./textproc/ruby-safe_yaml, Parse YAML safely

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

---

Branch: pkgsrc-2014Q4, Version: 1.0.1, Package name: ruby200-safe_yaml-1.0.1, Maintainer: pkgsrc-users

The SafeYAML gem provides an alternative implementation of `YAML.load`
suitable for accepting user input in Ruby applications. Unlike Ruby's
built-in implementation of `YAML.load`, SafeYAML's version will not expose
apps to arbitrary code execution exploits (such as [the ones
discovered](http://www.reddit.com/r/netsec/comments/167c11/serious_vulnerability_in_ruby_on_rails_allowing/)
[in Rails in early
2013](http://www.h-online.com/open/news/item/Rails-developers-close-another-extremely-critical-flaw-1793511.html)).

If you encounter any issues with SafeYAML, check out the 'Common Issues'
section below. If you don't see anything that addresses the problem you're
experiencing, by all means, [create an
issue](https://github.com/dtao/safe_yaml/issues/new)!


Required to run:
[lang/ruby200-base]

---

Master sites:

• http://rubygems.org/downloads/ (Download)

SHA1: 6c23cb4049a6e25c688f6073395c9e598fbdad32
RMD160: ba83dd9614fc87483bf4d9876dde79b54e98c438
Filesize: 27 KB

---

Version history: (Expand)

• (2014-12-30) Package added to pkgsrc.se, version ruby200-safe_yaml-1.0.1 (created)

---

---

This site is operated by pkgsrc.pub, Contact