Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Commits on Mar 2, 2012
  1. @carlosantoniodasilva @drogus

    Stop SafeBuffer#clone_empty from issuing warnings

    carlosantoniodasilva authored drogus committed
    Logic in clone_empty method was dealing with old @dirty variable, which
    has changed by @html_safe in this commit:
    139963c
    
    This was issuing a "not initialized variable" warning - related to:
    #5237
    
    The logic applied by this method is already handled by the [] override,
    so there is no need to reset the variable here.
Commits on Mar 1, 2012
  1. @josevalim @tenderlove

    Ensure [] respects the status of the buffer.

    josevalim authored tenderlove committed
Commits on Feb 21, 2012
  1. @amatsuda @tenderlove

    add AS::SafeBuffer#clone_empty

    amatsuda authored tenderlove committed
Commits on Jan 24, 2012
  1. @tenderlove

    Merge pull request #4514 from brainopia/update_timezone_offets

    tenderlove authored
    Update time zone offset information
Commits on Nov 1, 2011
  1. @joshk @tenderlove

    Remove a circular require in AS deprecations. This is safe as AS depr…

    joshk authored tenderlove committed
    …ecations is autoloaded as needed.
Commits on Oct 5, 2011
  1. @amatsuda @spastorino

    ruby193: String#prepend is also unsafe

    amatsuda authored spastorino committed
  2. @amatsuda @spastorino

    override unsafe methods only if defined on String

    amatsuda authored spastorino committed
Commits on Oct 3, 2011
  1. @jeremy

    Merge pull request #2801 from jeremyevans/patch-1

    jeremy authored
    Fix obviously breakage of Time.=== for Time subclasses
Commits on Aug 16, 2011
  1. @tenderlove

    Merge branch '3-0-10' into 3-0-stable

    tenderlove authored
    * 3-0-10:
      bumping rails to 3.0.10
      properly subsituting bad utf8 characters
      Tags with invalid names should also be stripped in order to prevent XSS attacks.  Thanks Sascha Depold for the report.
      prevent sql injection attacks by escaping quotes in column names
      Properly escape glob characters.
      bumping to 3.0.10.rc1
      more changelog updates
      updating CHANGELOGs
  2. @tenderlove
Commits on Aug 8, 2011
  1. @jasoncodes @tenderlove
Commits on Jun 20, 2011
  1. @josevalim
Commits on Jun 19, 2011
  1. @bensie
Commits on Jun 12, 2011
  1. @pixeltrix
Commits on Jun 9, 2011
  1. @tenderlove
Commits on Jun 7, 2011
  1. @NZKoz @tenderlove

    Ensure that the strings returned by SafeBuffer#gsub and friends aren'…

    NZKoz authored tenderlove committed
    …t considered html_safe?
    
    Also make sure that the versions of those methods which modify a string in place such as gsub! can't be called on safe buffers at all.
Commits on May 25, 2011
  1. @tenderlove
  2. @tenderlove
Commits on May 13, 2011
  1. @josevalim

    Fix bug with empty CDATA not being handled in Hash.from_xml

    Bradley Harris authored josevalim committed
    Signed-off-by: José Valim <jose.valim@gmail.com>
Commits on Apr 14, 2011
  1. @indirect @dhh

    files are a special case and need whitespace to be significant

    indirect authored dhh committed
  2. @indirect @dhh

    gsub is not needed (thanks @fxn!)

    indirect authored dhh committed
  3. @indirect @dhh

    attributes no longer disappear if a tag contains whitespace

    indirect authored dhh committed
    old:
    Hash.from_xml("<tag foo='bar'>\n</tag>")
    => {"tag"=>"\n"}
    
    new:
    Hash.from_xml("<tag foo='bar'>\n</tag>")
    => {"tag"=>{"foo"=>"bar", "__content__"=>"\n"}
Commits on Mar 12, 2011
  1. @fxn

    adds a couple of missing AS dependencies

    Rolf Timmermans authored fxn committed
Commits on Feb 28, 2011
  1. @joshk @jeremy

    updated Time, Date and DateTime current methods in AS to use Time.zon…

    joshk authored jeremy committed
    …e and not Time.zone_default.
    
    [#6410 state:committed]
Commits on Jan 12, 2011
  1. @joshk @spastorino

    In AS, only inflector/methods is need in proxy_wrappers.rb, as well a…

    joshk authored spastorino committed
    …s date, date_time, and time conversions.rb. This fixes an issue when requiring json and AS saying that i18n is also required.
    
    Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
Commits on Jan 10, 2011
  1. @tenderlove

    adding to_d to BigDecimal

    tenderlove authored
Commits on Nov 24, 2010
  1. @raggi @tenderlove

    Don't depend on rubygems loading thread (for Mutex)

    raggi authored tenderlove committed
Commits on Nov 20, 2010
  1. @fxn

    applies API conventions to the RDoc of json_encode

    fxn authored
    * Examples running with the text are preferred over separate Example
      sections.
    * No need to call puts, in # => we show the return value, not STDOUT.
    * Say explicitly that double quotes are removed.
    * Specify that we are talking \uXXX, rather than, say, HTML entities.
  2. @neerajdotname @fxn
Commits on Nov 7, 2010
  1. @NZKoz
  2. @NZKoz

    Added support for Erubis <%== tag

    NZKoz authored
    <%== x %> is syntactic sugar for <%= raw(x) %>
    
    Signed-off-by: Michael Koziarski <michael@koziarski.com>
    [#5918 status:committed]
    
    Conflicts:
    
    	actionpack/test/controller/new_base/render_template_test.rb
Commits on Sep 27, 2010
  1. @fxn
  2. @fxn

    let Hash#to_param and Hash#to_query sort again

    fxn authored
    This was a regression introduced in 5c85822. We bring
    sorting back because people rely on it, eg for constructing consistent cache keys.
Commits on Sep 19, 2010
  1. @sikachu @spastorino

    Use `Time.current` to maintain consistency with AS::Duration

    sikachu authored spastorino committed
    In [32b82e4], the committer has switch
    methods in AS::Duration to use `Time.current` to return the correct
    duration based on the `Time.default_zone` instead of using `Time.now`.
    
    [#5607 state:committed]
    
    Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
Commits on Sep 1, 2010
  1. @neerajdotname @josevalim

    delegate method should treat :prefix => false same as :prefix => nil

    neerajdotname authored josevalim committed
    [#5375 state:resolved]
    
    Signed-off-by: José Valim <jose.valim@gmail.com>
Something went wrong with that request. Please try again.