Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Commits on Jun 11, 2012
  1. @tenderlove

    bumping to 3.0.14

    tenderlove authored
Commits on May 31, 2012
  1. @tenderlove

    bumping to 3.0.13

    tenderlove authored
Commits on May 28, 2012
  1. @tenderlove

    bumping to 3.0.13.rc1

    tenderlove authored
Commits on Mar 2, 2012
  1. @carlosantoniodasilva @drogus

    Stop SafeBuffer#clone_empty from issuing warnings

    carlosantoniodasilva authored drogus committed
    Logic in clone_empty method was dealing with old @dirty variable, which
    has changed by @html_safe in this commit:
    139963c
    
    This was issuing a "not initialized variable" warning - related to:
    #5237
    
    The logic applied by this method is already handled by the [] override,
    so there is no need to reset the variable here.
Commits on Mar 1, 2012
  1. @tenderlove

    bumping to 3.0.12

    tenderlove authored
  2. @tenderlove

    Merge branch '3-0-stable-security' into 3-0-12

    tenderlove authored
    * 3-0-stable-security:
      Ensure [] respects the status of the buffer.
      use AS::SafeBuffer#clone_empty for flushing the output_buffer
      add AS::SafeBuffer#clone_empty
      fix output safety issue with select options
  3. @josevalim @tenderlove

    Ensure [] respects the status of the buffer.

    josevalim authored tenderlove committed
Commits on Feb 22, 2012
  1. @tenderlove

    updating RAILS_VERSION

    tenderlove authored
  2. @jonleighton
Commits on Feb 21, 2012
  1. @amatsuda @tenderlove

    add AS::SafeBuffer#clone_empty

    amatsuda authored tenderlove committed
Commits on Jan 24, 2012
  1. @tenderlove

    Merge pull request #4514 from brainopia/update_timezone_offets

    tenderlove authored
    Update time zone offset information
Commits on Dec 3, 2011
  1. @tenderlove @sumbach

    `load` should also return the value from `super`

    tenderlove authored sumbach committed
  2. @tenderlove @sumbach
Commits on Nov 18, 2011
  1. @jonleighton
Commits on Nov 1, 2011
  1. @joshk @tenderlove

    Remove a circular require in AS deprecations. This is safe as AS depr…

    joshk authored tenderlove committed
    …ecations is autoloaded as needed.
Commits on Oct 5, 2011
  1. @amatsuda @spastorino

    ruby193: String#prepend is also unsafe

    amatsuda authored spastorino committed
  2. @amatsuda @spastorino

    override unsafe methods only if defined on String

    amatsuda authored spastorino committed
Commits on Oct 3, 2011
  1. @jeremy

    Merge pull request #2801 from jeremyevans/patch-1

    jeremy authored
    Fix obviously breakage of Time.=== for Time subclasses
Commits on Aug 16, 2011
  1. @tenderlove

    Merge branch '3-0-10' into 3-0-stable

    tenderlove authored
    * 3-0-10:
      bumping rails to 3.0.10
      properly subsituting bad utf8 characters
      Tags with invalid names should also be stripped in order to prevent XSS attacks.  Thanks Sascha Depold for the report.
      prevent sql injection attacks by escaping quotes in column names
      Properly escape glob characters.
      bumping to 3.0.10.rc1
      more changelog updates
      updating CHANGELOGs
  2. @tenderlove

    bumping rails to 3.0.10

    tenderlove authored
  3. @tenderlove
Commits on Aug 8, 2011
  1. @jasoncodes @tenderlove
Commits on Aug 6, 2011
  1. @spastorino

    Merge pull request #2450 from guilleiguaran/activesupport-gzip-1.8

    spastorino authored
    Fix ActiveSupport::Gzip under Ruby 1.8.7. Closes #2416
Commits on Aug 5, 2011
  1. @tenderlove

    bumping to 3.0.10.rc1

    tenderlove authored
Commits on Aug 1, 2011
  1. @spastorino

    Merge pull request #2393 from bdurand/fix_cache_read_multi

    spastorino authored
    Fix ArgumentError in ActiveSupport::Cache::CacheStore.read_multi
Commits on Jul 29, 2011
  1. @tenderlove
Commits on Jun 28, 2011
  1. @tenderlove

    Fix JSON decoding of newline character with Yaml backend [#3479 state…

    Maxime RETY authored tenderlove committed
    …:resolved]
    
    Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
Commits on Jun 20, 2011
  1. @josevalim
Commits on Jun 19, 2011
  1. @bensie
Commits on Jun 16, 2011
  1. @tenderlove

    Merge branch '3-0-9' into 3-0-stable

    tenderlove authored
    * 3-0-9:
      Preparing for 3.0.9 release
      avoid false positives caused by release candidates
      Preparing for 3.0.9.rc5 release
      bumping to rc4
      Make sure that we don't perform in-place mutation on SafeBuffer string
      Update CHANGELOG to mention the json_escape change
      Ensure number helpers can handle HTML safe strings - closes #1597.
      bumping to rc3 since syck is not playing nicely
      bumping to 3.0.9.rc2
      ensuring that json_escape returns html safe strings when passed an html safe string
      Make sure `escape_javascript` return `SafeBuffer` if the incoming argument is already html_safe
      Fix issue #1598 by adding a dependency to the RDoc gem.
      bumping to 3.0.9.rc1
  2. @tenderlove

    Preparing for 3.0.9 release

    tenderlove authored
Commits on Jun 13, 2011
  1. @pixeltrix
Commits on Jun 12, 2011
  1. @tenderlove
  2. @tenderlove

    bumping to rc4

    tenderlove authored
  3. @tenderlove

    Merge branch '3-0-stable' into 3-0-9

    tenderlove authored
    * 3-0-stable:
      Add support for using an ARCONFIG environment variable to specify the location of the config.yml file for running the tests
      Define ActiveSupport#to_param as to_str - closes #1663
      Revert "Make sure that we don't perform in-place mutation on SafeBuffer string"
      Make sure that we don't perform in-place mutation on SafeBuffer string
      Update CHANGELOG to mention the json_escape change
      Ensure number helpers can handle HTML safe strings - closes #1597.
      ensuring that json_escape returns html safe strings when passed an html safe string
      Fix issue #1598 by adding a dependency to the RDoc gem.
      Make sure `escape_javascript` return `SafeBuffer` if the incoming argument is already html_safe
    
    Conflicts:
    	actionpack/CHANGELOG
Something went wrong with that request. Please try again.