workarea 3.4.24 → 3.4.25
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +28 -0
- metadata +10 -10
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 0b8f099698213d1c2ee5952e7ea3ecccc28a92d42833d9e62573389e9514d4d1
|
|
4
|
+
data.tar.gz: 42bfa06140241f98f917582ef13cbdaca7b52ce5283e122a7e6b6a07cecb0a2e
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: b3f76141f1e889a6c0108101b5b60842a820fa0980757722c4f0c33cca9dda34bfedabfe7342e95c2c4ed141a8964d7f3484ee6a23ac6c08468ca9db0152741e
|
|
7
|
+
data.tar.gz: a427058e7c53fb2dbda4dd444972a7402efbede4d32e9a00b9b2fd06f3329078d83dce1e608b108218933c50ec725171463ca802087bcd27de624b7313500950
|
data/CHANGELOG.md
CHANGED
|
@@ -1,3 +1,31 @@
|
|
|
1
|
+
Workarea 3.4.25 (2020-01-07)
|
|
2
|
+
--------------------------------------------------------------------------------
|
|
3
|
+
|
|
4
|
+
* Another hardcoded 2020 fix
|
|
5
|
+
|
|
6
|
+
We've all learned our lesson, right?
|
|
7
|
+
Ben Crouse
|
|
8
|
+
|
|
9
|
+
* Pin version for wysihtml-rails
|
|
10
|
+
|
|
11
|
+
Setting the version to 0.6.0.beta2 fixes the dependency issues that arose after the new version of Bundler.
|
|
12
|
+
Jeff Yucis
|
|
13
|
+
|
|
14
|
+
* Use the Rack session ID cookie value for user activity session IDs
|
|
15
|
+
|
|
16
|
+
Rack >= 2.0.8 adds the idea private/public session IDs to prevent timing
|
|
17
|
+
attacks where a session ID can be stolen. This is big for sessions stored
|
|
18
|
+
in databases because the session can then be stolen.
|
|
19
|
+
|
|
20
|
+
Workarea only supports a cookie session store, so we can continue to
|
|
21
|
+
safely use the cookie value of the session ID for metrics lookups.
|
|
22
|
+
|
|
23
|
+
You can learn more about the Rack vulnerability here:
|
|
24
|
+
https://github.com/rack/rack/security/advisories/GHSA-hrqr-hxpp-chr3
|
|
25
|
+
Ben Crouse
|
|
26
|
+
|
|
27
|
+
|
|
28
|
+
|
|
1
29
|
Workarea 3.4.24 (2019-12-19)
|
|
2
30
|
--------------------------------------------------------------------------------
|
|
3
31
|
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: workarea
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 3.4.
|
|
4
|
+
version: 3.4.25
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Ben Crouse
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2020-01-07 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: workarea-core
|
|
@@ -16,56 +16,56 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 3.4.
|
|
19
|
+
version: 3.4.25
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 3.4.
|
|
26
|
+
version: 3.4.25
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: workarea-storefront
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
30
30
|
requirements:
|
|
31
31
|
- - '='
|
|
32
32
|
- !ruby/object:Gem::Version
|
|
33
|
-
version: 3.4.
|
|
33
|
+
version: 3.4.25
|
|
34
34
|
type: :runtime
|
|
35
35
|
prerelease: false
|
|
36
36
|
version_requirements: !ruby/object:Gem::Requirement
|
|
37
37
|
requirements:
|
|
38
38
|
- - '='
|
|
39
39
|
- !ruby/object:Gem::Version
|
|
40
|
-
version: 3.4.
|
|
40
|
+
version: 3.4.25
|
|
41
41
|
- !ruby/object:Gem::Dependency
|
|
42
42
|
name: workarea-admin
|
|
43
43
|
requirement: !ruby/object:Gem::Requirement
|
|
44
44
|
requirements:
|
|
45
45
|
- - '='
|
|
46
46
|
- !ruby/object:Gem::Version
|
|
47
|
-
version: 3.4.
|
|
47
|
+
version: 3.4.25
|
|
48
48
|
type: :runtime
|
|
49
49
|
prerelease: false
|
|
50
50
|
version_requirements: !ruby/object:Gem::Requirement
|
|
51
51
|
requirements:
|
|
52
52
|
- - '='
|
|
53
53
|
- !ruby/object:Gem::Version
|
|
54
|
-
version: 3.4.
|
|
54
|
+
version: 3.4.25
|
|
55
55
|
- !ruby/object:Gem::Dependency
|
|
56
56
|
name: workarea-testing
|
|
57
57
|
requirement: !ruby/object:Gem::Requirement
|
|
58
58
|
requirements:
|
|
59
59
|
- - '='
|
|
60
60
|
- !ruby/object:Gem::Version
|
|
61
|
-
version: 3.4.
|
|
61
|
+
version: 3.4.25
|
|
62
62
|
type: :runtime
|
|
63
63
|
prerelease: false
|
|
64
64
|
version_requirements: !ruby/object:Gem::Requirement
|
|
65
65
|
requirements:
|
|
66
66
|
- - '='
|
|
67
67
|
- !ruby/object:Gem::Version
|
|
68
|
-
version: 3.4.
|
|
68
|
+
version: 3.4.25
|
|
69
69
|
description: Workarea is an enterprise-grade Ruby on Rails commerce platform.
|
|
70
70
|
email:
|
|
71
71
|
- bcrouse@workarea.com
|