Hello community,
here is the log from the commit of package rubygem-actionpack-4_2 for
openSUSE:Factory checked in at 2016-03-01 09:41:33
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/rubygem-actionpack-4_2 (Old)
and /work/SRC/openSUSE:Factory/.rubygem-actionpack-4_2.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "rubygem-actionpack-4_2"
Changes:
--------
---
/work/SRC/openSUSE:Factory/rubygem-actionpack-4_2/rubygem-actionpack-4_2.changes
2015-12-14 10:13:30.000000000 +0100
+++
/work/SRC/openSUSE:Factory/.rubygem-actionpack-4_2.new/rubygem-actionpack-4_2.changes
2016-03-01 09:41:41.000000000 +0100
@@ -1,0 +2,6 @@
+Tue Jan 26 05:29:36 UTC 2016 - [email protected]
+
+- updated to version 4.2.5.1
+ see installed CHANGELOG.md
+
+-------------------------------------------------------------------
Old:
----
actionpack-4.2.5.gem
New:
----
actionpack-4.2.5.1.gem
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ rubygem-actionpack-4_2.spec ++++++
--- /var/tmp/diff_new_pack.z7cZpm/_old 2016-03-01 09:41:43.000000000 +0100
+++ /var/tmp/diff_new_pack.z7cZpm/_new 2016-03-01 09:41:43.000000000 +0100
@@ -1,7 +1,7 @@
#
# spec file for package rubygem-actionpack-4_2
#
-# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -24,7 +24,7 @@
#
Name: rubygem-actionpack-4_2
-Version: 4.2.5
+Version: 4.2.5.1
Release: 0
%define mod_name actionpack
%define mod_full_name %{mod_name}-%{version}
++++++ actionpack-4.2.5.gem -> actionpack-4.2.5.1.gem ++++++
Files old/checksums.yaml.gz and new/checksums.yaml.gz differ
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/lib/abstract_controller/rendering.rb
new/lib/abstract_controller/rendering.rb
--- old/lib/abstract_controller/rendering.rb 2015-11-12 18:06:04.000000000
+0100
+++ new/lib/abstract_controller/rendering.rb 2016-01-25 19:25:07.000000000
+0100
@@ -77,7 +77,13 @@
# render "foo/bar" to render :file => "foo/bar".
# :api: plugin
def _normalize_args(action=nil, options={})
- if action.is_a? Hash
+ case action
+ when ActionController::Parameters
+ unless action.permitted?
+ raise ArgumentError, "render parameters are not permitted"
+ end
+ action
+ when Hash
action
else
options
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/lib/action_controller/metal/http_authentication.rb
new/lib/action_controller/metal/http_authentication.rb
--- old/lib/action_controller/metal/http_authentication.rb 2015-11-12
18:06:04.000000000 +0100
+++ new/lib/action_controller/metal/http_authentication.rb 2016-01-25
19:25:07.000000000 +0100
@@ -1,4 +1,5 @@
require 'base64'
+require 'active_support/security_utils'
module ActionController
# Makes it dead easy to do HTTP Basic, Digest and Token authentication.
@@ -68,7 +69,11 @@
def http_basic_authenticate_with(options = {})
before_action(options.except(:name, :password, :realm)) do
authenticate_or_request_with_http_basic(options[:realm] ||
"Application") do |name, password|
- name == options[:name] && password == options[:password]
+ # This comparison uses & so that it doesn't short circuit and
+ # uses `variable_size_secure_compare` so that length
information
+ # isn't leaked.
+
ActiveSupport::SecurityUtils.variable_size_secure_compare(name, options[:name])
&
+
ActiveSupport::SecurityUtils.variable_size_secure_compare(password,
options[:password])
end
end
end
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/lib/action_dispatch/http/mime_type.rb
new/lib/action_dispatch/http/mime_type.rb
--- old/lib/action_dispatch/http/mime_type.rb 2015-11-12 18:06:04.000000000
+0100
+++ new/lib/action_dispatch/http/mime_type.rb 2016-01-25 19:25:07.000000000
+0100
@@ -23,7 +23,7 @@
SET = Mimes.new
EXTENSION_LOOKUP = {}
- LOOKUP = Hash.new { |h, k| h[k] = Type.new(k) unless k.blank? }
+ LOOKUP = {}
class << self
def [](type)
@@ -146,7 +146,7 @@
end
def lookup(string)
- LOOKUP[string]
+ LOOKUP[string] || Type.new(string)
end
def lookup_by_extension(extension)
@@ -225,9 +225,12 @@
end
end
+ attr_reader :hash
+
def initialize(string, symbol = nil, synonyms = [])
@symbol, @synonyms = symbol, synonyms
@string = string
+ @hash = [@string, @synonyms, @symbol].hash
end
def to_s
@@ -261,6 +264,13 @@
end
end
+ def eql?(other)
+ super || (self.class == other.class &&
+ @string == other.string &&
+ @synonyms == other.synonyms &&
+ @symbol == other.symbol)
+ end
+
def =~(mime_type)
return false if mime_type.blank?
regexp = Regexp.new(Regexp.quote(mime_type.to_s))
@@ -274,6 +284,10 @@
end
+ protected
+
+ attr_reader :string, :synonyms
+
private
def to_ary; end
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/lib/action_dispatch/routing/route_set.rb
new/lib/action_dispatch/routing/route_set.rb
--- old/lib/action_dispatch/routing/route_set.rb 2015-11-12
18:06:04.000000000 +0100
+++ new/lib/action_dispatch/routing/route_set.rb 2016-01-25
19:25:07.000000000 +0100
@@ -1,6 +1,5 @@
require 'action_dispatch/journey'
require 'forwardable'
-require 'thread_safe'
require 'active_support/concern'
require 'active_support/core_ext/object/to_query'
require 'active_support/core_ext/hash/slice'
@@ -26,7 +25,6 @@
class Dispatcher < Routing::Endpoint
def initialize(defaults)
@defaults = defaults
- @controller_class_names = ThreadSafe::Cache.new
end
def dispatcher?; true; end
@@ -68,7 +66,7 @@
private
def controller_reference(controller_param)
- const_name = @controller_class_names[controller_param] ||=
"#{controller_param.camelize}Controller"
+ const_name = "#{controller_param.camelize}Controller"
ActiveSupport::Dependencies.constantize(const_name)
end
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/lib/action_pack/gem_version.rb
new/lib/action_pack/gem_version.rb
--- old/lib/action_pack/gem_version.rb 2015-11-12 18:06:04.000000000 +0100
+++ new/lib/action_pack/gem_version.rb 2016-01-25 19:25:07.000000000 +0100
@@ -8,7 +8,7 @@
MAJOR = 4
MINOR = 2
TINY = 5
- PRE = nil
+ PRE = "1"
STRING = [MAJOR, MINOR, TINY, PRE].compact.join(".")
end
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/metadata new/metadata
--- old/metadata 2015-11-12 18:06:04.000000000 +0100
+++ new/metadata 2016-01-25 19:25:07.000000000 +0100
@@ -1,14 +1,14 @@
--- !ruby/object:Gem::Specification
name: actionpack
version: !ruby/object:Gem::Version
- version: 4.2.5
+ version: 4.2.5.1
platform: ruby
authors:
- David Heinemeier Hansson
autorequire:
bindir: bin
cert_chain: []
-date: 2015-11-12 00:00:00.000000000 Z
+date: 2016-01-25 00:00:00.000000000 Z
dependencies:
- !ruby/object:Gem::Dependency
name: activesupport
@@ -16,14 +16,14 @@
requirements:
- - '='
- !ruby/object:Gem::Version
- version: 4.2.5
+ version: 4.2.5.1
type: :runtime
prerelease: false
version_requirements: !ruby/object:Gem::Requirement
requirements:
- - '='
- !ruby/object:Gem::Version
- version: 4.2.5
+ version: 4.2.5.1
- !ruby/object:Gem::Dependency
name: rack
requirement: !ruby/object:Gem::Requirement
@@ -98,28 +98,28 @@
requirements:
- - '='
- !ruby/object:Gem::Version
- version: 4.2.5
+ version: 4.2.5.1
type: :runtime
prerelease: false
version_requirements: !ruby/object:Gem::Requirement
requirements:
- - '='
- !ruby/object:Gem::Version
- version: 4.2.5
+ version: 4.2.5.1
- !ruby/object:Gem::Dependency
name: activemodel
requirement: !ruby/object:Gem::Requirement
requirements:
- - '='
- !ruby/object:Gem::Version
- version: 4.2.5
+ version: 4.2.5.1
type: :development
prerelease: false
version_requirements: !ruby/object:Gem::Requirement
requirements:
- - '='
- !ruby/object:Gem::Version
- version: 4.2.5
+ version: 4.2.5.1
description: Web apps on Rails. Simple, battle-tested conventions for building
and
testing MVC web applications. Works with any Rack-compatible server.
email: [email protected]
@@ -300,7 +300,7 @@
requirements:
- none
rubyforge_project:
-rubygems_version: 2.4.5.1
+rubygems_version: 2.5.1
signing_key:
specification_version: 4
summary: Web-flow and rendering framework putting the VC in MVC (part of
Rails).