variety of ways. This reverts commit 27a508c9. Conflicts: actionpack/Rakefile
-
- 09 1月, 2013 2 次提交
-
-
由 Aaron Patterson 提交于
-
由 Jeremy Kemper 提交于
-
- 03 1月, 2013 2 次提交
-
-
由 Aaron Patterson 提交于
Backported rails 2.3 fix for CVE-2012-2695
-
由 Mina Naguib 提交于
-
- 24 12月, 2012 1 次提交
-
-
由 Aaron Patterson 提交于
-
- 14 6月, 2012 1 次提交
-
-
由 Justin Collins 提交于
-
- 29 3月, 2012 2 次提交
-
-
由 Xavier Noria 提交于
Doc fixes in 2.3: validates_length_of
-
由 Chris Strom 提交于
-
- 31 12月, 2011 2 次提交
-
-
由 José Valim 提交于
bump up rack version to the one that includes the Hash DoS fix
-
由 Akira Matsuda 提交于
-
- 30 12月, 2011 1 次提交
-
-
由 Aaron Patterson 提交于
Fix bug in `ActionController::Request#remote_ip`
-
- 27 12月, 2011 1 次提交
-
-
由 Daniel Schierbeck 提交于
If HTTP_X_FORWARDED_FOR only contains whitespace, don't try to extract a list of IP addresses from it.
-
- 17 8月, 2011 7 次提交
-
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
-
由 Aaron Patterson 提交于
-
- 05 8月, 2011 1 次提交
-
-
由 Aaron Patterson 提交于
-
- 28 7月, 2011 1 次提交
-
-
由 Xavier Noria 提交于
-
- 17 6月, 2011 3 次提交
-
-
由 José Valim 提交于
Fix OrderedHash merging with block given.
-
由 Andrey Voronkov 提交于
-
由 Andrey Voronkov 提交于
-
- 10 6月, 2011 1 次提交
-
-
由 Brian Cardarella 提交于
Remove deprecation warning for ActiveRecord::Errors#generate_message. This is the same API that ActiveModel ended up using and that won't be changing.
-
- 07 6月, 2011 1 次提交
-
-
由 Aaron Patterson 提交于
-
- 25 5月, 2011 1 次提交
-
-
由 Ryan Davis 提交于
+ Fixed deprecated usage in gemspecs. Bumped the version to 2.3.12 so I could test locally with actual installs. If this is bad form for this project, please beat me up and I'll split them out.
-
- 13 5月, 2011 4 次提交
-
-
由 Ryan Davis 提交于
This may cause problems. I dunno. The real solution is to get rid of all of this mess and use gem paths properly.
-
由 Ryan Davis 提交于
name and requirement. Better, just activate the spec for the dependency (1.8 only)
-
由 Ryan Davis 提交于
Removed buggy GemDependency#requirement override. Overrides should NEVER change the semantics of the parent (returning nil if default).
-
由 Ryan Davis 提交于
-