head 1.159; access; symbols pkgsrc-2023Q4:1.155.0.2 pkgsrc-2023Q4-base:1.155 pkgsrc-2023Q3:1.154.0.2 pkgsrc-2023Q3-base:1.154 pkgsrc-2023Q2:1.145.0.2 pkgsrc-2023Q2-base:1.145 pkgsrc-2023Q1:1.144.0.2 pkgsrc-2023Q1-base:1.144 pkgsrc-2022Q4:1.137.0.4 pkgsrc-2022Q4-base:1.137 pkgsrc-2022Q3:1.137.0.2 pkgsrc-2022Q3-base:1.137 pkgsrc-2022Q2:1.128.0.2 pkgsrc-2022Q2-base:1.128 pkgsrc-2022Q1:1.118.0.2 pkgsrc-2022Q1-base:1.118 pkgsrc-2021Q4:1.109.0.2 pkgsrc-2021Q4-base:1.109 pkgsrc-2021Q3:1.106.0.2 pkgsrc-2021Q3-base:1.106 pkgsrc-2021Q2:1.100.0.2 pkgsrc-2021Q2-base:1.100 pkgsrc-2021Q1:1.95.0.2 pkgsrc-2021Q1-base:1.95 pkgsrc-2020Q4:1.91.0.2 pkgsrc-2020Q4-base:1.91 pkgsrc-2020Q3:1.90.0.2 pkgsrc-2020Q3-base:1.90 pkgsrc-2020Q2:1.87.0.2 pkgsrc-2020Q2-base:1.87 pkgsrc-2020Q1:1.83.0.2 pkgsrc-2020Q1-base:1.83 pkgsrc-2019Q4:1.78.0.4 pkgsrc-2019Q4-base:1.78 pkgsrc-2019Q3:1.77.0.4 pkgsrc-2019Q3-base:1.77 pkgsrc-2019Q2:1.77.0.2 pkgsrc-2019Q2-base:1.77 pkgsrc-2019Q1:1.74.0.2 pkgsrc-2019Q1-base:1.74 pkgsrc-2018Q4:1.69.0.2 pkgsrc-2018Q4-base:1.69 pkgsrc-2018Q3:1.67.0.2 pkgsrc-2018Q3-base:1.67 pkgsrc-2018Q2:1.66.0.4 pkgsrc-2018Q2-base:1.66 pkgsrc-2018Q1:1.66.0.2 pkgsrc-2018Q1-base:1.66 pkgsrc-2017Q4:1.61.0.6 pkgsrc-2017Q4-base:1.61 pkgsrc-2017Q3:1.61.0.4 pkgsrc-2017Q3-base:1.61 pkgsrc-2017Q2:1.60.0.2 pkgsrc-2017Q2-base:1.60 pkgsrc-2017Q1:1.55.0.6 pkgsrc-2017Q1-base:1.55 pkgsrc-2016Q4:1.55.0.4 pkgsrc-2016Q4-base:1.55 pkgsrc-2016Q3:1.55.0.2 pkgsrc-2016Q3-base:1.55 pkgsrc-2016Q2:1.54.0.4 pkgsrc-2016Q2-base:1.54 pkgsrc-2016Q1:1.54.0.2 pkgsrc-2016Q1-base:1.54 pkgsrc-2015Q4:1.52.0.6 pkgsrc-2015Q4-base:1.52 pkgsrc-2015Q3:1.52.0.4 pkgsrc-2015Q3-base:1.52 pkgsrc-2015Q2:1.52.0.2 pkgsrc-2015Q2-base:1.52 pkgsrc-2015Q1:1.51.0.4 pkgsrc-2015Q1-base:1.51 pkgsrc-2014Q4:1.51.0.2 pkgsrc-2014Q4-base:1.51 pkgsrc-2014Q3:1.49.0.2 pkgsrc-2014Q3-base:1.49 pkgsrc-2014Q2:1.48.0.2 pkgsrc-2014Q2-base:1.48 pkgsrc-2014Q1:1.47.0.2 pkgsrc-2014Q1-base:1.47 pkgsrc-2013Q4:1.46.0.2 pkgsrc-2013Q4-base:1.46 pkgsrc-2013Q3:1.44.0.2 pkgsrc-2013Q3-base:1.44 pkgsrc-2013Q2:1.43.0.4 pkgsrc-2013Q2-base:1.43 pkgsrc-2013Q1:1.43.0.2 pkgsrc-2013Q1-base:1.43 pkgsrc-2012Q4:1.31.0.2 pkgsrc-2012Q4-base:1.31 pkgsrc-2012Q3:1.30.0.2 pkgsrc-2012Q3-base:1.30 pkgsrc-2012Q2:1.24.0.2 pkgsrc-2012Q2-base:1.24 pkgsrc-2012Q1:1.16.0.2 pkgsrc-2012Q1-base:1.16 pkgsrc-2011Q4:1.11.0.2 pkgsrc-2011Q4-base:1.11 pkgsrc-2011Q3:1.9.0.2 pkgsrc-2011Q3-base:1.9 pkgsrc-2011Q2:1.7.0.2 pkgsrc-2011Q2-base:1.7 pkgsrc-2011Q1:1.2.0.2 pkgsrc-2011Q1-base:1.2; locks; strict; comment @# @; 1.159 date 2024.02.24.14.55.25; author taca; state Exp; branches; next 1.158; commitid 8z2MQh2StPhzfHZE; 1.158 date 2024.02.24.14.49.27; author taca; state Exp; branches; next 1.157; commitid 6cLzDgP5ZbzwdHZE; 1.157 date 2024.02.24.14.42.39; author taca; state Exp; branches; next 1.156; commitid dMa293WgUtfbbHZE; 1.156 date 2024.02.04.15.05.48; author taca; state Exp; branches; next 1.155; commitid zuqNO5Nu2MeWW7XE; 1.155 date 2023.11.30.15.05.10; author taca; state Exp; branches; next 1.154; commitid aGUVOmT4n1Pe4EOE; 1.154 date 2023.09.10.14.19.00; author taca; state Exp; branches; next 1.153; commitid VKRQvV0ljjONpeEE; 1.153 date 2023.09.03.15.56.57; author taca; state Exp; branches; next 1.152; commitid 0kOySom5Hi4oblDE; 1.152 date 2023.09.03.15.33.42; author taca; state Exp; branches; next 1.151; commitid v9w0gVfnHlhl3lDE; 1.151 date 2023.08.26.15.29.20; author taca; state Exp; branches; next 1.150; commitid iK2otipW0suOhjCE; 1.150 date 2023.08.26.15.23.28; author taca; state Exp; branches; next 1.149; commitid Yo4AOkqx9V2TfjCE; 1.149 date 2023.08.11.14.14.43; author taca; state Exp; branches; next 1.148; commitid v9WCCCt1K8g4mnAE; 1.148 date 2023.07.09.03.30.32; author taca; state Exp; branches; next 1.147; commitid 8vraxMkLuEAXQ4wE; 1.147 date 2023.06.27.13.39.03; author taca; state Exp; branches; next 1.146; commitid NqBNo22fVntEBAuE; 1.146 date 2023.06.27.13.35.17; author taca; state Exp; branches; next 1.145; commitid O8aF69XeGtOlAAuE; 1.145 date 2023.05.28.01.54.17; author taca; state Exp; branches 1.145.2.1; next 1.144; commitid 40V5q6U6v6oEFFqE; 1.144 date 2023.03.15.13.35.15; author taca; state Exp; branches; next 1.143; commitid DlGgCOx5OUABVdhE; 1.143 date 2023.03.15.13.31.47; author taca; state Exp; branches; next 1.142; commitid qVRHt7J0cHGoUdhE; 1.142 date 2023.01.25.13.31.15; author taca; state Exp; branches; next 1.141; commitid zdVBZKhldafTtVaE; 1.141 date 2023.01.25.13.27.09; author taca; state Exp; branches; next 1.140; commitid nbgl0tWcCcersVaE; 1.140 date 2023.01.19.14.34.25; author taca; state Exp; branches; next 1.139; commitid OIaIabPCUqLv1aaE; 1.139 date 2023.01.19.14.31.09; author taca; state Exp; branches; next 1.138; commitid 8ZJ1ksyFQnUn0aaE; 1.138 date 2023.01.19.14.27.24; author taca; state Exp; branches; next 1.137; commitid HwLaspqeNoB5Z9aE; 1.137 date 2022.09.10.12.40.14; author taca; state Exp; branches 1.137.4.1; next 1.136; commitid yj94PnenRvaoBjTD; 1.136 date 2022.09.10.08.24.40; author taca; state Exp; branches; next 1.135; commitid 6Sb0ZyedTcCJbiTD; 1.135 date 2022.09.10.08.18.59; author taca; state Exp; branches; next 1.134; commitid NXtyJRXh4vZJ9iTD; 1.134 date 2022.09.03.15.33.16; author taca; state Exp; branches; next 1.133; commitid FTHFyoHGTa8KMqSD; 1.133 date 2022.09.03.13.15.06; author taca; state Exp; branches; next 1.132; commitid tkPQwtBpyN0k1qSD; 1.132 date 2022.07.13.14.48.47; author taca; state Exp; branches; next 1.131; commitid HbtQLfL8RPs5dKLD; 1.131 date 2022.07.13.14.46.23; author taca; state Exp; branches; next 1.130; commitid b5k4UpOSswlfcKLD; 1.130 date 2022.07.13.14.44.08; author taca; state Exp; branches; next 1.129; commitid QlKCuI1zSS8ubKLD; 1.129 date 2022.07.13.14.41.07; author taca; state Exp; branches; next 1.128; commitid tzM3zrxEJMPmaKLD; 1.128 date 2022.06.07.15.12.58; author taca; state Exp; branches 1.128.2.1; next 1.127; commitid OAivwlDmTFJ3v7HD; 1.127 date 2022.06.07.15.05.21; author taca; state Exp; branches; next 1.126; commitid 94DP7iCcELNvs7HD; 1.126 date 2022.06.07.14.59.20; author taca; state Exp; branches; next 1.125; commitid b6vx0wm4pQfsq7HD; 1.125 date 2022.06.07.14.48.11; author taca; state Exp; branches; next 1.124; commitid evUy0D9tnsczm7HD; 1.124 date 2022.06.07.14.44.50; author taca; state Exp; branches; next 1.123; commitid CJYNdZKPFvdtl7HD; 1.123 date 2022.05.17.00.42.33; author gutteridge; state Exp; branches; next 1.122; commitid 3XlXoD2PucV7mlED; 1.122 date 2022.05.05.03.39.02; author taca; state Exp; branches; next 1.121; commitid JYSDNucfZCDNIOCD; 1.121 date 2022.05.05.03.38.25; author taca; state Exp; branches; next 1.120; commitid O4CI5nVaVb8wIOCD; 1.120 date 2022.05.05.03.20.39; author taca; state Exp; branches; next 1.119; commitid FAAatrq7dT0pCOCD; 1.119 date 2022.05.05.03.02.07; author taca; state Exp; branches; next 1.118; commitid y1CT5LGgb5zVvOCD; 1.118 date 2022.03.13.15.15.03; author taca; state Exp; branches 1.118.2.1; next 1.117; commitid T6nfOP1OADldh4wD; 1.117 date 2022.03.13.15.11.50; author taca; state Exp; branches; next 1.116; commitid cTFn59RGFpn7g4wD; 1.116 date 2022.03.13.15.08.21; author taca; state Exp; branches; next 1.115; commitid 5nOL5Y3d0EnSe4wD; 1.115 date 2022.03.13.15.04.26; author taca; state Exp; branches; next 1.114; commitid 1eyd3ph6C6hAd4wD; 1.114 date 2022.02.13.07.39.14; author taca; state Exp; branches; next 1.113; commitid bXRdx9SyYqFAEqsD; 1.113 date 2022.02.13.07.35.04; author taca; state Exp; branches; next 1.112; commitid dxMDajEabLleDqsD; 1.112 date 2022.02.13.07.31.21; author taca; state Exp; branches; next 1.111; commitid WU6UcvXNtaRWBqsD; 1.111 date 2022.02.13.07.26.05; author taca; state Exp; branches; next 1.110; commitid 5yJxTKVTOvO9AqsD; 1.110 date 2022.01.16.14.02.54; author taca; state Exp; branches; next 1.109; commitid 3AYIe4xCP2cYFRoD; 1.109 date 2021.12.19.05.42.50; author taca; state Exp; branches 1.109.2.1; next 1.108; commitid zxthp18iciXjOdlD; 1.108 date 2021.12.19.05.22.30; author taca; state Exp; branches; next 1.107; commitid acaCm3hNrI2mHdlD; 1.107 date 2021.12.19.05.07.05; author taca; state Exp; branches; next 1.106; commitid kPDQfx9hRvV0CdlD; 1.106 date 2021.08.22.07.16.46; author taca; state Exp; branches; next 1.105; commitid rFBRgwR8X8mH9W5D; 1.105 date 2021.08.22.07.12.49; author taca; state Exp; branches; next 1.104; commitid 4yadFJ6u1wcY7W5D; 1.104 date 2021.07.13.11.53.25; author markd; state Exp; branches; next 1.103; commitid bPSHS6KhZIf8YO0D; 1.103 date 2021.07.04.07.55.12; author taca; state Exp; branches; next 1.102; commitid lYDYxOPxQOUuWDZC; 1.102 date 2021.07.04.06.58.37; author taca; state Exp; branches; next 1.101; commitid s8SNUfHKCME8DDZC; 1.101 date 2021.07.04.06.24.45; author taca; state Exp; branches; next 1.100; commitid fWRyQzweFjVirDZC; 1.100 date 2021.05.08.14.08.55; author taca; state Exp; branches; next 1.99; commitid xT7hp1Cwoc8eQlSC; 1.99 date 2021.05.08.14.02.33; author taca; state Exp; branches; next 1.98; commitid lCi1NGaqw3v8OlSC; 1.98 date 2021.04.11.13.28.01; author taca; state Exp; branches; next 1.97; commitid ojVj9UR3VuKWtSOC; 1.97 date 2021.04.11.13.24.56; author taca; state Exp; branches; next 1.96; commitid kmaof6oCLC4LsSOC; 1.96 date 2021.04.11.13.20.08; author taca; state Exp; branches; next 1.95; commitid pFuCbZJW9em7rSOC; 1.95 date 2021.02.28.16.58.05; author taca; state Exp; branches; next 1.94; commitid N35UhxbRflbNZuJC; 1.94 date 2021.02.14.13.49.40; author taca; state Exp; branches; next 1.93; commitid CfvoZAUXkyg5pGHC; 1.93 date 2021.02.11.14.30.06; author taca; state Exp; branches; next 1.92; commitid 99d9MUhELTJDIiHC; 1.92 date 2021.02.11.14.23.41; author taca; state Exp; branches; next 1.91; commitid 5N9OcdFcLqLEGiHC; 1.91 date 2020.10.19.14.50.31; author taca; state Exp; branches; next 1.90; commitid Yw5V0EoqIrfPwwsC; 1.90 date 2020.09.10.16.53.03; author taca; state Exp; branches 1.90.2.1; next 1.89; commitid s1d4WiqBCxXCswnC; 1.89 date 2020.09.10.14.30.02; author taca; state Exp; branches; next 1.88; commitid pI40QHk8U5ZGFvnC; 1.88 date 2020.09.10.14.13.11; author taca; state Exp; branches; next 1.87; commitid IyHyqFWpcd1LzvnC; 1.87 date 2020.06.18.13.38.45; author taca; state Exp; branches; next 1.86; commitid dYObvYFS40EH5IcC; 1.86 date 2020.05.19.17.09.49; author taca; state Exp; branches; next 1.85; commitid 0eo4UE5UX1XFdS8C; 1.85 date 2020.05.19.15.33.05; author taca; state Exp; branches; next 1.84; commitid qhLaieDQkZPlGR8C; 1.84 date 2020.05.16.14.14.45; author taca; state Exp; branches; next 1.83; commitid UweW1nqpZQsxlt8C; 1.83 date 2020.03.21.15.59.01; author taca; state Exp; branches 1.83.2.1; next 1.82; commitid iSIdsFzm0qY5Jh1C; 1.82 date 2020.03.20.16.42.43; author taca; state Exp; branches; next 1.81; commitid pMQkysotbRu40a1C; 1.81 date 2020.03.20.15.36.25; author taca; state Exp; branches; next 1.80; commitid JIghE6C9nPsmD91C; 1.80 date 2020.03.20.15.21.12; author taca; state Exp; branches; next 1.79; commitid uhSnIY0eskZWx91C; 1.79 date 2020.03.20.15.06.33; author taca; state Exp; branches; next 1.78; commitid MlYaR8Wd5MvRs91C; 1.78 date 2019.11.03.19.04.06; author rillig; state Exp; branches; next 1.77; commitid puQpdVbj8afCdrJB; 1.77 date 2019.04.14.10.29.39; author taca; state Exp; branches; next 1.76; commitid 1MLGm7recAqHTijB; 1.76 date 2019.04.14.10.19.43; author taca; state Exp; branches; next 1.75; commitid 6IcbDz6w4alYPijB; 1.75 date 2019.04.14.10.10.49; author taca; state Exp; branches; next 1.74; commitid XAHVXVTkPJCaNijB; 1.74 date 2019.03.16.14.48.00; author taca; state Exp; branches 1.74.2.1; next 1.73; commitid xc0qF4kVMiNTfBfB; 1.73 date 2019.03.16.14.45.41; author taca; state Exp; branches; next 1.72; commitid kOEGLljKoYuReBfB; 1.72 date 2019.03.03.16.19.16; author taca; state Exp; branches; next 1.71; commitid 59J3xZgnS1mlbWdB; 1.71 date 2019.03.03.15.26.29; author taca; state Exp; branches; next 1.70; commitid Y607Fhtf4HM6TVdB; 1.70 date 2019.03.03.14.41.21; author taca; state Exp; branches; next 1.69; commitid layRJd17SDAJDVdB; 1.69 date 2018.11.29.14.12.40; author taca; state Exp; branches; next 1.68; commitid oU3RLk1Vv5Z5vQ1B; 1.68 date 2018.11.29.13.47.23; author taca; state Exp; branches; next 1.67; commitid rCYifjd2C9qqmQ1B; 1.67 date 2018.09.23.18.30.36; author taca; state Exp; branches; next 1.66; commitid zR1FNmnE8rNb5gTA; 1.66 date 2018.03.21.09.32.48; author taca; state Exp; branches; next 1.65; commitid KQbB2CZlc2is5jvA; 1.65 date 2018.03.21.09.15.04; author taca; state Exp; branches; next 1.64; commitid AC10EwE7PMijZivA; 1.64 date 2018.03.21.03.40.21; author taca; state Exp; branches; next 1.63; commitid C7U0I9TuPf278hvA; 1.63 date 2018.03.18.14.21.21; author taca; state Exp; branches; next 1.62; commitid 00Pi3lP0hRjdMWuA; 1.62 date 2018.03.13.16.28.48; author taca; state Exp; branches; next 1.61; commitid LmH030ZeqMwaDjuA; 1.61 date 2017.07.18.13.59.04; author taca; state Exp; branches; next 1.60; commitid bpkbfuEtGVR2tIZz; 1.60 date 2017.06.21.13.11.19; author taca; state Exp; branches; next 1.59; commitid OXduBNbyXU4o4fWz; 1.59 date 2017.04.22.10.46.18; author minskim; state Exp; branches; next 1.58; commitid OyFVGpADgWOocwOz; 1.58 date 2017.04.22.10.32.38; author minskim; state Exp; branches; next 1.57; commitid tT7F4E0NAoVH7wOz; 1.57 date 2017.04.21.21.23.59; author minskim; state Exp; branches; next 1.56; commitid j9QjrijpZbm9LrOz; 1.56 date 2017.04.14.05.34.33; author minskim; state Exp; branches; next 1.55; commitid ARRCPznetGkiJsNz; 1.55 date 2016.08.21.05.55.08; author taca; state Exp; branches; next 1.54; commitid yZ3PlBElyNBHq8jz; 1.54 date 2016.03.05.05.23.26; author taca; state Exp; branches 1.54.4.1; next 1.53; commitid vev4Uh78Uq3FGpXy; 1.53 date 2016.02.01.13.42.36; author taca; state Exp; branches; next 1.52; commitid uygmXtfPcIWnvdTy; 1.52 date 2015.06.22.13.49.38; author taca; state Exp; branches 1.52.6.1; next 1.51; commitid O44hxLLBFNlsKqqy; 1.51 date 2014.11.18.15.41.34; author taca; state Exp; branches; next 1.50; commitid ldUkNScTODcljGYx; 1.50 date 2014.11.01.14.57.15; author taca; state Exp; branches; next 1.49; commitid WqkwCLWes2X0CuWx; 1.49 date 2014.07.06.07.36.35; author taca; state Exp; branches 1.49.2.1; next 1.48; commitid jXhB4fP6nNN0YhHx; 1.48 date 2014.05.11.10.00.59; author taca; state Exp; branches 1.48.2.1; next 1.47; commitid evSJM28meS59z6Ax; 1.47 date 2014.03.02.14.59.25; author taca; state Exp; branches; next 1.46; commitid DJgKlMiSQma0t8rx; 1.46 date 2013.12.04.15.41.48; author taca; state Exp; branches 1.46.2.1; next 1.45; commitid tYLaVTXw0gsXwPfx; 1.45 date 2013.10.18.15.22.42; author taca; state Exp; branches; next 1.44; commitid 7eVMDSSDu452WM9x; 1.44 date 2013.09.11.13.23.09; author taca; state Exp; branches 1.44.2.1; next 1.43; commitid odgo1BtOYkwMs15x; 1.43 date 2013.03.19.16.08.08; author taca; state Exp; branches; next 1.42; 1.42 date 2013.02.24.14.33.28; author taca; state Exp; branches; next 1.41; 1.41 date 2013.02.17.09.16.53; author taca; state Exp; branches; next 1.40; 1.40 date 2013.02.12.14.28.09; author taca; state Exp; branches; next 1.39; 1.39 date 2013.02.12.14.16.07; author taca; state Exp; branches; next 1.38; 1.38 date 2013.01.29.15.36.12; author taca; state Exp; branches; next 1.37; 1.37 date 2013.01.09.12.40.52; author taca; state Exp; branches; next 1.36; 1.36 date 2013.01.09.12.33.28; author taca; state Exp; branches; next 1.35; 1.35 date 2013.01.09.12.24.26; author taca; state Exp; branches; next 1.34; 1.34 date 2013.01.05.14.17.48; author taca; state Exp; branches; next 1.33; 1.33 date 2013.01.05.13.57.10; author taca; state Exp; branches; next 1.32; 1.32 date 2013.01.05.13.30.32; author taca; state Exp; branches; next 1.31; 1.31 date 2012.12.16.14.06.53; author taca; state Exp; branches 1.31.2.1; next 1.30; 1.30 date 2012.08.12.12.37.06; author taca; state Exp; branches; next 1.29; 1.29 date 2012.08.12.10.32.52; author taca; state Exp; branches; next 1.28; 1.28 date 2012.08.12.09.44.22; author taca; state Exp; branches; next 1.27; 1.27 date 2012.07.31.12.50.28; author taca; state Exp; branches; next 1.26; 1.26 date 2012.07.31.12.34.39; author taca; state Exp; branches; next 1.25; 1.25 date 2012.07.31.12.20.08; author taca; state Exp; branches; next 1.24; 1.24 date 2012.06.16.15.24.56; author taca; state Exp; branches 1.24.2.1; next 1.23; 1.23 date 2012.06.14.15.11.58; author taca; state Exp; branches; next 1.22; 1.22 date 2012.06.14.15.03.14; author taca; state Exp; branches; next 1.21; 1.21 date 2012.06.14.15.01.25; author taca; state Exp; branches; next 1.20; 1.20 date 2012.06.14.14.45.25; author taca; state Exp; branches; next 1.19; 1.19 date 2012.06.13.15.12.40; author taca; state Exp; branches; next 1.18; 1.18 date 2012.06.02.01.25.57; author taca; state Exp; branches; next 1.17; 1.17 date 2012.04.29.12.56.00; author taca; state Exp; branches; next 1.16; 1.16 date 2012.03.18.08.12.30; author taca; state Exp; branches; next 1.15; 1.15 date 2012.03.18.06.43.54; author taca; state Exp; branches; next 1.14; 1.14 date 2012.03.18.05.35.17; author taca; state Exp; branches; next 1.13; 1.13 date 2012.03.18.05.19.55; author taca; state Exp; branches; next 1.12; 1.12 date 2012.03.18.05.18.16; author taca; state Exp; branches; next 1.11; 1.11 date 2011.12.13.15.47.06; author taca; state Exp; branches; next 1.10; 1.10 date 2011.11.19.15.30.05; author taca; state Exp; branches; next 1.9; 1.9 date 2011.09.14.16.51.50; author taca; state Exp; branches; next 1.8; 1.8 date 2011.08.17.14.11.18; author taca; state Exp; branches; next 1.7; 1.7 date 2011.06.17.13.47.29; author taca; state Exp; branches; next 1.6; 1.6 date 2011.06.11.03.04.22; author taca; state Exp; branches; next 1.5; 1.5 date 2011.05.30.13.08.15; author hiramatsu; state Exp; branches; next 1.4; 1.4 date 2011.05.10.14.09.21; author taca; state Exp; branches; next 1.3; 1.3 date 2011.04.06.13.23.03; author taca; state Exp; branches; next 1.2; 1.2 date 2011.03.27.15.54.43; author taca; state Exp; branches 1.2.2.1; next 1.1; 1.1 date 2011.03.23.14.22.49; author taca; state Exp; branches; next ; 1.145.2.1 date 2023.06.30.18.41.56; author bsiegert; state Exp; branches; next 1.145.2.2; commitid NnnxBbs8ehPBb0vE; 1.145.2.2 date 2023.07.03.18.39.40; author bsiegert; state Exp; branches; next ; commitid 3CK1A1izxaEQ4ovE; 1.137.4.1 date 2023.03.04.13.58.16; author spz; state Exp; branches; next 1.137.4.2; commitid kSyx3c9E895spOfE; 1.137.4.2 date 2023.03.04.14.10.23; author spz; state Exp; branches; next 1.137.4.3; commitid z0Mpayg7Eu2CtOfE; 1.137.4.3 date 2023.03.04.14.26.45; author spz; state Exp; branches; next ; commitid rOYoXvUriJ8ezOfE; 1.128.2.1 date 2022.07.23.17.05.52; author spz; state Exp; branches; next 1.128.2.2; commitid tQnvQXNkYgNdE2ND; 1.128.2.2 date 2022.07.23.19.15.51; author spz; state Exp; branches; next 1.128.2.3; commitid p8RUC65YWcDOm3ND; 1.128.2.3 date 2022.07.23.19.35.08; author spz; state Exp; branches; next 1.128.2.4; commitid 0ogLPDtEKXGqt3ND; 1.128.2.4 date 2022.07.23.19.40.54; author spz; state Exp; branches; next ; commitid fjU9UaixYjgpv3ND; 1.118.2.1 date 2022.06.04.09.00.31; author spz; state Exp; branches; next 1.118.2.2; commitid 01kFiXeuMXUmxHGD; 1.118.2.2 date 2022.06.04.09.17.03; author spz; state Exp; branches; next 1.118.2.3; commitid 4hkQAqpjDwI2DHGD; 1.118.2.3 date 2022.06.04.09.31.41; author spz; state Exp; branches; next 1.118.2.4; commitid 6heywWYUC6I3IHGD; 1.118.2.4 date 2022.06.04.09.47.11; author spz; state Exp; branches; next ; commitid VYUQCjIf6jxnNHGD; 1.109.2.1 date 2022.03.03.19.00.07; author bsiegert; state Exp; branches; next 1.109.2.2; commitid aLwNpJcYj1mpQNuD; 1.109.2.2 date 2022.03.03.19.06.03; author bsiegert; state Exp; branches; next 1.109.2.3; commitid jGphYYOsamGrSNuD; 1.109.2.3 date 2022.03.03.19.11.59; author bsiegert; state Exp; branches; next 1.109.2.4; commitid ZRy4g549ae7uUNuD; 1.109.2.4 date 2022.03.03.19.32.33; author bsiegert; state Exp; branches; next ; commitid mqFOoqHeJqvx1OuD; 1.90.2.1 date 2020.10.23.16.25.01; author bsiegert; state Exp; branches; next ; commitid r8gC9dOiU7kGV2tC; 1.83.2.1 date 2020.06.01.19.15.21; author bsiegert; state Exp; branches; next 1.83.2.2; commitid BxsHy6wijU16vyaC; 1.83.2.2 date 2020.06.04.08.51.16; author bsiegert; state Exp; branches; next ; commitid QRhT8Ry9Byj1XSaC; 1.74.2.1 date 2019.05.05.15.49.20; author bsiegert; state Exp; branches; next 1.74.2.2; commitid 92BtnVvHU9cDZ1mB; 1.74.2.2 date 2019.05.05.16.06.25; author bsiegert; state Exp; branches; next 1.74.2.3; commitid AmxuaU7PFUju52mB; 1.74.2.3 date 2019.05.05.18.18.17; author bsiegert; state Exp; branches; next ; commitid B3CvZo2C7fPIO2mB; 1.54.4.1 date 2016.09.07.19.03.34; author bsiegert; state Exp; branches; next ; commitid dcqEUlxnHncnfolz; 1.52.6.1 date 2016.02.10.19.22.41; author bsiegert; state Exp; branches; next 1.52.6.2; commitid J4t1HDBBnemr6pUy; 1.52.6.2 date 2016.03.08.18.58.35; author bsiegert; state Exp; branches; next ; commitid ngYj1vZkzNUm6SXy; 1.49.2.1 date 2014.11.16.14.40.50; author tron; state Exp; branches; next 1.49.2.2; commitid w64yeLjzHScy2qYx; 1.49.2.2 date 2014.11.20.10.19.29; author tron; state Exp; branches; next ; commitid uTxnrNp5vi4VsUYx; 1.48.2.1 date 2014.07.09.21.12.09; author tron; state Exp; branches; next ; commitid aKsVhMDAkykSnKHx; 1.46.2.1 date 2014.03.11.15.13.13; author tron; state Exp; branches; next ; commitid OpnyxYZ9SJNSfisx; 1.44.2.1 date 2013.10.28.23.37.32; author tron; state Exp; branches; next 1.44.2.2; commitid AxSe4qFuC4FWl7bx; 1.44.2.2 date 2013.12.09.17.25.09; author tron; state Exp; branches; next ; commitid KPISTi6tUJluWtgx; 1.31.2.1 date 2013.01.18.12.18.31; author tron; state Exp; branches; next 1.31.2.2; 1.31.2.2 date 2013.01.18.13.22.48; author tron; state Exp; branches; next 1.31.2.3; 1.31.2.3 date 2013.01.18.14.09.39; author tron; state Exp; branches; next 1.31.2.4; 1.31.2.4 date 2013.01.18.14.51.10; author tron; state Exp; branches; next 1.31.2.5; 1.31.2.5 date 2013.01.18.15.08.38; author tron; state Exp; branches; next 1.31.2.6; 1.31.2.6 date 2013.01.18.15.41.59; author tron; state Exp; branches; next 1.31.2.7; 1.31.2.7 date 2013.02.02.10.40.01; author tron; state Exp; branches; next 1.31.2.8; 1.31.2.8 date 2013.02.15.11.23.44; author tron; state Exp; branches; next 1.31.2.9; 1.31.2.9 date 2013.02.15.13.32.28; author tron; state Exp; branches; next ; 1.24.2.1 date 2012.08.12.14.06.58; author tron; state Exp; branches; next 1.24.2.2; 1.24.2.2 date 2012.08.12.14.26.14; author tron; state Exp; branches; next 1.24.2.3; 1.24.2.3 date 2012.08.12.14.48.59; author tron; state Exp; branches; next 1.24.2.4; 1.24.2.4 date 2012.08.20.07.54.05; author sbd; state Exp; branches; next 1.24.2.5; 1.24.2.5 date 2012.08.20.08.19.36; author sbd; state Exp; branches; next 1.24.2.6; 1.24.2.6 date 2012.08.20.08.22.29; author sbd; state Exp; branches; next ; 1.2.2.1 date 2011.04.06.22.49.41; author tron; state Exp; branches; next ; desc @@ 1.159 log @www/ruby-rails71: update to 7.1.3.2 Update Ruby on Rails 7.1 and related pacakges to 7.1.3.2 This includes security fix: CVE-2024-26142 for www/ruby-actionpack71 CVE-2024-26143 for www/ruby-actionpack71 Action Pack * Fix possible XSS vulnerability with the translate method in controllers CVE-2024-26143 * Fix ReDoS in Accept header parsing CVE-2024-26142 @ text @# $NetBSD: rails.mk,v 1.158 2024/02/24 14:49:27 taca Exp $ .if !defined(_RUBY_RAILS_MK) _RUBY_RAILS_MK= # defined # # === User-settable variables === # # RUBY_RAILS_DEFAULT # Select default Ruby on Rails version. # # Possible values: 61 70 71 # Default: 61 # # # === Infrastructure variables === # # RUBY_RAILS_REQD # Ruby Rails version to use. This variable should not be set in # packages. # # Possible values: ${RUBY_RAILS_ACCEPTED} # Default: ${RUBY_RAILS_DEFAULT} # # === Package-settable variables === # # RUBY_RAILS_ACCEPTED # The Ruby on Rails versions that are acceptable for the package. # # Possible values: 61 70 71 # Default: (empty) # # RUBY_RAILS_STRICT_DEP # Strict dependency to Ruby on Rails component packages. # # Possible value: yes no # Default: no # # === Defined variables === # # RUBY_RAILS # Selected Ruby on Rails version. # # Possible values: 61 70 71 # # # current Ruby on Rails versions. # RUBY_RAILS61_VERSION?= 6.1.7.7 RUBY_RAILS70_VERSION?= 7.0.8.1 RUBY_RAILS71_VERSION?= 7.1.3.2 RUBY_RAILS_ACCEPTED?= # empty RUBY_RAILS_DEFAULT?= 61 RUBY_RAILS_STRICT_DEP?= no RUBY_RAILS_SUPPORTED= 61 70 71 .if empty(RUBY_RAILS_SUPPORTED:M${RUBY_RAILS_DEFAULT}) . error Unsupported RUBY_RAILS_DEFAULT: ${RUBY_RAILS_DEFAULT} .endif .if empty(RUBY_RAILS_ACCEPTED) RUBY_RAILS_ACCEPTED= ${RUBY_RAILS_SUPPORTED} .endif .if defined(RUBY_RAILS_REQD) . if empty(RUBY_RAILS_ACCEPTED:M${RUBY_RAILS_REQD}) . error Unsupported RUBY_RAILS_REQD: ${RUBY_RAILS_REQD} . endif . for rr in ${RUBY_RAILS_ACCEPTED} . if ${rr} == ${RUBY_RAILS_REQD} RUBY_RAILS= ${rr} . endif . endfor .endif .if !defined(RUBY_RAILS) . for rr in ${RUBY_RAILS_ACCEPTED} . if ${rr} == ${RUBY_RAILS_DEFAULT} RUBY_RAILS= ${rr} . else RUBY_RAILS?= ${rr} . endif . endfor .endif RUBY_RAILS_REQD?= ${RUBY_RAILS} .if ${RUBY_RAILS} == "71" RAILS_VERSION:= ${RUBY_RAILS71_VERSION} .elif ${RUBY_RAILS} == "70" RAILS_VERSION:= ${RUBY_RAILS70_VERSION} .elif ${RUBY_RAILS} == "61" RAILS_VERSION:= ${RUBY_RAILS61_VERSION} .endif # # Components of Ruby's version. # _RAILS_MAJOR= ${RAILS_VERSION:C/([0-9]+)\..*/\1/} _RAILS_MINOR= ${RAILS_VERSION:C/([0-9]+)\.([0-9]+)\..*/\2/} _RAILS_TEENY= ${RAILS_VERSION:C/([0-9]+)\.([0-9]+)\.([0-9]+).*/\3/} # # If RUBY_RAILS_STRICT_DEP is defined, match exact current Ruby on Rails # version. Otherwise allow greater minor version. # .if !empty(RUBY_RAILS_STRICT_DEP:M[yY][eE][sS]) _RAILS_NEXT_CMD= ${EXPR} ${_RAILS_TEENY} + 1 _RAILS_DEP= \ ${RUBY_RAILS}>=${RAILS_VERSION}<${_RAILS_MAJOR}.${_RAILS_MINOR}.${_RAILS_NEXT_CMD:sh} .else _RAILS_NEXT_CMD= ${EXPR} ${_RAILS_MINOR} + 1 _RAILS_DEP= ${RUBY_RAILS}>=${RAILS_VERSION}<${_RAILS_MAJOR}.${_RAILS_NEXT_CMD:sh} .endif # MAKE_ENV+= RUBY_RAILS_DEFAULT=${RUBY_RAILS} \ RUBY_RAILS_ACCEPTED=${RUBY_RAILS} # MULTI+= RUBY_RAILS_DEFAULT=${RUBY_RAILS} \ RUBY_RAILS_ACCEPTED=${RUBY_RAILS} PLIST_SUBST+= RUBY_RAILS=${RUBY_RAILS} FILES_SUBST+= RUBY_RAILS=${RUBY_RAILS} RUBY_ACTIVESUPPORT_DEPENDS= \ ${RUBY_PKGPREFIX}-activesupport${_RAILS_DEP}:../../devel/ruby-activesupport${RUBY_RAILS} RUBY_ACTIVEMODEL_DEPENDS= \ ${RUBY_PKGPREFIX}-activemodel${_RAILS_DEP}:../../devel/ruby-activemodel${RUBY_RAILS} RUBY_ACTIONPACK_DEPENDS= \ ${RUBY_PKGPREFIX}-actionpack${_RAILS_DEP}:../../www/ruby-actionpack${RUBY_RAILS} RUBY_ACTIVERECORD_DEPENDS= \ ${RUBY_PKGPREFIX}-activerecord${_RAILS_DEP}:../../databases/ruby-activerecord${RUBY_RAILS} RUBY_ACTIONMAILER_DEPENDS= \ ${RUBY_PKGPREFIX}-actionmailer${_RAILS_DEP}:../../mail/ruby-actionmailer${RUBY_RAILS} RUBY_RAILTIES_DEPENDS= \ ${RUBY_PKGPREFIX}-railties${_RAILS_DEP}:../../devel/ruby-railties${RUBY_RAILS} RUBY_RAILS_DEPENDS= \ ${RUBY_PKGPREFIX}-rails${_RAILS_DEP}:../../www/ruby-rails${RUBY_RAILS} RUBY_ACTIONVIEW_DEPENDS= \ ${RUBY_PKGPREFIX}-actionview${_RAILS_DEP}:../../www/ruby-actionview${RUBY_RAILS} RUBY_ACTIVEJOB_DEPENDS= \ ${RUBY_PKGPREFIX}-activejob${_RAILS_DEP}:../../devel/ruby-activejob${RUBY_RAILS} RUBY_ACTIONCABLE_DEPENDS= \ ${RUBY_PKGPREFIX}-actioncable${_RAILS_DEP}:../../www/ruby-actioncable${RUBY_RAILS} RUBY_ACTIVESTORAGE_DEPENDS= \ ${RUBY_PKGPREFIX}-activestorage${_RAILS_DEP}:../../devel/ruby-activestorage${RUBY_RAILS} RUBY_ACTIONMAILBOX_DEPENDS= \ ${RUBY_PKGPREFIX}-actionmailbox${_RAILS_DEP}:../../mail/ruby-actionmailbox${RUBY_RAILS} RUBY_ACTIONTEXT_DEPENDS= \ ${RUBY_PKGPREFIX}-actiontext${_RAILS_DEP}:../../textproc/ruby-actiontext${RUBY_RAILS} .endif @ 1.158 log @www/ruby-rails70: update to 7.0.8.1 Update Ruby on Rails 7.0 and related pacakges to 7.0.8.1 This includes security fix: CVE-2024-26144 for devel/ruby-activestorage70 CVE-2024-26146 for www/ruby-actionpack70 Action Pack * Fix possible XSS vulnerability with the translate method in controllers CVE-2024-26143 Active Storage * Disables the session in ActiveStorage::Blobs::ProxyController and ActiveStorage::Representations::ProxyController in order to allow caching by default in some CDNs as CloudFlare Fixes #44136 Bruno Prieto @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.157 2024/02/24 14:42:39 taca Exp $ d52 1 a52 1 RUBY_RAILS71_VERSION?= 7.1.3 @ 1.157 log @www/rails61: update to 6.1.7.7 Update rails61 and related pacakges to 6.1.7.7 This includes security fix for CVE-2024-26144, devel/ruby-activestorage61. Active Storage * Disables the session in ActiveStorage::Blobs::ProxyController and ActiveStorage::Representations::ProxyController in order to allow caching by default in some CDNs as CloudFlare Fixes #44136 Bruno Prieto @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.156 2024/02/04 15:05:48 taca Exp $ d51 1 a51 1 RUBY_RAILS70_VERSION?= 7.0.8 @ 1.156 log @lang/ruby: start update rails71 to 7.1.3 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.155 2023/11/30 15:05:10 taca Exp $ d50 1 a50 1 RUBY_RAILS61_VERSION?= 6.1.7.6 @ 1.155 log @lang/ruby: add support for Ruby on Rails 7.1 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.154 2023/09/10 14:19:00 taca Exp $ d52 1 a52 1 RUBY_RAILS71_VERSION?= 7.1.2 @ 1.154 log @www/ruby-rails70: update to 7.0.8 pkgsrc change: fix dependency of ruby-activestorage70 Active Support * Fix TimeWithZone still using deprecated #to_s when ENV or config to disable it are set. (Hartley McGuire) * Fix CacheStore#write_multi when using a distributed Redis cache with a connection pool. Fixes #48938. (Jonathan del Strother) Active Record * Fix change_column not setting precision: 6 on datetime columns when using 7.0+ Migrations and SQLite. (Hartley McGuire) * Fix unscope is not working in specific case Before: Post.where(id: 1...3).unscope(where: :id).to_sql # "SELECT `posts`.* FROM `posts` WHERE `posts`.`id` >= 1 AND `posts`.`id` < 3" After: Post.where(id: 1...3).unscope(where: :id).to_sql # "SELECT `posts`.* FROM `posts`" Fixes #48094. (Kazuya Hatanaka) * Fix associations to a STI model including a class_name parameter class Product < ApplicationRecord has_many :requests, as: :requestable, class_name: "ProductRequest", dependent: :destroy end # STI tables class Request < ApplicationRecord belongs_to :requestable, polymorphic: true validate :request_type, presence: true end class ProductRequest < Request belongs_to :user end Accessing such association would lead to: table_metadata.rb:22:in `has_column?': undefined method `key?' for nil:NilClass (NoMethodError) (Romain Filinto) * Fix change_table setting datetime precision for 6.1 Migrations (Hartley McGuire) * Fix change_column setting datetime precision for 6.1 Migrations (Hartley McGuire) Action View * Fix form_for missing the hidden _method input for models with a namespaced route. (Hartley McGuire) * Fix render collection: @@records, cache: true inside jbuilder templates The previous fix that shipped in 7.0.7 assumed template fragments are always strings, this isn't true with jbuilder. (Jean Boussier) Action Pack * Fix HostAuthorization potentially displaying the value of the X_FORWARDED_HOST header when the HTTP_HOST header is being blocked. (Hartley McGuire, Daniel Schlosser) Active Job * Fix Active Job log message to correctly report a job failed to enqueue when the adapter raises an ActiveJob::EnqueueError. (Ben Sheldon) Railties * Omit webdrivers gem dependency from Gemfile template (Sean Doyle) @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.153 2023/09/03 15:56:57 taca Exp $ d12 1 a12 1 # Possible values: 61 70 d30 1 a30 1 # Possible values: 61 70 d44 1 a44 1 # Possible values: 61 70 d52 1 d59 1 a59 1 RUBY_RAILS_SUPPORTED= 61 70 d92 3 a94 1 .if ${RUBY_RAILS} == "70" @ 1.153 log @lang/ruby: drop support for Ruby on Rails 5.2 and 6.0 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.152 2023/09/03 15:33:42 taca Exp $ d51 1 a51 1 RUBY_RAILS70_VERSION?= 7.0.7.2 @ 1.152 log @lang/ruby: switch default Rails version to 6.1 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.151 2023/08/26 15:29:20 taca Exp $ d12 1 a12 1 # Possible values: 52 60 61 70 d30 1 a30 1 # Possible values: 52 60 61 70 d44 1 a44 1 # Possible values: 52 60 61 70 a49 2 RUBY_RAILS52_VERSION?= 5.2.8.1 RUBY_RAILS60_VERSION?= 6.0.6.1 d54 1 a54 1 RUBY_RAILS_DEFAULT?= 52 d58 1 a58 1 RUBY_RAILS_SUPPORTED= 52 60 61 70 a94 4 .elif ${RUBY_RAILS} == "60" RAILS_VERSION:= ${RUBY_RAILS60_VERSION} .elif ${RUBY_RAILS} == "52" RAILS_VERSION:= ${RUBY_RAILS52_VERSION} a149 1 .if ${RUBY_RAILS} >= 60 a153 1 .endif @ 1.151 log @www/ruby-rails70: update to 7.0.7.2 7.0.7.2 (2023-08-22) Active Support * Use a temporary file for storing unencrypted files while editing [CVE-2023-38037] 7.0.7.1 (2023-08-22) * No changes between this and 7.0.7.2. This release was just to fix file permissions in the previous release. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.150 2023/08/26 15:23:28 taca Exp $ d13 1 a13 1 # Default: 52 @ 1.150 log @www/ruby-rails61: update to 6.1.7.6 6.1.7.5 (2023-08-22) Active Support * Use a temporary file for storing unencrypted files while editing [CVE-2023-38037] 6.1.7.6 (2023-08-22) * No changes between this and 6.1.7.5. This release was just to fix file permissions in the previous release. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.149 2023/08/11 14:14:43 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.7 @ 1.149 log @www/rails70: update to 7.0.7 Rails 7.0.7 (20223-08-10) Active Support * Fix Cache::NullStore with local caching for repeated reads. (fatkodima) * Fix to_s with no arguments not respecting custom :default formats (Hartley McGuire) * Fix ActiveSupport::Inflector.humanize(nil) raising NoMethodError: undefined method `end_with?' for nil:NilClass. (James Robinson) * Fix Enumerable#sum for Enumerator#lazy. (fatkodima, Matthew Draper, Jonathan Hefner) * Improve error message when EventedFileUpdateChecker is used without a compatible version of the Listen gem. (Hartley McGuire) Active Model * Error.full_message now strips ":base" from the message. (zzak) * Add a load hook for ActiveModel::Model (named active_model) to match the load hook for ActiveRecord::Base and allow for overriding aspects of the ActiveModel::Model class. Active Record * Restores functionality to the missing method when using enums and fixes. (paulreece) * Fix StatementCache::Substitute with serialized type. (ywenc) * Fix :db_runtime on notification payload when application have multiple databases. (Eileen M. Uchitelle) * Correctly dump check constraints for MySQL 8.0.16+. (Steve Hill) * Fix ActiveRecord::QueryMethods#in_order_of to include nils, to match the behavior of Enumerable#in_order_of. For example, Post.in_order_of(:title, [nil, "foo"]) will now include posts with nil titles, the same as Post.all.to_a.in_order_of(:title, [nil, "foo"]). (fatkodima) * Revert "Fix autosave associations with validations added on :base of the associated objects." This change intended to remove the :base attribute from the message, but broke many assumptions which key these errors were stored. (zzak) * Fix #previously_new_record? to return true for destroyed records. Before, if a record was created and then destroyed, #previously_new_record? would return true. Now, any UPDATE or DELETE to a record is considered a change, and will result in #previously_new_record? returning false. (Adrianna Chang) * Revert breaking changes to has_one relationship deleting the old record before the new one is validated. (zzak) * Fix support for Active Record instances being uses in queries. As of 7.0.5, query arguments were deep duped to avoid mutations impacting the query cache, but this had the adverse effect to clearing the primary key when the query argument contained an ActiveRecord::Base instance. This broke the noticed gem. (Jean Boussier) Action View * Fix render collection: @@records, cache: true to cache fragments as bare strings. Previously it would incorrectly cache them as Action View buffers. (Jean Boussier) * Don't double-encode nested field_id and field_name index values. Pass index: @@options as a default keyword argument to field_id and field_name view helper methods. (Sean Doyle) Railties * Update default scaffold templates to set 303 (See Other) as status code on redirect for the update action for XHR requests other than GET or POST to avoid issues (e.g browsers trying to follow the redirect using the original request method resulting in double PATCH/PUT). (Guillermo Iguaran) @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.148 2023/07/09 03:30:32 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.7.4 @ 1.148 log @www/ruby-rails70: update to 7.0.6 Active Support * Fix EncryptedConfiguration returning incorrect values for some Hash methods. (Hartley McGuire) * Fix arguments being destructed Enumerable#many? with block. (Andrew Novoselac) * Fix humanize for strings ending with id. (fatkodima) Active Model * No changes. Active Record * Fix autosave associations with validations added on :base of the associated objects. (fatkodima) * Fix result with anonymous PostgreSQL columns of different type from json. (Oleksandr Avoiants) * Preserve timestamp when setting an ActiveSupport::TimeWithZone value to timestamptz attribute. (fatkodima) * Fix where on association with has_one/has_many polymorphic relations. Before: Treasure.where(price_estimates: PriceEstimate.all) #=> SELECT (...) WHERE "treasures"."id" IN (SELECT "price_estimates"."estimate_of_id" FROM "price_estimates") Later: Treasure.where(price_estimates: PriceEstimate.all) #=> SELECT (...) WHERE "treasures"."id" IN (SELECT "price_estimates"."estimate_of_id" FROM "price_estimates" WHERE "price_estimates"."estimate_of_type" = 'Treasure') (Lázaro Nixon) * Fix decrementing counter caches on optimistically locked record deletion. (fatkodima) * Ensure binary-destined values have binary encoding during type cast. (Matthew Draper) * Preserve existing column default functions when altering table in SQLite. (fatkodima) * Remove table alias added when using where.missing or where.associated. (fatkodima) * Fix Enumerable#in_order_of to only flatten first level to preserve nesting. (Miha Rekar) Action View * No changes. Action Pack * No changes. Active Job * Fix error Active Job passed class with permitted?. (Alex Baldwin) Action Mailer * No changes. Action Cable * Fix Action Cable Redis configuration with sentinels. (Dmitriy Ivliev) Active Storage * Fix retrieving rotation value from FFmpeg on version 5.0+. In FFmpeg version 5.0+ the rotation value has been removed from tags. Instead the value can be found in side_data_list. Along with this update it's possible to have values of -90, -270 to denote the video has been rotated. (Haroon Ahmed) Action Mailbox * No changes. Action Text * No changes. Railties * Avoid escaping paths when editing credentials. (Jonathan Hefner) @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.147 2023/06/27 13:39:03 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.6 @ 1.147 log @www/ruby-rails70 Rails 7.0.5.1 (2023-06-26) Action Pack * Raise an exception if illegal characters are provide to redirect_to [CVE-2023-28362] *Zack Deveau* @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.146 2023/06/27 13:35:17 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.5.1 @ 1.146 log @www/rails61: update to 6.1.7.4 Rails 6.1.7.4 (2023-06-26) Action Pack * Raise an exception if illegal characters are provide to redirect_to [CVE-2023-28362] *Zack Deveau* @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.145 2023/05/28 01:54:17 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.5 @ 1.145 log @www/ruby-rails70: update to 7.0.5 7.0.5 (2023-05-24) Changes are too many to write here, please refer in detail. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.144 2023/03/15 13:35:15 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.7.3 @ 1.145.2.1 log @Pullup ticket #6766 - requested by taca www/ruby-rails61: security fix Revisions pulled up: - databases/ruby-activerecord61/distinfo 1.19 - devel/ruby-activejob61/distinfo 1.19 - devel/ruby-activemodel61/distinfo 1.19 - devel/ruby-activestorage61/distinfo 1.19 - devel/ruby-activesupport61/distinfo 1.19 - devel/ruby-railties61/distinfo 1.19 - lang/ruby/rails.mk 1.146 - mail/ruby-actionmailbox61/distinfo 1.19 - mail/ruby-actionmailer61/distinfo 1.19 - textproc/ruby-actiontext61/distinfo 1.19 - www/ruby-actioncable61/distinfo 1.19 - www/ruby-actionpack61/distinfo 1.19 - www/ruby-actionview61/distinfo 1.19 - www/ruby-rails61/distinfo 1.19 --- Module Name: pkgsrc Committed By: taca Date: Tue Jun 27 13:35:19 UTC 2023 Modified Files: pkgsrc/databases/ruby-activerecord61: distinfo pkgsrc/devel/ruby-activejob61: distinfo pkgsrc/devel/ruby-activemodel61: distinfo pkgsrc/devel/ruby-activestorage61: distinfo pkgsrc/devel/ruby-activesupport61: distinfo pkgsrc/devel/ruby-railties61: distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailbox61: distinfo pkgsrc/mail/ruby-actionmailer61: distinfo pkgsrc/textproc/ruby-actiontext61: distinfo pkgsrc/www/ruby-actioncable61: distinfo pkgsrc/www/ruby-actionpack61: distinfo pkgsrc/www/ruby-actionview61: distinfo pkgsrc/www/ruby-rails61: distinfo Log Message: www/rails61: update to 6.1.7.4 Rails 6.1.7.4 (2023-06-26) Action Pack * Raise an exception if illegal characters are provide to redirect_to [CVE-2023-28362] *Zack Deveau* @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.145 2023/05/28 01:54:17 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.7.4 @ 1.145.2.2 log @Pullup ticket #6767 - requested by taca www/ruby-rails70: security fix Revisions pulled up: - databases/ruby-activerecord70/distinfo 1.13 - devel/ruby-activejob70/distinfo 1.13 - devel/ruby-activemodel70/distinfo 1.13 - devel/ruby-activestorage70/distinfo 1.13 - devel/ruby-activesupport70/distinfo 1.13 - devel/ruby-railties70/distinfo 1.13 - lang/ruby/rails.mk 1.147 - mail/ruby-actionmailbox70/distinfo 1.13 - mail/ruby-actionmailer70/distinfo 1.13 - textproc/ruby-actiontext70/distinfo 1.13 - www/ruby-actioncable70/distinfo 1.13 - www/ruby-actionpack70/distinfo 1.13 - www/ruby-actionview70/distinfo 1.13 - www/ruby-rails70/distinfo 1.13 --- Module Name: pkgsrc Committed By: taca Date: Tue Jun 27 13:39:05 UTC 2023 Modified Files: pkgsrc/databases/ruby-activerecord70: distinfo pkgsrc/devel/ruby-activejob70: distinfo pkgsrc/devel/ruby-activemodel70: distinfo pkgsrc/devel/ruby-activestorage70: distinfo pkgsrc/devel/ruby-activesupport70: distinfo pkgsrc/devel/ruby-railties70: distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailbox70: distinfo pkgsrc/mail/ruby-actionmailer70: distinfo pkgsrc/textproc/ruby-actiontext70: distinfo pkgsrc/www/ruby-actioncable70: distinfo pkgsrc/www/ruby-actionpack70: distinfo pkgsrc/www/ruby-actionview70: distinfo pkgsrc/www/ruby-rails70: distinfo Log Message: www/ruby-rails70 Rails 7.0.5.1 (2023-06-26) Action Pack * Raise an exception if illegal characters are provide to redirect_to [CVE-2023-28362] *Zack Deveau* @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.145.2.1 2023/06/30 18:41:56 bsiegert Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.5.1 @ 1.144 log @www/ruby-rails70: update to 7.0.4.3 7.0.4.3 (2023-03-13) Active Support * Implement SafeBuffer#bytesplice [CVE-2023-28120] Action View * Ignore certain data-* attributes in rails-ujs when element is contenteditable [CVE-2023-23913] @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.143 2023/03/15 13:31:47 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.4.3 @ 1.143 log @www/ruby-rails61: update to 6.1.7.3 6.1.7.3 (2023-03-13) Active Support * Implement SafeBuffer#bytesplice [CVE-2023-28120] Action View * Ignore certain data-* attributes in rails-ujs when element is contenteditable [CVE-2023-23913] @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.142 2023/01/25 13:31:15 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.4.2 @ 1.142 log @www/ruby-rails70: update to 7.0.4.2 Rails 7.0.4.2 (2023-01-24) * Fix `domain: :all` for two letter TLD This fixes a compatibility issue introduced in our previous security release when using `domain: :all` with a two letter but single level top level domain domain (like `.ca`, rather than `.co.uk`). @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.141 2023/01/25 13:27:09 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.7.2 @ 1.141 log @www/ruby-rails61: update to 6.1.7.2 Rails 6.1.7.2 (2023-01-24) www/ruby-actionpack61 * Fix `domain: :all` for two letter TLD This fixes a compatibility issue introduced in our previous security release when using `domain: :all` with a two letter but single level top level domain domain (like `.ca`, rather than `.co.uk`). @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.140 2023/01/19 14:34:25 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.4.1 @ 1.140 log @www/ruby-rails70: update to 7.0.4.1 Rails 7.0.4.1 (2023-01-17) devel/ruby-activesupport70 * Avoid regex backtracking in Inflector.underscore [CVE-2023-22796] www/ruby-actionpack70 * Fix sec issue with _url_host_allowed? Disallow certain strings from `_url_host_allowed?` to avoid a redirect to malicious sites. [CVE-2023-22797] * Avoid regex backtracking on If-None-Match header [CVE-2023-22795] * Use string#split instead of regex for domain parts [CVE-2023-22792] databases/ruby-activerecord70 * Make sanitize_as_sql_comment more strict Though this method was likely never meant to take user input, it was attempting sanitization. That sanitization could be bypassed with carefully crafted input. This commit makes the sanitization more robust by replacing any occurrances of "/*" or "*/" with "/ *" or "* /". It also performs a first pass to remove one surrounding comment to avoid compatibility issues for users relying on the existing removal. This also clarifies in the documentation of annotate that it should not be provided user input. [CVE-2023-22794] * Added integer width check to PostgreSQL::Quoting Given a value outside the range for a 64bit signed integer type PostgreSQL will treat the column type as numeric. Comparing integer values against numeric values can result in a slow sequential scan. This behavior is configurable via ActiveRecord::Base.raise_int_wider_than_64bit which defaults to true. [CVE-2022-44566] @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.139 2023/01/19 14:31:09 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.7.1 @ 1.139 log @www/ruby-rails61: update to 6.1.7.1 Rails 6.1.7.1 (2023-01-17) devel/ruby-activesupport61 * Avoid regex backtracking in Inflector.underscore [CVE-2023-22796] www/ruby-actionpack61 * Avoid regex backtracking on If-None-Match header [CVE-2023-22795] * Use string#split instead of regex for domain parts [CVE-2023-22792] databases/ruby-activerecord61 * Make sanitize_as_sql_comment more strict Though this method was likely never meant to take user input, it was attempting sanitization. That sanitization could be bypassed with carefully crafted input. This commit makes the sanitization more robust by replacing any occurrances of "/*" or "*/" with "/ *" or "* /". It also performs a first pass to remove one surrounding comment to avoid compatibility issues for users relying on the existing removal. This also clarifies in the documentation of annotate that it should not be provided user input. [CVE-2023-22794] * Added integer width check to PostgreSQL::Quoting Given a value outside the range for a 64bit signed integer type PostgreSQL will treat the column type as numeric. Comparing integer values against numeric values can result in a slow sequential scan. This behavior is configurable via ActiveRecord::Base.raise_int_wider_than_64bit which defaults to true. [CVE-2022-44566] @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.138 2023/01/19 14:27:24 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.4 @ 1.138 log @www/ruby-rails60: update to 6.0.6.1 Only databases/ruby-activerecord61 has updated. Rails 6.0.6.1 (2023-01-17) * Make `sanitize_as_sql_comment` more strict Though this method was likely never meant to take user input, it was attempting sanitization. That sanitization could be bypassed with carefully crafted input. This commit makes the sanitization more robust by replacing any occurrances of "/*" or "*/" with "/ *" or "* /". It also performs a first pass to remove one surrounding comment to avoid compatibility issues for users relying on the existing removal. This also clarifies in the documentation of annotate that it should not be provided user input. [CVE-2023-22794] @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.137 2022/09/10 12:40:14 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.7 @ 1.137 log @lang/ruby: start update of Ruby on Rails 7.0 Start update of Ruby on Rails to 7.0.4. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.136 2022/09/10 08:24:40 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.6 @ 1.137.4.1 log @Pullup ticket #6732 - requested by taca databases/ruby-activerecord60: security update devel/ruby-activejob60: distinfo update devel/ruby-activemodel60: distinfo update devel/ruby-activestorage60: distinfo update devel/ruby-activesupport60: distinfo update devel/ruby-railties60: distinfo update mail/ruby-actionmailbox60: distinfo update mail/ruby-actionmailer60: distinfo update textproc/ruby-actiontext60: distinfo update www/ruby-actioncable60: distinfo update www/ruby-actionpack60: distinfo update www/ruby-actionpack60: distinfo update www/ruby-actionview60: distinfo update www/ruby-rails60: distinfo update Revisions pulled up: - databases/ruby-activerecord60/distinfo 1.21 - devel/ruby-activejob60/distinfo 1.21 - devel/ruby-activemodel60/distinfo 1.21 - devel/ruby-activestorage60/distinfo 1.21 - devel/ruby-activesupport60/distinfo 1.21 - devel/ruby-railties60/distinfo 1.21 - lang/ruby/rails.mk 1.138 - mail/ruby-actionmailbox60/distinfo 1.21 - mail/ruby-actionmailer60/distinfo 1.21 - textproc/ruby-actiontext60/distinfo 1.21 - www/ruby-actioncable60/distinfo 1.21 - www/ruby-actionpack60/Makefile 1.5 - www/ruby-actionpack60/distinfo 1.21 - www/ruby-actionview60/distinfo 1.21 - www/ruby-rails60/distinfo 1.21 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu Jan 19 14:27:26 UTC 2023 Modified Files: pkgsrc/databases/ruby-activerecord60: distinfo pkgsrc/devel/ruby-activejob60: distinfo pkgsrc/devel/ruby-activemodel60: distinfo pkgsrc/devel/ruby-activestorage60: distinfo pkgsrc/devel/ruby-activesupport60: distinfo pkgsrc/devel/ruby-railties60: distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailbox60: distinfo pkgsrc/mail/ruby-actionmailer60: distinfo pkgsrc/textproc/ruby-actiontext60: distinfo pkgsrc/www/ruby-actioncable60: distinfo pkgsrc/www/ruby-actionpack60: Makefile distinfo pkgsrc/www/ruby-actionview60: distinfo pkgsrc/www/ruby-rails60: distinfo Log Message: www/ruby-rails60: update to 6.0.6.1 Only databases/ruby-activerecord61 has updated. Rails 6.0.6.1 (2023-01-17) * Make `sanitize_as_sql_comment` more strict Though this method was likely never meant to take user input, it was attempting sanitization. That sanitization could be bypassed with carefully crafted input. This commit makes the sanitization more robust by replacing any occurrances of "/*" or "*/" with "/ *" or "* /". It also performs a first pass to remove one surrounding comment to avoid compatibility issues for users relying on the existing removal. This also clarifies in the documentation of annotate that it should not be provided user input. [CVE-2023-22794] To generate a diff of this commit: cvs rdiff -u -r1.20 -r1.21 pkgsrc/databases/ruby-activerecord60/distinfo cvs rdiff -u -r1.20 -r1.21 pkgsrc/devel/ruby-activejob60/distinfo cvs rdiff -u -r1.20 -r1.21 pkgsrc/devel/ruby-activemodel60/distinfo cvs rdiff -u -r1.20 -r1.21 pkgsrc/devel/ruby-activestorage60/distinfo cvs rdiff -u -r1.20 -r1.21 pkgsrc/devel/ruby-activesupport60/distinfo cvs rdiff -u -r1.20 -r1.21 pkgsrc/devel/ruby-railties60/distinfo cvs rdiff -u -r1.137 -r1.138 pkgsrc/lang/ruby/rails.mk cvs rdiff -u -r1.20 -r1.21 pkgsrc/mail/ruby-actionmailbox60/distinfo cvs rdiff -u -r1.20 -r1.21 pkgsrc/mail/ruby-actionmailer60/distinfo cvs rdiff -u -r1.20 -r1.21 pkgsrc/textproc/ruby-actiontext60/distinfo cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/ruby-actioncable60/distinfo cvs rdiff -u -r1.4 -r1.5 pkgsrc/www/ruby-actionpack60/Makefile cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/ruby-actionpack60/distinfo cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/ruby-actionview60/distinfo cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/ruby-rails60/distinfo @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.137 2022/09/10 12:40:14 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.6.1 @ 1.137.4.2 log @Pullup ticket #6733 - requested by taca databases/ruby-activerecord61: security update devel/ruby-activejob61: distinfo update devel/ruby-activemodel61: distinfo update devel/ruby-activestorage61: distinfo update devel/ruby-activesupport61: security update devel/ruby-railties61: distinfo update mail/ruby-actionmailbox61: distinfo update mail/ruby-actionmailer61: distinfo update textproc/ruby-actiontext61: sdistinfo update www/ruby-actioncable61: distinfo update www/ruby-actionpack61: security update www/ruby-actionview61: distinfo update www/ruby-rails61: distinfo update Revisions pulled up: - databases/ruby-activerecord61/distinfo 1.16-1.17 - devel/ruby-activejob61/distinfo 1.16-1.17 - devel/ruby-activemodel61/distinfo 1.16-1.17 - devel/ruby-activestorage61/distinfo 1.16-1.17 - devel/ruby-activesupport61/distinfo 1.16-1.17 - devel/ruby-railties61/distinfo 1.16-1.17 - lang/ruby/rails.mk 1.139,1.141 - mail/ruby-actionmailbox61/distinfo 1.16-1.17 - mail/ruby-actionmailer61/distinfo 1.16-1.17 - textproc/ruby-actiontext61/distinfo 1.16-1.17 - www/ruby-actioncable61/distinfo 1.16-1.17 - www/ruby-actionpack61/Makefile 1.4 - www/ruby-actionpack61/distinfo 1.16-1.17 - www/ruby-actionview61/distinfo 1.16-1.17 - www/ruby-rails61/distinfo 1.16-1.17 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu Jan 19 14:31:11 UTC 2023 Modified Files: pkgsrc/databases/ruby-activerecord61: distinfo pkgsrc/devel/ruby-activejob61: distinfo pkgsrc/devel/ruby-activemodel61: distinfo pkgsrc/devel/ruby-activestorage61: distinfo pkgsrc/devel/ruby-activesupport61: distinfo pkgsrc/devel/ruby-railties61: distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailbox61: distinfo pkgsrc/mail/ruby-actionmailer61: distinfo pkgsrc/textproc/ruby-actiontext61: distinfo pkgsrc/www/ruby-actioncable61: distinfo pkgsrc/www/ruby-actionpack61: Makefile distinfo pkgsrc/www/ruby-actionview61: distinfo pkgsrc/www/ruby-rails61: distinfo Log Message: www/ruby-rails61: update to 6.1.7.1 Rails 6.1.7.1 (2023-01-17) devel/ruby-activesupport61 * Avoid regex backtracking in Inflector.underscore [CVE-2023-22796] www/ruby-actionpack61 * Avoid regex backtracking on If-None-Match header [CVE-2023-22795] * Use string#split instead of regex for domain parts [CVE-2023-22792] databases/ruby-activerecord61 * Make sanitize_as_sql_comment more strict Though this method was likely never meant to take user input, it was attempting sanitization. That sanitization could be bypassed with carefully crafted input. This commit makes the sanitization more robust by replacing any occurrances of "/*" or "*/" with "/ *" or "* /". It also performs a first pass to remove one surrounding comment to avoid compatibility issues for users relying on the existing removal. This also clarifies in the documentation of annotate that it should not be provided user input. [CVE-2023-22794] * Added integer width check to PostgreSQL::Quoting Given a value outside the range for a 64bit signed integer type PostgreSQL will treat the column type as numeric. Comparing integer values against numeric values can result in a slow sequential scan. This behavior is configurable via ActiveRecord::Base.raise_int_wider_than_64bit which defaults to true. [CVE-2022-44566] To generate a diff of this commit: cvs rdiff -u -r1.15 -r1.16 pkgsrc/databases/ruby-activerecord61/distinfo cvs rdiff -u -r1.15 -r1.16 pkgsrc/devel/ruby-activejob61/distinfo cvs rdiff -u -r1.15 -r1.16 pkgsrc/devel/ruby-activemodel61/distinfo cvs rdiff -u -r1.15 -r1.16 pkgsrc/devel/ruby-activestorage61/distinfo cvs rdiff -u -r1.15 -r1.16 pkgsrc/devel/ruby-activesupport61/distinfo cvs rdiff -u -r1.15 -r1.16 pkgsrc/devel/ruby-railties61/distinfo cvs rdiff -u -r1.138 -r1.139 pkgsrc/lang/ruby/rails.mk cvs rdiff -u -r1.15 -r1.16 pkgsrc/mail/ruby-actionmailbox61/distinfo cvs rdiff -u -r1.15 -r1.16 pkgsrc/mail/ruby-actionmailer61/distinfo cvs rdiff -u -r1.15 -r1.16 pkgsrc/textproc/ruby-actiontext61/distinfo cvs rdiff -u -r1.15 -r1.16 pkgsrc/www/ruby-actioncable61/distinfo cvs rdiff -u -r1.3 -r1.4 pkgsrc/www/ruby-actionpack61/Makefile cvs rdiff -u -r1.15 -r1.16 pkgsrc/www/ruby-actionpack61/distinfo cvs rdiff -u -r1.15 -r1.16 pkgsrc/www/ruby-actionview61/distinfo cvs rdiff -u -r1.15 -r1.16 pkgsrc/www/ruby-rails61/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Wed Jan 25 13:27:10 UTC 2023 Modified Files: pkgsrc/databases/ruby-activerecord61: distinfo pkgsrc/devel/ruby-activejob61: distinfo pkgsrc/devel/ruby-activemodel61: distinfo pkgsrc/devel/ruby-activestorage61: distinfo pkgsrc/devel/ruby-activesupport61: distinfo pkgsrc/devel/ruby-railties61: distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailbox61: distinfo pkgsrc/mail/ruby-actionmailer61: distinfo pkgsrc/textproc/ruby-actiontext61: distinfo pkgsrc/www/ruby-actioncable61: distinfo pkgsrc/www/ruby-actionpack61: distinfo pkgsrc/www/ruby-actionview61: distinfo pkgsrc/www/ruby-rails61: distinfo Log Message: www/ruby-rails61: update to 6.1.7.2 Rails 6.1.7.2 (2023-01-24) www/ruby-actionpack61 * Fix `domain: :all` for two letter TLD This fixes a compatibility issue introduced in our previous security release when using `domain: :all` with a two letter but single level top level domain domain (like `.ca`, rather than `.co.uk`). To generate a diff of this commit: cvs rdiff -u -r1.16 -r1.17 pkgsrc/databases/ruby-activerecord61/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-activejob61/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-activemodel61/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-activestorage61/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-activesupport61/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-railties61/distinfo cvs rdiff -u -r1.140 -r1.141 pkgsrc/lang/ruby/rails.mk cvs rdiff -u -r1.16 -r1.17 pkgsrc/mail/ruby-actionmailbox61/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/mail/ruby-actionmailer61/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/textproc/ruby-actiontext61/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/www/ruby-actioncable61/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/www/ruby-actionpack61/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/www/ruby-actionview61/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/www/ruby-rails61/distinfo @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.137.4.1 2023/03/04 13:58:16 spz Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.7.2 @ 1.137.4.3 log @Pullup ticket #6734 - requested by taca databases/ruby-activerecord70: security update devel/ruby-activejob70: distinfo update devel/ruby-activemodel70: distinfo update devel/ruby-activestorage70: distinfo update devel/ruby-activesupport70: security update devel/ruby-railties70: distinfo update mail/ruby-actionmailbox70: distinfo update mail/ruby-actionmailer70: distinfo update textproc/ruby-actiontext70: distinfo update www/ruby-actioncable70: distinfo update www/ruby-actionpack70: security update www/ruby-actionview70: distinfo update www/ruby-rails70: distinfo update Revisions pulled up: - databases/ruby-activerecord70/distinfo 1.9-1.10 - devel/ruby-activejob70/distinfo 1.9-1.10 - devel/ruby-activemodel70/distinfo 1.9-1.10 - devel/ruby-activestorage70/distinfo 1.9-1.10 - devel/ruby-activesupport70/distinfo 1.9-1.10 - devel/ruby-railties70/distinfo 1.9-1.10 - lang/ruby/rails.mk 1.140,1.142 - mail/ruby-actionmailbox70/distinfo 1.9-1.10 - mail/ruby-actionmailer70/distinfo 1.9-1.10 - textproc/ruby-actiontext70/distinfo 1.9-1.10 - www/ruby-actioncable70/distinfo 1.9-1.10 - www/ruby-actionpack70/distinfo 1.9-1.10 - www/ruby-actionview70/distinfo 1.9-1.10 - www/ruby-rails70/distinfo 1.9-1.10 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu Jan 19 14:34:27 UTC 2023 Modified Files: pkgsrc/databases/ruby-activerecord70: distinfo pkgsrc/devel/ruby-activejob70: distinfo pkgsrc/devel/ruby-activemodel70: distinfo pkgsrc/devel/ruby-activestorage70: distinfo pkgsrc/devel/ruby-activesupport70: distinfo pkgsrc/devel/ruby-railties70: distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailbox70: distinfo pkgsrc/mail/ruby-actionmailer70: distinfo pkgsrc/textproc/ruby-actiontext70: distinfo pkgsrc/www/ruby-actioncable70: distinfo pkgsrc/www/ruby-actionpack70: Makefile distinfo pkgsrc/www/ruby-actionview70: distinfo pkgsrc/www/ruby-rails70: distinfo Log Message: www/ruby-rails70: update to 7.0.4.1 Rails 7.0.4.1 (2023-01-17) devel/ruby-activesupport70 * Avoid regex backtracking in Inflector.underscore [CVE-2023-22796] www/ruby-actionpack70 * Fix sec issue with _url_host_allowed? Disallow certain strings from `_url_host_allowed?` to avoid a redirect to malicious sites. [CVE-2023-22797] * Avoid regex backtracking on If-None-Match header [CVE-2023-22795] * Use string#split instead of regex for domain parts [CVE-2023-22792] databases/ruby-activerecord70 * Make sanitize_as_sql_comment more strict Though this method was likely never meant to take user input, it was attempting sanitization. That sanitization could be bypassed with carefully crafted input. This commit makes the sanitization more robust by replacing any occurrances of "/*" or "*/" with "/ *" or "* /". It also performs a first pass to remove one surrounding comment to avoid compatibility issues for users relying on the existing removal. This also clarifies in the documentation of annotate that it should not be provided user input. [CVE-2023-22794] * Added integer width check to PostgreSQL::Quoting Given a value outside the range for a 64bit signed integer type PostgreSQL will treat the column type as numeric. Comparing integer values against numeric values can result in a slow sequential scan. This behavior is configurable via ActiveRecord::Base.raise_int_wider_than_64bit which defaults to true. [CVE-2022-44566] To generate a diff of this commit: cvs rdiff -u -r1.8 -r1.9 pkgsrc/databases/ruby-activerecord70/distinfo cvs rdiff -u -r1.8 -r1.9 pkgsrc/devel/ruby-activejob70/distinfo cvs rdiff -u -r1.8 -r1.9 pkgsrc/devel/ruby-activemodel70/distinfo cvs rdiff -u -r1.8 -r1.9 pkgsrc/devel/ruby-activestorage70/distinfo cvs rdiff -u -r1.8 -r1.9 pkgsrc/devel/ruby-activesupport70/distinfo cvs rdiff -u -r1.8 -r1.9 pkgsrc/devel/ruby-railties70/distinfo cvs rdiff -u -r1.139 -r1.140 pkgsrc/lang/ruby/rails.mk cvs rdiff -u -r1.8 -r1.9 pkgsrc/mail/ruby-actionmailbox70/distinfo cvs rdiff -u -r1.8 -r1.9 pkgsrc/mail/ruby-actionmailer70/distinfo cvs rdiff -u -r1.8 -r1.9 pkgsrc/textproc/ruby-actiontext70/distinfo cvs rdiff -u -r1.8 -r1.9 pkgsrc/www/ruby-actioncable70/distinfo cvs rdiff -u -r1.5 -r1.6 pkgsrc/www/ruby-actionpack70/Makefile cvs rdiff -u -r1.8 -r1.9 pkgsrc/www/ruby-actionpack70/distinfo cvs rdiff -u -r1.8 -r1.9 pkgsrc/www/ruby-actionview70/distinfo cvs rdiff -u -r1.8 -r1.9 pkgsrc/www/ruby-rails70/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Wed Jan 25 13:31:17 UTC 2023 Modified Files: pkgsrc/databases/ruby-activerecord70: distinfo pkgsrc/devel/ruby-activejob70: distinfo pkgsrc/devel/ruby-activemodel70: distinfo pkgsrc/devel/ruby-activestorage70: distinfo pkgsrc/devel/ruby-activesupport70: distinfo pkgsrc/devel/ruby-railties70: distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailbox70: distinfo pkgsrc/mail/ruby-actionmailer70: distinfo pkgsrc/textproc/ruby-actiontext70: distinfo pkgsrc/www/ruby-actioncable70: distinfo pkgsrc/www/ruby-actionpack70: distinfo pkgsrc/www/ruby-actionview70: distinfo pkgsrc/www/ruby-rails70: distinfo Log Message: www/ruby-rails70: update to 7.0.4.2 Rails 7.0.4.2 (2023-01-24) * Fix `domain: :all` for two letter TLD This fixes a compatibility issue introduced in our previous security release when using `domain: :all` with a two letter but single level top level domain domain (like `.ca`, rather than `.co.uk`). To generate a diff of this commit: cvs rdiff -u -r1.9 -r1.10 pkgsrc/databases/ruby-activerecord70/distinfo cvs rdiff -u -r1.9 -r1.10 pkgsrc/devel/ruby-activejob70/distinfo cvs rdiff -u -r1.9 -r1.10 pkgsrc/devel/ruby-activemodel70/distinfo cvs rdiff -u -r1.9 -r1.10 pkgsrc/devel/ruby-activestorage70/distinfo cvs rdiff -u -r1.9 -r1.10 pkgsrc/devel/ruby-activesupport70/distinfo cvs rdiff -u -r1.9 -r1.10 pkgsrc/devel/ruby-railties70/distinfo cvs rdiff -u -r1.141 -r1.142 pkgsrc/lang/ruby/rails.mk cvs rdiff -u -r1.9 -r1.10 pkgsrc/mail/ruby-actionmailbox70/distinfo cvs rdiff -u -r1.9 -r1.10 pkgsrc/mail/ruby-actionmailer70/distinfo cvs rdiff -u -r1.9 -r1.10 pkgsrc/textproc/ruby-actiontext70/distinfo cvs rdiff -u -r1.9 -r1.10 pkgsrc/www/ruby-actioncable70/distinfo cvs rdiff -u -r1.9 -r1.10 pkgsrc/www/ruby-actionpack70/distinfo cvs rdiff -u -r1.9 -r1.10 pkgsrc/www/ruby-actionview70/distinfo cvs rdiff -u -r1.9 -r1.10 pkgsrc/www/ruby-rails70/distinfo @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.137.4.2 2023/03/04 14:10:23 spz Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.4.2 @ 1.136 log @www/ruby-rails61: update to 6.1.7 Ruby on Rails 6.1.7 release on 9th September 2022. Active Record and Active Storage are updated: Active Record * Symbol is allowed by default for YAML columns Étienne Barrié * Fix ActiveRecord::Store to serialize as a regular Hash Previously it would serialize as an ActiveSupport::HashWithIndifferentAccess which is wasteful and cause problem with YAML safe_load. Jean Boussier * Fix PG.connect keyword arguments deprecation warning on ruby 2.7 Fixes . Nikita Vasilevsky Active Storage * Respect Active Record's primary_key_type in Active Storage migrations. Backported from 7.0. fatkodima @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.135 2022/09/10 08:18:59 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.3.1 @ 1.135 log @www/ruby-rails60: update to 6.0.6 Ruby on Rails 6.0.6 release on 9th September 2022 and Active Record is only updated. databases/ruby-activerecord60 * Symbol is allowed by default for YAML columns Étienne Barrié @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.134 2022/09/03 15:33:16 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.6.1 @ 1.134 log @lang/ruby: better handling for dependency Instead of "expr" command, make commands to make's variable and later evaluate with :sh modifier. Thank Jonathan Perkin provides problem and solution. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.133 2022/09/03 13:15:06 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.5.1 @ 1.133 log @lang/ruby/rails.mk: use expr instead of ${EXPR} Since rails.mk might be used before ${EXPR} is defined, use expr instead of ${EXPR}. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.132 2022/07/13 14:48:47 taca Exp $ d116 3 a118 3 _RAILS_NEXT!= expr ${_RAILS_TEENY} + 1 _RAILS_DEP= \ ${RUBY_RAILS}>=${RAILS_VERSION}<${_RAILS_MAJOR}.${_RAILS_MINOR}.${_RAILS_NEXT} d120 2 a121 2 _RAILS_NEXT!= expr ${_RAILS_MINOR} + 1 _RAILS_DEP= ${RUBY_RAILS}>=${RAILS_VERSION}<${_RAILS_MAJOR}.${_RAILS_NEXT} @ 1.132 log @www/ruby-rails70: update to 7.0.3.1 Rails 7.0.3.1 (2022-07-12) updates databases/ruby-activerecord70 only. databases/ruby-activerecord70 * Change ActiveRecord::Coders::YAMLColumn default to safe_load This adds two new configuration options The configuration options are as follows: o config.active_storage.use_yaml_unsafe_load When set to true, this configuration option tells Rails to use the old "unsafe" YAML loading strategy, maintaining the existing behavior but leaving the possible escalation vulnerability in place. Setting this option to true is *not* recommended, but can aid in upgrading. o config.active_record.yaml_column_permitted_classes The "safe YAML" loading method does not allow all classes to be deserialized by default. This option allows you to specify classes deemed "safe" in your application. For example, if your application uses Symbol and Time in serialized data, you can add Symbol and Time to the allowed list as follows: config.active_record.yaml_column_permitted_classes = [Symbol, Date, Time] [CVE-2022-32224] @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.131 2022/07/13 14:46:23 taca Exp $ d116 1 a116 1 _RAILS_NEXT!= ${EXPR} ${_RAILS_TEENY} + 1 d120 1 a120 1 _RAILS_NEXT!= ${EXPR} ${_RAILS_MINOR} + 1 @ 1.131 log @www/ruby-rails61: update to 6.1.6.1 Rails 6.1.6.1 (2022-07-12) updates databases/ruby-activerecord61 only. databases/ruby-activerecord61 * Change ActiveRecord::Coders::YAMLColumn default to safe_load This adds two new configuration options The configuration options are as follows: o config.active_storage.use_yaml_unsafe_load When set to true, this configuration option tells Rails to use the old "unsafe" YAML loading strategy, maintaining the existing behavior but leaving the possible escalation vulnerability in place. Setting this option to true is *not* recommended, but can aid in upgrading. o config.active_record.yaml_column_permitted_classes The "safe YAML" loading method does not allow all classes to be deserialized by default. This option allows you to specify classes deemed "safe" in your application. For example, if your application uses Symbol and Time in serialized data, you can add Symbol and Time to the allowed list as follows: config.active_record.yaml_column_permitted_classes = [Symbol, Date, Time] [CVE-2022-32224] @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.130 2022/07/13 14:44:08 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.3 @ 1.130 log @www/ruby-rails60: update to 6.0.5.1 Rails 6.0.5.1 (2022-07-12) updates databases/ruby-activerecord60 only. databases/ruby-activerecord60 * Change ActiveRecord::Coders::YAMLColumn default to safe_load This adds two new configuration options The configuration options are as follows: o config.active_storage.use_yaml_unsafe_load When set to true, this configuration option tells Rails to use the old "unsafe" YAML loading strategy, maintaining the existing behavior but leaving the possible escalation vulnerability in place. Setting this option to true is *not* recommended, but can aid in upgrading. o config.active_record.yaml_column_permitted_classes The "safe YAML" loading method does not allow all classes to be deserialized by default. This option allows you to specify classes deemed "safe" in your application. For example, if your application uses Symbol and Time in serialized data, you can add Symbol and Time to the allowed list as follows: config.active_record.yaml_column_permitted_classes = [Symbol, Date, Time] [CVE-2022-32224] @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.129 2022/07/13 14:41:07 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.6 @ 1.129 log @www/ruby-rails52: update to 5.2.8.1 Rails 5.2.8.1 (2022-07-12) updates databases/ruby-activerecord52 only. databases/ruby-activerecord52 * Change ActiveRecord::Coders::YAMLColumn default to safe_load This adds two new configuration options The configuration options are as follows: o config.active_storage.use_yaml_unsafe_load When set to true, this configuration option tells Rails to use the old "unsafe" YAML loading strategy, maintaining the existing behavior but leaving the possible escalation vulnerability in place. Setting this option to true is *not* recommended, but can aid in upgrading. o config.active_record.yaml_column_permitted_classes The "safe YAML" loading method does not allow all classes to be deserialized by default. This option allows you to specify classes deemed "safe" in your application. For example, if your application uses Symbol and Time in serialized data, you can add Symbol and Time to the allowed list as follows: config.active_record.yaml_column_permitted_classes = [Symbol, Date, Time] [CVE-2022-32224] @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.128 2022/06/07 15:12:58 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.5 @ 1.128 log @lang/ruby/rails.mk: start update of RoR to 7.0.3 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.127 2022/06/07 15:05:21 taca Exp $ d50 1 a50 1 RUBY_RAILS52_VERSION?= 5.2.8 @ 1.128.2.1 log @Pullup ticket #6653 - requested by taca databases/ruby-activerecord52: security update devel/ruby-activejob52: security update devel/ruby-activemodel52: security update devel/ruby-activestorage52: security update devel/ruby-activesupport52: security update devel/ruby-railties52: security update mail/ruby-actionmailer52: security update www/ruby-actioncable52: security update www/ruby-actionpack52: security update www/ruby-actionview52: security update www/ruby-rails52: security update Revisions pulled up: - databases/ruby-activerecord52/distinfo 1.15 - devel/ruby-activejob52/distinfo 1.15 - devel/ruby-activemodel52/distinfo 1.15 - devel/ruby-activestorage52/distinfo 1.15 - devel/ruby-activesupport52/distinfo 1.15 - devel/ruby-railties52/Makefile 1.4 - devel/ruby-railties52/distinfo 1.15 - lang/ruby/rails.mk 1.129 - mail/ruby-actionmailer52/distinfo 1.15 - www/ruby-actioncable52/distinfo 1.15 - www/ruby-actionpack52/distinfo 1.15 - www/ruby-actionview52/distinfo 1.15 - www/ruby-rails52/distinfo 1.15 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Wed Jul 13 14:41:09 UTC 2022 Modified Files: pkgsrc/databases/ruby-activerecord52: distinfo pkgsrc/devel/ruby-activejob52: distinfo pkgsrc/devel/ruby-activemodel52: distinfo pkgsrc/devel/ruby-activestorage52: distinfo pkgsrc/devel/ruby-activesupport52: distinfo pkgsrc/devel/ruby-railties52: Makefile distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailer52: distinfo pkgsrc/www/ruby-actioncable52: distinfo pkgsrc/www/ruby-actionpack52: distinfo pkgsrc/www/ruby-actionview52: distinfo pkgsrc/www/ruby-rails52: distinfo Log Message: www/ruby-rails52: update to 5.2.8.1 Rails 5.2.8.1 (2022-07-12) updates databases/ruby-activerecord52 only. databases/ruby-activerecord52 * Change ActiveRecord::Coders::YAMLColumn default to safe_load This adds two new configuration options The configuration options are as follows: o config.active_storage.use_yaml_unsafe_load When set to true, this configuration option tells Rails to use the old "unsafe" YAML loading strategy, maintaining the existing behavior but leaving the possible escalation vulnerability in place. Setting this option to true is *not* recommended, but can aid in upgrading. o config.active_record.yaml_column_permitted_classes The "safe YAML" loading method does not allow all classes to be deserialized by default. This option allows you to specify classes deemed "safe" in your application. For example, if your application uses Symbol and Time in serialized data, you can add Symbol and Time to the allowed list as follows: config.active_record.yaml_column_permitted_classes = [Symbol, Date, Time] [CVE-2022-32224] To generate a diff of this commit: cvs rdiff -u -r1.14 -r1.15 pkgsrc/databases/ruby-activerecord52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/devel/ruby-activejob52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/devel/ruby-activemodel52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/devel/ruby-activestorage52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/devel/ruby-activesupport52/distinfo cvs rdiff -u -r1.3 -r1.4 pkgsrc/devel/ruby-railties52/Makefile cvs rdiff -u -r1.14 -r1.15 pkgsrc/devel/ruby-railties52/distinfo cvs rdiff -u -r1.128 -r1.129 pkgsrc/lang/ruby/rails.mk cvs rdiff -u -r1.14 -r1.15 pkgsrc/mail/ruby-actionmailer52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/www/ruby-actioncable52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/www/ruby-actionpack52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/www/ruby-actionview52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/www/ruby-rails52/distinfo @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.128 2022/06/07 15:12:58 taca Exp $ d50 1 a50 1 RUBY_RAILS52_VERSION?= 5.2.8.1 @ 1.128.2.2 log @Pullup ticket #6654 - requested by taca databases/ruby-activerecord60: security update devel/ruby-activejob60: security update devel/ruby-activemodel60: security update devel/ruby-activestorage60: security update devel/ruby-activesupport60: security update devel/ruby-railties60: security update mail/ruby-actionmailbox60: security update mail/ruby-actionmailer60: security update textproc/ruby-actiontext60: security update www/ruby-actioncable60: security update www/ruby-actionpack60: security update www/ruby-actionview60: security update www/ruby-rails60: security update Revisions pulled up: - databases/ruby-activerecord60/distinfo 1.19 - devel/ruby-activejob60/distinfo 1.19 - devel/ruby-activemodel60/distinfo 1.19 - devel/ruby-activestorage60/distinfo 1.19 - devel/ruby-activesupport60/distinfo 1.19 - devel/ruby-railties60/Makefile 1.5 - devel/ruby-railties60/distinfo 1.19 - lang/ruby/rails.mk 1.130 - mail/ruby-actionmailbox60/distinfo 1.19 - mail/ruby-actionmailer60/distinfo 1.19 - textproc/ruby-actiontext60/distinfo 1.19 - www/ruby-actioncable60/distinfo 1.19 - www/ruby-actionpack60/distinfo 1.19 - www/ruby-actionview60/distinfo 1.19 - www/ruby-rails60/distinfo 1.19 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Wed Jul 13 14:44:10 UTC 2022 Modified Files: pkgsrc/databases/ruby-activerecord60: distinfo pkgsrc/devel/ruby-activejob60: distinfo pkgsrc/devel/ruby-activemodel60: distinfo pkgsrc/devel/ruby-activestorage60: distinfo pkgsrc/devel/ruby-activesupport60: distinfo pkgsrc/devel/ruby-railties60: Makefile distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailbox60: distinfo pkgsrc/mail/ruby-actionmailer60: distinfo pkgsrc/textproc/ruby-actiontext60: distinfo pkgsrc/www/ruby-actioncable60: distinfo pkgsrc/www/ruby-actionpack60: distinfo pkgsrc/www/ruby-actionview60: distinfo pkgsrc/www/ruby-rails60: distinfo Log Message: www/ruby-rails60: update to 6.0.5.1 Rails 6.0.5.1 (2022-07-12) updates databases/ruby-activerecord60 only. databases/ruby-activerecord60 * Change ActiveRecord::Coders::YAMLColumn default to safe_load This adds two new configuration options The configuration options are as follows: o config.active_storage.use_yaml_unsafe_load When set to true, this configuration option tells Rails to use the old "unsafe" YAML loading strategy, maintaining the existing behavior but leaving the possible escalation vulnerability in place. Setting this option to true is *not* recommended, but can aid in upgrading. o config.active_record.yaml_column_permitted_classes The "safe YAML" loading method does not allow all classes to be deserialized by default. This option allows you to specify classes deemed "safe" in your application. For example, if your application uses Symbol and Time in serialized data, you can add Symbol and Time to the allowed list as follows: config.active_record.yaml_column_permitted_classes = [Symbol, Date, Time] [CVE-2022-32224] To generate a diff of this commit: cvs rdiff -u -r1.18 -r1.19 pkgsrc/databases/ruby-activerecord60/distinfo cvs rdiff -u -r1.18 -r1.19 pkgsrc/devel/ruby-activejob60/distinfo cvs rdiff -u -r1.18 -r1.19 pkgsrc/devel/ruby-activemodel60/distinfo cvs rdiff -u -r1.18 -r1.19 pkgsrc/devel/ruby-activestorage60/distinfo cvs rdiff -u -r1.18 -r1.19 pkgsrc/devel/ruby-activesupport60/distinfo cvs rdiff -u -r1.4 -r1.5 pkgsrc/devel/ruby-railties60/Makefile cvs rdiff -u -r1.18 -r1.19 pkgsrc/devel/ruby-railties60/distinfo cvs rdiff -u -r1.129 -r1.130 pkgsrc/lang/ruby/rails.mk cvs rdiff -u -r1.18 -r1.19 pkgsrc/mail/ruby-actionmailbox60/distinfo cvs rdiff -u -r1.18 -r1.19 pkgsrc/mail/ruby-actionmailer60/distinfo cvs rdiff -u -r1.18 -r1.19 pkgsrc/textproc/ruby-actiontext60/distinfo cvs rdiff -u -r1.18 -r1.19 pkgsrc/www/ruby-actioncable60/distinfo cvs rdiff -u -r1.18 -r1.19 pkgsrc/www/ruby-actionpack60/distinfo cvs rdiff -u -r1.18 -r1.19 pkgsrc/www/ruby-actionview60/distinfo cvs rdiff -u -r1.18 -r1.19 pkgsrc/www/ruby-rails60/distinfo @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.128.2.1 2022/07/23 17:05:52 spz Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.5.1 @ 1.128.2.3 log @Pullup ticket #6655 - requested by taca databases/ruby-activerecord61: security update devel/ruby-activejob61: security update devel/ruby-activemodel61: security update devel/ruby-activestorage61: security update devel/ruby-activesupport61: security update devel/ruby-railties61: security update mail/ruby-actionmailbox61: security update mail/ruby-actionmailer61: security update textproc/ruby-actiontext61: security update www/ruby-actioncable61: security update www/ruby-actionpack61: security update www/ruby-actionview61: security update www/ruby-rails61: security update Revisions pulled up: - databases/ruby-activerecord61/distinfo 1.14 - devel/ruby-activejob61/distinfo 1.14 - devel/ruby-activemodel61/distinfo 1.14 - devel/ruby-activestorage61/distinfo 1.14 - devel/ruby-activesupport61/distinfo 1.14 - devel/ruby-railties61/Makefile 1.4 - devel/ruby-railties61/distinfo 1.14 - lang/ruby/rails.mk 1.131 - mail/ruby-actionmailbox61/distinfo 1.14 - mail/ruby-actionmailer61/distinfo 1.14 - textproc/ruby-actiontext61/distinfo 1.14 - www/ruby-actioncable61/distinfo 1.14 - www/ruby-actionpack61/distinfo 1.14 - www/ruby-actionview61/distinfo 1.14 - www/ruby-rails61/distinfo 1.14 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Wed Jul 13 14:46:24 UTC 2022 Modified Files: pkgsrc/databases/ruby-activerecord61: distinfo pkgsrc/devel/ruby-activejob61: distinfo pkgsrc/devel/ruby-activemodel61: distinfo pkgsrc/devel/ruby-activestorage61: distinfo pkgsrc/devel/ruby-activesupport61: distinfo pkgsrc/devel/ruby-railties61: Makefile distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailbox61: distinfo pkgsrc/mail/ruby-actionmailer61: distinfo pkgsrc/textproc/ruby-actiontext61: distinfo pkgsrc/www/ruby-actioncable61: distinfo pkgsrc/www/ruby-actionpack61: distinfo pkgsrc/www/ruby-actionview61: distinfo pkgsrc/www/ruby-rails61: distinfo Log Message: www/ruby-rails61: update to 6.1.6.1 Rails 6.1.6.1 (2022-07-12) updates databases/ruby-activerecord61 only. databases/ruby-activerecord61 * Change ActiveRecord::Coders::YAMLColumn default to safe_load This adds two new configuration options The configuration options are as follows: o config.active_storage.use_yaml_unsafe_load When set to true, this configuration option tells Rails to use the old "unsafe" YAML loading strategy, maintaining the existing behavior but leaving the possible escalation vulnerability in place. Setting this option to true is *not* recommended, but can aid in upgrading. o config.active_record.yaml_column_permitted_classes The "safe YAML" loading method does not allow all classes to be deserialized by default. This option allows you to specify classes deemed "safe" in your application. For example, if your application uses Symbol and Time in serialized data, you can add Symbol and Time to the allowed list as follows: config.active_record.yaml_column_permitted_classes = [Symbol, Date, Time] [CVE-2022-32224] To generate a diff of this commit: cvs rdiff -u -r1.13 -r1.14 pkgsrc/databases/ruby-activerecord61/distinfo cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-activejob61/distinfo cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-activemodel61/distinfo cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-activestorage61/distinfo cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-activesupport61/distinfo cvs rdiff -u -r1.3 -r1.4 pkgsrc/devel/ruby-railties61/Makefile cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-railties61/distinfo cvs rdiff -u -r1.130 -r1.131 pkgsrc/lang/ruby/rails.mk cvs rdiff -u -r1.13 -r1.14 pkgsrc/mail/ruby-actionmailbox61/distinfo cvs rdiff -u -r1.13 -r1.14 pkgsrc/mail/ruby-actionmailer61/distinfo cvs rdiff -u -r1.13 -r1.14 pkgsrc/textproc/ruby-actiontext61/distinfo cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/ruby-actioncable61/distinfo cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/ruby-actionpack61/distinfo cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/ruby-actionview61/distinfo cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/ruby-rails61/distinfo @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.128.2.2 2022/07/23 19:15:51 spz Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.6.1 @ 1.128.2.4 log @Pullup ticket #6656 - requested by taca databases/ruby-activerecord70: security update devel/ruby-activejob70: security update devel/ruby-activemodel70: security update devel/ruby-activestorage70: security update devel/ruby-activesupport70: security update devel/ruby-railties70: security update mail/ruby-actionmailbox70: security update mail/ruby-actionmailer70: security update textproc/ruby-actiontext70: security update www/ruby-actioncable70: security update www/ruby-actionpack70: security update www/ruby-actionview70: security update www/ruby-rails70: security update Revisions pulled up: - databases/ruby-activerecord70/distinfo 1.7 - devel/ruby-activejob70/distinfo 1.7 - devel/ruby-activemodel70/distinfo 1.7 - devel/ruby-activestorage70/distinfo 1.7 - devel/ruby-activesupport70/distinfo 1.7 - devel/ruby-railties70/Makefile 1.5 - devel/ruby-railties70/distinfo 1.7 - lang/ruby/rails.mk 1.132 - mail/ruby-actionmailbox70/distinfo 1.7 - mail/ruby-actionmailer70/distinfo 1.7 - textproc/ruby-actiontext70/distinfo 1.7 - www/ruby-actioncable70/distinfo 1.7 - www/ruby-actionpack70/distinfo 1.7 - www/ruby-actionview70/distinfo 1.7 - www/ruby-rails70/distinfo 1.7 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Wed Jul 13 14:48:48 UTC 2022 Modified Files: pkgsrc/databases/ruby-activerecord70: distinfo pkgsrc/devel/ruby-activejob70: distinfo pkgsrc/devel/ruby-activemodel70: distinfo pkgsrc/devel/ruby-activestorage70: distinfo pkgsrc/devel/ruby-activesupport70: distinfo pkgsrc/devel/ruby-railties70: Makefile distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailbox70: distinfo pkgsrc/mail/ruby-actionmailer70: distinfo pkgsrc/textproc/ruby-actiontext70: distinfo pkgsrc/www/ruby-actioncable70: distinfo pkgsrc/www/ruby-actionpack70: distinfo pkgsrc/www/ruby-actionview70: distinfo pkgsrc/www/ruby-rails70: distinfo Log Message: www/ruby-rails70: update to 7.0.3.1 Rails 7.0.3.1 (2022-07-12) updates databases/ruby-activerecord70 only. databases/ruby-activerecord70 * Change ActiveRecord::Coders::YAMLColumn default to safe_load This adds two new configuration options The configuration options are as follows: o config.active_storage.use_yaml_unsafe_load When set to true, this configuration option tells Rails to use the old "unsafe" YAML loading strategy, maintaining the existing behavior but leaving the possible escalation vulnerability in place. Setting this option to true is *not* recommended, but can aid in upgrading. o config.active_record.yaml_column_permitted_classes The "safe YAML" loading method does not allow all classes to be deserialized by default. This option allows you to specify classes deemed "safe" in your application. For example, if your application uses Symbol and Time in serialized data, you can add Symbol and Time to the allowed list as follows: config.active_record.yaml_column_permitted_classes = [Symbol, Date, Time] [CVE-2022-32224] To generate a diff of this commit: cvs rdiff -u -r1.6 -r1.7 pkgsrc/databases/ruby-activerecord70/distinfo cvs rdiff -u -r1.6 -r1.7 pkgsrc/devel/ruby-activejob70/distinfo cvs rdiff -u -r1.6 -r1.7 pkgsrc/devel/ruby-activemodel70/distinfo cvs rdiff -u -r1.6 -r1.7 pkgsrc/devel/ruby-activestorage70/distinfo cvs rdiff -u -r1.6 -r1.7 pkgsrc/devel/ruby-activesupport70/distinfo cvs rdiff -u -r1.4 -r1.5 pkgsrc/devel/ruby-railties70/Makefile cvs rdiff -u -r1.6 -r1.7 pkgsrc/devel/ruby-railties70/distinfo cvs rdiff -u -r1.131 -r1.132 pkgsrc/lang/ruby/rails.mk cvs rdiff -u -r1.6 -r1.7 pkgsrc/mail/ruby-actionmailbox70/distinfo cvs rdiff -u -r1.6 -r1.7 pkgsrc/mail/ruby-actionmailer70/distinfo cvs rdiff -u -r1.6 -r1.7 pkgsrc/textproc/ruby-actiontext70/distinfo cvs rdiff -u -r1.6 -r1.7 pkgsrc/www/ruby-actioncable70/distinfo cvs rdiff -u -r1.6 -r1.7 pkgsrc/www/ruby-actionpack70/distinfo cvs rdiff -u -r1.6 -r1.7 pkgsrc/www/ruby-actionview70/distinfo cvs rdiff -u -r1.6 -r1.7 pkgsrc/www/ruby-rails70/distinfo @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.128.2.3 2022/07/23 19:35:08 spz Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.3.1 @ 1.127 log @www/ruby-rails61: update to 6.1.6 Ruby on Rails 6.1.6 (2022-05-12) Active Support * Fix and add protections for XSS in ActionView::Helpers and ERB::Util. Add the method ERB::Util.xml_name_escape to escape dangerous characters in names of tags and names of attributes, following the specification of XML. Action View * Fix and add protections for XSS in ActionView::Helpers and ERB::Util. Escape dangerous characters in names of tags and names of attributes in the tag helpers, following the XML specification. Rename the option :escape_attributes to :escape, to simplify by applying the option to the whole tag. Action Pack * Allow Content Security Policy DSL to generate for API responses. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.126 2022/06/07 14:59:20 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.2.4 @ 1.126 log @www/ruby-rails60: update to 6.0.5 Ruby on Rails 6.0.5 (2022-05-12) Active Support * Fix tag helper regression. Action Text * Disentangle Action Text from ApplicationController Allow Action Text to be used without having an ApplicationController defined. This makes sure: - Action Text attachments render the correct URL host in mailers. - an ActionController::Renderer isn't allocated per request. - Sidekiq doesn't hang with the "classic" autoloader. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.125 2022/06/07 14:48:11 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.5.1 @ 1.125 log @www/ruby-rails52: update to 5.2.8 Ruby on Rails 5.2.8 (2022-05-12) Active Support * Fix tag helper regression. Action View * Make `LoadInterlockAwareMonitor` work in Ruby 2.7. * Retain Ruby 2.2 compatibility. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.124 2022/06/07 14:44:50 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.4.8 @ 1.124 log @lang/ruby/rails.mk: pass building RAILS version * Set RUBY_RAILS_REQD with decided RUBY_RAILS. * Remove trivial pkglint warning. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.123 2022/05/17 00:42:33 gutteridge Exp $ d50 1 a50 1 RUBY_RAILS52_VERSION?= 5.2.7.1 @ 1.123 log @ruby: fix spelling & grammar in comments, and update one @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.122 2022/05/05 03:39:02 taca Exp $ d55 1 a55 1 RUBY_RAILS_ACCEPTED?= # defined d91 1 a91 1 RUBY_RAILS?= ${RUBY_RAILS_SUPPORTED} @ 1.122 log @lang/ruby/rails.mk: start update of Ruby on Rails to 7.0.2.4 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.121 2022/05/05 03:38:25 taca Exp $ d111 3 a113 3 # If RUBY_RAILS_STRICT_DEP is defined, match exact current Ruby no Rails # version. # Otherwise allow greater minor version. @ 1.121 log @lang/ruby/rails.mk: Really update of Ruby on Rails to 6.1.5.1 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.120 2022/05/05 03:20:39 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.2.3 @ 1.120 log @lang/ruby/rails.mk: start update of Ruby on Rails to 6.0.4.8 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.119 2022/05/05 03:02:07 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.4.7 @ 1.119 log @lang/ruby/rails.mk: start update of Ruby on Rails to 5.2.7.1 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.118 2022/03/13 15:15:03 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.4.7 @ 1.118 log @www/ruby-rails70: update to 7.0.2.3 Changes are in devel/ruby-activestorage70 only. Rails 7.0.2.3 (March 08, 2022) * Added image transformation validation via configurable allow-list. Variant now offers a configurable allow-list for transformation methods in addition to a configurable deny-list for arguments. [CVE-2022-21831] @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.117 2022/03/13 15:11:50 taca Exp $ d50 1 a50 1 RUBY_RAILS52_VERSION?= 5.2.6.3 @ 1.118.2.1 log @Pullup ticket #6628 - requested by taca databases/ruby-activerecord52: security update devel/ruby-activejob52: security update devel/ruby-activemodel52: security update devel/ruby-activestorage52: security update devel/ruby-activesupport52: security update devel/ruby-railties52: security update lang/ruby: version info update mail/ruby-actionmailer52: security update www/ruby-actioncable52: security update www/ruby-actionpack52: security update www/ruby-actionview52: security update www/ruby-rails52: security update Revisions pulled up: - databases/ruby-activerecord52/distinfo 1.13 - devel/ruby-activejob52/distinfo 1.13 - devel/ruby-activemodel52/distinfo 1.13 - devel/ruby-activestorage52/distinfo 1.13 - devel/ruby-activesupport52/distinfo 1.13 - devel/ruby-railties52/distinfo 1.13 - lang/ruby/rails.mk 1.119 - mail/ruby-actionmailer52/distinfo 1.13 - www/ruby-actioncable52/distinfo 1.13 - www/ruby-actionpack52/Makefile 1.2 - www/ruby-actionpack52/distinfo 1.13 - www/ruby-actionview52/distinfo 1.13 - www/ruby-rails52/distinfo 1.13 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:02:07 UTC 2022 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: lang/ruby/rails.mk: start update of Ruby on Rails to 5.2.7.1 To generate a diff of this commit: cvs rdiff -u -r1.118 -r1.119 pkgsrc/lang/ruby/rails.mk ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:03:50 UTC 2022 Modified Files: pkgsrc/devel/ruby-activesupport52: distinfo Log Message: devel/ruby-activesupport52: update to 5.2.7.1 ## Rails 5.2.7.1 (April 26, 2022) ## * Fix and add protections for XSS in `ActionView::Helpers` and `ERB::Util`. Add the method `ERB::Util.xml_name_escape` to escape dangerous characters in names of tags and names of attributes, following the specification of XML. *Álvaro Martín Fraguas* ## Rails 5.2.7 (March 10, 2022) ## * Restore support to Ruby 2.2. *ojab* To generate a diff of this commit: cvs rdiff -u -r1.12 -r1.13 pkgsrc/devel/ruby-activesupport52/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:04:44 UTC 2022 Modified Files: pkgsrc/www/ruby-actionview52: distinfo Log Message: www/ruby-actionview52: update to 5.2.7.1 ## Rails 5.2.7.1 (April 26, 2022) ## * Fix and add protections for XSS in `ActionView::Helpers` and `ERB::Util`. Escape dangerous characters in names of tags and names of attributes in the tag helpers, following the XML specification. Rename the option `:escape_attributes` to `:escape`, to simplify by applying the option to the whole tag. *Álvaro Martín Fraguas* ## Rails 5.2.7 (March 10, 2022) ## * No changes. To generate a diff of this commit: cvs rdiff -u -r1.12 -r1.13 pkgsrc/www/ruby-actionview52/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:05:24 UTC 2022 Modified Files: pkgsrc/www/ruby-actionpack52: Makefile distinfo Log Message: www/ruby-actionpack52: update to 5.2.7.1 ## Rails 5.2.7.1 (April 26, 2022) ## * Allow Content Security Policy DSL to generate for API responses. *Tim Wade* ## Rails 5.2.7 (March 10, 2022) ## * No changes. To generate a diff of this commit: cvs rdiff -u -r1.1 -r1.2 pkgsrc/www/ruby-actionpack52/Makefile cvs rdiff -u -r1.12 -r1.13 pkgsrc/www/ruby-actionpack52/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:06:04 UTC 2022 Modified Files: pkgsrc/devel/ruby-activestorage52: distinfo Log Message: devel/ruby-activestorage52: update to 5.2.7.1 ## Rails 5.2.7.1 (April 26, 2022) ## * No changes. ## Rails 5.2.7 (March 10, 2022) ## * Fix `ActiveStorage.supported_image_processing_methods` and `ActiveStorage.unsupported_image_processing_arguments` that were not being applied. *Rafael Mendonça França* To generate a diff of this commit: cvs rdiff -u -r1.12 -r1.13 pkgsrc/devel/ruby-activestorage52/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:08:16 UTC 2022 Modified Files: pkgsrc/databases/ruby-activerecord52: distinfo pkgsrc/devel/ruby-activejob52: distinfo pkgsrc/devel/ruby-activemodel52: distinfo pkgsrc/devel/ruby-railties52: distinfo pkgsrc/mail/ruby-actionmailer52: distinfo pkgsrc/www/ruby-actioncable52: distinfo pkgsrc/www/ruby-rails52: distinfo Log Message: Update rest of Ruby on Rails 52 components. No change except version. To generate a diff of this commit: cvs rdiff -u -r1.12 -r1.13 pkgsrc/databases/ruby-activerecord52/distinfo cvs rdiff -u -r1.12 -r1.13 pkgsrc/devel/ruby-activejob52/distinfo cvs rdiff -u -r1.12 -r1.13 pkgsrc/devel/ruby-activemodel52/distinfo cvs rdiff -u -r1.12 -r1.13 pkgsrc/devel/ruby-railties52/distinfo cvs rdiff -u -r1.12 -r1.13 pkgsrc/mail/ruby-actionmailer52/distinfo cvs rdiff -u -r1.12 -r1.13 pkgsrc/www/ruby-actioncable52/distinfo cvs rdiff -u -r1.12 -r1.13 pkgsrc/www/ruby-rails52/distinfo @ text @d1 1 a1 1 # $NetBSD$ d50 1 a50 1 RUBY_RAILS52_VERSION?= 5.2.7.1 @ 1.118.2.2 log @Pullup ticket #6629 - requested by taca databases/ruby-activerecord60: security update devel/ruby-activejob60: security update devel/ruby-activemodel60: security update devel/ruby-activestorage60: security update devel/ruby-activesupport60: security update devel/ruby-railties60: security update lang/ruby: version info update mail/ruby-actionmailbox60: security update mail/ruby-actionmailer60: security update textproc/ruby-actiontext60: security update www/ruby-actioncable60: security update www/ruby-actionpack60: security update www/ruby-actionview60: security update www/ruby-rails60: security update Revisions pulled up: - databases/ruby-activerecord60/distinfo 1.17 - devel/ruby-activejob60/distinfo 1.17 - devel/ruby-activemodel60/distinfo 1.17 - devel/ruby-activestorage60/distinfo 1.17 - devel/ruby-activesupport60/distinfo 1.17 - devel/ruby-railties60/distinfo 1.17 - lang/ruby/rails.mk 1.120 - mail/ruby-actionmailbox60/distinfo 1.17 - mail/ruby-actionmailer60/distinfo 1.17 - textproc/ruby-actiontext60/distinfo 1.17 - www/ruby-actioncable60/distinfo 1.17 - www/ruby-actionpack60/distinfo 1.17 - www/ruby-actionview60/distinfo 1.17 - www/ruby-rails60/distinfo 1.17 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:20:39 UTC 2022 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: lang/ruby/rails.mk: start update of Ruby on Rails to 6.0.4.8 To generate a diff of this commit: cvs rdiff -u -r1.119 -r1.120 pkgsrc/lang/ruby/rails.mk ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:21:25 UTC 2022 Modified Files: pkgsrc/devel/ruby-activesupport60: distinfo Log Message: devel/ruby-activesupport60: update to 6.0.4.8 ## Rails 6.0.4.8 (April 26, 2022) ## * Fix and add protections for XSS in `ActionView::Helpers` and `ERB::Util`. Add the method `ERB::Util.xml_name_escape` to escape dangerous characters in names of tags and names of attributes, following the specification of XML. *Álvaro Martín Fraguas* To generate a diff of this commit: cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-activesupport60/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:23:12 UTC 2022 Modified Files: pkgsrc/www/ruby-actionview60: distinfo Log Message: www/ruby-actionview60: update to 6.0.4.8 ## Rails 6.0.4.8 (April 26, 2022) ## * Fix and add protections for XSS in `ActionView::Helpers` and `ERB::Util`. Escape dangerous characters in names of tags and names of attributes in the tag helpers, following the XML specification. Rename the option `:escape_attributes` to `:escape`, to simplify by applying the option to the whole tag. *Álvaro Martín Fraguas* To generate a diff of this commit: cvs rdiff -u -r1.16 -r1.17 pkgsrc/www/ruby-actionview60/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:23:48 UTC 2022 Modified Files: pkgsrc/www/ruby-actionpack60: distinfo Log Message: www/ruby-actionpack60: update to 6.0.4.8 ## Rails 6.0.4.8 (April 26, 2022) ## * Allow Content Security Policy DSL to generate for API responses. *Tim Wade* To generate a diff of this commit: cvs rdiff -u -r1.16 -r1.17 pkgsrc/www/ruby-actionpack60/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:24:55 UTC 2022 Modified Files: pkgsrc/databases/ruby-activerecord60: distinfo pkgsrc/devel/ruby-activejob60: distinfo pkgsrc/devel/ruby-activemodel60: distinfo pkgsrc/devel/ruby-activestorage60: distinfo pkgsrc/devel/ruby-railties60: distinfo pkgsrc/mail/ruby-actionmailbox60: distinfo pkgsrc/mail/ruby-actionmailer60: distinfo pkgsrc/textproc/ruby-actiontext60: distinfo pkgsrc/www/ruby-actioncable60: distinfo pkgsrc/www/ruby-rails60: distinfo Log Message: Update rest of Ruby on Rails 60 components. No change except version. To generate a diff of this commit: cvs rdiff -u -r1.16 -r1.17 pkgsrc/databases/ruby-activerecord60/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-activejob60/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-activemodel60/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-activestorage60/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-railties60/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/mail/ruby-actionmailbox60/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/mail/ruby-actionmailer60/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/textproc/ruby-actiontext60/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/www/ruby-actioncable60/distinfo cvs rdiff -u -r1.16 -r1.17 pkgsrc/www/ruby-rails60/distinfo @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.118.2.1 2022/06/04 09:00:31 spz Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.4.8 @ 1.118.2.3 log @Pullup ticket #6630 - requested by taca databases/ruby-activerecord61: security update devel/ruby-activejob61: security update devel/ruby-activemodel61: security update devel/ruby-activestorage61: security update devel/ruby-activesupport61: security update devel/ruby-railties61: security update lang/ruby: version info update mail/ruby-actionmailbox61: security update mail/ruby-actionmailer61: security update textproc/ruby-actiontext61: security update www/ruby-actioncable61: security update www/ruby-actionpack61: security update www/ruby-actionview61: security update www/ruby-rails61: security update Revisions pulled up: - databases/ruby-activerecord61/distinfo 1.12 - devel/ruby-activejob61/distinfo 1.12 - devel/ruby-activemodel61/distinfo 1.12 - devel/ruby-activestorage61/Makefile 1.5 - devel/ruby-activestorage61/distinfo 1.12 - devel/ruby-activesupport61/Makefile 1.4 - devel/ruby-activesupport61/distinfo 1.12 - devel/ruby-railties61/distinfo 1.12 - lang/ruby/rails.mk 1.121 - mail/ruby-actionmailbox61/PLIST 1.2 - mail/ruby-actionmailbox61/distinfo 1.12 - mail/ruby-actionmailer61/PLIST 1.2 - mail/ruby-actionmailer61/distinfo 1.12 - textproc/ruby-actiontext61/distinfo 1.12 - www/ruby-actioncable61/distinfo 1.12 - www/ruby-actionpack61/distinfo 1.12 - www/ruby-actionview61/distinfo 1.12 - www/ruby-rails61/distinfo 1.12 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:38:25 UTC 2022 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: lang/ruby/rails.mk: Really update of Ruby on Rails to 6.1.5.1 To generate a diff of this commit: cvs rdiff -u -r1.120 -r1.121 pkgsrc/lang/ruby/rails.mk ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:28:21 UTC 2022 Modified Files: pkgsrc/devel/ruby-activesupport61: Makefile distinfo Log Message: devel/ruby-activesupport61: update to 6.1.5.1 ## Rails 6.1.5.1 (April 26, 2022) ## * Fix and add protections for XSS in `ActionView::Helpers` and `ERB::Util`. Add the method `ERB::Util.xml_name_escape` to escape dangerous characters in names of tags and names of attributes, following the specification of XML. *Álvaro Martín Fraguas* ## Rails 6.1.5 (March 09, 2022) ## * Fix `ActiveSupport::Duration.build` to support negative values. The algorithm to collect the `parts` of the `ActiveSupport::Duration` ignored the sign of the `value` and accumulated incorrect part values. This impacted `ActiveSupport::Duration#sum` (which is dependent on `parts`) but not `ActiveSupport::Duration#eql?` (which is dependent on `value`). *Caleb Buxton*, *Braden Staudacher* * `Time#change` and methods that call it (eg. `Time#advance`) will now return a `Time` with the timezone argument provided, if the caller was initialized with a timezone argument. Fixes [#42467](https://github.com/rails/rails/issues/42467). *Alex Ghiculescu* * Clone to keep extended Logger methods for tagged logger. *Orhan Toy* * `assert_changes` works on including `ActiveSupport::Assertions` module. *Pedro Medeiros* To generate a diff of this commit: cvs rdiff -u -r1.3 -r1.4 pkgsrc/devel/ruby-activesupport61/Makefile cvs rdiff -u -r1.11 -r1.12 pkgsrc/devel/ruby-activesupport61/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:28:57 UTC 2022 Modified Files: pkgsrc/devel/ruby-activemodel61: distinfo Log Message: devel/ruby-activemodel61: update to 6.1.5.1 ## Rails 6.1.5.1 (April 26, 2022) ## * No changes. ## Rails 6.1.5 (March 09, 2022) ## * Clear secure password cache if password is set to `nil` Before: user.password = 'something' user.password = nil user.password # => 'something' Now: user.password = 'something' user.password = nil user.password # => nil *Markus Doits* * Fix delegation in `ActiveModel::Type::Registry#lookup` and `ActiveModel::Type.lookup` Passing a last positional argument `{}` would be incorrectly considered as keyword argument. *Benoit Daloze* * Fix `to_json` after `changes_applied` for `ActiveModel::Dirty` object. *Ryuta Kamizono* To generate a diff of this commit: cvs rdiff -u -r1.11 -r1.12 pkgsrc/devel/ruby-activemodel61/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:29:32 UTC 2022 Modified Files: pkgsrc/www/ruby-actionview61: distinfo Log Message: www/ruby-actionview61: update to 6.1.5.1 ## Rails 6.1.5.1 (April 26, 2022) ## * Fix and add protections for XSS in `ActionView::Helpers` and `ERB::Util`. Escape dangerous characters in names of tags and names of attributes in the tag helpers, following the XML specification. Rename the option `:escape_attributes` to `:escape`, to simplify by applying the option to the whole tag. *Álvaro Martín Fraguas* ## Rails 6.1.5 (March 09, 2022) ## * `preload_link_tag` properly inserts `as` attributes for files with `image` MIME types, such as JPG or SVG. *Nate Berkopec* * Add `autocomplete="off"` to all generated hidden fields. Fixes #42610. *Ryan Baumann* * Fix `current_page?` when URL has trailing slash. This fixes the `current_page?` helper when the given URL has a trailing slash, and is an absolute URL or also has query params. Fixes #33956. *Jonathan Hefner* To generate a diff of this commit: cvs rdiff -u -r1.11 -r1.12 pkgsrc/www/ruby-actionview61/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:30:02 UTC 2022 Modified Files: pkgsrc/www/ruby-actionpack61: distinfo Log Message: www/ruby-actionpack61: update to 6.1.5.1 ## Rails 6.1.5.1 (April 26, 2022) ## * Allow Content Security Policy DSL to generate for API responses. *Tim Wade* ## Rails 6.1.5 (March 09, 2022) ## * Fix `content_security_policy` returning invalid directives. Directives such as `self`, `unsafe-eval` and few others were not single quoted when the directive was the result of calling a lambda returning an array. ```ruby content_security_policy do |policy| policy.frame_ancestors lambda { [:self, "https://example.com"] } end ``` With this fix the policy generated from above will now be valid. *Edouard Chin* * Update `HostAuthorization` middleware to render debug info only when `config.consider_all_requests_local` is set to true. Also, blocked host info is always logged with level `error`. Fixes #42813. *Nikita Vyrko* * Dup arrays that get "converted". Fixes #43681. *Aaron Patterson* * Don't show deprecation warning for equal paths. *Anton Rieder* * Fix crash in `ActionController::Instrumentation` with invalid HTTP formats. Fixes #43094. *Alex Ghiculescu* * Add fallback host for SystemTestCase driven by RackTest. Fixes #42780. *Petrik de Heus* * Add more detail about what hosts are allowed. *Alex Ghiculescu* To generate a diff of this commit: cvs rdiff -u -r1.11 -r1.12 pkgsrc/www/ruby-actionpack61/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:30:33 UTC 2022 Modified Files: pkgsrc/databases/ruby-activerecord61: distinfo Log Message: databases/ruby-activerecord61: update to 6.1.5.1 ## Rails 6.1.5.1 (April 26, 2022) ## * No changes. ## Rails 6.1.5 (March 09, 2022) ## * Fix `ActiveRecord::ConnectionAdapters::SchemaCache#deep_deduplicate` for Ruby 2.6. Ruby 2.6 and 2.7 have slightly different implementations of the `String#@@-` method. In Ruby 2.6, the receiver of the `String#@@-` method is modified under certain circumstances. This was later identified as a bug (https://bugs.ruby-lang.org/issues/15926) and only fixed in Ruby 2.7. Before the changes in this commit, the `ActiveRecord::ConnectionAdapters::SchemaCache#deep_deduplicate` method, which internally calls the `String#@@-` method, could also modify an input string argument in Ruby 2.6 -- changing a tainted, unfrozen string into a tainted, frozen string. Fixes #43056 *Eric O'Hanlon* * Fix migration compatibility to create SQLite references/belongs_to column as integer when migration version is 6.0. `reference`/`belongs_to` in migrations with version 6.0 were creating columns as bigint instead of integer for the SQLite Adapter. *Marcelo Lauxen* * Fix dbconsole for 3-tier config. *Eileen M. Uchitelle* * Better handle SQL queries with invalid encoding. ```ruby Post.create(name: "broken \xC8 UTF-8") ``` Would cause all adapters to fail in a non controlled way in the code responsible to detect write queries. The query is now properly passed to the database connection, which might or might not be able to handle it, but will either succeed or failed in a more correct way. *Jean Boussier* * Ignore persisted in-memory records when merging target lists. *Kevin Sjöberg* * Fix regression bug that caused ignoring additional conditions for preloading `has_many` through relations. Fixes #43132 *Alexander Pauly* * Fix `ActiveRecord::InternalMetadata` to not be broken by `config.active_record.record_timestamps = false` Since the model always create the timestamp columns, it has to set them, otherwise it breaks various DB management tasks. Fixes #42983 *Jean Boussier* * Fix duplicate active record objects on `inverse_of`. *Justin Carvalho* * Fix duplicate objects stored in has many association after save. Fixes #42549. *Alex Ghiculescu* * Fix performance regression in `CollectionAssocation#build`. *Alex Ghiculescu* * Fix retrieving default value for text column for MariaDB. *fatkodima* To generate a diff of this commit: cvs rdiff -u -r1.11 -r1.12 pkgsrc/databases/ruby-activerecord61/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:31:02 UTC 2022 Modified Files: pkgsrc/devel/ruby-activestorage61: Makefile distinfo Log Message: devel/ruby-activestorage61: update to 6.1.5.1 ## Rails 6.1.5.1 (April 26, 2022) ## * No changes. ## Rails 6.1.5 (March 09, 2022) ## * Attachments can be deleted after their association is no longer defined. Fixes #42514 *Don Sisco* To generate a diff of this commit: cvs rdiff -u -r1.4 -r1.5 pkgsrc/devel/ruby-activestorage61/Makefile cvs rdiff -u -r1.11 -r1.12 pkgsrc/devel/ruby-activestorage61/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:31:47 UTC 2022 Modified Files: pkgsrc/mail/ruby-actionmailbox61: PLIST distinfo Log Message: mail/ruby-actionmailbox61: update to 6.1.5.1 ## Rails 6.1.5.1 (April 26, 2022) ## * No changes. ## Rails 6.1.5 (March 09, 2022) ## * Add `attachments` to the list of permitted parameters for inbound emails conductor. When using the conductor to test inbound emails with attachments, this prevents an unpermitted parameter warning in default configurations, and prevents errors for applications that set: ```ruby config.action_controller.action_on_unpermitted_parameters = :raise ``` *David Jones*, *Dana Henke* To generate a diff of this commit: cvs rdiff -u -r1.1 -r1.2 pkgsrc/mail/ruby-actionmailbox61/PLIST cvs rdiff -u -r1.11 -r1.12 pkgsrc/mail/ruby-actionmailbox61/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:32:28 UTC 2022 Modified Files: pkgsrc/www/ruby-actioncable61: distinfo Log Message: www/ruby-actioncable61: update to 6.1.5.1 ## Rails 6.1.5.1 (April 26, 2022) ## * No changes. ## Rails 6.1.5 (March 09, 2022) ## * The Action Cable client now ensures successful channel subscriptions: * The client maintains a set of pending subscriptions until either the server confirms the subscription or the channel is torn down. * Rectifies the race condition where an unsubscribe is rapidly followed by a subscribe (on the same channel identifier) and the requests are handled out of order by the ActionCable server, thereby ignoring the subscribe command. *Daniel Spinosa* * Truncate broadcast logging messages. *J Smith* To generate a diff of this commit: cvs rdiff -u -r1.11 -r1.12 pkgsrc/www/ruby-actioncable61/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:32:59 UTC 2022 Modified Files: pkgsrc/devel/ruby-railties61: distinfo Log Message: devel/ruby-railties61: update to 6.1.5.1 ## Rails 6.1.5.1 (April 26, 2022) ## * No changes. ## Rails 6.1.5 (March 09, 2022) ## * In `zeitwerk` mode, setup the `once` autoloader first, and the `main` autoloader after it. This order plays better with shared namespaces. *Xavier Noria* * Handle paths with spaces when editing credentials. *Alex Ghiculescu* * Support Psych 4 when loading secrets. *Nat Morcos* To generate a diff of this commit: cvs rdiff -u -r1.11 -r1.12 pkgsrc/devel/ruby-railties61/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:33:27 UTC 2022 Modified Files: pkgsrc/textproc/ruby-actiontext61: distinfo Log Message: textproc/ruby-actiontext61: update to 6.1.5.1 ## Rails 6.1.5.1 (April 26, 2022) ## * No changes. ## Rails 6.1.5 (March 09, 2022) ## * Fix Action Text extra trix content wrapper. *Alexandre Ruban* To generate a diff of this commit: cvs rdiff -u -r1.11 -r1.12 pkgsrc/textproc/ruby-actiontext61/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:34:37 UTC 2022 Modified Files: pkgsrc/devel/ruby-activejob61: distinfo pkgsrc/mail/ruby-actionmailer61: PLIST distinfo pkgsrc/www/ruby-rails61: distinfo Log Message: Update rest of Ruby on Rails 61 components. No change except version. To generate a diff of this commit: cvs rdiff -u -r1.11 -r1.12 pkgsrc/devel/ruby-activejob61/distinfo cvs rdiff -u -r1.1 -r1.2 pkgsrc/mail/ruby-actionmailer61/PLIST cvs rdiff -u -r1.11 -r1.12 pkgsrc/mail/ruby-actionmailer61/distinfo cvs rdiff -u -r1.11 -r1.12 pkgsrc/www/ruby-rails61/distinfo @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.118.2.2 2022/06/04 09:17:03 spz Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.5.1 @ 1.118.2.4 log @Pullup ticket #6631 - requested by taca databases/ruby-activerecord70: security update devel/ruby-activejob70: security update devel/ruby-activemodel70: security update devel/ruby-activestorage70: security update devel/ruby-activesupport70: security update devel/ruby-railties70: security update lang/ruby: version info update mail/ruby-actionmailbox70: security update mail/ruby-actionmailer70: security update textproc/ruby-actiontext70: security update www/ruby-actioncable70: security update www/ruby-actionpack70: security update www/ruby-actionview70: security update www/ruby-rails70: security update Revisions pulled up: - databases/ruby-activerecord70/distinfo 1.5 - devel/ruby-activejob70/distinfo 1.5 - devel/ruby-activemodel70/distinfo 1.5 - devel/ruby-activestorage70/Makefile 1.4 - devel/ruby-activestorage70/distinfo 1.5 - devel/ruby-activesupport70/distinfo 1.5 - devel/ruby-railties70/distinfo 1.5 - lang/ruby/rails.mk 1.122 - mail/ruby-actionmailbox70/distinfo 1.5 - mail/ruby-actionmailer70/distinfo 1.5 - textproc/ruby-actiontext70/distinfo 1.5 - www/ruby-actioncable70/distinfo 1.5 - www/ruby-actionpack70/distinfo 1.5 - www/ruby-actionview70/distinfo 1.5 - www/ruby-rails70/distinfo 1.5 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:39:02 UTC 2022 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: lang/ruby/rails.mk: start update of Ruby on Rails to 7.0.2.4 To generate a diff of this commit: cvs rdiff -u -r1.121 -r1.122 pkgsrc/lang/ruby/rails.mk ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:39:53 UTC 2022 Modified Files: pkgsrc/devel/ruby-activesupport70: distinfo Log Message: devel/ruby-activesupport70: update to 7.0.2.4 ## Rails 7.0.2.4 (April 26, 2022) ## * Fix and add protections for XSS in `ActionView::Helpers` and `ERB::Util`. Add the method `ERB::Util.xml_name_escape` to escape dangerous characters in names of tags and names of attributes, following the specification of XML. *Álvaro Martín Fraguas* To generate a diff of this commit: cvs rdiff -u -r1.4 -r1.5 pkgsrc/devel/ruby-activesupport70/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:40:27 UTC 2022 Modified Files: pkgsrc/www/ruby-actionview70: distinfo Log Message: www/ruby-actionview70: update to 7.0.2.4 ## Rails 7.0.2.4 (April 26, 2022) ## * Fix and add protections for XSS in `ActionView::Helpers` and `ERB::Util`. Escape dangerous characters in names of tags and names of attributes in the tag helpers, following the XML specification. Rename the option `:escape_attributes` to `:escape`, to simplify by applying the option to the whole tag. *Álvaro Martín Fraguas* To generate a diff of this commit: cvs rdiff -u -r1.4 -r1.5 pkgsrc/www/ruby-actionview70/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:40:53 UTC 2022 Modified Files: pkgsrc/www/ruby-actionpack70: distinfo Log Message: www/ruby-actionpack70: update to 7.0.2.4 ## Rails 7.0.2.4 (April 26, 2022) ## * Allow Content Security Policy DSL to generate for API responses. *Tim Wade* To generate a diff of this commit: cvs rdiff -u -r1.4 -r1.5 pkgsrc/www/ruby-actionpack70/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Thu May 5 03:41:42 UTC 2022 Modified Files: pkgsrc/databases/ruby-activerecord70: distinfo pkgsrc/devel/ruby-activejob70: distinfo pkgsrc/devel/ruby-activemodel70: distinfo pkgsrc/devel/ruby-activestorage70: Makefile distinfo pkgsrc/devel/ruby-railties70: distinfo pkgsrc/mail/ruby-actionmailbox70: distinfo pkgsrc/mail/ruby-actionmailer70: distinfo pkgsrc/textproc/ruby-actiontext70: distinfo pkgsrc/www/ruby-actioncable70: distinfo pkgsrc/www/ruby-rails70: distinfo Log Message: Update rest of Ruby on Rails 70 components. No change except version. To generate a diff of this commit: cvs rdiff -u -r1.4 -r1.5 pkgsrc/databases/ruby-activerecord70/distinfo cvs rdiff -u -r1.4 -r1.5 pkgsrc/devel/ruby-activejob70/distinfo cvs rdiff -u -r1.4 -r1.5 pkgsrc/devel/ruby-activemodel70/distinfo cvs rdiff -u -r1.3 -r1.4 pkgsrc/devel/ruby-activestorage70/Makefile cvs rdiff -u -r1.4 -r1.5 pkgsrc/devel/ruby-activestorage70/distinfo cvs rdiff -u -r1.4 -r1.5 pkgsrc/devel/ruby-railties70/distinfo cvs rdiff -u -r1.4 -r1.5 pkgsrc/mail/ruby-actionmailbox70/distinfo cvs rdiff -u -r1.4 -r1.5 pkgsrc/mail/ruby-actionmailer70/distinfo cvs rdiff -u -r1.4 -r1.5 pkgsrc/textproc/ruby-actiontext70/distinfo cvs rdiff -u -r1.4 -r1.5 pkgsrc/www/ruby-actioncable70/distinfo cvs rdiff -u -r1.4 -r1.5 pkgsrc/www/ruby-rails70/distinfo @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.118.2.3 2022/06/04 09:31:41 spz Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.2.4 @ 1.117 log @www/ruby-rails61: update to 6.1.4.7 Ruby on Rails 6.1.4.7 is not latest version but it should be easy to pull-up to pkgsrc-2021Q4. Changes are in devel/ruby-activestorage61 only. ## Rails 6.1.4.7 (March 08, 2022) ## * Added image transformation validation via configurable allow-list. Variant now offers a configurable allow-list for transformation methods in addition to a configurable deny-list for arguments. [CVE-2022-21831] @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.116 2022/03/13 15:08:21 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.2.2 @ 1.116 log @www/ruby-rails60: update to 6.0.4.7 Changes are in devel/ruby-activestorage60 only. ## Rails 6.0.4.7 (March 08, 2022) ## * Added image transformation validation via configurable allow-list. Variant now offers a configurable allow-list for transformation methods in addition to a configurable deny-list for arguments. [CVE-2022-21831] @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.115 2022/03/13 15:04:26 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.4.6 @ 1.115 log @www/ruby-rails52: update to 5.2.6.3 Ruby on Rails 5.2.6.3 is not latest version but it should be easy to pull-up to pkgsrc-2021Q4. Changes are in devel/ruby-activestorage52 only. Rails 5.2.6.3 (March 08, 2022) * Added image transformation validation via configurable allow-list. Variant now offers a configurable allow-list for transformation methods in addition to a configurable deny-list for arguments. [CVE-2022-21831] @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.114 2022/02/13 07:39:14 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.4.6 @ 1.114 log @lang/ruby: start update of ruby-rails70 to 7.0.2.2 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.113 2022/02/13 07:35:04 taca Exp $ d50 1 a50 1 RUBY_RAILS52_VERSION?= 5.2.6.2 @ 1.113 log @www/ruby-rails61: update to 6.1.4.6 This update contains security fix for CVE-2022-23633 in ruby-actionpack61. Active Support 6.1.4.6 (2022-02-11) * Fix Reloader method signature to work with the new Executor signature. Action Pack 6.1.4.5 (2022-02-11) * Under certain circumstances, the middleware isn't informed that the response body has been fully closed which result in request state not being fully reset before the next request. [CVE-2022-23633] Other packages have no change. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.112 2022/02/13 07:31:21 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.1 @ 1.112 log @www/ruby-rails60: update to 6.0.4.6 This update contains security fix for CVE-2022-23633 in ruby-actionpack60. Active Support 6.0.4.6 (2022-02-11) * Fix Reloader method signature to work with the new Executor signature. Action Pack 6.0.4.6 6.0.4.5 (2022-02-11) * Under certain circumstances, the middleware isn't informed that the response body has been fully closed which result in request state not being fully reset before the next request. [CVE-2022-23633] Other packages have no change. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.111 2022/02/13 07:26:05 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.4.4 @ 1.111 log @www/ruby-rails52: update to 5.2.6.2 This update contains security fix for CVE-2022-23633 in Active Support 5.2.6.2 (2022-02-11) * Fix Reloader method signature to work with the new Executor signature. Action Pack 5.2.6.2 (2022-02-11) * Under certain circumstances, the middleware isn't informed that the response body has been fully closed which result in request state not being fully reset before the next request. [CVE-2022-23633] @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.110 2022/01/16 14:02:54 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.4.4 @ 1.110 log @lang/ruby: start update of Ruby on Rails 7.0.1 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.109 2021/12/19 05:42:50 taca Exp $ d50 1 a50 1 RUBY_RAILS52_VERSION?= 5.2.6 @ 1.109 log @lang/ruby/rails.mk: add support for Ruby no Rails 7.0 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.108 2021/12/19 05:22:30 taca Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.0 @ 1.109.2.1 log @Pullup ticket #6587 - requested by taca www/ruby-rails52: security fix Revisions pulled up: - databases/ruby-activerecord52/distinfo 1.11 - devel/ruby-activejob52/distinfo 1.11 - devel/ruby-activemodel52/distinfo 1.11 - devel/ruby-activestorage52/distinfo 1.11 - devel/ruby-activesupport52/distinfo 1.11 - devel/ruby-railties52/distinfo 1.11 - lang/ruby/rails.mk 1.111 - mail/ruby-actionmailer52/distinfo 1.11 - www/ruby-actioncable52/distinfo 1.11 - www/ruby-actionpack52/distinfo 1.11 - www/ruby-actionview52/distinfo 1.11 - www/ruby-rails52/distinfo 1.11 --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:26:07 UTC 2022 Modified Files: pkgsrc/databases/ruby-activerecord52: distinfo pkgsrc/devel/ruby-activejob52: distinfo pkgsrc/devel/ruby-activemodel52: distinfo pkgsrc/devel/ruby-activestorage52: distinfo pkgsrc/devel/ruby-activesupport52: distinfo pkgsrc/devel/ruby-railties52: distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailer52: distinfo pkgsrc/www/ruby-actioncable52: distinfo pkgsrc/www/ruby-actionpack52: distinfo pkgsrc/www/ruby-actionview52: distinfo pkgsrc/www/ruby-rails52: distinfo Log Message: www/ruby-rails52: update to 5.2.6.2 This update contains security fix for CVE-2022-23633 in Active Support 5.2.6.2 (2022-02-11) * Fix Reloader method signature to work with the new Executor signature. Action Pack 5.2.6.2 (2022-02-11) * Under certain circumstances, the middleware isn't informed that the response body has been fully closed which result in request state not being fully reset before the next request. [CVE-2022-23633] @ text @d1 1 a1 1 # $NetBSD$ d50 1 a50 1 RUBY_RAILS52_VERSION?= 5.2.6.2 @ 1.109.2.2 log @Pullup ticket #6588 - requested by taca www/ruby-rails60: security fix Revisions pulled up: - databases/ruby-activerecord60/distinfo 1.15 - devel/ruby-activejob60/distinfo 1.15 - devel/ruby-activemodel60/distinfo 1.15 - devel/ruby-activestorage60/distinfo 1.15 - devel/ruby-activesupport60/distinfo 1.15 - devel/ruby-railties60/distinfo 1.15 - lang/ruby/rails.mk 1.112 - mail/ruby-actionmailbox60/distinfo 1.15 - mail/ruby-actionmailer60/distinfo 1.15 - textproc/ruby-actiontext60/distinfo 1.15 - www/ruby-actioncable60/distinfo 1.15 - www/ruby-actionpack60/distinfo 1.15 - www/ruby-actionview60/distinfo 1.15 - www/ruby-rails60/distinfo 1.15 --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:31:23 UTC 2022 Modified Files: pkgsrc/databases/ruby-activerecord60: distinfo pkgsrc/devel/ruby-activejob60: distinfo pkgsrc/devel/ruby-activemodel60: distinfo pkgsrc/devel/ruby-activestorage60: distinfo pkgsrc/devel/ruby-activesupport60: distinfo pkgsrc/devel/ruby-railties60: distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailbox60: distinfo pkgsrc/mail/ruby-actionmailer60: distinfo pkgsrc/textproc/ruby-actiontext60: distinfo pkgsrc/www/ruby-actioncable60: distinfo pkgsrc/www/ruby-actionpack60: distinfo pkgsrc/www/ruby-actionview60: distinfo pkgsrc/www/ruby-rails60: distinfo Log Message: www/ruby-rails60: update to 6.0.4.6 This update contains security fix for CVE-2022-23633 in ruby-actionpack60. Active Support 6.0.4.6 (2022-02-11) * Fix Reloader method signature to work with the new Executor signature. Action Pack 6.0.4.6 6.0.4.5 (2022-02-11) * Under certain circumstances, the middleware isn't informed that the response body has been fully closed which result in request state not being fully reset before the next request. [CVE-2022-23633] Other packages have no change. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.109.2.1 2022/03/03 19:00:07 bsiegert Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.4.6 @ 1.109.2.3 log @Pullup ticket #6589 - requested by taca www/wuby-rails61: security fix Revisions pulled up: - databases/ruby-activerecord61/distinfo 1.10 - devel/ruby-activejob61/distinfo 1.10 - devel/ruby-activemodel61/distinfo 1.10 - devel/ruby-activestorage61/distinfo 1.10 - devel/ruby-activesupport61/distinfo 1.10 - devel/ruby-railties61/distinfo 1.10 - lang/ruby/rails.mk 1.113 - mail/ruby-actionmailbox61/distinfo 1.10 - mail/ruby-actionmailer61/distinfo 1.10 - textproc/ruby-actiontext61/distinfo 1.10 - www/ruby-actioncable61/distinfo 1.10 - www/ruby-actionpack61/distinfo 1.10 - www/ruby-actionview61/distinfo 1.10 - www/ruby-rails61/distinfo 1.10 --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:35:06 UTC 2022 Modified Files: pkgsrc/databases/ruby-activerecord61: distinfo pkgsrc/devel/ruby-activejob61: distinfo pkgsrc/devel/ruby-activemodel61: distinfo pkgsrc/devel/ruby-activestorage61: distinfo pkgsrc/devel/ruby-activesupport61: distinfo pkgsrc/devel/ruby-railties61: distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailbox61: distinfo pkgsrc/mail/ruby-actionmailer61: distinfo pkgsrc/textproc/ruby-actiontext61: distinfo pkgsrc/www/ruby-actioncable61: distinfo pkgsrc/www/ruby-actionpack61: distinfo pkgsrc/www/ruby-actionview61: distinfo pkgsrc/www/ruby-rails61: distinfo Log Message: www/ruby-rails61: update to 6.1.4.6 This update contains security fix for CVE-2022-23633 in ruby-actionpack61. Active Support 6.1.4.6 (2022-02-11) * Fix Reloader method signature to work with the new Executor signature. Action Pack 6.1.4.5 (2022-02-11) * Under certain circumstances, the middleware isn't informed that the response body has been fully closed which result in request state not being fully reset before the next request. [CVE-2022-23633] Other packages have no change. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.109.2.2 2022/03/03 19:06:03 bsiegert Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.4.6 @ 1.109.2.4 log @Pullup ticket #6594 - requested by taca www/ruby-rails70: security fix Revisions pulled up: - databases/ruby-activerecord70/distinfo 1.2-1.3 - devel/ruby-activejob70/distinfo 1.2-1.3 - devel/ruby-activemodel70/distinfo 1.2-1.3 - devel/ruby-activestorage70/PLIST 1.2 - devel/ruby-activestorage70/distinfo 1.2-1.3 - devel/ruby-activesupport70/distinfo 1.2-1.3 - devel/ruby-railties70/distinfo 1.2-1.3 - lang/ruby/rails.mk 1.110,1.114 - mail/ruby-actionmailbox70/distinfo 1.2-1.3 - mail/ruby-actionmailer70/distinfo 1.2-1.3 - textproc/ruby-actiontext70/distinfo 1.2-1.3 - www/ruby-actioncable70/distinfo 1.2-1.3 - www/ruby-actionpack70/distinfo 1.2-1.3 - www/ruby-actionview70/distinfo 1.2-1.3 - www/ruby-rails70/distinfo 1.2-1.3 --- Module Name: pkgsrc Committed By: taca Date: Sun Jan 16 14:02:54 UTC 2022 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: lang/ruby: start update of Ruby on Rails 7.0.1 --- Module Name: pkgsrc Committed By: taca Date: Sun Jan 16 14:05:14 UTC 2022 Modified Files: pkgsrc/devel/ruby-activesupport70: distinfo Log Message: devel/ruby-activesupport70: update to 7.0.1 7.0.1 (2021-01-06) * Fix Class#descendants and DescendantsTracker#descendants compatibilit= y with Ruby 3.1. The native Class#descendants was reverted prior to Ruby 3.1 release, = but Class#subclasses was kept, breaking the feature detection. Jean Boussier --- Module Name: pkgsrc Committed By: taca Date: Sun Jan 16 14:05:44 UTC 2022 Modified Files: pkgsrc/devel/ruby-activemodel70: distinfo Log Message: devel/ruby-activemodel70: update to 7.0.1 7.0.1 (2021-01-06) * No change. --- Module Name: pkgsrc Committed By: taca Date: Sun Jan 16 14:06:14 UTC 2022 Modified Files: pkgsrc/devel/ruby-activejob70: distinfo Log Message: devel/ruby-activejob70: update to 7.0.1 7.0.1 (2021-01-06) * Allow testing discard_on/retry_on ActiveJob::DeserializationError Previously in perform_enqueued_jobs, deserialize_arguments_if_needed was called before calling perform_now. When a record no longer exists and is serialized using GlobalID this led to raising an ActiveJob::DeserializationError before reaching perform_now call. This behaviour makes difficult testing the job discard_on/retry_on logic. Now deserialize_arguments_if_needed call is postponed to when perform_now is called. Example: class UpdateUserJob < ActiveJob::Base discard_on ActiveJob::DeserializationError def perform(user) # ... end end # In the test User.destroy_all assert_nothing_raised do perform_enqueued_jobs only: UpdateUserJob end Jacopo Beschi --- Module Name: pkgsrc Committed By: taca Date: Sun Jan 16 14:06:39 UTC 2022 Modified Files: pkgsrc/www/ruby-actionview70: distinfo Log Message: devel/ruby-actionview70: update to 7.0.1 7.0.1 (2021-01-06) * Fix button_to to work with a hash parameter as URL. MingyuanQin * Fix link_to with a model passed as an argument twice. Alex Ghiculescu --- Module Name: pkgsrc Committed By: taca Date: Sun Jan 16 14:07:02 UTC 2022 Modified Files: pkgsrc/www/ruby-actionpack70: distinfo Log Message: devel/ruby-actionpack70: update to 7.0.1 7.0.1 (2021-01-06) * Fix ActionController::Parameters methods to keep the original logger context when creating a new copy of the original object. Yutaka Kamei --- Module Name: pkgsrc Committed By: taca Date: Sun Jan 16 14:07:29 UTC 2022 Modified Files: pkgsrc/databases/ruby-activerecord70: distinfo Log Message: databases/ruby-activerecord70: update to 7.0.1 7.0.1 (2021-01-06) * Change QueryMethods#in_order_of to drop records not listed in values.= in_order_of now filters down to the values provided, to match the behavior of the Enumerable version. Kevin Newton * Allow named expression indexes to be revertible. Previously, the following code would raise an error in a reversible migration executed while rolling back, due to the index name not being used in the index removal. add_index(:settings, "(data->'property')", using: :gin, name: :index_s= ettings_data_property) Fixes #43331. Oliver G=FCnther * Better error messages when association name is invalid in the argument of ActiveRecord::QueryMethods::WhereChain#missing. ykpythemind * Fix ordered migrations for single db in multi db environment. Himanshu * Extract on update CURRENT_TIMESTAMP for mysql2 adapter. Kazuhiro Masuda * Fix incorrect argument in PostgreSQL structure dump tasks. Updating the --no-comment argument added in Rails 7 to the correct --no-comments argument. Alex Dent * Fix schema dumping column default SQL values for sqlite3. fatkodima * Correctly parse complex check constraint expressions for PostgreSQL. fatkodima * Fix timestamptz attributes on PostgreSQL handle blank inputs. Alex Ghiculescu Fix migration compatibility to create SQLite references/belongs_to column as integer when migration version is 6.0. Reference/belongs_to in migrations with version 6.0 were creating columns as bigint instead of integer for the SQLite Adapter. Marcelo Lauxen * Fix joining through a polymorphic association. Alexandre Ruban * Fix QueryMethods#in_order_of to handle empty order list. Post.in_order_of(:id, []).to_a Also more explicitly set the column as secondary order, so that any other value is still ordered. Jean Boussier * Fix rails dbconsole for 3-tier config. Eileen M. Uchitelle * Fix quoting of column aliases generated by calculation methods. Since the alias is derived from the table name, we can't assume the result is a valid identifier. class Test < ActiveRecord::Base self.table_name =3D '1abc' end Test.group(:id).count # syntax error at or near "1" (ActiveRecord::StatementInvalid) # LINE 1: SELECT COUNT(*) AS count_all, "1abc"."id" AS 1abc_id FROM "1= ... Jean Boussier --- Module Name: pkgsrc Committed By: taca Date: Sun Jan 16 14:07:49 UTC 2022 Modified Files: pkgsrc/devel/ruby-activestorage70: distinfo Log Message: devel/ruby-activestorage70: update to 7.0.1 7.0.1 (2021-01-06) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Jan 16 14:08:13 UTC 2022 Modified Files: pkgsrc/mail/ruby-actionmailer70: distinfo Log Message: mail/ruby-actionmailer70: update to 7.0.1 * Keep configuration of smtp_settings consistent between 6.1 and 7.0. Andr=E9 Luis Leal Cardoso Junior --- Module Name: pkgsrc Committed By: taca Date: Sun Jan 16 14:08:57 UTC 2022 Modified Files: pkgsrc/mail/ruby-actionmailbox70: distinfo Log Message: mail/ruby-actionmailbox70: update to 7.0.1 7.0.1 (2021-01-06) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Jan 16 14:09:16 UTC 2022 Modified Files: pkgsrc/www/ruby-actioncable70: distinfo Log Message: www/ruby-actioncable70: update to 7.0.1 7.0.1 (2021-01-06) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Jan 16 14:10:09 UTC 2022 Modified Files: pkgsrc/devel/ruby-railties70: distinfo Log Message: devel/ruby-railties70: 7.0.1 (2021-01-06) * Prevent duplicate entries in plugin Gemfile. Jonathan Hefner * Fix asset pipeline errors for plugin dummy apps. Jonathan Hefner * Fix generated route revocation. Jonathan Hefner * Addresses an issue in which Sidekiq jobs could not reload certain namespaces. See fxn/zeitwerk#198 for details. Xavier Noria * Fix plugin generator to a plugin that pass all the tests. Rafael Mendon=E7a Fran=E7a --- Module Name: pkgsrc Committed By: taca Date: Sun Jan 16 14:10:40 UTC 2022 Modified Files: pkgsrc/textproc/ruby-actiontext70: distinfo Log Message: textproc/ruby-actiontext70: 7.0.1 (2021-01-06) 7.0.1 (2021-01-06) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Jan 16 14:12:56 UTC 2022 Modified Files: pkgsrc/www/ruby-rails70: distinfo Log Message: www/ruby-rails70: update to 7.0.1 This is meta gem (package) for Ruby on Rails 7.0.1. --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:39:14 UTC 2022 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: lang/ruby: start update of ruby-rails70 to 7.0.2.2 --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:41:06 UTC 2022 Modified Files: pkgsrc/devel/ruby-activesupport70: distinfo Log Message: devel/ruby-activesupport70: update to 7.0.2 7.0.2 (2022-02-08) * Fix ActiveSupport::EncryptedConfiguration to be compatible with Psych= 4 Stephen Sugden * Improve File.atomic_write error handling. Daniel Pepper 7.0.2.1 (2022-02-11) * No changes. 7.0.2.2 (2022-02-11) * Fix Reloader method signature to work with the new Executor signature= --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:41:59 UTC 2022 Modified Files: pkgsrc/devel/ruby-activemodel70: distinfo Log Message: devel/ruby-activemodel70: update to 7.0.2 7.0.2 (2022-02-08) * Use different cache namespace for proxy calls Models can currently have different attribute bodies for the same met= hod names, leading to conflicts. Adding a new namespace :active_model_pro= xy fixes the issue. Chris Salzberg 7.0.2.1 (2022-02-11) * No changes. 7.0.2.2 (2022-02-11) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:42:23 UTC 2022 Modified Files: pkgsrc/devel/ruby-activejob70: distinfo Log Message: devel/ruby-activejob70: update to 7.0.2 7.0.2 (2022-02-08) * No changes. 7.0.2.1 (2022-02-11) * No changes. 7.0.2.2 (2022-02-11) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:42:47 UTC 2022 Modified Files: pkgsrc/www/ruby-actionview70: distinfo Log Message: www/ruby-actionview70: update to 7.0.2 7.0.2 (2022-02-08) * Ensure preload_link_tag preloads JavaScript modules correctly. M=E1ximo Mussini * Fix stylesheet_link_tag and similar helpers are being used to work in= objects with a response method. dark-panda 7.0.2.1 (2022-02-11) * No changes. 7.0.2.2 (2022-02-11) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:43:27 UTC 2022 Modified Files: pkgsrc/www/ruby-actionpack70: distinfo Log Message: www/ruby-actionpack70: update to 7.0.2 This update contains security fix for CVE-2022-23633. 7.0.2 (2022-02-08) * No changes. 7.0.2.1 (2022-02-11) * Under certain circumstances, the middleware isn't informed that the response body has been fully closed which result in request state not being fully reset before the next request [CVE-2022-23633] 7.0.2.2 (2022-02-11) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:43:55 UTC 2022 Modified Files: pkgsrc/databases/ruby-activerecord70: distinfo Log Message: databases/ruby-activerecord70: update to 7.0.2 7.0.2 (2022-02-08) * Fix PG.connect keyword arguments deprecation warning on ruby 2.7. Nikita Vasilevsky * Fix the ability to exclude encryption params from being autofiltered.= Mark Gangl * Dump the precision for datetime columns following the new defaults. Rafael Mendon=E7a Fran=E7a * Make sure encrypted attributes are not being filtered twice. Nikita Vasilevsky * Dump the database schema containing the current Rails version. Since #42297, Rails now generate datetime columns with a default prec= ision of 6. This means that users upgrading to Rails 7.0 from 6.1, when lo= ading the database schema, would get the new precision value, which would n= ot match the production schema. To avoid this the schema dumper will generate the new format which wi= ll include the Rails version and will look like this: ActiveRecord::Schema[7.0].define When upgrading from Rails 6.1 to Rails 7.0, you can run the rails app:update task that will set the current schema version to 6.1. Rafael Mendon=E7a Fran=E7a * Fix parsing expression for PostgreSQL generated column. fatkodima * Fix Mysql2::Error: Commands out of sync; you can't run this command n= ow when bulk-inserting fixtures that exceed max_allowed_packet configura= tion. Nikita Vasilevsky * Fix error when saving an association with a relation named record. Dorian Mari=E9 * Fix MySQL::SchemaDumper behavior about datetime precision value. y0t4 * Improve associated with no reflection error. Nikolai * Fix PG.connect keyword arguments deprecation warning on ruby 2.7. Fixes #44307. Nikita Vasilevsky * Fix passing options to check_constraint from change_table. Frederick Cheung 7.0.2.1 (2022-02-11) * No changes. 7.0.2.2 (2022-02-11) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:44:29 UTC 2022 Modified Files: pkgsrc/devel/ruby-activestorage70: PLIST distinfo Log Message: devel/ruby-activestorage70: update to 7.0.2 7.0.2 (2022-02-08) * Revert the ability to pass service_name param to DirectUploadsControl= ler which was introduced in 7.0.0. That change caused a lot of problems to upgrade Rails applications so= we decided to remove it while in work in a more backwards compatible implementation. Gannon McGibbon * Allow applications to opt out of precompiling Active Storage JavaScri= pt assets. jlestavel 7.0.2.1 (2022-02-11) * No changes. 7.0.2.2 (2022-02-11) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:44:47 UTC 2022 Modified Files: pkgsrc/mail/ruby-actionmailer70: distinfo Log Message: mail/ruby-actionmailer70: update to 7.0.2 7.0.2 (2022-02-08) * No changes. 7.0.2.1 (2022-02-11) * No changes. 7.0.2.2 (2022-02-11) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:45:05 UTC 2022 Modified Files: pkgsrc/mail/ruby-actionmailbox70: distinfo Log Message: mail/ruby-actionmailbox70: update to 7.0.2 7.0.2 (2022-02-08) * No changes. 7.0.2.1 (2022-02-11) * No changes. 7.0.2.2 (2022-02-11) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:45:27 UTC 2022 Modified Files: pkgsrc/www/ruby-actioncable70: distinfo Log Message: www/ruby-actioncable70: update to 7.0.2 7.0.2 (2022-02-08) * No changes. 7.0.2.1 (2022-02-11) * No changes. 7.0.2.2 (2022-02-11) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:45:49 UTC 2022 Modified Files: pkgsrc/devel/ruby-railties70: distinfo Log Message: devel/ruby-railties70: update to 7.0.2 7.0.2 (2022-02-08) * No changes. 7.0.2.1 (2022-02-11) * No changes. 7.0.2.2 (2022-02-11) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:46:12 UTC 2022 Modified Files: pkgsrc/textproc/ruby-actiontext70: distinfo Log Message: textproc/ruby-actiontext70: update to 7.0.2 7.0.2 (2022-02-08) * No changes. 7.0.2.1 (2022-02-11) * No changes. 7.0.2.2 (2022-02-11) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Feb 13 07:47:25 UTC 2022 Modified Files: pkgsrc/www/ruby-rails70: distinfo Log Message: www/ruby-rails70: update to 7.0.2 This gem is a meta package for Ruby on Rails 7, so no changes here. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.109.2.3 2022/03/03 19:11:59 bsiegert Exp $ d53 1 a53 1 RUBY_RAILS70_VERSION?= 7.0.1 @ 1.108 log @lang/ruby: start update of Ruby on Rails 6.1 to 6.1.4.4 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.107 2021/12/19 05:07:05 taca Exp $ d12 1 a12 1 # Possible values: 52 60 61 d30 1 a30 1 # Possible values: 52 60 61 d44 1 a44 1 # Possible values: 52 60 61 d53 1 d60 1 a60 1 RUBY_RAILS_SUPPORTED= 52 60 61 d93 3 a95 1 .if ${RUBY_RAILS} == "61" @ 1.107 log @lang/ruby: start update of Ruby on Rails 6.0 to 6.0.44 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.106 2021/08/22 07:16:46 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.4.1 @ 1.106 log @www/ruby-rails61: update to 6.1.4.1 Update Ruby on Rails 6.1 pacakges to 6.1.4.1. Real changes are in Action Pack (www/ruby-actionpack61). ## Rails 6.1.4.1 (August 19, 2021) ## * [CVE-2021-22942] Fix possible open redirect in Host Authorization middleware. Specially crafted "X-Forwarded-Host" headers in combination with certain "allowed host" formats can cause the Host Authorization middleware in Action Pack to redirect users to a malicious website. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.105 2021/08/22 07:12:49 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.4.1 @ 1.105 log @www/ruby-rails60: update to 6.0.4.1 Update Ruby on Rails 6.0 pacakges to 6.0.4.1. Real changes are in Action Pack (www/ruby-actionpack60). ## Rails 6.0.4.1 (August 19, 2021) ## * [CVE-2021-22942] Fix possible open redirect in Host Authorization middleware. Specially crafted "X-Forwarded-Host" headers in combination with certain "allowed host" formats can cause the Host Authorization middleware in Action Pack to redirect users to a malicious website. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.104 2021/07/13 11:53:25 markd Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.4 @ 1.104 log @ruby: fix substution on rails ALTERNATIVES files @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.103 2021/07/04 07:55:12 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.4 @ 1.103 log @lang/ruby: start update of Ruby on Rails 61 to 6.1.4 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.102 2021/07/04 06:58:37 taca Exp $ d129 1 @ 1.102 log @www/ruby-rails60: update to 6.0.4 Ruby on Rails 6.0.4 (2021-06-15), including security fixes. Active Support * Fixed issue in ActiveSupport::Cache::RedisCacheStore not passing options to read_multi causing fetch_multi to not work properly. (Rajesh Sharma) * with_options copies its options hash again to avoid leaking mutations. Fixes #39343. (Eugene Kenny) Active Record * Only warn about negative enums if a positive form that would cause conflicts exists. Fixes #39065. (Alex Ghiculescu) * Allow the inverse of a has_one association that was previously autosaved to be loaded. Fixes #34255. (Steven Weber) * Reset statement cache for association if table_name is changed. Fixes #36453. (Ryuta Kamizono) * Type cast extra select for eager loading. (Ryuta Kamizono) * Prevent collection associations from being autosaved multiple times. Fixes #39173. (Eugene Kenny) * Resolve issue with insert_all unique_by option when used with expression index. When the :unique_by option of ActiveRecord::Persistence.insert_all and ActiveRecord::Persistence.upsert_all was used with the name of an expression index, an error was raised. Adding a guard around the formatting behavior for the :unique_by corrects this. Usage: create_table :books, id: :integer, force: true do |t| t.column :name, :string t.index "lower(name)", unique: true end Book.insert_all [{ name: "MyTest" }], unique_by: :index_books_on_lower_name Fixes #39516. (Austen Madden) * Fix preloading for polymorphic association with custom scope. (Ryuta Kamizono) * Allow relations with different SQL comments in the or method. (Takumi Shotoku) * Resolve conflict between counter cache and optimistic locking. Bump an Active Record instance's lock version after updating its counter cache. This avoids raising an unnecessary ActiveRecord::StaleObjectError upon subsequent transactions by maintaining parity with the corresponding database record's lock_version column. Fixes #16449. (Aaron Lipman) * Fix through association with source/through scope which has joins. (Ryuta Kamizono) * Fix through association to respect source scope for includes/preload. (Ryuta Kamizono) * Fix eager load with Arel joins to maintain the original joins order. (Ryuta Kamizono) * Fix group by count with eager loading + order + limit/offset. (Ryuta Kamizono) * Fix left joins order when merging multiple left joins from different associations. (Ryuta Kamizono) * Fix index creation to preserve index comment in bulk change table on MySQL. (Ryuta Kamizono) * Change remove_foreign_key to not check :validate option if database doesn't support the feature. (Ryuta Kamizono) * Fix the result of aggregations to maintain duplicated "group by" fields. (Ryuta Kamizono) * Do not return duplicated records when using preload. (Bogdan Gusiev) Action View * SanitizeHelper.sanitized_allowed_attributes and SanitizeHelper.sanitized_allowed_tags call safe_list_sanitizer's class method. Fixes #39586. (Taufiq Muhammadi) Action Pack * Accept base64_urlsafe CSRF tokens to make forward compatible. * Base64 strict-encoded CSRF tokens are not inherently websafe, which makes them difficult to deal with. For example, the common practice of sending the CSRF token to a browser in a client-readable cookie does not work properly out of the box: the value has to be url-encoded and decoded to survive transport. In Rails 6.1, we generate Base64 urlsafe-encoded CSRF tokens, which are inherently safe to transport. Validation accepts both urlsafe tokens, and strict-encoded tokens for backwards compatibility. In Rails 5.2.5, the CSRF token format is accidentally changed to urlsafe-encoded. If you upgrade apps from 5.2.5, set the config urlsafe_csrf_tokens = true. Rails.application.config.action_controller.urlsafe_csrf_tokens = true (Scott Blum, Étienne Barrié) * Signed and encrypted cookies can now store false as their value when action_dispatch.use_cookies_with_metadata is enabled. (Rolandas Barysas) Active Storage * The Poppler PDF previewer renders a preview image using the original document's crop box rather than its media box, hiding print margins. This matches the behavior of the MuPDF previewer. (Vincent Robert) Railties * Allow relative paths with trailing slashes to be passed to rails test. (Eugene Kenny) * Return a 405 Method Not Allowed response when a request uses an unknown HTTP method. Fixes #38998. (Loren Norman) @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.101 2021/07/04 06:24:45 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.3.2 @ 1.101 log @www/ruby-rails52: update to 5.2.6 Ruby on Rails 5.2.6 (2021-05-05) There are changes in www/ruby-actionpack52 only, including security fix. Action Pack * Accept base64_urlsafe CSRF tokens to make forward compatible. Base64 strict-encoded CSRF tokens are not inherently websafe, which makes them difficult to deal with. For example, the common practice of sending the CSRF token to a browser in a client-readable cookie does not work properly out of the box: the value has to be url-encoded and decoded to survive transport. In this version, we generate Base64 urlsafe-encoded CSRF tokens, which are inherently safe to transport. Validation accepts both urlsafe tokens, and strict-encoded tokens for backwards compatibility. How the tokes are encoded is controllr by the action_controller.urlsafe_csrf_tokens config. In Rails 5.2.5, the CSRF token format was accidentally changed to urlsafe-encoded. Atention: If you already upgraded your application to 5.2.5, set the config urlsafe_csrf_tokens to true, otherwise your form submission will start to fail during the deploy of this new version. Rails.application.config.action_controller.urlsafe_csrf_tokens = true If you are upgrading from 5.2.4.x, you don't need to change this configuration. Scott Blum, Étienne Barrié @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.100 2021/05/08 14:08:55 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.3.7 @ 1.100 log @www/ruby-rails61: update to 6.1.3.2 Real changes are in www/ruby-actionpack61 only. ## Rails 6.1.3.2 (May 05, 2021) ## * Prevent open redirects by correctly escaping the host allow list CVE-2021-22903 * Prevent catastrophic backtracking during mime parsing CVE-2021-22902 * Prevent regex DoS in HTTP token authentication CVE-2021-22904 * Prevent string polymorphic route arguments. `url_for` supports building polymorphic URLs via an array of arguments (usually symbols and records). If a developer passes a user input array, strings can result in unwanted route helper calls. CVE-2021-22885 *Gannon McGibbon* @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.99 2021/05/08 14:02:33 taca Exp $ d50 1 a50 1 RUBY_RAILS52_VERSION?= 5.2.5 @ 1.99 log @www/ruby-rails60: update to 6.0.3.7 Real changes are in www/ruby-actionpack60 only. ## Rails 6.0.3.7 (May 05, 2021) ## * Prevent catastrophic backtracking during mime parsing CVE-2021-22902 * Prevent regex DoS in HTTP token authentication CVE-2021-22904 * Prevent string polymorphic route arguments. `url_for` supports building polymorphic URLs via an array of arguments (usually symbols and records). If a developer passes a user input array, strings can result in unwanted route helper calls. CVE-2021-22885 *Gannon McGibbon* @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.98 2021/04/11 13:28:01 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.3.1 @ 1.98 log @www/ruby-rails61: update to 6.1.3.1 Real changes are in devel/devel/ruby-activestorage61 only. ## Rails 6.1.3.1 (March 26, 2021) ## * Marcel is upgraded to version 1.0.0 to avoid a dependency on GPL-licensed mime types data. *George Claghorn* @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.97 2021/04/11 13:24:56 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.3.6 @ 1.97 log @www/ruby-rails60: update to 6.0.3.6 Real changes are in devel/ruby-activestorage60 only. ## Rails 6.0.3.6 (March 26, 2021) ## * Marcel is upgraded to version 1.0.0 to avoid a dependency on GPL-licensed mime types data. *George Claghorn* @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.96 2021/04/11 13:20:08 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.3 @ 1.96 log @www/ruby-rails52: update to 5.2.5 Real changes are in devel/ruby-activestorage52 only. ## Rails 5.2.5 (March 26, 2021) ## * Marcel is upgraded to version 1.0.0 to avoid a dependency on GPL-licensed mime types data. *George Claghorn* * The Poppler PDF previewer renders a preview image using the original document's crop box rather than its media box, hiding print margins. This matches the behavior of the MuPDF previewer. *Vincent Robert* @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.95 2021/02/28 16:58:05 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.3.5 @ 1.95 log @lang/ruby: update rails61 to 6.1.3 Oops, really update Ruby on Rails packages to 6.1.3. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.94 2021/02/14 13:49:40 taca Exp $ d50 1 a50 1 RUBY_RAILS52_VERSION?= 5.2.4.5 @ 1.94 log @lang/ruby: add Ruby on Rails 6.1 support @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.93 2021/02/11 14:30:06 taca Exp $ d52 1 a52 1 RUBY_RAILS61_VERSION?= 6.1.2.1 @ 1.93 log @www/ruby-rails60: update to 6.0.3.5 databases/ruby-activerecord60: ## Rails 6.0.3.5 (February 10, 2021) ## * Fix possible DoS vector in PostgreSQL money type Carefully crafted input can cause a DoS via the regular expressions used for validating the money format in the PostgreSQL adapter. This patch fixes the regexp. Thanks to @@dee-see from Hackerone for this patch! [CVE-2021-22880] *Aaron Patterson* www/ruby-actionpack60 ## Rails 6.0.3.5 (February 10, 2021) ## * Prevent open redirect when allowed host starts with a dot [CVE-2021-22881] Thanks to @@tktech (https://hackerone.com/tktech) for reporting this issue and the patch! *Aaron Patterson* @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.92 2021/02/11 14:23:41 taca Exp $ d12 1 a12 1 # Possible values: 52 60 d30 1 a30 1 # Possible values: 52 60 d44 1 a44 1 # Possible values: 52 60 d52 1 d59 1 a59 1 RUBY_RAILS_SUPPORTED= 52 60 d92 3 a94 1 .if ${RUBY_RAILS} == "60" d128 2 @ 1.92 log @www/rails52: update to 5.2.4.5 ## Rails 5.2.4.5 (February 10, 2021) ## * Fix possible DoS vector in PostgreSQL money type Carefully crafted input can cause a DoS via the regular expressions used for validating the money format in the PostgreSQL adapter. This patch fixes the regexp. Thanks to @@dee-see from Hackerone for this patch! [CVE-2021-22880] *Aaron Patterson* @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.91 2020/10/19 14:50:31 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.3.4 @ 1.91 log @www/ruby-rails60: update to 6.0.3.4 Update Ruby on Rails 6.0 related packages to 6.0.3.4. This is security fix for ruby-actionpack60. ## Rails 6.0.3.4 (October 07, 2020) ## * [CVE-2020-8264] Prevent XSS in Actionable Exceptions @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.90 2020/09/10 16:53:03 taca Exp $ d50 1 a50 1 RUBY_RAILS52_VERSION?= 5.2.4.4 @ 1.90 log @lang/ruby: drop support for Ruby on Rails 5.1 * Drop support for Ruby on Rails 5.1. * Remove useless conditional (i.e. always true after remove of Rails 4.2). @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.89 2020/09/10 14:30:02 taca Exp $ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.3.3 @ 1.90.2.1 log @Pullup ticket #6344 - requested by taca www/ruby-rails60: security fix Revisions pulled up: - databases/ruby-activerecord60/distinfo 1.6 - devel/ruby-activejob60/distinfo 1.6 - devel/ruby-activemodel60/distinfo 1.6 - devel/ruby-activestorage60/distinfo 1.6 - devel/ruby-activesupport60/distinfo 1.6 - devel/ruby-railties60/distinfo 1.6 - lang/ruby/rails.mk 1.91 - mail/ruby-actionmailbox60/distinfo 1.6 - mail/ruby-actionmailer60/distinfo 1.6 - textproc/ruby-actiontext60/distinfo 1.6 - www/ruby-actioncable60/distinfo 1.6 - www/ruby-actionpack60/distinfo 1.6 - www/ruby-actionview60/distinfo 1.6 - www/ruby-rails60/Makefile 1.5 - www/ruby-rails60/distinfo 1.6 --- Module Name: pkgsrc Committed By: taca Date: Mon Oct 19 14:50:32 UTC 2020 Modified Files: pkgsrc/databases/ruby-activerecord60: distinfo pkgsrc/devel/ruby-activejob60: distinfo pkgsrc/devel/ruby-activemodel60: distinfo pkgsrc/devel/ruby-activestorage60: distinfo pkgsrc/devel/ruby-activesupport60: distinfo pkgsrc/devel/ruby-railties60: distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailbox60: distinfo pkgsrc/mail/ruby-actionmailer60: distinfo pkgsrc/textproc/ruby-actiontext60: distinfo pkgsrc/www/ruby-actioncable60: distinfo pkgsrc/www/ruby-actionpack60: distinfo pkgsrc/www/ruby-actionview60: distinfo pkgsrc/www/ruby-rails60: Makefile distinfo Log Message: www/ruby-rails60: update to 6.0.3.4 Update Ruby on Rails 6.0 related packages to 6.0.3.4. This is security fix for ruby-actionpack60. ## Rails 6.0.3.4 (October 07, 2020) ## * [CVE-2020-8264] Prevent XSS in Actionable Exceptions @ text @d1 1 a1 1 # $NetBSD$ d51 1 a51 1 RUBY_RAILS60_VERSION?= 6.0.3.4 @ 1.89 log @www/ruby-rails60: update to 6.0.3.3 Update Ruby on Rails 60 to 6.0.3.3. Security fix in ruby-actionview60. ## Rails 6.0.3.3 (September 09, 2020) ## * [CVE-2020-8185] Fix potential XSS vulnerability in the `translate`/`t` helper. *Jonathan Hefner* @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.88 2020/09/10 14:13:11 taca Exp $ d12 1 a12 1 # Possible values: 51 52 60 d30 1 a30 1 # Possible values: 51 52 60 d44 1 a44 1 # Possible values: 51 52 60 a49 1 RUBY_RAILS51_VERSION?= 5.1.7 d58 1 a58 1 RUBY_RAILS_SUPPORTED= 52 51 60 a94 2 .elif ${RUBY_RAILS} == "51" RAILS_VERSION:= ${RUBY_RAILS51_VERSION} a128 1 .if ${RUBY_RAILS} >= 51 a130 1 .endif a142 1 .if ${RUBY_RAILS} >= 51 a144 2 .endif .if ${RUBY_RAILS} >= 51 a146 1 .endif @ 1.88 log @www/ruby-rails52: update to 5.2.4.4 Update Ruby on Rails 52 to 5.2.4.4. Security fix in ruby-actionview52. ## Rails 5.2.4.4 (September 09, 2020) ## * [CVE-2020-15169] Fix potential XSS vulnerability in the `translate`/`t` helper *Jonathan Hefner* @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.87 2020/06/18 13:38:45 taca Exp $ d52 1 a52 1 RUBY_RAILS60_VERSION?= 6.0.3.2 @ 1.87 log @lang/rails60: update to 6.0.3.2 Update Ruby on Rails to 6.0.3.2. www/ruby-actionpack60 is the really updated package and other packages have no change except version. CHANGELOG of www/ruby-actionpack60 is here: ## Rails 6.0.3.2 (June 17, 2020) ## * [CVE-2020-8185] Only allow ActionableErrors if show_detailed_exceptions is enabled @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.86 2020/05/19 17:09:49 taca Exp $ d51 1 a51 1 RUBY_RAILS52_VERSION?= 5.2.4.3 @ 1.86 log @lang/ruby: start updating of rails60 to 6.0.3.1 Start updating of Ruby on Rails 6.0 packages to 6.0.3.1. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.85 2020/05/19 15:33:05 taca Exp $ d52 1 a52 1 RUBY_RAILS60_VERSION?= 6.0.3.1 @ 1.85 log @lang/ruby: start updating of rails52 to 5.2.4.3 Start updating of Ruby on Rails 5.2 packages to 5.2.4.3. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.84 2020/05/16 14:14:45 taca Exp $ d52 1 a52 1 RUBY_RAILS60_VERSION?= 6.0.3 @ 1.84 log @lang/ruby: start update of Ruby on Rails to 6.0.3 Start update of Ruby on Rails to 6.0.3. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.83 2020/03/21 15:59:01 taca Exp $ d51 1 a51 1 RUBY_RAILS52_VERSION?= 5.2.4.2 @ 1.83 log @lang/ruby: drop support for Ruby on Rails 4.2 Drop support for Ruby on Rails 4.2 packages. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.82 2020/03/20 16:42:43 taca Exp $ d52 1 a52 1 RUBY_RAILS60_VERSION?= 6.0.2.2 @ 1.83.2.1 log @Pullup ticket #6213 - requested by taca www/ruby-rails52: security fix Revisions pulled up: - lang/ruby/rails.mk patch - databases/ruby-activerecord52/distinfo 1.4 - devel/ruby-activejob52/distinfo 1.4 - devel/ruby-activemodel52/distinfo 1.4 - devel/ruby-activestorage52/distinfo 1.4 - devel/ruby-activesupport52/distinfo 1.4 - devel/ruby-railties52/distinfo 1.4 - mail/ruby-actionmailer52/distinfo 1.4 - www/ruby-actioncable52/distinfo 1.4 - www/ruby-actionpack52/distinfo 1.4 - www/ruby-actionview52/distinfo 1.4 - www/ruby-rails52/distinfo 1.4 --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 15:33:41 UTC 2020 Modified Files: pkgsrc/devel/ruby-activesupport52: distinfo Log Message: devel/ruby-activesupport52: update to 5.2.4.3 Update ruby-activesupport52 to 5.2.4.3. ## Rails 5.2.4.3 (May 18, 2020) ## * [CVE-2020-8165] Deprecate Marshal.load on raw cache read in RedisCacheStore * [CVE-2020-8165] Avoid Marshal.load on raw cache value in MemCacheStore --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 15:34:47 UTC 2020 Modified Files: pkgsrc/devel/ruby-activemodel52: distinfo Log Message: devel/ruby-activemodel52: update to 5.2.4.3 Update ruby-activemodel52 to 5.2.4.3. ## Rails 5.2.4.3 (May 18, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 15:35:30 UTC 2020 Modified Files: pkgsrc/devel/ruby-activejob52: distinfo Log Message: devel/ruby-activejob52: update to 5.2.4.3 Update ruby-activejob52 to 5.2.4.3. ## Rails 5.2.4.3 (May 18, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 15:36:18 UTC 2020 Modified Files: pkgsrc/www/ruby-actionview52: distinfo Log Message: www/ruby-actionview52: update to 5.2.4.3 Update ruby-actionview52 to 5.2.4.3. ## Rails 5.2.4.3 (May 18, 2020) ## * [CVE-2020-8167] Check that request is same-origin prior to including CSRF token in XHRs --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 15:36:58 UTC 2020 Modified Files: pkgsrc/www/ruby-actionpack52: distinfo Log Message: www/ruby-actionpack52: update to 5.2.4.3 Update ruby-actionpack52 to 5.2.4.3. ## Rails 5.2.4.3 (May 18, 2020) ## * [CVE-2020-8166] HMAC raw CSRF token before masking it, so it cannot be used to reconstruct a per-form token * [CVE-2020-8164] Return self when calling #each, #each_pair, and #each_value instead of the raw @@parameters hash --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 15:37:46 UTC 2020 Modified Files: pkgsrc/www/ruby-actioncable52: distinfo Log Message: www/ruby-actioncable52: update to 5.2.4.3 Update ruby-actioncable52 to 5.2.4.3. ## Rails 5.2.4.3 (May 18, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 15:38:35 UTC 2020 Modified Files: pkgsrc/databases/ruby-activerecord52: distinfo Log Message: databases/ruby-activerecord52: update to 5.2.4.3 Update ruby-activerecord52 to 5.2.4.3. ## Rails 5.2.4.3 (May 18, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 15:39:12 UTC 2020 Modified Files: pkgsrc/devel/ruby-activestorage52: distinfo Log Message: devel/ruby-activestorage52: update to 5.2.4.3 Update ruby-activestorage52 to 5.2.4.3. ## Rails 5.2.4.3 (May 18, 2020) ## * [CVE-2020-8162] Include Content-Length in signature for ActiveStorage direct upload --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 15:39:54 UTC 2020 Modified Files: pkgsrc/mail/ruby-actionmailer52: distinfo Log Message: mail/ruby-actionmailer52: update to 5.2.4.3 Update ruby-actionmailer52 to 5.2.4.3. ## Rails 5.2.4.3 (May 18, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 15:40:32 UTC 2020 Modified Files: pkgsrc/devel/ruby-railties52: distinfo Log Message: devel/ruby-railties52: update to 5.2.4.3 Update ruby-railties52 to 5.2.4.3. ## Rails 5.2.4.3 (May 18, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 15:41:07 UTC 2020 Modified Files: pkgsrc/www/ruby-rails52: distinfo Log Message: www/ruby-rails52: update to 5.2.4.3 Finally, update ruby-rails52 to 5.2.4.3. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.83 2020/03/21 15:59:01 taca Exp $ d51 1 a51 1 RUBY_RAILS52_VERSION?= 5.2.4.3 @ 1.83.2.2 log @Pullup ticket #6214 - requested by taca www/ruby-rails60: security fix Revisions pulled up: - databases/ruby-activerecord60/PLIST 1.2 - databases/ruby-activerecord60/distinfo 1.2-1.3 - devel/ruby-activejob60/distinfo 1.2-1.3 - devel/ruby-activemodel60/distinfo 1.2-1.3 - devel/ruby-activestorage60/distinfo 1.2-1.3 - devel/ruby-activesupport60/distinfo 1.2-1.3 - devel/ruby-railties60/distinfo 1.2-1.3 - mail/ruby-actionmailbox60/distinfo 1.2-1.3 - mail/ruby-actionmailer60/distinfo 1.2-1.3 - textproc/ruby-actiontext60/distinfo 1.2-1.3 - www/ruby-actioncable60/distinfo 1.2-1.3 - www/ruby-actionpack60/distinfo 1.2-1.3 - www/ruby-actionview60/distinfo 1.2-1.3 - www/ruby-rails60/distinfo 1.2-1.3 --- Module Name: pkgsrc Committed By: taca Date: Sat May 16 14:15:25 UTC 2020 Modified Files: pkgsrc/devel/ruby-activesupport60: distinfo Log Message: devel/ruby-activesupport60: update to 6.0.3 Update ruby-activesupport60 to 6.0.3. ## Rails 6.0.3 (May 06, 2020) ## * `Array#to_sentence` no longer returns a frozen string. Before: ['one', 'two'].to_sentence.frozen? # => true After: ['one', 'two'].to_sentence.frozen? # => false *Nicolas Dular* * Update `ActiveSupport::Messages::Metadata#fresh?` to work for cookies with expiry set when `ActiveSupport.parse_json_times = true`. *Christian Gregg* --- Module Name: pkgsrc Committed By: taca Date: Sat May 16 14:16:16 UTC 2020 Modified Files: pkgsrc/devel/ruby-activemodel60: distinfo Log Message: devel/ruby-activemodel60: updat to 6.0.3 Update ruby-activemodel60 to 6.0.3. ## Rails 6.0.3 (May 06, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sat May 16 14:16:55 UTC 2020 Modified Files: pkgsrc/devel/ruby-activejob60: distinfo Log Message: devel/ruby-activejob60: update to 6.0.3 Update ruby-activejob60 to 6.0.3. ## Rails 6.0.3 (May 06, 2020) ## * While using `perform_enqueued_jobs` test helper enqueued jobs must be stored for the later check with `assert_enqueued_with`. *Dmitry Polushkin* * Add queue name support to Que adapter *Brad Nauta*, *Wojciech WnÄ™trzak* --- Module Name: pkgsrc Committed By: taca Date: Sat May 16 14:17:34 UTC 2020 Modified Files: pkgsrc/www/ruby-actionview60: distinfo Log Message: www/ruby-actionview60: update to 6.0.3 Update ruby-actionview60 to 6.0.3. ## Rails 6.0.3 (May 06, 2020) ## * annotated_source_code returns an empty array so TemplateErrors without a template in the backtrace are surfaced properly by DebugExceptions. *Guilherme Mansur*, *Kasper Timm Hansen* * Add autoload for SyntaxErrorInTemplate so syntax errors are correctly raised by DebugExceptions. *Guilherme Mansur*, *Gannon McGibbon* --- Module Name: pkgsrc Committed By: taca Date: Sat May 16 14:18:09 UTC 2020 Modified Files: pkgsrc/www/ruby-actionpack60: distinfo Log Message: www/ruby-actionpack60: update to 6.0.3 Update ruby-actionpack60 to 6.0.3. ## Rails 6.0.3 (May 06, 2020) ## * Include child session assertion count in ActionDispatch::IntegrationTest `IntegrationTest#open_session` uses `dup` to create the new session, which meant it had its own copy of `@@assertions`. This prevented the assertions from being correctly counted and reported. Child sessions now have their `attr_accessor` overriden to delegate to the root session. Fixes #32142 *Sam Bostock* --- Module Name: pkgsrc Committed By: taca Date: Sat May 16 14:18:56 UTC 2020 Modified Files: pkgsrc/databases/ruby-activerecord60: PLIST distinfo Log Message: databases/ruby-activerecord60: update to 6.0.3 Update ruby-activerecord60 to 6.0.3. ## Rails 6.0.3 (May 06, 2020) ## * Recommend applications don't use the `database` kwarg in `connected_to` The database kwarg in `connected_to` was meant to be used for one-off scripts but is often used in requests. This is really dangerous because it re-establishes a connection every time. It's deprecated in 6.1 and will be removed in 6.2 without replacement. This change soft deprecates it in 6.0 by removing documentation. *Eileen M. Uchitelle* * Fix support for PostgreSQL 11+ partitioned indexes. *Sebastián Palma* * Add support for beginless ranges, introduced in Ruby 2.7. *Josh Goodall* * Fix insert_all with enum values Fixes #38716. *Joel Blum* * Regexp-escape table name for MS SQL Add `Regexp.escape` to one method in ActiveRecord, so that table names with regular expression characters in them work as expected. Since MS SQL Server uses "[" and "]" to quote table and column names, and those characters are regular expression characters, methods like `pluck` and `select` fail in certain cases when used with the MS SQL Server adapter. *Larry Reid* * Store advisory locks on their own named connection. Previously advisory locks were taken out against a connection when a migration started. This works fine in single database applications but doesn't work well when migrations need to open new connections which results in the lock getting dropped. In order to fix this we are storing the advisory lock on a new connection with the connection specification name `AdisoryLockBase`. The caveat is that we need to maintain at least 2 connections to a database while migrations are running in order to do this. *Eileen M. Uchitelle*, *John Crepezzi* * Ensure `:reading` connections always raise if a write is attempted. Now Rails will raise an `ActiveRecord::ReadOnlyError` if any connection on the reading handler attempts to make a write. If your reading role needs to write you should name the role something other than `:reading`. *Eileen M. Uchitelle* * Enforce fresh ETag header after a collection's contents change by adding ActiveRecord::Relation#cache_key_with_version. This method will be used by ActionController::ConditionalGet to ensure that when collection cache versioning is enabled, requests using ConditionalGet don't return the same ETag header after a collection is modified. Fixes #38078. *Aaron Lipman* * A database URL can now contain a querystring value that contains an equal sign. This is needed to support passing PostgresSQL `options`. *Joshua Flanagan* * Retain explicit selections on the base model after applying `includes` and `joins`. Resolves #34889. *Patrick Rebsch* --- Module Name: pkgsrc Committed By: taca Date: Sat May 16 14:20:09 UTC 2020 Modified Files: pkgsrc/mail/ruby-actionmailer60: distinfo Log Message: mail/ruby-actionmailer60: update to 6.0.3 Update ruby-actionmailer60 to 6.0.3. ## Rails 6.0.3 (May 06, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sat May 16 14:20:46 UTC 2020 Modified Files: pkgsrc/mail/ruby-actionmailbox60: distinfo Log Message: mail/ruby-actionmailbox60: update to 6.0.3 Update ruby-actionmailbox60 to 6.0.3. ## Rails 6.0.3 (May 06, 2020) ## * Update Mandrill inbound email route to respond appropriately to HEAD requests for URL health checks from Mandrill. *Bill Cromie* --- Module Name: pkgsrc Committed By: taca Date: Sat May 16 14:21:24 UTC 2020 Modified Files: pkgsrc/www/ruby-actioncable60: distinfo Log Message: www/ruby-actioncable60: update to 6.0.3 Update to ruby-actioncable60 to 6.0.3. ## Rails 6.0.3 (May 06, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sat May 16 14:22:16 UTC 2020 Modified Files: pkgsrc/devel/ruby-railties60: distinfo Log Message: devel/ruby-railties60: update to 6.0.3 Update ruby-railties60 to 6.0.3. ## Rails 6.0.3 (May 06, 2020) ## * Cache compiled view templates when running tests by default When generating a new app without `--skip-spring`, caching classes is disabled in `environments/test.rb`. This implicitly disables caching view templates too. This change will enable view template caching by adding this to the generated `environments/test.rb`: ````ruby config.action_view.cache_template_loading = true ```` *Jorge Manrubia* * `Rails::Application#eager_load!` is available again to load application code manually as it was possible in previous versions. Please, note this is not integrated with the whole eager loading logic that runs when Rails boots with eager loading enabled, you can think of this method as a vanilla recursive code loader. This ability has been restored because there are some use cases for it, such as indexers that need to have all application classes and modules in memory. *Xavier Noria* * Generators that inherit from NamedBase respect `--force` option *Josh Brody* * Regression fix: The Rake task `zeitwerk:check` supports eager loaded namespaces which do not have eager load paths, like the recently added `i18n`. These namespaces are only required to respond to `eager_load!`. *Xavier Noria* --- Module Name: pkgsrc Committed By: taca Date: Sat May 16 14:22:55 UTC 2020 Modified Files: pkgsrc/devel/ruby-activestorage60: distinfo Log Message: devel/ruby-activestorage60: update to 6.0.3 Update ruby-activestorage60 to 6.0.3. ## Rails 6.0.3 (May 06, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sat May 16 14:23:36 UTC 2020 Modified Files: pkgsrc/textproc/ruby-actiontext60: distinfo Log Message: textproc/ruby-actiontext60: update to 6.0.3 Update ruby-actiontext60 to 6.0.3. ## Rails 6.0.3 (May 06, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sat May 16 14:24:28 UTC 2020 Modified Files: pkgsrc/www/ruby-rails60: distinfo Log Message: www/ruby-rails60: update to 6.0.3 Finally, update ruby-rails60 to 6.0.3. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 17:10:27 UTC 2020 Modified Files: pkgsrc/devel/ruby-activesupport60: distinfo Log Message: devel/ruby-activesupport60: update to 6.0.3.1 Update ruby-activesupport60 to 6.0.3.1. ## Rails 6.0.3.1 (May 18, 2020) ## * [CVE-2020-8165] Deprecate Marshal.load on raw cache read in RedisCacheStore * [CVE-2020-8165] Avoid Marshal.load on raw cache value in MemCacheStore --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 17:11:10 UTC 2020 Modified Files: pkgsrc/devel/ruby-activemodel60: distinfo Log Message: devel/ruby-activemodel60: update to 6.0.3.1 Update ruby-activemodel60 to 6.0.3.1. ## Rails 6.0.3.1 (May 18, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 17:11:43 UTC 2020 Modified Files: pkgsrc/devel/ruby-activejob60: distinfo Log Message: devel/ruby-activejob60: update to 6.0.3.1 Update ruby-activejob60 to 6.0.3.1. ## Rails 6.0.3.1 (May 18, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 17:12:16 UTC 2020 Modified Files: pkgsrc/www/ruby-actionview60: distinfo Log Message: www/ruby-actionview60: update to 6.0.3.1 Update ruby-actionview60 to 6.0.3.1. ## Rails 6.0.3.1 (May 18, 2020) ## * [CVE-2020-8167] Check that request is same-origin prior to including CSRF token in XHRs --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 17:12:50 UTC 2020 Modified Files: pkgsrc/www/ruby-actionpack60: distinfo Log Message: www/ruby-actionpack60: update to 6.0.3.1 Update ruby-actionpack60 to 6.0.3.1. ## Rails 6.0.3.1 (May 18, 2020) ## * [CVE-2020-8166] HMAC raw CSRF token before masking it, so it cannot be used to reconstruct a per-form token * [CVE-2020-8164] Return self when calling #each, #each_pair, and #each_value instead of the raw @@parameters hash --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 17:13:24 UTC 2020 Modified Files: pkgsrc/databases/ruby-activerecord60: distinfo Log Message: databases/ruby-activerecord60: update to 6.0.3.1 Update ruby-activerecord60 to 6.0.3.1. ## Rails 6.0.3.1 (May 18, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 17:14:04 UTC 2020 Modified Files: pkgsrc/mail/ruby-actionmailer60: distinfo Log Message: mail/ruby-actionmailer60: update to 6.0.3.1 Update ruby-actionmailer60 to 6.0.3.1. ## Rails 6.0.3.1 (May 18, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 17:14:41 UTC 2020 Modified Files: pkgsrc/mail/ruby-actionmailbox60: distinfo Log Message: mail/ruby-actionmailbox60: update to 6.0.3.1 Update ruby-actionmailbox60 to 6.0.3.1. ## Rails 6.0.3.1 (May 18, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 17:15:14 UTC 2020 Modified Files: pkgsrc/www/ruby-actioncable60: distinfo Log Message: www/ruby-actioncable60: update to 6.0.3.1 Update ruby-actioncable60 to 6.0.3.1. ## Rails 6.0.3.1 (May 18, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 17:15:47 UTC 2020 Modified Files: pkgsrc/devel/ruby-railties60: distinfo Log Message: devel/ruby-railties60: update to 6.0.3.1 Update ruby-railties60 to 6.0.3.1. ## Rails 6.0.3.1 (May 18, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 17:16:26 UTC 2020 Modified Files: pkgsrc/devel/ruby-activestorage60: distinfo Log Message: devel/ruby-activestorage60: update to 6.0.3.1 Update ruby-activestorage60 to 6.0.3.1. ## Rails 6.0.3.1 (May 18, 2020) ## * [CVE-2020-8162] Include Content-Length in signature for ActiveStorage direct upload --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 17:17:01 UTC 2020 Modified Files: pkgsrc/textproc/ruby-actiontext60: distinfo Log Message: textproc/ruby-actiontext60: update to 6.0.3.1 Update ruby-actiontext60 to 6.0.3.1. ## Rails 6.0.3.1 (May 18, 2020) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue May 19 17:17:45 UTC 2020 Modified Files: pkgsrc/www/ruby-rails60: distinfo Log Message: www/ruby-rails60: update to 6.0.3.1. Finally, update ruby-rails60 to 6.0.3.1. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.83.2.1 2020/06/01 19:15:21 bsiegert Exp $ d52 1 a52 1 RUBY_RAILS60_VERSION?= 6.0.3.1 @ 1.82 log @lang/ruby/rails.mk: add support for Ruby on Rails 6.0 Add add support for Ruby on Rails 6.0. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.81 2020/03/20 15:36:25 taca Exp $ d12 1 a12 1 # Possible values: 42 51 52 60 d30 1 a30 1 # Possible values: 42 51 52 60 d44 1 a44 1 # Possible values: 42 51 52 60 a49 1 RUBY_RAILS42_VERSION?= 4.2.11.1 d59 1 a59 1 RUBY_RAILS_SUPPORTED= 42 51 52 60 a97 2 .elif ${RUBY_RAILS} == "42" RAILS_VERSION:= ${RUBY_RAILS42_VERSION} @ 1.81 log @lang/ruby/rails.mk: start update of rails52 to 5.2.4.2 Start update of rails51 to 5.2.4.2. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.80 2020/03/20 15:21:12 taca Exp $ d12 1 a12 1 # Possible values: 42 51 52 d30 1 a30 1 # Possible values: 42 51 52 d44 1 a44 1 # Possible values: 42 51 52 d53 1 d60 1 a60 1 RUBY_RAILS_SUPPORTED= 42 51 52 d93 3 a95 1 .if ${RUBY_RAILS} == "52" d159 6 @ 1.80 log @lang/ruby/rails.mk: start update of rails51 to 5.1.7 Start update of rails51 to 5.1.7. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.79 2020/03/20 15:06:33 taca Exp $ d52 1 a52 1 RUBY_RAILS52_VERSION?= 5.2.3 @ 1.79 log @lang/ruby/rails.mk: Change RUBY_RAILS_DEFAULT to 52 Change RUBY_RAILS_DEFAULT to 52; Ruby on Rails 5.2 to default since Rails 4.2 is EOL. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.78 2019/11/03 19:04:06 rillig Exp $ d51 1 a51 1 RUBY_RAILS51_VERSION?= 5.1.6.2 @ 1.78 log @lang: align variable assignments pkglint -Wall -F --only aligned --only indent -r No manual corrections. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.77 2019/04/14 10:29:39 taca Exp $ d13 1 a13 1 # Default: 42 d55 1 a55 1 RUBY_RAILS_DEFAULT?= 42 @ 1.77 log @lang/ruby: start update rails52 to 5.2.3 Start update of ruby-rails52. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.76 2019/04/14 10:19:43 taca Exp $ d62 1 a62 1 .error Unsupported RUBY_RAILS_DEFAULT: ${RUBY_RAILS_DEFAULT} d125 2 a126 2 MULTI+= RUBY_RAILS_DEFAULT=${RUBY_RAILS} \ RUBY_RAILS_ACCEPTED=${RUBY_RAILS} @ 1.76 log @lang/ruby: start update rails51 to 5.1.6.2 Start update of ruby-rails51. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.75 2019/04/14 10:10:49 taca Exp $ d52 1 a52 1 RUBY_RAILS52_VERSION?= 5.2.2 @ 1.75 log @lang/ruby: start update rails42 to 4.2.11 Start update of ruby-rails42. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.74 2019/03/16 14:48:00 taca Exp $ d51 1 a51 1 RUBY_RAILS51_VERSION?= 5.1.6.1 @ 1.74 log @lang/ruby/rails.mk: not yet, revert Revert previous, not yet. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.73 2019/03/16 14:45:41 taca Exp $ d50 1 a50 1 RUBY_RAILS42_VERSION?= 4.2.11 @ 1.74.2.1 log @Pullup ticket #5952 - requested by taca www/ruby-rails42: security fix Revisions pulled up: - databases/ruby-activerecord42/distinfo 1.4 - devel/ruby-activejob42/distinfo 1.4 - devel/ruby-activemodel42/distinfo 1.4 - devel/ruby-activesupport42/Makefile 1.7 - devel/ruby-activesupport42/distinfo 1.4 - devel/ruby-railties42/distinfo 1.4 - lang/ruby/rails.mk 1.75 - mail/ruby-actionmailer42/distinfo 1.4 - www/ruby-actionpack42/Makefile 1.8 - www/ruby-actionpack42/distinfo 1.4 - www/ruby-actionview42/distinfo 1.4 - www/ruby-rails42/Makefile 1.8 - www/ruby-rails42/distinfo 1.4 --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:10:49 UTC 2019 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: lang/ruby: start update rails42 to 4.2.11 Start update of ruby-rails42. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:11:22 UTC 2019 Modified Files: pkgsrc/devel/ruby-activesupport42: Makefile distinfo Log Message: devel/ruby-activesupport42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:11:56 UTC 2019 Modified Files: pkgsrc/devel/ruby-activejob42: distinfo Log Message: devel/ruby-activejob42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:12:26 UTC 2019 Modified Files: pkgsrc/devel/ruby-activemodel42: distinfo Log Message: devel/ruby-activemodel42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:13:03 UTC 2019 Modified Files: pkgsrc/databases/ruby-activerecord42: distinfo Log Message: databases/ruby-activerecord42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:13:39 UTC 2019 Modified Files: pkgsrc/www/ruby-actionview42: distinfo Log Message: www/ruby-actionview42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:14:25 UTC 2019 Modified Files: pkgsrc/www/ruby-actionpack42: Makefile distinfo Log Message: www/ruby-actionpack42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * Fix [CVE-2019-5418] and [CVE-2019-5419]. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:14:57 UTC 2019 Modified Files: pkgsrc/mail/ruby-actionmailer42: distinfo Log Message: mail/ruby-actionmailer42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:15:29 UTC 2019 Modified Files: pkgsrc/devel/ruby-railties42: distinfo Log Message: devel/ruby-railties42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:16:19 UTC 2019 Modified Files: pkgsrc/www/ruby-rails42: Makefile distinfo Log Message: www/ruby-rails42: update to 4.2.11.1 Update ruby-rails24 to 4.2.11.1; security fix of actionpack. @ text @d1 1 a1 1 # $NetBSD$ d50 1 a50 1 RUBY_RAILS42_VERSION?= 4.2.11.1 @ 1.74.2.2 log @Pullup ticket #5953 - requested by taca www/ruby-rails51: security fix Revisions pulled up: - databases/ruby-activerecord51/distinfo 1.4 - devel/ruby-activejob51/distinfo 1.4 - devel/ruby-activemodel51/distinfo 1.4 - devel/ruby-activesupport51/Makefile 1.3 - devel/ruby-activesupport51/distinfo 1.4 - devel/ruby-railties51/distinfo 1.4 - lang/ruby/rails.mk 1.76 - mail/ruby-actionmailer51/distinfo 1.4 - www/ruby-actioncable51/distinfo 1.4 - www/ruby-actionpack51/distinfo 1.4 - www/ruby-actionview51/distinfo 1.4 - www/ruby-rails51/Makefile 1.4 - www/ruby-rails51/distinfo 1.4 --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:19:43 UTC 2019 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: lang/ruby: start update rails51 to 5.1.6.2 Start update of ruby-rails51. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:20:26 UTC 2019 Modified Files: pkgsrc/devel/ruby-activesupport51: Makefile distinfo Log Message: devel/ruby-activesupport51: update to 5.1.6.2 ## Rails 5.1.6.2 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:21:09 UTC 2019 Modified Files: pkgsrc/devel/ruby-activemodel51: distinfo Log Message: devel/ruby-activemodel51: update to 5.1.6.2 ## Rails 5.1.6.2 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:21:41 UTC 2019 Modified Files: pkgsrc/devel/ruby-activejob51: distinfo Log Message: devel/ruby-activejob51: update to 5.1.6.2 ## Rails 5.1.6.2 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:22:12 UTC 2019 Modified Files: pkgsrc/www/ruby-actionview51: distinfo Log Message: www/ruby-actionview51: update to 5.1.6.2 ## Rails 5.1.6.2 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:22:52 UTC 2019 Modified Files: pkgsrc/www/ruby-actionpack51: distinfo Log Message: www/ruby-actionpack51: update to 5.1.6.2 www/ruby-actionpack51: Update to 5.1.6.2 * Fix [CVE-2019-5418] and [CVE-2019-5419]. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:23:18 UTC 2019 Modified Files: pkgsrc/www/ruby-actioncable51: distinfo Log Message: www/ruby-actioncable51: update to 5.1.6.2 ## Rails 5.1.6.2 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:23:49 UTC 2019 Modified Files: pkgsrc/databases/ruby-activerecord51: distinfo Log Message: databases/ruby-activerecord51: update to 5.1.6.2 ## Rails 5.1.6.2 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:24:20 UTC 2019 Modified Files: pkgsrc/mail/ruby-actionmailer51: distinfo Log Message: mail/ruby-actionmailer51: update to 5.1.6.2 ## Rails 5.1.6.2 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:24:43 UTC 2019 Modified Files: pkgsrc/devel/ruby-railties51: distinfo Log Message: devel/ruby-railties51: update to 5.1.6.2 ## Rails 5.1.6.2 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:25:59 UTC 2019 Modified Files: pkgsrc/www/ruby-rails51: Makefile distinfo Log Message: www/ruby-rails51: update to 5.1.6.2 Update to ruby-rails51 to 5.1.6.2; security fix of actionpack. @ text @d51 1 a51 1 RUBY_RAILS51_VERSION?= 5.1.6.2 @ 1.74.2.3 log @Pullup ticket #5954 - requested by taca www/ruby-rails52: security fix Revisions pulled up: - databases/ruby-activerecord52/distinfo 1.2 - devel/ruby-activejob52/distinfo 1.2 - devel/ruby-activemodel52/PLIST 1.2 - devel/ruby-activemodel52/distinfo 1.2 - devel/ruby-activestorage52/distinfo 1.2 - devel/ruby-activesupport52/PLIST 1.2 - devel/ruby-activesupport52/distinfo 1.2 - devel/ruby-railties52/PLIST 1.2 - devel/ruby-railties52/distinfo 1.2 - lang/ruby/rails.mk 1.77 - mail/ruby-actionmailer52/distinfo 1.2 - www/ruby-actioncable52/distinfo 1.2 - www/ruby-actionpack52/distinfo 1.2 - www/ruby-actionview52/distinfo 1.2 - www/ruby-rails52/distinfo 1.2 --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:29:39 UTC 2019 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: lang/ruby: start update rails52 to 5.2.3 Start update of ruby-rails52. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:30:26 UTC 2019 Modified Files: pkgsrc/devel/ruby-activesupport52: PLIST distinfo Log Message: devel/ruby-activesupport52: update to 5.2.3 ## Rails 5.2.3 (March 27, 2019) ## * Add `ActiveSupport::HashWithIndifferentAccess#assoc`. `assoc` can now be called with either a string or a symbol. *Stefan Sch=FC=DFler* * Fix `String#safe_constantize` throwing a `LoadError` for incorrectl= y cased constant references. *Keenan Brock* * Allow Range#=3D=3D=3D and Range#cover? on Range `Range#cover?` can now accept a range argument like `Range#include?= ` and `Range#=3D=3D=3D`. `Range#=3D=3D=3D` works correctly on Ruby 2.6. `= Range#include?` is moved into a new file, with these two methods. *utilum* * If the same block is `included` multiple times for a Concern, an ex= ception is no longer raised. *Mark J. Titorenko*, *Vlad Bokov* ## Rails 5.2.2.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:30:59 UTC 2019 Modified Files: pkgsrc/devel/ruby-activemodel52: PLIST distinfo Log Message: devel/ruby-activemodel52: update to 5.2.3 ## Rails 5.2.3 (March 27, 2019) ## * Fix date value when casting a multiparameter date hash to not conve= rt from Gregorian date to Julian date. Before: Day.new({"day(1i)"=3D>"1", "day(2i)"=3D>"1", "day(3i)"=3D>"1"})= =3D> # After: Day.new({"day(1i)"=3D>"1", "day(2i)"=3D>"1", "day(3i)"=3D>"1"})= =3D> # Fixes #28521. *Sayan Chakraborty* * Fix numericality equality validation of `BigDecimal` and `Float` by casting to `BigDecimal` on both ends of the validation. *Gannon McGibbon* ## Rails 5.2.2.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:31:25 UTC 2019 Modified Files: pkgsrc/devel/ruby-activejob52: distinfo Log Message: devel/ruby-activejob52: update to 5.2.3 ## Rails 5.2.3 (March 27, 2019) ## * No changes. ## Rails 5.2.2.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:31:52 UTC 2019 Modified Files: pkgsrc/www/ruby-actionview52: distinfo Log Message: www/ruby-actionview52: update to 5.2.3 ## Rails 5.2.3 (March 27, 2019) ## * Prevent non-primary mouse keys from triggering Rails UJS click hand= lers. Firefox fires click events even if the click was triggered by non-p= rimary mouse keys such as right- or scroll-wheel-clicks. For example, right-clicking a link such as the one described below = (with an underlying ajax request registered on click) should not cause = that request to occur. ``` <%=3D link_to 'Remote', remote_path, class: 'remote', remote: true,= data: { type: :json } %> ``` Fixes #34541 *Wolfgang Hobmaier* ## Rails 5.2.2.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:32:37 UTC 2019 Modified Files: pkgsrc/www/ruby-actionpack52: distinfo Log Message: www/ruby-actionpack52: update to 5.2.3 * 5.2.2.2 fixes these security problems: CVE-2019-5418 CVE-2019-5419 CVE-2019-5420 ## Rails 5.2.3 (March 27, 2019) ## * Allow using combine the Cache Control `public` and `no-cache` heade= rs. Before this change, even if `public` was specified for Cache Contro= l header, it was excluded when `no-cache` was included. This fixed to keep `p= ublic` header as is. Fixes #34780. *Yuji Yaginuma* * Allow `nil` params for `ActionController::TestCase`. *Ryo Nakamura* ## Rails 5.2.2.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:33:01 UTC 2019 Modified Files: pkgsrc/www/ruby-actioncable52: distinfo Log Message: www/ruby-actioncable52: update to 5.2.3 ## Rails 5.2.3 (March 27, 2019) ## * No changes. ## Rails 5.2.2.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:33:31 UTC 2019 Modified Files: pkgsrc/databases/ruby-activerecord52: distinfo Log Message: databases/ruby-activerecord52: update to 5.2.3 ## Rails 5.2.3 (March 27, 2019) ## * Fix different `count` calculation when using `size` with manual `se= lect` with DISTINCT. Fixes #35214. *Juani Villarejo* * Fix prepared statements caching to be enabled even when query cachi= ng is enabled. *Ryuta Kamizono* * Don't allow `where` with invalid value matches to nil values. Fixes #33624. *Ryuta Kamizono* * Restore an ability that class level `update` without giving ids. Fixes #34743. *Ryuta Kamizono* * Fix join table column quoting with SQLite. *Gannon McGibbon* * Ensure that `delete_all` on collection proxy returns affected count= .= *Ryuta Kamizono* * Reset scope after delete on collection association to clear stale o= ffsets of removed records. *Gannon McGibbon* ## Rails 5.2.2.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:33:55 UTC 2019 Modified Files: pkgsrc/devel/ruby-activestorage52: distinfo Log Message: devel/ruby-activestorage52: update to 5.2.3 ## Rails 5.2.3 (March 27, 2019) ## * No changes. ## Rails 5.2.2.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:34:27 UTC 2019 Modified Files: pkgsrc/mail/ruby-actionmailer52: distinfo Log Message: mail/ruby-actionmailer52: update to 5.2.3 ## Rails 5.2.3 (March 27, 2019) ## * No changes. ## Rails 5.2.2.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:34:57 UTC 2019 Modified Files: pkgsrc/devel/ruby-railties52: PLIST distinfo Log Message: devel/ruby-railties52: updateo to 5.2.3 ## Rails 5.2.3 (March 27, 2019) ## * Seed database with inline ActiveJob job adapter. *Gannon McGibbon* * Fix boolean interaction in scaffold system tests. *Gannon McGibbon* ## Rails 5.2.2.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:36:34 UTC 2019 Modified Files: pkgsrc/www/ruby-rails52: distinfo Log Message: www/ruby-rails52: update to 5.2.3 Update ruby-rails52 to 5.2.3 which contains security fix of actionpack = in 5.2.2.2. @ text @d52 1 a52 1 RUBY_RAILS52_VERSION?= 5.2.3 @ 1.73 log @lang/ruby/rails.mk: make ruby-on-rails42 to 4.2.11.1 Start update of Ruby on Rails42 to 4.2.11.1. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.72 2019/03/03 16:19:16 taca Exp $ d50 1 a50 1 RUBY_RAILS42_VERSION?= 4.2.11.1 @ 1.72 log @lang/ruby: remove support for Ruby on Rails 3.2 Remove support for Ruby on Rails 3.2 packages. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.71 2019/03/03 15:26:29 taca Exp $ d50 1 a50 1 RUBY_RAILS42_VERSION?= 4.2.11 @ 1.71 log @lang/ruby/rails.mk: switch default rails to 4.2 Switch default Ruby on Rails version to 4.2. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.70 2019/03/03 14:41:21 taca Exp $ d12 1 a12 1 # Possible values: 32 42 51 52 d30 1 a30 1 # Possible values: 32 42 51 52 d44 1 a44 1 # Possible values: 32 42 51 52 a49 1 RUBY_RAILS32_VERSION?= 3.2.22.5 d59 1 a59 1 RUBY_RAILS_SUPPORTED= 42 51 52 32 a97 2 .else RAILS_VERSION:= ${RUBY_RAILS32_VERSION} a143 5 .if ${RUBY_RAILS} < 42 RUBY_ACTIVERESOURCE_DEPENDS= \ ${RUBY_PKGPREFIX}-activeresource${_RAILS_DEP}:../../www/ruby-activeresource${RUBY_RAILS} .elif ${RUBY_RAILS} >= 42 a147 1 .endif d156 1 @ 1.70 log @lang/ruby/rails.mk: add support for Ruby on Rails 5.2 Add support for Ruby on Rails 5.2. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.69 2018/11/29 14:12:40 taca Exp $ d13 1 a13 1 # Default: 32 d56 1 a56 1 RUBY_RAILS_DEFAULT?= 32 d60 1 a60 1 RUBY_RAILS_SUPPORTED= 32 42 51 52 @ 1.69 log @lang/ruby/rails.mk: start update of ruby-rails51 to 5.1.6.1 Start update of Ruby on Rails to 5.1.6.1. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.68 2018/11/29 13:47:23 taca Exp $ d12 1 a12 1 # Possible values: 32 42 51 d30 1 a30 1 # Possible values: 32 42 51 d44 1 a44 1 # Possible values: 32 42 51 d53 1 d60 1 a60 1 RUBY_RAILS_SUPPORTED= 32 42 51 d93 3 a95 1 .if ${RUBY_RAILS} == "51" d135 1 a135 1 .if ${RUBY_RAILS} != "51" d148 1 a148 1 .if ${RUBY_RAILS} == "32" d151 1 a151 1 .elif ${RUBY_RAILS} == "42" || ${RUBY_RAILS} == "51" d157 1 a157 1 .if ${RUBY_RAILS} == "51" d161 4 a164 1 @ 1.68 log @lang/ruby: start ruby on rails42 to 4.2.11 Start update of Ruby on Rails to 4.2.11. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.67 2018/09/23 18:30:36 taca Exp $ d52 1 a52 1 RUBY_RAILS51_VERSION?= 5.1.6 @ 1.67 log @lang/ruby: update rails to 5.1.6 Start update of Ruby on Rails to 5.1.6. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.66 2018/03/21 09:32:48 taca Exp $ d51 1 a51 1 RUBY_RAILS42_VERSION?= 4.2.10 @ 1.66 log @lang/ruby: add Ruby on Rails 5.1.5 support @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.65 2018/03/21 09:15:04 taca Exp $ d52 1 a52 1 RUBY_RAILS51_VERSION?= 5.1.5 @ 1.65 log @lang/ruby: Honor RUBY_RAILS_DEFAULT Honor RUBY_RAILS_DEFAULT and set RUBY_RAILS_REQD in environment. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.64 2018/03/21 03:40:21 taca Exp $ d12 1 a12 1 # Possible values: 32 42 d30 1 a30 1 # Possible values: 32 42 d44 1 a44 1 # Possible values: 32 42 d52 1 d59 1 a59 1 RUBY_RAILS_SUPPORTED= 32 42 d92 3 a94 1 .if ${RUBY_RAILS} == "42" d123 1 a123 2 RUBY_RAILS_ACCEPTED=${RUBY_RAILS} \ RUBY_RAILS_REQD=${RUBY_RAILS} d125 2 a126 3 MULTI+= RUBY_RAILS_DEFAULT=${RUBY_RAILS} \ RUBY_RAILS_ACCEPTED=${RUBY_RAILS} \ RUBY_RAILS_REQD=${RUBY_RAILS} d132 1 d135 1 d148 1 a148 1 .elif ${RUBY_RAILS} == "42" d154 4 @ 1.64 log @lang/ruby: improve RUBY_RAILS_ACCEPTED handling Now RUBY_RAILS_ACCEPTED supports multiple rails version. Also add RUBY_RAILS_REQD although no ruby package use it now. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.63 2018/03/18 14:21:21 taca Exp $ d81 3 d85 1 d120 2 a121 1 RUBY_RAILS_ACCEPTED=${RUBY_RAILS} d123 3 a125 2 MULTI+= RUBY_RAILS_DEFAULT=${RUBY_RAILS} \ RUBY_RAILS_ACCEPTED=${RUBY_RAILS} @ 1.63 log @lang/ruby: replace RUBY_RAILS_SUPPORTED to RUBY_RAILS_ACCEPTED Change RUBY_RAILS_SUPPORTED to RUBY_RAILS_ACCEPTED for better wording. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.62 2018/03/13 16:28:48 taca Exp $ d16 9 a28 1 # Currently, only one value is accepted. d58 25 a82 2 .if !empty(RUBY_RAILS_ACCEPTED) && ${RUBY_RAILS_ACCEPTED:[\#]} == 1 RUBY_RAILS= ${RUBY_RAILS_ACCEPTED} d85 1 a85 1 RUBY_RAILS?= ${RUBY_RAILS_DEFAULT} @ 1.62 log @lang/ruby: start update of Ruby on Rails 4.2.10 Note current RUBY_RAILS_SUPPORTED's embarrassing limitation. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.61 2017/07/18 13:59:04 taca Exp $ d18 1 a18 1 # RUBY_RAILS_SUPPORTED d45 1 a45 1 RUBY_RAILS_SUPPORTED?= # defined d50 2 a51 2 .if !empty(RUBY_RAILS_SUPPORTED) && ${RUBY_RAILS_SUPPORTED:[\#]} == 1 RUBY_RAILS= ${RUBY_RAILS_SUPPORTED} d85 1 a85 1 RUBY_RAILS_SUPPORTED=${RUBY_RAILS} d88 1 a88 1 RUBY_RAILS_SUPPORTED=${RUBY_RAILS} @ 1.61 log @Start update of Ruby on Rails 3.2 to 3.2.22.5. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.60 2017/06/21 13:11:19 taca Exp $ d20 1 d43 1 a43 1 RUBY_RAILS42_VERSION?= 4.2.8 @ 1.60 log @Overhaul framework of Ruby on Rails to support coexistence of rails32 and rails42. * Rename RUBY_RAILS_VERSION to RAILS_VERSION. * Remove detection of installed Ruby on Rails. * Add ${RUBY_RAILS} to PKGBASE of each Ruby on Rails' pacakge. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.59 2017/04/22 10:46:18 minskim Exp $ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.22.4 @ 1.59 log @Add ruby-rails42 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.58 2017/04/22 10:32:38 minskim Exp $ d53 1 a53 14 .if empty(RUBY_RAILS) _RUBY_INSTALLED_RAILS!= \ if ${PKG_INFO} -qe "${RUBY_PKGPREFIX}-rack>=1.4" || \ ${PKG_INFO} -qe "${RUBY_PKGPREFIX}-activesupport>=3.2"; then \ ${ECHO} 32; \ else \ ${ECHO} "none"; \ fi . if ${_RUBY_INSTALLED_RAILS} != "none" RUBY_RAILS:= ${_RUBY_INSTALLED_RAILS} . else RUBY_RAILS:= ${RUBY_RAILS_DEFAULT} . endif .endif d56 1 a56 1 RUBY_RAILS_VERSION:= ${RUBY_RAILS42_VERSION} d58 1 a58 1 RUBY_RAILS_VERSION:= ${RUBY_RAILS32_VERSION} d64 3 a66 3 _RAILS_MAJOR= ${RUBY_RAILS_VERSION:C/([0-9]+)\..*/\1/} _RAILS_MINOR= ${RUBY_RAILS_VERSION:C/([0-9]+)\.([0-9]+)\..*/\2/} _RAILS_TEENY= ${RUBY_RAILS_VERSION:C/([0-9]+)\.([0-9]+)\.([0-9]+).*/\3/} d76 1 a76 1 >=${RUBY_RAILS_VERSION}<${_RAILS_MAJOR}.${_RAILS_MINOR}.${_RAILS_NEXT} d79 1 a79 1 _RAILS_DEP= >=${RUBY_RAILS_VERSION}<${_RAILS_MAJOR}.${_RAILS_NEXT} a88 28 RUBY_ACTIVESUPPORT?= ${RUBY_RAILS_VERSION} RUBY_ACTIONPACK?= ${RUBY_RAILS_VERSION} RUBY_ACTIONVIEW?= ${RUBY_RAILS_VERSION} RUBY_ACTIVERECORD?= ${RUBY_RAILS_VERSION} RUBY_ACTIVERESOURCE?= ${RUBY_RAILS_VERSION} RUBY_ACTIONMAILER?= ${RUBY_RAILS_VERSION} RUBY_RAILTIES?= ${RUBY_RAILS_VERSION} RUBY_RAILS32_ACTIVESUPPORT= ../../devel/ruby-activesupport32 RUBY_RAILS32_ACTIVEMODEL= ../../devel/ruby-activemodel32 RUBY_RAILS32_ACTIONPACK= ../../www/ruby-actionpack32 RUBY_RAILS32_ACTIVERECORD= ../../databases/ruby-activerecord32 RUBY_RAILS32_ACTIVERESOURCE= ../../www/ruby-activeresource32 RUBY_RAILS32_ACTIONMAILER= ../../mail/ruby-actionmailer32 RUBY_RAILS32_RAILTIES= ../../devel/ruby-railties32 RUBY_RAILS32_RAILS= ../../www/ruby-rails32 RUBY_RAILS42_ACTIVEJOB= ../../devel/ruby-activejob42 RUBY_RAILS42_ACTIVESUPPORT= ../../devel/ruby-activesupport42 RUBY_RAILS42_ACTIVEMODEL= ../../devel/ruby-activemodel42 RUBY_RAILS42_ACTIONPACK= ../../www/ruby-actionpack42 RUBY_RAILS42_ACTIVERECORD= ../../databases/ruby-activerecord42 RUBY_RAILS42_ACTIONMAILER= ../../mail/ruby-actionmailer42 RUBY_RAILS42_RAILTIES= ../../devel/ruby-railties42 RUBY_RAILS42_RAILS= ../../www/ruby-rails42 RUBY_RAILS42_ACTIONVIEW= ../../www/ruby-actionview42 .if ${RUBY_RAILS} == "42" d90 1 a90 1 ${RUBY_PKGPREFIX}-activesupport${_RAILS_DEP}:${RUBY_RAILS42_ACTIVESUPPORT} d92 1 a92 1 ${RUBY_PKGPREFIX}-activemodel${_RAILS_DEP}:${RUBY_RAILS42_ACTIVEMODEL} d94 1 a94 5 ${RUBY_PKGPREFIX}-actionpack${_RAILS_DEP}:${RUBY_RAILS42_ACTIONPACK} RUBY_ACTIONVIEW_DEPENDS= \ ${RUBY_PKGPREFIX}-actionview${_RAILS_DEP}:${RUBY_RAILS42_ACTIONVIEW} RUBY_ACTIVEJOB_DEPENDS= \ ${RUBY_PKGPREFIX}-activejob${_RAILS_DEP}:${RUBY_RAILS42_ACTIVEJOB} d96 1 a96 1 ${RUBY_PKGPREFIX}-activerecord${_RAILS_DEP}:${RUBY_RAILS42_ACTIVERECORD} d98 1 a98 1 ${RUBY_PKGPREFIX}-actionmailer${_RAILS_DEP}:${RUBY_RAILS42_ACTIONMAILER} d100 1 a100 1 ${RUBY_PKGPREFIX}-railties${_RAILS_DEP}:${RUBY_RAILS42_RAILTIES} d102 3 a104 10 ${RUBY_PKGPREFIX}-rails${_RAILS_DEP}:${RUBY_RAILS42_RAILS} .else RUBY_ACTIVESUPPORT_DEPENDS= \ ${RUBY_PKGPREFIX}-activesupport${_RAILS_DEP}:${RUBY_RAILS32_ACTIVESUPPORT} RUBY_ACTIVEMODEL_DEPENDS= \ ${RUBY_PKGPREFIX}-activemodel${_RAILS_DEP}:${RUBY_RAILS32_ACTIVEMODEL} RUBY_ACTIONPACK_DEPENDS= \ ${RUBY_PKGPREFIX}-actionpack${_RAILS_DEP}:${RUBY_RAILS32_ACTIONPACK} RUBY_ACTIVERECORD_DEPENDS= \ ${RUBY_PKGPREFIX}-activerecord${_RAILS_DEP}:${RUBY_RAILS32_ACTIVERECORD} d106 6 a111 7 ${RUBY_PKGPREFIX}-activeresource${_RAILS_DEP}:${RUBY_RAILS32_ACTIVERESOURCE} RUBY_ACTIONMAILER_DEPENDS= \ ${RUBY_PKGPREFIX}-actionmailer${_RAILS_DEP}:${RUBY_RAILS32_ACTIONMAILER} RUBY_RAILTIES_DEPENDS= \ ${RUBY_PKGPREFIX}-railties${_RAILS_DEP}:${RUBY_RAILS32_RAILTIES} RUBY_RAILS_DEPENDS= \ ${RUBY_PKGPREFIX}-rails${_RAILS_DEP}:${RUBY_RAILS32_RAILS} @ 1.58 log @Fix a typo @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.57 2017/04/21 21:23:59 minskim Exp $ d12 1 a12 1 # Possible values: 32 d21 1 a21 1 # Possible values: 32 d35 1 a35 1 # Possible values: 32 @ 1.57 log @Add ruby-activejob42 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.56 2017/04/14 05:34:33 minskim Exp $ d139 1 a139 1 ${RUBY_PKGPREFIX}-activejob{_RAILS_DEP}:${RUBY_RAILS42_ACTIVEJOB} @ 1.56 log @Prepare for the import of Ruby on Rails 4.2 @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.55 2016/08/21 05:55:08 taca Exp $ d119 1 d138 2 @ 1.55 log @Start update of Ruby on Rails to 3.2.22.4. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.54 2016/03/05 05:23:26 taca Exp $ d42 1 d68 3 d72 1 d104 1 d119 27 d162 1 @ 1.54 log @Start update of Ruby on Rails to 3.2.22.2. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.53 2016/02/01 13:42:36 taca Exp $ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.22.2 @ 1.54.4.1 log @Pullup ticket #5095 - requested by taca www/ruby-actionpack32: security fix Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.24 - devel/ruby-activemodel32/distinfo 1.24 - devel/ruby-activesupport32/distinfo 1.24 - devel/ruby-railties32/distinfo 1.24 - lang/ruby/rails.mk 1.55 - mail/ruby-actionmailer32/distinfo 1.24 - www/ruby-actionpack32/distinfo 1.24 - www/ruby-activeresource32/distinfo 1.24 - www/ruby-rails32/distinfo 1.24 --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:55:08 UTC 2016 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails to 3.2.22.4. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:55:48 UTC 2016 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.22.4, no change except version. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:56:35 UTC 2016 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.22.4, no change except version. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:57:03 UTC 2016 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.22.4, no change except version. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:57:30 UTC 2016 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.22.4, no change except version. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:58:46 UTC 2016 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.22.4. Fix CVE-2016-6316, XSS vulnerability in Action View. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:59:16 UTC 2016 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.22.4, no change except version. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 05:59:36 UTC 2016 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.22.4, no change except version. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 21 06:00:48 UTC 2016 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.22.4, no change except version. @ text @d1 1 a1 1 # $NetBSD$ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.22.4 @ 1.53 log @Start update of Ruby on Rails to 3.2.22.1. Also tweak _RAILS_{MAJOR,MINOR,TEENY} variable definition. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.52 2015/06/22 13:49:38 taca Exp $ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.22.1 @ 1.52 log @Start update of Ruby on Rails to 3.2.22. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.51 2014/11/18 15:41:34 taca Exp $ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.22 d72 3 a74 3 _RAILS_MAJOR= ${RUBY_RAILS_VERSION:C/([0-9]+)\.([0-9]+)\.([0-9]+)/\1/} _RAILS_MINOR= ${RUBY_RAILS_VERSION:C/([0-9]+)\.([0-9]+)\.([0-9]+)/\2/} _RAILS_TEENY= ${RUBY_RAILS_VERSION:C/([0-9]+)\.([0-9]+)\.([0-9]+)/\3/} @ 1.52.6.1 log @Pullup ticket #4915 - requested by taca devel/ruby-activemodel32: security fix devel/ruby-activesupport32: security fix devel/ruby-railties32: security fix mail/ruby-actionmailer32: security fix www/ruby-actionpack32: security fix www/ruby-activeresource32: security fix www/ruby-rails32: security fix Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.22 - devel/ruby-activemodel32/distinfo 1.22 - devel/ruby-activesupport32/PLIST 1.2 - devel/ruby-activesupport32/distinfo 1.22 - devel/ruby-railties32/Makefile 1.11 - devel/ruby-railties32/distinfo 1.22 - lang/ruby/rails.mk 1.53 - mail/ruby-actionmailer32/distinfo 1.22 - www/ruby-actionpack32/distinfo 1.22 - www/ruby-activeresource32/distinfo 1.22 - www/ruby-rails32/distinfo 1.22 --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:42:36 UTC 2016 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails to 3.2.22.1. Also tweak _RAILS_{MAJOR,MINOR,TEENY} variable definition. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:43:56 UTC 2016 Modified Files: pkgsrc/devel/ruby-activesupport32: PLIST distinfo Log Message: Update ruby-activesupport32 to 3.2.22.1. * Add ActiveSupport::SecurityUtils module which is required for security fix of actionpack. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:45:10 UTC 2016 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.22.1. * No change except version. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:46:12 UTC 2016 Modified Files: pkgsrc/databases/ruby-activerecord32: Makefile distinfo Log Message: Update ruby-activerecord32 to 3.2.22.1. * No change except version. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:47:02 UTC 2016 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.22.1. * No change except version. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:48:02 UTC 2016 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Note update of ruby-actionpack32 to 3.2.22.1. * Use secure string comparisons for basic auth username / password. (CVE-2015-7576) * Stop caching mime types globally. (CVE-2016-0751) * Don't short-circuit reject_if proc. (CVE-2015-7577) * Allow :file to be outside rails root, but anything else must be inside the rails view directory. (CVE-2016-0752) --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:48:55 UTC 2016 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.22.1. * No change except version. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:49:57 UTC 2016 Modified Files: pkgsrc/devel/ruby-railties32: Makefile distinfo Log Message: Update ruby-railties32 to 3.2.22.1. * No change except version. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:50:48 UTC 2016 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.22.1. * No change except version. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:46:12 UTC 2016 Modified Files: pkgsrc/databases/ruby-activerecord32: Makefile distinfo Log Message: Update ruby-activerecord32 to 3.2.22.1. * No change except version. @ text @d1 1 a1 1 # $NetBSD$ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.22.1 d72 3 a74 3 _RAILS_MAJOR= ${RUBY_RAILS_VERSION:C/([0-9]+)\..*/\1/} _RAILS_MINOR= ${RUBY_RAILS_VERSION:C/([0-9]+)\.([0-9]+)\..*/\2/} _RAILS_TEENY= ${RUBY_RAILS_VERSION:C/([0-9]+)\.([0-9]+)\.([0-9]+).*/\3/} @ 1.52.6.2 log @Pullup ticket #4947 - requested by taca www/ruby-actionpack32: security fix Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.23 - devel/ruby-activemodel32/distinfo 1.23 - devel/ruby-activesupport32/distinfo 1.23 - devel/ruby-railties32/distinfo 1.23 - lang/ruby/rails.mk 1.54 - mail/ruby-actionmailer32/distinfo 1.23 - www/ruby-actionpack32/distinfo 1.23 - www/ruby-activeresource32/distinfo 1.23 - www/ruby-rails32/distinfo 1.23 --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:23:26 UTC 2016 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails to 3.2.22.2. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:24:32 UTC 2016 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:24:59 UTC 2016 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:25:33 UTC 2016 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:26:08 UTC 2016 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:27:42 UTC 2016 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.22.2. Fixes CVE-2016-2097 and CVE-2016-2098. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:28:40 UTC 2016 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:29:07 UTC 2016 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:29:26 UTC 2016 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.22.2. No chnage except version. @ text @d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.22.2 @ 1.51 log @Start update of Ruby on Rails to 3.2.21. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.50 2014/11/01 14:57:15 taca Exp $ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.21 @ 1.50 log @Start update of Ruby on Rails to 3.2.20. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.49 2014/07/06 07:36:35 taca Exp $ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.20 @ 1.49 log @Start update of Ruby on Rails to 3.2.19. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.48 2014/05/11 10:00:59 taca Exp $ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.19 @ 1.49.2.1 log @Pullup ticket #4546 - requested by taca www/ruby-rails32: security update Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.18 - devel/ruby-activemodel32/distinfo 1.18 - devel/ruby-activesupport32/distinfo 1.18 - devel/ruby-railties32/Makefile 1.7 - devel/ruby-railties32/distinfo 1.18 - lang/ruby/rails.mk 1.50 - mail/ruby-actionmailer32/distinfo 1.18 - www/ruby-actionpack32/distinfo 1.18 - www/ruby-activeresource32/distinfo 1.18 - www/ruby-rails32/distinfo 1.18 --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 14:57:15 UTC 2014 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails to 3.2.20. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 14:58:24 UTC 2014 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.20; update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 14:59:07 UTC 2014 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.20; update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 14:59:48 UTC 2014 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.20; update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 15:00:10 UTC 2014 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.20; update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 15:00:56 UTC 2014 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.20. Security fix for CVE-2014-7818. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 15:01:54 UTC 2014 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.20; update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 15:02:27 UTC 2014 Modified Files: pkgsrc/devel/ruby-railties32: Makefile distinfo Log Message: Update ruby-railties32 to 3.2.20; update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sat Nov 1 15:02:50 UTC 2014 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.20; update of version number only. @ text @d1 1 a1 1 # $NetBSD$ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.20 @ 1.49.2.2 log @Pullup ticket #4552 - requested by taca www/ruby-rails32: security update Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.19 - devel/ruby-activemodel32/distinfo 1.19 - devel/ruby-activesupport32/distinfo 1.19 - devel/ruby-railties32/distinfo 1.19 - lang/ruby/rails.mk 1.51 - mail/ruby-actionmailer32/distinfo 1.19 - www/ruby-actionpack32/distinfo 1.19 - www/ruby-activeresource32/distinfo 1.19 - www/ruby-rails32/distinfo 1.19 --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:41:34 UTC 2014 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails to 3.2.21. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:43:47 UTC 2014 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.21. No change except version number. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:44:09 UTC 2014 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.21. No change except version number. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:44:57 UTC 2014 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.21. No change except version number. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:45:29 UTC 2014 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.21. No change except version number. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:46:18 UTC 2014 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.21. Fix CVE-2014-7829 security problem. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:46:44 UTC 2014 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.21. No change except version number. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:47:04 UTC 2014 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.21. No change except version number. --- Module Name: pkgsrc Committed By: taca Date: Tue Nov 18 15:47:30 UTC 2014 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.21. No change except version number. @ text @d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.21 @ 1.48 log @Start update of Ruby on Rails to 3.2.18. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.47 2014/03/02 14:59:25 taca Exp $ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.18 @ 1.48.2.1 log @Pullup ticket #4448 - requested by taca databases/ruby-activerecord32: security update devel/ruby-activemodel32: security update devel/ruby-activesupport32: security update devel/ruby-railties32: security update mail/ruby-actionmailer32: security update www/ruby-actionpack32: security update www/ruby-activeresource32: security update Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.17 - devel/ruby-activemodel32/distinfo 1.17 - devel/ruby-activesupport32/distinfo 1.17 - devel/ruby-railties32/distinfo 1.17 - lang/ruby/rails.mk 1.49 - mail/ruby-actionmailer32/distinfo 1.17 - www/ruby-actionpack32/distinfo 1.17 - www/ruby-activeresource32/distinfo 1.17 - www/ruby-rails32/distinfo 1.17 --- Module Name: pkgsrc Committed By: taca Date: Sun Jul 6 07:36:35 UTC 2014 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails to 3.2.19. --- Module Name: pkgsrc Committed By: taca Date: Sun Jul 6 07:38:16 UTC 2014 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.19. ## Rails 3.2.19 (Jul 2, 2014) ## * Make sure Active Support configurations are applied correctly. Before this change configuration set using `config.active_support` would not be set. *Rafael Mendon=E7a Fran=E7a* --- Module Name: pkgsrc Committed By: taca Date: Sun Jul 6 07:38:50 UTC 2014 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.19. ## Rails 3.2.19 (Jul 2, 2014) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Jul 6 07:40:52 UTC 2014 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.19. ## Rails 3.2.19 (Jul 2, 2014) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Jul 6 07:41:43 UTC 2014 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.19. ## Rails 3.2.19 (Jul 2, 2014) ## * Fix regression when using `ActionView::Helpers::TranslationHelper#t= ranslate` with `options[:raise]`. This regression was introduced at ec16ba75a5493b9da972eea08bae630eb= a35b62f. *Shota Fukumori (sora_h)* --- Module Name: pkgsrc Committed By: taca Date: Sun Jul 6 07:42:15 UTC 2014 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.19. ## Rails 3.2.19 (Jul 2, 2014) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Jul 6 07:42:48 UTC 2014 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.19. ## Rails 3.2.19 (Jul 2, 2014) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Jul 6 07:43:50 UTC 2014 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.19. This is meta package like ruby gem. --- Module Name: pkgsrc Committed By: taca Date: Sun Jul 6 07:40:12 UTC 2014 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.19, security fix. ## Rails 3.2.19 (Jul 2, 2014) ## * Fix SQL Injection Vulnerability in 'bitstring' quoting. Fixes CVE-2014-3482. *Rafael Mendonḋ®a Franḋ®a* @ text @d1 1 a1 1 # $NetBSD$ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.19 @ 1.47 log @Start update of Ruby on Rails to 3.2.17. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.46 2013/12/04 15:41:48 taca Exp $ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.17 @ 1.46 log @Start update of Ruby on Rails 3.2.16. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.45 2013/10/18 15:22:42 taca Exp $ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.16 @ 1.46.2.1 log @Pullup ticket #4339 - requested by taca databases/ruby-activerecord32: security update devel/ruby-activemodel32: security update devel/ruby-activesupport32: security update devel/ruby-railties32: security update mail/ruby-actionmailer32: security update www/ruby-actionpack32: security update www/ruby-activeresource32: security update www/ruby-rails32: security update Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.15 - devel/ruby-activemodel32/distinfo 1.15 - devel/ruby-activesupport32/distinfo 1.15 - devel/ruby-railties32/distinfo 1.15 - lang/ruby/rails.mk 1.47 - mail/ruby-actionmailer32/distinfo 1.15 - www/ruby-actionpack32/distinfo 1.15 - www/ruby-activeresource32/distinfo 1.15 - www/ruby-rails32/distinfo 1.15 --- Module Name: pkgsrc Committed By: taca Date: Sun Mar 2 14:59:25 UTC 2014 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails to 3.2.17. --- Module Name: pkgsrc Committed By: taca Date: Sun Mar 2 15:00:23 UTC 2014 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.17. Update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sun Mar 2 15:00:59 UTC 2014 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.17. Update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sun Mar 2 15:01:36 UTC 2014 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.17. Update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sun Mar 2 15:02:17 UTC 2014 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.17. Update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sun Mar 2 15:03:02 UTC 2014 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.17. * Use the reference for the mime type to get the format Fixes: CVE-2014-0082 * Escape format, negative_format and units options of number helpers Fixes: CVE-2014-0081 --- Module Name: pkgsrc Committed By: taca Date: Sun Mar 2 15:03:37 UTC 2014 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.17. Update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sun Mar 2 15:04:04 UTC 2014 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.17. Update of version number only. --- Module Name: pkgsrc Committed By: taca Date: Sun Mar 2 15:04:29 UTC 2014 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.17. Update of version number only. @ text @d1 1 a1 1 # $NetBSD$ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.17 @ 1.45 log @Start update of Ruby on Rails 3.2.15. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.44 2013/09/11 13:23:09 taca Exp $ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.15 @ 1.44 log @Start update of Ruby on Rails to 3.2.14. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.43 2013/03/19 16:08:08 taca Exp $ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.14 @ 1.44.2.1 log @Pullup ticket #4248 - requested by taca databases/ruby-activerecord32: security update devel/ruby-activemodel32: security update devel/ruby-activesupport32: security update devel/ruby-railties32: security update mail/ruby-actionmailer32: security update www/ruby-actionpack32: security update www/ruby-activeresource32: security update www/ruby-rails32: security update Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.13 - devel/ruby-activemodel32/distinfo 1.13 - devel/ruby-activesupport32/distinfo 1.13 - devel/ruby-railties32/distinfo 1.13 - lang/ruby/rails.mk 1.45 - mail/ruby-actionmailer32/distinfo 1.13 - www/ruby-actionpack32/distinfo 1.13 - www/ruby-activeresource32/distinfo 1.13 - www/ruby-rails32/distinfo 1.13 --- Module Name: pkgsrc Committed By: taca Date: Fri Oct 18 15:22:42 UTC 2013 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.2.15. --- Module Name: pkgsrc Committed By: taca Date: Fri Oct 18 15:24:38 UTC 2013 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.15. ## Rails 3.2.15 (Oct 16, 2013) ## * Fix ActiveSupport::Cache::FileStore#cleanup to no longer rely on missing each_key method. *Murray Steele* * Add respond_to_missing? for TaggedLogging which is best practice when overriding method_missing. This permits wrapping TaggedLogging by another log abstraction such as em-logger. *Wolfram Arnold* --- Module Name: pkgsrc Committed By: taca Date: Fri Oct 18 15:26:02 UTC 2013 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to ## Rails 3.2.15 (Oct 16, 2013) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Fri Oct 18 15:27:20 UTC 2013 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.15. ## Rails 3.2.15 (Oct 16, 2013) ## * Fix `ActionDispatch::RemoteIp::GetIp#calculate_ip` to only check for spoofing attacks if both `HTTP_CLIENT_IP` and `HTTP_X_FORWARDED_FOR` are set. Fixes #12410 Backports #10844 *Tamir Duberstein* * Fix the assert_recognizes test method so that it works when there are constraints on the querystring. Issue/Pull Request #9368 Backport #5219 *Brian Hahn* * Fix to render partial by context(#11605). *Kassio Borges* * Fix `ActionDispatch::Assertions::ResponseAssertions#assert_redirected_to` does not show user-supplied message. Issue: when `assert_redirected_to` fails due to the response redirect not matching the expected redirect the user-supplied message (second parameter) is not shown. This message is only shown if the response is not a redirect. *Alexey Chernenkov* --- Module Name: pkgsrc Committed By: taca Date: Fri Oct 18 15:30:05 UTC 2013 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.15. ## Rails 3.2.15 (Oct 16, 2013) ## * When calling the method .find_or_initialize_by_* from a collection_proxy it should set the inverse_of relation even when the entry was found on the db. *arthurnn* * Callbacks on has_many should access the in memory parent if a inverse_of is set. *arthurnn* * Fix `FinderMethods#last` unscoped primary key. Fixes #11917. *Eugene Kalenkovich* * Load fixtures from linked folders. *Kassio Borges* * When using optimistic locking, `update` was not passing the column to `quote_value` to allow the connection adapter to properly determine how to quote the value. This was affecting certain databases that use specific colmn types. Fixes: #6763 *Alfred Wong* --- Module Name: pkgsrc Committed By: taca Date: Fri Oct 18 15:31:00 UTC 2013 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.15. ## Rails 3.2.15 (Oct 16, 2013) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Fri Oct 18 15:33:16 UTC 2013 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.15. CHANGELOG.md says "No changes." but it fixes possible dos vulnerability. --- Module Name: pkgsrc Committed By: taca Date: Fri Oct 18 15:34:47 UTC 2013 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.15. CHANGELOG.md says "No changes." but really it contains a few bug fixes. --- Module Name: pkgsrc Committed By: taca Date: Fri Oct 18 15:38:03 UTC 2013 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.15. This is a bug fix release and also contains one security fix. @ text @d1 1 a1 1 # $NetBSD$ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.15 @ 1.44.2.2 log @Pullup ticket #4266 - requested by taca databases/ruby-activerecord32: security update devel/ruby-activemodel32: security update devel/ruby-activesupport32: security update devel/ruby-railties32: security update mail/ruby-actionmailer32: security update www/ruby-actionpack32: security update www/ruby-activeresource32: security update www/ruby-rails32: security update Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.14 - devel/ruby-activemodel32/distinfo 1.14 - devel/ruby-activesupport32/distinfo 1.14 - devel/ruby-railties32/distinfo 1.14 - lang/ruby/rails.mk 1.46 - mail/ruby-actionmailer32/distinfo 1.14 - www/ruby-actionpack32/distinfo 1.14 - www/ruby-activeresource32/distinfo 1.14 - www/ruby-rails32/distinfo 1.14 --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:41:48 UTC 2013 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.2.16. --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:42:52 UTC 2013 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.16. Only version number has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:43:29 UTC 2013 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.16. Only version number has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:44:05 UTC 2013 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: ruby-activerecord32 to 3.2.16. Only version number has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:44:42 UTC 2013 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.16. Only version number has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:45:38 UTC 2013 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.16, security update. * Deep Munge the parameters for GET and POST Fixes CVE-2013-6417 * Stop using i18n's built in HTML error handling. Fixes: CVE-2013-4491 * Escape the unit value provided to number_to_currency Fixes CVE-2013-6415 * Only use valid mime type symbols as cache keys CVE-2013-6414 --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:46:15 UTC 2013 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.16. Only version number has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:46:48 UTC 2013 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.16. Only version number has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Dec 4 15:47:17 UTC 2013 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.16. Only version number has updated. @ text @d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.16 @ 1.43 log @Start update of Ruby on Rails 3.2.13. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.42 2013/02/24 14:33:28 taca Exp $ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.13 @ 1.42 log @Remove support for Ruby on Rails 3.1. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.41 2013/02/17 09:16:53 taca Exp $ d41 1 a41 1 RUBY_RAILS32_VERSION?= 3.2.12 @ 1.41 log @Drop support for Ruby on Rails 3.0. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.40 2013/02/12 14:28:09 taca Exp $ d12 1 a12 1 # Possible values: 31 32 d21 1 a21 1 # Possible values: 31 32 d35 1 a35 1 # Possible values: 31 32 a40 1 RUBY_RAILS31_VERSION?= 3.1.11 a56 3 elif ${PKG_INFO} -qe "${RUBY_PKGPREFIX}-rack>=1.3" || \ ${PKG_INFO} -qe "${RUBY_PKGPREFIX}-activesupport>=3.1"; then \ ${ECHO} 31; \ a66 3 .if ${RUBY_RAILS} == "31" RUBY_RAILS_VERSION:= ${RUBY_RAILS31_VERSION} .else a67 1 .endif a103 9 RUBY_RAILS31_ACTIVESUPPORT= ../../devel/ruby-activesupport31 RUBY_RAILS31_ACTIVEMODEL= ../../devel/ruby-activemodel31 RUBY_RAILS31_ACTIONPACK= ../../www/ruby-actionpack31 RUBY_RAILS31_ACTIVERECORD= ../../databases/ruby-activerecord31 RUBY_RAILS31_ACTIVERESOURCE= ../../www/ruby-activeresource31 RUBY_RAILS31_ACTIONMAILER= ../../mail/ruby-actionmailer31 RUBY_RAILS31_RAILTIES= ../../devel/ruby-railties31 RUBY_RAILS31_RAILS= ../../www/ruby-rails31 a112 18 .if ${RUBY_RAILS} == "31" RUBY_ACTIVESUPPORT_DEPENDS= \ ${RUBY_PKGPREFIX}-activesupport${_RAILS_DEP}:${RUBY_RAILS31_ACTIVESUPPORT} RUBY_ACTIVEMODEL_DEPENDS= \ ${RUBY_PKGPREFIX}-activemodel${_RAILS_DEP}:${RUBY_RAILS31_ACTIVEMODEL} RUBY_ACTIONPACK_DEPENDS= \ ${RUBY_PKGPREFIX}-actionpack${_RAILS_DEP}:${RUBY_RAILS31_ACTIONPACK} RUBY_ACTIVERECORD_DEPENDS= \ ${RUBY_PKGPREFIX}-activerecord${_RAILS_DEP}:${RUBY_RAILS31_ACTIVERECORD} RUBY_ACTIVERESOURCE_DEPENDS= \ ${RUBY_PKGPREFIX}-activeresource${_RAILS_DEP}:${RUBY_RAILS31_ACTIVERESOURCE} RUBY_ACTIONMAILER_DEPENDS= \ ${RUBY_PKGPREFIX}-actionmailer${_RAILS_DEP}:${RUBY_RAILS31_ACTIONMAILER} RUBY_RAILTIES_DEPENDS= \ ${RUBY_PKGPREFIX}-railties${_RAILS_DEP}:${RUBY_RAILS31_RAILTIES} RUBY_RAILS_DEPENDS= \ ${RUBY_PKGPREFIX}-rails${_RAILS_DEP}:${RUBY_RAILS31_RAILS} .else a128 1 .endif @ 1.40 log @Start update of Ruby on Rails 3.2.12. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.39 2013/02/12 14:16:07 taca Exp $ d12 1 a12 1 # Possible values: 3 31 32 d21 1 a21 1 # Possible values: 3 31 32 d35 1 a35 1 # Possible values: 3 31 32 a40 1 RUBY_RAILS3_VERSION?= 3.0.20 a60 3 elif ${PKG_INFO} -qe "${RUBY_PKGPREFIX}-rack>=1.2" || \ ${PKG_INFO} -qe "${RUBY_PKGPREFIX}-activesupport>=3.0<3.1"; then \ ${ECHO} 3; \ d71 1 a71 3 .if ${RUBY_RAILS} == "3" RUBY_RAILS_VERSION:= ${RUBY_RAILS3_VERSION} .elif ${RUBY_RAILS} == "31" a111 9 RUBY_RAILS3_ACTIVESUPPORT= ../../devel/ruby-activesupport3 RUBY_RAILS3_ACTIVEMODEL= ../../devel/ruby-activemodel RUBY_RAILS3_ACTIONPACK= ../../www/ruby-actionpack3 RUBY_RAILS3_ACTIVERECORD= ../../databases/ruby-activerecord3 RUBY_RAILS3_ACTIVERESOURCE= ../../www/ruby-activeresource3 RUBY_RAILS3_ACTIONMAILER= ../../mail/ruby-actionmailer3 RUBY_RAILS3_RAILTIES= ../../devel/ruby-railties RUBY_RAILS3_RAILS= ../../www/ruby-rails3 d130 1 a130 18 .if ${RUBY_RAILS} == "3" RUBY_ACTIVESUPPORT_DEPENDS= \ ${RUBY_PKGPREFIX}-activesupport${_RAILS_DEP}:${RUBY_RAILS3_ACTIVESUPPORT} RUBY_ACTIVEMODEL_DEPENDS= \ ${RUBY_PKGPREFIX}-activemodel${_RAILS_DEP}:${RUBY_RAILS3_ACTIVEMODEL} RUBY_ACTIONPACK_DEPENDS= \ ${RUBY_PKGPREFIX}-actionpack${_RAILS_DEP}:${RUBY_RAILS3_ACTIONPACK} RUBY_ACTIVERECORD_DEPENDS= \ ${RUBY_PKGPREFIX}-activerecord${_RAILS_DEP}:${RUBY_RAILS3_ACTIVERECORD} RUBY_ACTIVERESOURCE_DEPENDS= \ ${RUBY_PKGPREFIX}-activeresource${_RAILS_DEP}:${RUBY_RAILS3_ACTIVERESOURCE} RUBY_ACTIONMAILER_DEPENDS= \ ${RUBY_PKGPREFIX}-actionmailer${_RAILS_DEP}:${RUBY_RAILS3_ACTIONMAILER} RUBY_RAILTIES_DEPENDS= \ ${RUBY_PKGPREFIX}-railties${_RAILS_DEP}:${RUBY_RAILS3_RAILTIES} RUBY_RAILS_DEPENDS= \ ${RUBY_PKGPREFIX}-rails${_RAILS_DEP}:${RUBY_RAILS3_RAILS} .elif ${RUBY_RAILS} == "31" @ 1.39 log @Start update of Ruby on Rails 3.1.11. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.38 2013/01/29 15:36:12 taca Exp $ d43 1 a43 1 RUBY_RAILS32_VERSION?= 3.2.11 @ 1.38 log @Start update of Ruby on Rails 3.0.20. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.37 2013/01/09 12:40:52 taca Exp $ d42 1 a42 1 RUBY_RAILS31_VERSION?= 3.1.10 @ 1.37 log @Start update of Ruby on Rails 3.2.11. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.36 2013/01/09 12:33:28 taca Exp $ d41 1 a41 1 RUBY_RAILS3_VERSION?= 3.0.19 @ 1.36 log @Start update of Ruby on Rails 3.1.10. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.35 2013/01/09 12:24:26 taca Exp $ d43 1 a43 1 RUBY_RAILS32_VERSION?= 3.2.10 @ 1.35 log @Start update of Ruby on Rails 3.0.19. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.34 2013/01/05 14:17:48 taca Exp $ d42 1 a42 1 RUBY_RAILS31_VERSION?= 3.1.9 @ 1.34 log @Start updating of Ruby on Rails 3.2.10. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.33 2013/01/05 13:57:10 taca Exp $ d41 1 a41 1 RUBY_RAILS3_VERSION?= 3.0.18 @ 1.33 log @Start update of Ruby on Rails 3.1.9. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.32 2013/01/05 13:30:32 taca Exp $ d43 1 a43 1 RUBY_RAILS32_VERSION?= 3.2.9 @ 1.32 log @Start update of Ruby on Rails 3.0.18. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.31 2012/12/16 14:06:53 taca Exp $ d42 1 a42 1 RUBY_RAILS31_VERSION?= 3.1.8 @ 1.31 log @Start update of Ruby on Rails to 3.2.9. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.30 2012/08/12 12:37:06 taca Exp $ d41 1 a41 1 RUBY_RAILS3_VERSION?= 3.0.17 @ 1.31.2.1 log @Pullup ticket #4019 - requested by taca databases/ruby-activerecord3: security update devel/ruby-activemodel: security update devel/ruby-activesupport3: security update devel/ruby-railties: security update mail/ruby-actionmailer3: security update www/ruby-actionpack3: security update www/ruby-activeresource3: security update www/ruby-rails3: security update Revisions pulled up: - databases/ruby-activerecord3/distinfo 1.16 - devel/ruby-activemodel/distinfo 1.16 - devel/ruby-activesupport3/distinfo 1.17 - devel/ruby-railties/distinfo 1.16 - lang/ruby/rails.mk 1.32 - mail/ruby-actionmailer3/distinfo 1.18 - www/ruby-actionpack3/distinfo 1.17 - www/ruby-activeresource3/distinfo 1.16 - www/ruby-rails3/distinfo 1.17 --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 13:30:33 UTC 2013 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.0.18. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 13:32:15 UTC 2013 Modified Files: pkgsrc/devel/ruby-activesupport3: distinfo Log Message: Update ruby-activesupport3 to 3.0.18. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 13:34:18 UTC 2013 Modified Files: pkgsrc/devel/ruby-activemodel: distinfo Log Message: Update ruby-activemodel to 3.0.18. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 13:35:08 UTC 2013 Modified Files: pkgsrc/www/ruby-activeresource3: distinfo Log Message: Update ruby-activeresource3 to 3.0.18. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 13:36:01 UTC 2013 Modified Files: pkgsrc/www/ruby-actionpack3: distinfo Log Message: Update ruby-actionpack3 to 3.0.18. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 13:36:46 UTC 2013 Modified Files: pkgsrc/databases/ruby-activerecord3: distinfo Log Message: Update ruby-activerecord3 to 3.0.18. ## Rails 3.0.18 * CVE-2012-5664 ensure that options are never taken from the first parameter. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 13:41:42 UTC 2013 Modified Files: pkgsrc/mail/ruby-actionmailer3: distinfo Log Message: Update ruby-actionmailer3 to 3.0.18. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 13:43:15 UTC 2013 Modified Files: pkgsrc/devel/ruby-railties: distinfo Log Message: Update ruby-railties to 3.0.18. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 13:43:39 UTC 2013 Modified Files: pkgsrc/www/ruby-rails3: distinfo Log Message: Update ruby-rails3 to 3.0.18. Only version has updated. @ text @d1 1 a1 1 # $NetBSD$ d41 1 a41 1 RUBY_RAILS3_VERSION?= 3.0.18 @ 1.31.2.2 log @Pullup ticket #4020 - requested by taca databases/ruby-activerecord31: security update devel/ruby-activemodel31: security update devel/ruby-activesupport31: security update devel/ruby-railties31: security update mail/ruby-actionmailer31: security update www/ruby-actionpack31: security update www/ruby-activeresource31: security update www/ruby-rails31: security update Revisions pulled up: - databases/ruby-activerecord31/distinfo 1.7 - devel/ruby-activemodel31/distinfo 1.7 - devel/ruby-activesupport31/distinfo 1.8 - devel/ruby-railties31/PLIST 1.3 - devel/ruby-railties31/distinfo 1.7 - lang/ruby/rails.mk 1.33 - mail/ruby-actionmailer31/distinfo 1.7 - www/ruby-actionpack31/distinfo 1.8 - www/ruby-activeresource31/distinfo 1.7 - www/ruby-rails31/distinfo 1.7 --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 13:57:10 UTC 2013 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.1.9. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 13:57:50 UTC 2013 Modified Files: pkgsrc/devel/ruby-activesupport31: distinfo Log Message: Update ruby-activesupport31 to 3.1.9. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 13:58:23 UTC 2013 Modified Files: pkgsrc/devel/ruby-activemodel31: distinfo Log Message: Update ruby-activemodel31 to 3.1.9. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 13:58:57 UTC 2013 Modified Files: pkgsrc/www/ruby-activeresource31: distinfo Log Message: Update ruby-activeresource31 to 3.1.9. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 13:59:40 UTC 2013 Modified Files: pkgsrc/databases/ruby-activerecord31: distinfo Log Message: Update ruby-activerecord31 to 3.1.9. ## Rails 3.1.9 * CVE-2012-5664 ensure that options are never taken from the first parameter. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 14:00:19 UTC 2013 Modified Files: pkgsrc/www/ruby-actionpack31: distinfo Log Message: Update ruby-actionpack31 to 3.1.9. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 14:00:49 UTC 2013 Modified Files: pkgsrc/mail/ruby-actionmailer31: distinfo Log Message: Update ruby-actionmailer31 to 3.1.9. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 14:01:33 UTC 2013 Modified Files: pkgsrc/devel/ruby-railties31: PLIST distinfo Log Message: Update ruby-railties31 to 3.1.9. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 14:02:04 UTC 2013 Modified Files: pkgsrc/www/ruby-rails31: distinfo Log Message: Update ruby-rails31 to 3.1.9. Only version has updated. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.31.2.1 2013/01/18 12:18:31 tron Exp $ d42 1 a42 1 RUBY_RAILS31_VERSION?= 3.1.9 @ 1.31.2.3 log @Pullup ticket #4021 - requested by taca databases/ruby-activerecord32: security update devel/ruby-activemodel32: security update devel/ruby-activesupport32: security update devel/ruby-railties32: security update mail/ruby-actionmailer32: security update www/ruby-actionpack32: security update www/ruby-activeresource32: security update www/ruby-rails32: security update Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.8 - devel/ruby-activemodel32/distinfo 1.8 - devel/ruby-activesupport32/distinfo 1.8 - devel/ruby-railties32/PLIST 1.3 - devel/ruby-railties32/distinfo 1.8 - lang/ruby/rails.mk 1.34 - mail/ruby-actionmailer32/distinfo 1.8 - www/ruby-actionpack32/distinfo 1.8 - www/ruby-activeresource32/distinfo 1.8 - www/ruby-rails32/distinfo 1.8 --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 14:17:48 UTC 2013 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start updating of Ruby on Rails 3.2.10. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 14:18:39 UTC 2013 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.10. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 14:19:25 UTC 2013 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.10. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 14:20:05 UTC 2013 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Note update of ruby-activeresource32 to 3.2.10. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 14:21:02 UTC 2013 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.10. ## Rails 3.2.10 ## * CVE-2012-5664 options hashes should only be extracted if there are extra parameters. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 14:21:28 UTC 2013 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.10. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 14:22:02 UTC 2013 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.10. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 14:22:25 UTC 2013 Modified Files: pkgsrc/devel/ruby-railties32: PLIST distinfo Log Message: Update ruby-railties32 to 3.2.10. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Sat Jan 5 14:22:55 UTC 2013 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.10. Only version has updated. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.31.2.2 2013/01/18 13:22:48 tron Exp $ d43 1 a43 1 RUBY_RAILS32_VERSION?= 3.2.10 @ 1.31.2.4 log @Pullup ticket #4023 - requested by taca databases/ruby-activerecord3: security update devel/ruby-activemodel: security update devel/ruby-activesupport3: security update devel/ruby-railties: security update mail/ruby-actionmailer3: security update www/ruby-actionpack3: security update www/ruby-activeresource3: security update www/ruby-rails3: security update Revisions pulled up: - databases/ruby-activerecord3/distinfo 1.17 - devel/ruby-activemodel/distinfo 1.17 - devel/ruby-activesupport3/distinfo 1.18 - devel/ruby-railties/PLIST 1.6 - devel/ruby-railties/distinfo 1.17 - lang/ruby/rails.mk 1.35 - mail/ruby-actionmailer3/distinfo 1.19 - www/ruby-actionpack3/distinfo 1.18 - www/ruby-activeresource3/distinfo 1.17 - www/ruby-rails3/distinfo 1.18 --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:24:27 UTC 2013 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.0.19. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:25:17 UTC 2013 Modified Files: pkgsrc/devel/ruby-activesupport3: distinfo Log Message: Update ruby-activesupport3 to 3.0.19. ## Rails 3.0.19 (Jan 8, 2012) ## * Hash.from_xml raises when it encounters type="symbol" or type="yaml". Use Hash.from_trusted_xml to parse this XML. CVE-2013-0156 *Jeremy Kemper* --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:26:20 UTC 2013 Modified Files: pkgsrc/devel/ruby-activemodel: distinfo Log Message: Update ruby-activemodel to 3.0.19. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:27:13 UTC 2013 Modified Files: pkgsrc/www/ruby-activeresource3: distinfo Log Message: Update ruby-activeresource3 to 3.0.19. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:28:04 UTC 2013 Modified Files: pkgsrc/www/ruby-actionpack3: distinfo Log Message: Update ruby-actionpack3 to 3.0.19. ## Rails 3.0.19 * Strip nils from collections on JSON and XML posts. [CVE-2013-0155] --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:28:50 UTC 2013 Modified Files: pkgsrc/databases/ruby-activerecord3: distinfo Log Message: Update ruby-activerecord3 to 3.0.19. ## Rails 3.0.19 * Fix querying with an empty hash *Damien Mathieu* [CVE-2013-0155] --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:29:19 UTC 2013 Modified Files: pkgsrc/mail/ruby-actionmailer3: distinfo Log Message: Update ruby-actionmailer3 to 3.0.19. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:29:40 UTC 2013 Modified Files: pkgsrc/devel/ruby-railties: PLIST distinfo Log Message: Update ruby-railties to 3.0.19. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:30:06 UTC 2013 Modified Files: pkgsrc/www/ruby-rails3: distinfo Log Message: Update ruby-rails3 to 3.0.19. Only version has updated. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.31.2.3 2013/01/18 14:09:39 tron Exp $ d41 1 a41 1 RUBY_RAILS3_VERSION?= 3.0.19 @ 1.31.2.5 log @Pullup ticket #4024 - requested by taca databases/ruby-activerecord31: security update devel/ruby-activemodel31: security update devel/ruby-activesupport31: security update devel/ruby-railties31: security update mail/ruby-actionmailer31: security update www/ruby-actionpack31: security update www/ruby-activeresource31: security update www/ruby-rails31: security update Revisions pulled up: - databases/ruby-activerecord31/distinfo 1.8 - devel/ruby-activemodel31/distinfo 1.8 - devel/ruby-activesupport31/distinfo 1.9 - devel/ruby-railties31/distinfo 1.8 - lang/ruby/rails.mk 1.36 - mail/ruby-actionmailer31/distinfo 1.8 - www/ruby-actionpack31/distinfo 1.9 - www/ruby-activeresource31/distinfo 1.8 - www/ruby-rails31/distinfo 1.8 --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:33:28 UTC 2013 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.1.10. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:34:08 UTC 2013 Modified Files: pkgsrc/devel/ruby-activesupport31: distinfo Log Message: Update ruby-activesupport31 to 3.1.10. ## Rails 3.1.10 (Jan 8, 2012) ## * Hash.from_xml raises when it encounters type="symbol" or type="yaml". Use Hash.from_trusted_xml to parse this XML. CVE-2013-0156 *Jeremy Kemper* --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:34:55 UTC 2013 Modified Files: pkgsrc/devel/ruby-activemodel31: distinfo Log Message: Update ruby-activemodel31 to 3.1.10. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:35:24 UTC 2013 Modified Files: pkgsrc/www/ruby-activeresource31: distinfo Log Message: Update ruby-activeresource31 to 3.1.10. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:36:36 UTC 2013 Modified Files: pkgsrc/databases/ruby-activerecord31: distinfo Log Message: Update ruby-activerecord31 to 3.1.10. ## Rails 3.1.10 * Fix querying with an empty hash *Damien Mathieu* [CVE-2013-0155] --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:37:05 UTC 2013 Modified Files: pkgsrc/www/ruby-actionpack31: distinfo Log Message: Update ruby-actionpack31 to 3.1.10. ## Rails 3.1.10 * Strip nils from collections on JSON and XML posts. [CVE-2013-0155] --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:37:52 UTC 2013 Modified Files: pkgsrc/mail/ruby-actionmailer31: distinfo Log Message: Update ruby-actionpack31 to 3.1.10. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:38:11 UTC 2013 Modified Files: pkgsrc/devel/ruby-railties31: distinfo Log Message: Update ruby-railties31 to 3.1.10. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:38:29 UTC 2013 Modified Files: pkgsrc/www/ruby-rails31: distinfo Log Message: Update ruby-rails31 to 3.1.10. Only version has updated. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.31.2.4 2013/01/18 14:51:10 tron Exp $ d42 1 a42 1 RUBY_RAILS31_VERSION?= 3.1.10 @ 1.31.2.6 log @Pullup ticket #4025 - requested by taca databases/ruby-activerecord32: security update devel/ruby-activemodel32: security update devel/ruby-activesupport32: security update devel/ruby-railties32: security update mail/ruby-actionmailer32: security update www/ruby-actionpack32: security update www/ruby-activeresource32: security update www/ruby-rails32: security update Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.9 - devel/ruby-activemodel32/distinfo 1.9 - devel/ruby-activesupport32/distinfo 1.9 - devel/ruby-railties32/distinfo 1.9 - lang/ruby/rails.mk 1.37 - mail/ruby-actionmailer32/distinfo 1.9 - www/ruby-actionpack32/distinfo 1.9 - www/ruby-activeresource32/distinfo 1.9 - www/ruby-rails32/distinfo 1.9 --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:40:52 UTC 2013 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.2.11. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:41:15 UTC 2013 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.11. ## Rails 3.2.10 (Jan 8, 2012) ## * Hash.from_xml raises when it encounters type="symbol" or type="yaml". Use Hash.from_trusted_xml to parse this XML. CVE-2013-0156 *Jeremy Kemper* --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:41:45 UTC 2013 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.11. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:42:12 UTC 2013 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.11. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:43:18 UTC 2013 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.11. ## Rails 3.2.11 ## * Fix querying with an empty hash *Damien Mathieu* [CVE-2013-0155] --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:43:59 UTC 2013 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.11. ## Rails 3.2.11 ## * Strip nils from collections on JSON and XML posts. [CVE-2013-0155] --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:44:21 UTC 2013 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.11. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:44:44 UTC 2013 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.11. Only version has updated. --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 9 12:45:04 UTC 2013 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-railties32 to 3.2.11. Only version has updated. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.31.2.5 2013/01/18 15:08:38 tron Exp $ d43 1 a43 1 RUBY_RAILS32_VERSION?= 3.2.11 @ 1.31.2.7 log @Pullup ticket #4052 - requested by taca databases/ruby-activerecord3: security update devel/ruby-activemodel: security update devel/ruby-activesupport3: security update devel/ruby-railties: security update mail/ruby-actionmailer3: security update www/ruby-actionpack3: security update www/ruby-activeresource3: security update www/ruby-rails3: security update Revisions pulled up: - databases/ruby-activerecord3/distinfo 1.18 - devel/ruby-activemodel/distinfo 1.18 - devel/ruby-activesupport3/PLIST 1.2 - devel/ruby-activesupport3/distinfo 1.19 - devel/ruby-railties/distinfo 1.18 - lang/ruby/rails.mk 1.38 - mail/ruby-actionmailer3/distinfo 1.20 - www/ruby-actionpack3/distinfo 1.19 - www/ruby-activeresource3/distinfo 1.18 - www/ruby-rails3/distinfo 1.19 --- Module Name: pkgsrc Committed By: taca Date: Tue Jan 29 15:36:12 UTC 2013 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.0.20. --- Module Name: pkgsrc Committed By: taca Date: Tue Jan 29 15:37:52 UTC 2013 Modified Files: pkgsrc/devel/ruby-activesupport3: PLIST distinfo Log Message: Update ruby-activesupport3 to 3.0.20. Fix CVE-2013-0333. There is a vulnerability in the JSON code for Ruby on Rails which allows attackers to bypass authentication systems, inject arbitrary SQL, inject and execute arbitrary code, or perform a DoS attack on a Rails application. ## Rails 3.0.20 (unreleased) * Fix XML serialization of methods that return nil to not be considered as YAML (GH #8853 and GH #492) --- Module Name: pkgsrc Committed By: taca Date: Tue Jan 29 15:38:40 UTC 2013 Modified Files: pkgsrc/devel/ruby-activemodel: distinfo Log Message: Update ruby-activemodel to 3.0.20. Fix CVE-2013-0333. There is a vulnerability in the JSON code for Ruby on Rails which allows attackers to bypass authentication systems, inject arbitrary SQL, inject and execute arbitrary code, or perform a DoS attack on a Rails application. ## Rails 3.0.20 (unreleased) * Fix XML serialization of methods that return nil to not be considered as YAML (GH #8853 and GH #492) --- Module Name: pkgsrc Committed By: taca Date: Tue Jan 29 15:39:33 UTC 2013 Modified Files: pkgsrc/www/ruby-activeresource3: distinfo Log Message: Update ruby-activeresource3 to 3.0.20. No change except version. --- Module Name: pkgsrc Committed By: taca Date: Tue Jan 29 15:40:43 UTC 2013 Modified Files: pkgsrc/databases/ruby-activerecord3: distinfo Log Message: Update ruby-activerecord3 to 3.0.20. No change except version. --- Module Name: pkgsrc Committed By: taca Date: Tue Jan 29 15:41:17 UTC 2013 Modified Files: pkgsrc/www/ruby-actionpack3: distinfo Log Message: Update ruby-actionpack3 to 3.0.20. No change except version. --- Module Name: pkgsrc Committed By: taca Date: Tue Jan 29 15:41:49 UTC 2013 Modified Files: pkgsrc/mail/ruby-actionmailer3: distinfo Log Message: Update ruby-actionmailer3 to 3.0.20. No change except version. --- Module Name: pkgsrc Committed By: taca Date: Tue Jan 29 15:42:27 UTC 2013 Modified Files: pkgsrc/devel/ruby-railties: distinfo Log Message: Update ruby-railties to 3.0.20. No change except version. --- Module Name: pkgsrc Committed By: taca Date: Tue Jan 29 15:42:58 UTC 2013 Modified Files: pkgsrc/www/ruby-rails3: distinfo Log Message: Update ruby-rails3 to 3.0.20. No change except version. @ text @d1 1 a1 1 # $NetBSD$ d41 1 a41 1 RUBY_RAILS3_VERSION?= 3.0.20 @ 1.31.2.8 log @Pullup ticket #4071 - requested by taca databases/ruby-activerecord31: security update devel/ruby-activemodel31: security update devel/ruby-activesupport31: security update devel/ruby-railties31: security update mail/ruby-actionmailer31: security update www/ruby-actionpack31: security update www/ruby-activeresource31: security update www/ruby-rails31: security update Revisions pulled up: - databases/ruby-activerecord31/distinfo 1.9 - devel/ruby-activemodel31/distinfo 1.9 - devel/ruby-activesupport31/distinfo 1.10 - devel/ruby-railties31/Makefile 1.6 - devel/ruby-railties31/distinfo 1.9 - lang/ruby/rails.mk 1.39 - mail/ruby-actionmailer31/distinfo 1.9 - www/ruby-actionpack31/distinfo 1.10 - www/ruby-activeresource31/distinfo 1.9 - www/ruby-rails31/distinfo 1.9 --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:16:07 UTC 2013 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.1.11. --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:17:07 UTC 2013 Modified Files: pkgsrc/devel/ruby-activesupport31: distinfo Log Message: Update ruby-activesupport31 to 3.1.11. ## Rails 3.1.11 (unreleased) ## * Allow `multi_json` version `>= 1.3`, relaxing back to semantic versioning 2.0.0 (revert of #5861) Backport of #5896 *Alex Riedler* --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:18:08 UTC 2013 Modified Files: pkgsrc/devel/ruby-activemodel31: distinfo Log Message: Update ruby-activemodel31 to 3.1.11. Change of version only. --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:19:10 UTC 2013 Modified Files: pkgsrc/www/ruby-activeresource31: distinfo Log Message: Update ruby-activeresource31 to 3.1.11. Change of version only. --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:21:05 UTC 2013 Modified Files: pkgsrc/databases/ruby-activerecord31: distinfo Log Message: Update ruby-activerecord31 to 3.1.11. ## Rails 3.1.11 (unreleased) ## * Quote numeric values being compared to non-numeric columns. Otherwise, in some database, the string column values will be coerced to a numeric allowing 0, 0.0 or false to match any string starting with a non-digit. Example: App.where(apikey: 0) # => SELECT * FROM users WHERE apikey = '0' *Dylan Smith* --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:22:03 UTC 2013 Modified Files: pkgsrc/www/ruby-actionpack31: distinfo Log Message: Update ruby-actionpack31 to 3.1.11. ## Rails 3.1.11 (unreleased) * Fixed JSON params parsing regression for non-object JSON content. --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:22:43 UTC 2013 Modified Files: pkgsrc/mail/ruby-actionmailer31: distinfo Log Message: Update ruby-actionmailer331 to 3.1.11. Change of version only. --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:23:36 UTC 2013 Modified Files: pkgsrc/devel/ruby-railties31: Makefile distinfo Log Message: Update ruby-railties31 to 3.1.11. Change of version only. --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:24:13 UTC 2013 Modified Files: pkgsrc/www/ruby-rails31: distinfo Log Message: Update of ruby-rails31 to 3.1.11. Change of version only. @ text @d42 1 a42 1 RUBY_RAILS31_VERSION?= 3.1.11 @ 1.31.2.9 log @Pullup ticket #4072 - requested by taca databases/ruby-activerecord32: security update devel/ruby-activemodel32: security update devel/ruby-activesupport32: security update devel/ruby-railties32: security update mail/ruby-actionmailer32: security update www/ruby-actionpack32: security update www/ruby-activeresource32: security update www/ruby-rails32: security update Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.10 - devel/ruby-activemodel32/distinfo 1.10 - devel/ruby-activesupport32/distinfo 1.10 - devel/ruby-railties32/Makefile 1.4 - devel/ruby-railties32/distinfo 1.10 - lang/ruby/rails.mk 1.40 - mail/ruby-actionmailer32/distinfo 1.10 - www/ruby-actionpack32/distinfo 1.10 - www/ruby-activeresource32/distinfo 1.10 - www/ruby-rails32/distinfo 1.10 --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:28:10 UTC 2013 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.2.12. --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:28:59 UTC 2013 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.12. Change of version only. --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:29:48 UTC 2013 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.12. Change of version only. --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:30:48 UTC 2013 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.12. Change of version only. --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:31:19 UTC 2013 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.12. ## Rails 3.2.12 (unreleased) ## * Quote numeric values being compared to non-numeric columns. Otherwise, in some database, the string column values will be coerced to a numeric allowing 0, 0.0 or false to match any string starting with a non-digit. Example: App.where(apikey: 0) # => SELECT * FROM users WHERE apikey = '0' *Dylan Smith* --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:31:52 UTC 2013 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.12. Change of version only. --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:32:32 UTC 2013 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update of ruby-actionmailer32 to 3.2.12. Change of version only. --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:33:08 UTC 2013 Modified Files: pkgsrc/devel/ruby-railties32: Makefile distinfo Log Message: Update ruby-railties32 to 3.2.12. Change of version only. --- Module Name: pkgsrc Committed By: taca Date: Tue Feb 12 14:33:42 UTC 2013 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.12. Change of version only. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.31.2.8 2013/02/15 11:23:44 tron Exp $ d43 1 a43 1 RUBY_RAILS32_VERSION?= 3.2.12 @ 1.30 log @Start update of Ruby on Rails 3.2.8. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.29 2012/08/12 10:32:52 taca Exp $ d43 1 a43 1 RUBY_RAILS32_VERSION?= 3.2.8 @ 1.29 log @Start Ruby on Rails 3.1.8. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.28 2012/08/12 09:44:22 taca Exp $ d43 1 a43 1 RUBY_RAILS32_VERSION?= 3.2.7 @ 1.28 log @Start update of Ruby on Rails 3.0.17. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.27 2012/07/31 12:50:28 taca Exp $ d42 1 a42 1 RUBY_RAILS31_VERSION?= 3.1.7 @ 1.27 log @Start update of Ruby on Rails 3.2.7. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.26 2012/07/31 12:34:39 taca Exp $ d41 1 a41 1 RUBY_RAILS3_VERSION?= 3.0.16 @ 1.26 log @Start update of Ruby on Rails 3.1.7. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.25 2012/07/31 12:20:08 taca Exp $ d43 1 a43 1 RUBY_RAILS32_VERSION?= 3.2.6 @ 1.25 log @Start update of Ruby on Rails to 3.0.16. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.24 2012/06/16 15:24:56 taca Exp $ d42 1 a42 1 RUBY_RAILS31_VERSION?= 3.1.6 @ 1.24 log @Make RUBY_RAILS_DEFAULT to "32" since Ruby on Rails 3.0.x is EOL. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.23 2012/06/14 15:11:58 taca Exp $ d41 1 a41 1 RUBY_RAILS3_VERSION?= 3.0.14 @ 1.24.2.1 log @Pullup ticket #3894 - requested by taca databases/ruby-activerecord3: security update devel/ruby-activemodel: security update devel/ruby-activesupport3: security update devel/ruby-railties: security update mail/ruby-actionmailer3: security update mail/ruby-mail22/Makefile www/ruby-actionpack3: security update www/ruby-activeresource3: security update www/ruby-rails3: security update Revisions pulled up: - databases/ruby-activerecord3/distinfo 1.14 - devel/ruby-activemodel/distinfo 1.14 - devel/ruby-activesupport3/distinfo 1.15 - devel/ruby-railties/distinfo 1.14 - lang/ruby/rails.mk 1.25 - mail/ruby-actionmailer3/distinfo 1.16 - mail/ruby-mail22/Makefile 1.5 - www/ruby-actionpack3/distinfo 1.15 - www/ruby-activeresource3/distinfo 1.14 - www/ruby-rails3/distinfo 1.15 --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:20:08 UTC 2012 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails to 3.0.16. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:21:03 UTC 2012 Modified Files: pkgsrc/devel/ruby-activesupport3: distinfo Log Message: Update ruby-activesupport3 to 3.0.16. ## Rails 3.0.16 (Jul 26, 2012) * No changes. ## Rails 3.0.14 (Jun 12, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:21:54 UTC 2012 Modified Files: pkgsrc/devel/ruby-activemodel: distinfo Log Message: Update ruby-activemodel to 3.0.16. ## Rails 3.0.16 (Jul 26, 2012) * No changes. ## Rails 3.0.14 (Jun 12, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:22:56 UTC 2012 Modified Files: pkgsrc/www/ruby-activeresource3: distinfo Log Message: Update ruby-activeresource3 to 3.0.16. ## Rails 3.0.16 (Jul 26, 2012) * No changes. ## Rails 3.0.14 (Jun 12, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:24:29 UTC 2012 Modified Files: pkgsrc/www/ruby-actionpack3: distinfo Log Message: Update ruby-actionpack3 to 3.0.16. ## Rails 3.0.16 (Jul 26, 2012) * Do not convert digest auth strings to symbols. CVE-2012-3424 ## Rails 3.0.14 (Jun 12, 2012) * nil is removed from array parameter values CVE-2012-2694 --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:25:14 UTC 2012 Modified Files: pkgsrc/databases/ruby-activerecord3: distinfo Log Message: Update ruby-activerecord3 to 3.0.16. ## Rails 3.0.16 (Jul 26, 2012) * No changes. ## Rails 3.0.14 (Jun 12, 2012) * protect against the nesting of hashes changing the table context in the next call to build_from_hash. This fix covers this case as well. CVE-2012-2695 --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:25:49 UTC 2012 Modified Files: pkgsrc/mail/ruby-actionmailer3: distinfo Log Message: Update ruby-actionmailer3 to 3.0.16. ## Rails 3.0.16 (Jul 26, 2012) * No changes. ## Rails 3.0.14 (Jun 12, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:26:47 UTC 2012 Modified Files: pkgsrc/devel/ruby-railties: distinfo Log Message: Update ruby-railties to 3.0.16. ## Rails 3.0.16 (Jul 26, 2012) * No changes. ## Rails 3.0.14 (Jun 12, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:27:36 UTC 2012 Modified Files: pkgsrc/www/ruby-rails3: distinfo Log Message: Update ruby-rails3 to 3.0.16. This is a meta-like package and no changes. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 13:02:49 UTC 2012 Modified Files: pkgsrc/mail/ruby-mail22: Makefile Log Message: Bump PKGREVISION to reflect dependency to devel/ruby-activesupport3. @ text @d1 1 a1 1 # $NetBSD$ d41 1 a41 1 RUBY_RAILS3_VERSION?= 3.0.16 @ 1.24.2.2 log @Pullup ticket #3895 - requested by taca databases/ruby-activerecord31: security update devel/ruby-activemodel31: security update devel/ruby-activesupport31: security update devel/ruby-railties31: security update mail/ruby-actionmailer31: security update www/ruby-actionpack31: security update www/ruby-activeresource31: security update www/ruby-rails31: security update Revisions pulled up: - databases/ruby-activerecord31/distinfo 1.5 - devel/ruby-activemodel31/distinfo 1.5 - devel/ruby-activesupport31/distinfo 1.6 - devel/ruby-railties31/distinfo 1.5 - lang/ruby/rails.mk 1.26 - mail/ruby-actionmailer31/distinfo 1.5 - www/ruby-actionpack31/distinfo 1.6 - www/ruby-activeresource31/distinfo 1.5 - www/ruby-rails31/distinfo 1.5 --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:34:39 UTC 2012 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.1.7. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:35:07 UTC 2012 Modified Files: pkgsrc/devel/ruby-activesupport31: distinfo Log Message: Update ruby-activesupport31 to 3.1.7. ## Rails 3.1.7 (Jul 26, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:35:47 UTC 2012 Modified Files: pkgsrc/devel/ruby-activemodel31: distinfo Log Message: Update ruby-activemodel31 to 3.1.7. ## Rails 3.1.7 (Jul 26, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:36:18 UTC 2012 Modified Files: pkgsrc/www/ruby-activeresource31: distinfo Log Message: Update ruby-activeresource31 to 3.1.7. ## Rails 3.1.7 (Jul 26, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:36:59 UTC 2012 Modified Files: pkgsrc/databases/ruby-activerecord31: distinfo Log Message: Update ruby-activerecord31 to 3.1.7. ## Rails 3.1.7 (Jul 26, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:38:13 UTC 2012 Modified Files: pkgsrc/www/ruby-actionpack31: distinfo Log Message: Update ruby-actionpack31 to 3.1.7. ## Rails 3.1.7 (Jul 26, 2012) * Do not convert digest auth strings to symbols. CVE-2012-3424 --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:38:47 UTC 2012 Modified Files: pkgsrc/mail/ruby-actionmailer31: distinfo Log Message: Update ruby-actionmailer31 to 3.1.7. ## Rails 3.1.7 (Jul 26, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:39:16 UTC 2012 Modified Files: pkgsrc/devel/ruby-railties31: distinfo Log Message: Update ruby-railties31 to 3.1.7. ## Rails 3.1.7 (Jul 26, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:41:23 UTC 2012 Modified Files: pkgsrc/www/ruby-rails31: distinfo Log Message: Update Update ruby-rails31 to 3.1.17. This is a meta-like package and no changes. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.24.2.1 2012/08/12 14:06:58 tron Exp $ d42 1 a42 1 RUBY_RAILS31_VERSION?= 3.1.7 @ 1.24.2.3 log @Pullup ticket #3896 - requested by taca databases/ruby-activerecord32: security update devel/ruby-activemodel32: security update devel/ruby-activesupport32: security update devel/ruby-railties32: security update mail/ruby-actionmailer32: security update www/ruby-actionpack32: security update www/ruby-activeresource32: security update www/ruby-rails32: security update Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.5 - devel/ruby-activemodel32/distinfo 1.5 - devel/ruby-activesupport32/distinfo 1.5 - devel/ruby-railties32/distinfo 1.5 - lang/ruby/rails.mk 1.27 - mail/ruby-actionmailer32/distinfo 1.5 - www/ruby-actionpack32/distinfo 1.5 - www/ruby-activeresource32/distinfo 1.5 - www/ruby-rails32/distinfo 1.5 --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:50:28 UTC 2012 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.2.7. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:51:18 UTC 2012 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.7. ## Rails 3.2.7 (unreleased) * Hash#fetch(fetch) is not the same as doing hash[key] * adds a missing require [fixes #6896] * make sure the inflection rules are loaded when cherry-picking active_support/core_ext/string/inflections.rb [fixes #6884] * Merge pull request #6857 from rsutphin/as_core_ext_time_missing_require * bump AS deprecation_horizon to 4.0 --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:52:25 UTC 2012 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.7. ## Rails 3.2.7 (unreleased) * `validates_inclusion_of` and `validates_exclusion_of` now accept `:within` option as alias of `:in` as documented. * Fix the the backport of the object dup with the ruby 1.9.3p194. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:53:01 UTC 2012 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.7. ## Rails 3.2.7 (unreleased) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:53:46 UTC 2012 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.7. ## Rails 3.2.7 (unreleased) ## * `:finder_sql` and `:counter_sql` options on collection associations are deprecated. Please transition to using scopes. *Jon Leighton* * `:insert_sql` and `:delete_sql` options on `has_and_belongs_to_many` associations are deprecated. Please transition to using `has_many :through` *Jon Leighton* * `composed_of` has been deprecated. You'll have to write your own accessor and mutator methods if you'd like to use value objects to represent some portion of your models. *Steve Klabnik* * `update_attribute` has been deprecated. Use `update_column` if you want to bypass mass-assignment protection, validations, callbacks, and touching of updated_at. Otherwise please use `update_attributes`. *Steve Klabnik* --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:55:32 UTC 2012 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.7. ## Rails 3.2.7 (unreleased) ## * Do not convert digest auth strings to symbols. CVE-2012-3424 * Bump Journey requirements to 1.0.4 * Add support for optional root segments containing slashes * Fixed bug creating invalid HTML in select options * Show in log correct wrapped keys * Fix NumberHelper options wrapping to prevent verbatim blocks being rendered instead of line continuations. * ActionController::Metal doesn't have logger method, check it and then delegate * ActionController::Caching depends on RackDelegation and AbstractController::Callbacks --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:56:13 UTC 2012 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.7. ## Rails 3.2.7 (unreleased) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:56:46 UTC 2012 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.7. ## Rails 3.2.7 (unreleased) * Since Rails 3.2, use layout false to render no layout * Use strict_args_position! if available from Thor --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 31 12:57:33 UTC 2012 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update Update ruby-rails32 to 3.2.17. This is a meta-like package and no changes. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.24.2.2 2012/08/12 14:26:14 tron Exp $ d43 1 a43 1 RUBY_RAILS32_VERSION?= 3.2.7 @ 1.24.2.4 log @Pullup ticket #3903 - requested by taca Ruby on Rails 3.0.17 security update. Revisions pulled up: - databases/ruby-activerecord3/distinfo 1.15 - devel/ruby-activemodel/distinfo 1.15 - devel/ruby-activesupport3/distinfo 1.16 - devel/ruby-railties/distinfo 1.15 - lang/ruby/rails.mk 1.28 - mail/ruby-actionmailer3/distinfo 1.17 - www/ruby-actionpack3/distinfo 1.16 - www/ruby-activeresource3/distinfo 1.15 - www/ruby-rails3/distinfo 1.16 --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 09:44:22 UTC 2012 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.0.17. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 09:44:58 UTC 2012 Modified Files: pkgsrc/devel/ruby-activesupport3: distinfo Log Message: Update ruby-activesupport3 to 3.0.17. ## Rails 3.0.17 (Aug 9, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 09:45:45 UTC 2012 Modified Files: pkgsrc/devel/ruby-activemodel: distinfo Log Message: Update ruby-activemodel to 3.0.17. ## Rails 3.0.17 (Aug 9, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 09:46:45 UTC 2012 Modified Files: pkgsrc/www/ruby-actionpack3: distinfo Log Message: Update ruby-actionpack3 to 3.0.17 ## Rails 3.0.17 (Aug 9, 2012) * There is an XSS vulnerability in the strip_tags helper in Ruby on Rails, the helper doesn't correctly handle malformed html. As a result an attacker can execute arbitrary javascript through the use of specially crafted malformed html. *Marek from Nethemba (www.nethemba.com) & Santiago Pastorino* * When a "prompt" value is supplied to the `select_tag` helper, the "prompt" value is not escaped. If untrusted data is not escaped, and is supplied as the prompt value, there is a potential for XSS attacks. Vulnerable code will look something like this: select_tag("name", options, :prompt => UNTRUSTED_INPUT) *Santiago Pastorino* --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 09:47:45 UTC 2012 Modified Files: pkgsrc/databases/ruby-activerecord3: distinfo Log Message: Update ruby-activerecord3 to 3.0.17. ## Rails 3.0.17 (Aug 9, 2012) * Fix type_to_sql with text and limit on mysql/mysql2 (GH #7252) --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 09:48:26 UTC 2012 Modified Files: pkgsrc/mail/ruby-actionmailer3: distinfo Log Message: Update ruby-actionmailer3 to 3.0.17. ## Rails 3.0.17 (Aug 9, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 09:49:01 UTC 2012 Modified Files: pkgsrc/devel/ruby-railties: distinfo Log Message: Update ruby-railties to 3.0.17. ## Rails 3.0.17 (Aug 9, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 09:50:41 UTC 2012 Modified Files: pkgsrc/www/ruby-rails3: distinfo Log Message: Update ruby-rails3 to 3.0.17. This is a meta-like package and no changes. --- Module Name: pkgsrc Committed By: taca Date: Wed Aug 15 15:58:23 UTC 2012 Modified Files: pkgsrc/www/ruby-activeresource3: distinfo Log Message: Oops, missed from commit for ruby-activeresource3. @ text @d1 1 a1 1 # $NetBSD$ d41 1 a41 1 RUBY_RAILS3_VERSION?= 3.0.17 @ 1.24.2.5 log @Pullup ticket #3902 - requested by taca Ruby on Rails 3.1.8 security update Revisions pulled up: - databases/ruby-activerecord31/distinfo 1.6 - devel/ruby-activemodel31/distinfo 1.6 - devel/ruby-activesupport31/distinfo 1.7 - devel/ruby-railties31/distinfo 1.6 - lang/ruby/rails.mk 1.29 - mail/ruby-actionmailer31/distinfo 1.6 - www/ruby-actionpack31/distinfo 1.7 - www/ruby-activeresource31/distinfo 1.6 - www/ruby-rails31/distinfo 1.6 --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 10:32:52 UTC 2012 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start Ruby on Rails 3.1.8. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 10:33:18 UTC 2012 Modified Files: pkgsrc/devel/ruby-activesupport31: distinfo Log Message: Update ruby-activesupport31 to 3.1.8. ## Rails 3.1.8 (Aug 9, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 10:33:48 UTC 2012 Modified Files: pkgsrc/devel/ruby-activemodel31: distinfo Log Message: Update ruby-activemodel31 to 3.1.8. ## Rails 3.1.8 (Aug 9, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 10:34:38 UTC 2012 Modified Files: pkgsrc/www/ruby-actionpack31: distinfo Log Message: Update ruby-actionpack31 to 3.1.8. ## Rails 3.1.8 (Aug 9, 2012) * There is an XSS vulnerability in the strip_tags helper in Ruby on Rails, the helper doesn't correctly handle malformed html. As a result an attacker can execute arbitrary javascript through the use of specially crafted malformed html. *Marek from Nethemba (www.nethemba.com) & Santiago Pastorino* * When a "prompt" value is supplied to the `select_tag` helper, the "prompt" value is not escaped. If untrusted data is not escaped, and is supplied as the prompt value, there is a potential for XSS attacks. Vulnerable code will look something like this: select_tag("name", options, :prompt => UNTRUSTED_INPUT) *Santiago Pastorino* --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 10:35:20 UTC 2012 Modified Files: pkgsrc/databases/ruby-activerecord31: distinfo Log Message: Update ruby-activerecord31 to 3.1.8. ## Rails 3.1.8 (Aug 9, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 10:36:35 UTC 2012 Modified Files: pkgsrc/www/ruby-activeresource31: distinfo Log Message: Update ruby-activeresource31 to 3.1.8. ## Rails 3.1.8 (Aug 9, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 10:37:22 UTC 2012 Modified Files: pkgsrc/mail/ruby-actionmailer31: distinfo Log Message: Update ruby-actionmailer31 to 3.1.8. ## Rails 3.1.8 (Aug 9, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 10:37:52 UTC 2012 Modified Files: pkgsrc/devel/ruby-railties31: distinfo Log Message: Update ruby-railties31 to 3.1.8. ## Rails 3.1.8 (Aug 9, 2012) * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 10:38:45 UTC 2012 Modified Files: pkgsrc/www/ruby-rails31: distinfo Log Message: Update ruby-rails31 to 3.1.8. This is a meta-like package and no changes. @ text @d42 1 a42 1 RUBY_RAILS31_VERSION?= 3.1.8 @ 1.24.2.6 log @Pullup ticket #3904 - requested by taca Ruby on Rails 3.2.8 security update Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.6 - devel/ruby-activemodel32/distinfo 1.6 - devel/ruby-activesupport32/distinfo 1.6 - devel/ruby-railties32/distinfo 1.6 - lang/ruby/rails.mk 1.30 - mail/ruby-actionmailer32/distinfo 1.6 - www/ruby-actionpack32/distinfo 1.6 - www/ruby-activeresource32/distinfo 1.6 - www/ruby-rails32/distinfo 1.6 --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 12:37:06 UTC 2012 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.2.8. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 12:38:09 UTC 2012 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.8. ## Rails 3.2.8 (Aug 9, 2012) ## * Fix ActiveSupport integration with Mocha > 0.12.1. *Mike Gunderloy* * Reverted the deprecation of ActiveSupport::JSON::Variable. *Rafael Mendonça França* --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 12:38:41 UTC 2012 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.8. ## Rails 3.2.8 (Aug 9, 2012) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 12:40:00 UTC 2012 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.8. ## Rails 3.2.8 (Aug 9, 2012) ## * There is an XSS vulnerability in the strip_tags helper in Ruby on Rails, the helper doesn't correctly handle malformed html. As a result an attacker can execute arbitrary javascript through the use of specially crafted malformed html. *Marek from Nethemba (www.nethemba.com) & Santiago Pastorino* * When a "prompt" value is supplied to the `select_tag` helper, the "prompt" value is not escaped. If untrusted data is not escaped, and is supplied as the prompt value, there is a potential for XSS attacks. Vulnerable code will look something like this: select_tag("name", options, :prompt => UNTRUSTED_INPUT) *Santiago Pastorino* --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 12:41:02 UTC 2012 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.8. ## Rails 3.2.8 (Aug 9, 2012) ## * Do not consider the numeric attribute as changed if the old value is zero and the new value is not a string. Fixes #7237. *Rafael Mendonça França* * Removes the deprecation of `update_attribute`. *fxn* * Reverted the deprecation of `composed_of`. *Rafael Mendonça França* * Reverted the deprecation of `*_sql` association options. They will be deprecated in 4.0 instead. *Jon Leighton* * Do not eager load AR session store. ActiveRecord::SessionStore depends on the abstract store in Action Pack. Eager loading this class would break client code that eager loads Active Record standalone. Fixes #7160 *Xavier Noria* * Do not set RAILS_ENV to "development" when using `db:test:prepare` and related rake tasks. This was causing the truncation of the development database data when using RSpec. Fixes #7175. *Rafael Mendonça França* --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 12:41:37 UTC 2012 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.8. ## Rails 3.2.8 (Aug 9, 2012) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 12:42:14 UTC 2012 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.8. ## Rails 3.2.8 (Aug 9, 2012) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 12:43:08 UTC 2012 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.8. ## Rails 3.2.8 (Aug 9, 2012) ## * ERB scaffold generator use the `:data => { :confirm => "Text" }` syntax instead of `:confirm`. *Rafael Mendonça França* --- Module Name: pkgsrc Committed By: taca Date: Sun Aug 12 12:44:30 UTC 2012 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.8. This is a meta-like package and no changes. @ text @d43 1 a43 1 RUBY_RAILS32_VERSION?= 3.2.8 @ 1.23 log @Change _RUBY_RAILS_DEPENDS_EXACT to RUBY_RAILS_STRICT_DEP and it public. For Ruby on Rails component packages depends strictly on teeny version (RUBY_RAILS_STRICT_DEP is "yes") and others depends on minor version. Fix some none-component packages which accidently depends strictly. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.22 2012/06/14 15:03:14 taca Exp $ d13 1 a13 1 # Default: 3 31 32 d46 1 a46 1 RUBY_RAILS_DEFAULT?= 3 @ 1.22 log @Use a tab instead of spaces. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.21 2012/06/14 15:01:25 taca Exp $ d24 6 d48 2 a51 1 _RUBY_RAILS_DEPENDS_EXACT= yes d84 1 a84 2 # If _RUBY_RAILS_DEPENDS_EXACT is defined, match exact version. # Otherwise allow greater minor version. d90 6 a95 1 .if !empty(_RUBY_RAILS_DEPENDS_EXACT) @ 1.21 log @Oops, fix cut&paste error. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.20 2012/06/14 14:45:25 taca Exp $ d35 2 a36 2 RUBY_RAILS3_VERSION?= 3.0.14 RUBY_RAILS31_VERSION?= 3.1.6 @ 1.20 log @Start update of Ruby on Rails 3.0.14 and 3.1.6. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.19 2012/06/13 15:12:40 taca Exp $ d35 2 a36 2 +RUBY_RAILS3_VERSION?= 3.0.14 +RUBY_RAILS31_VERSION?= 3.1.6 @ 1.19 log @Start update of Ruby on Rails 3.2.6. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.18 2012/06/02 01:25:57 taca Exp $ d35 2 a36 2 RUBY_RAILS3_VERSION?= 3.0.13 RUBY_RAILS31_VERSION?= 3.1.5 @ 1.18 log @Start update of Ruby on Rails to 3.0.13/3.1.5/3.2.5. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.17 2012/04/29 12:56:00 taca Exp $ d37 1 a37 1 RUBY_RAILS32_VERSION?= 3.2.5 @ 1.17 log @Start updating Ruby on Rails to 3.2.3. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.16 2012/03/18 08:12:30 taca Exp $ d35 3 a37 3 RUBY_RAILS3_VERSION?= 3.0.12 RUBY_RAILS31_VERSION?= 3.1.4 RUBY_RAILS32_VERSION?= 3.2.3 @ 1.16 log @Remove Ruby on Rails 2 support. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.15 2012/03/18 06:43:54 taca Exp $ d37 1 a37 1 RUBY_RAILS32_VERSION?= 3.2.2 @ 1.15 log @Add supports for Ruby on Rails 3.2, currently 3.2.2. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.14 2012/03/18 05:35:17 taca Exp $ d12 1 a12 1 # Possible values: 2 3 31 32 d21 1 a21 1 # Possible values: 2 3 31 32 d29 1 a29 1 # Possible values: 2 3 31 32 a34 1 RUBY_RAILS2_VERSION?= 2.3.14 a57 3 elif ${PKG_INFO} -qe "${RUBY_PKGPREFIX}-rack<1.2" || \ ${PKG_INFO} -qe "${RUBY_PKGPREFIX}-activesupport<3"; then \ ${ECHO} 2; \ d68 1 a68 3 .if ${RUBY_RAILS} == "2" RUBY_RAILS_VERSION:= ${RUBY_RAILS2_VERSION} .elif ${RUBY_RAILS} == "3" a106 7 RUBY_RAILS2_ACTIVESUPPORT= ../../devel/ruby-activesupport RUBY_RAILS2_ACTIONPACK= ../../www/ruby-actionpack RUBY_RAILS2_ACTIVERECORD= ../../databases/ruby-activerecord RUBY_RAILS2_ACTIVERESOURCE= ../../www/ruby-activeresource RUBY_RAILS2_ACTIONMAILER= ../../mail/ruby-actionmailer RUBY_RAILS2_RAILS= ../../www/ruby-rails d134 1 a134 16 .if ${RUBY_RAILS} == "2" RUBY_ACTIVESUPPORT_DEPENDS= \ ${RUBY_PKGPREFIX}-activesupport${_RAILS_DEP}:${RUBY_RAILS2_ACTIVESUPPORT} RUBY_ACTIONPACK_DEPENDS= \ ${RUBY_PKGPREFIX}-actionpack${_RAILS_DEP}:${RUBY_RAILS2_ACTIONPACK} RUBY_ACTIVERECORD_DEPENDS= \ ${RUBY_PKGPREFIX}-activerecord${_RAILS_DEP}:${RUBY_RAILS2_ACTIVERECORD} RUBY_ACTIVERESOURCE_DEPENDS= \ ${RUBY_PKGPREFIX}-activeresource${_RAILS_DEP}:${RUBY_RAILS2_ACTIVERESOURCE} RUBY_ACTIONMAILER_DEPENDS= \ ${RUBY_PKGPREFIX}-actionmailer${_RAILS_DEP}:${RUBY_RAILS2_ACTIONMAILER} RUBY_RAILTIES_DEPENDS= # empty RUBY_RAILTIES_DEPENDS= # empty RUBY_RAILS_DEPENDS= \ ${RUBY_PKGPREFIX}-rails${_RAILS_DEP}:${RUBY_RAILS2_RAILS} .elif ${RUBY_RAILS} == "3" @ 1.14 log @Start update of Ruby on Rails 3.1.4. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.13 2012/03/18 05:19:55 taca Exp $ d12 2 a13 2 # Possible values: 2 3 31 # Default: 3 31 d21 1 a21 1 # Possible values: 2 3 31 d29 1 a29 1 # Possible values: 2 3 31 d38 1 d50 4 a53 1 if ${PKG_INFO} -qe "${RUBY_PKGPREFIX}-rack>=1.3" || \ d76 2 d79 1 a79 1 RUBY_RAILS_VERSION:= ${RUBY_RAILS31_VERSION} d138 9 d179 1 a179 1 .else d196 17 @ 1.13 log @Start update of Ruby on Rails 3.0.12. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.12 2012/03/18 05:18:16 taca Exp $ d37 1 a37 1 RUBY_RAILS31_VERSION?= 3.1.3 @ 1.12 log @* Propagate RUBY_RAILS_SUPPORTED via MULTI. * Propagate RUBY_RAILS_DEFAULT and RUBY_RAILS_SUPPORTED via MAKE_ENV. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.11 2011/12/13 15:47:06 taca Exp $ d36 1 a36 1 RUBY_RAILS3_VERSION?= 3.0.11 @ 1.11 log @* Add RUBY_RAILS_SUPPORTED. Each Ruby on Rails related pacakge tells version(s) of acceptable Ruby on Rails. It almost replace previous RUBY_RAILS. * Add some definitions for Ruby on Rails 3.1. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.10 2011/11/19 15:30:05 taca Exp $ d94 5 a98 1 MULTI+= RUBY_RAILS_DEFAULT=${RUBY_RAILS} @ 1.10 log @Start updating Ruby on Rails to 3.0.11. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.9 2011/09/14 16:51:50 taca Exp $ d12 2 a13 2 # Possible values: 2 3 # Default: 3 d18 8 d27 1 a27 2 # Force sepecify RUBY_RAILS_DEFAULT. It is only for packages of # rails components. d29 1 a29 1 # Possible values: 2 3 (empty) d37 1 d39 5 a43 2 .if !empty(RUBY_RAILS) RUBY_RAILS_DEFAULT= ${RUBY_RAILS} d47 1 a47 1 .if empty(RUBY_RAILS_DEFAULT) d49 5 a53 2 if ${PKG_INFO} -qe "${RUBY_PKGPREFIX}-rack>=1.2" || \ ${PKG_INFO} -qe "${RUBY_PKGPREFIX}-activesupport>=3.0"; then \ d62 3 a64 1 RUBY_RAILS_DEFAULT:= ${_RUBY_INSTALLED_RAILS} d68 1 a68 2 RUBY_RAILS_DEFAULT?= 3 .if ${RUBY_RAILS_DEFAULT} == "2" d70 2 a71 1 _RUBY_RAILS_MAJOR= 2 d73 1 a73 2 RUBY_RAILS_VERSION:= ${RUBY_RAILS3_VERSION} _RUBY_RAILS_MAJOR= 3 d77 6 a82 1 MULTI+= RUBY_RAILS_DEFAULT=${RUBY_RAILS_DEFAULT} d84 4 a87 6 # # If defined, match exact version. Otherwise allow greater minor version. # .if empty(_RUBY_RAILS_DEPENDS_EXACT) _RUBY_RAILS_NEXT!= ${EXPR} ${_RUBY_RAILS_MAJOR} + 1 _RAILS_DEP= >=${RUBY_RAILS_VERSION}<${_RUBY_RAILS_NEXT} d89 3 a91 2 _RUBY_RAILS_VERS= ${RUBY_RAILS_VERSION:C/([0-9]+)\.([0-9]+)\.([0-9]+)/\1.\2/} _RUBY_RAILS_TEENY= ${RUBY_RAILS_VERSION:C/([0-9]+)\.([0-9]+)\.([0-9]+)/\3/} d93 2 a94 3 _RUBY_RAILS_NEXT!= ${EXPR} ${_RUBY_RAILS_TEENY} + 1 _RAILS_DEP= >=${RUBY_RAILS_VERSION}<${_RUBY_RAILS_VERS}.${_RUBY_RAILS_NEXT} .endif d119 10 a128 1 .if ${_RUBY_RAILS_MAJOR} == "2" d143 1 a143 1 .else d160 17 @ 1.9 log @Make default Ruby on Rails version to 3; currently 3.0.10. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.8 2011/08/17 14:11:18 taca Exp $ d29 1 a29 1 RUBY_RAILS3_VERSION?= 3.0.10 a64 1 # _ @ 1.8 log @Start update of Ruby on Rails 2.3.14 and 3.0.10. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.7 2011/06/17 13:47:29 taca Exp $ d13 1 a13 1 # Default: 2 d52 1 a52 1 RUBY_RAILS_DEFAULT?= 2 @ 1.7 log @Start update of Ruby on Rails 3 to 3.0.9. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.6 2011/06/11 03:04:22 taca Exp $ d28 2 a29 2 RUBY_RAILS2_VERSION?= 2.3.12 RUBY_RAILS3_VERSION?= 3.0.9 @ 1.6 log @Start update of Ruby on Rails 2.3.12/3.0.8. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.5 2011/05/30 13:08:15 hiramatsu Exp $ d29 1 a29 1 RUBY_RAILS3_VERSION?= 3.0.8 @ 1.5 log @Fix typos regarding activeresource. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.4 2011/05/10 14:09:21 taca Exp $ d28 2 a29 2 RUBY_RAILS2_VERSION?= 2.3.11 RUBY_RAILS3_VERSION?= 3.0.7 @ 1.4 log @Start update of rails3 related packages to 3.0.7. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.3 2011/04/06 13:23:03 taca Exp $ d127 1 a127 1 ${RUBY_PKGPREFIX}-activeresource${_RAILS_DEP}:${RUBY_RAILS3_ACRIVERESOURCE} @ 1.3 log @Start update of Ruby on Rails 3.0.6. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.2 2011/03/27 15:54:43 taca Exp $ d29 1 a29 1 RUBY_RAILS3_VERSION?= 3.0.6 @ 1.2 log @Add depends pattern: RUBY_RAILS_DEPENDS. @ text @d1 1 a1 1 # $NetBSD: rails.mk,v 1.1 2011/03/23 14:22:49 taca Exp $ d29 1 a29 1 RUBY_RAILS3_VERSION?= 3.0.5 @ 1.2.2.1 log @Pullup ticket #3401 - requested by taca databases/ruby-activerecord3: security update devel/ruby-activemodel: security update devel/ruby-activesupport3: security update devel/ruby-railties: security update lang/ruby: security update mail/ruby-actionmailer3: security update www/ruby-actionpack3: security update www/ruby-activeresource3: security update www/ruby-rails3: security update Revisions pulled up: - databases/ruby-activerecord3/distinfo 1.5 - devel/ruby-activemodel/distinfo 1.5 - devel/ruby-activemodel/patches/patch-.._activemodel.gemspec 1.2 - devel/ruby-activesupport3/distinfo 1.5 - devel/ruby-railties/distinfo 1.5 - lang/ruby/rails.mk 1.3 - mail/ruby-actionmailer3/distinfo 1.5 - www/ruby-actionpack3/distinfo 1.5 - www/ruby-actionpack3/patches/patch-.._actionpack.gemspec 1.2 - www/ruby-activeresource3/distinfo 1.5 - www/ruby-rails3/distinfo 1.6 --- Module Name: pkgsrc Committed By: taca Date: Wed Apr 6 13:23:03 UTC 2011 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails 3.0.6. --- Module Name: pkgsrc Committed By: taca Date: Wed Apr 6 13:23:30 UTC 2011 Modified Files: pkgsrc/devel/ruby-activesupport3: distinfo Log Message: Update ruby-activesupport3 package to 3.0.6. --- Module Name: pkgsrc Committed By: taca Date: Wed Apr 6 13:24:48 UTC 2011 Modified Files: pkgsrc/devel/ruby-activemodel: distinfo pkgsrc/devel/ruby-activemodel/patches: patch-.._activemodel.gemspec Log Message: Update ruby-activemodel package to 3.0.6. *Rails 3.0.6 (April 5, 2011) * Fix when database column name has some symbolic characters (e.g. Oracle CASE# VARCHAR2(20)) #5818 #6850 [Robert Pankowecki, Santiago Pastorino] * Fix length validation for fixnums #6556 [Andriy Tyurnikov] * Fix i18n key collision with namespaced models #6448 [yves.senn] --- Module Name: pkgsrc Committed By: taca Date: Wed Apr 6 13:26:04 UTC 2011 Modified Files: pkgsrc/www/ruby-actionpack3: distinfo pkgsrc/www/ruby-actionpack3/patches: patch-.._actionpack.gemspec Log Message: Update ruby-actionpack3 pacakge to 3.0.6. *Rails 3.0.6 (April 5, 2011) * Fixed XSS vulnerability in `auto_link`. `auto_link` no longer marks input as html safe. Please make sure that calls to auto_link() are wrapped in a sanitize(), or a raw() depending on the type of input passed to auto_link(). For example: <%= sanitize(auto_link(some_user_input)) %> Thanks to Torben Schulz for reporting this. The fix can be found here: 61ee3449674c591747db95f9b3472c5c3bd9e84d * Fixes the output of `rake routes` to be correctly match to the behavior of the application, as the regular expression used to match the path is greedy and won't capture the format part by default [Prem Sichanugrist] * Fixes an issue with number_to_human when converting values which are less than 1 but greater than -1 [Josh Kalderimis] * Sensitive query string parameters (specified in config.filter_parameters) will now be filtered out from the request paths in the log file. [Prem Sichanugrist, fxn] * URL parameters which return nil for to_param are now removed from the query string [Andrew White] * Don't allow i18n to change the minor version, version now set to ~> 0.5.0 [Santiago Pastorino] * Make TranslationHelper#translate use the :rescue_format option in I18n 0.5.0 [Sven Fuchs] * Fix regression: javascript_include_tag shouldn't raise if you register an expansion key with nil or [] value [Santiago Pastorino] * Fix Action caching bug where an action that has a non-cacheable response always renders a nil response body. It now correctly renders the response body. [Cheah Chu Yeow] --- Module Name: pkgsrc Committed By: taca Date: Wed Apr 6 13:27:01 UTC 2011 Modified Files: pkgsrc/databases/ruby-activerecord3: distinfo Log Message: Update ruby-activerecord3 package to 3.0.6. *Rails 3.0.6 (April 5, 2011) * Un-deprecate reorder method [Sebastian Martinez] * Extensions are applied when calling +except+ or +only+ on relations. Thanks to Iain Hecker. * Schemas set in set_table_name are respected by the mysql adapter. LH #5322 * Fixed a bug when empty? was called on a grouped Relation that wasn't loaded. LH #5829 * Reapply extensions when using except and only. Thanks Iain Hecker. * Binary data is escaped when being inserted to SQLite3 Databases. Thanks Naruse! --- Module Name: pkgsrc Committed By: taca Date: Wed Apr 6 13:27:56 UTC 2011 Modified Files: pkgsrc/www/ruby-activeresource3: distinfo Log Message: Update ruby-activeresource3 pacakge to 3.0.6. No changes but version. --- Module Name: pkgsrc Committed By: taca Date: Wed Apr 6 13:28:53 UTC 2011 Modified Files: pkgsrc/mail/ruby-actionmailer3: distinfo Log Message: Update ruby-actionmailer3 package to 3.0.6. *Rails 3.0.6 (April 5, 2011) * Don't allow i18n to change the minor version, version now set to ~> 0.5.0 [Santiago Pastorino] --- Module Name: pkgsrc Committed By: taca Date: Wed Apr 6 13:29:48 UTC 2011 Modified Files: pkgsrc/devel/ruby-railties: distinfo Log Message: Update ruby-railties package to 3.0.6. No chagne but version. --- Module Name: pkgsrc Committed By: taca Date: Wed Apr 6 13:31:02 UTC 2011 Modified Files: pkgsrc/www/ruby-rails3: distinfo Log Message: Update ruby-rails3 package to 3.0.6. (Ruby on Rails meta pacakge, no change but version.) @ text @d1 1 a1 1 # $NetBSD$ d29 1 a29 1 RUBY_RAILS3_VERSION?= 3.0.6 @ 1.1 log @Add code fragment to select version of Ruby on Rails. User settable variable is RUBY_RAILS_DEFAULT: 2 or 3. (default 2) @ text @d1 1 a1 1 # $NetBSD$ d91 1 d100 1 d114 3 d132 2 @