Skip to content

Releases: rack/rack-contrib

WE'RE BACK!

01 Jul 02:55
@mpalmer mpalmer
v1.3.0
d780285
Compare
Choose a tag to compare
WE'RE BACK!

This is the first of the new monthly feature releases that will be the new
tempo of rack-contrib development. This release contains a significant
backlog of changes that have been building up over the last year or so.

Thanks to everyone who contributed changes, bug reports, and comments
towards this release.

Security

  • CVE-2013-0269: Set :create_additions => false when parsing JSON.

Features

  • Rack::ForceValidEncoding: ensures that the URL is in a valid encoding,
    raises a 400 if not.
  • Rack::MailExceptions: can now use sendmail to send e-mails, rather
    than being restricted to SMTP.
  • Rack::MailExceptions: Credentials in Authorization: Basic headers are
    stripped, to prevent leakage.

Bugfixes

  • Rack::TryStatic: Pass-through requests for non-GET/HEAD requests (#85)
  • Rack::Locale: Don't overwrite app-set value of Content-Language (#99)
  • Rack::RelativeRedirect: Rewrite redirect on 307/308 status, too (#5)
  • Rack::JSONP: Don't act when status is a no-body code (#100)
  • Rack::StaticCache: Don't nuke response headers which enable conditional
    responses. (#84)

Internal changes

  • README is now markdown.
  • Test suite now uses minitest.
  • There is now a travis CI setup,
    which tests across a range of supported Ruby versions and gemsets.
  • Rakefile has been tidied up to bring it up to modern standards.
  • The gemspec now uses pessimistic version constraints wherever possible.
  • We've documented our expectations for contributors in a CONTRIBUTING file.
Assets 2
Loading

v1.2.0

26 Jun 03:29
@mpalmer mpalmer
v1.2.0
1b11346
Compare
Choose a tag to compare
v1.2.0 
v1.2.0
Assets 2
Loading