Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fix doc markup for `NumberHelper` [ci skip] | Ryunosuke SATO | 2014-10-29 | 1 | -5/+5 |
| | | | | | The character "*" is unnecessary in option candidates. This incorrect markup was injected in e8c9aeca . | ||||
* | [ci skip] Add Docs for strip_insignificant_zeros option in number helpers | Akshay Vishnoi | 2014-06-10 | 1 | -10/+8 |
| | |||||
* | [ci skip] Correct output and use valid options of number helpers | Akshay Vishnoi | 2014-06-10 | 1 | -2/+2 |
| | |||||
* | Escape format, negative_format and units options of number helpers | Rafael Mendonça França | 2014-02-18 | 1 | -5/+14 |
| | | | | | | | Previously the values of these options were trusted leading to potential XSS vulnerabilities. Fixes: CVE-2014-0081 | ||||
* | Fix documentation of number_to_currency helper | Rafael Mendonça França | 2013-12-04 | 1 | -4/+4 |
| | | | | | | | | | | Now users have to explicit mark the unit as safe if they trust it. Closes #13161 Conflicts: actionpack/lib/action_view/helpers/number_helper.rb actionpack/test/template/number_helper_i18n_test.rb | ||||
* | Escape the unit value provided to number_to_currency | Michael Koziarski | 2013-12-02 | 1 | -0/+1 |
| | | | | | | Previously the unit values were trusted leading to potential XSS vulnerabilities. Fixes: CVE-2013-6415 | ||||
* | Make the method name the first argument | Rafael Mendonça França | 2013-11-09 | 1 | -7/+7 |
| | | | | | This is the only argument that changes over the method calls so it is better to it be the first one | ||||
* | Extract common code from number helpers to new delegator method. | Vipul A M | 2013-11-09 | 1 | -30/+13 |
| | |||||
* | Move actionpack/lib/action_view* into actionview/lib | Piotr Sarnacki | 2013-06-20 | 1 | -0/+441 |