CVS commit: pkgsrc/www/ruby-rack

["Takahiro Kambe" <taca%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   taca
Date:           Thu Dec 15 14:58:34 UTC 2011

Modified Files:
        pkgsrc/www/ruby-rack: Makefile PLIST distinfo

Log Message:
Update ruby-rack package to 1.3.5.

* September 16, 2011: Eighteenth public release 1.2.4
  * Fix a bug with MRI regex engine to prevent XSS by malformed unicode

* May 22nd, 2011: Thirteenth public release 1.3.0
  * Various performance optimizations
  * Various multipart fixes
  * Various multipart refactors
  * Infinite loop fix for multipart
  * Test coverage for Rack::Server returns
  * Allow files with '..', but not path components that are '..'
  * rackup accepts handler-specific options on the command line
  * Request#params no longer merges POST into GET (but returns the same)
  * Use URI.encode_www_form_component instead. Use core methods for escaping.
  * Allow multi-line comments in the config file
  * Bug L#94 reported by Nikolai Lugovoi, query parameter unescaping.
  * Rack::Response now deletes Content-Length when appropriate
  * Rack::Deflater now supports streaming
  * Improved Rack::Handler loading and searching
  * Support for the PATCH verb
  * env['rack.session.options'] now contains session options
  * Cookies respect renew
  * Session middleware uses SecureRandom.hex

* May 22nd, 2011: Fourteenth public release 1.2.3
  * Pulled in relevant bug fixes from 1.3
  * Fixed 1.8.6 support

* July 13, 2011: Fifteenth public release 1.3.1
  * Fix 1.9.1 support
  * Fix JRuby support
  * Properly handle $KCODE in Rack::Utils.escape
  * Make method_missing/respond_to behavior consistent for Rack::Lock,
    Rack::Auth::Digest::Request and Rack::Multipart::UploadedFile
  * Reenable passing rack.session to session middleware
  * Rack::CommonLogger handles streaming responses correctly
  * Rack::MockResponse calls close on the body object
  * Fix a DOS vector from MRI stdlib backport

* July 16, 2011: Sixteenth public release 1.3.2
  * Fix for Rails and rack-test, Rack::Utils#escape calls to_s

* September 16, 2011: Seventeenth public release 1.3.3
  * Fix bug with broken query parameters in Rack::ShowExceptions
  * Rack::Request#cookies no longer swallows exceptions on broken input
  * Prevents XSS attacks enabled by bug in Ruby 1.8's regexp engine
  * Rack::ConditionalGet handles broken If-Modified-Since helpers

* October 1, 2011: Nineteenth public release 1.3.4
  * Backport security fix from 1.9.3, also fixes some roundtrip issues in URI
  * Small documentation update
  * Fix an issue where BodyProxy could cause an infinite recursion
  * Add some supporting files for travis-ci

* October 17, 2011: Twentieth public release 1.3.5
  * Fix annoying warnings caused by the backport in 1.3.4


To generate a diff of this commit:
cvs rdiff -u -r1.8 -r1.9 pkgsrc/www/ruby-rack/Makefile \
    pkgsrc/www/ruby-rack/distinfo
cvs rdiff -u -r1.7 -r1.8 pkgsrc/www/ruby-rack/PLIST

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.