| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Fix a few more 1.9 bugs. Rack 1.0.1 is required for 1.9 compliance but not ↵ | Yehuda Katz | 2009-10-15 | 1 | -1/+1 |
| | | | | | release, so bundling 1.0.1 from git | ||||
| * | AP tests depend on AR | Jeremy Kemper | 2009-10-15 | 1 | -0/+1 |
| | | |||||
| * | Bundle with system gem sources rather than gems.rubyforge.org default | Jeremy Kemper | 2009-10-11 | 1 | -0/+2 |
| | | |||||
| * | Switch to on-by-default XSS escaping for rails. | Michael Koziarski | 2009-10-08 | 1 | -0/+1 |
| | | | | | | | | | | | | | This consists of: * String#html_safe! a method to mark a string as 'safe' * ActionView::SafeBuffer a string subclass which escapes anything unsafe which is concatenated to it * Calls to String#html_safe! throughout the rails helpers * a 'raw' helper which lets you concatenate trusted HTML from non-safety-aware sources (e.g. presantized strings in the DB) * New ERB implementation based on erubis which uses a SafeBuffer instead of a String Hat tip to Django for the inspiration. | ||||
| * | Bump rack-test required version to 0.5 | Joshua Peek | 2009-09-22 | 1 | -1/+1 |
| | | |||||
| * | Rollback AS bundler work and improve activation of vendored dependencies | Joshua Peek | 2009-09-13 | 1 | -6/+0 |
| | | |||||
| * | Need to declare optional dependencies from AS | Joshua Peek | 2009-09-13 | 1 | -1/+7 |
| | | |||||
| * | Get ActionPack's test running on bundled gems. This should make running ↵ | Yehuda Katz | 2009-09-12 | 1 | -0/+14 |
| tests on new machines, as well as CI, work well. | |||||
 |
index : rails.git | |
| Mirror of official rails repo with custom fixes. | Harald Eilertsen |
| aboutsummaryrefslogtreecommitdiffstats |