./databases/ruby-activerecord61, Object-relational mapper framework (part of Rails 6.1)

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: pkgsrc-2022Q2, Version: 6.1.6.1, Package name: ruby27-activerecord61-6.1.6.1, Maintainer: pkgsrc-users

= Active Record -- Object-relational mapping put on rails

Active Record connects classes to relational database tables to establish an
almost zero-configuration persistence layer for applications. The library
provides a base class that, when subclassed, sets up a mapping between the new
class and an existing table in the database. In context of an application,
these classes are commonly referred to as *models*. Models can also be
connected to other models; this is done by defining *associations*.

This is for Ruby on Rails 6.1.


Master sites:

Filesize: 422.5 KB

Version history: (Expand)


CVS history: (Expand)


   2022-07-23 21:35:09 by S.P.Zeidler | Files touched by this commit (15) | Package updated
Log message:
Pullup ticket #6655 - requested by taca
databases/ruby-activerecord61: security update
devel/ruby-activejob61: security update
devel/ruby-activemodel61: security update
devel/ruby-activestorage61: security update
devel/ruby-activesupport61: security update
devel/ruby-railties61: security update
mail/ruby-actionmailbox61: security update
mail/ruby-actionmailer61: security update
textproc/ruby-actiontext61: security update
www/ruby-actioncable61: security update
www/ruby-actionpack61: security update
www/ruby-actionview61: security update
www/ruby-rails61: security update

Revisions pulled up:
- databases/ruby-activerecord61/distinfo                        1.14
- devel/ruby-activejob61/distinfo                               1.14
- devel/ruby-activemodel61/distinfo                             1.14
- devel/ruby-activestorage61/distinfo                           1.14
- devel/ruby-activesupport61/distinfo                           1.14
- devel/ruby-railties61/Makefile                                1.4
- devel/ruby-railties61/distinfo                                1.14
- lang/ruby/rails.mk                                            1.131
- mail/ruby-actionmailbox61/distinfo                            1.14
- mail/ruby-actionmailer61/distinfo                             1.14
- textproc/ruby-actiontext61/distinfo                           1.14
- www/ruby-actioncable61/distinfo                               1.14
- www/ruby-actionpack61/distinfo                                1.14
- www/ruby-actionview61/distinfo                                1.14
- www/ruby-rails61/distinfo                                     1.14

-------------------------------------------------------------------
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Wed Jul 13 14:46:24 UTC 2022

   Modified Files:
   	pkgsrc/databases/ruby-activerecord61: distinfo
   	pkgsrc/devel/ruby-activejob61: distinfo
   	pkgsrc/devel/ruby-activemodel61: distinfo
   	pkgsrc/devel/ruby-activestorage61: distinfo
   	pkgsrc/devel/ruby-activesupport61: distinfo
   	pkgsrc/devel/ruby-railties61: Makefile distinfo
   	pkgsrc/lang/ruby: rails.mk
   	pkgsrc/mail/ruby-actionmailbox61: distinfo
   	pkgsrc/mail/ruby-actionmailer61: distinfo
   	pkgsrc/textproc/ruby-actiontext61: distinfo
   	pkgsrc/www/ruby-actioncable61: distinfo
   	pkgsrc/www/ruby-actionpack61: distinfo
   	pkgsrc/www/ruby-actionview61: distinfo
   	pkgsrc/www/ruby-rails61: distinfo

   Log message:
   www/ruby-rails61: update to 6.1.6.1

   Rails 6.1.6.1 (2022-07-12) updates databases/ruby-activerecord61 only.

   databases/ruby-activerecord61

   * Change ActiveRecord::Coders::YAMLColumn default to safe_load

     This adds two new configuration options The configuration options are as
     follows:

   	o config.active_storage.use_yaml_unsafe_load

     When set to true, this configuration option tells Rails to use the old
     "unsafe" YAML loading strategy, maintaining the existing behavior but
     leaving the possible escalation vulnerability in place.  Setting this
     option to true is *not* recommended, but can aid in upgrading.

   	o config.active_record.yaml_column_permitted_classes

     The "safe YAML" loading method does not allow all classes to be
     deserialized by default.  This option allows you to specify classes deemed
     "safe" in your application.  For example, if your application \ 
uses Symbol
     and Time in serialized data, you can add Symbol and Time to the allowed
     list as follows:

   	config.active_record.yaml_column_permitted_classes = [Symbol, Date, Time]

     [CVE-2022-32224]

   To generate a diff of this commit:
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/databases/ruby-activerecord61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-activejob61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-activemodel61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-activestorage61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-activesupport61/distinfo
   cvs rdiff -u -r1.3 -r1.4 pkgsrc/devel/ruby-railties61/Makefile
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-railties61/distinfo
   cvs rdiff -u -r1.130 -r1.131 pkgsrc/lang/ruby/rails.mk
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/mail/ruby-actionmailbox61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/mail/ruby-actionmailer61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/textproc/ruby-actiontext61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/ruby-actioncable61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/ruby-actionpack61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/ruby-actionview61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/ruby-rails61/distinfo