RubyGems - actionpack - Versions diffs - 2.3.15 → 2.3.16 - Mend

actionpack 2.3.15 → 2.3.16

Potentially problematic release.

This version of actionpack might be problematic. Click here for more details.

Files changed (9) hide show

checksums.yaml +7 -0
data/Rakefile +2 -2
data/lib/action_controller.rb +1 -1
data/lib/action_controller/request.rb +23 -0
data/lib/action_pack/version.rb +1 -1
data/lib/action_view/helpers/sanitize_helper.rb +1 -1
data/test/controller/request/query_string_parsing_test.rb +10 -1
data/test/template/sanitize_helper_test.rb +2 -2
metadata +47 -62

checksums.yaml ADDED

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: ee983eb1f4b16d6d88162f14cac1c1f9f56c89ab
+  data.tar.gz: d646cb7cccbb7c02dd398819719cbf26d7ac2bc5
+SHA512:
+  metadata.gz: 7e33647ae632cef2c087874e907a89abfb3b1706404d27edf5195dd9846925e5b4bd8110bc7da8c635f6e2f17744760864ab22352836bff93f8ac0b1248752ca
+  data.tar.gz: 0de78e576b8e6443bf6ba392230695a5815dd6151d4526ddd30b9aade8f6ddef16341b514283332567b735299f1946d265bf989845fa2048906b9adde0d1cf2e

data/Rakefile CHANGED

@@ -78,8 +78,8 @@ spec = Gem::Specification.new do |s|
   s.requirements << 'none'
-  s.add_dependency('activesupport', '= 2.3.15' + PKG_BUILD)
-  s.add_dependency('rack', '~> 1.1.3')
+  s.add_dependency('activesupport', '= 2.3.16' + PKG_BUILD)
+  s.add_dependency('rack', '~> 1.1.0')
   s.require_path = 'lib'

data/lib/action_controller.rb CHANGED

@@ -31,7 +31,7 @@ rescue LoadError
   end
 end
-gem 'rack', '~> 1.1.3'
+gem 'rack', '~> 1.1.0'
 require 'rack'
 require 'action_controller/cgi_ext'

data/lib/action_controller/request.rb CHANGED

@@ -491,5 +491,28 @@ EOM
           value
         end
       end
+    protected
+    # Remove nils from the params hash
+    def deep_munge(hash)
+      keys = hash.keys.find_all { |k| hash[k] == [nil] }
+      keys.each { |k| hash[k] = nil }
+      hash.each_value do |v|
+        case v
+        when Array
+          v.grep(Hash) { |x| deep_munge(x) }
+          v.compact!
+        when Hash
+          deep_munge(v)
+        end
+      end
+      hash
+    end
+    def parse_query(qs)
+      deep_munge(super)
+    end
   end
 end

data/lib/action_pack/version.rb CHANGED

@@ -2,7 +2,7 @@ module ActionPack #:nodoc:
   module VERSION #:nodoc:
     MAJOR = 2
     MINOR = 3
-    TINY  = 15
+    TINY  = 16
     STRING = [MAJOR, MINOR, TINY].join('.')
   end

data/lib/action_view/helpers/sanitize_helper.rb CHANGED

@@ -72,7 +72,7 @@ module ActionView
       #   strip_tags("<div id='top-bar'>Welcome to my website!</div>")
       #   # => Welcome to my website!
       def strip_tags(html)
-        self.class.full_sanitizer.sanitize(html).try(:html_safe)
+        self.class.full_sanitizer.sanitize(html)
       end
       # Strips all link tags from +text+ leaving just the link text.

data/test/controller/request/query_string_parsing_test.rb CHANGED

@@ -81,7 +81,16 @@ class QueryStringParsingTest < ActionController::IntegrationTest
   end
   test "query string without equal" do
-    assert_parses({ "action" => nil }, "action")
+    assert_parses({"action" => nil}, "action")
+    assert_parses({"action" => {"foo" => nil}}, "action[foo]")
+    assert_parses({"action" => {"foo" => { "bar" => nil }}}, "action[foo][bar]")
+    assert_parses({"action" => {"foo" => { "bar" => nil }}}, "action[foo][bar][]")
+    assert_parses({"action" => {"foo" => nil}}, "action[foo][]")
+    assert_parses({"action"=>{"foo"=>[{"bar"=>nil}]}}, "action[foo][][bar]")
+  end
+  def test_array_parses_without_nil
+    assert_parses({"action" => ['1']}, "action[]=1&action[]")
   end
   test "query string with empty key" do

data/test/template/sanitize_helper_test.rb CHANGED

@@ -42,9 +42,9 @@ class SanitizeHelperTest < ActionView::TestCase
     [nil, '', '   '].each do |blank|
       stripped = strip_tags(blank)
       assert_equal blank, stripped
-      assert stripped.html_safe? unless blank.nil?
     end
-    assert strip_tags("<script>").html_safe?
+    assert_equal "", strip_tags("<script>")
+    assert_equal "something &lt;img onerror=alert(1337)", ERB::Util.html_escape(strip_tags("something <img onerror=alert(1337)"))
   end
   def test_sanitize_is_marked_safe

metadata CHANGED

@@ -1,59 +1,51 @@
---- !ruby/object:Gem::Specification
+--- !ruby/object:Gem::Specification
 name: actionpack
-version: !ruby/object:Gem::Version
-  prerelease: false
-  segments:
-  - 2
-  - 3
-  - 15
-  version: 2.3.15
+version: !ruby/object:Gem::Version
+  version: 2.3.16
 platform: ruby
-authors:
+authors:
 - David Heinemeier Hansson
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2013-01-08 00:00:00 -08:00
-default_executable:
-dependencies:
-- !ruby/object:Gem::Dependency
+date: 2013-01-28 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
   name: activesupport
-  prerelease: false
-  requirement: &id001 !ruby/object:Gem::Requirement
-    requirements:
-    - - "="
-      - !ruby/object:Gem::Version
-        segments:
-        - 2
-        - 3
-        - 15
-        version: 2.3.15
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 2.3.16
   type: :runtime
-  version_requirements: *id001
-- !ruby/object:Gem::Dependency
-  name: rack
   prerelease: false
-  requirement: &id002 !ruby/object:Gem::Requirement
-    requirements:
-    - - ~>
-      - !ruby/object:Gem::Version
-        segments:
-        - 1
-        - 1
-        - 3
-        version: 1.1.3
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 2.3.16
+- !ruby/object:Gem::Dependency
+  name: rack
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.1.0
   type: :runtime
-  version_requirements: *id002
-description: Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling easy unit/integration testing that doesn't require a browser.
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.1.0
+description: Eases web-request routing, handling, and response as a half-way front,
+  half-way page controller. Implemented with specific emphasis on enabling easy unit/integration
+  testing that doesn't require a browser.
 email: david@loudthinking.com
 executables: []
 extensions: []
 extra_rdoc_files: []
-files:
+files:
 - Rakefile
 - install.rb
 - README
@@ -494,35 +486,28 @@ files:
 - test/template/url_helper_test.rb
 - test/testing_sandbox.rb
 - test/view/test_case_test.rb
-has_rdoc: true
 homepage: http://www.rubyonrails.org
 licenses: []
+metadata: {}
 post_install_message:
 rdoc_options: []
-require_paths:
+require_paths:
 - lib
-required_ruby_version: !ruby/object:Gem::Requirement
-  requirements:
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
   - - ">="
-    - !ruby/object:Gem::Version
-      segments:
-      - 0
-      version: "0"
-required_rubygems_version: !ruby/object:Gem::Requirement
-  requirements:
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
   - - ">="
-    - !ruby/object:Gem::Version
-      segments:
-      - 0
-      version: "0"
-requirements:
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements:
 - none
 rubyforge_project: actionpack
-rubygems_version: 1.3.6
+rubygems_version: 2.0.0.preview3.1
 signing_key:
-specification_version: 3
+specification_version: 4
 summary: Web-flow and rendering framework putting the VC in MVC.
 test_files: []