| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Escape format, negative_format and units options of number helpers | Rafael Mendonça França | 2014-02-18 | 1 | -5/+14 |
| | | | | | | | | Previously the values of these options were trusted leading to potential XSS vulnerabilities. Fixes: CVE-2014-0081 | ||||
| * | Fix documentation of number_to_currency helper | Rafael Mendonça França | 2013-12-04 | 1 | -4/+4 |
| | | | | | | | | | | | Now users have to explicit mark the unit as safe if they trust it. Closes #13161 Conflicts: actionpack/lib/action_view/helpers/number_helper.rb actionpack/test/template/number_helper_i18n_test.rb | ||||
| * | Escape the unit value provided to number_to_currency | Michael Koziarski | 2013-12-02 | 1 | -0/+1 |
| | | | | | | | Previously the unit values were trusted leading to potential XSS vulnerabilities. Fixes: CVE-2013-6415 | ||||
| * | Make the method name the first argument | Rafael Mendonça França | 2013-11-09 | 1 | -7/+7 |
| | | | | | | This is the only argument that changes over the method calls so it is better to it be the first one | ||||
| * | Extract common code from number helpers to new delegator method. | Vipul A M | 2013-11-09 | 1 | -30/+13 |
| | | |||||
| * | Move actionpack/lib/action_view* into actionview/lib | Piotr Sarnacki | 2013-06-20 | 1 | -0/+441 |
 |
index : rails.git | |
| Mirror of official rails repo with custom fixes. | Harald Eilertsen |
| aboutsummaryrefslogtreecommitdiffstats |