aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorHarald Eilertsen <haraldei@anduin.net>2018-06-20 21:01:28 +0200
committerHarald Eilertsen <haraldei@anduin.net>2018-06-20 21:01:28 +0200
commitcc469b5bde4dc0c138c2fe927b4b987c4fd2d992 (patch)
tree9dd29abe227b72642725f09dc4bbed1503787fc6
parentfa31ff3be4221777456aa772cb04732cfdc10f5e (diff)
downloadhmnoweb-cc469b5bde4dc0c138c2fe927b4b987c4fd2d992.tar.gz
hmnoweb-cc469b5bde4dc0c138c2fe927b4b987c4fd2d992.tar.bz2
hmnoweb-cc469b5bde4dc0c138c2fe927b4b987c4fd2d992.zip
CVE-2018-3760: Disable compilation of assets in production.
All assets should be precompiled during deploy anyways, so no idea why this was on in the first place.
-rw-r--r--config/environments/production.rb2
1 files changed, 1 insertions, 1 deletions
diff --git a/config/environments/production.rb b/config/environments/production.rb
index e39ab27..6a4c8e0 100644
--- a/config/environments/production.rb
+++ b/config/environments/production.rb
@@ -17,7 +17,7 @@ BetaWebApp::Application.configure do
config.assets.compress = true
# Don't fallback to assets pipeline if a precompiled asset is missed
- config.assets.compile = true
+ config.assets.compile = false
# Generate digests for assets URLs
config.assets.digest = true