Path to this page:
./
textproc/ruby-safe_yaml,
Parse YAML safely
Branch: pkgsrc-2020Q2,
Version: 1.0.5,
Package name: ruby26-safe_yaml-1.0.5,
Maintainer: pkgsrc-usersThe SafeYAML gem provides an alternative implementation of `YAML.load`
suitable for accepting user input in Ruby applications. Unlike Ruby's
built-in implementation of `YAML.load`, SafeYAML's version will not expose
apps to arbitrary code execution exploits (such as [the ones
discovered](http://www.reddit.com/r/netsec/comments/167c11/serious_vulnerability_in_ruby_on_rails_allowing/)
[in Rails in early
2013](http://www.h-online.com/open/news/item/Rails-developers-close-another-extremely-critical-flaw-1793511.html)).
If you encounter any issues with SafeYAML, check out the 'Common Issues'
section below. If you don't see anything that addresses the problem you're
experiencing, by all means, [create an
issue](https://github.com/dtao/safe_yaml/issues/new)!
Required to run:[
lang/ruby26-base]
Master sites:
SHA1: 916765bf13a73d4e9b656dd90420203b8bed55be
RMD160: fbc0812f4d624b8f33a5f7af4e720a2280b62bea
Filesize: 30 KB
Version history: (Expand)
- (2020-07-01) Package added to pkgsrc.se, version ruby26-safe_yaml-1.0.5 (created)