Skip to content
This repository
tag: v3.2.13

Mar 18, 2013

  1. Aaron Patterson

    bumping to 3.2.13

    authored March 18, 2013

Mar 16, 2013

  1. Aaron Patterson

    fix protocol checking in sanitization [CVE-2013-1857]

    Conflicts:
    	actionpack/lib/action_controller/vendor/html-scanner/html/sanitizer.rb
    authored March 15, 2013
  2. benmmurphy

    JDOM XXE Protection [CVE-2013-1856]

    Conflicts:
    	activesupport/test/xml_mini/jdom_engine_test.rb
    authored February 08, 2013 tenderlove committed March 15, 2013
  3. Charlie Somerville

    fix incorrect ^$ usage leading to XSS in sanitize_css [CVE-2013-1855]

    authored February 13, 2013 tenderlove committed March 15, 2013
  4. Aaron Patterson

    stop calling to_sym when building arel nodes [CVE-2013-1854]

    authored March 05, 2013

Mar 12, 2013

  1. Carlos Antonio da Silva

    Merge pull request #9616 from exviva/multiple_select_name_double_squa…

    …re_brackets
    
    Fix incorrectly appended square brackets to a multiple select box
    
    Before:
    
        select(:category, [], {}, {:multiple => true, :name => "post[category][]"})
        # => <select name="post[category][][]" ...>
    
    After:
    
        select(:category, [], {}, {:multiple => true, :name => "post[category][]"})
        # => <select name="post[category][]" ...>
    
    Conflicts:
    	actionpack/CHANGELOG.md
    	actionpack/lib/action_view/helpers/tags/base.rb
    	actionpack/test/template/form_options_helper_test.rb

Mar 06, 2013

  1. Aaron Patterson

    bumping to rc2

    authored March 06, 2013

Mar 05, 2013

  1. Aaron Patterson

    Revert "Merge pull request #8209 from senny/backport_8176"

    This reverts commit 7240202, reversing
    changes made to e4e2bcc.
    
    Conflicts:
    	activerecord/CHANGELOG.md
    	activerecord/lib/active_record/relation/calculations.rb
    	activerecord/test/cases/calculations_test.rb
    authored March 05, 2013
  2. Santiago Pastorino

    Freeze columns only once per Result

    Conflicts:
    	activerecord/lib/active_record/result.rb
    authored September 20, 2012 tenderlove committed March 05, 2013

Feb 27, 2013

  1. Steve Klabnik

    Preparing for 3.2.13.rc1 release

    authored February 27, 2013
  2. Steve Klabnik

    Update CHANGELOGs for 3.2.13 release.

    authored February 27, 2013
  3. Steve Klabnik

    Tighten up AS.gemspec.

    Apparently 0.6.2 has a call to force_encoding, which is not around
    in 1.8.7.
    authored February 26, 2013
  4. Steve Klabnik

    CHANGELOG entry for ee291b9.

    Since we released it, it should go in the CHANGELOG.
    authored February 26, 2013
  5. Steve Klabnik

    Revert "Merge pull request #9208 from dylanahsmith/3-2-mysql-quote-nu…

    …meric"
    
    This reverts commit 921a296.
    authored February 26, 2013

Feb 26, 2013

  1. Hiroshige Umino yaotti

    Do not override attributes on `dup` by default scopes

    authored February 26, 2013 steveklabnik committed February 26, 2013
  2. Carlos Antonio da Silva

    Improve changelog entry [ci skip]

  3. Carlos Antonio da Silva

    Merge pull request #9430 from authorNari/backport-7072-to-3-2-stable

    Backported #7072 to 3-2-stable. Use database value for uniqueness validation scope
  4. Narihiro Nakamura

    Backported #7072 to 3-2-stable. Use database value for uniqueness val…

    …idation scope.
    authored February 26, 2013

Feb 25, 2013

  1. Rafael Mendonça França

    Merge pull request #9408 from mikeycgto/origin/3-2-stable

    Update RUBY_VERSION check for performance testing to handle 2.0.0
    authored February 24, 2013
  2. Michael Coyne

    Update RUBY_VERSION check for performance testing to handle 2.0.0

    authored February 24, 2013

Feb 24, 2013

  1. Rafael Mendonça França

    Merge pull request #9406 from rails/3-2-stable-ruby-2

    Rails 3.2.x is now compatible with Ruby 2.0.0
    authored February 24, 2013
  2. Prem Sichanugrist

    Rails 3.2.x is now compatible with Ruby 2.0.0

    authored February 24, 2013
  3. SHIBATA Hiroshi

    added marshal_load and marshal_dump for ProxyTestResult. Behavior of …

    …method_missing with Marshal.dump and Marshal.load is changing in ruby 2.0.0 later.
    authored December 29, 2012 sikachu committed February 24, 2013
  4. Prem Sichanugrist

    Do not redirect cache logger to /dev/null in test

    For some reason, redirecting cache's logger to '/dev/null' resulting in
    a test failures and LoadError. I think it's because of Thread issue.
    Instead of trying to make every logger threadsafe for Rails 3.2, I think
    it's better to just don't set the logger for now.
    
    (Note: resetting the logger back to original value in the teardown block
    didn't fix the problem.)
    authored February 22, 2013
  5. Jeremy Kemper

    Ruby 2 compat. Hash[] now raises on bad elements rather than ignoring…

    … them. No sense over-testing this MRI-specific behavior. See ruby/ruby@8d6add9
    authored October 06, 2012 sikachu committed February 24, 2013
  6. Rafael Mendonça França

    Make the tests pass with minitest 4.2

    authored November 05, 2012 sikachu committed February 24, 2013
  7. Prem Sichanugrist

    Check for `method_missing` in public and protected

    Ruby 2.0 changed the behavior of `respond_to?` without argument to
    return only search for public method. We actually want to perform the
    action only if `method_missing` is either in public or protected.
    authored February 22, 2013
  8. There is already a Set of non-hidden action_names lying around.

    authored June 30, 2012 sikachu committed February 24, 2013
  9. Jeremy Kemper

    Ruby 2 compat. CGI.escapeHTML has changed the way it escapes apostrop…

    …hes a few times, so fix up the test to work with however it chooses to escape.
    authored October 06, 2012 sikachu committed February 24, 2013
  10. Aaron Patterson

    Ruby 2.0.0 defaults source encoding to utf-8 so we need to specifical…

    …ly tag this file with us-ascii
    authored November 12, 2012 sikachu committed February 24, 2013
  11. Aaron Patterson

    search private and protected methods for convert_key

    authored March 20, 2012 sikachu committed February 24, 2013
  12. Prem Sichanugrist

    Define #inspect instead of #to_s

    Ruby 2.0 Object#inspect does not call #to_s by default anymore.
    authored February 21, 2013
  13. Prem Sichanugrist

    Fix failing test case when no database.yml

    authored February 21, 2013
  14. Aaron Patterson

    `name` should be public.

    authored May 24, 2012 sikachu committed February 24, 2013
  15. Prem Sichanugrist

    Add in missing requires

    authored February 21, 2013
Something went wrong with that request. Please try again.