activesupport 3.1.11 → 3.1.12
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of activesupport might be problematic. Click here for more details.
- checksums.yaml +4 -4
- data/CHANGELOG.md +1 -1
- data/lib/active_support/version.rb +1 -1
- data/lib/active_support/xml_mini/jdom.rb +6 -0
- metadata +8 -8
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA1:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 1e0afcd05d61c6d756671a65f45e15b09adb660f
|
4
|
+
data.tar.gz: 60507a2d7e6dda78bfa58f2553f2e6522afce85e
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: f74760e3517b2e80069e44c59de85694faa7c600c93946dda10ec6595c9359d485b32b80f81d87dd20e98a82ef7d2147beb68a48ca0345d855e561bc37ac9eaf
|
7
|
+
data.tar.gz: 94ea313909073c851292b47df2d458c527b222a6a6ba386c1955f45da75f146caa2d8a0cb310c8b648bfe88368ec4c443fc993d278a1bcebe5cb99b63b2a0dad
|
data/CHANGELOG.md
CHANGED
@@ -38,6 +38,12 @@ module ActiveSupport
|
|
38
38
|
{}
|
39
39
|
else
|
40
40
|
@dbf = DocumentBuilderFactory.new_instance
|
41
|
+
# secure processing of java xml
|
42
|
+
# http://www.ibm.com/developerworks/xml/library/x-tipcfsx/index.html
|
43
|
+
@dbf.setFeature("http://apache.org/xml/features/nonvalidating/load-external-dtd", false)
|
44
|
+
@dbf.setFeature("http://xml.org/sax/features/external-general-entities", false)
|
45
|
+
@dbf.setFeature("http://xml.org/sax/features/external-parameter-entities", false)
|
46
|
+
@dbf.setFeature(javax.xml.XMLConstants::FEATURE_SECURE_PROCESSING, true)
|
41
47
|
xml_string_reader = StringReader.new(data)
|
42
48
|
xml_input_source = InputSource.new(xml_string_reader)
|
43
49
|
doc = @dbf.new_document_builder.parse(xml_input_source)
|
metadata
CHANGED
@@ -1,27 +1,27 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: activesupport
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 3.1.
|
4
|
+
version: 3.1.12
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- David Heinemeier Hansson
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2013-
|
11
|
+
date: 2013-03-18 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: multi_json
|
15
15
|
requirement: !ruby/object:Gem::Requirement
|
16
16
|
requirements:
|
17
|
-
- -
|
17
|
+
- - ~>
|
18
18
|
- !ruby/object:Gem::Version
|
19
19
|
version: '1.0'
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
|
-
- -
|
24
|
+
- - ~>
|
25
25
|
- !ruby/object:Gem::Version
|
26
26
|
version: '1.0'
|
27
27
|
description: A toolkit of support libraries and Ruby core extensions extracted from
|
@@ -251,23 +251,23 @@ licenses: []
|
|
251
251
|
metadata: {}
|
252
252
|
post_install_message:
|
253
253
|
rdoc_options:
|
254
|
-
-
|
254
|
+
- --encoding
|
255
255
|
- UTF-8
|
256
256
|
require_paths:
|
257
257
|
- lib
|
258
258
|
required_ruby_version: !ruby/object:Gem::Requirement
|
259
259
|
requirements:
|
260
|
-
- -
|
260
|
+
- - '>='
|
261
261
|
- !ruby/object:Gem::Version
|
262
262
|
version: 1.8.7
|
263
263
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
264
264
|
requirements:
|
265
|
-
- -
|
265
|
+
- - '>='
|
266
266
|
- !ruby/object:Gem::Version
|
267
267
|
version: '0'
|
268
268
|
requirements: []
|
269
269
|
rubyforge_project:
|
270
|
-
rubygems_version: 2.0.
|
270
|
+
rubygems_version: 2.0.2
|
271
271
|
signing_key:
|
272
272
|
specification_version: 4
|
273
273
|
summary: A toolkit of support libraries and Ruby core extensions extracted from the
|