activestorage 5.2.4 → 5.2.4.5
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of activestorage might be problematic. Click here for more details.
- checksums.yaml +4 -4
- data/CHANGELOG.md +20 -0
- data/lib/active_storage/gem_version.rb +1 -1
- data/lib/active_storage/service/s3_service.rb +2 -1
- metadata +8 -8
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 7d6ac82d7ec78f72d3eba0308522a5a1ec0a996a4f5a14283ac881e18428fefc
|
4
|
+
data.tar.gz: c1239454be1189a4281ca9305c97f8ff07294c19e18ea81812f7f541ce437c3c
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 9d1bd380273065f4a90e956ade127cd67451f280ee367f6c3679869620a433a3df6689b1138a729ce40052b5510d9b1fee4b56115dbb6eb590fd79694faf214e
|
7
|
+
data.tar.gz: 582e7e540c4d4e408fc95e3fdeaffa090949c268862c5bfa7c84ab29c6525a5b262210d20986fd1bfae3fb9bf42d48cc385680ca6cfa455cce73cd5292f06c17
|
data/CHANGELOG.md
CHANGED
@@ -1,3 +1,23 @@
|
|
1
|
+
## Rails 5.2.4.5 (February 10, 2021) ##
|
2
|
+
|
3
|
+
* No changes.
|
4
|
+
|
5
|
+
|
6
|
+
## Rails 5.2.4.4 (September 09, 2020) ##
|
7
|
+
|
8
|
+
* No changes.
|
9
|
+
|
10
|
+
|
11
|
+
## Rails 5.2.4.3 (May 18, 2020) ##
|
12
|
+
|
13
|
+
* [CVE-2020-8162] Include Content-Length in signature for ActiveStorage direct upload
|
14
|
+
|
15
|
+
|
16
|
+
## Rails 5.2.4.1 (December 18, 2019) ##
|
17
|
+
|
18
|
+
* No changes.
|
19
|
+
|
20
|
+
|
1
21
|
## Rails 5.2.4 (November 27, 2019) ##
|
2
22
|
|
3
23
|
* No changes.
|
@@ -79,7 +79,8 @@ module ActiveStorage
|
|
79
79
|
def url_for_direct_upload(key, expires_in:, content_type:, content_length:, checksum:)
|
80
80
|
instrument :url, key: key do |payload|
|
81
81
|
generated_url = object_for(key).presigned_url :put, expires_in: expires_in.to_i,
|
82
|
-
content_type: content_type, content_length: content_length, content_md5: checksum
|
82
|
+
content_type: content_type, content_length: content_length, content_md5: checksum,
|
83
|
+
whitelist_headers: ['content-length']
|
83
84
|
|
84
85
|
payload[:url] = generated_url
|
85
86
|
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: activestorage
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 5.2.4
|
4
|
+
version: 5.2.4.5
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- David Heinemeier Hansson
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2021-02-10 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: actionpack
|
@@ -16,28 +16,28 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 5.2.4
|
19
|
+
version: 5.2.4.5
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 5.2.4
|
26
|
+
version: 5.2.4.5
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: activerecord
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
30
30
|
requirements:
|
31
31
|
- - '='
|
32
32
|
- !ruby/object:Gem::Version
|
33
|
-
version: 5.2.4
|
33
|
+
version: 5.2.4.5
|
34
34
|
type: :runtime
|
35
35
|
prerelease: false
|
36
36
|
version_requirements: !ruby/object:Gem::Requirement
|
37
37
|
requirements:
|
38
38
|
- - '='
|
39
39
|
- !ruby/object:Gem::Version
|
40
|
-
version: 5.2.4
|
40
|
+
version: 5.2.4.5
|
41
41
|
- !ruby/object:Gem::Dependency
|
42
42
|
name: marcel
|
43
43
|
requirement: !ruby/object:Gem::Requirement
|
@@ -124,8 +124,8 @@ homepage: http://rubyonrails.org
|
|
124
124
|
licenses:
|
125
125
|
- MIT
|
126
126
|
metadata:
|
127
|
-
source_code_uri: https://github.com/rails/rails/tree/v5.2.4/activestorage
|
128
|
-
changelog_uri: https://github.com/rails/rails/blob/v5.2.4/activestorage/CHANGELOG.md
|
127
|
+
source_code_uri: https://github.com/rails/rails/tree/v5.2.4.5/activestorage
|
128
|
+
changelog_uri: https://github.com/rails/rails/blob/v5.2.4.5/activestorage/CHANGELOG.md
|
129
129
|
post_install_message:
|
130
130
|
rdoc_options: []
|
131
131
|
require_paths:
|