github/rails
1
1
Fork 0
mirror of https://github.com/github/rails.git synced 2026-04-26 03:00:59 -04:00
Code Issues Packages Projects Releases Wiki Activity
28,261 Commits 34 Branches 105 Tags
74e59ea8b674fac08a6ea4da03e58e29fc57a709
Commit Graph

883 Commits

Author SHA1 Message Date
claudiob
0e56c1de70 Add release dates to documentation [ci skip] 
Set "March 18, 2013" as the release date for 3.2.13
 2013-03-18 14:51:46 -07:00
Aaron Patterson
afcd01bf25 Merge branch '3-2-13' into 3-2-stable 
* 3-2-13:
  bumping to 3.2.13
  fix protocol checking in sanitization [CVE-2013-1857]
  JDOM XXE Protection [CVE-2013-1856]
  fix incorrect ^$ usage leading to XSS in sanitize_css [CVE-2013-1855]
  stop calling to_sym when building arel nodes [CVE-2013-1854]
  Merge pull request #9616 from exviva/multiple_select_name_double_square_brackets
  bumping to rc2
  Revert "Merge pull request #8209 from senny/backport_8176"
  Freeze columns only once per Result
  Preparing for 3.2.13.rc1 release
  Update CHANGELOGs for 3.2.13 release.

Conflicts:
	actionmailer/CHANGELOG.md
	actionpack/CHANGELOG.md
	activemodel/CHANGELOG.md
	activeresource/CHANGELOG.md
	activesupport/CHANGELOG.md
	railties/CHANGELOG.md
 2013-03-18 10:17:04 -07:00
Aaron Patterson
a4b5582772 bumping to 3.2.13 2013-03-18 09:23:04 -07:00
Aaron Patterson
ccf256d8dc bumping to rc2 2013-03-06 15:05:13 -08:00
Steve Klabnik
51ae6f4bb1 Update CHANGELOGs for 3.2.13.rc1 2013-03-05 11:22:55 -08:00
Steve Klabnik
5ca59b02d1 Preparing for 3.2.13.rc1 release 2013-02-27 12:19:06 -08:00
Steve Klabnik
23434f6162 Update CHANGELOGs for 3.2.13 release. 2013-02-27 10:06:45 -08:00
joernchen of Phenoelit
01b63c7bc7 Update activemodel/CHANGELOG.md 
Fixed a typo
 2013-02-16 20:01:54 +01:00
Rafael Mendonça França
de83b017a9 Do not put the version in unreleased changes [ci skip] 2013-02-14 15:46:28 -02:00
Rafael Mendonça França
b9720355d0 Fix the CHANGELOG headers [ci skip] 2013-02-14 15:36:45 -02:00
Jon McCartie
f15581b1ba Fixed changelog typos [ci skip] 2013-02-14 09:36:33 -06:00
Carlos Antonio da Silva
c0022f8d88 Add note about attr_protected fix in Active Model changelog [ci skip] 2013-02-11 23:41:18 -02:00
Carlos Antonio da Silva
e0da95bd7e Update changelogs with version/release dates [ci skip] 2013-02-11 23:33:01 -02:00
Aaron Patterson
f1efecfc3f Merge branch '3-2-sec' into 3-2-stable 
* 3-2-sec:
  bumping version
  remove ruby-prof
  Fix issue with attr_protected where malformed input could circumvent protection
  fixing call to columns hash. run the damn tests when you backport!
  Bump rack dependency to 1.4.5
  Merge pull request #9224 from dylanahsmith/bigdecimal-takes-string
  Merge pull request #9208 from dylanahsmith/3-2-mysql-quote-numeric

Conflicts:
	Gemfile
	activerecord/CHANGELOG.md
 2013-02-11 10:19:31 -08:00
Aaron Patterson
1dccd44a5c bumping version 2013-02-10 19:05:41 -08:00
joernchen of Phenoelit
060bb7250b Fix issue with attr_protected where malformed input could circumvent 
protection

Fixes: CVE-2013-0276
 2013-02-09 17:00:25 -08:00
Carlos Antonio da Silva
11f5debcd5 Update changelogs with release date [ci skip] 2013-01-09 20:06:06 -02:00
Aaron Patterson
48810a52df Merge branch '3-2-sec' into 3-2-secmerge 
* 3-2-sec:
  bumping version
  CVE-2013-0156: Safe XML params parsing. Doesn't allow symbols or yaml.
  * Strip nils from collections on JSON and XML posts. [CVE-2013-0155] * dealing with empty hashes. Thanks Damien Mathieu
  Avoid Rack security warning no secret provided

Conflicts:
	actionpack/CHANGELOG.md
	activerecord/CHANGELOG.md
	activesupport/CHANGELOG.md
 2013-01-08 11:37:48 -08:00
Aaron Patterson
746dbd89fa bumping version 2013-01-08 11:10:00 -08:00
Miguel
2e4df2a289 Merge tag 'v3.2.10' into 3-2-stable 
Latest released tag was not fully merged into the stable branch (missed version bumping)
 2013-01-03 11:54:21 +01:00
Rafael Mendonça França
f4dc7e3676 Add release date of 3.2.10 
Fix format and wrong changelog entry
 2013-01-02 18:51:13 -03:00
Aaron Patterson
8ba3df046f bumping version to 3.2.10 2012-12-23 13:36:49 -08:00
Aaron Patterson
2aa70bd61a Merge branch '3-2-sec' into 3-2-secmerge 
* 3-2-sec:
  CVE-2012-5664 options hashes should only be extracted if there are extra parameters
  updating changelog
  updating the changelogs
  updating the changelog for the CVE
  Add release date of Rails 3.2.9 to documentation

Conflicts:
	actionmailer/CHANGELOG.md
	actionpack/CHANGELOG.md
	activemodel/CHANGELOG.md
	activerecord/CHANGELOG.md
	activeresource/CHANGELOG.md
	activesupport/CHANGELOG.md
	railties/CHANGELOG.md
 2012-12-23 11:52:05 -08:00
Aaron Patterson
6727ac6a6b updating the changelogs 2012-12-23 10:59:39 -08:00
claudiob
acc2aa4c60 Add release date of Rails 3.2.9 to documentation 
Conflicts:
	actionpack/CHANGELOG.md
	activerecord/CHANGELOG.md
	activesupport/CHANGELOG.md
 2012-12-23 10:59:19 -08:00
SHIBATA Hiroshi
127411fdf3 handled respond_to? with private methods 2012-12-03 22:07:14 +09:00
Carlos Antonio da Silva
a50ab21cd1 Use 1.8 hash style in xml serialization test 2012-11-30 11:29:41 -02:00
Rafael Mendonça França
e8c360527d Merge pull request #8352 from steveklabnik/update_7858 
Specify type of singular assication during serialization
Conflicts:
	activemodel/CHANGELOG.md
	activemodel/test/cases/serializers/xml_serialization_test.rb
 2012-11-29 13:41:38 -02:00
claudiob
69455e7f6a Add release date of Rails 3.2.9 to documentation 2012-11-12 16:07:36 -08:00
Santiago Pastorino
b33cf74a49 Bump to 3.2.9 2012-11-12 13:19:09 -02:00
Santiago Pastorino
db1d5f4071 Bump up to 3.2.9.rc3 2012-11-09 15:51:03 -02:00
Santiago Pastorino
de3dff3170 Bump to 3.2.9.rc2 2012-11-01 15:37:58 -02:00
Santiago Pastorino
fdfb3990cd Bump to 3.2.9.rc1 2012-10-29 14:38:23 -02:00
Jeremy Kemper
4b1a7bcc4c Merge pull request #8038 from frodsan/fix_am_serializers_xml_dependency 
Fix AM::Serializers::Xml dependency
 2012-10-27 12:56:28 -02:00
Yves Senn
1f73a53071 active_model/validations requires necessary files to run 2012-10-18 14:51:16 +02:00
Carlos Antonio da Silva
d65adc7425 Update Active Model xml serialization test to reflect a change in builder 
Due to a change in builder, nil values and empty strings now generates
closed tags, so instead of this:

    <pseudonyms nil=\"true\"></pseudonyms>

It generates this:

    <pseudonyms nil=\"true\"/>

Document this change in Rails so that people can track it down easily if
necessary.

Conflicts:
	activemodel/CHANGELOG.md
 2012-09-07 13:18:23 -03:00
Xavier Noria
8efced68be CHANGELOGs are now per branch 
Check 810a50d for the rationale.
 2012-08-28 21:39:32 +02:00
Santiago Pastorino
64146cf7ba Bump to 3.2.8 2012-08-09 16:26:36 -03:00
Santiago Pastorino
ddedf5d88e Add release date to CHANGELOGs 2012-08-09 16:25:43 -03:00
Santiago Pastorino
65b5e35e89 Bump to 3.2.8.rc2 2012-08-03 11:01:50 -03:00
Santiago Pastorino
fcccbacec1 Bump to 3.2.8.rc1 2012-08-01 17:50:48 -03:00
Santiago Pastorino
6764b7ba23 Add missing CHANGELOG entries 
[ci skip]
 2012-08-01 14:38:09 -03:00
Aaron Patterson
d1b9cf2d48 updating release date 2012-07-26 14:34:31 -07:00
Aaron Patterson
21bcac1998 bumping to 3.2.7 2012-07-26 14:26:23 -07:00
Aaron Patterson
753c546df4 updating the version 2012-07-23 14:41:02 -07:00
Aaron Patterson
125dfdfcf7 updating changelogs 2012-07-23 14:26:16 -07:00
Rafael Mendonça França
089371ac23 validates_inclusion_of and validates_exclusion_of now accept 
`:within` option as alias of `:in` as documented.

Fix #7118
 2012-07-20 14:19:26 -03:00
Francesco Rodríguez
eed1cfe058 Fix build 2012-06-12 17:10:10 -05:00
Aaron Patterson
10cdbbc56b Merge branch '3-2-stable-rel' into 3-2-stable 
* 3-2-stable-rel:
  updating changelogs
  bumping version numbers
  updating changelogs with security fixes
  updating changelogs
  Array parameters should not contain nil values.
  Additional fix for CVE-2012-2661
 2012-06-12 14:25:27 -07:00
Aaron Patterson
8381d398ce updating changelogs 2012-06-12 14:02:40 -07:00