summaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* Bump patch version.v3.0.73-0-stableSamuel Williams2023-03-161-1/+1
* Update changelog.Samuel Williams2023-03-161-0/+4
* Make query parameters without = have nil values (#2059) (#2060)Samuel Williams2023-03-167-166/+56
* Merge branch '3-0-sec' into 3-0-stableAaron Patterson2023-03-133-3/+6
|\
| * bump versionv3.0.6.1Aaron Patterson2023-03-132-1/+5
| * Avoid ReDoS problemAaron Patterson2023-03-131-2/+2
* | Update changelog.Samuel Williams2023-03-131-0/+9
|/
* Bump patch version.v3.0.6Samuel Williams2023-03-131-1/+1
* Add `QueryParser#missing_value` for handling missing values + tests. (#2052)Samuel Williams2023-03-133-3/+47
* Bump patch version.v3.0.5Samuel Williams2023-03-121-1/+1
* Split form/query parsing into two steps (#2038)Matthew Draper2023-03-125-42/+136
* test-external.yaml - use ruby/setup-ruby-pkgs (#2048)Samuel Williams2023-03-121-9/+3
* Merge branch '3-0-sec' into 3-0-stableAaron Patterson2023-03-027-16/+87
|\
| * bump versionv3.0.4.2Aaron Patterson2023-03-022-1/+5
| * Limit all multipart parts, not just filesJohn Hawthorn2023-03-025-15/+82
* | Fix changelog date.Samuel Williams2023-01-201-1/+1
|/
* bump versionv3.0.4.1Aaron Patterson2023-01-171-1/+1
* Update changelogAaron Patterson2023-01-171-0/+6
* Fix ReDoS vulnerability in multipart parserAaron Patterson2023-01-171-1/+1
* Fix ReDoS in Rack::Utils.get_byte_rangesAaron Patterson2023-01-171-5/+6
* Forbid control characters in attributesJohn Hawthorn2023-01-171-1/+1
* Bump patch version.v3.0.4Samuel Williams2023-01-172-1/+7
* `Rack::Request#POST` should consistently raise errors. (#2010)Samuel Williams2023-01-173-19/+45
* Fix Rack::Lint error message for HTTP_CONTENT_TYPE and HTTP_CONTENT_LENGTH (#...Jean byroot Boussier2023-01-171-1/+1
* Rack::MethodOverride handle QueryParser::ParamsTooDeepError (#2006)Jean byroot Boussier2023-01-172-1/+8
* Bump patch version.v3.0.3Samuel Williams2022-12-272-2/+8
* Fix Regexp deprecated third argument with Regexp::NOENCODING (#1998)Wei Zhe2022-12-271-1/+1
* Update tests to work on latest Rubies. (#1999)Samuel Williams2022-12-271-0/+1
* Bump patch version.v3.0.2Samuel Williams2022-12-052-2/+8
* Allow passing through streaming bodies. (#1993)Samuel Williams2022-12-052-1/+16
* Remove unnecessary executable bit from test files (#1992)Jon Dufresne2022-12-055-0/+0
* Fix Utils.build_nested_query to URL-encode all query string fields (#1989)Jon Dufresne2022-12-054-27/+32
* Trim trailing white space throughout the project (#1990)Jon Dufresne2022-12-0512-61/+61
* Fix some typos (#1991)Jon Dufresne2022-12-052-2/+2
* Remove leading dot to fix compatibility with latest cgi gem. (#1988)Samuel Williams2022-12-052-6/+6
* Fix outdated Rack::Builder rdocs and remove Lobster references (#1986)Kenn Costales2022-12-052-32/+32
* Bump patch verison.v3.0.1Samuel Williams2022-11-181-1/+1
* Update `CHANGELOG.md`.Samuel Williams2022-11-181-1/+1
* Fix `respond_to?(:each)` with `Rack::Lint` with streaming bodies. (#1981)Samuel Williams2022-11-183-2/+19
* Do not look for override method if there is no form/parseable data (#1980)James Silberbauer2022-11-183-1/+18
* Change v3.0.0.beta1 to v3.0.0 in README (#1964)Kevin Sylvestre2022-09-091-2/+2
* bump version, update changelog3.0.0Aaron Patterson2022-09-062-1/+5
* Fix unclosed strings in `UPGRADE-GUIDE.md` (#1960)Josh Gross2022-09-051-2/+2
* bump version, update changelog3.0.0.rc1Aaron Patterson2022-09-042-1/+9
* The stream argument must implement `#<<`. (#1959)Samuel Williams2022-08-313-3/+5
* Allow calling close on `rack.input`. (#1956)Samuel Williams2022-08-304-10/+17
* Make MockResponse#body work if body.each reuses strings for performanceJeremy Evans2022-08-291-2/+4
* For some reason, the recently released version breaks Ruby v2.5.Samuel Williams2022-08-281-1/+1
* Add `rack.response_finished` to `Rack::Lint`. (#1952)Samuel Williams2022-08-275-2/+47
* Refactor tests. (#1953)Samuel Williams2022-08-267-97/+79
View Lorry Controller Status