./www/ruby-actionpack61, Toolkit for building modeling frameworks (part of Rails 6.1)

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: pkgsrc-2022Q2, Version: 6.1.6.1, Package name: ruby27-actionpack61-6.1.6.1, Maintainer: pkgsrc-users

Action Pack is a framework for handling and responding to web requests. It
provides mechanisms for *routing* (mapping request URLs to actions), defining
*controllers* that implement actions, and generating responses by rendering
*views*, which are templates of various formats. In short, Action Pack
provides the view and controller layers in the MVC paradigm.

This is for Ruby on Rails 6.1.


Master sites:

Filesize: 221 KB

Version history: (Expand)


CVS history: (Expand)


   2022-07-23 21:35:09 by S.P.Zeidler | Files touched by this commit (15) | Package updated
Log message:
Pullup ticket #6655 - requested by taca
databases/ruby-activerecord61: security update
devel/ruby-activejob61: security update
devel/ruby-activemodel61: security update
devel/ruby-activestorage61: security update
devel/ruby-activesupport61: security update
devel/ruby-railties61: security update
mail/ruby-actionmailbox61: security update
mail/ruby-actionmailer61: security update
textproc/ruby-actiontext61: security update
www/ruby-actioncable61: security update
www/ruby-actionpack61: security update
www/ruby-actionview61: security update
www/ruby-rails61: security update

Revisions pulled up:
- databases/ruby-activerecord61/distinfo                        1.14
- devel/ruby-activejob61/distinfo                               1.14
- devel/ruby-activemodel61/distinfo                             1.14
- devel/ruby-activestorage61/distinfo                           1.14
- devel/ruby-activesupport61/distinfo                           1.14
- devel/ruby-railties61/Makefile                                1.4
- devel/ruby-railties61/distinfo                                1.14
- lang/ruby/rails.mk                                            1.131
- mail/ruby-actionmailbox61/distinfo                            1.14
- mail/ruby-actionmailer61/distinfo                             1.14
- textproc/ruby-actiontext61/distinfo                           1.14
- www/ruby-actioncable61/distinfo                               1.14
- www/ruby-actionpack61/distinfo                                1.14
- www/ruby-actionview61/distinfo                                1.14
- www/ruby-rails61/distinfo                                     1.14

-------------------------------------------------------------------
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Wed Jul 13 14:46:24 UTC 2022

   Modified Files:
   	pkgsrc/databases/ruby-activerecord61: distinfo
   	pkgsrc/devel/ruby-activejob61: distinfo
   	pkgsrc/devel/ruby-activemodel61: distinfo
   	pkgsrc/devel/ruby-activestorage61: distinfo
   	pkgsrc/devel/ruby-activesupport61: distinfo
   	pkgsrc/devel/ruby-railties61: Makefile distinfo
   	pkgsrc/lang/ruby: rails.mk
   	pkgsrc/mail/ruby-actionmailbox61: distinfo
   	pkgsrc/mail/ruby-actionmailer61: distinfo
   	pkgsrc/textproc/ruby-actiontext61: distinfo
   	pkgsrc/www/ruby-actioncable61: distinfo
   	pkgsrc/www/ruby-actionpack61: distinfo
   	pkgsrc/www/ruby-actionview61: distinfo
   	pkgsrc/www/ruby-rails61: distinfo

   Log message:
   www/ruby-rails61: update to 6.1.6.1

   Rails 6.1.6.1 (2022-07-12) updates databases/ruby-activerecord61 only.

   databases/ruby-activerecord61

   * Change ActiveRecord::Coders::YAMLColumn default to safe_load

     This adds two new configuration options The configuration options are as
     follows:

   	o config.active_storage.use_yaml_unsafe_load

     When set to true, this configuration option tells Rails to use the old
     "unsafe" YAML loading strategy, maintaining the existing behavior but
     leaving the possible escalation vulnerability in place.  Setting this
     option to true is *not* recommended, but can aid in upgrading.

   	o config.active_record.yaml_column_permitted_classes

     The "safe YAML" loading method does not allow all classes to be
     deserialized by default.  This option allows you to specify classes deemed
     "safe" in your application.  For example, if your application \ 
uses Symbol
     and Time in serialized data, you can add Symbol and Time to the allowed
     list as follows:

   	config.active_record.yaml_column_permitted_classes = [Symbol, Date, Time]

     [CVE-2022-32224]

   To generate a diff of this commit:
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/databases/ruby-activerecord61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-activejob61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-activemodel61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-activestorage61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-activesupport61/distinfo
   cvs rdiff -u -r1.3 -r1.4 pkgsrc/devel/ruby-railties61/Makefile
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-railties61/distinfo
   cvs rdiff -u -r1.130 -r1.131 pkgsrc/lang/ruby/rails.mk
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/mail/ruby-actionmailbox61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/mail/ruby-actionmailer61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/textproc/ruby-actiontext61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/ruby-actioncable61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/ruby-actionpack61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/ruby-actionview61/distinfo
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/ruby-rails61/distinfo