Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Browse files

mind the changes

  • Loading branch information...
commit 85a63b01b835602d7768a027c256788f277d80d2 1 parent b38b5d4
@rkh rkh authored
Showing with 7 additions and 0 deletions.
  1. +7 −0 CHANGES
View
7 CHANGES
@@ -1,3 +1,10 @@
+= 1.2.1 / Not Yet Release
+
+ * Switched default session middleware from `Rack::Session::Cookies` to
+ `Rack::Session::Pool`, to improve security. Using `Rack::Session::Cookies`
+ without a secret allows injecting arbitrary objects into sessions an, in a
+ worst case scenario, might lead to code injection. (Konstantin Haase)
+
= 1.2.0 / 2011-03-03
* Added `slim` rendering method for rendering Slim templates. (Steve
Please sign in to comment.
Something went wrong with that request. Please try again.