June 9, 2011
[ANN] Rails 3.0.9.rc3 has been released!
I’ve pushed an rc3. Yes, we skipped one. I screwed up the rc2, so I yanked it, and we’re going straight to rc3. Good thing it’s just a release candidate,...
June 8, 2011
[ANN] Rails 3.1.0.rc3 has been released!
Hey folks. Sorry for the multiple releases in such a short time span, but the security fixes released yesterday seem to have broken people’s applications. Even though this is a...
June 8, 2011
[ANN] Rails 3.0.9.rc1 has been released!
Hey folks. Sorry for the multiple releases in such a short time span, but the security fixes released yesterday seem to have broken people’s applications. I am not happy about...
June 8, 2011
[ANN] Rails 3.1.0.rc2 has been released!
Security Issues!This release contains fixes for possible XSS problems in your rails application. It is unlikely that your application is vulnerable, but you should take precautions by updating your application.For...
June 8, 2011
[ANN] Rails 3.0.8 has been released!
Security Issues!This release contains fixes for possible XSS problems in your rails application. It is unlikely that your application is vulnerable, but you should take precautions by updating your application.For...
June 8, 2011
[ANN] Rails 2.3.12 has been released!
Hi everyone! I’ve released rails version 2.3.12.Security issues!There are security issues in the rails_xss plugin, and we’ve fixed them with this release. Please make sure to upgrade your rails_xss plugin.Please...
June 8, 2011
Potential XSS Vulnerability in Ruby on Rails Applications
The XSS prevention support in recent versions Ruby on Rails allows some string operations which, when combined with user supplied data, may leave an ‘unsafe string’ incorrectly considered safe. It...
June 2, 2011
News from the Documentation Front
New Configuration GuideRails 3.1 will come with a new comprehensive guide about configuring Rails applications written by Ryan Bigg (@ryanbigg). The current draft is already available in the edge guides.Rails...
May 30, 2011
[ANN] Rails 3.0.8.rc3 (third time is the charm!)
Hey everybody! I’ve pushed Rails 3.0.8.rc3.Hopefully this release candidate takes care of all the outstanding issues remaining. To see what has changed between 3.0.8.rc2 and 3.0.8.rc3, check out this link...
May 27, 2011
[ANN] Rails 3.0.8.rc2
Hey folks! I’ve pushed 3.0.8.rc2.I want to give a big thanks to Philip Arndt and Robert Pankowecki for reporting regressions in 3.0.8.rc1! We’ve fixed the regressions, so I pushed an...