Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
=== 2.1.9 / 2013-10-14 Bug fixes: * Reduce sorting when fetching specifications. This speeds up the update and outdated commands, and others. Issue rubinius#657 by windwiny. * Proxy usernames and passwords are now escaped properly. Ruby Bug #8979 by Masahiro Tomita, Issue rubinius#668 by Kouhei Sutou. === 2.1.8 / 2013-10-10 Bug fixes: * Fixed local installation of platform gem files. Issue rubinius#664 by Ryan Melton. * Files starting with "." in the root directory are installed again. Issue rubinius#680 by Ivo Wever, Pull Request rubinius#681 by Jeremy Evans. * The index generator no longer indexes default gems. Issue rubinius#661 by Jeremy Hinegardner. === 2.1.7 / 2013-10-09 Bug fixes: * `gem sources --list` now displays a list of sources. Pull request rubinius#672 by Nathan Marley. * RubyGems no longer alters Gem::Specification.dirs when installing. Pull Request rubinius#670 by Vít Ondruch * Use RFC 2616-compatible time in HTTP headers. Pull request rubinius#655 by Larry Marburger. * RubyGems now gives a more descriptive message for missing licenses on validation. Issue rubinius#656 by Markus Heiler. * Expand unpack destination directory. This fixes problems when File.realpath is missing and $GEM_HOME contains "..". Issue rubinius#679 by Charles Nutter. === 2.1.6 / 2013-10-08 Bug fixes: * Added certificates to follow the s3.amazonaws.com certificate change. Fixes rubinius#665 by emeyekayee. Fixes rubinius#671 by jonforums. * Remove redundant built-in certificates not needed for https://rubygems.org Fixes rubinius#654 by Vít Ondruch. * Added test for missing certificates for https://s3.amazonaws.com or https://rubygems.org. Pull request rubinius#673 by Hannes Georg. * RubyGems now allows a Pathname for Kernel#require like the built-in Kernel#require. Pull request rubinius#663 by Aaron Patterson. * Required rbconfig in Gem::ConfigFile for Ruby 1.9.1 compatibility. (Ruby 1.9.1 is no longer receiving security fixes, so please update to a newer version.) Issue rubinius#676 by Michal Papis. Issue rvm/rvm#2262 by Thomas Sänger. === 2.1.5 / 2013-09-24 Security fixes: * RubyGems 2.1.4 and earlier are vulnerable to excessive CPU usage due to a backtracking in Gem::Version validation. See CVE-2013-4363 for full details including vulnerable APIs. Fixed versions include 2.1.5, 2.0.10, 1.8.27 and 1.8.23.2 (for Ruby 1.9.3). === 2.1.4 / 2013-09-17 Bug fixes: * `gem uninstall foo --all` now force-uninstalls all versions of foo. Issue rubinius#650 by Kyle (remkade). * Fixed uninstalling gems installed in the home directory (as in `--user-install`). Issue rubinius#653 by Lin Jen-Shin. === 2.1.3 / 2013-09-12 Bug fixes: * Gems with files entries starting with "./" no longer install 0 files. Issue rubinius#644 by Darragh Curran, rubinius#645 by Brandon Turner, rubinius#646 by Alex Tambellini === 2.1.2 / 2013-09-11 Bug fixes: * Restore concurrent requires following the fix for ruby bug #8374. Pull request rubinius#637 and issue rubinius#640 by Charles Nutter. * Gems with extensions are now installed correctly when the --install-dir option is used. Issue rubinius#642 by Lin Jen-Shin. * Gem fetch now fetches the newest (not oldest) gem when --version is given. Issue rubinius#643 by Brian Shirai. === 2.1.1 / 2013-09-10 Bug fixes: * Only matching gems matching your local platform are considered for installation. Issue rubinius#638 by José M. Prieto, issue rubinius#639 by sawanoboly. === 2.1.0 / 2013-09-09 Security fixes: * RubyGems 2.0.7 and earlier are vulnerable to excessive CPU usage due to a backtracking in Gem::Version validation. See CVE-2013-4287 for full details including vulnerable APIs. Fixed versions include 2.0.8, 1.8.26 and 1.8.23.1 (for Ruby 1.9.3). Issue rubinius#626 by Damir Sharipov. Major enhancements: * RubyGems uses a new dependency resolver for gem installation which works similar to the bundler resolver. The new resolver can resolve conflicts the previous resolver could not and offers improved diagnostics when conflicts are discovered. Minor enhancements: * RubyGems now has improved platform matching for the ARM architecture. Gems built with a CPU of "arm" will match any specific ARM CPU. See `gem help platform` for further details. Fixes rubinius#532 by Kim Burgestrand. * The --version option now accepts compound requirements the same as in a gem dependency. The following invocation will install rails between 4.0.0.beta and 4.2: gem install rails -v '>= 4.0.0.beta, < 4.2' Fixes rubinius#531 by Gary S. Weaver * `gem clean` now allows `-n` as an alias for `--dryrun`. Pull Request rubinius#517 by Gastón Ramos * Added `gem update --system` to `gem help`. Pull Request rubinius#514 by Vince Wadhwani * Added PATH to `gem env` output. Pull Request rubinius#490 by Michal Papis * Added --host option to `gem owner` to match other commands using the gemcutter API. Pull Request rubinius#462 and issue rubinius#461 by Hugo Lopes Tavares * Added --abort-on-dependent to `gem uninstall`. This will abort instead of asking to uninstall a gem that is depended upon by another gem. Pull request rubinius#549 by Philip Arndt. * RubyGems no longer alters Gem::Specification.dirs when installing. Based on Pull Request rubinius#452 by Vít Ondruch * RubyGems uses ENV['MAKE'] or ENV['make'] over rbconfig.rb's make if present. Pull Request rubinius#443 by Erik Hollensbe * RubyGems can now save remote source cache files in an alternate directory controlled by `ENV["GEM_SPEC_CACHE"]`. Pull Request rubinius#489 by Michal Papis * Generated private keys are now encrypted. Pull Request rubinius#453 by pietro * Separated Gem::Request from Gem::RemoteFetcher. Pull Request rubinius#283 by Steve Klabnik. * RubyGems indicates when a .gem's content is corrupt while verifying. Bug rubinius#519 by William T Nelson. * Refactored common installer setup. Pull request rubinius#520 by Gastón Ramos * Moved activation tests to Gem::Specification. Pull request rubinius#521 by Gastón Ramos * When a --version option with a prerelease version is given RubyGems automatically enables prerelease versions but only the last version is used. If the first version is a prerelease version this is no longer sticky unless an explicit --[no-]prerelease was also given. Fixes part of rubinius#531. * RubyGems now supports an SSL client certificate. Pull request rubinius#550 by Robert Kenny. * RubyGems now suggests how to fix permission errors. Pull request rubinius#553 by Odin Dutton. * Added support for installing a gem as default gems for alternate ruby implementations. Pull request rubinius#566 by Charles Nutter. * Improved performance of Gem::Specification#load by caching the loaded gemspec. Pull request rubinius#569 by Charlie Somerville. * RubyGems now warns when an unsigned gem is verified if -P was given during installation even if the security policy allows unsigned gems and warns when an untrusted certificate is seen even if the security policy allows untrusted certificates. Issue rubinius#474 by Grant Olson * RubyGems can now rewrite executables with or without a shebang of /usr/bin/env via <code>gem pristine --all --only-executables --env-[no-]shebang</code>. Issue rubinius#579 by Paul Annesley. * RubyGems can now run its tests without OpenSSL. Ruby Bug #8557 by nobu. * Improved performance by caching Gem::Version objects and avoiding method_missing in Gem::Specification. Pull request rubinius#447 by Jon Leighton. * Files in a .gem now preserve their modification times. Pull request rubinius#582 by Jesse Bowes * Improved speed of looking up dependencies in SpecFetcher through Array#bsearch (when present). Pull request rubinius#595 by Andras Suller * Added `--all` option to `gem uninstall` which removes all gems in GEM_HOME. Pull request rubinius#584 by Shannon Skipper. * Added Gem.find_latest_files which is equivalent to Gem.find_files but only returns matching files from the latest version of each gem. Issue rubinius#186 by Ryan Davis. * Improved performance of `gem outdated` by reducing duplicate work (it is still slow, but I see a near 50% improvement for 250 gems on a fast connection). See also Gem::Specification::outdated_and_latest_version Bug fixes: * rubygems_plugin.rb files are now only loaded from the latest installed gem. * Fixed Gem.clear_paths when Security is defined at top-level. Pull request rubinius#625 by elarkin * Fixed credential creation for `gem push` when `--host` is not given. Pull request rubinius#622 by Arthur Nogueira Neves ------------------------------------------------------------------------------ RubyGems installed the following executables: /source/rubinius/rubinius/bin/gem RubyGems system software updated
- Loading branch information