Commit Graph

12 Commits

Author SHA1 Message Date
jcs
fe8244b3b0 security update to rails-1.2.5
"This release closes a JSON XSS vulnerability, fixes a couple of
minor regressions introduced in 1.2.4, and backports a handful of
features and fixes from the 2.0 preview release.

All users of Rails 1.2.4 or earlier are advised to upgrade to 1.2.5,
though it isn't strictly necessary if you aren't working with JSON.
For more information the JSON vulnerability, see CVE-2007-3227."
2007-10-15 15:32:59 +00:00
jcs
0d1d199f5c update to rails-1.2.4
"This release contains additional deprecation notices, security
fixes and some minor performance improvements. All users of 1.2.3
are advised to upgrade."
2007-10-05 14:52:00 +00:00
merdely
ba8add3ebb Remove surrounding quotes from
COMMENT-*/ERRORS/NO_REGRESS/PERMIT_*/REGRESS_IS_INTERACTIVE

Change '.include "bsd.port.mk"' to '.include <bsd.port.mk>' while here
(ok naddy@)
2007-09-15 20:38:20 +00:00
jcs
771408e11e and finally, update to rails-1.2.3 2007-06-22 03:47:18 +00:00
msf
90ff81741c sigh... bump PKGNAME too 2007-05-03 11:28:48 +00:00
msf
2ce1971065 drop maintainer on ruby rails and friends 2007-05-03 11:25:17 +00:00
espie
d4ebcd974d more base64 checksums 2007-04-05 17:26:05 +00:00
bernd
c16e4afb3c PKG_ARCH=* too. 2006-10-20 11:24:35 +00:00
sturm
f40b6dea93 add RUN_DEPENDS on ruby-gems for gems-based ports
bump PKGNAME where necessary

noticed by Ward Wouts <ward at wizeazz.nl> via markus, ok msf
2006-08-23 21:12:24 +00:00
sturm
f15bb48241 update ruby-rails (and associated ports) to 1.1.6
This fixes a security vulnerability in rails, permitting the evaluation
of Ruby code through a URL.

for details, see
http://weblog.rubyonrails.org/2006/8/10/rails-1-1-6-backports-and-full-disclosure
2006-08-12 07:37:15 +00:00
jcs
d907313bc6 add a RUN_DEPENDS of ruby-gems so this actually works at all
bump pkgname

no response from maintainer msf@
2006-07-05 22:59:18 +00:00
sturm
72bdd66154 Initial import of ruby-rails 1.1.2
Rails is a web-application framework for the MVC pattern that includes
both a template engine, controller framework, and object-relational
mapping package. Everything needed to develop web-apps that can run on
CGI, FastCGI, and mod_ruby

Being a full-stack framework means that all layers are built to work
seamlessly together. That way you Don't Repeat Yourself (DRY) and you
can use a single language from top to bottom. Everything from templates
to control flow to business logic is written in Ruby - The language of
love for industry heavy-weights.

from msf
2006-06-12 20:20:09 +00:00