pkgsrc.se | The NetBSD package collection

./www/ruby-rack, Modular Ruby webserver interface

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 3.1.12, Package name: ruby32-rack-3.1.12, Maintainer: pkgsrc-users

Rack provides a minimal, modular and adaptable interface for developing
web applications in Ruby. By wrapping HTTP requests and responses in
the simplest way possible, it unifies and distills the API for web
servers, web frameworks, and software in between (the so-called
middleware) into a single method call.

Required to run:
[lang/ruby26-base]

Required to build:
[pkgtools/cwrappers]

Master sites:

https://rubygems.org/gems/ (Download)

Filesize: 109.5 KB

Version history: (Expand)

(2025-03-16) Updated to version: ruby32-rack-3.1.12
(2025-03-04) Updated to version: ruby32-rack-3.1.11
(2025-02-23) Updated to version: ruby32-rack-3.1.10
(2025-02-09) Updated to version: ruby32-rack-3.1.9
(2024-10-14) Updated to version: ruby32-rack-3.1.8
(2024-07-13) Updated to version: ruby32-rack-3.1.7

CVS history: (Expand)

2025-03-16 16:09:45 by Takahiro Kambe | Files touched by this commit (2) | Package updated

Log message:
www/ruby-rack: update to 3.1.12

3.1.12 (2025-03-11)

Security

* CVE-2025-27610 Local file inclusion in Rack::Static.

2025-03-04 15:41:56 by Takahiro Kambe | Files touched by this commit (2) | Package updated

Log message:
www/ruby-rack: update to 3.1.11

3.1.11 (2025-03-04)

Security

* CVE-2025-27111 Possible Log Injection in Rack::Sendfile.

2025-02-23 16:15:30 by Takahiro Kambe | Files touched by this commit (2) | Package updated

Log message:
www/ruby-rack: update to 3.1.10

3.1.10 (2025-02-12)

Security

* CVE-2025-25184 Possible Log Injection in Rack::CommonLogger.

2025-02-09 16:28:41 by Takahiro Kambe | Files touched by this commit (2) | Package updated

Log message:
www/ruby-rack: update to 3.1.9

3.1.9 (2025-01-31)

* Rack::MediaType#params now handles parameters without values. (#2263,
  @AllyMarthaJ)

2024-10-14 04:54:06 by Takahiro Kambe | Files touched by this commit (2) | Package updated

Log message:
www/ruby-rack: update to 3.1.8

3.1.8 (2024-10-14)

* Resolve deprecation warnings about uri DEFAULT_PARSER.
  (#2249, [@earlopain])

2024-07-13 18:01:01 by Takahiro Kambe | Files touched by this commit (2) | Package updated

Log message:
www/ruby-rack: update to 3.1.7

3.1.5 (2024-07-02)

Security

* Fix potential ReDoS attack in Rack::Request#parse_http_accept_header.
  (GHSA-cj83-2ww7-mvq7, @dwisiswant0)

3.1.6 (2024-07-03)

* Fix several edge cases in Rack::Request#parse_http_accept_header's
  implementation.  (#2226, @ioquatix)

3.1.7 (2024-07-11)

Fixed

* Do not remove escaped opening/closing quotes for content-disposition
  filenames.  (#2229, @jeremyevans)

* Fix encoding setting for non-binary IO-like objects in
  MockRequest#env_for.  (#2227, @jeremyevans)

* Rack::Response should not generate invalid content-length header.
  (#2219, @ioquatix)

* Allow empty PATH_INFO.  (#2214, @ioquatix)

2024-06-30 18:47:35 by Takahiro Kambe | Files touched by this commit (2) | Package updated

Log message:
www/ruby-rack: update to 3.1.4

3.1.4 (2024-06-22)

Fixed

* Fix Rack::Lint matching some paths incorrectly as authority form. (#2220,
  @ioquatix)

2024-06-12 19:05:42 by Takahiro Kambe | Files touched by this commit (2) | Package updated

Log message:
www/ruby-rack: update to 3.1.3

3.1.1 (2024-06-11)

* Oops! I shouldn't have shipped that

3.1.2 (2024-06-11)

* Rack::Response will take in to consideration chunked encoding responses
  (#2204, [@tenderlove])

3.1.3 (2024-06-12)

Fixed

* Fix passing non-strings to Rack::Utils.escape_html. (#2202, [@earlopain])
* Rack::MockResponse gracefully handles empty cookies (#2203
  @wynksaiddestroy)