Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Commits on Mar 18, 2013
  1. @tenderlove

    bumping to 3.2.13

    tenderlove authored
Commits on Mar 6, 2013
  1. @tenderlove

    bumping to rc2

    tenderlove authored
Commits on Feb 27, 2013
  1. @steveklabnik
Commits on Feb 11, 2013
  1. @tenderlove

    Merge branch '3-2-sec' into 3-2-stable

    tenderlove authored
    * 3-2-sec:
      bumping version
      remove ruby-prof
      Fix issue with attr_protected where malformed input could circumvent protection
      fixing call to columns hash. run the damn tests when you backport!
      Bump rack dependency to 1.4.5
      Merge pull request #9224 from dylanahsmith/bigdecimal-takes-string
      Merge pull request #9208 from dylanahsmith/3-2-mysql-quote-numeric
    
    Conflicts:
    	Gemfile
    	activerecord/CHANGELOG.md
  2. @tenderlove

    bumping version

    tenderlove authored
Commits on Feb 10, 2013
  1. @joernchen @tenderlove

    Fix issue with attr_protected where malformed input could circumvent

    joernchen authored tenderlove committed
    protection
    
    Fixes: CVE-2013-0276
Commits on Jan 8, 2013
  1. @tenderlove

    Merge branch '3-2-sec' into 3-2-secmerge

    tenderlove authored
    * 3-2-sec:
      bumping version
      CVE-2013-0156: Safe XML params parsing. Doesn't allow symbols or yaml.
      * Strip nils from collections on JSON and XML posts. [CVE-2013-0155] * dealing with empty hashes. Thanks Damien Mathieu
      Avoid Rack security warning no secret provided
    
    Conflicts:
    	actionpack/CHANGELOG.md
    	activerecord/CHANGELOG.md
    	activesupport/CHANGELOG.md
  2. @tenderlove

    bumping version

    tenderlove authored
Commits on Jan 3, 2013
  1. @miguelff

    Merge tag 'v3.2.10' into 3-2-stable

    miguelff authored
    Latest released tag was not fully merged into the stable branch (missed version bumping)
Commits on Dec 23, 2012
  1. @tenderlove

    bumping version to 3.2.10

    tenderlove authored
Commits on Dec 3, 2012
  1. @hsbt
Commits on Nov 29, 2012
  1. @rafaelfranca

    Merge pull request #8352 from steveklabnik/update_7858

    rafaelfranca authored
    Specify type of singular assication during serialization
    Conflicts:
    	activemodel/CHANGELOG.md
    	activemodel/test/cases/serializers/xml_serialization_test.rb
Commits on Nov 12, 2012
  1. @spastorino

    Bump to 3.2.9

    spastorino authored
Commits on Nov 9, 2012
  1. @spastorino

    Bump up to 3.2.9.rc3

    spastorino authored
Commits on Nov 1, 2012
  1. @spastorino

    Bump to 3.2.9.rc2

    spastorino authored
Commits on Oct 29, 2012
  1. @spastorino

    Bump to 3.2.9.rc1

    spastorino authored
Commits on Oct 27, 2012
  1. @jeremy @rafaelfranca

    Merge pull request #8038 from frodsan/fix_am_serializers_xml_dependency

    jeremy authored rafaelfranca committed
    Fix AM::Serializers::Xml dependency
Commits on Oct 18, 2012
  1. @senny

    active_model/validations requires necessary files to run

    senny authored senny committed
Commits on Aug 9, 2012
  1. @spastorino

    Bump to 3.2.8

    spastorino authored
Commits on Aug 3, 2012
  1. @spastorino

    Bump to 3.2.8.rc2

    spastorino authored
Commits on Aug 1, 2012
  1. @spastorino

    Bump to 3.2.8.rc1

    spastorino authored
Commits on Jul 26, 2012
  1. @tenderlove

    bumping to 3.2.7

    tenderlove authored
Commits on Jul 23, 2012
  1. @tenderlove

    updating the version

    tenderlove authored
Commits on Jul 20, 2012
  1. @rafaelfranca

    `validates_inclusion_of` and `validates_exclusion_of` now accept

    rafaelfranca authored
    `:within` option as alias of `:in` as documented.
    
    Fix #7118
Commits on Jun 12, 2012
  1. @tenderlove

    Merge branch '3-2-stable-rel' into 3-2-stable

    tenderlove authored
    * 3-2-stable-rel:
      updating changelogs
      bumping version numbers
      updating changelogs with security fixes
      updating changelogs
      Array parameters should not contain nil values.
      Additional fix for CVE-2012-2661
  2. @acapilleri

    Fix the the backport of the object dup with the ruby 1.9.3p194.

    acapilleri authored
    At the end of initialize_dup was added the call to super if it exists,
    so it also works with 1.8.7 where initialize_dup doesn't exist.
    This issu was introduced with the pull request #6324
Commits on Jun 11, 2012
  1. @tenderlove

    bumping version numbers

    tenderlove authored
Commits on Jun 6, 2012
  1. @kuroda

    Fix human attribute_name to handle deeply nested attributes

    kuroda authored
    This is a back-port of b0e2fc8 to Rails 3.2.
    See #5843 and #3859 also.
Commits on Jun 1, 2012
  1. @tenderlove

    bumping to 3.2.5

    tenderlove authored
Commits on May 31, 2012
  1. @tenderlove

    bumping to 3.2.4

    tenderlove authored
Commits on May 28, 2012
  1. @tenderlove

    bumping to 3.2.4.rc1

    tenderlove authored
Commits on May 17, 2012
  1. @frodsan

    fix validations docs

    frodsan authored
Commits on May 15, 2012
  1. add backport for the pull request #6324

    Angelo Capilleri authored
  2. @carlosantoniodasilva
  3. @acapilleri

    clean the errors if an object that includes validations errors is dup…

    acapilleri authored
    …ed,for 3-2-stable
    
    It Fixes #5953 in 3-2-stable, it's the same pull request of #6284
Something went wrong with that request. Please try again.