Log message:
www/ruby-rails52: update to 5.2.6

Ruby on Rails 5.2.6 (2021-05-05)

There are changes in www/ruby-actionpack52 only, including security fix.

Action Pack

* Accept base64_urlsafe CSRF tokens to make forward compatible.

  Base64 strict-encoded CSRF tokens are not inherently websafe, which
  makes them difficult to deal with.  For example, the common practice
  of sending the CSRF token to a browser in a client-readable cookie
  does not work properly out of the box: the value has to be
  url-encoded and decoded to survive transport.

  In this version, we generate Base64 urlsafe-encoded CSRF tokens,
  which are inherently safe to transport.  Validation accepts both
  urlsafe tokens, and strict-encoded tokens for backwards
  compatibility.

  How the tokes are encoded is controllr by the
  action_controller.urlsafe_csrf_tokens config.

  In Rails 5.2.5, the CSRF token format was accidentally changed to
  urlsafe-encoded.

  Atention: If you already upgraded your application to 5.2.5, set the
  config urlsafe_csrf_tokens to true, otherwise your form submission
  will start to fail during the deploy of this new version.

	Rails.application.config.action_controller.urlsafe_csrf_tokens = true

  If you are upgrading from 5.2.4.x, you don't need to change this
  configuration.

  Scott Blum, Étienne Barrié

Log message:
www/ruby-rails52: update to 5.2.5

Real changes are in devel/ruby-activestorage52 only.

## Rails 5.2.5 (March 26, 2021) ##

*   Marcel is upgraded to version 1.0.0 to avoid a dependency on GPL-licensed
    mime types data.

    *George Claghorn*

*   The Poppler PDF previewer renders a preview image using the original
    document's crop box rather than its media box, hiding print margins. This
    matches the behavior of the MuPDF previewer.

    *Vincent Robert*

Log message:
www/rails52: update to 5.2.4.5

## Rails 5.2.4.5 (February 10, 2021) ##

*   Fix possible DoS vector in PostgreSQL money type

    Carefully crafted input can cause a DoS via the regular expressions used
    for validating the money format in the PostgreSQL adapter.  This patch
    fixes the regexp.

    Thanks to @dee-see from Hackerone for this patch!

    [CVE-2021-22880]

    *Aaron Patterson*

Log message:
www/ruby-rails52: update to  5.2.4.4

Update Ruby on Rails 52 to 5.2.4.4.

Security fix in ruby-actionview52.

## Rails 5.2.4.4 (September 09, 2020) ##

*   [CVE-2020-15169] Fix potential XSS vulnerability in the `translate`/`t` helper

    *Jonathan Hefner*

Log message:
devel/ruby-activestorage52: update to 5.2.4.3

Update ruby-activestorage52 to 5.2.4.3.

## Rails 5.2.4.3 (May 18, 2020) ##

*   [CVE-2020-8162] Include Content-Length in signature for ActiveStorage direct \ 
upload

Log message:
devel/ruby-activestorage52: update to 5.2.4.2

Update ruby-activestorage52 to 5.2.4.2.

* No change except version.

Log message:
devel/ruby-activestorage52: update to 5.2.3

## Rails 5.2.3 (March 27, 2019) ##

*   No changes.

## Rails 5.2.2.1 (March 11, 2019) ##

*   No changes.

Log message:
devel/ruby-activestorage52: add version 5.2.2 package

Add ruby-activestorage52 version 5.2.2 package.

# Active Storage

Active Storage makes it simple to upload and reference files in cloud services
like [Amazon S3](https://aws.amazon.com/s3/), [Google Cloud
Storage](https://cloud.google.com/storage/docs/), or [Microsoft Azure
Storage](https://azure.microsoft.com/en-us/services/storage/), and attach
those files to Active Records.  Supports having one main service and mirrors
in other services for redundancy.  It also provides a disk service for testing
or local deployments, but the focus is on cloud storage.

Files can be uploaded from the server to the cloud or directly from the client
to the cloud.

Image files can furthermore be transformed using on-demand variants for
quality, aspect ratio, size, or any other
[MiniMagick](https://github.com/minimagick/minimagick) supported
transformation.

This is for Ruby on Rails 5.2.