CVS commit: pkgsrc/www/p5-Plack

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/www/p5-Plack
From: "Wen Heping" <wen%netbsd.org@localhost>
Date: Mon, 4 Aug 2014 11:07:20 +0000

Module Name:    pkgsrc
Committed By:   wen
Date:           Mon Aug  4 11:07:20 UTC 2014

Modified Files:
        pkgsrc/www/p5-Plack: Makefile distinfo

Log Message:
Update to 1.0031

Upstream changes:
1.0031  2014-08-01 13:19:14 PDT
    [SECURITY]
        - Plack::App::File would previously strip trailing slashes off
          provided paths. This in combination with the common pattern
          of serving files with Plack::Middleware::Static could allow
          an attacker to bypass a whitelist of generated files (avar) #446

    [IMPROVEMENTS]
        - Let HTTP::Message::PSGI warn in case of invalid PSGI response 
(wchristian) #437
        - Update documentation on how response_cb works with writer (doy)
        - Make AccessLog work on non-POSIX environment (dex4er) #442
        - Plack::App::WrapCGI no longer warns under 5.19.9 (frew)
        - Avoid Rosetta Flash attack in JSONP middleware (nichtich) #464
        - Fix Plack::Util::inline_object to make it work with can() as a class 
method

    [NEW FEATURES]
        - Add $req->query_string shortcut to access QUERY_STRING in PSGI 
environment


To generate a diff of this commit:
cvs rdiff -u -r1.30 -r1.31 pkgsrc/www/p5-Plack/Makefile
cvs rdiff -u -r1.23 -r1.24 pkgsrc/www/p5-Plack/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/archivers/gtar-base
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/archivers/gtar-base
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index