Friday, October 18, 2024
New Upkeep coverage, CVE releases, Rails World talks and extra!
Posted by vipulnsward
Hey everybody, Blissful Friday!
Vipul right here with the newest updates for This Week in Rails. Let’s dive in!
Rails World talks are out!
Take a look at the recap of those talks on this weblog submit,
or head over to Rails’ YouTube for the total playlist.
New Rails upkeep coverage and finish of upkeep bulletins
These adjustments are designed to supply readability on assist timelines and assist to plan Rails upgrades successfully.
Full particulars of the brand new coverage might be discovered on the Rails web site.
Rails Variations 6.1.7.9, 7.0.8.5, 7.1.4.1, and seven.2.1.1 have been launched!
These are safety patches addressing 4 doable ReDoS (Common expression Denial of Service) assaults.
All of those solely have an effect on Ruby variations under 3.2, so in case you are utilizing any of those previous Rubies, its time to replace Rails variations at your earliest comfort.
Repair db:migrate:reset job
Earlier than this repair db:migrate:reset was damaged, as a result of we began to load the schema earlier than migrating. This prevented migrations from working.
This patch empties the schema earlier than migrating, making certain that migrations run as anticipated.
Enhance ActionController::TestCase to reveal a binary encoded request.physique
This transformation improves ActionController::TestCase to reveal a binary encoded request.physique. The rack spec clearly states:
The enter stream is an IO-like object which incorporates the uncooked HTTP POST knowledge.
When relevant, its exterior encoding have to be “ASCII-8BIT” and it have to be opened in binary mode.
Till now, its encoding was usually UTF-8, which doesn’t precisely replicate manufacturing conduct.
Repair marshalling of unsaved related information in 7.1 format
Earlier than this variation the 7.1 format would solely marshal related information if the affiliation was loaded.
However associations that will solely include unsaved information can be skipped.
Replace vendored Trix model to 2.1.7
This transformation updates vendored Trix model to 2.1.7, which incorporates assist for the upcoming safety repair in #51729 and enhanced kind assist (ElementInternals and HTML5 validations).
Do extra params parsing on Rails as an alternative of Rack
Rack is some minor adjustments to how they parse question strings.
To be extra impartial of those upstream adjustments when dealing with varied situations,
this Pull Request introduces varied enhancements to deal with parsing extra on Rails facet.
Revamped Motion Mailer Information
This Pull Request updates and improves the “Motion Mailer Fundamentals” Rails Information documentation.
Test it out and counsel enhancements in case you are acquainted round these components.
Assist Prism for ActionView::Template.spot
This transformation provides assist for the Prism parser with ErrorHighlight in Rails.
Repair NoMethodError when content material sort is about to nil in checks
This Pull Request adjustments ActionController::TestCase’s content material sort verify to account for nil content material varieties,
so Rails can increase a extra descriptive Unknown Content material-Sort error as an alternative of a barely obscure NoMethodError.
You’ll be able to view the entire listing of adjustments right here.
We had 34 contributors to the Rails codebase this previous week!
Till subsequent time!
Subscribe to get these updates mailed to you.
