Commit Graph

19 Commits

Author SHA1 Message Date
bernd
e88bf85b89 Security update to rails 2.1.2.
http://weblog.rubyonrails.com/2008/10/23/rails-2-1-2-security-other-fixes

ok jcs@
2008-10-25 10:39:48 +00:00
jcs
ae68455092 update ruby on rails and its support modules to 2.1.1
works around a dos vulnerability in rexml

similar diff from Jeremy Evans <openbsd at jeremyevans.net>

update run_depends so forward updates work properly

ok bernd@
2008-09-26 14:46:43 +00:00
bernd
6fc95af145 Remove dependency on sqlite3 which accidentally sneaked in.
Bump PKGNAME.
2008-07-26 10:33:28 +00:00
bernd
3a04f8708e Update to Ruby On Rails 2.1.
Tested by jcs@, thanks!
2008-06-17 22:54:19 +00:00
landry
a82a43646d bump PKGNAMEs after lang/ruby module change.
Janitor job finished, sorry for the spam.
Thanks again bernd@ for bulk-testing and okaying.
2008-06-15 00:01:25 +00:00
bernd
03c2af7f78 Update to ruby-rails-2.0.2. 2007-12-27 19:43:46 +00:00
bernd
6b6954bf7f Security update to ruby-rails-1.2.6. (CVE-2007-6077) 2007-11-26 18:19:31 +00:00
jcs
fe8244b3b0 security update to rails-1.2.5
"This release closes a JSON XSS vulnerability, fixes a couple of
minor regressions introduced in 1.2.4, and backports a handful of
features and fixes from the 2.0 preview release.

All users of Rails 1.2.4 or earlier are advised to upgrade to 1.2.5,
though it isn't strictly necessary if you aren't working with JSON.
For more information the JSON vulnerability, see CVE-2007-3227."
2007-10-15 15:32:59 +00:00
jcs
0d1d199f5c update to rails-1.2.4
"This release contains additional deprecation notices, security
fixes and some minor performance improvements. All users of 1.2.3
are advised to upgrade."
2007-10-05 14:52:00 +00:00
merdely
ba8add3ebb Remove surrounding quotes from
COMMENT-*/ERRORS/NO_REGRESS/PERMIT_*/REGRESS_IS_INTERACTIVE

Change '.include "bsd.port.mk"' to '.include <bsd.port.mk>' while here
(ok naddy@)
2007-09-15 20:38:20 +00:00
jcs
771408e11e and finally, update to rails-1.2.3 2007-06-22 03:47:18 +00:00
msf
90ff81741c sigh... bump PKGNAME too 2007-05-03 11:28:48 +00:00
msf
2ce1971065 drop maintainer on ruby rails and friends 2007-05-03 11:25:17 +00:00
espie
d4ebcd974d more base64 checksums 2007-04-05 17:26:05 +00:00
bernd
c16e4afb3c PKG_ARCH=* too. 2006-10-20 11:24:35 +00:00
sturm
f40b6dea93 add RUN_DEPENDS on ruby-gems for gems-based ports
bump PKGNAME where necessary

noticed by Ward Wouts <ward at wizeazz.nl> via markus, ok msf
2006-08-23 21:12:24 +00:00
sturm
f15bb48241 update ruby-rails (and associated ports) to 1.1.6
This fixes a security vulnerability in rails, permitting the evaluation
of Ruby code through a URL.

for details, see
http://weblog.rubyonrails.org/2006/8/10/rails-1-1-6-backports-and-full-disclosure
2006-08-12 07:37:15 +00:00
jcs
d907313bc6 add a RUN_DEPENDS of ruby-gems so this actually works at all
bump pkgname

no response from maintainer msf@
2006-07-05 22:59:18 +00:00
sturm
72bdd66154 Initial import of ruby-rails 1.1.2
Rails is a web-application framework for the MVC pattern that includes
both a template engine, controller framework, and object-relational
mapping package. Everything needed to develop web-apps that can run on
CGI, FastCGI, and mod_ruby

Being a full-stack framework means that all layers are built to work
seamlessly together. That way you Don't Repeat Yourself (DRY) and you
can use a single language from top to bottom. Everything from templates
to control flow to business logic is written in Ruby - The language of
love for industry heavy-weights.

from msf
2006-06-12 20:20:09 +00:00