{"id":292,"name":"actionpack","ecosystem":"rubygems","repository_url":"https://github.com/rails/rails","issues_count":241,"created_at":"2025-06-06T15:01:33.601Z","updated_at":"2025-06-06T15:01:33.601Z","purl":"pkg:gem/actionpack","metadata":{"id":148947,"name":"actionpack","ecosystem":"rubygems","description":"Web apps on Rails. Simple, battle-tested conventions for building and testing MVC web applications. Works with any Rack-compatible server.","homepage":"https://rubyonrails.org","licenses":"MIT","normalized_licenses":["MIT"],"repository_url":"https://github.com/rails/rails","keywords_array":[],"namespace":null,"versions_count":497,"first_release_published_at":"2009-07-25T18:36:20.000Z","latest_release_published_at":"2025-03-12T03:08:50.302Z","latest_release_number":"8.0.2","last_synced_at":"2025-06-06T01:07:41.643Z","created_at":"2022-04-05T16:21:52.385Z","updated_at":"2025-06-06T01:10:43.718Z","registry_url":"https://rubygems.org/gems/actionpack","install_command":"gem install actionpack -s https://rubygems.org","documentation_url":"http://www.rubydoc.info/gems/actionpack/","metadata":{"funding":null},"repo_metadata":{"id":390886,"uuid":"8514","full_name":"rails/rails","owner":"rails","description":"Ruby on Rails","archived":false,"fork":false,"pushed_at":"2025-06-02T18:06:50.000Z","size":265516,"stargazers_count":56954,"open_issues_count":1331,"forks_count":21862,"subscribers_count":2315,"default_branch":"main","last_synced_at":"2025-06-02T20:14:18.309Z","etag":null,"topics":["activejob","activerecord","framework","html","mvc","rails","ruby"],"latest_commit_sha":null,"homepage":"https://rubyonrails.org","language":"Ruby","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/rails.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"MIT-LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":".github/security.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2008-04-11T02:19:47.000Z","updated_at":"2025-06-02T18:06:56.000Z","dependencies_parsed_at":"2024-02-04T10:23:48.595Z","dependency_job_id":"76bea4fd-bd22-40af-b9bb-10ebcdcbd69d","html_url":"https://github.com/rails/rails","commit_stats":{"total_commits":70043,"total_committers":6052,"mean_commits":"11.573529411764707","dds":0.9368816298559456,"last_synced_commit":"be9aa73dd72f1097be5d45a58d7912447a266bd1"},"previous_names":[],"tags_count":572,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/rails","download_url":"https://codeload.github.com/rails/rails/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":257640807,"owners_count":22578216,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"rails","name":"Ruby on Rails","uuid":"4223","kind":"organization","description":"","email":null,"website":"https://rubyonrails.org/","location":null,"twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/4223?v=4","repositories_count":116,"last_synced_at":"2023-04-09T03:40:20.529Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/rails","funding_links":[],"total_stars":114333,"followers":null,"following":null,"created_at":"2022-11-02T16:17:13.297Z","updated_at":"2023-04-09T03:40:20.550Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/rails","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/rails/repositories"},"tags":[{"name":"v8.0.2","sha":"3235827585d87661942c91bc81f64f56d710f0b2","kind":"tag","published_at":"2025-03-12T02:54:11.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.2","html_url":"https://github.com/rails/rails/releases/tag/v8.0.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.2/manifests"},{"name":"v8.0.1","sha":"cf6ff17e9a3c6c1139040b519a341f55f0be16cf","kind":"tag","published_at":"2024-12-13T19:54:18.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.1","html_url":"https://github.com/rails/rails/releases/tag/v8.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.1/manifests"},{"name":"v8.0.0.1","sha":"a993c27a50395e727872600b5669976ff0a272e7","kind":"tag","published_at":"2024-12-10T21:45:00.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.0.1","html_url":"https://github.com/rails/rails/releases/tag/v8.0.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.1/manifests"},{"name":"v7.2.2.1","sha":"33beb0a38db1c058123a8e3cc298cad918adfe32","kind":"tag","published_at":"2024-12-10T21:40:52.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.2.2.1","html_url":"https://github.com/rails/rails/releases/tag/v7.2.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.2.1/manifests"},{"name":"v7.1.5.1","sha":"14c115b120ed089331ff3dc13f36bd9129ced33d","kind":"tag","published_at":"2024-12-10T21:25:13.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.5.1","html_url":"https://github.com/rails/rails/releases/tag/v7.1.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.5.1/manifests"},{"name":"v7.0.8.7","sha":"778eab826538be6da355d848aecaea2245e3b8ce","kind":"tag","published_at":"2024-12-10T21:16:45.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.8.7","html_url":"https://github.com/rails/rails/releases/tag/v7.0.8.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8.7/manifests"},{"name":"v8.0.0","sha":"dd8f7185faeca6ee968a6e9367f6d8601a83b8db","kind":"tag","published_at":"2024-11-07T22:24:26.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.0","html_url":"https://github.com/rails/rails/releases/tag/v8.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0/manifests"},{"name":"v7.2.2","sha":"d0dcb8fa6073a0c4d42600c15e82e3bb386b27d3","kind":"tag","published_at":"2024-10-31T01:43:10.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.2.2","html_url":"https://github.com/rails/rails/releases/tag/v7.2.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.2/manifests"},{"name":"v7.1.5","sha":"8984f4c4982f5c94bd6fb8ada42d7418bc403076","kind":"tag","published_at":"2024-10-31T01:14:44.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.5","html_url":"https://github.com/rails/rails/releases/tag/v7.1.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.5/manifests"},{"name":"v8.0.0.rc2","sha":"6283314df19ded7074f1fe37a8b0dbbad141e386","kind":"tag","published_at":"2024-10-30T00:30:55.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.0.rc2","html_url":"https://github.com/rails/rails/releases/tag/v8.0.0.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.rc2/manifests"},{"name":"v7.2.1.2","sha":"7750d64a65e5b2641d87ef45e6e65ace193d9a27","kind":"tag","published_at":"2024-10-23T22:32:53.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.2.1.2","html_url":"https://github.com/rails/rails/releases/tag/v7.2.1.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.1.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.1.2/manifests"},{"name":"v7.1.4.2","sha":"e52d670dba4861a081576e5ccc5db7015af3003c","kind":"tag","published_at":"2024-10-23T22:27:02.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.4.2","html_url":"https://github.com/rails/rails/releases/tag/v7.1.4.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.4.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.4.2/manifests"},{"name":"v7.0.8.6","sha":"bc979c5cf4e29e2aba95b7b13ca53e7a02fddee2","kind":"tag","published_at":"2024-10-23T22:21:15.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.8.6","html_url":"https://github.com/rails/rails/releases/tag/v7.0.8.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8.6/manifests"},{"name":"v6.1.7.10","sha":"86864c2f6661d3aa93b07f833b2900d241568cb7","kind":"tag","published_at":"2024-10-23T21:56:45.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.7.10","html_url":"https://github.com/rails/rails/releases/tag/v6.1.7.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.10/manifests"},{"name":"v8.0.0.rc1","sha":"35b3c7f12b3f13f80cacf7abde2fc5a9c0abea7b","kind":"tag","published_at":"2024-10-19T01:38:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.0.rc1","html_url":"https://github.com/rails/rails/releases/tag/v8.0.0.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.rc1/manifests"},{"name":"v6.1.7.9","sha":"b2fbbfbcaa3d662c68a9ee21ab6cf95eccc2b4ec","kind":"tag","published_at":"2024-10-15T21:23:25.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.7.9","html_url":"https://github.com/rails/rails/releases/tag/v6.1.7.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.9/manifests"},{"name":"v7.2.1.1","sha":"a1f6a13f691e0929d40b7e1b1e0d31aa69778128","kind":"tag","published_at":"2024-10-15T20:44:52.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.2.1.1","html_url":"https://github.com/rails/rails/releases/tag/v7.2.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.1.1/manifests"},{"name":"v7.1.4.1","sha":"5b5f0da552f62e85e31e2d747d52aed2a3133f48","kind":"tag","published_at":"2024-10-15T20:36:32.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.4.1","html_url":"https://github.com/rails/rails/releases/tag/v7.1.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.4.1/manifests"},{"name":"v7.0.8.5","sha":"f61f4ef957f80e1668797fce8a2393f3edb7ed76","kind":"tag","published_at":"2024-10-15T20:19:36.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.8.5","html_url":"https://github.com/rails/rails/releases/tag/v7.0.8.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8.5/manifests"},{"name":"v8.0.0.beta1","sha":"72bc36fb47aa3a9b10149ecefc1f344d7b028d79","kind":"tag","published_at":"2024-09-26T15:04:02.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.0.beta1","html_url":"https://github.com/rails/rails/releases/tag/v8.0.0.beta1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.beta1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.beta1/manifests"},{"name":"v8.0.0.alpha9","sha":"0fe9dc6c2bb0bdbc23d3874f112e15cacabe72f3","kind":"tag","published_at":"2024-09-25T18:14:25.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.0.alpha9","html_url":"https://github.com/rails/rails/releases/tag/v8.0.0.alpha9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha9/manifests"},{"name":"v8.0.0.alpha8","sha":"7c9855125e8bdf5c82bdde581b1dfaf636aba5b7","kind":"tag","published_at":"2024-09-18T21:08:33.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.0.alpha8","html_url":"https://github.com/rails/rails/releases/tag/v8.0.0.alpha8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha8/manifests"},{"name":"v8.0.0.alpha7","sha":"34e9d47d8e53786efe4b64e4513aa78eaea757b0","kind":"tag","published_at":"2024-09-18T05:04:18.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.0.alpha7","html_url":"https://github.com/rails/rails/releases/tag/v8.0.0.alpha7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha7/manifests"},{"name":"v8.0.0.alpha6","sha":"668c51e8761d38d798a0a4973549042ee41995c5","kind":"tag","published_at":"2024-09-18T05:01:19.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.0.alpha6","html_url":"https://github.com/rails/rails/releases/tag/v8.0.0.alpha6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha6/manifests"},{"name":"v8.0.0.alpha5","sha":"6b21e48541331054120ec617cf455c0d13a51539","kind":"tag","published_at":"2024-09-18T04:57:20.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.0.alpha5","html_url":"https://github.com/rails/rails/releases/tag/v8.0.0.alpha5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha5/manifests"},{"name":"v8.0.0.alpha4","sha":"aa5479e8188c303c3acbb30b1d490c4e473e7ce4","kind":"tag","published_at":"2024-09-18T03:37:30.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.0.alpha4","html_url":"https://github.com/rails/rails/releases/tag/v8.0.0.alpha4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha4/manifests"},{"name":"v8.0.0.alpha3","sha":"e14521de210a9b5ab8fbdd431110128b78fb1e12","kind":"tag","published_at":"2024-09-17T04:34:45.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.0.alpha3","html_url":"https://github.com/rails/rails/releases/tag/v8.0.0.alpha3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha3/manifests"},{"name":"v8.0.0.alpha2","sha":"f270115dd1c441aa672cb7054598551de80c1ec7","kind":"tag","published_at":"2024-09-17T04:30:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.0.alpha2","html_url":"https://github.com/rails/rails/releases/tag/v8.0.0.alpha2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha2/manifests"},{"name":"v8.0.0.alpha1","sha":"2c68c89238628373473eb8cb2bf6f853a9cda2b1","kind":"tag","published_at":"2024-09-17T04:23:53.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v8.0.0.alpha1","html_url":"https://github.com/rails/rails/releases/tag/v8.0.0.alpha1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v8.0.0.alpha1/manifests"},{"name":"v7.1.4","sha":"6f57590388ca38ed2b83bc1207a8be13a9ba2aef","kind":"tag","published_at":"2024-08-22T21:26:16.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.4","html_url":"https://github.com/rails/rails/releases/tag/v7.1.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.4/manifests"},{"name":"v7.2.1","sha":"a11f0a63673d274c59c69c2688c63ba303b86193","kind":"tag","published_at":"2024-08-22T19:44:56.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.2.1","html_url":"https://github.com/rails/rails/releases/tag/v7.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.1/manifests"},{"name":"v7.2.0","sha":"fb6c4305939da06efdf2893d99130e7829c53e8b","kind":"tag","published_at":"2024-08-09T23:25:45.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.2.0","html_url":"https://github.com/rails/rails/releases/tag/v7.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.0/manifests"},{"name":"v7.2.0.rc1","sha":"41d50f4bb11a1b1a910b38a3beefa97cafb52a2a","kind":"tag","published_at":"2024-08-06T17:00:21.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.2.0.rc1","html_url":"https://github.com/rails/rails/releases/tag/v7.2.0.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.0.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.0.rc1/manifests"},{"name":"v0.8.0","sha":"7050bba8984dca2ae8c52b1d4cc616149f5c9d91","kind":"tag","published_at":"2024-08-01T16:10:39.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.8.0","html_url":"https://github.com/rails/rails/releases/tag/v0.8.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.8.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.8.0/manifests"},{"name":"v0.8.5","sha":"fbf913fafea1072cb15c0a635b276dab5dfefe63","kind":"tag","published_at":"2024-08-01T16:10:26.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.8.5","html_url":"https://github.com/rails/rails/releases/tag/v0.8.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.8.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.8.5/manifests"},{"name":"v0.7.0","sha":"3cd56dccf840c97059e242ab616c13a84393a24c","kind":"tag","published_at":"2024-08-01T16:09:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.7.0","html_url":"https://github.com/rails/rails/releases/tag/v0.7.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.7.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.7.0/manifests"},{"name":"v0.6.5","sha":"11665ed67989e2ebb4ef38fa0781514a649b7ef2","kind":"tag","published_at":"2024-08-01T16:09:09.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.6.5","html_url":"https://github.com/rails/rails/releases/tag/v0.6.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.6.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.6.5/manifests"},{"name":"v0.6.0","sha":"be81c4351b3e3af81c001d157541c4bf58a2f94b","kind":"tag","published_at":"2024-08-01T16:08:53.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.6.0","html_url":"https://github.com/rails/rails/releases/tag/v0.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.6.0/manifests"},{"name":"v0.5.7","sha":"7b7799aec70f1b31db9fcc389b26ae61ef44d9bc","kind":"tag","published_at":"2024-08-01T16:08:20.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.5.7","html_url":"https://github.com/rails/rails/releases/tag/v0.5.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.5.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.5.7/manifests"},{"name":"v0.5.6","sha":"ec06ea363252e2251a93f7db756f2e9421ae2c78","kind":"tag","published_at":"2024-08-01T16:08:04.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.5.6","html_url":"https://github.com/rails/rails/releases/tag/v0.5.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.5.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.5.6/manifests"},{"name":"v0.5.5","sha":"42042de1e2b8e7023b807ec105d9b479f9f457f1","kind":"tag","published_at":"2024-08-01T16:07:50.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.5.5","html_url":"https://github.com/rails/rails/releases/tag/v0.5.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.5.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.5.5/manifests"},{"name":"v0.5.0","sha":"feba2817693536f24cd3848f3cbdc28735806261","kind":"tag","published_at":"2024-08-01T16:07:31.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.5.0","html_url":"https://github.com/rails/rails/releases/tag/v0.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.5.0/manifests"},{"name":"v7.2.0.beta3","sha":"9b63450fe40749d2481b6b6b3e0a7c711750e2a0","kind":"tag","published_at":"2024-07-11T15:19:26.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.2.0.beta3","html_url":"https://github.com/rails/rails/releases/tag/v7.2.0.beta3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.0.beta3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.0.beta3/manifests"},{"name":"v7.2.0.beta2","sha":"b752c38e81a310c1aaca78c7cdd1784009ea189a","kind":"tag","published_at":"2024-06-04T18:14:30.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.2.0.beta2","html_url":"https://github.com/rails/rails/releases/tag/v7.2.0.beta2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.0.beta2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.0.beta2/manifests"},{"name":"v7.1.3.4","sha":"19eebf6d33dd15a0172e3ed2481bec57a89a2404","kind":"tag","published_at":"2024-06-04T18:00:18.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.3.4","html_url":"https://github.com/rails/rails/releases/tag/v7.1.3.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.3.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.3.4/manifests"},{"name":"v7.0.8.4","sha":"ec7f25368dff972b014fad4294c62181fb26c584","kind":"tag","published_at":"2024-06-04T17:56:37.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.8.4","html_url":"https://github.com/rails/rails/releases/tag/v7.0.8.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8.4/manifests"},{"name":"v6.1.7.8","sha":"e39361ab9062e23dcef5aeaf376fc48b106da66b","kind":"tag","published_at":"2024-06-04T17:55:28.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.7.8","html_url":"https://github.com/rails/rails/releases/tag/v6.1.7.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.8/manifests"},{"name":"v7.2.0.beta1","sha":"9098f535b2accef27c6c284dede119c936c44595","kind":"tag","published_at":"2024-05-29T23:37:41.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.2.0.beta1","html_url":"https://github.com/rails/rails/releases/tag/v7.2.0.beta1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.0.beta1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.2.0.beta1/manifests"},{"name":"v7.0.8.3","sha":"08bc3ce3e0930d3509fce12127942172917a5c03","kind":"tag","published_at":"2024-05-17T19:52:17.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.8.3","html_url":"https://github.com/rails/rails/releases/tag/v7.0.8.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8.3/manifests"},{"name":"v7.1.3.3","sha":"747a03ba7722b6f0a7ce42e86cea83cf07a2e6ef","kind":"tag","published_at":"2024-05-16T19:20:53.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.3.3","html_url":"https://github.com/rails/rails/releases/tag/v7.1.3.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.3.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.3.3/manifests"},{"name":"v7.0.8.2","sha":"7c8d2a1d6e0a22c8e96ecae4bdea8c2b6e347168","kind":"tag","published_at":"2024-05-16T18:57:43.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.8.2","html_url":"https://github.com/rails/rails/releases/tag/v7.0.8.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8.2/manifests"},{"name":"v7.1.3.2","sha":"6f0d1ad14b92b9f5906e44740fce8b4f1c7075dc","kind":"tag","published_at":"2024-02-21T21:45:37.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.3.2","html_url":"https://github.com/rails/rails/releases/tag/v7.1.3.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.3.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.3.2/manifests"},{"name":"v7.1.3.1","sha":"d73ed958dc91d6b8cbb0bef7b4cdcfc013bd876f","kind":"tag","published_at":"2024-02-21T18:46:05.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.3.1","html_url":"https://github.com/rails/rails/releases/tag/v7.1.3.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.3.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.3.1/manifests"},{"name":"v7.0.8.1","sha":"506462ab13755d9f024e1ddbfc8c58d73e7a1bce","kind":"tag","published_at":"2024-02-21T18:42:34.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.8.1","html_url":"https://github.com/rails/rails/releases/tag/v7.0.8.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8.1/manifests"},{"name":"v6.1.7.7","sha":"ac87f58207cff18880593263be9d83456aa3a2ef","kind":"tag","published_at":"2024-02-21T18:38:36.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.7.7","html_url":"https://github.com/rails/rails/releases/tag/v6.1.7.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.7/manifests"},{"name":"v7.1.3","sha":"36c1591bcb5e0ee3084759c7f42a706fe5bb7ca7","kind":"tag","published_at":"2024-01-16T22:53:08.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.3","html_url":"https://github.com/rails/rails/releases/tag/v7.1.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.3/manifests"},{"name":"v7.1.2","sha":"6b93fff8af32ef5e91f4ec3cfffb081d0553faf0","kind":"tag","published_at":"2023-11-10T21:49:31.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.2","html_url":"https://github.com/rails/rails/releases/tag/v7.1.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.2/manifests"},{"name":"v7.1.1","sha":"23938052acd773fa24068debe56cd892cbf8d868","kind":"tag","published_at":"2023-10-11T22:16:15.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.1","html_url":"https://github.com/rails/rails/releases/tag/v7.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.1/manifests"},{"name":"v7.1.0","sha":"d39db5d1891f7509cde2efc425c9d69bbb77e670","kind":"tag","published_at":"2023-10-05T08:05:44.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.0","html_url":"https://github.com/rails/rails/releases/tag/v7.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.0/manifests"},{"name":"v7.1.0.rc2","sha":"8340f8ffdc6279c566b2b37c59674ecb158b4618","kind":"tag","published_at":"2023-10-01T21:58:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.0.rc2","html_url":"https://github.com/rails/rails/releases/tag/v7.1.0.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.0.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.0.rc2/manifests"},{"name":"v7.1.0.rc1","sha":"b69de9967a328c0cfdc0650f044c0ebb2e87407a","kind":"tag","published_at":"2023-09-27T03:59:58.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.0.rc1","html_url":"https://github.com/rails/rails/releases/tag/v7.1.0.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.0.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.0.rc1/manifests"},{"name":"v7.1.0.beta1","sha":"699dfdb42635faf6d40ff2405b2f0a615b1c54ed","kind":"tag","published_at":"2023-09-13T00:36:07.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.1.0.beta1","html_url":"https://github.com/rails/rails/releases/tag/v7.1.0.beta1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.0.beta1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.1.0.beta1/manifests"},{"name":"v7.0.8","sha":"fc734f28e65ef8829a1a939ee6702c1f349a1d5a","kind":"tag","published_at":"2023-09-09T19:10:02.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.8","html_url":"https://github.com/rails/rails/releases/tag/v7.0.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.8/manifests"},{"name":"v7.0.7.2","sha":"3668b4b5978822f1e6311c7fd7a32f58daee136a","kind":"tag","published_at":"2023-08-22T20:10:16.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.7.2","html_url":"https://github.com/rails/rails/releases/tag/v7.0.7.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.7.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.7.2/manifests"},{"name":"v6.1.7.6","sha":"56bcc0abd3c9a6b09469e9428f6eea0dd77c2294","kind":"tag","published_at":"2023-08-22T20:07:39.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.7.6","html_url":"https://github.com/rails/rails/releases/tag/v6.1.7.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.6/manifests"},{"name":"v7.0.7.1","sha":"c92caefc2bdf856845a72b8608d5603b330e8c3e","kind":"tag","published_at":"2023-08-22T17:20:17.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.7.1","html_url":"https://github.com/rails/rails/releases/tag/v7.0.7.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.7.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.7.1/manifests"},{"name":"v6.1.7.5","sha":"3a1b6150a9b7619fb6d020b61c3b8f8d493142b0","kind":"tag","published_at":"2023-08-22T17:15:31.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.7.5","html_url":"https://github.com/rails/rails/releases/tag/v6.1.7.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.5/manifests"},{"name":"v7.0.7","sha":"522c86f35ccc80453ed9fb6ca8b394db321f9a69","kind":"tag","published_at":"2023-08-09T23:56:09.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.7","html_url":"https://github.com/rails/rails/releases/tag/v7.0.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.7/manifests"},{"name":"v7.0.6","sha":"593893c901f87b4ed205751f72df41519b4d2da3","kind":"tag","published_at":"2023-06-29T20:53:23.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.6","html_url":"https://github.com/rails/rails/releases/tag/v7.0.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.6/manifests"},{"name":"v7.0.5.1","sha":"cdd14ce1f5196e4bd98df42f89a1cd36ba9d4bee","kind":"tag","published_at":"2023-06-26T21:35:35.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.5.1","html_url":"https://github.com/rails/rails/releases/tag/v7.0.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.5.1/manifests"},{"name":"v6.1.7.4","sha":"7d949d7c81d2ec3c6d21525ebb08c85f3f174b74","kind":"tag","published_at":"2023-06-26T21:31:30.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.7.4","html_url":"https://github.com/rails/rails/releases/tag/v6.1.7.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.4/manifests"},{"name":"v7.0.5","sha":"e88857bbb9d4e1dd64555c34541301870de4a45b","kind":"tag","published_at":"2023-05-24T18:56:41.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.5","html_url":"https://github.com/rails/rails/releases/tag/v7.0.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.5/manifests"},{"name":"v7.0.4.3","sha":"c15ee6e7b5065db3c46afa1f025b8e45f443604e","kind":"tag","published_at":"2023-03-13T18:53:09.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.4.3","html_url":"https://github.com/rails/rails/releases/tag/v7.0.4.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.4.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.4.3/manifests"},{"name":"v6.1.7.3","sha":"f09dc7c4c2e8b9375345d443c230cb8d78ad6a18","kind":"tag","published_at":"2023-03-13T18:48:15.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.7.3","html_url":"https://github.com/rails/rails/releases/tag/v6.1.7.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.3/manifests"},{"name":"v6.1.7.2","sha":"f0c5e60aed8bdce96c385cad05b1e34d7d757038","kind":"tag","published_at":"2023-01-25T03:23:07.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.7.2","html_url":"https://github.com/rails/rails/releases/tag/v6.1.7.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.2/manifests"},{"name":"v7.0.4.2","sha":"7c70791470fc517deb7c640bead9f1b47efb5539","kind":"tag","published_at":"2023-01-25T03:13:57.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.4.2","html_url":"https://github.com/rails/rails/releases/tag/v7.0.4.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.4.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.4.2/manifests"},{"name":"v7.0.4.1","sha":"23e0345fe900dfd7edd6e8e5a7a6bd54b2a7d2ed","kind":"tag","published_at":"2023-01-17T18:55:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.4.1","html_url":"https://github.com/rails/rails/releases/tag/v7.0.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.4.1/manifests"},{"name":"v6.1.7.1","sha":"c443466a99f8ed951605fb4993a01de5e41349a4","kind":"tag","published_at":"2023-01-17T18:54:03.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.7.1","html_url":"https://github.com/rails/rails/releases/tag/v6.1.7.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7.1/manifests"},{"name":"v6.0.6.1","sha":"28bb76d3efc39b2ef663dfe2346f7c2621343cd6","kind":"tag","published_at":"2023-01-17T18:52:45.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.6.1","html_url":"https://github.com/rails/rails/releases/tag/v6.0.6.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.6.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.6.1/manifests"},{"name":"v7.0.4","sha":"8015c2c2cf5c8718449677570f372ceb01318a32","kind":"tag","published_at":"2022-09-09T18:42:25.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.4","html_url":"https://github.com/rails/rails/releases/tag/v7.0.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.4/manifests"},{"name":"v6.1.7","sha":"9ab33753b6bab1809fc73d35b98a5c1d0c96ba1b","kind":"tag","published_at":"2022-09-09T18:38:44.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.7","html_url":"https://github.com/rails/rails/releases/tag/v6.1.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.7/manifests"},{"name":"v6.0.6","sha":"91cf62e7b43c33ae6263adf3d7563da9b68ff21d","kind":"tag","published_at":"2022-09-09T18:31:52.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.6","html_url":"https://github.com/rails/rails/releases/tag/v6.0.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.6/manifests"},{"name":"v7.0.3.1","sha":"04972d9b9ef60796dc8f0917817b5392d61fcf09","kind":"tag","published_at":"2022-07-12T17:31:07.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.3.1","html_url":"https://github.com/rails/rails/releases/tag/v7.0.3.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.3.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.3.1/manifests"},{"name":"v6.1.6.1","sha":"dc1242fd5a4d91e63846ab552a07e19ebf8716ac","kind":"tag","published_at":"2022-07-12T17:29:22.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.6.1","html_url":"https://github.com/rails/rails/releases/tag/v6.1.6.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.6.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.6.1/manifests"},{"name":"v6.0.5.1","sha":"eed417637b594b33b3b58b08dd41daa10c57e083","kind":"tag","published_at":"2022-07-12T17:27:57.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.5.1","html_url":"https://github.com/rails/rails/releases/tag/v6.0.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.5.1/manifests"},{"name":"v5.2.8.1","sha":"8030cff808657faa44828de001cd3b80364597de","kind":"tag","published_at":"2022-07-12T17:26:06.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.8.1","html_url":"https://github.com/rails/rails/releases/tag/v5.2.8.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.8.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.8.1/manifests"},{"name":"v5.2.8","sha":"26521331e5923a0c50fa50984d2f924e5f26c50b","kind":"tag","published_at":"2022-05-09T13:57:53.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.8","html_url":"https://github.com/rails/rails/releases/tag/v5.2.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.8/manifests"},{"name":"v6.0.5","sha":"433115554d3ea0b4dab9df99548c47707cadb20d","kind":"tag","published_at":"2022-05-09T13:49:58.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.5","html_url":"https://github.com/rails/rails/releases/tag/v6.0.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.5/manifests"},{"name":"v6.1.6","sha":"147557dc16a5bd8bab96f999f359a570232e1873","kind":"tag","published_at":"2022-05-09T13:44:15.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.6","html_url":"https://github.com/rails/rails/releases/tag/v6.1.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.6/manifests"},{"name":"v7.0.3","sha":"3872bc0e54d32e8bf3a6299b0bfe173d94b072fc","kind":"tag","published_at":"2022-05-09T13:35:24.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.3","html_url":"https://github.com/rails/rails/releases/tag/v7.0.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.3/manifests"},{"name":"v7.0.2.4","sha":"3520cc77df1b52a6c808083214b583c769e9a4b2","kind":"tag","published_at":"2022-04-26T19:32:56.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.2.4","html_url":"https://github.com/rails/rails/releases/tag/v7.0.2.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.2.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.2.4/manifests"},{"name":"v6.1.5.1","sha":"e2efc667dea886e71c33e3837048e34b7a1fe470","kind":"tag","published_at":"2022-04-26T19:30:13.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.5.1","html_url":"https://github.com/rails/rails/releases/tag/v6.1.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.5.1/manifests"},{"name":"v6.0.4.8","sha":"27a5ec76eed1e5d0bc5649b0e92097267c0b4338","kind":"tag","published_at":"2022-04-26T19:26:51.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.4.8","html_url":"https://github.com/rails/rails/releases/tag/v6.0.4.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.8/manifests"},{"name":"v5.2.7.1","sha":"b290430faf946b298352196e245f227f762f8c08","kind":"tag","published_at":"2022-04-26T19:22:41.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.7.1","html_url":"https://github.com/rails/rails/releases/tag/v5.2.7.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.7.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.7.1/manifests"},{"name":"v5.2.7","sha":"459e7cf62252558bbf65f582a230562ab1a76c5e","kind":"tag","published_at":"2022-03-10T23:59:03.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.7","html_url":"https://github.com/rails/rails/releases/tag/v5.2.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.7/manifests"},{"name":"v6.1.5","sha":"53410537594be0c0a528cff53dce433dd386cb6a","kind":"tag","published_at":"2022-03-10T21:11:26.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.5","html_url":"https://github.com/rails/rails/releases/tag/v6.1.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.5/manifests"},{"name":"v7.0.2.3","sha":"de53ba56cab69fb9707785a397a59ac4aaee9d6f","kind":"tag","published_at":"2022-03-08T17:50:24.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.2.3","html_url":"https://github.com/rails/rails/releases/tag/v7.0.2.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.2.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.2.3/manifests"},{"name":"v6.1.4.7","sha":"66073335585f04f2ed0f5ef930eb3c8955d50a6a","kind":"tag","published_at":"2022-03-08T17:48:35.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.4.7","html_url":"https://github.com/rails/rails/releases/tag/v6.1.4.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4.7/manifests"},{"name":"v6.0.4.7","sha":"4ba546e960cb368b1b552a3f91a371aced64da4c","kind":"tag","published_at":"2022-03-08T17:47:24.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.4.7","html_url":"https://github.com/rails/rails/releases/tag/v6.0.4.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.7/manifests"},{"name":"v5.2.6.3","sha":"b287570dbadcc418ce64b83ebde2746891e12d03","kind":"tag","published_at":"2022-03-08T17:45:10.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.6.3","html_url":"https://github.com/rails/rails/releases/tag/v5.2.6.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.6.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.6.3/manifests"},{"name":"v7.0.2.2","sha":"2459c20afb508c987347f52148210d874a9af4fa","kind":"tag","published_at":"2022-02-11T19:43:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.2.2","html_url":"https://github.com/rails/rails/releases/tag/v7.0.2.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.2.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.2.2/manifests"},{"name":"v6.1.4.6","sha":"10a2c77e901eb15b486f2c72fd9997bd0e2d506c","kind":"tag","published_at":"2022-02-11T19:41:30.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.4.6","html_url":"https://github.com/rails/rails/releases/tag/v6.1.4.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4.6/manifests"},{"name":"v6.0.4.6","sha":"5f85a37f49227a76ec472eb74954b54806028641","kind":"tag","published_at":"2022-02-11T19:39:38.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.4.6","html_url":"https://github.com/rails/rails/releases/tag/v6.0.4.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.6/manifests"},{"name":"v5.2.6.2","sha":"46fe51b4875ba947cd3317cef420042f22aa8ffd","kind":"tag","published_at":"2022-02-11T19:37:14.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.6.2","html_url":"https://github.com/rails/rails/releases/tag/v5.2.6.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.6.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.6.2/manifests"},{"name":"v5.2.6.1","sha":"9c111dcbb9d15bbc8328edbae03e67746cdec314","kind":"tag","published_at":"2022-02-11T18:38:03.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.6.1","html_url":"https://github.com/rails/rails/releases/tag/v5.2.6.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.6.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.6.1/manifests"},{"name":"v6.0.4.5","sha":"c06fa92a3f8b3ff88c85ce587630c451ea3396a6","kind":"tag","published_at":"2022-02-11T18:24:38.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.4.5","html_url":"https://github.com/rails/rails/releases/tag/v6.0.4.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.5/manifests"},{"name":"v6.1.4.5","sha":"6d25fed5c70bc1bd3292f69692c82063dd32320a","kind":"tag","published_at":"2022-02-11T18:22:29.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.4.5","html_url":"https://github.com/rails/rails/releases/tag/v6.1.4.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4.5/manifests"},{"name":"v7.0.2.1","sha":"365e0fe8c346a90c91d2f622b4bdae2fbb11a940","kind":"tag","published_at":"2022-02-11T18:18:37.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.2.1","html_url":"https://github.com/rails/rails/releases/tag/v7.0.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.2.1/manifests"},{"name":"v7.0.2","sha":"76489d81ba77216271870e11fba6889088016fa5","kind":"tag","published_at":"2022-02-08T23:10:25.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.2","html_url":"https://github.com/rails/rails/releases/tag/v7.0.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.2/manifests"},{"name":"v7.0.1","sha":"6bfc637659248df5d6719a86d2981b52662d9b50","kind":"tag","published_at":"2022-01-06T21:53:19.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.1","html_url":"https://github.com/rails/rails/releases/tag/v7.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.1/manifests"},{"name":"v7.0.0","sha":"984c3ef2775781d47efa9f541ce570daa2434a80","kind":"tag","published_at":"2021-12-15T23:42:24.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.0","html_url":"https://github.com/rails/rails/releases/tag/v7.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.0/manifests"},{"name":"v6.1.4.4","sha":"87d4d0f4126f64d991d40a1827de50935ddfdbff","kind":"tag","published_at":"2021-12-15T22:52:08.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.4.4","html_url":"https://github.com/rails/rails/releases/tag/v6.1.4.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4.4/manifests"},{"name":"v6.0.4.4","sha":"34bd524a9d7580ceecbf4a6dd9dced6296e20f97","kind":"tag","published_at":"2021-12-15T22:45:24.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.4.4","html_url":"https://github.com/rails/rails/releases/tag/v6.0.4.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.4/manifests"},{"name":"v7.0.0.rc3","sha":"834cc1aee3b3a9e0f5884fde1242c6d7b5e8a3dd","kind":"tag","published_at":"2021-12-14T23:04:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.0.rc3","html_url":"https://github.com/rails/rails/releases/tag/v7.0.0.rc3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.0.rc3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.0.rc3/manifests"},{"name":"v6.1.4.3","sha":"ac2e12a0fd1ff17de5021d4150df7feb864fc83d","kind":"tag","published_at":"2021-12-14T23:02:12.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.4.3","html_url":"https://github.com/rails/rails/releases/tag/v6.1.4.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4.3/manifests"},{"name":"v6.0.4.3","sha":"0cc179fdc77e57ee2756769ec4d14203d93e2354","kind":"tag","published_at":"2021-12-14T23:00:31.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.4.3","html_url":"https://github.com/rails/rails/releases/tag/v6.0.4.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.3/manifests"},{"name":"v6.0.4.2","sha":"9ef61211d7861093a69fa1fbfc2ba136abd37cd2","kind":"tag","published_at":"2021-12-14T20:09:32.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.4.2","html_url":"https://github.com/rails/rails/releases/tag/v6.0.4.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.2/manifests"},{"name":"v6.1.4.2","sha":"5e52f65fe99c46d40602f2b46418a3f9fee2260e","kind":"tag","published_at":"2021-12-14T19:45:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.4.2","html_url":"https://github.com/rails/rails/releases/tag/v6.1.4.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4.2/manifests"},{"name":"v7.0.0.rc2","sha":"69e2e898478a1795913b8fda7cb95079228f8fb2","kind":"tag","published_at":"2021-12-14T19:39:02.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.0.rc2","html_url":"https://github.com/rails/rails/releases/tag/v7.0.0.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.0.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.0.rc2/manifests"},{"name":"v7.0.0.rc1","sha":"7c10fe108adfb1cd1c35ce44d5fbc0dd820c76d4","kind":"tag","published_at":"2021-12-06T21:27:50.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.0.rc1","html_url":"https://github.com/rails/rails/releases/tag/v7.0.0.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.0.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.0.rc1/manifests"},{"name":"v7.0.0.alpha2","sha":"ceb4b94baaf17f3a9f4ea795c83ec6c67211f737","kind":"tag","published_at":"2021-09-15T23:14:44.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.0.alpha2","html_url":"https://github.com/rails/rails/releases/tag/v7.0.0.alpha2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.0.alpha2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.0.alpha2/manifests"},{"name":"v7.0.0.alpha1","sha":"9b7be48212a2b6979b8af5093bb58ee5087e5044","kind":"tag","published_at":"2021-09-15T21:55:15.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v7.0.0.alpha1","html_url":"https://github.com/rails/rails/releases/tag/v7.0.0.alpha1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.0.alpha1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v7.0.0.alpha1/manifests"},{"name":"v6.1.4.1","sha":"90357af08048ef5076730505f6e7b14a81f33d0c","kind":"tag","published_at":"2021-08-19T16:25:08.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.4.1","html_url":"https://github.com/rails/rails/releases/tag/v6.1.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4.1/manifests"},{"name":"v6.0.4.1","sha":"0d304eae601f085274b2e2c04316e025b443da62","kind":"tag","published_at":"2021-08-19T16:15:59.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.4.1","html_url":"https://github.com/rails/rails/releases/tag/v6.0.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4.1/manifests"},{"name":"v6.1.4","sha":"83217025a171593547d1268651b446d3533e2019","kind":"tag","published_at":"2021-06-24T20:39:50.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.4","html_url":"https://github.com/rails/rails/releases/tag/v6.1.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.4/manifests"},{"name":"v6.0.4","sha":"6e721d79ba9458317c93bb02590bbaa25c5a3649","kind":"tag","published_at":"2021-06-15T20:14:14.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.4","html_url":"https://github.com/rails/rails/releases/tag/v6.0.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.4/manifests"},{"name":"v5.2.6","sha":"48661542a2607d55f436438fe21001d262e61fec","kind":"tag","published_at":"2021-05-05T17:02:20.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.6","html_url":"https://github.com/rails/rails/releases/tag/v5.2.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.6/manifests"},{"name":"v6.0.3.7","sha":"c04aff675d4cd3e8a54e0008dbfca10a8832a414","kind":"tag","published_at":"2021-05-05T16:01:07.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.3.7","html_url":"https://github.com/rails/rails/releases/tag/v6.0.3.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.7/manifests"},{"name":"v6.1.3.2","sha":"75ac626c4e21129d8296d4206a1960563cc3d4aa","kind":"tag","published_at":"2021-05-05T15:34:21.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.3.2","html_url":"https://github.com/rails/rails/releases/tag/v6.1.3.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.3.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.3.2/manifests"},{"name":"v5.2.4.6","sha":"26126839058bad41120b5d74f3cc06b93baa987e","kind":"tag","published_at":"2021-05-05T15:28:20.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.4.6","html_url":"https://github.com/rails/rails/releases/tag/v5.2.4.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4.6/manifests"},{"name":"v6.1.3.1","sha":"85c6823b77b60f2a3a6a25d7a1013032e8c580ef","kind":"tag","published_at":"2021-03-26T18:05:25.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.3.1","html_url":"https://github.com/rails/rails/releases/tag/v6.1.3.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.3.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.3.1/manifests"},{"name":"v6.0.3.6","sha":"0073c7b29339b2ee1e11aa5c9622ea452d0633fc","kind":"tag","published_at":"2021-03-26T17:31:24.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.3.6","html_url":"https://github.com/rails/rails/releases/tag/v6.0.3.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.6/manifests"},{"name":"v5.2.5","sha":"cb0a558f42fc6957fac4d2daa16771b72ff7da6e","kind":"tag","published_at":"2021-03-26T17:16:38.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.5","html_url":"https://github.com/rails/rails/releases/tag/v5.2.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.5/manifests"},{"name":"v6.1.3","sha":"5aaaa1630ae9a71b3c3ecc4dc46074d678c08d67","kind":"tag","published_at":"2021-02-17T18:39:55.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.3","html_url":"https://github.com/rails/rails/releases/tag/v6.1.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.3/manifests"},{"name":"v6.1.2.1","sha":"130c128eae233bf71231c73b9c3c3b3f3ede918b","kind":"tag","published_at":"2021-02-10T20:44:13.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.2.1","html_url":"https://github.com/rails/rails/releases/tag/v6.1.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.2.1/manifests"},{"name":"v6.0.3.5","sha":"c5929d5eb55b749bc124b3ccc2d79323d015701f","kind":"tag","published_at":"2021-02-10T20:39:07.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.3.5","html_url":"https://github.com/rails/rails/releases/tag/v6.0.3.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.5/manifests"},{"name":"v5.2.4.5","sha":"dc7364b1f39cf2fa3c3af3ea0f239f9ae1b5a790","kind":"tag","published_at":"2021-02-10T20:34:13.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.4.5","html_url":"https://github.com/rails/rails/releases/tag/v5.2.4.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4.5/manifests"},{"name":"v6.1.2","sha":"bf8c59cd896b1bf98d0f3df356531fa4c163219f","kind":"tag","published_at":"2021-02-09T21:27:07.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.2","html_url":"https://github.com/rails/rails/releases/tag/v6.1.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.2/manifests"},{"name":"v6.1.1","sha":"5f3ff60084ab5d5921ca3499814e4697f8350ee7","kind":"tag","published_at":"2021-01-07T22:58:14.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.1","html_url":"https://github.com/rails/rails/releases/tag/v6.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.1/manifests"},{"name":"v6.1.0","sha":"914caca2d31bd753f47f9168f2a375921d9e91cc","kind":"tag","published_at":"2020-12-09T19:56:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.0","html_url":"https://github.com/rails/rails/releases/tag/v6.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.0/manifests"},{"name":"v6.1.0.rc2","sha":"b38eb45ad9cb2041b30ac5d4d7b5b6e7b911ff2e","kind":"tag","published_at":"2020-12-01T22:00:32.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.0.rc2","html_url":"https://github.com/rails/rails/releases/tag/v6.1.0.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.0.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.0.rc2/manifests"},{"name":"v6.1.0.rc1","sha":"8389f9902c3f0e984df17a77386493f856d7a1bb","kind":"tag","published_at":"2020-11-02T21:13:25.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.1.0.rc1","html_url":"https://github.com/rails/rails/releases/tag/v6.1.0.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.0.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.1.0.rc1/manifests"},{"name":"v6.0.3.4","sha":"fe76a95b0d252a2d7c25e69498b720c96b243ea2","kind":"tag","published_at":"2020-10-07T16:49:09.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.3.4","html_url":"https://github.com/rails/rails/releases/tag/v6.0.3.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.4/manifests"},{"name":"v5.2.4.4","sha":"404ad9e8acf8ab45ae2314050131a00e57e63b40","kind":"tag","published_at":"2020-09-09T18:35:31.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.4.4","html_url":"https://github.com/rails/rails/releases/tag/v5.2.4.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4.4/manifests"},{"name":"v6.0.3.3","sha":"070d4afacd3e9721b7e3a4634e4d026b5fa2c32c","kind":"tag","published_at":"2020-09-09T18:18:22.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.3.3","html_url":"https://github.com/rails/rails/releases/tag/v6.0.3.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.3/manifests"},{"name":"v6.0.3.2","sha":"fbe2433be6e052a1acac63c7faf287c52ed3c5ba","kind":"tag","published_at":"2020-06-17T14:53:35.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.3.2","html_url":"https://github.com/rails/rails/releases/tag/v6.0.3.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.2/manifests"},{"name":"v6.0.3.1","sha":"34991a6ae2fc68347c01ea7382fa89004159e019","kind":"tag","published_at":"2020-05-18T15:46:25.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.3.1","html_url":"https://github.com/rails/rails/releases/tag/v6.0.3.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.1/manifests"},{"name":"v5.2.4.3","sha":"7b5cc5a5dfcf38522be0a4b5daa97c5b2ba26c20","kind":"tag","published_at":"2020-05-18T15:41:33.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.4.3","html_url":"https://github.com/rails/rails/releases/tag/v5.2.4.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4.3/manifests"},{"name":"v4.2.11.3","sha":"11f2bdf75a888682b34df0f9be03b94f54fc6796","kind":"tag","published_at":"2020-05-15T18:34:39.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.11.3","html_url":"https://github.com/rails/rails/releases/tag/v4.2.11.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.11.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.11.3/manifests"},{"name":"v4.2.11.2","sha":"b9e5577b9943e21a216acccdc29c297585424c58","kind":"tag","published_at":"2020-05-15T16:29:48.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.11.2","html_url":"https://github.com/rails/rails/releases/tag/v4.2.11.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.11.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.11.2/manifests"},{"name":"v6.0.3","sha":"b738f1930f3c82f51741ef7241c1fee691d7deb2","kind":"tag","published_at":"2020-05-06T18:03:00.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.3","html_url":"https://github.com/rails/rails/releases/tag/v6.0.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3/manifests"},{"name":"v6.0.3.rc1","sha":"509b9da209a8481fef8310bc14d6c6cd27c629dc","kind":"tag","published_at":"2020-05-01T17:16:52.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.3.rc1","html_url":"https://github.com/rails/rails/releases/tag/v6.0.3.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.3.rc1/manifests"},{"name":"v6.0.2.2","sha":"157920aead96865e3135f496c09ace607d5620dc","kind":"tag","published_at":"2020-03-19T16:43:03.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.2.2","html_url":"https://github.com/rails/rails/releases/tag/v6.0.2.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.2.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.2.2/manifests"},{"name":"v5.2.4.2","sha":"4dcc5435e9569e084f6f90fcea6e7c37d7bd2b4d","kind":"tag","published_at":"2020-03-19T16:30:32.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.4.2","html_url":"https://github.com/rails/rails/releases/tag/v5.2.4.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4.2/manifests"},{"name":"v6.0.2.1","sha":"f33d52c95217212cbacc8d5e44b5a8e3cdc6f5b3","kind":"tag","published_at":"2019-12-18T19:07:58.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.2.1","html_url":"https://github.com/rails/rails/releases/tag/v6.0.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.2.1/manifests"},{"name":"v5.2.4.1","sha":"ac30e389ecfa0e26e3d44c1eda8488ddf63b3ecc","kind":"tag","published_at":"2019-12-18T19:00:38.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.4.1","html_url":"https://github.com/rails/rails/releases/tag/v5.2.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4.1/manifests"},{"name":"v6.0.2","sha":"f675cb30ce813a99b52b139a93e048330922fd9a","kind":"tag","published_at":"2019-12-13T18:08:10.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.2","html_url":"https://github.com/rails/rails/releases/tag/v6.0.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.2/manifests"},{"name":"v6.0.2.rc2","sha":"63107e9914c893336f7612c2cd17a24474b6a6d6","kind":"tag","published_at":"2019-12-09T16:10:59.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.2.rc2","html_url":"https://github.com/rails/rails/releases/tag/v6.0.2.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.2.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.2.rc2/manifests"},{"name":"v5.2.4","sha":"8bec77cc0f1fd47677a331a64f68c5918efd2ca9","kind":"tag","published_at":"2019-11-27T15:42:23.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.4","html_url":"https://github.com/rails/rails/releases/tag/v5.2.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4/manifests"},{"name":"v6.0.2.rc1","sha":"a015f55240258723df311360123af22b3204fa08","kind":"tag","published_at":"2019-11-27T15:08:11.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.2.rc1","html_url":"https://github.com/rails/rails/releases/tag/v6.0.2.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.2.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.2.rc1/manifests"},{"name":"v5.2.4.rc1","sha":"9e2a34122bd436e92a21ded4a50fa23461c29a4e","kind":"tag","published_at":"2019-11-23T00:26:02.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.4.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.2.4.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.4.rc1/manifests"},{"name":"v6.0.1","sha":"09a2979f75c51afb797dd60261a8930f84144af8","kind":"tag","published_at":"2019-11-05T14:38:04.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.1","html_url":"https://github.com/rails/rails/releases/tag/v6.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.1/manifests"},{"name":"v6.0.1.rc1","sha":"7982363efabc03e4624cd35aa86e2d284dcd35f7","kind":"tag","published_at":"2019-10-31T20:04:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.1.rc1","html_url":"https://github.com/rails/rails/releases/tag/v6.0.1.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.1.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.1.rc1/manifests"},{"name":"v6.0.0","sha":"66cabeda2c46c582d19738e1318be8d59584cc5b","kind":"tag","published_at":"2019-08-16T17:59:21.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.0","html_url":"https://github.com/rails/rails/releases/tag/v6.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.0/manifests"},{"name":"v6.0.0.rc2","sha":"16f2cd88e3ee92de341ba30b102e9206be3c68a7","kind":"tag","published_at":"2019-07-22T21:08:49.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.0.rc2","html_url":"https://github.com/rails/rails/releases/tag/v6.0.0.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.0.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.0.rc2/manifests"},{"name":"v6.0.0.rc1","sha":"01b7e9b73ac9dca92be0969e047b9cb0c767f261","kind":"tag","published_at":"2019-04-24T18:49:12.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.0.rc1","html_url":"https://github.com/rails/rails/releases/tag/v6.0.0.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.0.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.0.rc1/manifests"},{"name":"v5.2.3","sha":"b9ca94caea2ca6a6cc09abaffaad67b447134079","kind":"tag","published_at":"2019-03-28T02:59:45.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.3","html_url":"https://github.com/rails/rails/releases/tag/v5.2.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.3/manifests"},{"name":"v5.1.7","sha":"4f66945cd038bda638fc6729e0d54663d0dfbf22","kind":"tag","published_at":"2019-03-28T02:46:34.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.7","html_url":"https://github.com/rails/rails/releases/tag/v5.1.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.7/manifests"},{"name":"v5.1.7.rc1","sha":"ce0c4f3c822d75dda3226e92b9fb24f79bbd91d7","kind":"tag","published_at":"2019-03-22T04:11:59.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.7.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.1.7.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.7.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.7.rc1/manifests"},{"name":"v5.2.3.rc1","sha":"657103b603db54aa299055c38d085684f47650ab","kind":"tag","published_at":"2019-03-22T03:34:11.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.3.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.2.3.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.3.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.3.rc1/manifests"},{"name":"v6.0.0.beta3","sha":"7c87fd5635fd830905e17d3cbf1eb2a2215acedf","kind":"tag","published_at":"2019-03-13T17:01:59.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.0.beta3","html_url":"https://github.com/rails/rails/releases/tag/v6.0.0.beta3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.0.beta3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.0.beta3/manifests"},{"name":"v5.2.2.1","sha":"e69ff43060c1194d2a3bd9b8d9e23f3ae26b84b5","kind":"tag","published_at":"2019-03-13T16:46:43.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.2.1","html_url":"https://github.com/rails/rails/releases/tag/v5.2.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.2.1/manifests"},{"name":"v5.1.6.2","sha":"ec8697bf0bfafff7d897fb50e322afe42ddc1623","kind":"tag","published_at":"2019-03-13T16:44:51.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.6.2","html_url":"https://github.com/rails/rails/releases/tag/v5.1.6.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.6.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.6.2/manifests"},{"name":"v5.0.7.2","sha":"c4d3e202e10ae627b3b9c34498afb45450652421","kind":"tag","published_at":"2019-03-13T16:39:07.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.7.2","html_url":"https://github.com/rails/rails/releases/tag/v5.0.7.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.7.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.7.2/manifests"},{"name":"v4.2.11.1","sha":"e06a1e09b6bec32b0a05c72a3ae7ceb00f61bf7d","kind":"tag","published_at":"2019-03-13T16:35:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.11.1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.11.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.11.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.11.1/manifests"},{"name":"test-tag-1","sha":"1dc4d49f517e5cea99063afd9692b201199484ef","kind":"tag","published_at":"2019-03-13T16:22:38.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/test-tag-1","html_url":"https://github.com/rails/rails/releases/tag/test-tag-1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/test-tag-1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/test-tag-1/manifests"},{"name":"v6.0.0.beta2","sha":"5e6e505083c2b0caf85b2f86c6be3ff3d8750857","kind":"tag","published_at":"2019-02-25T22:45:11.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.0.beta2","html_url":"https://github.com/rails/rails/releases/tag/v6.0.0.beta2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.0.beta2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.0.beta2/manifests"},{"name":"v6.0.0.beta1","sha":"5a0230c67f852fb21173f99647e76336897446c1","kind":"tag","published_at":"2019-01-18T20:43:03.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v6.0.0.beta1","html_url":"https://github.com/rails/rails/releases/tag/v6.0.0.beta1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.0.beta1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v6.0.0.beta1/manifests"},{"name":"v5.2.2","sha":"94b5cd3a20edadd6f6b8cf0bdf1a4d4919df86cb","kind":"tag","published_at":"2018-12-04T18:12:22.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.2","html_url":"https://github.com/rails/rails/releases/tag/v5.2.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.2/manifests"},{"name":"v5.2.2.rc1","sha":"73ba3027261ef3ef75f29a037d11361240282be4","kind":"tag","published_at":"2018-11-28T22:51:28.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.2.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.2.2.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.2.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.2.rc1/manifests"},{"name":"v5.2.1.1","sha":"96dee0e7e5a8dd6ce42999b13d0bd0623073e229","kind":"tag","published_at":"2018-11-27T20:12:31.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.1.1","html_url":"https://github.com/rails/rails/releases/tag/v5.2.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.1.1/manifests"},{"name":"v5.1.6.1","sha":"24ab200e26f7faee1f04a1d37b650e0becb79a41","kind":"tag","published_at":"2018-11-27T20:10:16.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.6.1","html_url":"https://github.com/rails/rails/releases/tag/v5.1.6.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.6.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.6.1/manifests"},{"name":"v5.0.7.1","sha":"23839528551bebd65c210c51c29b91acff875c01","kind":"tag","published_at":"2018-11-27T20:08:15.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.7.1","html_url":"https://github.com/rails/rails/releases/tag/v5.0.7.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.7.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.7.1/manifests"},{"name":"v4.2.11","sha":"474b7392c69852e8932260ea370cd63cf1e4fcaa","kind":"tag","published_at":"2018-11-27T20:06:19.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.11","html_url":"https://github.com/rails/rails/releases/tag/v4.2.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.11/manifests"},{"name":"v5.2.1","sha":"fc5dd0b85189811062c85520fd70de8389b55aeb","kind":"tag","published_at":"2018-08-07T21:42:35.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.1","html_url":"https://github.com/rails/rails/releases/tag/v5.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.1/manifests"},{"name":"v5.2.1.rc1","sha":"90c033984f38e40c2ff53c036d89ee22c88fadab","kind":"tag","published_at":"2018-07-30T20:09:42.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.1.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.2.1.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.1.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.1.rc1/manifests"},{"name":"v5.2.0","sha":"375a4143cf5caeb6159b338be824903edfd62836","kind":"tag","published_at":"2018-04-09T20:04:48.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.0","html_url":"https://github.com/rails/rails/releases/tag/v5.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.0/manifests"},{"name":"v5.1.6","sha":"0ae59ea828ed20141af0d4c9ed9130eb47ce55f3","kind":"tag","published_at":"2018-03-29T18:27:31.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.6","html_url":"https://github.com/rails/rails/releases/tag/v5.1.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.6/manifests"},{"name":"v5.0.7","sha":"aea6423f013ca48f7704c70deadf2cd6ac7d70a1","kind":"tag","published_at":"2018-03-29T17:58:06.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.7","html_url":"https://github.com/rails/rails/releases/tag/v5.0.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.7/manifests"},{"name":"v5.2.0.rc2","sha":"db7edd81062648281d1e50c8ff9ebfafac5a9c3d","kind":"tag","published_at":"2018-03-20T17:49:55.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.0.rc2","html_url":"https://github.com/rails/rails/releases/tag/v5.2.0.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.0.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.0.rc2/manifests"},{"name":"v5.1.5","sha":"6ccd2b0efdfb8e9ef41764ee60dfac9731338608","kind":"tag","published_at":"2018-02-14T19:51:37.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.5","html_url":"https://github.com/rails/rails/releases/tag/v5.1.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.5/manifests"},{"name":"v5.1.5.rc1","sha":"f8c00c130016b248d1d409f131356632dcc418c6","kind":"tag","published_at":"2018-02-01T18:57:49.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.5.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.1.5.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.5.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.5.rc1/manifests"},{"name":"v5.2.0.rc1","sha":"6a97a17f195a925959866edda2e951e20d7b1e76","kind":"tag","published_at":"2018-01-30T23:35:51.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.0.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.2.0.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.0.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.0.rc1/manifests"},{"name":"v5.2.0.beta2","sha":"3ae1e1f3c055fe5b89287fb8e0e5b31416383fb8","kind":"tag","published_at":"2017-11-28T05:01:52.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.0.beta2","html_url":"https://github.com/rails/rails/releases/tag/v5.2.0.beta2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.0.beta2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.0.beta2/manifests"},{"name":"v5.2.0.beta1","sha":"382e7d2e23ca8d0ad552dd759b9cbb88751a2fbc","kind":"tag","published_at":"2017-11-27T18:02:14.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.2.0.beta1","html_url":"https://github.com/rails/rails/releases/tag/v5.2.0.beta1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.0.beta1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.2.0.beta1/manifests"},{"name":"v4.2.10","sha":"6b9a1ac484a4eda1b43aba7ed864952aac743ab9","kind":"tag","published_at":"2017-09-27T14:26:03.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.10","html_url":"https://github.com/rails/rails/releases/tag/v4.2.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.10/manifests"},{"name":"v4.2.10.rc1","sha":"84e0a231e9100db8eff73a1b6b9ae82db2ade2d8","kind":"tag","published_at":"2017-09-20T19:39:05.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.10.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.10.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.10.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.10.rc1/manifests"},{"name":"v5.1.4","sha":"813af4655f9bf3c712cf50205eebd337070cee52","kind":"tag","published_at":"2017-09-08T00:49:09.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.4","html_url":"https://github.com/rails/rails/releases/tag/v5.1.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.4/manifests"},{"name":"v5.0.6","sha":"71f4758c50fca5220429365c23b014458e7341f6","kind":"tag","published_at":"2017-09-08T00:45:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.6","html_url":"https://github.com/rails/rails/releases/tag/v5.0.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.6/manifests"},{"name":"v5.1.4.rc1","sha":"df776aabc45b17dff2cf8edbdd3b1367a1c21167","kind":"tag","published_at":"2017-08-24T19:35:38.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.4.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.1.4.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.4.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.4.rc1/manifests"},{"name":"v5.0.6.rc1","sha":"656bd2de78f549b353d0c08b54d8a7445d47d2df","kind":"tag","published_at":"2017-08-24T19:09:48.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.6.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.0.6.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.6.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.6.rc1/manifests"},{"name":"v5.1.3","sha":"c338c66f84d847f3ddf06d3e064426c7991e553d","kind":"tag","published_at":"2017-08-03T19:13:19.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.3","html_url":"https://github.com/rails/rails/releases/tag/v5.1.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.3/manifests"},{"name":"v5.1.3.rc3","sha":"57ff548532b35330e822e27df629a952cf33bf37","kind":"tag","published_at":"2017-07-31T19:11:21.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.3.rc3","html_url":"https://github.com/rails/rails/releases/tag/v5.1.3.rc3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.3.rc3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.3.rc3/manifests"},{"name":"v5.0.5","sha":"450889d1464431a04ef5c8a0f6a45b877aafe506","kind":"tag","published_at":"2017-07-31T19:03:55.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.5","html_url":"https://github.com/rails/rails/releases/tag/v5.0.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.5/manifests"},{"name":"v5.0.5.rc2","sha":"a7ad9f18371ebc3a14616cbfe216e6d87cbcba6d","kind":"tag","published_at":"2017-07-25T20:24:22.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.5.rc2","html_url":"https://github.com/rails/rails/releases/tag/v5.0.5.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.5.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.5.rc2/manifests"},{"name":"v5.1.3.rc2","sha":"885b69237b40712ddda075796dc881d4da7af55e","kind":"tag","published_at":"2017-07-25T20:16:18.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.3.rc2","html_url":"https://github.com/rails/rails/releases/tag/v5.1.3.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.3.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.3.rc2/manifests"},{"name":"v5.0.5.rc1","sha":"872372aa93ae2abdcbb148d318c336563d0ba330","kind":"tag","published_at":"2017-07-19T19:42:16.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.5.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.0.5.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.5.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.5.rc1/manifests"},{"name":"v5.1.3.rc1","sha":"b6e24dbfc8d68c82dd62f2e99d668dca8df9b7f1","kind":"tag","published_at":"2017-07-19T19:29:13.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.3.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.1.3.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.3.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.3.rc1/manifests"},{"name":"v5.1.2","sha":"f8f3d709fc0df1fee5eadbaa5f518d2aef4a4f02","kind":"tag","published_at":"2017-06-26T21:49:48.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.2","html_url":"https://github.com/rails/rails/releases/tag/v5.1.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.2/manifests"},{"name":"v4.2.9","sha":"79c9f2e9422a23d144b71a18bd3058823b498116","kind":"tag","published_at":"2017-06-26T21:29:10.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.9","html_url":"https://github.com/rails/rails/releases/tag/v4.2.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.9/manifests"},{"name":"v5.1.2.rc1","sha":"1a32a58ea7ee61dab2c4628585a3ecb3e2d7320c","kind":"tag","published_at":"2017-06-20T17:02:04.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.2.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.1.2.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.2.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.2.rc1/manifests"},{"name":"v4.2.9.rc2","sha":"e13f5ba35b7105e4e66ff0b236018a6ad934da9f","kind":"tag","published_at":"2017-06-19T22:26:52.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.9.rc2","html_url":"https://github.com/rails/rails/releases/tag/v4.2.9.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.9.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.9.rc2/manifests"},{"name":"v5.0.4","sha":"c52823a0cf30a79e1abddc53aa8c6d0494ba5515","kind":"tag","published_at":"2017-06-19T21:57:19.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.4","html_url":"https://github.com/rails/rails/releases/tag/v5.0.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.4/manifests"},{"name":"v5.0.4.rc1","sha":"a2e6b307ba632082a9fb0d22716e7fa96da6543d","kind":"tag","published_at":"2017-06-14T20:47:44.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.4.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.0.4.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.4.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.4.rc1/manifests"},{"name":"v4.2.9.rc1","sha":"3c184ed4834a85b1eb197b6c530a5af13803f44f","kind":"tag","published_at":"2017-06-13T18:49:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.9.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.9.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.9.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.9.rc1/manifests"},{"name":"v5.1.1","sha":"c48b21685f4fec1c7a1c9b4e0dde4da89140ee22","kind":"tag","published_at":"2017-05-12T19:58:36.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.1","html_url":"https://github.com/rails/rails/releases/tag/v5.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.1/manifests"},{"name":"v5.0.3","sha":"52780d5d66515b3d9e5d10d2975deda3699ffd88","kind":"tag","published_at":"2017-05-12T19:53:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.3","html_url":"https://github.com/rails/rails/releases/tag/v5.0.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.3/manifests"},{"name":"v5.1.0","sha":"ce93740a5e4437dfc1cf9b0b13da1bad06a2a598","kind":"tag","published_at":"2017-04-27T20:59:06.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.0","html_url":"https://github.com/rails/rails/releases/tag/v5.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.0/manifests"},{"name":"v5.1.0.rc2","sha":"2745ab856dbd0c0b846a4aa5d15d046e19466c6f","kind":"tag","published_at":"2017-04-21T01:28:37.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.0.rc2","html_url":"https://github.com/rails/rails/releases/tag/v5.1.0.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.0.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.0.rc2/manifests"},{"name":"v5.1.0.rc1","sha":"d3b798b0879c70f3989efd322323a057a8507c99","kind":"tag","published_at":"2017-03-20T18:56:22.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.0.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.1.0.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.0.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.0.rc1/manifests"},{"name":"v5.0.2","sha":"38ed1f4be114b77bd2004792b9583552a30921a2","kind":"tag","published_at":"2017-03-01T23:12:16.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.2","html_url":"https://github.com/rails/rails/releases/tag/v5.0.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.2/manifests"},{"name":"v5.0.2.rc1","sha":"2c858521b8e3a4d00b703a5ec08adbfe6141497c","kind":"tag","published_at":"2017-02-25T00:54:16.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.2.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.0.2.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.2.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.2.rc1/manifests"},{"name":"v5.1.0.beta1","sha":"f4acdd83ff76e2338895073ed914c525e7bb33b4","kind":"tag","published_at":"2017-02-23T19:54:08.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.1.0.beta1","html_url":"https://github.com/rails/rails/releases/tag/v5.1.0.beta1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.0.beta1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.1.0.beta1/manifests"},{"name":"v4.2.8","sha":"8ee716182df410052707c3d1eabf8bfd8e0e1c5e","kind":"tag","published_at":"2017-02-21T16:07:29.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.8","html_url":"https://github.com/rails/rails/releases/tag/v4.2.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.8/manifests"},{"name":"v4.2.8.rc1","sha":"8dd608b7b7b60f2fa8c5a3aaa0c8ab465ee50456","kind":"tag","published_at":"2017-02-10T02:43:00.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.8.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.8.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.8.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.8.rc1/manifests"},{"name":"v5.0.1","sha":"912ae0b34bf541f18d051c8a274a54aef91a5e04","kind":"tag","published_at":"2016-12-21T00:05:21.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.1","html_url":"https://github.com/rails/rails/releases/tag/v5.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.1/manifests"},{"name":"v5.0.1.rc2","sha":"0ef292cc8b1d66cbc85e271029402e72dfad66b5","kind":"tag","published_at":"2016-12-09T19:07:41.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.1.rc2","html_url":"https://github.com/rails/rails/releases/tag/v5.0.1.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.1.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.1.rc2/manifests"},{"name":"v5.0.1.rc1","sha":"82be3fe096231108e290433b5fe803451a37a160","kind":"tag","published_at":"2016-11-30T19:51:00.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.1.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.0.1.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.1.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.1.rc1/manifests"},{"name":"v3.2.22.5","sha":"e4b0a5f66ebd2b7f29e4f868d2f6b2504df091e6","kind":"tag","published_at":"2016-09-14T21:16:59.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.22.5","html_url":"https://github.com/rails/rails/releases/tag/v3.2.22.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.22.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.22.5/manifests"},{"name":"v3.2.22.4","sha":"c4e01690620c319ac3f04d213003f8001f33d14b","kind":"commit","published_at":"2016-08-11T19:17:30.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.22.4","html_url":"https://github.com/rails/rails/releases/tag/v3.2.22.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.22.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.22.4/manifests"},{"name":"v5.0.0.1","sha":"cdb307294a43eec489f0ea6ffdc6f0a07b16ff5c","kind":"commit","published_at":"2016-08-10T22:41:59.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.0.1","html_url":"https://github.com/rails/rails/releases/tag/v5.0.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.1/manifests"},{"name":"v4.2.7.1","sha":"26dadfb187b1cf13dc2f783198b91b32d141c3ab","kind":"commit","published_at":"2016-08-10T22:25:38.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.7.1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.7.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.7.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.7.1/manifests"},{"name":"v3.2.22.3","sha":"ebc3639139d21eeb8452edb28ce62530cc075198","kind":"commit","published_at":"2016-08-10T22:23:08.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.22.3","html_url":"https://github.com/rails/rails/releases/tag/v3.2.22.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.22.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.22.3/manifests"},{"name":"v4.2.7","sha":"7f2327f65b4117384bec3547ccd5a99028df57e0","kind":"tag","published_at":"2016-07-13T02:54:02.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.7","html_url":"https://github.com/rails/rails/releases/tag/v4.2.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.7/manifests"},{"name":"v4.1.16","sha":"d8803304051639dfcb87d61f58a1960b1005de87","kind":"tag","published_at":"2016-07-12T22:19:08.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.16","html_url":"https://github.com/rails/rails/releases/tag/v4.1.16","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.16","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.16/manifests"},{"name":"v4.1.16.rc1","sha":"871d63e2c7632a59989ffce0137b482ab5d94fe5","kind":"tag","published_at":"2016-07-02T02:13:26.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.16.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.1.16.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.16.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.16.rc1/manifests"},{"name":"v4.2.7.rc1","sha":"5a85938418285ab81e3db52ea102d19f95ed7a94","kind":"tag","published_at":"2016-07-01T00:30:31.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.7.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.7.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.7.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.7.rc1/manifests"},{"name":"v5.0.0","sha":"2efddadd6cba4e2129acedf1d402d11abcc03996","kind":"tag","published_at":"2016-06-30T21:20:36.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.0","html_url":"https://github.com/rails/rails/releases/tag/v5.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0/manifests"},{"name":"v5.0.0.rc2","sha":"50e0a6b209d1afe6c2bc3047208e14f13ac3b382","kind":"tag","published_at":"2016-06-22T20:01:25.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.0.rc2","html_url":"https://github.com/rails/rails/releases/tag/v5.0.0.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.rc2/manifests"},{"name":"v5.0.0.rc1","sha":"fbdcf5221ad7ea3d40ad09651962fc85d101dd67","kind":"tag","published_at":"2016-05-06T21:55:10.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.0.rc1","html_url":"https://github.com/rails/rails/releases/tag/v5.0.0.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.rc1/manifests"},{"name":"v5.0.0.beta4","sha":"f7a986012a6099445e20b6414d253ee0fc039118","kind":"tag","published_at":"2016-04-27T20:53:47.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.0.beta4","html_url":"https://github.com/rails/rails/releases/tag/v5.0.0.beta4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.beta4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.beta4/manifests"},{"name":"v4.1.15","sha":"d5c4b82b64f3cdd511eb79c4d43d6ab1548c0dee","kind":"tag","published_at":"2016-03-07T22:35:41.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.15","html_url":"https://github.com/rails/rails/releases/tag/v4.1.15","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.15","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.15/manifests"},{"name":"v4.2.6","sha":"a0e0b67b5afbb02d9ea9e48d71ae80b3efb8c0ac","kind":"tag","published_at":"2016-03-07T22:31:38.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.6","html_url":"https://github.com/rails/rails/releases/tag/v4.2.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.6/manifests"},{"name":"v4.1.15.rc1","sha":"06d2bfd42a08ebdab9b0ad94e690841a80c93830","kind":"tag","published_at":"2016-03-01T18:42:04.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.15.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.1.15.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.15.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.15.rc1/manifests"},{"name":"v4.2.6.rc1","sha":"ef8ace7dc97fa810bb59f1aac386b71db239c3ec","kind":"tag","published_at":"2016-03-01T18:36:27.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.6.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.6.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.6.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.6.rc1/manifests"},{"name":"v4.1.14.2","sha":"4cffd33a96da706fb36ab8dbf37732749ca27cfc","kind":"tag","published_at":"2016-02-29T19:17:41.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.14.2","html_url":"https://github.com/rails/rails/releases/tag/v4.1.14.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.14.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.14.2/manifests"},{"name":"v4.2.5.2","sha":"97ad61e9583e2bf5c57d6f75008cadc80ba9b910","kind":"tag","published_at":"2016-02-29T19:15:29.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.5.2","html_url":"https://github.com/rails/rails/releases/tag/v4.2.5.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.5.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.5.2/manifests"},{"name":"v3.2.22.2","sha":"1ac2ddbc433ec96dd06affb6f10f33d9eb12d52a","kind":"commit","published_at":"2016-02-29T18:39:32.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.22.2","html_url":"https://github.com/rails/rails/releases/tag/v3.2.22.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.22.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.22.2/manifests"},{"name":"v5.0.0.beta3","sha":"dbfa8fdfc29eb913fec6113a74394167aa13cdd6","kind":"tag","published_at":"2016-02-24T16:15:04.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.0.beta3","html_url":"https://github.com/rails/rails/releases/tag/v5.0.0.beta3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.beta3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.beta3/manifests"},{"name":"v5.0.0.beta2","sha":"49f6ce63f33b7817bcbd0cdf5f8881b63f40d9c9","kind":"tag","published_at":"2016-02-01T21:41:06.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.0.beta2","html_url":"https://github.com/rails/rails/releases/tag/v5.0.0.beta2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.beta2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.beta2/manifests"},{"name":"v3.2.22.1","sha":"8d86637fb64ae8ae81ab71a286ddba02cc3144a4","kind":"tag","published_at":"2016-01-25T18:27:28.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.22.1","html_url":"https://github.com/rails/rails/releases/tag/v3.2.22.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.22.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.22.1/manifests"},{"name":"v4.1.14.1","sha":"31ab3aa0e881acfd1475abae602455905a4cadf1","kind":"tag","published_at":"2016-01-25T18:26:23.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.14.1","html_url":"https://github.com/rails/rails/releases/tag/v4.1.14.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.14.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.14.1/manifests"},{"name":"v4.2.5.1","sha":"bb382b7aee116446518ca4ed1c6472d6b58f42b5","kind":"tag","published_at":"2016-01-25T18:25:38.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.5.1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.5.1/manifests"},{"name":"v5.0.0.beta1.1","sha":"908c011395cc9e3ea1bb195f9d1bd30a9d9df98f","kind":"tag","published_at":"2016-01-25T18:24:28.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.0.beta1.1","html_url":"https://github.com/rails/rails/releases/tag/v5.0.0.beta1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.beta1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.beta1.1/manifests"},{"name":"v5.0.0.beta1","sha":"099ddfdefd44fda11d0f6a72f934f8a0ee83141b","kind":"tag","published_at":"2015-12-18T21:15:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v5.0.0.beta1","html_url":"https://github.com/rails/rails/releases/tag/v5.0.0.beta1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.beta1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v5.0.0.beta1/manifests"},{"name":"v4.1.14","sha":"e694ac5fbc30bfe11c5b952084eab178bd649857","kind":"tag","published_at":"2015-11-12T17:19:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.14","html_url":"https://github.com/rails/rails/releases/tag/v4.1.14","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.14","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.14/manifests"},{"name":"v4.2.5","sha":"73521d586981279a99d3ba038d62e2414125df7a","kind":"tag","published_at":"2015-11-12T17:02:49.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.5","html_url":"https://github.com/rails/rails/releases/tag/v4.2.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.5/manifests"},{"name":"v4.2.5.rc2","sha":"5bda404fe1d7b5772560fdec99818b239d4b57aa","kind":"tag","published_at":"2015-11-05T03:00:30.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.5.rc2","html_url":"https://github.com/rails/rails/releases/tag/v4.2.5.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.5.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.5.rc2/manifests"},{"name":"v4.1.14.rc2","sha":"96c4b1a1311b0f9e099db2819f08a2277377c552","kind":"tag","published_at":"2015-11-05T02:53:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.14.rc2","html_url":"https://github.com/rails/rails/releases/tag/v4.1.14.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.14.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.14.rc2/manifests"},{"name":"v4.2.5.rc1","sha":"a37d0e57571f37e836638934a4e325c3accb550b","kind":"tag","published_at":"2015-10-30T20:46:22.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.5.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.5.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.5.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.5.rc1/manifests"},{"name":"v4.1.14.rc1","sha":"23df8809089cf3e5646829095ab0433f93f3e736","kind":"tag","published_at":"2015-10-30T20:43:36.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.14.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.1.14.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.14.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.14.rc1/manifests"},{"name":"v3.2.21.github15","sha":"cd41d7f7ed7877f54f9e63a1bdb4f3dbc54c39d8","kind":"tag","published_at":"2015-10-23T19:40:11.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.21.github15","html_url":"https://github.com/rails/rails/releases/tag/v3.2.21.github15","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.21.github15","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.21.github15/manifests"},{"name":"v3.2.21.github7","sha":"1cd10a985883a9f67f283f101a0543bc177e2543","kind":"tag","published_at":"2015-10-23T16:10:19.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.21.github7","html_url":"https://github.com/rails/rails/releases/tag/v3.2.21.github7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.21.github7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.21.github7/manifests"},{"name":"v4.2.4","sha":"dac822ef58ae05f0e805222fa8744116080165ac","kind":"tag","published_at":"2015-08-24T18:23:59.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.4","html_url":"https://github.com/rails/rails/releases/tag/v4.2.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.4/manifests"},{"name":"v4.1.13","sha":"10ac0155b19ea5b457417244f4f327404b997935","kind":"tag","published_at":"2015-08-24T17:59:15.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.13","html_url":"https://github.com/rails/rails/releases/tag/v4.1.13","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.13","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.13/manifests"},{"name":"v4.2.4.rc1","sha":"b5cb514c23f64ffd6db05535730df2b4f71f0c61","kind":"tag","published_at":"2015-08-14T15:18:59.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.4.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.4.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.4.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.4.rc1/manifests"},{"name":"v4.1.13.rc1","sha":"099a9181fcf350b05bc33b61bac288277b994ad0","kind":"tag","published_at":"2015-08-14T15:09:44.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.13.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.1.13.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.13.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.13.rc1/manifests"},{"name":"v4.2.3","sha":"6ac6daa43e1c5b7388f8fd69f8117eb7668887c7","kind":"tag","published_at":"2015-06-25T21:28:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.3","html_url":"https://github.com/rails/rails/releases/tag/v4.2.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.3/manifests"},{"name":"v4.1.12","sha":"adfda00f06248435e0aa2fc6545b1310644d91b6","kind":"tag","published_at":"2015-06-25T21:24:14.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.12","html_url":"https://github.com/rails/rails/releases/tag/v4.1.12","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.12","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.12/manifests"},{"name":"v3.2.21.github6","sha":"a31c67b20ca58d5702c21284eab55c48b13e5fff","kind":"commit","published_at":"2015-06-25T17:34:47.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.21.github6","html_url":"https://github.com/rails/rails/releases/tag/v3.2.21.github6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.21.github6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.21.github6/manifests"},{"name":"v4.2.3.rc1","sha":"496bbfe0897b06c8af1404b59fca7869a27c870d","kind":"tag","published_at":"2015-06-22T14:21:49.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.3.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.3.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.3.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.3.rc1/manifests"},{"name":"v4.1.12.rc1","sha":"68d324549668169a41bb30f98afdd01682bc5dec","kind":"tag","published_at":"2015-06-22T14:03:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.12.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.1.12.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.12.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.12.rc1/manifests"},{"name":"v4.2.2","sha":"5d101c33fa19deca00e251152d25090cc152998f","kind":"tag","published_at":"2015-06-16T18:00:36.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.2","html_url":"https://github.com/rails/rails/releases/tag/v4.2.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.2/manifests"},{"name":"v4.1.11","sha":"260da06e6b63f4644fe67e67fbd486585f9d2724","kind":"tag","published_at":"2015-06-16T17:57:55.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.11","html_url":"https://github.com/rails/rails/releases/tag/v4.1.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.11/manifests"},{"name":"v3.2.22","sha":"9dc8ddc39424818a3d713a353353ac20cb431218","kind":"commit","published_at":"2015-06-16T16:12:47.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.22","html_url":"https://github.com/rails/rails/releases/tag/v3.2.22","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.22","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.22/manifests"},{"name":"v3.2.21.github5","sha":"ef93ff18cee87c505efea9f59617d0824c8f31d4","kind":"commit","published_at":"2015-06-10T01:50:16.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.21.github5","html_url":"https://github.com/rails/rails/releases/tag/v3.2.21.github5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.21.github5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.21.github5/manifests"},{"name":"v4.0.13.github1","sha":"754cc500ade37d5e24a98292db99713704ac699f","kind":"commit","published_at":"2015-05-27T04:03:04.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.13.github1","html_url":"https://github.com/rails/rails/releases/tag/v4.0.13.github1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.13.github1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.13.github1/manifests"},{"name":"v4.0.13.github0","sha":"d85ceb59b52ba424c6ce664f52714c5e222ab06b","kind":"commit","published_at":"2015-05-15T06:35:11.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.13.github0","html_url":"https://github.com/rails/rails/releases/tag/v4.0.13.github0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.13.github0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.13.github0/manifests"},{"name":"v4.1.10","sha":"5496ec8aac95f728465f218d12733cedef84232a","kind":"tag","published_at":"2015-03-19T16:48:31.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.10","html_url":"https://github.com/rails/rails/releases/tag/v4.1.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.10/manifests"},{"name":"v4.2.1","sha":"f1ccb2e6ecb5486179ee6b20438d562ac45de4f4","kind":"tag","published_at":"2015-03-19T16:39:37.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.1/manifests"},{"name":"v4.1.10.rc4","sha":"410f7d29e998befb27ab0b3dee3bbe83944bdc04","kind":"tag","published_at":"2015-03-12T21:31:09.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.10.rc4","html_url":"https://github.com/rails/rails/releases/tag/v4.1.10.rc4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.10.rc4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.10.rc4/manifests"},{"name":"v4.2.1.rc4","sha":"9bd0ca4501879709fcc84a6b206835fe4ead751f","kind":"tag","published_at":"2015-03-12T21:24:25.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.1.rc4","html_url":"https://github.com/rails/rails/releases/tag/v4.2.1.rc4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.1.rc4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.1.rc4/manifests"},{"name":"v4.1.10.rc3","sha":"77e324b59ec0e0b09f5c26b035add9de40482470","kind":"tag","published_at":"2015-03-02T21:38:18.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.10.rc3","html_url":"https://github.com/rails/rails/releases/tag/v4.1.10.rc3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.10.rc3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.10.rc3/manifests"},{"name":"v4.2.1.rc3","sha":"4e2754b5c73e2fd6a8f997beafcbeff888410581","kind":"tag","published_at":"2015-03-02T21:34:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.1.rc3","html_url":"https://github.com/rails/rails/releases/tag/v4.2.1.rc3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.1.rc3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.1.rc3/manifests"},{"name":"v4.1.10.rc2","sha":"08217de91143353f263ede79bcc01d529f644c30","kind":"tag","published_at":"2015-02-25T22:20:56.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.10.rc2","html_url":"https://github.com/rails/rails/releases/tag/v4.1.10.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.10.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.10.rc2/manifests"},{"name":"v4.2.1.rc2","sha":"d48bb9cb018a83a88dd04c9a4cbdee1f5b7ab885","kind":"tag","published_at":"2015-02-25T22:18:00.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.1.rc2","html_url":"https://github.com/rails/rails/releases/tag/v4.2.1.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.1.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.1.rc2/manifests"},{"name":"v4.1.10.rc1","sha":"a698862cbce7f12475d3fefdb7268022b3bd9af1","kind":"tag","published_at":"2015-02-20T22:23:26.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.10.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.1.10.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.10.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.10.rc1/manifests"},{"name":"v4.2.1.rc1","sha":"59bb184078cc23fbbb3a28dc34a51326da87014a","kind":"tag","published_at":"2015-02-20T21:40:02.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.1.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.1.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.1.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.1.rc1/manifests"},{"name":"v4.1.9","sha":"cca85ba699242c3266c5132dd601fdd8c5c5bb16","kind":"tag","published_at":"2015-01-06T20:02:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.9","html_url":"https://github.com/rails/rails/releases/tag/v4.1.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.9/manifests"},{"name":"v4.0.13","sha":"3c194d4a8d585547d1fe45f596d2800c155b1a4c","kind":"commit","published_at":"2015-01-06T19:14:21.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.13","html_url":"https://github.com/rails/rails/releases/tag/v4.0.13","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.13","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.13/manifests"},{"name":"v4.1.9.rc1","sha":"116695b25890e2587923d4a237ce4107e3adb145","kind":"tag","published_at":"2015-01-02T01:09:49.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.9.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.1.9.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.9.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.9.rc1/manifests"},{"name":"v4.0.13.rc1","sha":"e63670a414828148b688eb0efb1e8e626798e7d9","kind":"commit","published_at":"2015-01-02T00:53:00.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.13.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.0.13.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.13.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.13.rc1/manifests"},{"name":"v4.2.0","sha":"7847a19f476fb9bee287681586d872ea43785e53","kind":"tag","published_at":"2014-12-20T00:14:50.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.0","html_url":"https://github.com/rails/rails/releases/tag/v4.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0/manifests"},{"name":"v4.2.0.rc3","sha":"203000dd4683e2ce4bdeaa3fe379b811ba8e5401","kind":"tag","published_at":"2014-12-13T02:57:58.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.0.rc3","html_url":"https://github.com/rails/rails/releases/tag/v4.2.0.rc3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0.rc3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0.rc3/manifests"},{"name":"v4.2.0.rc2","sha":"4c67c1f551f182aa2730a8a8cfa80fcf02622a92","kind":"tag","published_at":"2014-12-05T23:19:14.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.0.rc2","html_url":"https://github.com/rails/rails/releases/tag/v4.2.0.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0.rc2/manifests"},{"name":"v4.2.0.rc1","sha":"62264419e95a75da7762caf7d566982d24227794","kind":"tag","published_at":"2014-11-28T17:51:47.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.0.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.0.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0.rc1/manifests"},{"name":"v4.1.7.1","sha":"7b8e4f82717fcb944eb7e712050b223bd47b544e","kind":"tag","published_at":"2014-11-19T19:10:49.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.7.1","html_url":"https://github.com/rails/rails/releases/tag/v4.1.7.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.7.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.7.1/manifests"},{"name":"v4.0.11.1","sha":"a1ec4da291dd3e0705be536e71a963d8d356ff24","kind":"commit","published_at":"2014-11-19T17:43:33.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.11.1","html_url":"https://github.com/rails/rails/releases/tag/v4.0.11.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.11.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.11.1/manifests"},{"name":"v4.1.8","sha":"b32babc4b0ff8f830933f25375ce9dbfbb356601","kind":"tag","published_at":"2014-11-17T15:50:58.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.8","html_url":"https://github.com/rails/rails/releases/tag/v4.1.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.8/manifests"},{"name":"v4.0.12","sha":"ee20103f1b2fa2ea66834682c7173bb23ddd83e0","kind":"tag","published_at":"2014-11-17T15:49:39.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.12","html_url":"https://github.com/rails/rails/releases/tag/v4.0.12","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.12","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.12/manifests"},{"name":"v3.2.21","sha":"ba886f73a2b4a06f3400f0698290c54566639b6a","kind":"tag","published_at":"2014-11-17T15:48:35.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.21","html_url":"https://github.com/rails/rails/releases/tag/v3.2.21","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.21","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.21/manifests"},{"name":"v3.2.19.github9","sha":"4fc14b1f718f26cae982ba97be3341fa8ddf3f7f","kind":"commit","published_at":"2014-11-10T04:30:19.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.19.github9","html_url":"https://github.com/rails/rails/releases/tag/v3.2.19.github9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github9/manifests"},{"name":"v4.2.0.beta4","sha":"4daebedcc41e35079c47d5f130f5c7ad12db8bbb","kind":"commit","published_at":"2014-10-30T21:12:24.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.0.beta4","html_url":"https://github.com/rails/rails/releases/tag/v4.2.0.beta4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0.beta4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0.beta4/manifests"},{"name":"v3.2.20","sha":"346acea281f048c853a6318429daac8d1a2e2d68","kind":"tag","published_at":"2014-10-29T22:40:00.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.20","html_url":"https://github.com/rails/rails/releases/tag/v3.2.20","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.20","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.20/manifests"},{"name":"v4.0.11","sha":"8cf8a08c7ef417b5183928f1c3c6d785c115bb48","kind":"tag","published_at":"2014-10-29T22:39:14.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.11","html_url":"https://github.com/rails/rails/releases/tag/v4.0.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.11/manifests"},{"name":"v4.1.7","sha":"6fe2572af11dc42f33d4f0e33a22391a85f2a1d2","kind":"tag","published_at":"2014-10-29T22:38:47.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.7","html_url":"https://github.com/rails/rails/releases/tag/v4.1.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.7/manifests"},{"name":"v4.2.0.beta3","sha":"331d7c6f9e6a481a23e5f120d95f7c0aabb6c60d","kind":"tag","published_at":"2014-10-29T22:38:15.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.0.beta3","html_url":"https://github.com/rails/rails/releases/tag/v4.2.0.beta3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0.beta3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0.beta3/manifests"},{"name":"v3.2.19.github8","sha":"726e9963067c536c15e7994f0db772a80d4a963a","kind":"commit","published_at":"2014-10-09T06:42:43.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.19.github8","html_url":"https://github.com/rails/rails/releases/tag/v3.2.19.github8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github8/manifests"},{"name":"v3.2.19.github7","sha":"b6f150c40c3fdda7b198bd8779768344fa3eb5fa","kind":"commit","published_at":"2014-10-07T05:41:52.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.19.github7","html_url":"https://github.com/rails/rails/releases/tag/v3.2.19.github7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github7/manifests"},{"name":"v3.2.19.github6","sha":"0a3c7ba903767d07b3cf1cb95da6922a48d25c81","kind":"commit","published_at":"2014-10-07T05:29:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.19.github6","html_url":"https://github.com/rails/rails/releases/tag/v3.2.19.github6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github6/manifests"},{"name":"v4.2.0.beta2","sha":"21bc83306b76c456e83f8824cb5822f9f1195d9c","kind":"tag","published_at":"2014-09-26T17:39:33.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.0.beta2","html_url":"https://github.com/rails/rails/releases/tag/v4.2.0.beta2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0.beta2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0.beta2/manifests"},{"name":"v3.2.19.github5","sha":"56d2614309a5c84e4cf9670a4a7a26926ebb618a","kind":"commit","published_at":"2014-09-26T06:58:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.19.github5","html_url":"https://github.com/rails/rails/releases/tag/v3.2.19.github5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github5/manifests"},{"name":"v3.2.19.github4","sha":"90ded51cc137ab136b5a4452eced5c944124adc5","kind":"commit","published_at":"2014-09-26T05:42:58.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.19.github4","html_url":"https://github.com/rails/rails/releases/tag/v3.2.19.github4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github4/manifests"},{"name":"v3.2.19.github3","sha":"7ed2b48747d57d7051f0f3c761afc04cd3d7d079","kind":"commit","published_at":"2014-09-19T08:26:43.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.19.github3","html_url":"https://github.com/rails/rails/releases/tag/v3.2.19.github3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github3/manifests"},{"name":"v3.2.19.github2","sha":"923ee6adf84fe278e520c48f0ff95875a2fbf6a2","kind":"commit","published_at":"2014-09-18T08:05:34.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.19.github2","html_url":"https://github.com/rails/rails/releases/tag/v3.2.19.github2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19.github2/manifests"},{"name":"3.2.19.github1","sha":"e27d15746c9b82e921b3dbbdcac57fb5ed71cc75","kind":"commit","published_at":"2014-09-16T01:50:45.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/3.2.19.github1","html_url":"https://github.com/rails/rails/releases/tag/3.2.19.github1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/3.2.19.github1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/3.2.19.github1/manifests"},{"name":"v4.0.10","sha":"5aef91ea98f5df16ab6b9db14229dfba7dee1653","kind":"commit","published_at":"2014-09-11T17:31:56.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.10","html_url":"https://github.com/rails/rails/releases/tag/v4.0.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.10/manifests"},{"name":"v4.1.6","sha":"24027162dbe226acfbf3a91872237a9557764d72","kind":"tag","published_at":"2014-09-11T17:24:29.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.6","html_url":"https://github.com/rails/rails/releases/tag/v4.1.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.6/manifests"},{"name":"v4.1.6.rc2","sha":"57d65e3b286dcddbc4f07db1c618da42f31d1b84","kind":"tag","published_at":"2014-09-08T18:10:45.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.6.rc2","html_url":"https://github.com/rails/rails/releases/tag/v4.1.6.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.6.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.6.rc2/manifests"},{"name":"v4.0.10.rc2","sha":"91d4433d18b646a8ceb02ea13939ede4710b89ed","kind":"commit","published_at":"2014-09-08T17:53:15.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.10.rc2","html_url":"https://github.com/rails/rails/releases/tag/v4.0.10.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.10.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.10.rc2/manifests"},{"name":"v4.2.0.beta1","sha":"6a23bf0f4c33151e0cec0648e271dc6f5ab3f686","kind":"tag","published_at":"2014-08-20T02:33:35.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.2.0.beta1","html_url":"https://github.com/rails/rails/releases/tag/v4.2.0.beta1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0.beta1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.2.0.beta1/manifests"},{"name":"v4.1.6.rc1","sha":"c5310bed8642656ade02d97c6fae651b54654a6b","kind":"tag","published_at":"2014-08-19T20:51:27.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.6.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.1.6.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.6.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.6.rc1/manifests"},{"name":"v4.0.10.rc1","sha":"77b60a2c43c1188d4d2d2e52fa5fd59b50e92e1b","kind":"commit","published_at":"2014-08-19T17:41:00.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.10.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.0.10.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.10.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.10.rc1/manifests"},{"name":"3.1.12.github1","sha":"808b03caeaceb09ab5d31465852182f03f658ee8","kind":"commit","published_at":"2014-08-18T17:40:42.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/3.1.12.github1","html_url":"https://github.com/rails/rails/releases/tag/3.1.12.github1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/3.1.12.github1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/3.1.12.github1/manifests"},{"name":"v4.1.5","sha":"9bb76261d39b59e7e229c80d052ca91a65ff17be","kind":"tag","published_at":"2014-08-18T16:58:52.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.5","html_url":"https://github.com/rails/rails/releases/tag/v4.1.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.5/manifests"},{"name":"v4.0.9","sha":"b792566f3ebdd0c7dc688db7a4076d1c2c74f69f","kind":"commit","published_at":"2014-08-18T16:46:51.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.9","html_url":"https://github.com/rails/rails/releases/tag/v4.0.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.9/manifests"},{"name":"v4.1.4","sha":"7c4bfe1c954ef90acf4f790e46fcbbd07d85af3e","kind":"tag","published_at":"2014-07-02T19:52:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.4","html_url":"https://github.com/rails/rails/releases/tag/v4.1.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.4/manifests"},{"name":"v4.0.8","sha":"31e922996b97b7c223ebc1e26d1a1a2764bb0a62","kind":"commit","published_at":"2014-07-02T18:28:16.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.8","html_url":"https://github.com/rails/rails/releases/tag/v4.0.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.8/manifests"},{"name":"v4.1.3","sha":"dfa7a76de8c1f7af0ef28119f9ac3072057c665e","kind":"tag","published_at":"2014-07-02T17:04:52.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.3","html_url":"https://github.com/rails/rails/releases/tag/v4.1.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.3/manifests"},{"name":"v4.0.7","sha":"f17b04a23e7c597876cb2320ef9d525537e0b0a8","kind":"commit","published_at":"2014-07-02T15:58:10.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.7","html_url":"https://github.com/rails/rails/releases/tag/v4.0.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.7/manifests"},{"name":"v3.2.19","sha":"53c845cb185036c71cc9793c4eb6bf4dc989307b","kind":"commit","published_at":"2014-07-02T15:55:09.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.19","html_url":"https://github.com/rails/rails/releases/tag/v3.2.19","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.19/manifests"},{"name":"v4.1.2","sha":"0690f6f3a47b8fddf60ac57da006f0b8bfa22e32","kind":"tag","published_at":"2014-06-26T14:48:31.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.2","html_url":"https://github.com/rails/rails/releases/tag/v4.1.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.2/manifests"},{"name":"v4.0.6","sha":"276b72c60342eb716e7457b447bce1e352780e92","kind":"commit","published_at":"2014-06-26T13:37:37.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.6","html_url":"https://github.com/rails/rails/releases/tag/v4.0.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.6/manifests"},{"name":"3.0.20.github4","sha":"d5eff4fba90e7cead50c196d0760aaab1283b440","kind":"commit","published_at":"2014-06-23T22:16:20.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/3.0.20.github4","html_url":"https://github.com/rails/rails/releases/tag/3.0.20.github4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/3.0.20.github4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/3.0.20.github4/manifests"},{"name":"v4.1.2.rc3","sha":"6ed0f63398ba7268c541f9b959f7a56b68584301","kind":"tag","published_at":"2014-06-23T17:26:50.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.2.rc3","html_url":"https://github.com/rails/rails/releases/tag/v4.1.2.rc3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.2.rc3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.2.rc3/manifests"},{"name":"v4.0.6.rc3","sha":"9649cb4b51c7f0194e02252e5b88a362a70da97f","kind":"commit","published_at":"2014-06-23T17:21:34.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.6.rc3","html_url":"https://github.com/rails/rails/releases/tag/v4.0.6.rc3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.6.rc3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.6.rc3/manifests"},{"name":"3.0.20.github3","sha":"b46168e048931d7d2fcc1a40bc99e1ffd113ad82","kind":"commit","published_at":"2014-06-19T20:31:07.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/3.0.20.github3","html_url":"https://github.com/rails/rails/releases/tag/3.0.20.github3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/3.0.20.github3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/3.0.20.github3/manifests"},{"name":"3.0.20.github2","sha":"a3e2e39c9ffe6c8906e2a7a214cd8e85e36f6cf3","kind":"commit","published_at":"2014-06-17T06:03:48.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/3.0.20.github2","html_url":"https://github.com/rails/rails/releases/tag/3.0.20.github2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/3.0.20.github2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/3.0.20.github2/manifests"},{"name":"v4.1.2.rc2","sha":"5006b63ae3609aee86c4dae603d8dfe80230b1b1","kind":"tag","published_at":"2014-06-16T16:28:54.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.2.rc2","html_url":"https://github.com/rails/rails/releases/tag/v4.1.2.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.2.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.2.rc2/manifests"},{"name":"v4.0.6.rc2","sha":"13c6bac0b73d4bba9cf0714b65cd1e339ee481b2","kind":"commit","published_at":"2014-06-16T16:14:03.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.6.rc2","html_url":"https://github.com/rails/rails/releases/tag/v4.0.6.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.6.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.6.rc2/manifests"},{"name":"3.0.20.github1","sha":"b3037287784eddd7a9d311b82cbfae259de8f96d","kind":"commit","published_at":"2014-06-16T03:04:14.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/3.0.20.github1","html_url":"https://github.com/rails/rails/releases/tag/3.0.20.github1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/3.0.20.github1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/3.0.20.github1/manifests"},{"name":"github49","sha":"51d573aabebcf56c17fe755a160f9c4246edd64a","kind":"commit","published_at":"2014-06-13T05:49:17.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github49","html_url":"https://github.com/rails/rails/releases/tag/github49","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github49","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github49/manifests"},{"name":"v4.1.2.rc1","sha":"fcb1afc245455130ca6d42db8760cc7b43b99d18","kind":"tag","published_at":"2014-05-27T16:11:02.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.2.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.1.2.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.2.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.2.rc1/manifests"},{"name":"v4.0.6.rc1","sha":"100682883ba38cd8420350ef21d47f26e1b9c6c5","kind":"commit","published_at":"2014-05-27T15:58:48.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.6.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.0.6.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.6.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.6.rc1/manifests"},{"name":"github45","sha":"730e6a273c0f95a39ea9354a733fc6ec62cf11db","kind":"commit","published_at":"2014-05-16T05:06:44.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github45","html_url":"https://github.com/rails/rails/releases/tag/github45","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github45","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github45/manifests"},{"name":"github44","sha":"7403667b890c3c7a98041ef48a13b46f3c919a89","kind":"commit","published_at":"2014-05-09T14:52:08.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github44","html_url":"https://github.com/rails/rails/releases/tag/github44","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github44","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github44/manifests"},{"name":"v4.1.1","sha":"254e8e2c97b5df1dafd54cf8f305f7bad05f4a63","kind":"tag","published_at":"2014-05-06T16:17:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.1","html_url":"https://github.com/rails/rails/releases/tag/v4.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.1/manifests"},{"name":"v3.2.18","sha":"50d6b4549d56ac3a82f2096bd479a7b2305b0bf3","kind":"commit","published_at":"2014-05-06T16:03:21.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.18","html_url":"https://github.com/rails/rails/releases/tag/v3.2.18","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.18","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.18/manifests"},{"name":"v4.0.5","sha":"15ac2f0b6b2702f180707f480eb966a4e3b96e25","kind":"commit","published_at":"2014-05-06T14:32:24.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.5","html_url":"https://github.com/rails/rails/releases/tag/v4.0.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.5/manifests"},{"name":"v4.1.0","sha":"4e168015cef61207981d2427d4dbb6cf15f71182","kind":"tag","published_at":"2014-04-08T19:19:14.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.0","html_url":"https://github.com/rails/rails/releases/tag/v4.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.0/manifests"},{"name":"github41","sha":"a141d9de0dcb6eb088e6e04dda238864754f29dc","kind":"commit","published_at":"2014-03-27T12:55:26.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github41","html_url":"https://github.com/rails/rails/releases/tag/github41","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github41","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github41/manifests"},{"name":"v4.1.0.rc2","sha":"6b6f8b566ef3245f5b25d03c61b2af0a1f55301e","kind":"tag","published_at":"2014-03-25T20:10:47.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.0.rc2","html_url":"https://github.com/rails/rails/releases/tag/v4.1.0.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.0.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.0.rc2/manifests"},{"name":"v4.0.4","sha":"2abe4b032d080f7177c6f2e34c9124c468e8a293","kind":"commit","published_at":"2014-03-14T17:35:22.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.4","html_url":"https://github.com/rails/rails/releases/tag/v4.0.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.4/manifests"},{"name":"v4.0.4.rc1","sha":"26bfdf9f300be2ada831a34b8eb71f55a9a5122f","kind":"commit","published_at":"2014-03-11T17:28:49.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.4.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.0.4.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.4.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.4.rc1/manifests"},{"name":"github40","sha":"4fdaf21b280a4b4be51b35b9db9bbaeb6cceb251","kind":"commit","published_at":"2014-02-18T21:28:32.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github40","html_url":"https://github.com/rails/rails/releases/tag/github40","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github40","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github40/manifests"},{"name":"v4.1.0.rc1","sha":"78ba185fb91d7066ae5c396ca97034c13054236c","kind":"tag","published_at":"2014-02-18T20:52:25.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.0.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.1.0.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.0.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.0.rc1/manifests"},{"name":"v4.1.0.beta2","sha":"8b20c72dd80e2faf531f308d430a145a253aeac3","kind":"tag","published_at":"2014-02-18T18:45:39.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.0.beta2","html_url":"https://github.com/rails/rails/releases/tag/v4.1.0.beta2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.0.beta2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.0.beta2/manifests"},{"name":"v4.0.3","sha":"1f6113c6a9f1f2f8e362b0e7702afac5d8cf98db","kind":"tag","published_at":"2014-02-18T18:38:06.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.3","html_url":"https://github.com/rails/rails/releases/tag/v4.0.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.3/manifests"},{"name":"v3.2.17","sha":"666e9f65bdfeb6cc5aa80b6254608adc3d7845ce","kind":"tag","published_at":"2014-02-18T18:17:10.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.17","html_url":"https://github.com/rails/rails/releases/tag/v3.2.17","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.17","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.17/manifests"},{"name":"github39","sha":"d0e554d231ad3a2671bd815da1f38d5a2e924d8f","kind":"tag","published_at":"2014-02-14T05:12:27.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github39","html_url":"https://github.com/rails/rails/releases/tag/github39","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github39","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github39/manifests"},{"name":"github37","sha":"3d7281835686053d5654344f6e5740b606bac588","kind":"commit","published_at":"2014-01-21T02:05:20.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github37","html_url":"https://github.com/rails/rails/releases/tag/github37","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github37","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github37/manifests"},{"name":"github35","sha":"3766b1b377c39204eca2101eaf1ec607c6c0844e","kind":"commit","published_at":"2014-01-13T21:58:57.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github35","html_url":"https://github.com/rails/rails/releases/tag/github35","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github35","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github35/manifests"},{"name":"github34","sha":"f63b0340ff63fcda44876472b9f883614c33749e","kind":"commit","published_at":"2014-01-09T05:04:30.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github34","html_url":"https://github.com/rails/rails/releases/tag/github34","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github34","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github34/manifests"},{"name":"github33","sha":"cedf026a1462764b732a481e3b149148dcc3081c","kind":"commit","published_at":"2013-12-30T04:45:48.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github33","html_url":"https://github.com/rails/rails/releases/tag/github33","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github33","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github33/manifests"},{"name":"v4.1.0.beta1","sha":"f706d5f945c5751072bb90d080aff154e6858435","kind":"commit","published_at":"2013-12-18T00:10:57.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.1.0.beta1","html_url":"https://github.com/rails/rails/releases/tag/v4.1.0.beta1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.0.beta1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.1.0.beta1/manifests"},{"name":"v4.0.2","sha":"98d06c6bd4eefeeb342d05116fccefa11875cb9b","kind":"tag","published_at":"2013-12-03T01:10:20.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.2","html_url":"https://github.com/rails/rails/releases/tag/v4.0.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.2/manifests"},{"name":"v3.2.16","sha":"64226302d82493d9bf67aa9e4fa52b4e0269ee3d","kind":"tag","published_at":"2013-12-03T00:25:26.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.16","html_url":"https://github.com/rails/rails/releases/tag/v3.2.16","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.16","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.16/manifests"},{"name":"github31","sha":"c0124ba8f356b1a03c7d47fd249be374b6b49b19","kind":"commit","published_at":"2013-12-02T09:43:27.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github31","html_url":"https://github.com/rails/rails/releases/tag/github31","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github31","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github31/manifests"},{"name":"v4.0.1","sha":"5505c1d700f17e2009e1189a7aa6dafafe7062a4","kind":"commit","published_at":"2013-11-01T18:01:14.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.1","html_url":"https://github.com/rails/rails/releases/tag/v4.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.1/manifests"},{"name":"v4.0.1.rc4","sha":"9466dad7468f106bad6f8e2a0b468fb3ab113dcb","kind":"tag","published_at":"2013-10-30T19:30:08.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.1.rc4","html_url":"https://github.com/rails/rails/releases/tag/v4.0.1.rc4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.1.rc4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.1.rc4/manifests"},{"name":"github30","sha":"24e5712294c0bbdea776556cb9809e5e7aae8033","kind":"commit","published_at":"2013-10-30T03:32:13.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github30","html_url":"https://github.com/rails/rails/releases/tag/github30","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github30","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github30/manifests"},{"name":"github29","sha":"3b7754c9505e55d0332f28354b080511d0617d11","kind":"commit","published_at":"2013-10-29T19:10:45.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github29","html_url":"https://github.com/rails/rails/releases/tag/github29","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github29","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github29/manifests"},{"name":"github28","sha":"76884dd7f79f489c1996462d288f02e95774d8c5","kind":"tag","published_at":"2013-10-25T18:52:09.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github28","html_url":"https://github.com/rails/rails/releases/tag/github28","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github28","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github28/manifests"},{"name":"github27","sha":"00521f51185eebb960f75e81a86cbb4238043f19","kind":"tag","published_at":"2013-10-24T18:40:05.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github27","html_url":"https://github.com/rails/rails/releases/tag/github27","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github27","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github27/manifests"},{"name":"v4.0.1.rc3","sha":"b91f81c45bce0ecde0901d1a595051b8552a93fa","kind":"commit","published_at":"2013-10-23T21:38:54.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.1.rc3","html_url":"https://github.com/rails/rails/releases/tag/v4.0.1.rc3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.1.rc3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.1.rc3/manifests"},{"name":"v4.0.1.rc2","sha":"3449a204014c2c4db2238559a75586400766adee","kind":"tag","published_at":"2013-10-21T21:52:14.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.1.rc2","html_url":"https://github.com/rails/rails/releases/tag/v4.0.1.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.1.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.1.rc2/manifests"},{"name":"v4.0.1.rc1","sha":"3f2bc99024d25c73f5de66a36d3f897c484705b8","kind":"tag","published_at":"2013-10-17T16:42:00.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.1.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.0.1.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.1.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.1.rc1/manifests"},{"name":"v3.2.15","sha":"538f8ba0c16bb6c57b5b79320fc1a99afd14b0e2","kind":"tag","published_at":"2013-10-16T17:03:50.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.15","html_url":"https://github.com/rails/rails/releases/tag/v3.2.15","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.15","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.15/manifests"},{"name":"github26","sha":"b2c42ec3412a31ed10cf8b794239de6245d1a5d6","kind":"tag","published_at":"2013-10-15T20:30:24.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github26","html_url":"https://github.com/rails/rails/releases/tag/github26","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github26","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github26/manifests"},{"name":"v3.2.15.rc3","sha":"e3abd78ee58ee8564a69c989e963ae480b8acf9f","kind":"tag","published_at":"2013-10-11T21:16:24.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.15.rc3","html_url":"https://github.com/rails/rails/releases/tag/v3.2.15.rc3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.15.rc3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.15.rc3/manifests"},{"name":"v3.2.15.rc2","sha":"5ede19b7725b9f83a2231554b6d583117fbbb4c4","kind":"tag","published_at":"2013-10-04T20:47:48.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.15.rc2","html_url":"https://github.com/rails/rails/releases/tag/v3.2.15.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.15.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.15.rc2/manifests"},{"name":"v3.2.15.rc1","sha":"5e277c82085f6258b6aa4a19a90c6ea46686af84","kind":"commit","published_at":"2013-10-03T18:52:44.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.15.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.2.15.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.15.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.15.rc1/manifests"},{"name":"github25","sha":"685cb901fcc86491a3424a7f2e27f61ba4e135c7","kind":"tag","published_at":"2013-08-27T10:57:24.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github25","html_url":"https://github.com/rails/rails/releases/tag/github25","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github25","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github25/manifests"},{"name":"github24","sha":"b2969e6b48e4dddff3ea9e6814383f73596c75c4","kind":"tag","published_at":"2013-08-09T04:03:22.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/github24","html_url":"https://github.com/rails/rails/releases/tag/github24","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github24","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/github24/manifests"},{"name":"v3.2.14","sha":"2fcd13eff251ca9e1ff5cf6a13f72c18087daf60","kind":"tag","published_at":"2013-07-22T16:40:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.14","html_url":"https://github.com/rails/rails/releases/tag/v3.2.14","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.14","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.14/manifests"},{"name":"v3.2.14.rc2","sha":"a96df04aac00fb2b7d91978c24741100230a50d4","kind":"tag","published_at":"2013-07-16T16:10:51.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.14.rc2","html_url":"https://github.com/rails/rails/releases/tag/v3.2.14.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.14.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.14.rc2/manifests"},{"name":"v3.2.14.rc1","sha":"facfc24f256d8367f33a62e3bbea6c0f8c698c1f","kind":"tag","published_at":"2013-07-13T00:23:43.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.14.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.2.14.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.14.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.14.rc1/manifests"},{"name":"v4.0.0","sha":"375d9a0a7fb329b0fbbd75a13e93e53a00520587","kind":"commit","published_at":"2013-06-25T14:28:29.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.0","html_url":"https://github.com/rails/rails/releases/tag/v4.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.0/manifests"},{"name":"v4.0.0.rc2","sha":"7b0d3a550328f64f23f38a27864419d72b941f2f","kind":"commit","published_at":"2013-06-11T20:17:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.0.rc2","html_url":"https://github.com/rails/rails/releases/tag/v4.0.0.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.0.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.0.rc2/manifests"},{"name":"v4.0.0.rc1","sha":"1ec64297f9347986a11ce38af2cc3434d99c66c2","kind":"commit","published_at":"2013-04-29T15:29:18.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.0.rc1","html_url":"https://github.com/rails/rails/releases/tag/v4.0.0.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.0.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.0.rc1/manifests"},{"name":"v2.3.18","sha":"3773c2fc1f63daf3a6f92ef49720e801988ac990","kind":"tag","published_at":"2013-03-18T17:01:50.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.18","html_url":"https://github.com/rails/rails/releases/tag/v2.3.18","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.18","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.18/manifests"},{"name":"v3.2.13","sha":"a4b55827721a5967299f3c1531afb3d6d81e4ac0","kind":"tag","published_at":"2013-03-18T16:23:11.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.13","html_url":"https://github.com/rails/rails/releases/tag/v3.2.13","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.13","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.13/manifests"},{"name":"v3.1.12","sha":"0c510c79cb676cdb9d6a65a1fecb8d71edd123b9","kind":"tag","published_at":"2013-03-18T16:18:11.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.12","html_url":"https://github.com/rails/rails/releases/tag/v3.1.12","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.12","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.12/manifests"},{"name":"v3.2.13.rc2","sha":"ccf256d8dcc68d975bbf00780c3b4096f47e29d3","kind":"tag","published_at":"2013-03-06T23:05:30.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.13.rc2","html_url":"https://github.com/rails/rails/releases/tag/v3.2.13.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.13.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.13.rc2/manifests"},{"name":"v3.2.13.rc1","sha":"5ca59b02d1cc80f3463eef062ced079eb1b3998c","kind":"commit","published_at":"2013-02-27T20:19:06.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.13.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.2.13.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.13.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.13.rc1/manifests"},{"name":"v4.0.0.beta1","sha":"202041e762a98cb433c3a24a0b03308d4e05a99d","kind":"commit","published_at":"2013-02-25T23:07:45.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v4.0.0.beta1","html_url":"https://github.com/rails/rails/releases/tag/v4.0.0.beta1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.0.beta1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v4.0.0.beta1/manifests"},{"name":"v2.3.17","sha":"02d553d24cc976136c59b9278bcfbe114f334087","kind":"tag","published_at":"2013-02-11T03:14:13.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.17","html_url":"https://github.com/rails/rails/releases/tag/v2.3.17","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.17","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.17/manifests"},{"name":"v3.1.11","sha":"415bf3d126bac64c3b256335af45f23d2881f9bf","kind":"tag","published_at":"2013-02-11T03:08:32.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.11","html_url":"https://github.com/rails/rails/releases/tag/v3.1.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.11/manifests"},{"name":"v3.2.12","sha":"1dccd44a5c74f20b0406ecc8d39373226f73af35","kind":"tag","published_at":"2013-02-11T03:05:51.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.12","html_url":"https://github.com/rails/rails/releases/tag/v3.2.12","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.12","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.12/manifests"},{"name":"v3.0.20","sha":"b875be03b50029e94244945f072a6cbbff2e1c24","kind":"tag","published_at":"2013-01-28T20:47:56.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.20","html_url":"https://github.com/rails/rails/releases/tag/v3.0.20","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.20","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.20/manifests"},{"name":"v2.3.16","sha":"1169552479d6800e6729fb599dcb4a987ef13a6a","kind":"tag","published_at":"2013-01-28T20:43:19.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.16","html_url":"https://github.com/rails/rails/releases/tag/v2.3.16","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.16","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.16/manifests"},{"name":"v2.3.15","sha":"709af0523337e4c87760cbe118914ed0ab28d326","kind":"tag","published_at":"2013-01-08T19:27:02.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.15","html_url":"https://github.com/rails/rails/releases/tag/v2.3.15","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.15","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.15/manifests"},{"name":"v3.0.19","sha":"7909e7f10c82be05d989340ad49e9d9c08fb0ead","kind":"tag","published_at":"2013-01-08T19:25:13.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.19","html_url":"https://github.com/rails/rails/releases/tag/v3.0.19","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.19","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.19/manifests"},{"name":"v3.1.10","sha":"a7dd0bb151d925a7e3cd0aec8f61746729949985","kind":"tag","published_at":"2013-01-08T19:24:59.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.10","html_url":"https://github.com/rails/rails/releases/tag/v3.1.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.10/manifests"},{"name":"v3.2.11","sha":"746dbd89faf8197e6d6f35f6e428a024923116a2","kind":"tag","published_at":"2013-01-08T19:24:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.11","html_url":"https://github.com/rails/rails/releases/tag/v3.2.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.11/manifests"},{"name":"v3.0.18","sha":"fb06fe48ef45de09691718806abf088ab190a185","kind":"tag","published_at":"2012-12-23T22:31:08.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.18","html_url":"https://github.com/rails/rails/releases/tag/v3.0.18","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.18","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.18/manifests"},{"name":"v3.1.9","sha":"f1e977cd14b13e316ad8195f49d41608a54891c6","kind":"tag","published_at":"2012-12-23T21:39:36.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.9","html_url":"https://github.com/rails/rails/releases/tag/v3.1.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.9/manifests"},{"name":"v3.2.10","sha":"8ba3df046f977dddd4bc46248db2a1355bc0ed1e","kind":"tag","published_at":"2012-12-23T21:36:55.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.10","html_url":"https://github.com/rails/rails/releases/tag/v3.2.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.10/manifests"},{"name":"v3.2.9","sha":"b33cf74a4917c6ac5229ba8d6296d33d0b3437bd","kind":"tag","published_at":"2012-11-12T15:19:37.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.9","html_url":"https://github.com/rails/rails/releases/tag/v3.2.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.9/manifests"},{"name":"v3.2.9.rc3","sha":"db1d5f40714a47c58c13ff7d9643e8a0dec6bef8","kind":"tag","published_at":"2012-11-09T17:51:29.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.9.rc3","html_url":"https://github.com/rails/rails/releases/tag/v3.2.9.rc3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.9.rc3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.9.rc3/manifests"},{"name":"v3.2.9.rc2","sha":"de3dff317010df12d15225f2bca4a7e914eb596c","kind":"tag","published_at":"2012-11-01T17:38:23.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.9.rc2","html_url":"https://github.com/rails/rails/releases/tag/v3.2.9.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.9.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.9.rc2/manifests"},{"name":"v3.2.9.rc1","sha":"fdfb3990cde29c48554551d1309b06c8ef584f32","kind":"tag","published_at":"2012-10-29T16:38:47.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.9.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.2.9.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.9.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.9.rc1/manifests"},{"name":"v3.0.17","sha":"77977f34a5a4ea899f59e31ad869b582285fa5c1","kind":"tag","published_at":"2012-08-09T21:10:34.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.17","html_url":"https://github.com/rails/rails/releases/tag/v3.0.17","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.17","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.17/manifests"},{"name":"v3.1.8","sha":"38bf9cf36864b5656816b1aadf324624dbcb60b9","kind":"tag","published_at":"2012-08-09T21:10:13.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.8","html_url":"https://github.com/rails/rails/releases/tag/v3.1.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.8/manifests"},{"name":"v3.2.8","sha":"64146cf7babe35fd962576b699fa0deb4cfe0d70","kind":"tag","published_at":"2012-08-09T21:09:56.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.8","html_url":"https://github.com/rails/rails/releases/tag/v3.2.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.8/manifests"},{"name":"v3.2.8.rc2","sha":"65b5e35e898ac09a50b61c671d98a3cf92453003","kind":"tag","published_at":"2012-08-03T14:02:12.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.8.rc2","html_url":"https://github.com/rails/rails/releases/tag/v3.2.8.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.8.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.8.rc2/manifests"},{"name":"v3.2.8.rc1","sha":"fcccbacec1d25188619f597bbb75505c79084bc3","kind":"tag","published_at":"2012-08-01T20:51:11.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.8.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.2.8.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.8.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.8.rc1/manifests"},{"name":"v3.0.16","sha":"3166606dcbbbea5d6cc07bda233273e1dfa8821d","kind":"tag","published_at":"2012-07-26T21:59:47.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.16","html_url":"https://github.com/rails/rails/releases/tag/v3.0.16","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.16","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.16/manifests"},{"name":"v3.1.7","sha":"d314a48a40271552837fb795d9cde2fb516d2f78","kind":"tag","published_at":"2012-07-26T21:58:58.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.7","html_url":"https://github.com/rails/rails/releases/tag/v3.1.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.7/manifests"},{"name":"v3.2.7","sha":"d1b9cf2d48b4e58da2da563107dd2783e326e287","kind":"tag","published_at":"2012-07-26T21:49:16.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.7","html_url":"https://github.com/rails/rails/releases/tag/v3.2.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.7/manifests"},{"name":"v3.2.7.rc1","sha":"753c546df4c8d639a8402552bdd5c9d077610f6c","kind":"tag","published_at":"2012-07-23T21:44:33.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.7.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.2.7.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.7.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.7.rc1/manifests"},{"name":"2.3.14.github2","sha":"a6eb61b7e4138c999099a7e6ed7b3d2f0a227004","kind":"commit","published_at":"2012-06-13T06:14:10.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/2.3.14.github2","html_url":"https://github.com/rails/rails/releases/tag/2.3.14.github2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/2.3.14.github2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/2.3.14.github2/manifests"},{"name":"v3.0.15","sha":"def75432c9ead5e717fcd7797973b90fa22b3487","kind":"tag","published_at":"2012-06-13T03:05:57.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.15","html_url":"https://github.com/rails/rails/releases/tag/v3.0.15","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.15","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.15/manifests"},{"name":"v3.0.14","sha":"4be9dbff206119798e44a2d9973c60bc02685034","kind":"tag","published_at":"2012-06-12T21:15:04.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.14","html_url":"https://github.com/rails/rails/releases/tag/v3.0.14","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.14","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.14/manifests"},{"name":"v3.1.6","sha":"63dce16202fb7e1517e109266c74db95f95b4cb1","kind":"tag","published_at":"2012-06-12T21:14:12.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.6","html_url":"https://github.com/rails/rails/releases/tag/v3.1.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.6/manifests"},{"name":"v3.2.6","sha":"8381d398cedf3e95fb073b8110d80f636cff449c","kind":"tag","published_at":"2012-06-12T21:13:26.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.6","html_url":"https://github.com/rails/rails/releases/tag/v3.2.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.6/manifests"},{"name":"v3.2.5","sha":"b57fa0bf690b299ba4d8a0051bf06b9cecd3975a","kind":"tag","published_at":"2012-06-01T03:38:09.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.5","html_url":"https://github.com/rails/rails/releases/tag/v3.2.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.5/manifests"},{"name":"v3.0.13","sha":"7102fe8d44a9efafac0e74c1aa479d770003f458","kind":"tag","published_at":"2012-05-31T17:55:08.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.13","html_url":"https://github.com/rails/rails/releases/tag/v3.0.13","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.13","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.13/manifests"},{"name":"v3.1.5","sha":"aa18c0cac01f63fa20095581118548c68b17a3f3","kind":"tag","published_at":"2012-05-31T17:42:43.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.5","html_url":"https://github.com/rails/rails/releases/tag/v3.1.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.5/manifests"},{"name":"v3.2.4","sha":"febd65223e2b3a40755d23a734f6a77e04b97c88","kind":"tag","published_at":"2012-05-31T17:27:56.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.4","html_url":"https://github.com/rails/rails/releases/tag/v3.2.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.4/manifests"},{"name":"v3.2.4.rc1","sha":"fe4dfdd64450662d882b47bf519d885edee453df","kind":"tag","published_at":"2012-05-28T19:32:12.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.4.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.2.4.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.4.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.4.rc1/manifests"},{"name":"v3.1.5.rc1","sha":"bd8ee8c91293b34c0c3bea1bc541cd1ada7f5b12","kind":"tag","published_at":"2012-05-28T18:55:04.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.5.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.1.5.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.5.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.5.rc1/manifests"},{"name":"v3.0.13.rc1","sha":"88e7f5176c3b449301636d8acdb2726f854d4644","kind":"tag","published_at":"2012-05-28T18:53:20.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.13.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.0.13.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.13.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.13.rc1/manifests"},{"name":"v3.2.3","sha":"45d6cd94b3ef2ec77166def41f29188445b35608","kind":"tag","published_at":"2012-03-30T22:22:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.3","html_url":"https://github.com/rails/rails/releases/tag/v3.2.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.3/manifests"},{"name":"v3.2.3.rc2","sha":"5284e650be321273a2bb68bf4baa8adeb6bc586b","kind":"tag","published_at":"2012-03-29T16:13:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.3.rc2","html_url":"https://github.com/rails/rails/releases/tag/v3.2.3.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.3.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.3.rc2/manifests"},{"name":"v3.2.3.rc1","sha":"5f3726091851326d4976624db374a20d356b1630","kind":"tag","published_at":"2012-03-27T17:07:59.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.3.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.2.3.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.3.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.3.rc1/manifests"},{"name":"v3.0.12","sha":"9d6377ed731bafbe9d20ac7e950c1c135ab02f9f","kind":"tag","published_at":"2012-03-01T17:22:32.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.12","html_url":"https://github.com/rails/rails/releases/tag/v3.0.12","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.12","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.12/manifests"},{"name":"v3.1.4","sha":"1aabea698b4518f37263af15818a2c9fc7565521","kind":"tag","published_at":"2012-03-01T17:20:54.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.4","html_url":"https://github.com/rails/rails/releases/tag/v3.1.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.4/manifests"},{"name":"v3.2.2","sha":"01b470f526922ad3fc5562a237d11d45347befa9","kind":"tag","published_at":"2012-03-01T17:17:32.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.2","html_url":"https://github.com/rails/rails/releases/tag/v3.2.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.2/manifests"},{"name":"v3.0.12.rc1","sha":"2935435d7058cf00da3989b0e60a28b1472509bd","kind":"tag","published_at":"2012-02-22T21:31:36.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.12.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.0.12.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.12.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.12.rc1/manifests"},{"name":"v3.1.4.rc1","sha":"8c677e921a1116085b00b522cea6204587c09754","kind":"tag","published_at":"2012-02-22T20:06:21.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.4.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.1.4.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.4.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.4.rc1/manifests"},{"name":"v3.2.2.rc1","sha":"4bcd437f760cfaf310fece0fe36abe55bccba42b","kind":"tag","published_at":"2012-02-22T20:03:31.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.2.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.2.2.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.2.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.2.rc1/manifests"},{"name":"v3.2.1","sha":"67b8fbca921ba7e3e1fc02fe30a20963a67017e5","kind":"tag","published_at":"2012-01-26T22:58:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.1","html_url":"https://github.com/rails/rails/releases/tag/v3.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.1/manifests"},{"name":"v3.2.0","sha":"f36dcaf488b4357a52f43e3912628428956d351f","kind":"commit","published_at":"2012-01-20T16:44:32.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.0","html_url":"https://github.com/rails/rails/releases/tag/v3.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.0/manifests"},{"name":"v3.2.0.rc2","sha":"d268ef2f6599cd58cc27a8c9f0b9b6649f62e6a2","kind":"tag","published_at":"2012-01-04T21:00:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.0.rc2","html_url":"https://github.com/rails/rails/releases/tag/v3.2.0.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.0.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.0.rc2/manifests"},{"name":"v3.2.0.rc1","sha":"9d6e52b55ec67d0573a0bb1900b13f38e18f7eba","kind":"commit","published_at":"2011-12-20T00:34:57.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.2.0.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.2.0.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.0.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.2.0.rc1/manifests"},{"name":"v3.1.3","sha":"e9474c89d9583d50be485bef8fabb31a75b242bb","kind":"commit","published_at":"2011-11-20T22:48:20.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.3","html_url":"https://github.com/rails/rails/releases/tag/v3.1.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.3/manifests"},{"name":"v3.1.2","sha":"0e6b118313b5603482df071e30434ddab758f8a1","kind":"commit","published_at":"2011-11-18T01:27:59.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.2","html_url":"https://github.com/rails/rails/releases/tag/v3.1.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.2/manifests"},{"name":"v3.0.11","sha":"66a4beb0c9764238e1e8bed83aca88a397039bde","kind":"commit","published_at":"2011-11-18T01:19:17.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.11","html_url":"https://github.com/rails/rails/releases/tag/v3.0.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.11/manifests"},{"name":"2.3.14.github","sha":"fe11782158c82bf60f783cd5799449b9744ca3f0","kind":"commit","published_at":"2011-11-17T20:57:09.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/2.3.14.github","html_url":"https://github.com/rails/rails/releases/tag/2.3.14.github","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/2.3.14.github","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/2.3.14.github/manifests"},{"name":"v3.1.2.rc2","sha":"e29f27ad76b6e031f21bc258a6ff713ec9a16365","kind":"commit","published_at":"2011-11-14T15:44:50.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.2.rc2","html_url":"https://github.com/rails/rails/releases/tag/v3.1.2.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.2.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.2.rc2/manifests"},{"name":"v3.1.2.rc1","sha":"68ed8eae304b64c5049badda6a2cf854b5949831","kind":"commit","published_at":"2011-11-14T14:12:59.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.2.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.1.2.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.2.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.2.rc1/manifests"},{"name":"v3.1.1","sha":"ba708126d85a020f8984db1a12261bcdba47d70f","kind":"tag","published_at":"2011-10-07T15:14:07.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.1","html_url":"https://github.com/rails/rails/releases/tag/v3.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.1/manifests"},{"name":"v3.1.1.rc3","sha":"57a01f337eb4da7941ec35e5541fa456b060601a","kind":"tag","published_at":"2011-10-06T02:27:49.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.1.rc3","html_url":"https://github.com/rails/rails/releases/tag/v3.1.1.rc3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.1.rc3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.1.rc3/manifests"},{"name":"v3.1.1.rc2","sha":"aead5720d75ef3e2babb8d115a8587b2736a5b3b","kind":"tag","published_at":"2011-09-29T22:13:53.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.1.rc2","html_url":"https://github.com/rails/rails/releases/tag/v3.1.1.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.1.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.1.rc2/manifests"},{"name":"v3.1.1.rc1","sha":"3f9665be11f9938baa9f617f3391cc0d7e3ff10b","kind":"tag","published_at":"2011-09-15T00:17:28.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.1.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.1.1.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.1.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.1.rc1/manifests"},{"name":"v3.1.0","sha":"505e84599aff6abf719484636b0515e1ce2e2220","kind":"tag","published_at":"2011-08-31T02:10:07.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.0","html_url":"https://github.com/rails/rails/releases/tag/v3.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0/manifests"},{"name":"v3.1.0.rc8","sha":"c4ce550f3e28a1dbc4716afc9957f2ec3c426782","kind":"tag","published_at":"2011-08-29T03:23:53.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.0.rc8","html_url":"https://github.com/rails/rails/releases/tag/v3.1.0.rc8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc8/manifests"},{"name":"v3.1.0.rc7","sha":"e4fc8e22c17e222b3057d2b053ba5586a7260db0","kind":"tag","published_at":"2011-08-28T23:55:58.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.0.rc7","html_url":"https://github.com/rails/rails/releases/tag/v3.1.0.rc7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc7/manifests"},{"name":"list","sha":"155f734155fd0772d19f4201f244dccd8cdbd126","kind":"commit","published_at":"2011-08-19T20:12:20.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/list","html_url":"https://github.com/rails/rails/releases/tag/list","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/list","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/list/manifests"},{"name":"v3.1.0.rc6","sha":"633a5693a7c304ec242488dc5aa11c8956b3b294","kind":"tag","published_at":"2011-08-16T22:30:03.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.0.rc6","html_url":"https://github.com/rails/rails/releases/tag/v3.1.0.rc6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc6/manifests"},{"name":"v3.0.10","sha":"4f15f392601d4504fab850f3bf659c43f0cb51ec","kind":"tag","published_at":"2011-08-16T22:10:36.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.10","html_url":"https://github.com/rails/rails/releases/tag/v3.0.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.10/manifests"},{"name":"v2.3.14","sha":"e0774e47302a907319ed974ccf59b8b54d32bbde","kind":"tag","published_at":"2011-08-16T21:59:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.14","html_url":"https://github.com/rails/rails/releases/tag/v2.3.14","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.14","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.14/manifests"},{"name":"v2.3.13","sha":"dea5a10f716b84a49e3d8fa44efbd3bf1ff1bfda","kind":"tag","published_at":"2011-08-16T21:50:47.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.13","html_url":"https://github.com/rails/rails/releases/tag/v2.3.13","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.13","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.13/manifests"},{"name":"v3.0.10.rc1","sha":"521c9aa6a85fdb4c6d43d2aeb1af7b4cae2a20f5","kind":"tag","published_at":"2011-08-05T00:10:03.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.10.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.0.10.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.10.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.10.rc1/manifests"},{"name":"v3.1.0.rc5","sha":"a5188333aaf219e4000614f49748f459b79b6ef9","kind":"tag","published_at":"2011-07-25T23:06:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.0.rc5","html_url":"https://github.com/rails/rails/releases/tag/v3.1.0.rc5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc5/manifests"},{"name":"v3.0.9","sha":"15e2b5887f2185e01b8d92646a7f441b8c1c549e","kind":"commit","published_at":"2011-06-16T10:03:00.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.9","html_url":"https://github.com/rails/rails/releases/tag/v3.0.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.9/manifests"},{"name":"v3.0.9.rc5","sha":"6824c5d1d303f5bbc5c5d390390204fcc0cd6ced","kind":"commit","published_at":"2011-06-12T21:28:06.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.9.rc5","html_url":"https://github.com/rails/rails/releases/tag/v3.0.9.rc5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.9.rc5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.9.rc5/manifests"},{"name":"v3.0.9.rc4","sha":"f283194234669d2034653445ca018582dc382c0e","kind":"commit","published_at":"2011-06-12T21:21:20.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.9.rc4","html_url":"https://github.com/rails/rails/releases/tag/v3.0.9.rc4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.9.rc4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.9.rc4/manifests"},{"name":"v3.1.0.rc4","sha":"279781f8964c95f842153c98dc245b06f1b1f76e","kind":"commit","published_at":"2011-06-09T22:53:49.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.0.rc4","html_url":"https://github.com/rails/rails/releases/tag/v3.1.0.rc4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc4/manifests"},{"name":"v3.0.9.rc3","sha":"66ec7e84c9710aea7397e9ad92e87063b857c9d5","kind":"commit","published_at":"2011-06-09T22:48:19.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.9.rc3","html_url":"https://github.com/rails/rails/releases/tag/v3.0.9.rc3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.9.rc3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.9.rc3/manifests"},{"name":"v3.0.9.rc2","sha":"0e1ecb2e15ab8eaf5641e2ca9eb1c13bf5b304a0","kind":"commit","published_at":"2011-06-09T22:36:44.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.9.rc2","html_url":"https://github.com/rails/rails/releases/tag/v3.0.9.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.9.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.9.rc2/manifests"},{"name":"v3.1.0.rc3","sha":"aefd703443807598552f3ea2c81e4e9cb15349df","kind":"tag","published_at":"2011-06-08T21:34:47.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.0.rc3","html_url":"https://github.com/rails/rails/releases/tag/v3.1.0.rc3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc3/manifests"},{"name":"v3.0.9.rc1","sha":"0c1608c4edccbf2a1b6b53d8f1ab7ccacc8cbc65","kind":"tag","published_at":"2011-06-08T21:18:10.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.9.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.0.9.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.9.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.9.rc1/manifests"},{"name":"v2.3.12","sha":"a2a34133d8347d83c015b1889a774c718644e4d6","kind":"tag","published_at":"2011-06-07T23:55:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.12","html_url":"https://github.com/rails/rails/releases/tag/v2.3.12","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.12","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.12/manifests"},{"name":"v3.0.8","sha":"b341e45d8e75d49a9f599881eea952c2a41af032","kind":"tag","published_at":"2011-06-07T23:52:07.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.8","html_url":"https://github.com/rails/rails/releases/tag/v3.0.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.8/manifests"},{"name":"v3.1.0.rc2","sha":"d846f4baa5da299d51c72f1bdd098cf982279628","kind":"tag","published_at":"2011-06-07T23:48:30.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.0.rc2","html_url":"https://github.com/rails/rails/releases/tag/v3.1.0.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc2/manifests"},{"name":"v3.0.8.rc4","sha":"ce23c6e47f184616c8cc9b779c1670e1417adfd0","kind":"tag","published_at":"2011-05-31T00:09:13.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.8.rc4","html_url":"https://github.com/rails/rails/releases/tag/v3.0.8.rc4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.8.rc4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.8.rc4/manifests"},{"name":"v3.0.8.rc3","sha":"f4073d530f76ebd5371017032874e5865ebd8ecb","kind":"tag","published_at":"2011-05-30T19:54:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.8.rc3","html_url":"https://github.com/rails/rails/releases/tag/v3.0.8.rc3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.8.rc3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.8.rc3/manifests"},{"name":"v3.0.8.rc2","sha":"d75652540e8bb9fd565e1d251e6fcd9c3f2e8516","kind":"tag","published_at":"2011-05-27T16:30:00.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.8.rc2","html_url":"https://github.com/rails/rails/releases/tag/v3.0.8.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.8.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.8.rc2/manifests"},{"name":"v3.0.8.rc1","sha":"8b0806e1b0ea2dbe31ab25cfba298425fd0369f4","kind":"tag","published_at":"2011-05-26T00:08:20.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.8.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.0.8.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.8.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.8.rc1/manifests"},{"name":"v3.1.0.rc1","sha":"82857adc56efd16d22821971fff4c5e24a3c5b55","kind":"commit","published_at":"2011-05-22T01:56:52.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.0.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.1.0.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.rc1/manifests"},{"name":"v3.1.0.beta1","sha":"169ae75e091392e3852d0dfb56fadacef4b7a20b","kind":"commit","published_at":"2011-05-05T01:21:05.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.1.0.beta1","html_url":"https://github.com/rails/rails/releases/tag/v3.1.0.beta1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.beta1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.1.0.beta1/manifests"},{"name":"v3.0.7","sha":"2c3260147f90e35a6a5e3ce1b520b4de701e701e","kind":"tag","published_at":"2011-04-18T21:03:03.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.7","html_url":"https://github.com/rails/rails/releases/tag/v3.0.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.7/manifests"},{"name":"v3.0.7.rc2","sha":"f96ad0d582fd275c6f069e31fe716406a0ba924d","kind":"tag","published_at":"2011-04-15T17:23:20.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.7.rc2","html_url":"https://github.com/rails/rails/releases/tag/v3.0.7.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.7.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.7.rc2/manifests"},{"name":"v3.0.7.rc1","sha":"1787447ada8cf224bf5552c6ae8a3db053fa5839","kind":"tag","published_at":"2011-04-14T21:48:42.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.7.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.0.7.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.7.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.7.rc1/manifests"},{"name":"v3.0.6","sha":"38df020c95beca7e12f0188cb7e18f3c37789e20","kind":"tag","published_at":"2011-04-05T22:58:48.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.6","html_url":"https://github.com/rails/rails/releases/tag/v3.0.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.6/manifests"},{"name":"v3.0.6.rc2","sha":"b13be616a11ffa2c489e1b3ee4ae54e234990fcf","kind":"tag","published_at":"2011-03-31T05:26:50.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.6.rc2","html_url":"https://github.com/rails/rails/releases/tag/v3.0.6.rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.6.rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.6.rc2/manifests"},{"name":"v3.0.6.rc1","sha":"ba117b2b43a00c282bb4905fb003dd169a5312df","kind":"tag","published_at":"2011-03-29T21:04:42.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.6.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.0.6.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.6.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.6.rc1/manifests"},{"name":"v3.0.5","sha":"ecc6bb597fba7512e4eb34566fb2e8eaae9e39b8","kind":"tag","published_at":"2011-02-27T02:28:55.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.5","html_url":"https://github.com/rails/rails/releases/tag/v3.0.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.5/manifests"},{"name":"v3.0.5.rc1","sha":"ef31b87d8297d0473b73a9c2cdc5b3a7395fae06","kind":"tag","published_at":"2011-02-23T19:13:19.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.5.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.0.5.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.5.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.5.rc1/manifests"},{"name":"v3.0.4","sha":"1081ea66a3d864f310a1a55f22229af4e10436a7","kind":"tag","published_at":"2011-02-08T21:24:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.4","html_url":"https://github.com/rails/rails/releases/tag/v3.0.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.4/manifests"},{"name":"v2.3.11","sha":"b0c3d451a242b53c9992cafa9108d0df52b4f2f0","kind":"tag","published_at":"2011-02-08T21:23:21.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.11","html_url":"https://github.com/rails/rails/releases/tag/v2.3.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.11/manifests"},{"name":"v3.0.4.rc1","sha":"0cbf9b2946c02a5057958dbd47bc164be16cbab2","kind":"tag","published_at":"2011-01-30T22:56:06.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.4.rc1","html_url":"https://github.com/rails/rails/releases/tag/v3.0.4.rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.4.rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.4.rc1/manifests"},{"name":"v3.0.3","sha":"0aca27d407a339683665dcbb2199a1337972bb5e","kind":"commit","published_at":"2010-11-16T16:26:44.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.3","html_url":"https://github.com/rails/rails/releases/tag/v3.0.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.3/manifests"},{"name":"v3.0.2","sha":"186e3c71f95316b94e728eb62b519d074d27cea3","kind":"commit","published_at":"2010-11-15T19:23:02.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.2","html_url":"https://github.com/rails/rails/releases/tag/v3.0.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.2/manifests"},{"name":"v3.0.1","sha":"bac6ba99b11515374d3251ee4a1d1f3a0002713c","kind":"tag","published_at":"2010-10-14T20:57:08.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.1","html_url":"https://github.com/rails/rails/releases/tag/v3.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.1/manifests"},{"name":"v2.3.10","sha":"f5ed5c317e2280e41a9185c3000e7fbd1f7b3176","kind":"tag","published_at":"2010-10-14T20:06:56.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.10","html_url":"https://github.com/rails/rails/releases/tag/v2.3.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.10/manifests"},{"name":"v2.3.9","sha":"a61a39ecd44153676cc56257bbe8bbdf9a727cf9","kind":"commit","published_at":"2010-09-04T21:36:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.9","html_url":"https://github.com/rails/rails/releases/tag/v2.3.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.9/manifests"},{"name":"v2.3.9.pre","sha":"b2c91983dcb5e2a21ea2c0be28f86ad33b48f660","kind":"commit","published_at":"2010-08-30T03:19:05.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.9.pre","html_url":"https://github.com/rails/rails/releases/tag/v2.3.9.pre","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.9.pre","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.9.pre/manifests"},{"name":"v3.0.0","sha":"9891ca89c69732a21743f0349f2995956a7802e7","kind":"commit","published_at":"2010-08-29T22:00:04.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.0","html_url":"https://github.com/rails/rails/releases/tag/v3.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0/manifests"},{"name":"v3.0.0_RC2","sha":"822fa17c6c0f159eeff01c8fb251e13666f50357","kind":"commit","published_at":"2010-08-24T02:40:59.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.0_RC2","html_url":"https://github.com/rails/rails/releases/tag/v3.0.0_RC2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0_RC2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0_RC2/manifests"},{"name":"v3.0.0_RC","sha":"b6f99325613baf0534c10677da9c82ac27b628c0","kind":"commit","published_at":"2010-07-26T21:40:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.0_RC","html_url":"https://github.com/rails/rails/releases/tag/v3.0.0_RC","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0_RC","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0_RC/manifests"},{"name":"v3.0.0.beta4","sha":"df40dbe6f13c6799e972b20dcc1fbf11f0a02c61","kind":"commit","published_at":"2010-06-08T22:10:27.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.0.beta4","html_url":"https://github.com/rails/rails/releases/tag/v3.0.0.beta4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0.beta4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0.beta4/manifests"},{"name":"v2.3.8","sha":"240f4e944cd90fca138aba8467456043952110cc","kind":"commit","published_at":"2010-05-25T03:53:26.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.8","html_url":"https://github.com/rails/rails/releases/tag/v2.3.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.8/manifests"},{"name":"v2.3.7","sha":"326188c25efa3721a7e2f68cea3534b3e2850fcf","kind":"commit","published_at":"2010-05-24T07:04:41.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.7","html_url":"https://github.com/rails/rails/releases/tag/v2.3.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.7/manifests"},{"name":"v2.3.6","sha":"56bb5504dd1fc7314f1bd7a489ddaff973668be2","kind":"commit","published_at":"2010-05-23T06:53:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.6","html_url":"https://github.com/rails/rails/releases/tag/v2.3.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.6/manifests"},{"name":"v3.0.0.beta3","sha":"8e9df34fa3fd22719d939ba72f19b3ae9ffcc018","kind":"commit","published_at":"2010-04-13T21:07:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.0.beta3","html_url":"https://github.com/rails/rails/releases/tag/v3.0.0.beta3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0.beta3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0.beta3/manifests"},{"name":"v3.0.0.beta.3","sha":"8e9df34fa3fd22719d939ba72f19b3ae9ffcc018","kind":"commit","published_at":"2010-04-13T21:07:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.0.beta.3","html_url":"https://github.com/rails/rails/releases/tag/v3.0.0.beta.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0.beta.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0.beta.3/manifests"},{"name":"v3.0.0.beta2","sha":"f0364d87f03d58312bcab1b2f17b5b56b6c72653","kind":"commit","published_at":"2010-04-01T21:20:03.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.0.beta2","html_url":"https://github.com/rails/rails/releases/tag/v3.0.0.beta2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0.beta2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0.beta2/manifests"},{"name":"v3.0.0.beta.2","sha":"f0364d87f03d58312bcab1b2f17b5b56b6c72653","kind":"commit","published_at":"2010-04-01T21:20:03.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.0.beta.2","html_url":"https://github.com/rails/rails/releases/tag/v3.0.0.beta.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0.beta.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0.beta.2/manifests"},{"name":"v3.0.0.beta1","sha":"c548e213658386f3a5b00097bc5b30bf3736e6b4","kind":"commit","published_at":"2010-02-05T17:24:12.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v3.0.0.beta1","html_url":"https://github.com/rails/rails/releases/tag/v3.0.0.beta1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0.beta1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v3.0.0.beta1/manifests"},{"name":"v2.3.5","sha":"bfe032858077bb2946abe25e95e485ba6da86bd5","kind":"tag","published_at":"2009-11-27T00:26:15.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.5","html_url":"https://github.com/rails/rails/releases/tag/v2.3.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.5/manifests"},{"name":"v2.2.3","sha":"a60779f7e69a7045a308844e9464d7d6b9cac94d","kind":"tag","published_at":"2009-09-23T22:13:52.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.2.3","html_url":"https://github.com/rails/rails/releases/tag/v2.2.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.2.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.2.3/manifests"},{"name":"v2.3.4","sha":"a43ef2436cc6b63af35636127e42495ceb538cee","kind":"tag","published_at":"2009-09-04T00:16:51.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.4","html_url":"https://github.com/rails/rails/releases/tag/v2.3.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.4/manifests"},{"name":"v2.3.3.1","sha":"c7bcbb983f84e306e2b43adb698060e060605de9","kind":"tag","published_at":"2009-07-19T05:29:57.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.3.1","html_url":"https://github.com/rails/rails/releases/tag/v2.3.3.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.3.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.3.1/manifests"},{"name":"v2.3.3","sha":"a147becfb86b689ab25e92edcfbb4bcc04108099","kind":"tag","published_at":"2009-07-16T04:25:45.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.3","html_url":"https://github.com/rails/rails/releases/tag/v2.3.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.3/manifests"},{"name":"v2.3.2.1","sha":"dc88847e5ce392eed210b97525c14fca55852867","kind":"commit","published_at":"2009-03-17T12:26:34.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.2.1","html_url":"https://github.com/rails/rails/releases/tag/v2.3.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.2.1/manifests"},{"name":"v2.3.2","sha":"73fc42cc0b5e94541480032c2941a50edd4080c2","kind":"commit","published_at":"2009-03-16T03:06:50.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.2","html_url":"https://github.com/rails/rails/releases/tag/v2.3.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.2/manifests"},{"name":"v2.3.1","sha":"b1c989f28dd1d619f0e3e3ca1b894b686e517f2f","kind":"commit","published_at":"2009-03-05T11:22:49.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.1","html_url":"https://github.com/rails/rails/releases/tag/v2.3.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.1/manifests"},{"name":"v2.3.0","sha":"beca1f2e151558ded3d5a4efebd328ab2533edc6","kind":"commit","published_at":"2009-02-02T00:21:03.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.3.0","html_url":"https://github.com/rails/rails/releases/tag/v2.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.3.0/manifests"},{"name":"v2.2.2","sha":"ff561370739eb809d1d006ea842cd2b1e43f6950","kind":"commit","published_at":"2008-11-21T16:25:26.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.2.2","html_url":"https://github.com/rails/rails/releases/tag/v2.2.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.2.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.2.2/manifests"},{"name":"v2.2.1","sha":"44c3b865ac52a7c9a6312982ba0f6c20d7ad41e1","kind":"commit","published_at":"2008-11-14T15:11:07.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.2.1","html_url":"https://github.com/rails/rails/releases/tag/v2.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.2.1/manifests"},{"name":"v2.2.0","sha":"a17fc20eb122d45a017e99e592e5e159025ab26b","kind":"tag","published_at":"2008-10-24T14:42:03.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.2.0","html_url":"https://github.com/rails/rails/releases/tag/v2.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.2.0/manifests"},{"name":"v2.1.2","sha":"15af6b315ee65afbc873889b6ad81b7e6b7e1b35","kind":"commit","published_at":"2008-10-23T16:16:55.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.1.2","html_url":"https://github.com/rails/rails/releases/tag/v2.1.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.1.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.1.2/manifests"},{"name":"v2.0.4","sha":"e724e3ede67b4199db8765e00d370e6a7bd401e6","kind":"tag","published_at":"2008-10-20T06:45:15.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.0.4","html_url":"https://github.com/rails/rails/releases/tag/v2.0.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.4/manifests"},{"name":"v2.0.5","sha":"c329794e7334f3d355d0a039e23a7145ad40ed35","kind":"tag","published_at":"2008-10-19T20:22:27.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.0.5","html_url":"https://github.com/rails/rails/releases/tag/v2.0.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.5/manifests"},{"name":"v2.1.1","sha":"d4eb3c0b7d13d3898c14d6ea7bfbc1853394f4e8","kind":"commit","published_at":"2008-09-04T14:31:40.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.1.1","html_url":"https://github.com/rails/rails/releases/tag/v2.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.1.1/manifests"},{"name":"v2.1.0","sha":"71528b1825ce5184b23d09f923cb72f4073ce8ed","kind":"commit","published_at":"2008-06-01T00:22:16.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.1.0","html_url":"https://github.com/rails/rails/releases/tag/v2.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.1.0/manifests"},{"name":"v2.0.3","sha":"44d721c193e5bc9d1fd9073ff65a241039467d7a","kind":"tag","published_at":"2008-05-12T00:04:24.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.0.3","html_url":"https://github.com/rails/rails/releases/tag/v2.0.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.3/manifests"},{"name":"v2.1.0_RC1","sha":"d2212c1601dcd67e72e9d52f98347d3285fd7134","kind":"tag","published_at":"2008-05-12T00:02:50.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.1.0_RC1","html_url":"https://github.com/rails/rails/releases/tag/v2.1.0_RC1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.1.0_RC1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.1.0_RC1/manifests"},{"name":"v2.0.2","sha":"c8da518bbfedc2a06b1d96912ddae00e57f21748","kind":"tag","published_at":"2008-04-11T00:25:55.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.0.2","html_url":"https://github.com/rails/rails/releases/tag/v2.0.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.2/manifests"},{"name":"v2.0.1","sha":"db885e81b9dc918a75bd66b1631a13e10447d0ff","kind":"tag","published_at":"2008-04-11T00:25:53.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.0.1","html_url":"https://github.com/rails/rails/releases/tag/v2.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.1/manifests"},{"name":"v2.0.0_RC2","sha":"1d32cec17d768ac78d52903f5ed8b19cc37c7f78","kind":"tag","published_at":"2008-04-11T00:25:52.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.0.0_RC2","html_url":"https://github.com/rails/rails/releases/tag/v2.0.0_RC2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.0_RC2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.0_RC2/manifests"},{"name":"v2.0.0_RC1","sha":"0f2c6302a19abce498d6cdbd44df0131c51fc8a3","kind":"tag","published_at":"2008-04-11T00:25:50.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.0.0_RC1","html_url":"https://github.com/rails/rails/releases/tag/v2.0.0_RC1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.0_RC1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.0_RC1/manifests"},{"name":"v2.0.0_PR","sha":"7275d2749cb829d89bffe7e6aa87c99084351f6a","kind":"tag","published_at":"2008-04-11T00:25:49.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.0.0_PR","html_url":"https://github.com/rails/rails/releases/tag/v2.0.0_PR","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.0_PR","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.0_PR/manifests"},{"name":"v2.0.0","sha":"db885e81b9dc918a75bd66b1631a13e10447d0ff","kind":"tag","published_at":"2008-04-11T00:25:47.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v2.0.0","html_url":"https://github.com/rails/rails/releases/tag/v2.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v2.0.0/manifests"},{"name":"v1.2.6","sha":"9c190098e0f80cf2638223142f335ffb25212b86","kind":"tag","published_at":"2008-04-11T00:25:45.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.2.6","html_url":"https://github.com/rails/rails/releases/tag/v1.2.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.6/manifests"},{"name":"v1.2.5","sha":"d201969236f1696e70c73e12a93229feac69ceda","kind":"tag","published_at":"2008-04-11T00:25:44.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.2.5","html_url":"https://github.com/rails/rails/releases/tag/v1.2.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.5/manifests"},{"name":"v1.2.4","sha":"478cd8223c5ef43abbbb347c5517910a5ab91b67","kind":"tag","published_at":"2008-04-11T00:25:42.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.2.4","html_url":"https://github.com/rails/rails/releases/tag/v1.2.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.4/manifests"},{"name":"v1.2.3","sha":"30549718ac827f3ae8c7afc8dc9a6bf639e4e65c","kind":"tag","published_at":"2008-04-11T00:25:41.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.2.3","html_url":"https://github.com/rails/rails/releases/tag/v1.2.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.3/manifests"},{"name":"v1.2.2","sha":"e73bdfc31be5acfddefdff6fa40515c145241f52","kind":"tag","published_at":"2008-04-11T00:25:39.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.2.2","html_url":"https://github.com/rails/rails/releases/tag/v1.2.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.2/manifests"},{"name":"v1.2.1","sha":"03e763ffc823531ea5a5a3be7134318f85370139","kind":"tag","published_at":"2008-04-11T00:25:37.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.2.1","html_url":"https://github.com/rails/rails/releases/tag/v1.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.1/manifests"},{"name":"v1.2.0_RC2","sha":"83a21f75cf518b7f50581041cfce038c196a56b5","kind":"tag","published_at":"2008-04-11T00:25:36.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.2.0_RC2","html_url":"https://github.com/rails/rails/releases/tag/v1.2.0_RC2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.0_RC2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.0_RC2/manifests"},{"name":"v1.2.0_RC1","sha":"12949bbc135a33c9618e7816105d70b8a9c7e426","kind":"tag","published_at":"2008-04-11T00:25:34.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.2.0_RC1","html_url":"https://github.com/rails/rails/releases/tag/v1.2.0_RC1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.0_RC1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.0_RC1/manifests"},{"name":"v1.2.0","sha":"5988aaa50e72643b021ec5e8562d14a39b4f54e1","kind":"tag","published_at":"2008-04-11T00:25:31.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.2.0","html_url":"https://github.com/rails/rails/releases/tag/v1.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.2.0/manifests"},{"name":"v1.1.6","sha":"e071b60e17913e210baf9bf77c4c5c0bb344d999","kind":"tag","published_at":"2008-04-11T00:25:29.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.1.6","html_url":"https://github.com/rails/rails/releases/tag/v1.1.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.6/manifests"},{"name":"v1.1.5","sha":"4874df1d674bccbe2fa41a12bb93fa63a5d489ee","kind":"tag","published_at":"2008-04-11T00:25:28.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.1.5","html_url":"https://github.com/rails/rails/releases/tag/v1.1.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.5/manifests"},{"name":"v1.1.4","sha":"14f11a73ed8cd50fa9075e3f068feaf3b89686ba","kind":"tag","published_at":"2008-04-11T00:25:26.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.1.4","html_url":"https://github.com/rails/rails/releases/tag/v1.1.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.4/manifests"},{"name":"v1.1.3","sha":"0c516b370b08e3e095fe24cc0e2b8d52fdecf9e0","kind":"tag","published_at":"2008-04-11T00:25:25.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.1.3","html_url":"https://github.com/rails/rails/releases/tag/v1.1.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.3/manifests"},{"name":"v1.1.2","sha":"83824935518f62cee9cc1c120b125085072f583c","kind":"tag","published_at":"2008-04-11T00:25:21.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.1.2","html_url":"https://github.com/rails/rails/releases/tag/v1.1.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.2/manifests"},{"name":"v1.1.1","sha":"496725022a09cd2100e1550745064fb5a6308ee4","kind":"tag","published_at":"2008-04-11T00:25:19.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.1.1","html_url":"https://github.com/rails/rails/releases/tag/v1.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.1/manifests"},{"name":"v1.1.0_RC1","sha":"330823687bbae1c05af6545912377d317300c1bb","kind":"tag","published_at":"2008-04-11T00:25:18.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.1.0_RC1","html_url":"https://github.com/rails/rails/releases/tag/v1.1.0_RC1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.0_RC1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.0_RC1/manifests"},{"name":"v1.1.0","sha":"9babb2014ba101e8c4a7b7808c3e3624ee7bb8d7","kind":"tag","published_at":"2008-04-11T00:25:16.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.1.0","html_url":"https://github.com/rails/rails/releases/tag/v1.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.1.0/manifests"},{"name":"v1.0.0","sha":"37e0d5de899cfbb3703067daefe2546215aaa4cc","kind":"tag","published_at":"2008-04-11T00:25:14.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v1.0.0","html_url":"https://github.com/rails/rails/releases/tag/v1.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v1.0.0/manifests"},{"name":"v0.9.5","sha":"11611c1b002243a766c86c374b812c61a5b672c7","kind":"tag","published_at":"2008-04-11T00:25:13.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.9.5","html_url":"https://github.com/rails/rails/releases/tag/v0.9.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.9.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.9.5/manifests"},{"name":"v0.9.4.1","sha":"03e44cbcb2426a97dd35f76bc2ac6491c69821b1","kind":"tag","published_at":"2008-04-11T00:25:11.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.9.4.1","html_url":"https://github.com/rails/rails/releases/tag/v0.9.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.9.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.9.4.1/manifests"},{"name":"v0.9.4","sha":"3b9be80a3a6b83156562d218e459822a51d6795c","kind":"tag","published_at":"2008-04-11T00:25:10.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.9.4","html_url":"https://github.com/rails/rails/releases/tag/v0.9.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.9.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.9.4/manifests"},{"name":"v0.9.3","sha":"b3739fca2c185831c97efdd9fdcaa23476863539","kind":"tag","published_at":"2008-04-11T00:25:08.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.9.3","html_url":"https://github.com/rails/rails/releases/tag/v0.9.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.9.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.9.3/manifests"},{"name":"v0.9.2","sha":"d9c0a37f37402fa128302b7c048201d2180a029e","kind":"tag","published_at":"2008-04-11T00:25:07.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.9.2","html_url":"https://github.com/rails/rails/releases/tag/v0.9.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.9.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.9.2/manifests"},{"name":"v0.9.1","sha":"ed14042feac6ff84670958fc3e2017aaacac5856","kind":"tag","published_at":"2008-04-11T00:25:06.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.9.1","html_url":"https://github.com/rails/rails/releases/tag/v0.9.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.9.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.9.1/manifests"},{"name":"v0.14.4","sha":"93bd3b00e16cb6d79d38480e1827935067c8c771","kind":"tag","published_at":"2008-04-11T00:25:04.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.14.4","html_url":"https://github.com/rails/rails/releases/tag/v0.14.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.14.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.14.4/manifests"},{"name":"v0.14.3","sha":"c2eb22e5c69caba0f9eeb5b95558837d0d572f44","kind":"tag","published_at":"2008-04-11T00:25:02.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.14.3","html_url":"https://github.com/rails/rails/releases/tag/v0.14.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.14.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.14.3/manifests"},{"name":"v0.14.2","sha":"98b0b117f755a5d27ac5161dc7d0757c3c217230","kind":"tag","published_at":"2008-04-11T00:25:01.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.14.2","html_url":"https://github.com/rails/rails/releases/tag/v0.14.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.14.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.14.2/manifests"},{"name":"v0.14.1","sha":"b437eee41d38188f10f11e041b82d7def0a20629","kind":"tag","published_at":"2008-04-11T00:24:59.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.14.1","html_url":"https://github.com/rails/rails/releases/tag/v0.14.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.14.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.14.1/manifests"},{"name":"v0.13.1","sha":"1911f8eee928915f1020753a4a3ba34c81131a66","kind":"tag","published_at":"2008-04-11T00:24:57.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.13.1","html_url":"https://github.com/rails/rails/releases/tag/v0.13.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.13.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.13.1/manifests"},{"name":"v0.13.0","sha":"a0d31fcd81ef690adf56568aa954a07081c6aecc","kind":"tag","published_at":"2008-04-11T00:24:56.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.13.0","html_url":"https://github.com/rails/rails/releases/tag/v0.13.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.13.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.13.0/manifests"},{"name":"v0.12.0","sha":"0270b26e41f33d66af3a2bea1371af037b0b5923","kind":"tag","published_at":"2008-04-11T00:24:54.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.12.0","html_url":"https://github.com/rails/rails/releases/tag/v0.12.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.12.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.12.0/manifests"},{"name":"v0.11.1","sha":"f7b89667ac4157d64697aa2f51bcea8a26c0fd8f","kind":"tag","published_at":"2008-04-11T00:24:53.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.11.1","html_url":"https://github.com/rails/rails/releases/tag/v0.11.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.11.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.11.1/manifests"},{"name":"v0.11.0","sha":"61d236d94133fb7ae2f0dce0badaf2bf07b301b7","kind":"tag","published_at":"2008-04-11T00:24:51.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.11.0","html_url":"https://github.com/rails/rails/releases/tag/v0.11.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.11.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.11.0/manifests"},{"name":"v0.10.1","sha":"25b656fefa75954cffff119a14cf7650f4f99a92","kind":"tag","published_at":"2008-04-11T00:24:49.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.10.1","html_url":"https://github.com/rails/rails/releases/tag/v0.10.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.10.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.10.1/manifests"},{"name":"v0.10.0","sha":"e2724aa1856253f4fc48ddc251583042c5f06029","kind":"tag","published_at":"2008-04-11T00:24:46.000Z","download_url":"https://codeload.github.com/rails/rails/tar.gz/v0.10.0","html_url":"https://github.com/rails/rails/releases/tag/v0.10.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.10.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rails%2Frails/tags/v0.10.0/manifests"}]},"repo_metadata_updated_at":"2025-06-06T01:10:43.718Z","dependent_packages_count":1688,"downloads":655515484,"downloads_period":"total","dependent_repos_count":876080,"rankings":{"downloads":0.020628672740045272,"dependent_repos_count":0.012265697304891783,"dependent_packages_count":0.030664243262229458,"stargazers_count":0.0016725950870306978,"forks_count":0.0011150633913537984,"docker_downloads_count":0.1432856457889631,"average":0.034938652929085684},"purl":"pkg:gem/actionpack","advisories":[{"uuid":"GSA_kwCzR0hTQS05NDQ1LTRjcjYtMzM2cs4AAxDx","url":"https://github.com/advisories/GHSA-9445-4cr6-336r","title":"Open Redirect Vulnerability in Action Pack","description":"There is a vulnerability in Action Controller’s redirect_to. This vulnerability has been assigned the CVE identifier CVE-2023-22797.\n\nVersions Affected: \u003e= 7.0.0 Not affected: \u003c 7.0.0 Fixed Versions: 7.0.4.1\nImpact \n\nThere is a possible open redirect when using the redirect_to helper with untrusted user input.\n\nVulnerable code will look like this:\n```\nredirect_to(params[:some_param])\n```\n\nRails 7.0 introduced protection against open redirects from calling redirect_to with untrusted user input. In prior versions the developer was fully responsible for only providing trusted input. However the check introduced could be bypassed by a carefully crafted URL.\n\nAll users running an affected release should either upgrade or use one of the workarounds immediately.\nReleases\n\nThe FIXED releases are available at the normal locations.\nWorkarounds\n\nThere are no feasible workarounds for this issue.\nPatches\n\nTo aid users who aren’t able to upgrade immediately we have provided patches for the two supported release series. They are in git-am format and consist of a single changeset.\n\n    7-0-Fix-sec-issue-with-_url_host_allowed.patch - Patch for 7.0 series\n\nPlease note that only the 7.0.Z and 6.1.Z series are supported at present, and 6.0.Z for severe vulnerabilities. Users of earlier unsupported releases are advised to upgrade as soon as possible as we cannot guarantee the continued availability of security fixes for unsupported releases.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-01-18T18:21:23.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/rails/rails/releases/tag/v7.0.4.1","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2023-22797.yml","https://nvd.nist.gov/vuln/detail/CVE-2023-22797","https://discuss.rubyonrails.org/t/cve-2023-22799-possible-redos-based-dos-vulnerability-in-globalid/82127","https://github.com/advisories/GHSA-9445-4cr6-336r"],"source_kind":"github","identifiers":["GHSA-9445-4cr6-336r","CVE-2023-22797"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"7.0.4.1","vulnerable_version_range":"\u003e= 7.0.0, \u003c 7.0.4.1"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2023-01-18T19:03:22.074Z","updated_at":"2025-06-05T01:16:48.277Z","epss_percentage":0.0012,"epss_percentile":0.32137},{"uuid":"GSA_kwCzR0hTQS1wODR2LTQ1eGotd3dxas4AAxDz","url":"https://github.com/advisories/GHSA-p84v-45xj-wwqj","title":"ReDoS based DoS vulnerability in Action Dispatch","description":"There is a possible regular expression based DoS vulnerability in Action Dispatch. This vulnerability has been assigned the CVE identifier CVE-2023-22792.\n\nVersions Affected: \u003e= 3.0.0 Not affected: \u003c 3.0.0 Fixed Versions: 5.2.8.15 (Rails LTS), 6.1.7.1, 7.0.4.1\nImpact\n\nSpecially crafted cookies, in combination with a specially crafted X_FORWARDED_HOST header can cause the regular expression engine to enter a state of catastrophic backtracking. This can cause the process to use large amounts of CPU and memory, leading to a possible DoS vulnerability All users running an affected release should either upgrade or use one of the workarounds immediately.\nReleases\n\nThe FIXED releases are available at the normal locations.\nWorkarounds\n\nWe recommend that all users upgrade to one of the FIXED versions. In the meantime, users can mitigate this vulnerability by using a load balancer or other device to filter out malicious X_FORWARDED_HOST headers before they reach the application.\nPatches\n\nTo aid users who aren’t able to upgrade immediately we have provided patches for the two supported release series. They are in git-am format and consist of a single changeset.\n\n    6-1-Use-string-split-instead-of-regex-for-domain-parts.patch - Patch for 6.1 series\n    7-0-Use-string-split-instead-of-regex-for-domain-parts.patch - Patch for 7.0 series\n\nPlease note that only the 7.0.Z and 6.1.Z series are supported at present, and 6.0.Z for severe vulnerabilities. Users of earlier unsupported releases are advised to upgrade as soon as possible as we cannot guarantee the continued availability of security fixes for unsupported releases.\n\nhttps://rubyonrails.org/2023/1/17/Rails-Versions-6-0-6-1-6-1-7-1-7-0-4-1-have-been-released","origin":"UNSPECIFIED","severity":"LOW","published_at":"2023-01-18T18:23:34.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/rails/rails/releases/tag/v7.0.4.1","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2023-22792.yml","https://rubyonrails.org/2023/1/17/Rails-Versions-6-0-6-1-6-1-7-1-7-0-4-1-have-been-released","https://nvd.nist.gov/vuln/detail/CVE-2023-22792","https://discuss.rubyonrails.org/t/cve-2023-22792-possible-redos-based-dos-vulnerability-in-action-dispatch/82115","https://www.debian.org/security/2023/dsa-5372","https://security.netapp.com/advisory/ntap-20240202-0007","https://github.com/advisories/GHSA-p84v-45xj-wwqj"],"source_kind":"github","identifiers":["GHSA-p84v-45xj-wwqj","CVE-2023-22792"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"6.1.7.1","vulnerable_version_range":"\u003e= 6.0.0, \u003c 6.1.7.1"},{"first_patched_version":"7.0.4.1","vulnerable_version_range":"\u003e= 7.0.0, \u003c 7.0.4.1"},{"first_patched_version":"5.2.8.15","vulnerable_version_range":"\u003e= 3.0.0, \u003c 5.2.8.15"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2023-01-18T19:03:22.052Z","updated_at":"2025-06-05T01:14:28.006Z","epss_percentage":0.0236,"epss_percentile":0.84129},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZoNXEtOTZocC05amdt","url":"https://github.com/advisories/GHSA-6h5q-96hp-9jgm","title":"actionpack vulnerable to Cross-site Scripting","description":"Cross-site scripting (XSS) vulnerability in the `number_to_currency` helper in `actionpack/lib/action_view/helpers/number_helper.rb` in Ruby on Rails before 3.2.16 and 4.x before 4.0.2 allows remote attackers to inject arbitrary web script or HTML via the unit parameter.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:36.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2013-6415","https://github.com/advisories/GHSA-6h5q-96hp-9jgm","http://rhn.redhat.com/errata/RHSA-2013-1794.html","http://rhn.redhat.com/errata/RHSA-2014-0008.html","http://rhn.redhat.com/errata/RHSA-2014-1863.html","http://weblog.rubyonrails.org/2013/12/3/Rails_3_2_16_and_4_0_2_have_been_released/","http://www.debian.org/security/2014/dsa-2888","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2013-6415.yml","https://groups.google.com/forum/#!topic/ruby-security-ann/9WiRn2nhfq0","https://groups.google.com/forum/message/raw?msg=ruby-security-ann/9WiRn2nhfq0/2K2KRB4LwCMJ","https://puppet.com/security/cve/cve-2013-6415","https://web.archive.org/web/20131206180005/http://www.securityfocus.com/bid/64077","http://lists.opensuse.org/opensuse-updates/2013-12/msg00079.html","http://lists.opensuse.org/opensuse-updates/2013-12/msg00080.html","http://lists.opensuse.org/opensuse-updates/2013-12/msg00081.html","http://lists.opensuse.org/opensuse-updates/2013-12/msg00082.html","http://lists.opensuse.org/opensuse-updates/2014-01/msg00003.html","http://lists.opensuse.org/opensuse-updates/2014-01/msg00013.html"],"source_kind":"github","identifiers":["GHSA-6h5q-96hp-9jgm","CVE-2013-6415"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.0.2","vulnerable_version_range":"\u003e= 4.0.0, \u003c 4.0.2"},{"first_patched_version":"3.2.16","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.2.16"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.712Z","updated_at":"2023-11-10T05:01:01.000Z","epss_percentage":0.01506,"epss_percentile":0.7951},{"uuid":"GSA_kwCzR0hTQS14NzZ3LTZ2anItOHhnas4ABATe","url":"https://github.com/advisories/GHSA-x76w-6vjr-8xgj","title":"Possible ReDoS vulnerability in query parameter filtering in Action Dispatch","description":"There is a possible ReDoS vulnerability in the query parameter filtering routines of Action Dispatch. This vulnerability has been assigned the CVE identifier CVE-2024-41128.\n\nImpact\n------\n\nCarefully crafted query parameters can cause query parameter filtering to take an unexpected amount of time, possibly resulting in a DoS vulnerability. All users running an affected release should either upgrade or apply the relevant patch immediately.\n\nRuby 3.2 has mitigations for this problem, so Rails applications using Ruby 3.2 or newer are unaffected. Rails 8.0.0.beta1 depends on Ruby 3.2 or greater so is unaffected.\n\n\nReleases\n--------\nThe fixed releases are available at the normal locations.\n\nWorkarounds\n-----------\nUsers on Ruby 3.2 are unaffected by this issue.\n\n\nCredits\n-------\n\nThanks to [scyoon](https://hackerone.com/scyoon) for the report and patches!","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2024-10-15T23:35:33.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":6.6,"cvss_vector":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","references":["https://github.com/rails/rails/security/advisories/GHSA-x76w-6vjr-8xgj","https://nvd.nist.gov/vuln/detail/CVE-2024-41128","https://github.com/rails/rails/commit/27121e80f6dbb260f5a9f0452cd8411cb681f075","https://github.com/rails/rails/commit/b0fe99fa854ec8ff4498e75779b458392d1560ef","https://github.com/rails/rails/commit/b1241f468d1b32235f438c2e2203386e6efd3891","https://github.com/rails/rails/commit/fb493bebae1a9b83e494fe7edbf01f6167d606fd","https://access.redhat.com/security/cve/cve-2024-41128","https://bugzilla.redhat.com/show_bug.cgi?id=2319036","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2024-41128.yml","https://github.com/advisories/GHSA-x76w-6vjr-8xgj"],"source_kind":"github","identifiers":["GHSA-x76w-6vjr-8xgj","CVE-2024-41128"],"repository_url":"https://github.com/rails/rails","blast_radius":39.22078885529429,"packages":[{"versions":[{"first_patched_version":"7.2.1.1","vulnerable_version_range":"\u003e= 7.2.0, \u003c 7.2.1.1"},{"first_patched_version":"7.1.4.1","vulnerable_version_range":"\u003e= 7.1.0, \u003c 7.1.4.1"},{"first_patched_version":"7.0.8.5","vulnerable_version_range":"\u003e= 7.0.0, \u003c 7.0.8.5"},{"first_patched_version":"6.1.7.9","vulnerable_version_range":"\u003e= 3.1.0, \u003c 6.1.7.9"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2024-10-16T00:06:21.249Z","updated_at":"2025-06-05T01:13:00.397Z","epss_percentage":0.00347,"epss_percentile":0.56601},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd3angtM2c3ai04NTg0","url":"https://github.com/advisories/GHSA-7wjx-3g7j-8584","title":"Possible DoS Vulnerability in Action Controller Token Authentication","description":"There is a possible DoS vulnerability in the Token Authentication logic in Action Controller.\n\nVersions Affected:  \u003e= 4.0.0\nNot affected:       \u003c 4.0.0\nFixed Versions:     6.1.3.2, 6.0.3.7, 5.2.4.6, 5.2.6\n\nImpact\n------\nImpacted code uses `authenticate_or_request_with_http_token` or `authenticate_with_http_token` for request authentication.  Impacted code will look something like this:\n\n```\nclass PostsController \u003c ApplicationController\n  before_action :authenticate\n\n  private\n\n  def authenticate\n    authenticate_or_request_with_http_token do |token, options|\n      # ...\n    end\n  end\nend\n```\n\nAll users running an affected release should either upgrade or use one of the workarounds immediately.\n\nReleases\n--------\nThe fixed releases are available at the normal locations.\n\nWorkarounds\n-----------\nThe following monkey patch placed in an initializer can be used to work around the issue:\n\n```ruby\nmodule ActionController::HttpAuthentication::Token\n  AUTHN_PAIR_DELIMITERS = /(?:,|;|\\t)/\nend\n```\n\nPatches\n-------\nTo aid users who aren't able to upgrade immediately we have provided patches for the two supported release series. They are in git-am format and consist of a single changeset.\n\n* 5-2-http-authentication-dos.patch - Patch for 5.2 series\n* 6-0-http-authentication-dos.patch - Patch for 6.0 series\n* 6-1-http-authentication-dos.patch - Patch for 6.1 series\n\nPlease note that only the 6.1.Z, 6.0.Z, and 5.2.Z series are supported at present. Users of earlier unsupported releases are advised to upgrade as soon as possible as we cannot guarantee the continued availability of security fixes for unsupported releases.\n\nCredits\n-------\nThank you to https://hackerone.com/wonda_tea_coffee for reporting this issue!","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2021-05-05T19:49:12.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/rails/rails/releases/tag/v5.2.4.6","https://github.com/rails/rails/releases/tag/v5.2.6","https://github.com/rails/rails/releases/tag/v6.0.3.7","https://github.com/rails/rails/releases/tag/v6.1.3.2","https://groups.google.com/g/rubyonrails-security/c/Pf1TjkOBdyQ","https://nvd.nist.gov/vuln/detail/CVE-2021-22904","https://hackerone.com/reports/1101125","https://discuss.rubyonrails.org/t/cve-2021-22904-possible-dos-vulnerability-in-action-controller-token-authentication/77869","https://security.netapp.com/advisory/ntap-20210805-0009/","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2021-22904.yml","https://github.com/advisories/GHSA-7wjx-3g7j-8584"],"source_kind":"github","identifiers":["GHSA-7wjx-3g7j-8584","CVE-2021-22904"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"5.2.4.6","vulnerable_version_range":"\u003e= 4.0.0, \u003c= 5.2.4.5"},{"first_patched_version":"5.2.6","vulnerable_version_range":"\u003e= 5.2.5, \u003c 5.2.6"},{"first_patched_version":"6.1.3.2","vulnerable_version_range":"\u003e= 6.1.0, \u003c= 6.1.3.1"},{"first_patched_version":"6.0.3.7","vulnerable_version_range":"\u003e= 6.0.0, \u003c= 6.0.3.6"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:43.978Z","updated_at":"2025-06-05T01:16:01.225Z","epss_percentage":0.05406,"epss_percentile":0.89617},{"uuid":"GSA_kwCzR0hTQS12Zmc5LXIzZnEtanZ4NM4ABATd","url":"https://github.com/advisories/GHSA-vfg9-r3fq-jvx4","title":"Possible ReDoS vulnerability in HTTP Token authentication in Action Controller","description":"There is a possible ReDoS vulnerability in Action Controller's HTTP Token authentication. This vulnerability has been assigned the CVE identifier CVE-2024-47887.\n\nImpact\n------\n\nFor applications using HTTP Token authentication via `authenticate_or_request_with_http_token` or similar, a carefully crafted header may cause header parsing to take an unexpected amount of time, possibly resulting in a DoS vulnerability. All users running an affected release should either upgrade or apply the relevant patch immediately.\n\nRuby 3.2 has mitigations for this problem, so Rails applications using Ruby 3.2 or newer are unaffected. Rails 8.0.0.beta1 depends on Ruby 3.2 or greater so is unaffected.\n\nReleases\n--------\nThe fixed releases are available at the normal locations.\n\nWorkarounds\n-----------\nUsers on Ruby 3.2 are unaffected by this issue.\n\n\nCredits\n-------\nThanks to [scyoon](https://hackerone.com/scyoon) for reporting","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2024-10-15T23:35:35.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":6.6,"cvss_vector":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U","references":["https://github.com/rails/rails/security/advisories/GHSA-vfg9-r3fq-jvx4","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2024-47887.yml","https://github.com/advisories/GHSA-vfg9-r3fq-jvx4"],"source_kind":"github","identifiers":["GHSA-vfg9-r3fq-jvx4","CVE-2024-47887"],"repository_url":"https://github.com/rails/rails","blast_radius":39.22078885529429,"packages":[{"versions":[{"first_patched_version":"7.2.1.1","vulnerable_version_range":"\u003e= 7.2.0, \u003c 7.2.1.1"},{"first_patched_version":"7.1.4.1","vulnerable_version_range":"\u003e= 7.1.0, \u003c 7.1.4.1"},{"first_patched_version":"7.0.8.5","vulnerable_version_range":"\u003e= 7.0.0, \u003c 7.0.8.5"},{"first_patched_version":"6.1.7.9","vulnerable_version_range":"\u003e= 4.0.0, \u003c 6.1.7.9"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2024-10-16T00:06:25.707Z","updated_at":"2025-06-05T01:13:00.433Z","epss_percentage":0.00207,"epss_percentile":0.43485},{"uuid":"GSA_kwCzR0hTQS05Y2hyLTRmamgtNXJnd84AAvjh","url":"https://github.com/advisories/GHSA-9chr-4fjh-5rgw","title":"Cross-site Scripting in actionpack","description":"actionpack from the Ruby on Rails project is vulnerable to Cross-site Scripting in the Route Error Page. This issue has been patched with this [commit](https://github.com/rails/rails/commit/be177e4566747b73ff63fd5f529fab564e475ed4). \n\nThis vulnerability is disputed by the Rails security team. It requires that the developer is tricked into copy pasting a malicious javascript-containing string into a development-only error page accessible only via localhost.","origin":"UNSPECIFIED","severity":"LOW","published_at":"2022-10-27T12:00:27.000Z","withdrawn_at":"2023-01-23T20:44:50.000Z","classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2022-3704","https://github.com/rails/rails/commit/be177e4566747b73ff63fd5f529fab564e475ed4","https://vuldb.com/?id.212319","https://github.com/rails/rails/pull/46269","https://github.com/rails/rails/issues/46244#issuecomment-1380875153","https://github.com/rails/rails/issues/46244","https://github.com/advisories/GHSA-9chr-4fjh-5rgw"],"source_kind":"github","identifiers":["GHSA-9chr-4fjh-5rgw","CVE-2022-3704"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":null,"vulnerable_version_range":"\u003c= 7.0.4"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:11:54.329Z","updated_at":"2024-03-21T17:38:30.000Z","epss_percentage":0.00101,"epss_percentile":0.29114},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZ4OWotNDZyaC1mcXI4","url":"https://github.com/advisories/GHSA-vx9j-46rh-fqr8","title":"actionview contains Path Traversal vulnerability","description":"There is a possible directory traversal and information leak vulnerability in Action View. This was meant to be fixed on CVE-2016-0752. However the 3.2 patch was not covering all possible scenarios. This vulnerability has been assigned the CVE identifier CVE-2016-2097.\n\nVersions Affected:  3.2.x, 4.0.x, 4.1.x\nNot affected:       4.2+\nFixed Versions:     3.2.22.2, 4.1.14.2\n\nImpact\n------\nApplications that pass unverified user input to the `render` method in a controller may be vulnerable to an information leak vulnerability.\n\nImpacted code will look something like this:\n\n```ruby\ndef index\n  render params[:id]\nend\n```\n\nCarefully crafted requests can cause the above code to render files from unexpected places like outside the application's view directory, and can possibly escalate this to a remote code execution attack.\n\nAll users running an affected release should either upgrade or use one of the workarounds immediately.\n\nReleases\n--------\nThe FIXED releases are available at the normal locations.\n\nWorkarounds\n-----------\nA workaround to this issue is to not pass arbitrary user input to the `render` method. Instead, verify that data before passing it to the `render` method.\n\nFor example, change this:\n\n```ruby\ndef index\n  render params[:id]\nend\n```\n\nTo this:\n\n```ruby\ndef index\n  render verify_template(params[:id])\nend\n\nprivate\ndef verify_template(name)\n  # add verification logic particular to your application here\nend\n```\n\nPatches\n-------\nTo aid users who aren't able to upgrade immediately we have provided patches for it. It is in git-am format and consist of a single changeset.\n\n* 3-2-render_data_leak_2.patch - Patch for 3.2 series\n* 4-1-render_data_leak_2.patch - Patch for 4.1 series\n\nCredits\n-------\nThanks to both Jyoti Singh and Tobias Kraze from makandra for reporting this and working with us in the patch!","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:35.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2016-2097","http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00080.html","http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00083.html","http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00006.html","http://weblog.rubyonrails.org/2016/2/29/Rails-4-2-5-2-4-1-14-2-3-2-22-2-have-been-released/","http://www.debian.org/security/2016/dsa-3509","https://web.archive.org/web/20160322002234/http://www.securitytracker.com/id/1035122","https://web.archive.org/web/20200228015320/http://www.securityfocus.com/bid/83726","https://github.com/rails/rails/commit/8a1d3ea617ffb0c8ae8467fa439bf63a3bfc4324","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2016-2097.yml","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionview/CVE-2016-2097.yml","https://groups.google.com/forum/#!topic/rubyonrails-security/ddY6HgqB2z4","https://web.archive.org/web/20201221115217/https://groups.google.com/forum/message/raw?msg=rubyonrails-security/ddY6HgqB2z4/we0RasMZIAAJ","https://github.com/advisories/GHSA-vx9j-46rh-fqr8"],"source_kind":"github","identifiers":["GHSA-vx9j-46rh-fqr8","CVE-2016-2097"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.1.14.2","vulnerable_version_range":"\u003e= 4.0.0, \u003c= 4.1.14.1"},{"first_patched_version":"3.2.22.2","vulnerable_version_range":"\u003e= 3.0.0, \u003c= 3.2.22.1"}],"ecosystem":"rubygems","package_name":"actionpack"},{"versions":[{"first_patched_version":"4.1.14.2","vulnerable_version_range":"\u003e= 4.0.0, \u003c= 4.1.14.1"},{"first_patched_version":"3.2.22.2","vulnerable_version_range":"\u003e= 3.0.0, \u003c= 3.2.22.1"}],"ecosystem":"rubygems","package_name":"actionview"}],"created_at":"2022-12-21T16:12:59.558Z","updated_at":"2025-06-05T01:16:21.371Z","epss_percentage":0.05755,"epss_percentile":0.89993},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR3dzMtM3J4ai04djZx","url":"https://github.com/advisories/GHSA-4ww3-3rxj-8v6q","title":"actionpack allows remote attackers to bypass intended access restrictions","description":"`actionpack/lib/action_view/template/resolver.rb` in Ruby on Rails 3.0.x before 3.0.4, when a case-insensitive filesystem is used, does not properly implement filters associated with the list of available templates, which allows remote attackers to bypass intended access restrictions via an action name that uses an unintended case for alphabetic characters.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2011-0449","http://groups.google.com/group/rubyonrails-security/msg/04345b2e84df5b4f?dmode=source\u0026output=gplain","http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html","http://weblog.rubyonrails.org/2011/2/8/new-releases-2-3-11-and-3-0-4","https://github.com/rails/rails/commit/6f80224057803f85b3f448936aae89e742452c3b","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2011-0449.yml","https://web.archive.org/web/20201207190612/http://securitytracker.com/id?1025061","https://github.com/advisories/GHSA-4ww3-3rxj-8v6q"],"source_kind":"github","identifiers":["GHSA-4ww3-3rxj-8v6q","CVE-2011-0449"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.0.4","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.0.4"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:33.437Z","updated_at":"2023-05-12T15:23:23.000Z","epss_percentage":0.00555,"epss_percentile":0.66735},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZjcWYtaDRoNC02OTVt","url":"https://github.com/advisories/GHSA-fcqf-h4h4-695m","title":"actionpack CRLF injection vulnerability","description":"CRLF injection vulnerability in `actionpack/lib/action_controller/response.rb` in Ruby on Rails 2.3.x before 2.3.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the Content-Type header.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2011-3186","https://github.com/rails/rails/commit/11dafeaa7533be26441a63618be93a03869c83a9","https://bugzilla.redhat.com/show_bug.cgi?id=732156","http://groups.google.com/group/rubyonrails-security/msg/bbe342e43abaa78c?dmode=source\u0026output=gplain","http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065137.html","http://www.debian.org/security/2011/dsa-2301","http://www.openwall.com/lists/oss-security/2011/08/17/1","http://www.openwall.com/lists/oss-security/2011/08/19/11","http://www.openwall.com/lists/oss-security/2011/08/20/1","http://www.openwall.com/lists/oss-security/2011/08/22/13","http://www.openwall.com/lists/oss-security/2011/08/22/14","http://www.openwall.com/lists/oss-security/2011/08/22/5","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2011-3186.yml","https://groups.google.com/forum/#!topic/rubyonrails-security/b_yTveAph2g","https://web.archive.org/web/20150201000000*/http://secunia.com/advisories/45921","https://github.com/advisories/GHSA-fcqf-h4h4-695m"],"source_kind":"github","identifiers":["GHSA-fcqf-h4h4-695m","CVE-2011-3186"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"2.3.13","vulnerable_version_range":"\u003e= 2.3.0, \u003c 2.3.13"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.041Z","updated_at":"2023-11-06T05:01:55.000Z","epss_percentage":0.00814,"epss_percentile":0.72954},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM2cXItaDV2cS01OWpj","url":"https://github.com/advisories/GHSA-c6qr-h5vq-59jc","title":"Untrusted users can run pending migrations in production in Rails","description":"There is a vulnerability in versions of Rails prior to 6.0.3.2 that allowed an untrusted user to run any pending migrations on a Rails app running in production.\n\nThis vulnerability has been assigned the CVE identifier CVE-2020-8185.\n\nVersions Affected:  6.0.0 \u003c rails \u003c 6.0.3.2\nNot affected:       Applications with `config.action_dispatch.show_exceptions = false` (this is not a default setting in production)\nFixed Versions:     rails \u003e= 6.0.3.2\n\nImpact\n------\n\nUsing this issue, an attacker would be able to execute any migrations that are pending for a Rails app running in production mode. It is important to note that an attacker is limited to running migrations the application developer has already defined in their application and ones that have not already run.\n\nWorkarounds\n-----------\n\nUntil such time as the patch can be applied, application developers should disable the ActionDispatch middleware in their production environment via a line such as this one in their config/environment/production.rb:\n\n`config.middleware.delete ActionDispatch::ActionableExceptions`","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2020-06-24T17:40:33.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2020-8185","https://github.com/rails/rails/commit/2121b9d20b60ed503aa041ef7b926d331ed79fc2","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2020-8185.yml","https://groups.google.com/g/rubyonrails-security/c/pAe9EV8gbM0","https://hackerone.com/reports/899069","https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XJ7NUWXAEVRQCROIIBV4C6WXO6IR3KSB/","https://github.com/advisories/GHSA-c6qr-h5vq-59jc"],"source_kind":"github","identifiers":["GHSA-c6qr-h5vq-59jc","CVE-2020-8185"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"6.0.3.2","vulnerable_version_range":"\u003e= 6.0.0, \u003c= 6.0.3.1"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:23.928Z","updated_at":"2025-06-05T01:18:41.097Z","epss_percentage":0.01492,"epss_percentile":0.80151},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTN2ZnctN3JjcC0zeGdt","url":"https://github.com/advisories/GHSA-3vfw-7rcp-3xgm","title":"actionpack Improper Input Validation vulnerability","description":"The `to_s` method in `actionpack/lib/action_dispatch/middleware/remote_ip.rb` in Ruby on Rails 3.0.5 does not validate the X-Forwarded-For header in requests from IP addresses on a Class C network, which might allow remote attackers to inject arbitrary text into log files or bypass intended address parsing via a crafted header.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2011-3187","https://bugzilla.novell.com/show_bug.cgi?id=673010","http://webservsec.blogspot.com/2011/02/ruby-on-rails-vulnerability.html","http://www.openwall.com/lists/oss-security/2011/08/17/1","http://www.openwall.com/lists/oss-security/2011/08/19/11","http://www.openwall.com/lists/oss-security/2011/08/20/1","http://www.openwall.com/lists/oss-security/2011/08/22/13","http://www.openwall.com/lists/oss-security/2011/08/22/14","http://www.openwall.com/lists/oss-security/2011/08/22/5","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2011-3187.yml","https://web.archive.org/web/20111209181000/http://archives.neohapsis.com/archives/fulldisclosure/2011-02/0337.html","https://github.com/advisories/GHSA-3vfw-7rcp-3xgm"],"source_kind":"github","identifiers":["GHSA-3vfw-7rcp-3xgm","CVE-2011-3187"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"2.3.13","vulnerable_version_range":"\u003e= 2.3.0, \u003c 2.3.13"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.051Z","updated_at":"2023-11-10T05:03:18.000Z","epss_percentage":0.09423,"epss_percentile":0.92319},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdjZ3AtYzNnNy1xdnJ3","url":"https://github.com/advisories/GHSA-7cgp-c3g7-qvrw","title":"actionpack Improper Input Validation vulnerability","description":"`actionpack/lib/action_view/template/text.rb` in Action View in Ruby on Rails 3.x before 3.2.17 converts MIME type strings to symbols during use of the `:text` option to the `render` method, which allows remote attackers to cause a denial of service (memory consumption) by including these strings in headers.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:36.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2014-0082","http://lists.opensuse.org/opensuse-updates/2014-02/msg00081.html","http://openwall.com/lists/oss-security/2014/02/18/10","http://rhn.redhat.com/errata/RHSA-2014-0215.html","http://rhn.redhat.com/errata/RHSA-2014-0306.html","http://www.getchef.com/blog/2014/04/09/enterprise-chef-11-1-3-release/","https://web.archive.org/web/20201207044540/https://groups.google.com/forum/message/raw?msg=rubyonrails-security/LMxO_3_eCuc/ozGBEhKaJbIJ","https://web.archive.org/web/20220315115444/https://puppet.com/security/cve/cve-2014-0082","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2014-0082.yml","https://github.com/advisories/GHSA-7cgp-c3g7-qvrw"],"source_kind":"github","identifiers":["GHSA-7cgp-c3g7-qvrw","CVE-2014-0082"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.2.17","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.2.17"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.848Z","updated_at":"2025-06-05T01:18:57.372Z","epss_percentage":0.1024,"epss_percentile":0.92738},{"uuid":"GSA_kwCzR0hTQS13aDk4LXAyOHItdnJjOc0rDg","url":"https://github.com/advisories/GHSA-wh98-p28r-vrc9","title":"Exposure of information in Action Pack","description":"### Impact\n\nUnder certain circumstances response bodies will not be closed, for example a [bug in a webserver](https://github.com/puma/puma/pull/2812) or a bug in a Rack middleware.  In the event a response is *not* notified of a `close`, `ActionDispatch::Executor` will not know to reset thread local state for the next request.  This can lead to data being leaked to subsequent requests, especially when interacting with `ActiveSupport::CurrentAttributes`.\n\nUpgrading to the FIXED versions of Rails will ensure mitigation of this issue even in the context of a buggy webserver or middleware implementation.\n\n### Patches\n\nThis has been fixed in Rails 7.0.2.2, 6.1.4.6, 6.0.4.6, and 5.2.6.2.\n\n### Workarounds\n\nUpgrading is highly recommended, but to work around this problem the following middleware can be used:\n\n```ruby\nclass GuardedExecutor \u003c ActionDispatch::Executor\n  def call(env)\n    ensure_completed!\n    super\n  end\n\n  private\n\n    def ensure_completed!\n      @executor.new.complete! if @executor.active?\n    end\nend\n\n# Ensure the guard is inserted before ActionDispatch::Executor\nRails.application.configure do\n  config.middleware.swap ActionDispatch::Executor, GuardedExecutor, executor\nend\n```","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2022-02-11T20:49:14.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/rails/rails/security/advisories/GHSA-wh98-p28r-vrc9","https://github.com/rails/rails/commit/f9a2ad03943d5c2ba54e1d45f155442b519c75da","https://discuss.rubyonrails.org/t/cve-2022-23633-possible-exposure-of-information-vulnerability-in-action-pack/80016","https://rubyonrails.org/2022/2/11/Rails-7-0-2-2-6-1-4-6-6-0-4-6-and-5-2-6-2-have-been-released","https://nvd.nist.gov/vuln/detail/CVE-2022-23633","http://www.openwall.com/lists/oss-security/2022/02/11/5","https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html","https://www.debian.org/security/2023/dsa-5372","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2022-23633.yml","https://groups.google.com/g/ruby-security-ann/c/FkTM-_7zSNA/m/K2RiMJBlBAAJ","https://security.netapp.com/advisory/ntap-20240119-0013/","https://github.com/advisories/GHSA-wh98-p28r-vrc9"],"source_kind":"github","identifiers":["GHSA-wh98-p28r-vrc9","CVE-2022-23633"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"7.0.2.2","vulnerable_version_range":"\u003e= 7.0.0.0, \u003c= 7.0.2.1"},{"first_patched_version":"6.1.4.6","vulnerable_version_range":"\u003e= 6.1.0.0, \u003c= 6.1.4.5"},{"first_patched_version":"6.0.4.6","vulnerable_version_range":"\u003e= 6.0.0.0, \u003c= 6.0.4.5"},{"first_patched_version":"5.2.6.2","vulnerable_version_range":"\u003e= 5.0.0.0, \u003c= 5.2.6.1"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:35.965Z","updated_at":"2024-01-28T05:06:17.000Z","epss_percentage":0.0022,"epss_percentile":0.44745},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI0ZmctcDk2di1oeGg4","url":"https://github.com/advisories/GHSA-24fg-p96v-hxh8","title":"actionpack Cross-Site Request Forgery vulnerability","description":"Ruby on Rails 2.1.x, 2.2.x, and 2.3.x before 2.3.11, and 3.x before 3.0.4, does not properly validate HTTP requests that contain an X-Requested-With header, which makes it easier for remote attackers to conduct cross-site request forgery (CSRF) attacks via forged (1) AJAX or (2) API requests that leverage \"combinations of browser plugins and HTTP redirects,\" a related issue to CVE-2011-0696.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2011-0447","http://groups.google.com/group/rubyonrails-security/msg/c22ea1668c0d181c?dmode=source\u0026output=gplain","http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html","http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055074.html","http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055088.html","http://weblog.rubyonrails.org/2011/2/8/csrf-protection-bypass-in-ruby-on-rails","http://www.debian.org/security/2011/dsa-2247","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2011-0447.yml","https://web.archive.org/web/20120527023027/http://www.securityfocus.com/bid/46291","https://web.archive.org/web/20170223045008/http://www.securitytracker.com/id?1025060","https://github.com/rails/rails/commit/66ce3843d32e9f2ac3b1da20067af53019bbb034","https://github.com/rails/rails/commit/7e86f9b4d2b7dfa974c10ae7e6d8ef90f3d77f06","https://github.com/advisories/GHSA-24fg-p96v-hxh8"],"source_kind":"github","identifiers":["GHSA-24fg-p96v-hxh8","CVE-2011-0447"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.0.4","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.0.4"},{"first_patched_version":"2.3.11","vulnerable_version_range":"\u003e= 2.1.0, \u003c 2.3.11"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:37.965Z","updated_at":"2023-11-08T05:00:56.000Z","epss_percentage":0.01167,"epss_percentile":0.77509},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc4cmMtOGMyOS1wNDVn","url":"https://github.com/advisories/GHSA-78rc-8c29-p45g","title":"actionpack allows remote code execution via application's unrestricted use of render method","description":"Action Pack in Ruby on Rails before 3.2.22.2, 4.x before 4.1.14.2, and 4.2.x before 4.2.5.2 allows remote attackers to execute arbitrary Ruby code by leveraging an application's unrestricted use of the render method.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2017-10-24T18:33:35.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2016-2098","https://www.exploit-db.com/exploits/40086/","http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00057.html","http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00080.html","http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00083.html","http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00086.html","http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00006.html","http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00053.html","http://weblog.rubyonrails.org/2016/2/29/Rails-4-2-5-2-4-1-14-2-3-2-22-2-have-been-released/","http://www.debian.org/security/2016/dsa-3509","https://web.archive.org/web/20200228015318/http://www.securityfocus.com/bid/83725","https://web.archive.org/web/20210612214217/https://groups.google.com/forum/message/raw?msg=rubyonrails-security/ly-IH-fxr_Q/WLoOhcMZIAAJ","https://web.archive.org/web/20211205173437/https://securitytracker.com/id/1035122","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2016-2098.yml","https://groups.google.com/forum/#!topic/rubyonrails-security/ly-IH-fxr_Q","https://github.com/advisories/GHSA-78rc-8c29-p45g"],"source_kind":"github","identifiers":["GHSA-78rc-8c29-p45g","CVE-2016-2098"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.2.5.2","vulnerable_version_range":"\u003e= 4.2.0, \u003c= 4.2.5.1"},{"first_patched_version":"4.1.14.2","vulnerable_version_range":"\u003e= 4.0.0, \u003c= 4.1.14.1"},{"first_patched_version":"3.2.22.2","vulnerable_version_range":"\u003e= 3.0.0, \u003c= 3.2.22.1"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:59.185Z","updated_at":"2025-06-05T01:18:10.808Z","epss_percentage":0.8743,"epss_percentile":0.99408},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW01M2YtcmhxOC1xNmhm","url":"https://github.com/advisories/GHSA-m53f-rhq8-q6hf","title":"Moderate severity vulnerability that affects actionpack","description":"Withdrawn, accidental duplicate publish.\n\nactionpack/lib/action_dispatch/http/mime_type.rb in Action Pack in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 does not properly restrict use of the MIME type cache, which allows remote attackers to cause a denial of service (memory consumption) via a crafted HTTP Accept header.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2018-09-17T21:55:03.000Z","withdrawn_at":"2020-06-17T15:14:56.000Z","classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2016-0751","https://github.com/advisories/GHSA-m53f-rhq8-q6hf"],"source_kind":"github","identifiers":["GHSA-m53f-rhq8-q6hf"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.2.5.1","vulnerable_version_range":"\u003e= 4.2.0, \u003c= 4.2.5.0"},{"first_patched_version":"4.1.14.1","vulnerable_version_range":"\u003e= 4.0.0, \u003c= 4.1.14.0"},{"first_patched_version":"3.2.22.1","vulnerable_version_range":"\u003c= 3.2.22.0"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:41.288Z","updated_at":"2023-01-09T05:03:41.000Z","epss_percentage":null,"epss_percentile":null},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU0NGotNzd4OS1oOTM4","url":"https://github.com/advisories/GHSA-544j-77x9-h938","title":"Moderate severity vulnerability that affects actionpack","description":"Withdrawn, accidental duplicate publish.\n\nactionpack/lib/action_dispatch/routing/route_set.rb in Action Pack in Ruby on Rails 4.x before 4.2.5.1 and 5.x before 5.0.0.beta1.1 allows remote attackers to cause a denial of service (superfluous caching and memory consumption) by leveraging an application's use of a wildcard controller route.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2018-09-17T21:53:30.000Z","withdrawn_at":"2020-06-16T20:59:59.000Z","classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2015-7581","https://github.com/advisories/GHSA-544j-77x9-h938"],"source_kind":"github","identifiers":["GHSA-544j-77x9-h938"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.1.14.1","vulnerable_version_range":"\u003e= 4.0.0, \u003c= 4.1.14.0"},{"first_patched_version":"4.2.5.1","vulnerable_version_range":"\u003e= 4.2.0, \u003c= 4.2.5.0"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:41.317Z","updated_at":"2023-01-09T05:02:44.000Z","epss_percentage":null,"epss_percentile":null},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh4cjgtODMzdi1jN3dj","url":"https://github.com/advisories/GHSA-xxr8-833v-c7wc","title":"Cross-site Scripting vulnerability in i18n translations helper method","description":"Cross-site scripting (XSS) vulnerability in the i18n translations helper method in Ruby on Rails 3.0.x before 3.0.11 and 3.1.x before 3.1.2, and the rails_xss plugin in Ruby on Rails 2.3.x, allows remote attackers to inject arbitrary web script or HTML via vectors related to a translations string whose name ends with an \"html\" substring.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2011-4319","https://exchange.xforce.ibmcloud.com/vulnerabilities/71364","http://groups.google.com/group/rubyonrails-security/browse_thread/thread/2b61d70fb73c7cc5?pli=1","http://groups.google.com/group/rubyonrails-security/msg/c65c24fbc4b6dd82?dmode=source\u0026output=gplain","http://openwall.com/lists/oss-security/2011/11/18/8","http://weblog.rubyonrails.org/2011/11/18/rails-3-0-11-has-been-released","http://weblog.rubyonrails.org/2011/11/18/rails-3-1-2-has-been-released","https://github.com/rails/rails/commit/2d5b105d4bcb652550dda8b5613376d1b8beb70c","https://github.com/rails/rails/commit/ba2d85012088fd0db0fab98b2e512c77c83cbade","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2011-4319.yml","https://groups.google.com/forum/#!topic/rubyonrails-security/K2HXD7c8fMU","https://web.archive.org/web/20200228155840/http://www.securityfocus.com/bid/50722","https://web.archive.org/web/20210307005941/http://www.securitytracker.com/id?1026342","https://github.com/advisories/GHSA-xxr8-833v-c7wc"],"source_kind":"github","identifiers":["GHSA-xxr8-833v-c7wc","CVE-2011-4319"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.1.2","vulnerable_version_range":"\u003e= 3.1.0, \u003c 3.1.2"},{"first_patched_version":"3.0.11","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.0.11"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.061Z","updated_at":"2023-11-08T05:01:01.000Z","epss_percentage":0.00607,"epss_percentile":0.68505},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhncHAtcHA4OS00Zmdm","url":"https://github.com/advisories/GHSA-hgpp-pp89-4fgf","title":"Action Pack contains database-query restrictions bypass","description":"`actionpack/lib/action_dispatch/http/request.rb` in Ruby on Rails before 2.3.16, 3.0.x before 3.0.13, 3.1.x before 3.1.5, and 3.2.x before 3.2.4 does not properly consider differences in parameter handling between the Active Record component and the Rack interface, which allows remote attackers to bypass intended database-query restrictions and perform NULL checks via a crafted request, as demonstrated by certain `[nil]` values, a related issue to CVE-2012-2694.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2012-2660","https://groups.google.com/group/rubyonrails-security/msg/d890f8d58b5fbf32?dmode=source\u0026output=gplain","http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00002.html","http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00014.html","http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00016.html","http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00017.html","http://lists.opensuse.org/opensuse-updates/2012-08/msg00046.html","http://rhn.redhat.com/errata/RHSA-2013-0154.html","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2012-2660.yml","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activerecord/CVE-2012-2660.yml","https://groups.google.com/g/rubyonrails-security/c/8SA-M3as7A8/m/Mr9fi9X4kNgJ","https://github.com/rails/rails/commit/61eed87ce32caf534bf1f52dd8134097b4ad9e1b","https://github.com/advisories/GHSA-hgpp-pp89-4fgf"],"source_kind":"github","identifiers":["GHSA-hgpp-pp89-4fgf","CVE-2012-2660"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"2.3.16","vulnerable_version_range":"\u003c 2.3.16"},{"first_patched_version":"3.0.13","vulnerable_version_range":"\u003e= 3.0.0.beta, \u003c 3.0.13"},{"first_patched_version":"3.2.4","vulnerable_version_range":"\u003e= 3.2.0, \u003c 3.2.4"},{"first_patched_version":"3.1.5","vulnerable_version_range":"\u003e= 3.1.0, \u003c 3.1.5"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.119Z","updated_at":"2025-06-05T01:12:40.594Z","epss_percentage":0.00193,"epss_percentile":0.41877},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEzNGMtNDhnYy1tOWc4","url":"https://github.com/advisories/GHSA-q34c-48gc-m9g8","title":"actionpack allows remote attackers to bypass database-query restrictions, perform NULL checks via crafted request","description":"`actionpack/lib/action_dispatch/http/request.rb` in Ruby on Rails before 3.0.14, 3.1.x before 3.1.6, and 3.2.x before 3.2.6 does not properly consider differences in parameter handling between the Active Record component and the Rack interface, which allows remote attackers to bypass intended database-query restrictions and perform NULL checks via a crafted request, as demonstrated by certain `['xyz', nil]` values, a related issue to CVE-2012-2660.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2012-2694","https://groups.google.com/group/rubyonrails-security/msg/e2d3a87f2c211def?dmode=source\u0026output=gplain","http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00002.html","http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00014.html","http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00016.html","http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00017.html","http://lists.opensuse.org/opensuse-updates/2012-08/msg00046.html","http://rhn.redhat.com/errata/RHSA-2013-0154.html","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2012-2694.yml","https://groups.google.com/g/rubyonrails-security/c/jILZ34tAHF4/m/7x0hLH-o0-IJ","https://github.com/rails/rails/commit/2f3bc0467311781ac1ceb2c8c2b09002c8fe143a","https://github.com/rails/rails/commit/c202638225519b5e1a03ebe523b109c948fb0e52","https://github.com/advisories/GHSA-q34c-48gc-m9g8"],"source_kind":"github","identifiers":["GHSA-q34c-48gc-m9g8","CVE-2012-2694"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.0.14","vulnerable_version_range":"\u003e= 3.0.13, \u003c 3.0.14"},{"first_patched_version":"3.2.6","vulnerable_version_range":"\u003e= 3.2.0, \u003c 3.2.6"},{"first_patched_version":"3.1.6","vulnerable_version_range":"\u003e= 3.1.0, \u003c 3.1.6"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.138Z","updated_at":"2025-06-05T01:12:41.433Z","epss_percentage":0.00128,"epss_percentile":0.33479},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE3NTktaHd2Yy1tM2pn","url":"https://github.com/advisories/GHSA-q759-hwvc-m3jg","title":"actionpack Cross-site Scripting vulnerability","description":"The `sanitize_css` method in `lib/action_controller/vendor/html-scanner/html/sanitizer.rb` in the Action Pack component in Ruby on Rails before 2.3.18, 3.0.x and 3.1.x before 3.1.12, and 3.2.x before 3.2.13 does not properly handle `\\n` (newline) characters, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via crafted Cascading Style Sheets (CSS) token sequences.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:37.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2013-1855","https://groups.google.com/group/rubyonrails-security/msg/8ed835a97cdd1afd?dmode=source\u0026output=gplain","http://lists.opensuse.org/opensuse-updates/2013-04/msg00072.html","http://lists.opensuse.org/opensuse-updates/2013-04/msg00073.html","http://lists.opensuse.org/opensuse-updates/2014-01/msg00013.html","http://rhn.redhat.com/errata/RHSA-2013-0698.html","http://rhn.redhat.com/errata/RHSA-2014-1863.html","http://support.apple.com/kb/HT5784","http://weblog.rubyonrails.org/2013/3/18/SEC-ANN-Rails-3-2-13-3-1-12-and-2-3-18-have-been-released/","https://web.archive.org/web/20130609174600/http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html","https://web.archive.org/web/20131109010518/http://lists.apple.com/archives/security-announce/2013/Oct/msg00006.html","https://access.redhat.com/errata/RHSA-2013:0698","https://access.redhat.com/errata/RHSA-2014:1863","https://access.redhat.com/security/cve/CVE-2013-1855","https://bugzilla.redhat.com/show_bug.cgi?id=921331","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2013-1855.yml","https://github.com/advisories/GHSA-q759-hwvc-m3jg"],"source_kind":"github","identifiers":["GHSA-q759-hwvc-m3jg","CVE-2013-1855"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.2.13","vulnerable_version_range":"\u003e= 3.2.0, \u003c 3.2.13"},{"first_patched_version":"3.1.12","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.1.12"},{"first_patched_version":"2.3.18","vulnerable_version_range":"\u003c 2.3.18"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.458Z","updated_at":"2023-08-25T20:06:34.000Z","epss_percentage":0.00536,"epss_percentile":0.66087},{"uuid":"GSA_kwCzR0hTQS1xNThqLWZtdmYtOXJxNs0_jg","url":"https://github.com/advisories/GHSA-q58j-fmvf-9rq6","title":"Cross site scripting in actionpack Rubygem","description":"A cross-site scripting vulnerability flaw was found in the `auto_link` function in Rails before version 3.0.6.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2022-04-22T00:24:28.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2011-1497","https://github.com/rails/rails/blob/38df020c95beca7e12f0188cb7e18f3c37789e20/actionpack/CHANGELOG","https://www.openwall.com/lists/oss-security/2011/04/06/13","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2011-1497.yml","https://github.com/rails/rails/commit/61ee3449674c591747db95f9b3472c5c3bd9e84d","https://github.com/rails/rails/commit/ab764ecbfea31a3b14323283287e2fc80955ace6","https://github.com/advisories/GHSA-q58j-fmvf-9rq6"],"source_kind":"github","identifiers":["GHSA-q58j-fmvf-9rq6","CVE-2011-1497"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.0.6","vulnerable_version_range":"\u003e= 3.0.0.rc, \u003c 3.0.6"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:18.648Z","updated_at":"2025-01-20T16:18:31.000Z","epss_percentage":0.00448,"epss_percentile":0.62501},{"uuid":"GSA_kwCzR0hTQS1qamh4LWpodnAtNzR3cc4AA5jN","url":"https://github.com/advisories/GHSA-jjhx-jhvp-74wq","title":"Rails has possible ReDoS vulnerability in Accept header parsing in Action Dispatch","description":"# Possible ReDoS vulnerability in Accept header parsing in Action Dispatch\n\nThere is a possible ReDoS vulnerability in the Accept header parsing routines\nof Action Dispatch. This vulnerability has been assigned the CVE identifier\nCVE-2024-26142.\n\nVersions Affected:  \u003e= 7.1.0, \u003c 7.1.3.1\nNot affected:       \u003c 7.1.0\nFixed Versions:     7.1.3.1\n\nImpact\n------\nCarefully crafted Accept headers can cause Accept header parsing in Action\nDispatch to take an unexpected amount of time, possibly resulting in a DoS\nvulnerability.  All users running an affected release should either upgrade or\nuse one of the workarounds immediately.\n\nRuby 3.2 has mitigations for this problem, so Rails applications using Ruby\n3.2 or newer are unaffected.\n\nReleases\n--------\nThe fixed releases are available at the normal locations.\n\nWorkarounds\n-----------\nThere are no feasible workarounds for this issue.\n\nPatches\n-------\nTo aid users who aren't able to upgrade immediately we have provided patches for\nthe two supported release series. They are in git-am format and consist of a\nsingle changeset.\n\n* 7-1-accept-redox.patch - Patch for 7.1 series\n\nCredits\n-------\nThanks [svalkanov](https://hackerone.com/svalkanov) for the report and patch!","origin":"UNSPECIFIED","severity":"LOW","published_at":"2024-02-27T21:41:09.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/rails/rails/security/advisories/GHSA-jjhx-jhvp-74wq","https://nvd.nist.gov/vuln/detail/CVE-2024-26142","https://github.com/rails/rails/commit/b4d3bfb5ed8a5b5a90aad3a3b28860c7a931e272","https://discuss.rubyonrails.org/t/possible-redos-vulnerability-in-accept-header-parsing-in-action-dispatch/84946","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2024-26142.yml","https://github.com/advisories/GHSA-jjhx-jhvp-74wq"],"source_kind":"github","identifiers":["GHSA-jjhx-jhvp-74wq","CVE-2024-26142"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"7.1.3.1","vulnerable_version_range":"\u003e= 7.1.0, \u003c 7.1.3.1"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2024-02-27T22:04:48.353Z","updated_at":"2025-06-05T01:14:14.698Z","epss_percentage":0.02317,"epss_percentile":0.83989},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY5djQtN2pwNi04Yzcz","url":"https://github.com/advisories/GHSA-v9v4-7jp6-8c73","title":"rails Cross-site Scripting vulnerability","description":"The cross-site scripting (XSS) prevention feature in Ruby on Rails 2.x before 2.3.12, 3.0.x before 3.0.8, and 3.1.x before 3.1.0.rc2 does not properly handle mutation of safe buffers, which makes it easier for remote attackers to conduct XSS attacks via crafted strings to an application that uses a problematic string method, as demonstrated by the sub method.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2011-2197","http://groups.google.com/group/rubyonrails-security/msg/663b600d4471e0d4?dmode=source\u0026output=gplain","http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062514.html","http://lists.fedoraproject.org/pipermail/package-announce/2011-June/062090.html","http://openwall.com/lists/oss-security/2011/06/09/2","http://openwall.com/lists/oss-security/2011/06/13/9","http://weblog.rubyonrails.org/2011/6/8/potential-xss-vulnerability-in-ruby-on-rails-applications","https://github.com/rails/rails/commit/53a2c0baf2b128dd4808eca313256f6f4bb8c4cd","https://github.com/rails/rails/commit/ed3796434af6069ced6a641293cf88eef3b284da","https://gist.github.com/NZKoz/b2ceb626fc2bcdfe497f","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activesupport/CVE-2011-2197.yml","https://github.com/advisories/GHSA-v9v4-7jp6-8c73"],"source_kind":"github","identifiers":["GHSA-v9v4-7jp6-8c73","CVE-2011-2197"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.0.8","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.0.7"},{"first_patched_version":"2.3.12","vulnerable_version_range":"\u003e= 2.0.0, \u003c 2.3.11"}],"ecosystem":"rubygems","package_name":"activesupport"},{"versions":[{"first_patched_version":"3.0.8","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.0.7"},{"first_patched_version":"2.3.12","vulnerable_version_range":"\u003e= 2.0.0, \u003c 2.3.11"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:37.993Z","updated_at":"2023-11-07T05:05:41.000Z","epss_percentage":0.00442,"epss_percentile":0.61989},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThxcmgtaDltMi01ZnZm","url":"https://github.com/advisories/GHSA-8qrh-h9m2-5fvf","title":"Cross site scripting that affects rails","description":"Cross-site scripting (XSS) vulnerability in Ruby on Rails 2.x before 2.2.3, and 2.3.x before 2.3.4, allows remote attackers to inject arbitrary web script or HTML by placing malformed Unicode strings into a form helper.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2009-3009","https://exchange.xforce.ibmcloud.com/vulnerabilities/53036","https://github.com/advisories/GHSA-8qrh-h9m2-5fvf","http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=545063","http://groups.google.com/group/rubyonrails-security/msg/7f57cd7794e1d1b4?dmode=source","http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html","http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00004.html","http://secunia.com/advisories/36600","http://secunia.com/advisories/36717","http://securitytracker.com/id?1022824","http://support.apple.com/kb/HT4077","http://weblog.rubyonrails.org/2009/9/4/xss-vulnerability-in-ruby-on-rails","http://www.debian.org/security/2009/dsa-1887","http://www.osvdb.org/57666","http://www.securityfocus.com/bid/36278","http://www.vupen.com/english/advisories/2009/2544","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activesupport/CVE-2009-3009.yml"],"source_kind":"github","identifiers":["GHSA-8qrh-h9m2-5fvf","CVE-2009-3009"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"2.3.4","vulnerable_version_range":"\u003e= 2.3.0, \u003c 2.3.4"},{"first_patched_version":"2.2.3","vulnerable_version_range":"\u003e= 2.0.0, \u003c 2.2.3"}],"ecosystem":"rubygems","package_name":"activesupport"},{"versions":[{"first_patched_version":"2.3.4","vulnerable_version_range":"\u003e= 2.3.0, \u003c 2.3.4"},{"first_patched_version":"2.2.3","vulnerable_version_range":"\u003e= 2.0.0, \u003c 2.2.3"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:37.897Z","updated_at":"2023-11-07T05:06:08.000Z","epss_percentage":0.01632,"epss_percentile":0.80806},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc1dzYtcDZtZy12aDhq","url":"https://github.com/advisories/GHSA-75w6-p6mg-vh8j","title":"Rails actionpack gem vulnerable to Cross-site Scripting","description":"Multiple cross-site scripting (XSS) vulnerabilities in the `mail_to` helper in Ruby on Rails before 2.3.11, and 3.x before 3.0.4, when javascript encoding is used, allow remote attackers to inject arbitrary web script or HTML via a crafted (1) name or (2) email value.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2011-0446","http://groups.google.com/group/rubyonrails-security/msg/365b8a23b76a6b4a?dmode=source\u0026output=gplain","http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html","http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055074.html","http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055088.html","http://www.debian.org/security/2011/dsa-2247","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionview/CVE-2011-0446.yml","https://groups.google.com/g/rubyonrails-security/c/8CpI7egxX4E/m/SmtqtyOKWzYJ","https://web.archive.org/web/20120527023027/http://www.securityfocus.com/bid/46291","https://web.archive.org/web/20200812054342/http://www.securitytracker.com/id?1025064","https://github.com/rails/rails/commit/abe97736b8316f1b714cac56c115c0779aa73217","https://github.com/rails/rails/commit/e3dd2107c57a8efaaea5d61cf8da65f7444760b2","https://web.archive.org/web/20111225083933/http://secunia.com/advisories/43274","https://web.archive.org/web/20111225083933/http://secunia.com/advisories/43666","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2011-0446.yml","https://github.com/advisories/GHSA-75w6-p6mg-vh8j"],"source_kind":"github","identifiers":["GHSA-75w6-p6mg-vh8j","CVE-2011-0446"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.0.4","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.0.4"},{"first_patched_version":"2.3.11","vulnerable_version_range":"\u003c 2.3.11"}],"ecosystem":"rubygems","package_name":"actionview"},{"versions":[{"first_patched_version":"3.0.4","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.0.4"},{"first_patched_version":"2.3.11","vulnerable_version_range":"\u003c 2.3.11"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:37.955Z","updated_at":"2023-11-09T05:00:30.000Z","epss_percentage":0.0067,"epss_percentile":0.7001},{"uuid":"GSA_kwCzR0hTQS05ODIyLTZtOTMteHFmNM4AA5jO","url":"https://github.com/advisories/GHSA-9822-6m93-xqf4","title":"Rails has possible XSS Vulnerability in Action Controller","description":"# Possible XSS Vulnerability in Action Controller\n\nThere is a possible XSS vulnerability when using the translation helpers\n(`translate`, `t`, etc) in Action Controller. This vulnerability has been\nassigned the CVE identifier CVE-2024-26143.\n\nVersions Affected:  \u003e= 7.0.0.\nNot affected:       \u003c 7.0.0\nFixed Versions:     7.1.3.1, 7.0.8.1\n\nImpact\n------\nApplications using translation methods like `translate`, or `t` on a\ncontroller, with a key ending in \"_html\", a `:default` key which contains\nuntrusted user input, and the resulting string is used in a view, may be\nsusceptible to an XSS vulnerability.\n\nFor example, impacted code will look something like this:\n\n```ruby\nclass ArticlesController \u003c ApplicationController\n  def show  \n    @message = t(\"message_html\", default: untrusted_input)\n    # The `show` template displays the contents of `@message`\n  end\nend\n```\n\nTo reiterate the pre-conditions, applications must:\n\n* Use a translation function from a controller (i.e. _not_ I18n.t, or `t` from\n  a view)\n* Use a key that ends in `_html`\n* Use a default value where the default value is untrusted and unescaped input\n* Send the text to the victim (whether that's part of a template, or a\n  `render` call)\n\nAll users running an affected release should either upgrade or use one of the\nworkarounds immediately.\n\nReleases\n--------\nThe fixed releases are available at the normal locations.\n\nWorkarounds\n-----------\nThere are no feasible workarounds for this issue.\n\nPatches\n-------\nTo aid users who aren't able to upgrade immediately we have provided patches for\nthe two supported release series. They are in git-am format and consist of a\nsingle changeset.\n\n*  7-0-translate-xss.patch - Patch for 7.0 series\n*  7-1-translate-xss.patch - Patch for 7.1 series\n\nCredits\n-------\n\nThanks to [ooooooo_q](https://hackerone.com/ooooooo_q) for the patch and fix!","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2024-02-27T21:41:12.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/rails/rails/security/advisories/GHSA-9822-6m93-xqf4","https://nvd.nist.gov/vuln/detail/CVE-2024-26143","https://github.com/rails/rails/commit/4c83b331092a79d58e4adffe4be5f250fa5782cc","https://github.com/rails/rails/commit/5187a9ef51980ad1b8e81945ebe0462d28f84f9e","https://discuss.rubyonrails.org/t/possible-xss-vulnerability-in-action-controller/84947","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2024-26143.yml","https://security.netapp.com/advisory/ntap-20240510-0004","https://github.com/advisories/GHSA-9822-6m93-xqf4"],"source_kind":"github","identifiers":["GHSA-9822-6m93-xqf4","CVE-2024-26143"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"7.1.3.1","vulnerable_version_range":"\u003e= 7.1.0, \u003c 7.1.3.1"},{"first_patched_version":"7.0.8.1","vulnerable_version_range":"\u003e= 7.0.0, \u003c 7.0.8.1"}],"ecosystem":"rubygems","package_name":"rails"},{"versions":[{"first_patched_version":"7.1.3.1","vulnerable_version_range":"\u003e= 7.1.0, \u003c 7.1.3.1"},{"first_patched_version":"7.0.8.1","vulnerable_version_range":"\u003e= 7.0.0, \u003c 7.0.8.1"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2024-02-27T22:04:48.333Z","updated_at":"2024-06-10T18:31:57.000Z","epss_percentage":0.01712,"epss_percentile":0.8149},{"uuid":"GSA_kwCzR0hTQS1md2hyLTg4cXgtaDlnN84AA8tD","url":"https://github.com/advisories/GHSA-fwhr-88qx-h9g7","title":"Missing security headers in Action Pack on non-HTML responses","description":"# Permissions-Policy is Only Served on HTML Content-Type\n\nThe application configurable Permissions-Policy is only served on responses\nwith an HTML related Content-Type.\n\nThis has been assigned the CVE identifier CVE-2024-28103.\n\n\nVersions Affected:  \u003e= 6.1.0\nNot affected:       \u003c 6.1.0\nFixed Versions:     6.1.7.8, 7.0.8.4, and 7.1.3.4\n\nImpact\n------\nResponses with a non-HTML Content-Type are not serving the configured Permissions-Policy. There are certain non-HTML Content-Types that would benefit from having the Permissions-Policy enforced.\n\n\nReleases\n--------\nThe fixed releases are available at the normal locations.\n\nWorkarounds\n-----------\nN/A\n\nPatches\n-------\nTo aid users who aren't able to upgrade immediately we have provided patches for\nthe supported release series in accordance with our \n[maintenance policy](https://guides.rubyonrails.org/maintenance_policy.html#security-issues)\nregarding security issues. They are in git-am format and consist of a\nsingle changeset.\n\n* 6-1-include-permissions-policy-header-on-non-html.patch - Patch for 6.1 series\n* 7-0-include-permissions-policy-header-on-non-html.patch - Patch for 7.0 series\n* 7-1-include-permissions-policy-header-on-non-html.patch - Patch for 7.1 series\n\n\n\nCredits\n-------\n\nThank you [shinkbr](https://hackerone.com/shinkbr) for reporting this!","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2024-06-04T22:26:24.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/rails/rails/security/advisories/GHSA-fwhr-88qx-h9g7","https://nvd.nist.gov/vuln/detail/CVE-2024-28103","https://github.com/rails/rails/commit/35858f1d9d57f6c4050a8d9ab754bd5d088b4523","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2024-28103.yml","https://security.netapp.com/advisory/ntap-20241206-0002","https://github.com/advisories/GHSA-fwhr-88qx-h9g7"],"source_kind":"github","identifiers":["GHSA-fwhr-88qx-h9g7","CVE-2024-28103"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"7.2.0.beta2","vulnerable_version_range":"= 7.2.0.beta1"},{"first_patched_version":"7.1.3.4","vulnerable_version_range":"\u003e= 7.1.0, \u003c 7.1.3.4"},{"first_patched_version":"7.0.8.4","vulnerable_version_range":"\u003e= 7.0.0, \u003c 7.0.8.4"},{"first_patched_version":"6.1.7.8","vulnerable_version_range":"\u003e= 6.1.0, \u003c 6.1.7.8"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2024-06-04T23:05:11.717Z","updated_at":"2024-12-06T15:32:22.000Z","epss_percentage":0.00063,"epss_percentile":0.19877},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpwNXYtNWd4NC1qbWo5","url":"https://github.com/advisories/GHSA-jp5v-5gx4-jmj9","title":"Ability to forge per-form CSRF tokens in Rails","description":"It is possible to, given a global CSRF token such as the one present in the authenticity_token meta tag, forge a per-form CSRF token for any action for that session.\n\nImpact\n------\n\nGiven the ability to extract the global CSRF token, an attacker would be able to construct a per-form CSRF token for that session.\n\nWorkarounds\n-----------\n\nThis is a low-severity security issue. As such, no workaround is necessarily until such time as the application can be upgraded.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2020-05-26T15:11:13.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2020-8166.yml","https://groups.google.com/forum/#!topic/rubyonrails-security/NOjKiGeXUgw","https://hackerone.com/reports/732415","https://nvd.nist.gov/vuln/detail/CVE-2020-8166","https://github.com/advisories/GHSA-jp5v-5gx4-jmj9"],"source_kind":"github","identifiers":["GHSA-jp5v-5gx4-jmj9","CVE-2020-8166"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"6.0.3.1","vulnerable_version_range":"\u003e= 6.0.0, \u003c= 6.0.3"},{"first_patched_version":"5.2.4.3","vulnerable_version_range":"\u003e= 5.0.0, \u003c= 5.2.4.2"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:24.558Z","updated_at":"2025-06-05T01:16:01.933Z","epss_percentage":0.00443,"epss_percentile":0.62321},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg1Nm0tdnd4Yy0zcXB3","url":"https://github.com/advisories/GHSA-h56m-vwxc-3qpw","title":"Directory traversal vulnerability in actionpack","description":"Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.21, 4.0.x before 4.0.12, 4.1.x before 4.1.8, and 4.2.x before 4.2.0.beta4, when serve_static_assets is enabled, allows remote attackers to determine the existence of files outside the application root via vectors involving a \\ (backslash) character, a similar issue to CVE-2014-7818.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:36.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2014-7829","https://github.com/advisories/GHSA-h56m-vwxc-3qpw","https://groups.google.com/forum/message/raw?msg=rubyonrails-security/rMTQy4oRCGk/loS_CRS8mNEJ","https://puppet.com/security/cve/cve-2014-7829","http://lists.opensuse.org/opensuse-updates/2014-11/msg00112.html","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2014-7829.yml","https://groups.google.com/forum/#!topic/rubyonrails-security/rMTQy4oRCGk","https://web.archive.org/web/20160403085126/http://www.securityfocus.com/bid/71183"],"source_kind":"github","identifiers":["GHSA-h56m-vwxc-3qpw","CVE-2014-7829"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.2.0.beta4","vulnerable_version_range":"\u003e= 4.2.0.beta1, \u003c 4.2.0.beta4"},{"first_patched_version":"4.1.8","vulnerable_version_range":"\u003e= 4.1.0, \u003c 4.1.8"},{"first_patched_version":"4.0.12","vulnerable_version_range":"\u003e= 4.0.0, \u003c 4.0.12"},{"first_patched_version":"3.2.21","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.2.21"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:24.049Z","updated_at":"2025-06-05T01:15:56.643Z","epss_percentage":0.00488,"epss_percentile":0.64388},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI5Z3ItdzU3Zi1ycGZ3","url":"https://github.com/advisories/GHSA-29gr-w57f-rpfw","title":"actionpack vulnerable to Path Traversal","description":"Directory traversal vulnerability in `actionpack/lib/action_dispatch/middleware/static.rb` in Action Pack in Ruby on Rails 3.x before 3.2.20, 4.0.x before 4.0.11, 4.1.x before 4.1.7, and 4.2.x before 4.2.0.beta3, when `serve_static_assets` is enabled, allows remote attackers to determine the existence of files outside the application root via a `/..%2F` sequence.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:36.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2014-7818","https://github.com/advisories/GHSA-29gr-w57f-rpfw","https://groups.google.com/forum/message/raw?msg=rubyonrails-security/dCp7duBiQgo/v_R_8PFs5IwJ","https://puppet.com/security/cve/cve-2014-7829","http://lists.opensuse.org/opensuse-updates/2014-11/msg00112.html","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2014-7818.yml","https://groups.google.com/forum/#!topic/rubyonrails-security/dCp7duBiQgo"],"source_kind":"github","identifiers":["GHSA-29gr-w57f-rpfw","CVE-2014-7818"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.2.0.beta3","vulnerable_version_range":"\u003e= 4.2.0.beta1, \u003c 4.2.0.beta3"},{"first_patched_version":"4.1.7","vulnerable_version_range":"\u003e= 4.1.0, \u003c 4.1.7"},{"first_patched_version":"4.0.11","vulnerable_version_range":"\u003e= 4.0.0, \u003c 4.0.11"},{"first_patched_version":"3.2.20","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.2.20"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:39.018Z","updated_at":"2025-06-05T01:15:56.692Z","epss_percentage":0.00552,"epss_percentile":0.66911},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFmNXgtcWd4Ny00Mzdo","url":"https://github.com/advisories/GHSA-qf5x-qgx7-437h","title":"Moderate severity vulnerability that affects actionpack","description":"Withdrawn, accidental duplicate publish.\r\n\r\nDirectory traversal vulnerability in actionpack/lib/abstract_controller/base.rb in the implicit-render implementation in Ruby on Rails before 3.2.18, 4.0.x before 4.0.5, and 4.1.x before 4.1.1, when certain route globbing configurations are enabled, allows remote attackers to read arbitrary files via a crafted request.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2018-09-17T21:54:11.000Z","withdrawn_at":"2020-06-17T15:15:04.000Z","classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2014-0130","https://github.com/advisories/GHSA-qf5x-qgx7-437h"],"source_kind":"github","identifiers":["GHSA-qf5x-qgx7-437h"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.1.1","vulnerable_version_range":"= 4.1.0"},{"first_patched_version":"4.0.5","vulnerable_version_range":"\u003e= 4.0.0, \u003c 4.0.5"},{"first_patched_version":"3.2.18","vulnerable_version_range":"\u003c 3.2.18"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:36.200Z","updated_at":"2023-01-09T05:03:41.000Z","epss_percentage":null,"epss_percentile":null},{"uuid":"GSA_kwCzR0hTQS00Zzh2LXZnNDMtd3BnZs4AA0Io","url":"https://github.com/advisories/GHSA-4g8v-vg43-wpgf","title":"Actionpack has possible cross-site scripting vulnerability via User Supplied Values to redirect_to","description":"The `redirect_to` method in Rails allows provided values to contain characters which are not legal in an HTTP header value. This results in the potential for downstream services which enforce RFC compliance on HTTP response headers to remove the assigned Location header. This vulnerability has been assigned the CVE identifier CVE-2023-28362.\n\nVersions Affected: All. Not affected: None Fixed Versions: 7.0.5.1, 6.1.7.4\n\n# Impact\n\nThis introduces the potential for a Cross-site-scripting (XSS) payload to be delivered on the now static redirection page. Note that this both requires user interaction and for a Rails app to be configured to allow redirects to external hosts (defaults to false in Rails \u003e= 7.0.x).\n\n# Releases\n\nThe FIXED releases are available at the normal locations.\n\n# Workarounds\n\nAvoid providing user supplied URLs with arbitrary schemes to the `redirect_to` method.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-06-29T15:03:16.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/rails/rails/commit/1c3f93d1e90a3475f9ae2377ead25ccf11f71441","https://github.com/rails/rails/commit/c9ab9b32bcdcfd8bcd55907f6c7b20b4e004cc23","https://discuss.rubyonrails.org/t/cve-2023-28362-possible-xss-via-user-supplied-values-to-redirect-to/83132","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2023-28362.yml","https://nvd.nist.gov/vuln/detail/CVE-2023-28362","https://github.com/rails/rails/commit/69e37c84e3f77d75566424c7d0015172d6a6fac5","https://security.netapp.com/advisory/ntap-20250502-0009","https://github.com/advisories/GHSA-4g8v-vg43-wpgf"],"source_kind":"github","identifiers":["GHSA-4g8v-vg43-wpgf","CVE-2023-28362"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"7.0.5.1","vulnerable_version_range":"\u003e= 7.0.0, \u003c 7.0.5.1"},{"first_patched_version":"6.1.7.4","vulnerable_version_range":"\u003c 6.1.7.4"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2023-06-29T16:03:50.179Z","updated_at":"2025-06-05T01:16:16.100Z","epss_percentage":0.00127,"epss_percentile":0.33235},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM1bW0tY2M2ci04Zmpw","url":"https://github.com/advisories/GHSA-35mm-cc6r-8fjp","title":"Cross-site scripting in actionpack","description":"In actionpack gem \u003e= 6.0.0, a possible XSS vulnerability exists when an application is running in development mode allowing an attacker to send or embed (in another page) a specially crafted URL which can allow the attacker to execute JavaScript in the context of the local application. This vulnerability is in the Actionable Exceptions middleware.\n\nWorkarounds\n-----------\nUntil such time as the patch can be applied, application developers should disable the Actionable Exceptions middleware in their development environment via a line such as this one in their config/environment/development.rb: `config.middleware.delete ActionDispatch::ActionableExceptions`","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2021-04-07T20:58:47.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2020-8264","https://hackerone.com/reports/904059","https://groups.google.com/g/rubyonrails-security/c/yQzUVfv42jk/m/oJWw-xhNAQAJ","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2020-8264.yml","https://groups.google.com/g/rubyonrails-security/c/yQzUVfv42jk","https://github.com/advisories/GHSA-35mm-cc6r-8fjp"],"source_kind":"github","identifiers":["GHSA-35mm-cc6r-8fjp","CVE-2020-8264"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"6.0.3.4","vulnerable_version_range":"\u003e= 6.0.0, \u003c= 6.0.3.3"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:08.329Z","updated_at":"2025-06-05T01:16:00.752Z","epss_percentage":0.00346,"epss_percentile":0.56479},{"uuid":"GSA_kwCzR0hTQS1tbTMzLTV2ZnEtM21tM81BUA","url":"https://github.com/advisories/GHSA-mm33-5vfq-3mm3","title":"Cross-site Scripting Vulnerability in Action Pack","description":"There is a possible XSS vulnerability in Rails / Action Pack. This vulnerability has been\nassigned the CVE identifier CVE-2022-22577.\n\nVersions Affected:  \u003e= 5.2.0\nNot affected:       \u003c 5.2.0\nFixed Versions:     7.0.2.4, 6.1.5.1, 6.0.4.8, 5.2.7.1\n\n## Impact\n\nCSP headers were only sent along with responses that Rails considered as\n\"HTML\" responses.  This left API requests without CSP headers, which could\npossibly expose users to XSS attacks.\n\n## Releases\n\nThe FIXED releases are available at the normal locations.\n\n## Workarounds\n\nSet a CSP for your API responses manually.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2022-04-27T22:28:59.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2022-22577","https://github.com/rails/rails/pull/44635","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2022-22577.yml","https://groups.google.com/g/ruby-security-ann/c/NuFRKaN5swI","https://rubyonrails.org/2022/4/26/Rails-7-0-2-4-6-1-5-1-6-0-4-8-and-5-2-7-1-have-been-released","https://discuss.rubyonrails.org/t/cve-2022-22577-possible-xss-vulnerability-in-action-pack/80533","https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html","https://security.netapp.com/advisory/ntap-20221118-0002/","https://github.com/rails/rails/commit/2b820a2a69fa50cffa74b4aedc57bf92ed6910ec","https://github.com/rails/rails/commit/5299b57d596ea274f77f5ffee2b79c6ee0255508","https://github.com/rails/rails/commit/8198d7c4accad0b6ba956b9d59528534a289866b","https://github.com/rails/rails/commit/d2253115ac2b30f5f7210670af906cebf79cf809","https://www.debian.org/security/2023/dsa-5372","https://github.com/advisories/GHSA-mm33-5vfq-3mm3"],"source_kind":"github","identifiers":["GHSA-mm33-5vfq-3mm3","CVE-2022-22577"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"7.0.2.4","vulnerable_version_range":"\u003e= 7.0.0, \u003c= 7.0.2.3"},{"first_patched_version":"6.1.5.1","vulnerable_version_range":"\u003e= 6.1.0, \u003c= 6.1.5.0"},{"first_patched_version":"6.0.4.8","vulnerable_version_range":"\u003e= 6.0.0, \u003c= 6.0.4.7"},{"first_patched_version":"5.2.7.1","vulnerable_version_range":"\u003e= 5.2.0, \u003c= 5.2.7.0"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:29.617Z","updated_at":"2025-06-05T01:17:38.009Z","epss_percentage":0.00409,"epss_percentile":0.60411},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTloNmctZ3A5NS14M3E1","url":"https://github.com/advisories/GHSA-9h6g-gp95-x3q5","title":"actionpack is vulnerable to denial of service because of a wildcard controller route","description":"actionpack/lib/action_dispatch/routing/route_set.rb in Action Pack in Ruby on Rails 4.x before 4.2.5.1 and 5.x before 5.0.0.beta1.1 allows remote attackers to cause a denial of service (superfluous caching and memory consumption) by leveraging an application's use of a wildcard controller route.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2017-10-24T18:33:36.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2015-7581","https://groups.google.com/forum/message/raw?msg=ruby-security-ann/dthJ5wL69JE/IdvCimtZEgAJ","http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178043.html","http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178067.html","http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00053.html","http://lists.opensuse.org/opensuse-updates/2016-02/msg00043.html","http://rhn.redhat.com/errata/RHSA-2016-0296.html","http://www.debian.org/security/2016/dsa-3464","http://www.openwall.com/lists/oss-security/2016/01/25/16","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2015-7581.yml","https://groups.google.com/forum/#!topic/rubyonrails-security/dthJ5wL69JE","https://web.archive.org/web/20200228001849/http://www.securityfocus.com/bid/81677","https://web.archive.org/web/20200516093752/http://www.securitytracker.com/id/1034816","https://github.com/advisories/GHSA-9h6g-gp95-x3q5"],"source_kind":"github","identifiers":["GHSA-9h6g-gp95-x3q5","CVE-2015-7581"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.2.5.1","vulnerable_version_range":"\u003e= 4.0.0, \u003c= 4.2.5.0"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:59.246Z","updated_at":"2025-06-05T01:18:10.957Z","epss_percentage":0.09597,"epss_percentile":0.92449},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZmcHYtYzRobS0zeDZ2","url":"https://github.com/advisories/GHSA-ffpv-c4hm-3x6v","title":"actionpack is vulnerable to denial of service via a crafted HTTP Accept header","description":"actionpack/lib/action_dispatch/http/mime_type.rb in Action Pack in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 does not properly restrict use of the MIME type cache, which allows remote attackers to cause a denial of service (memory consumption) via a crafted HTTP Accept header.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2017-10-24T18:33:35.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2016-0751","https://groups.google.com/forum/message/raw?msg=ruby-security-ann/9oLY_FCzvoc/5CDXbvpYEgAJ","http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178043.html","http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178067.html","http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00053.html","http://lists.opensuse.org/opensuse-updates/2016-02/msg00034.html","http://lists.opensuse.org/opensuse-updates/2016-02/msg00043.html","http://rhn.redhat.com/errata/RHSA-2016-0296.html","http://www.debian.org/security/2016/dsa-3464","http://www.openwall.com/lists/oss-security/2016/01/25/9","https://github.com/rails/rails/commit/127967b735813cd4f263df7a50426d74e7e9cc17","https://github.com/rails/rails/commit/221937c8ba1d291430ceddebbd4bdef7d3cb47d6","https://github.com/rails/rails/commit/37047b779a177b911c7161052cfc34a30e1db0af","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2016-0751.yml","https://groups.google.com/forum/#!topic/rubyonrails-security/9oLY_FCzvoc","https://web.archive.org/web/20160128201702/http://www.securitytracker.com/id/1034816","https://web.archive.org/web/20200227181647/http://www.securityfocus.com/bid/81800","https://github.com/advisories/GHSA-ffpv-c4hm-3x6v"],"source_kind":"github","identifiers":["GHSA-ffpv-c4hm-3x6v","CVE-2016-0751"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.1.14.1","vulnerable_version_range":"\u003e= 4.0.0, \u003c= 4.1.14.0"},{"first_patched_version":"3.2.22.1","vulnerable_version_range":"\u003c= 3.2.22.0"},{"first_patched_version":"4.2.5.1","vulnerable_version_range":"\u003e= 4.2.0, \u003c= 4.2.5.0"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:59.297Z","updated_at":"2025-06-05T01:18:11.040Z","epss_percentage":0.06412,"epss_percentile":0.90534},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA2OTItN21tMy0zZnhn","url":"https://github.com/advisories/GHSA-p692-7mm3-3fxg","title":"actionpack is vulnerable to remote bypass authentication","description":"The http_basic_authenticate_with method in actionpack/lib/action_controller/metal/http_authentication.rb in the Basic Authentication implementation in Action Controller in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 does not use a constant-time algorithm for verifying credentials, which makes it easier for remote attackers to bypass authentication by measuring timing differences.","origin":"UNSPECIFIED","severity":"LOW","published_at":"2017-10-24T18:33:36.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2015-7576","https://groups.google.com/forum/message/raw?msg=ruby-security-ann/ANv0HDHEC3k/T8Hgq-hYEgAJ","http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178043.html","http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178047.html","http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178067.html","http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178068.html","http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00053.html","http://lists.opensuse.org/opensuse-updates/2016-02/msg00034.html","http://lists.opensuse.org/opensuse-updates/2016-02/msg00043.html","http://rhn.redhat.com/errata/RHSA-2016-0296.html","http://www.debian.org/security/2016/dsa-3464","http://www.openwall.com/lists/oss-security/2016/01/25/8","https://github.com/rails/rails/commit/17e6f1507b7f2c2a883c180f4f9548445d6dfbd","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2015-7576.yml","https://groups.google.com/forum/#!topic/rubyonrails-security/ANv0HDHEC3k","https://web.archive.org/web/20160405205300/http://www.securitytracker.com/id/1034816","https://web.archive.org/web/20200228001849/http://www.securityfocus.com/bid/81803","https://github.com/advisories/GHSA-p692-7mm3-3fxg"],"source_kind":"github","identifiers":["GHSA-p692-7mm3-3fxg","CVE-2015-7576"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.1.14.1","vulnerable_version_range":"\u003e= 4.0.0, \u003c= 4.1.14.0"},{"first_patched_version":"3.2.22.1","vulnerable_version_range":"\u003e= 3.1.0, \u003c= 3.2.22.0"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:59.428Z","updated_at":"2025-06-05T01:18:11.395Z","epss_percentage":0.00748,"epss_percentile":0.71956},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhqZzQtOHE1Zi14NmZt","url":"https://github.com/advisories/GHSA-hjg4-8q5f-x6fm","title":"Action Pack contains Information Disclosure / Unintended Method Execution vulnerability","description":"Impact\n------\nThere is a possible information disclosure / unintended method execution vulnerability in Action Pack when using the `redirect_to` or `polymorphic_url` helper with untrusted user input.\n\nVulnerable code will look like this.\n\n```\nredirect_to(params[:some_param])\n```\n\nAll users running an affected release should either upgrade or use one of the workarounds immediately.\n\nReleases\n--------\nThe FIXED releases are available at the normal locations.\n\nWorkarounds\n-----------\nTo work around this problem, it is recommended to use an allow list for valid parameters passed from the user.  For example,\n\n```ruby\nprivate def check(param)\n  case param\n  when \"valid\"\n    param\n  else\n    \"/\"\n  end\nend\n\ndef index\n  redirect_to(check(params[:some_param]))\nend\n```\n\nOr force the user input to be cast to a string like this,\n\n```ruby\ndef index\n  redirect_to(params[:some_param].to_s)\nend\n```\n\nPatches\n-------\nTo aid users who aren't able to upgrade immediately we have provided patches for the two supported release series. They are in git-am format and consist of a single changeset.\n\n* 5-2-information-disclosure.patch - Patch for 5.2 series\n* 6-0-information-disclosure.patch - Patch for 6.0 series\n* 6-1-information-disclosure.patch - Patch for 6.1 series\n\nPlease note that only the 5.2, 6.0, and 6.1 series are supported at present. Users of earlier unsupported releases are advised to upgrade as soon as possible as we cannot guarantee the continued availability of security fixes for unsupported releases.\n\nCredits\n-------\n\nThanks to Benoit Côté-Jodoin from Shopify for reporting this.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2021-05-05T19:49:02.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://groups.google.com/g/rubyonrails-security/c/NiQl-48cXYI","https://nvd.nist.gov/vuln/detail/CVE-2021-22885","https://hackerone.com/reports/1106652","https://security.netapp.com/advisory/ntap-20210805-0009/","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2021-22885.yml","https://github.com/advisories/GHSA-hjg4-8q5f-x6fm"],"source_kind":"github","identifiers":["GHSA-hjg4-8q5f-x6fm","CVE-2021-22885"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"5.2.4.6","vulnerable_version_range":"\u003e= 2.0.0, \u003c= 5.2.4.5"},{"first_patched_version":"5.2.6","vulnerable_version_range":"\u003e= 5.2.5, \u003c 5.2.6"},{"first_patched_version":"6.1.3.2","vulnerable_version_range":"\u003e= 6.1.0, \u003c= 6.1.3.1"},{"first_patched_version":"6.0.3.7","vulnerable_version_range":"\u003e= 6.0.0, \u003c= 6.0.3.6"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:05.223Z","updated_at":"2025-06-05T01:18:17.991Z","epss_percentage":0.00864,"epss_percentile":0.74027},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV4bWotd205Ni1mbXc4","url":"https://github.com/advisories/GHSA-5xmj-wm96-fmw8","title":"Moderate severity vulnerability that affects actionpack","description":"Withdrawn, accidental duplicate publish.\r\n\r\nDirectory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.21, 4.0.x before 4.0.12, 4.1.x before 4.1.8, and 4.2.x before 4.2.0.beta4, when serve_static_assets is enabled, allows remote attackers to determine the existence of files outside the application root via vectors involving a \\ (backslash) character, a similar issue to CVE-2014-7818.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2018-09-17T21:54:37.000Z","withdrawn_at":"2020-06-16T21:17:39.000Z","classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2014-7829","https://github.com/advisories/GHSA-5xmj-wm96-fmw8"],"source_kind":"github","identifiers":["GHSA-5xmj-wm96-fmw8"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.1.8","vulnerable_version_range":"\u003e= 4.1.0, \u003c 4.1.8"},{"first_patched_version":"4.0.12","vulnerable_version_range":"\u003e= 4.0.0, \u003c 4.0.12"},{"first_patched_version":"3.2.21","vulnerable_version_range":"\u003c 3.2.21"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:36.178Z","updated_at":"2023-01-09T05:02:53.000Z","epss_percentage":null,"epss_percentile":null},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZnOXctZzZtNC01NTdq","url":"https://github.com/advisories/GHSA-fg9w-g6m4-557j","title":"actionpack and activesupport vulnerable to information leaks","description":"A certain algorithm in Ruby on Rails 2.1.0 through 2.2.2, and 2.3.x before 2.3.4, leaks information about the complexity of message-digest signature verification in the cookie store, which might allow remote attackers to forge a digest via multiple attempts.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2009-3086","http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00004.html","http://weblog.rubyonrails.org/2009/9/4/timing-weakness-in-ruby-on-rails","http://www.debian.org/security/2011/dsa-2260","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2009-3086.yml","https://github.com/rails/rails/commit/1f07a89c5946910fc28ea5ccd1da6af8a0f972a0","https://github.com/rails/rails/commit/674f780d59a5a7ec0301755d43a7b277a3ad2978","https://github.com/rails/rails/commit/d460c9a25560f43e7c3789abadf7b455053eb686","https://web.archive.org/web/20090906010200/http://www.vupen.com/english/advisories/2009/2544","https://web.archive.org/web/20090907001716/http://secunia.com/advisories/36600","https://web.archive.org/web/20200229150042/http://www.securityfocus.com/bid/37427","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activesupport/CVE-2009-3086.yml","https://github.com/advisories/GHSA-fg9w-g6m4-557j"],"source_kind":"github","identifiers":["GHSA-fg9w-g6m4-557j","CVE-2009-3086"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"2.2.3","vulnerable_version_range":"\u003e= 2.1.0, \u003c 2.2.3"},{"first_patched_version":"2.3.4","vulnerable_version_range":"\u003e= 2.3.0, \u003c 2.3.4"}],"ecosystem":"rubygems","package_name":"activesupport"},{"versions":[{"first_patched_version":"2.3.4","vulnerable_version_range":"\u003e= 2.3.0, \u003c 2.3.4"},{"first_patched_version":"2.2.3","vulnerable_version_range":"\u003e= 2.1.0, \u003c 2.2.3"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:37.907Z","updated_at":"2023-11-09T05:00:30.000Z","epss_percentage":0.00556,"epss_percentile":0.66767},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY5OW0tbWNqbS05Y3c4","url":"https://github.com/advisories/GHSA-699m-mcjm-9cw8","title":"actionpack vulnerable to Cross-site Scripting","description":"Cross-site scripting (XSS) vulnerability in `actionpack/lib/action_view/helpers/translation_helper.rb` in the internationalization component in Ruby on Rails 3.x before 3.2.16 and 4.x before 4.0.2 allows remote attackers to inject arbitrary web script or HTML via a crafted string that triggers generation of a fallback string by the i18n gem.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:37.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2013-4491","https://github.com/advisories/GHSA-699m-mcjm-9cw8","http://rhn.redhat.com/errata/RHSA-2013-1794.html","http://rhn.redhat.com/errata/RHSA-2014-0008.html","http://rhn.redhat.com/errata/RHSA-2014-1863.html","http://weblog.rubyonrails.org/2013/12/3/Rails_3_2_16_and_4_0_2_have_been_released/","http://www.debian.org/security/2014/dsa-2888","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2013-4491.yml","https://groups.google.com/forum/#!topic/ruby-security-ann/pLrh6DUw998"],"source_kind":"github","identifiers":["GHSA-699m-mcjm-9cw8","CVE-2013-4491"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.0.2","vulnerable_version_range":"\u003e= 4.0.0, \u003c 4.0.2"},{"first_patched_version":"3.2.16","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.2.16"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.654Z","updated_at":"2023-08-25T19:05:48.000Z","epss_percentage":0.00713,"epss_percentile":0.70986},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4ODUtajVqMi0yN2p4","url":"https://github.com/advisories/GHSA-6x85-j5j2-27jx","title":"actionpack Path Traversal vulnerability","description":"Directory traversal vulnerability in `actionpack/lib/abstract_controller/base.rb` in the implicit-render implementation in Ruby on Rails before 3.2.18, 4.0.x before 4.0.5, and 4.1.x before 4.1.1, when certain route globbing configurations are enabled, allows remote attackers to read arbitrary files via a crafted request.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:36.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2014-0130","http://rhn.redhat.com/errata/RHSA-2014-1863.html","https://web.archive.org/web/20140518192004/http://www.securityfocus.com/bid/67244","https://web.archive.org/web/20210411041816/https://groups.google.com/forum/message/raw?msg=rubyonrails-security/NkKc7vTW70o/NxW_PDBSG3AJ","https://access.redhat.com/errata/RHSA-2014:0510","https://access.redhat.com/errata/RHSA-2014:0816","https://access.redhat.com/errata/RHSA-2014:1863","https://access.redhat.com/security/cve/CVE-2014-0130","https://bugzilla.redhat.com/show_bug.cgi?id=1095105","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2014-0130.yml","https://groups.google.com/forum/#!topic/rubyonrails-security/NkKc7vTW70o","https://web.archive.org/web/20150319054505/http://matasano.com/research/AnatomyOfRailsVuln-CVE-2014-0130.pdf","https://github.com/advisories/GHSA-6x85-j5j2-27jx"],"source_kind":"github","identifiers":["GHSA-6x85-j5j2-27jx","CVE-2014-0130"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.1.1","vulnerable_version_range":"\u003e= 4.1.0, \u003c 4.1.1"},{"first_patched_version":"4.0.5","vulnerable_version_range":"\u003e= 4.0.0, \u003c 4.0.5"},{"first_patched_version":"3.2.18","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.2.18"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.858Z","updated_at":"2025-06-05T01:18:57.407Z","epss_percentage":0.25556,"epss_percentile":0.95921},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc4d3ctNDZ4Mi0ycDY1","url":"https://github.com/advisories/GHSA-g8ww-46x2-2p65","title":"Denial of Service in Action Dispatch","description":"Impact\n------\nThere is a possible Denial of Service vulnerability in Action Dispatch. Carefully crafted Accept headers can cause the mime type parser in Action Dispatch to do catastrophic backtracking in the regular expression engine.\n\nReleases\n--------\nThe fixed releases are available at the normal locations.\n\nWorkarounds\n-----------\nThe following monkey patch placed in an initializer can be used to work around the issue.\n\n```ruby\nmodule Mime\n  class Type\n    MIME_REGEXP = /\\A(?:\\*\\/\\*|#{MIME_NAME}\\/(?:\\*|#{MIME_NAME})(?\u003e\\s*#{MIME_PARAMETER}\\s*)*)\\z/\n  end\nend\n```\n\nPatches\n-------\nTo aid users who aren't able to upgrade immediately we have provided patches for the two supported release series. They are in git-am format and consist of a single changeset.\n\n* 6-0-Prevent-catastrophic-backtracking-during-mime-parsin.patch - Patch for 6.0 series\n* 6-1-Prevent-catastrophic-backtracking-during-mime-parsin.patch - Patch for 6.1 series\n\nPlease note that only the 6.1.Z, 6.0.Z, and 5.2.Z series are supported at present. Users of earlier unsupported releases are advised to upgrade as soon as possible as we cannot guarantee the continued availability of security fixes for unsupported releases.\n\nCredits\n-------\n\nThanks to Security Curious \u003csecurity...@pm.me\u003e for reporting this!","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2021-05-05T19:48:21.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/rails/rails/releases/tag/v6.0.3.7","https://github.com/rails/rails/releases/tag/v6.1.3.2","https://groups.google.com/g/rubyonrails-security/c/_5ID_ld9u1c","https://nvd.nist.gov/vuln/detail/CVE-2021-22902","https://hackerone.com/reports/1138654","https://discuss.rubyonrails.org/t/cve-2021-22902-possible-denial-of-service-vulnerability-in-action-dispatch/77866","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2021-22902.yml","https://github.com/advisories/GHSA-g8ww-46x2-2p65"],"source_kind":"github","identifiers":["GHSA-g8ww-46x2-2p65","CVE-2021-22902"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"6.1.3.2","vulnerable_version_range":"\u003e= 6.1.0, \u003c= 6.1.3.1"},{"first_patched_version":"6.0.3.7","vulnerable_version_range":"\u003e= 6.0.0, \u003c= 6.0.3.6"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:05.249Z","updated_at":"2025-06-05T01:16:01.367Z","epss_percentage":0.01063,"epss_percentile":0.76608},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg3MjctbTZnai1tYzM3","url":"https://github.com/advisories/GHSA-8727-m6gj-mc37","title":"Possible Strong Parameters Bypass in ActionPack","description":"There is a strong parameters bypass vector in ActionPack.\n\nVersions Affected:  rails \u003c= 6.0.3\nNot affected:       rails \u003c 5.0.0\nFixed Versions:     rails \u003e= 5.2.4.3, rails \u003e= 6.0.3.1\n\nImpact\n------\nIn some cases user supplied information can be inadvertently leaked from\nStrong Parameters.  Specifically the return value of `each`, or `each_value`,\nor `each_pair` will return the underlying \"untrusted\" hash of data that was\nread from the parameters.  Applications that use this return value may be\ninadvertently use untrusted user input.\n\nImpacted code will look something like this:\n\n```\ndef update\n  # Attacker has included the parameter: `{ is_admin: true }`\n  User.update(clean_up_params)\nend\n\ndef clean_up_params\n   params.each { |k, v|  SomeModel.check(v) if k == :name }\nend\n```\n\nNote the mistaken use of `each` in the `clean_up_params` method in the above\nexample.\n\nWorkarounds\n-----------\nDo not use the return values of `each`, `each_value`, or `each_pair` in your\napplication.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2020-05-26T15:09:16.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2020-8164","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2020-8164.yml","https://groups.google.com/forum/#!topic/rubyonrails-security/f6ioe4sdpbY","https://hackerone.com/reports/292797","https://groups.google.com/g/rubyonrails-security/c/f6ioe4sdpbY","https://lists.debian.org/debian-lts-announce/2020/06/msg00022.html","https://lists.debian.org/debian-lts-announce/2020/07/msg00013.html","https://www.debian.org/security/2020/dsa-4766","http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00089.html","http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00093.html","http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00107.html","https://github.com/advisories/GHSA-8727-m6gj-mc37"],"source_kind":"github","identifiers":["GHSA-8727-m6gj-mc37","CVE-2020-8164"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"6.0.3.1","vulnerable_version_range":"\u003e= 6.0.0, \u003c= 6.0.3"},{"first_patched_version":"5.2.4.3","vulnerable_version_range":"\u003e= 5.0.0, \u003c= 5.2.4.2"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:24.568Z","updated_at":"2025-06-05T01:16:01.997Z","epss_percentage":0.05862,"epss_percentile":0.90077},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTIzdjMtcWZyai13bWdo","url":"https://github.com/advisories/GHSA-23v3-qfrj-wmgh","title":"Moderate severity vulnerability that affects actionpack","description":"Withdrawn, accidental duplicate publish.\r\n\r\nDirectory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.20, 4.0.x before 4.0.11, 4.1.x before 4.1.7, and 4.2.x before 4.2.0.beta3, when serve_static_assets is enabled, allows remote attackers to determine the existence of files outside the application root via a /..%2F sequence.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2018-09-17T21:54:22.000Z","withdrawn_at":"2020-06-16T20:51:08.000Z","classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2014-7818","https://github.com/advisories/GHSA-23v3-qfrj-wmgh"],"source_kind":"github","identifiers":["GHSA-23v3-qfrj-wmgh"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.1.7","vulnerable_version_range":"\u003e= 4.1.0, \u003c 4.1.7"},{"first_patched_version":"4.0.11","vulnerable_version_range":"\u003e= 4.0.0, \u003c 4.0.11"},{"first_patched_version":"3.2.20","vulnerable_version_range":"\u003c 3.2.20"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:36.189Z","updated_at":"2023-01-09T05:02:22.000Z","epss_percentage":null,"epss_percentile":null},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY1amctNTU4ai1xNjdj","url":"https://github.com/advisories/GHSA-v5jg-558j-q67c","title":"actionpack Cross-site Scripting vulnerability","description":"Cross-site scripting (XSS) vulnerability in the `strip_tags` helper in `actionpack/lib/action_controller/vendor/html-scanner/html/node.rb` in Ruby on Rails before 2.3.13, 3.0.x before 3.0.10, and 3.1.x before 3.1.0.rc5 allows remote attackers to inject arbitrary web script or HTML via a tag with an invalid name.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2011-2931","https://github.com/rails/rails/commit/586a944ddd4d03e66dea1093306147594748037a","https://bugzilla.redhat.com/show_bug.cgi?id=731436","https://github.com/advisories/GHSA-v5jg-558j-q67c","http://groups.google.com/group/rubyonrails-security/msg/fd41ab62966e0fd1?dmode=source\u0026output=gplain","http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065109.html","http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065137.html","http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065212.html","http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6","http://www.debian.org/security/2011/dsa-2301","http://www.openwall.com/lists/oss-security/2011/08/17/1","http://www.openwall.com/lists/oss-security/2011/08/19/11","http://www.openwall.com/lists/oss-security/2011/08/20/1","http://www.openwall.com/lists/oss-security/2011/08/22/13","http://www.openwall.com/lists/oss-security/2011/08/22/14","http://www.openwall.com/lists/oss-security/2011/08/22/5","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2011-2931.yml"],"source_kind":"github","identifiers":["GHSA-v5jg-558j-q67c","CVE-2011-2931"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.0.10","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.0.10"},{"first_patched_version":"2.3.13","vulnerable_version_range":"\u003e= 2.0.0, \u003c 2.3.13"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.022Z","updated_at":"2023-11-10T05:03:18.000Z","epss_percentage":0.00813,"epss_percentile":0.72933},{"uuid":"GSA_kwCzR0hTQS04eHd3LXgzZzMtNmpjds4AAxDv","url":"https://github.com/advisories/GHSA-8xww-x3g3-6jcv","title":"ReDoS based DoS vulnerability in Action Dispatch","description":"There is a possible regular expression based DoS vulnerability in Action Dispatch related to the If-None-Match header. This vulnerability has been assigned the CVE identifier CVE-2023-22795.\n\nVersions Affected: All Not affected: None Fixed Versions: 5.2.8.15 (Rails LTS), 6.1.7.1, 7.0.4.1\n\nImpact\n\nA specially crafted HTTP If-None-Match header can cause the regular expression engine to enter a state of catastrophic backtracking, when on a version of Ruby below 3.2.0. This can cause the process to use large amounts of CPU and memory, leading to a possible DoS vulnerability All users running an affected release should either upgrade or use one of the workarounds immediately.\nReleases\n\nThe FIXED releases are available at the normal locations.\nWorkarounds\n\nWe recommend that all users upgrade to one of the FIXED versions. In the meantime, users can mitigate this vulnerability by using a load balancer or other device to filter out malicious If-None-Match headers before they reach the application.\n\nUsers on Ruby 3.2.0 or greater are not affected by this vulnerability.\nPatches\n\nTo aid users who aren’t able to upgrade immediately we have provided patches for the two supported release series. They are in git-am format and consist of a single changeset.\n\n    6-1-Avoid-regex-backtracking-on-If-None-Match-header.patch - Patch for 6.1 series\n    7-0-Avoid-regex-backtracking-on-If-None-Match-header.patch - Patch for 7.0 series\n\nPlease note that only the 7.0.Z and 6.1.Z series are supported at present, and 6.0.Z for severe vulnerabilities. Users of earlier unsupported releases are advised to upgrade as soon as possible as we cannot guarantee the continued availability of security fixes for unsupported releases.","origin":"UNSPECIFIED","severity":"LOW","published_at":"2023-01-18T18:20:51.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/rails/rails/releases/tag/v7.0.4.1","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2023-22795.yml","https://rubyonrails.org/2023/1/17/Rails-Versions-6-0-6-1-6-1-7-1-7-0-4-1-have-been-released","https://nvd.nist.gov/vuln/detail/CVE-2023-22795","https://discuss.rubyonrails.org/t/cve-2023-22795-possible-redos-based-dos-vulnerability-in-action-dispatch/82118","https://github.com/rails/rails/commit/8d82687f3b04b2803320b64f985308239a8c3d2f","https://github.com/rails/rails/commit/8dc45950619a4c64d16fb9370570c996d201f9b0","https://github.com/rails/rails/commit/cd461c3e64e09cdcb1e379d1c35423c5e2caa592","https://github.com/rails/rails/releases/tag/v6.1.7.1","https://github.com/advisories/GHSA-8xww-x3g3-6jcv"],"source_kind":"github","identifiers":["GHSA-8xww-x3g3-6jcv","CVE-2023-22795"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"6.1.7.1","vulnerable_version_range":"\u003e= 4.0.0.beta1, \u003c 6.1.7.1"},{"first_patched_version":"7.0.4.1","vulnerable_version_range":"\u003e= 7.0.0, \u003c 7.0.4.1"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2023-01-18T19:03:22.095Z","updated_at":"2025-06-05T01:10:41.397Z","epss_percentage":0.00757,"epss_percentile":0.72138},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4MzgtdmZwcS1mbWYy","url":"https://github.com/advisories/GHSA-j838-vfpq-fmf2","title":"actionpack Cross-site Scripting vulnerability","description":"The sanitize helper in `lib/action_controller/vendor/html-scanner/html/sanitizer.rb` in the Action Pack component in Ruby on Rails before 2.3.18, 3.0.x and 3.1.x before 3.1.12, and 3.2.x before 3.2.13 does not properly handle encoded `:` (colon) characters in URLs, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via a crafted scheme name, as demonstrated by including a `\u0026#x3a;` sequence.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:37.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2013-1857","https://groups.google.com/group/rubyonrails-security/msg/78b9817a5943f6d6?dmode=source\u0026output=gplain","http://lists.opensuse.org/opensuse-updates/2013-04/msg00072.html","http://lists.opensuse.org/opensuse-updates/2013-04/msg00073.html","http://lists.opensuse.org/opensuse-updates/2014-01/msg00013.html","http://rhn.redhat.com/errata/RHSA-2013-0698.html","http://rhn.redhat.com/errata/RHSA-2014-1863.html","http://support.apple.com/kb/HT5784","http://weblog.rubyonrails.org/2013/3/18/SEC-ANN-Rails-3-2-13-3-1-12-and-2-3-18-have-been-released/","https://web.archive.org/web/20130609174600/http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html","https://web.archive.org/web/20131109010518/http://lists.apple.com/archives/security-announce/2013/Oct/msg00006.html","https://github.com/advisories/GHSA-j838-vfpq-fmf2"],"source_kind":"github","identifiers":["GHSA-j838-vfpq-fmf2","CVE-2013-1857"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.2.13","vulnerable_version_range":"\u003e= 3.2.0, \u003c 3.2.13"},{"first_patched_version":"3.1.12","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.1.12"},{"first_patched_version":"2.3.18","vulnerable_version_range":"\u003c 2.3.18"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.485Z","updated_at":"2023-11-10T05:06:17.000Z","epss_percentage":0.00625,"epss_percentile":0.68876},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdwdzctd3hqbS1jdzhy","url":"https://github.com/advisories/GHSA-wpw7-wxjm-cw8r","title":"actionpack allows bypass of database-query restrictions","description":"`actionpack/lib/action_dispatch/http/request.rb` in Ruby on Rails before 3.2.16 and 4.x before 4.0.2 does not properly consider differences in parameter handling between the Active Record component and the JSON implementation, which allows remote attackers to bypass intended database-query restrictions and perform NULL checks or trigger missing WHERE clauses via a crafted request that leverages (1) third-party Rack middleware or (2) custom Rack middleware.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-0155.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:36.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2013-6417","https://groups.google.com/forum/message/raw?msg=ruby-security-ann/niK4drpSHT4/g8JW8ZsayRkJ","http://lists.opensuse.org/opensuse-updates/2013-12/msg00079.html","http://lists.opensuse.org/opensuse-updates/2013-12/msg00081.html","http://lists.opensuse.org/opensuse-updates/2013-12/msg00082.html","http://lists.opensuse.org/opensuse-updates/2014-01/msg00003.html","http://rhn.redhat.com/errata/RHSA-2013-1794.html","http://rhn.redhat.com/errata/RHSA-2014-0008.html","http://rhn.redhat.com/errata/RHSA-2014-0469.html","http://weblog.rubyonrails.org/2013/12/3/Rails_3_2_16_and_4_0_2_have_been_released/","http://www.debian.org/security/2014/dsa-2888","https://web.archive.org/web/20160806051251/https://puppet.com/security/cve/cve-2013-6417","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2013-6417.yml","https://groups.google.com/forum/#!topic/ruby-security-ann/niK4drpSHT4","https://puppet.com/security/cve/cve-2013-6417","https://github.com/advisories/GHSA-wpw7-wxjm-cw8r"],"source_kind":"github","identifiers":["GHSA-wpw7-wxjm-cw8r","CVE-2013-6417"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.0.2","vulnerable_version_range":"\u003e= 4.0.0, \u003c 4.0.2"},{"first_patched_version":"3.2.16","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.2.16"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.731Z","updated_at":"2023-08-25T19:25:02.000Z","epss_percentage":0.00666,"epss_percentile":0.69932},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJ4amotNXg2aC04dm1m","url":"https://github.com/advisories/GHSA-2xjj-5x6h-8vmf","title":"Cross-site Scripting in actionpack","description":"Cross-site scripting (XSS) vulnerability in `actionpack/lib/action_view/helpers/form_options_helper.rb` in the select helper in Ruby on Rails 3.0.x before 3.0.12, 3.1.x before 3.1.4, and 3.2.x before 3.2.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving certain generation of OPTION elements within SELECT elements.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2012-1099","https://bugzilla.redhat.com/show_bug.cgi?id=799276","https://github.com/advisories/GHSA-2xjj-5x6h-8vmf","http://groups.google.com/group/rubyonrails-security/msg/6fca4f5c47705488?dmode=source\u0026output=gplain","http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075675.html","http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075740.html","http://weblog.rubyonrails.org/2012/3/1/ann-rails-3-0-12-has-been-released","http://www.debian.org/security/2012/dsa-2466","http://www.openwall.com/lists/oss-security/2012/03/02/6","http://www.openwall.com/lists/oss-security/2012/03/03/1","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2012-1099.yml"],"source_kind":"github","identifiers":["GHSA-2xjj-5x6h-8vmf","CVE-2012-1099"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.2.2","vulnerable_version_range":"\u003e= 3.2.0, \u003c 3.2.2"},{"first_patched_version":"3.1.4","vulnerable_version_range":"\u003e= 3.1.0, \u003c 3.1.4"},{"first_patched_version":"3.0.12","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.0.12"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.080Z","updated_at":"2023-11-10T05:01:07.000Z","epss_percentage":0.00399,"epss_percentile":0.59517},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTkydzktMnBxdy1yaGpq","url":"https://github.com/advisories/GHSA-92w9-2pqw-rhjj","title":"actionpack Improper Authentication vulnerability","description":"The `decode_credentials` method in `actionpack/lib/action_controller/metal/http_authentication.rb` in Ruby on Rails before 3.0.16, 3.1.x before 3.1.7, and 3.2.x before 3.2.7 converts Digest Authentication strings to symbols, which allows remote attackers to cause a denial of service by leveraging access to an application that uses a `with_http_digest` helper method, as demonstrated by the `authenticate_or_request_with_http_digest` method.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2012-3424","https://groups.google.com/group/rubyonrails-security/msg/244d32f2fa25147d?hl=en\u0026dmode=source\u0026output=gplain","http://lists.opensuse.org/opensuse-updates/2012-08/msg00046.html","http://rhn.redhat.com/errata/RHSA-2013-0154.html","https://github.com/rails/rails/commit/3719bd3e95523c5518507dbe44f260f252930600","http://weblog.rubyonrails.org/2012/7/26/ann-rails-3-2-7-has-been-released","https://github.com/advisories/GHSA-92w9-2pqw-rhjj"],"source_kind":"github","identifiers":["GHSA-92w9-2pqw-rhjj","CVE-2012-3424"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"2.3.5","vulnerable_version_range":"\u003c 2.3.5"},{"first_patched_version":"3.0.16","vulnerable_version_range":"\u003e= 3.0.0.beta, \u003c 3.0.16"},{"first_patched_version":"3.2.7","vulnerable_version_range":"\u003e= 3.2.0, \u003c 3.2.7"},{"first_patched_version":"3.1.7","vulnerable_version_range":"\u003e= 3.1.0, \u003c 3.1.7"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.167Z","updated_at":"2025-01-22T15:09:52.000Z","epss_percentage":0.00708,"epss_percentile":0.7087},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdnNjUtZ2hyZy1ocGY1","url":"https://github.com/advisories/GHSA-7g65-ghrg-hpf5","title":"actionpack Cross-site Scripting vulnerability","description":"Cross-site scripting (XSS) vulnerability in `actionpack/lib/action_view/helpers/sanitize_helper.rb` in the `strip_tags` helper in Ruby on Rails before 2.3.16, 3.0.x before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 allows remote attackers to inject arbitrary web script or HTML via malformed HTML markup.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:37.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2012-3465","https://groups.google.com/group/rubyonrails-security/msg/7fbb5392d4d282b5?dmode=source\u0026output=gplain","http://rhn.redhat.com/errata/RHSA-2013-0154.html","https://github.com/rails/rails/commit/e91e4e8bbee12ce1496bf384c04da6be296b687a","https://github.com/rails/rails/commit/cf48c9c7dcbef8543171f7f7de8d3d9a16b58e77","http://weblog.rubyonrails.org/2012/8/9/ann-rails-3-2-8-has-been-released","https://github.com/advisories/GHSA-7g65-ghrg-hpf5"],"source_kind":"github","identifiers":["GHSA-7g65-ghrg-hpf5","CVE-2012-3465"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"2.3.16","vulnerable_version_range":"\u003c 2.3.16"},{"first_patched_version":"3.0.17","vulnerable_version_range":"\u003e= 3.0.0.beta, \u003c 3.0.17"},{"first_patched_version":"3.2.8","vulnerable_version_range":"\u003e= 3.2.0, \u003c 3.2.8"},{"first_patched_version":"3.1.8","vulnerable_version_range":"\u003e= 3.1.0, \u003c 3.1.8"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.186Z","updated_at":"2025-01-21T15:21:14.000Z","epss_percentage":0.00237,"epss_percentile":0.46746},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZ3ZmctcWozci02djNy","url":"https://github.com/advisories/GHSA-vwfg-qj3r-6v3r","title":"Moderate severity vulnerability that affects actionpack","description":"Withdrawn, accidental duplicate publish.\n\nThe http_basic_authenticate_with method in actionpack/lib/action_controller/metal/http_authentication.rb in the Basic Authentication implementation in Action Controller in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 does not use a constant-time algorithm for verifying credentials, which makes it easier for remote attackers to bypass authentication by measuring timing differences.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2018-09-17T21:57:47.000Z","withdrawn_at":"2020-06-17T15:15:11.000Z","classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2015-7576","https://github.com/advisories/GHSA-vwfg-qj3r-6v3r"],"source_kind":"github","identifiers":["GHSA-vwfg-qj3r-6v3r"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.1.14.1","vulnerable_version_range":"\u003e= 4.0.0, \u003c= 4.1.14.0"},{"first_patched_version":"3.2.22.1","vulnerable_version_range":"\u003c= 3.2.22.0"},{"first_patched_version":"4.2.5.1","vulnerable_version_range":"\u003e= 4.2.0, \u003c= 4.2.5.0"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:41.268Z","updated_at":"2023-01-09T05:03:26.000Z","epss_percentage":null,"epss_percentile":null},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh4NDYtdndteC13eDk1","url":"https://github.com/advisories/GHSA-hx46-vwmx-wx95","title":"High severity vulnerability that affects actionpack","description":"Withdrawn, accidental duplicate publish.\n\nAction Pack in Ruby on Rails before 3.2.22.2, 4.x before 4.1.14.2, and 4.2.x before 4.2.5.2 allows remote attackers to execute arbitrary Ruby code by leveraging an application's unrestricted use of the render method.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2018-08-13T20:48:25.000Z","withdrawn_at":"2020-06-17T15:14:51.000Z","classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2016-2098","https://github.com/advisories/GHSA-hx46-vwmx-wx95"],"source_kind":"github","identifiers":["GHSA-hx46-vwmx-wx95"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.2.5.2","vulnerable_version_range":"\u003e= 4.2.0, \u003c= 4.2.5.1"},{"first_patched_version":"4.1.14.2","vulnerable_version_range":"\u003e= 4.0.0, \u003c= 4.1.14.1"},{"first_patched_version":"3.2.22.2","vulnerable_version_range":"\u003e= 3.2.0, \u003c= 3.2.22.1"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:41.362Z","updated_at":"2023-01-09T05:03:25.000Z","epss_percentage":null,"epss_percentile":null},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhycjQtcDZmcS1oamc3","url":"https://github.com/advisories/GHSA-xrr4-p6fq-hjg7","title":"Directory traversal vulnerability in Action View in Ruby on Rails","description":"Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a `..` (dot dot) in a pathname.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2017-10-24T18:33:35.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2016-0752","https://github.com/advisories/GHSA-xrr4-p6fq-hjg7","http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00053.html","http://lists.opensuse.org/opensuse-updates/2016-02/msg00034.html","http://lists.opensuse.org/opensuse-updates/2016-02/msg00043.html","http://rhn.redhat.com/errata/RHSA-2016-0296.html","http://www.debian.org/security/2016/dsa-3464","http://www.openwall.com/lists/oss-security/2016/01/25/13","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2016-0752.yml","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionview/CVE-2016-0752.yml","https://groups.google.com/forum/#!topic/rubyonrails-security/335P1DcLG00","https://web.archive.org/web/20210618005620/https://groups.google.com/forum/message/raw?msg=ruby-security-ann/335P1DcLG00/JXcBnTtZEgAJ","https://web.archive.org/web/20210621170450/http://www.securityfocus.com/bid/81801","https://web.archive.org/web/20210723192420/http://www.securitytracker.com/id/1034816","https://groups.google.com/forum/message/raw?msg=ruby-security-ann/335P1DcLG00/JXcBnTtZEgAJ","https://www.exploit-db.com/exploits/40561","http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178044.html","http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178069.html","http://www.securityfocus.com/bid/81801","http://www.securitytracker.com/id/1034816"],"source_kind":"github","identifiers":["GHSA-xrr4-p6fq-hjg7","CVE-2016-0752"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.2.22.1","vulnerable_version_range":"\u003c 3.2.22.1"},{"first_patched_version":"4.2.5.1","vulnerable_version_range":"\u003e= 4.2.0, \u003c= 4.2.5.0"},{"first_patched_version":"4.1.14.1","vulnerable_version_range":"\u003e= 4.0.0, \u003c= 4.1.14.0"}],"ecosystem":"rubygems","package_name":"actionpack"},{"versions":[{"first_patched_version":"4.2.5.1","vulnerable_version_range":"\u003e= 4.2.0, \u003c= 4.2.5.0"},{"first_patched_version":"4.1.14.1","vulnerable_version_range":"\u003e= 4.0.0, \u003c= 4.1.14.0"}],"ecosystem":"rubygems","package_name":"actionview"}],"created_at":"2022-12-21T16:12:59.630Z","updated_at":"2025-06-05T01:16:21.323Z","epss_percentage":0.92767,"epss_percentile":0.99746},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJycXctdjI2NS1qZjhj","url":"https://github.com/advisories/GHSA-2rqw-v265-jf8c","title":"Open Redirect in ActionPack","description":"# Overview\n\nThere is a possible open redirect vulnerability in the Host Authorization middleware in Action Pack. This vulnerability has been assigned the CVE identifier CVE-2021-22942.\n\nVersions Affected: \u003e= 6.0.0.\nNot affected: \u003c 6.0.0\nFixed Versions: 6.1.4.1, 6.0.4.1\n\n# Impact\n\nSpecially crafted “X-Forwarded-Host” headers in combination with certain “allowed host” formats can cause the Host Authorization middleware in Action Pack to redirect users to a malicious website.\n\nImpacted applications will have allowed hosts with a leading dot. For example, configuration files that look like this:\n\n```ruby\nconfig.hosts \u003c\u003c  '.EXAMPLE.com'\n```\n\nWhen an allowed host contains a leading dot, a specially crafted Host header can be used to redirect to a malicious website.\n\nThis vulnerability is similar to CVE-2021-22881, but CVE-2021-22881 did not take in to account domain name case sensitivity.\n\n# Releases\n\nThe fixed releases are available at the normal locations.\n\n# Workarounds\n\nIn the case a patch can’t be applied, the following monkey patch can be used in an initializer:\n\n```ruby\nmodule ActionDispatch\n  class HostAuthorization\n    HOSTNAME = /[a-z0-9.-]+|\\[[a-f0-9]*:[a-f0-9.:]+\\]/i\n    VALID_ORIGIN_HOST = /\\A(#{HOSTNAME})(?::\\d+)?\\z/\n    VALID_FORWARDED_HOST = /(?:\\A|,[ ]?)(#{HOSTNAME})(?::\\d+)?\\z/\n\n    private\n      def authorized?(request)\n        origin_host =\n          request.get_header(\"HTTP_HOST\")\u0026.slice(VALID_ORIGIN_HOST, 1) || \"\"\n        forwarded_host =\n          request.x_forwarded_host\u0026.slice(VALID_FORWARDED_HOST, 1) || \"\"\n        @permissions.allows?(origin_host) \u0026\u0026\n          (forwarded_host.blank? || @permissions.allows?(forwarded_host))\n      end\n  end\nend\n```\n","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2021-08-26T20:36:51.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2021-22942","https://access.redhat.com/security/cve/cve-2021-22942","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2021-22942.yml","https://groups.google.com/g/rubyonrails-security/c/wB5tRn7h36c","https://rubygems.org/gems/actionpack","https://weblog.rubyonrails.org/2021/8/19/Rails-6-0-4-1-and-6-1-4-1-have-been-released/","http://www.openwall.com/lists/oss-security/2021/12/14/5","https://www.debian.org/security/2023/dsa-5372","https://security.netapp.com/advisory/ntap-20240202-0005/","https://github.com/advisories/GHSA-2rqw-v265-jf8c"],"source_kind":"github","identifiers":["GHSA-2rqw-v265-jf8c","CVE-2021-22942"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"6.1.4.1","vulnerable_version_range":"\u003e= 6.1.0, \u003c= 6.1.4"},{"first_patched_version":"6.0.4.1","vulnerable_version_range":"\u003e= 6.0.0, \u003c= 6.0.4"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:48.706Z","updated_at":"2025-06-05T01:14:28.044Z","epss_percentage":0.00545,"epss_percentile":0.66692},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW00NnAtZ2dtNS01ajgz","url":"https://github.com/advisories/GHSA-m46p-ggm5-5j83","title":"Rails vulnerable to Cross-site Scripting","description":"There is an XSS vulnerability in the `number_to_currency`, `number_to_percentage` and `number_to_human` helpers in Ruby on Rails. This vulnerability has been assigned the CVE identifier CVE-2014-0081.\n\nVersions Affected:  All.\nFixed Versions:     4.1.0.beta2, 4.0.3, 3.2.17.\n\nImpact\n------\nThese helpers allows users to nicely format a numeric value. Some of the parameters to the helper (format, negative_format and units) are not escaped correctly. Applications which pass user controlled data as one of these parameters are vulnerable to an XSS attack.\n\nAll users passing user controlled data to these parameters of the number helpers should either upgrade or use one of the workarounds immediately.\n\nReleases\n--------\nThe 4.1.0.rc1, 4.0.3 and 3.2.17 releases are available at the normal locations.\n\nWorkarounds\n-----------\n\nThe workaround for this issue is to escape the value passed to the parameter.\nFor example, replace code like this:\n\n```ruby\n\u003c%= number_to_currency(1.02, format: params[:format]) %\u003e\n```\n\nWith code like this\n\n```ruby\n\u003c%= number_to_currency(1.02, format: h(params[:format])) %\u003e\n```\n\nPatches\n-------\nTo aid users who aren't able to upgrade immediately we have provided patches for the two supported release series. They are in git-am format and consist of a single changeset.\n\n* 4-1-beta-number_helpers_xss.patch - Patch for 4.1-beta series\n* 4-0-number_helpers_xss.patch - Patch for 4.0 series\n* 3-2-number_helpers_xss.patch - Patch for 3.2 series\n\nPlease note that only the 4.0.x and 3.2.x series are supported at present. Users of earlier unsupported releases are advised to upgrade as soon as possible as we cannot guarantee the continued availability of security fixes for unsupported releases.\n\nCredits\n-------\n\nThanks to Kevin Reintjes for reporting the issue to us.\n\n-- \nAaron Patterson\nhttp://tenderlovemaking.com/\n","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:36.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2014-0081","http://lists.opensuse.org/opensuse-updates/2014-02/msg00081.html","http://openwall.com/lists/oss-security/2014/02/18/8","http://rhn.redhat.com/errata/RHSA-2014-0215.html","http://rhn.redhat.com/errata/RHSA-2014-0306.html","https://web.archive.org/web/20140911141416/http://www.securitytracker.com/id/1029782","https://web.archive.org/web/20170307202606/http://www.securityfocus.com/bid/65647","https://github.com/rails/rails/commit/08d0a11a3f62718d601d39e617c834759cf59bbb","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2014-0081.yml","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rails/CVE-2014-0081.yml","https://web.archive.org/web/20201207045136/https://groups.google.com/forum/message/raw?msg=rubyonrails-security/tfp6gZCtzr4/j8LUHmu7fIEJ","https://github.com/advisories/GHSA-m46p-ggm5-5j83"],"source_kind":"github","identifiers":["GHSA-m46p-ggm5-5j83","CVE-2014-0081"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.0.3","vulnerable_version_range":"\u003e= 4.0.0, \u003c 4.0.3"},{"first_patched_version":"3.2.17","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.2.17"}],"ecosystem":"rubygems","package_name":"actionpack"},{"versions":[{"first_patched_version":"4.0.3","vulnerable_version_range":"\u003e= 4.0.0, \u003c 4.0.3"},{"first_patched_version":"3.2.17","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.2.17"}],"ecosystem":"rubygems","package_name":"rails"}],"created_at":"2022-12-21T16:13:38.839Z","updated_at":"2025-06-05T01:16:21.405Z","epss_percentage":0.00637,"epss_percentile":0.69398},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThmcXgtN3B2NC0zandt","url":"https://github.com/advisories/GHSA-8fqx-7pv4-3jwm","title":"Improper Input Validation in actionpack","description":"Ruby on Rails 2.1 before 2.1.3 and 2.2.x before 2.2.2 does not verify tokens for requests with certain content types, which allows remote attackers to bypass cross-site request forgery (CSRF) protection for requests to applications that rely on this protection, as demonstrated using text/plain.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2008-7248","https://access.redhat.com/security/cve/CVE-2008-7248","https://bugzilla.redhat.com/show_bug.cgi?id=544329","https://groups.google.com/group/rubyonrails-security/browse_thread/thread/d741ee286e36e301?hl=en","https://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html","https://pseudo-flaw.net/content/web-browsers/form-data-encoding-roundup/","https://weblog.rubyonrails.org/2008/11/18/potential-circumvention-of-csrf-protection-in-rails-2-1","https://www.openwall.com/lists/oss-security/2009/11/28/1","https://www.openwall.com/lists/oss-security/2009/12/02/2","https://www.rorsecurity.info/journal/2008/11/19/circumvent-rails-csrf-protection.html","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2008-7248.yml","http://groups.google.com/group/rubyonrails-security/browse_thread/thread/d741ee286e36e301?hl=en","http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html","http://pseudo-flaw.net/content/web-browsers/form-data-encoding-roundup/","http://weblog.rubyonrails.org/2008/11/18/potential-circumvention-of-csrf-protection-in-rails-2-1","http://www.openwall.com/lists/oss-security/2009/11/28/1","http://www.openwall.com/lists/oss-security/2009/12/02/2","https://github.com/rails/rails/commit/099a98e9b7108dae3e0f78b207e0a7dc5913bd1a","https://web.archive.org/web/20090906010200/https://www.vupen.com/english/advisories/2009/2544","https://github.com/advisories/GHSA-8fqx-7pv4-3jwm"],"source_kind":"github","identifiers":["GHSA-8fqx-7pv4-3jwm","CVE-2008-7248"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"2.2.2","vulnerable_version_range":"\u003e= 2.2.0, \u003c 2.2.2"},{"first_patched_version":"2.1.3","vulnerable_version_range":"\u003e= 2.1.0, \u003c 2.1.3"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:37.878Z","updated_at":"2023-05-26T16:54:59.000Z","epss_percentage":0.11409,"epss_percentile":0.92936},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXczN2MtcTY1My1xZzk1","url":"https://github.com/advisories/GHSA-w37c-q653-qg95","title":"actionpack Cross-site Scripting vulnerability","description":"Cross-site scripting (XSS) vulnerability in the simple_format helper in `actionpack/lib/action_view/helpers/text_helper.rb` in Ruby on Rails 4.x before 4.0.2 allows remote attackers to inject arbitrary web script or HTML via a crafted HTML attribute.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:36.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2013-6416","https://groups.google.com/forum/message/raw?msg=ruby-security-ann/5ZI1-H5OoIM/ZNq4FoR2GnIJ","http://weblog.rubyonrails.org/2013/12/3/Rails_3_2_16_and_4_0_2_have_been_released/","https://web.archive.org/web/20200228165109/http://www.securityfocus.com/bid/64071","https://github.com/rails/rails/commit/4b4f5847f64f81c961625e647711ef9f6ad1a454","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2013-6416.yml","https://groups.google.com/forum/#!topic/ruby-security-ann/5ZI1-H5OoIM","https://github.com/advisories/GHSA-w37c-q653-qg95"],"source_kind":"github","identifiers":["GHSA-w37c-q653-qg95","CVE-2013-6416"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.0.2","vulnerable_version_range":"\u003e= 4.0.0, \u003c 4.0.2"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.721Z","updated_at":"2023-07-26T18:41:29.000Z","epss_percentage":0.00236,"epss_percentile":0.46511},{"uuid":"GSA_kwCzR0hTQS12Zm01LXJtcmgtajI2ds4ABCQK","url":"https://github.com/advisories/GHSA-vfm5-rmrh-j26v","title":"Possible Content Security Policy bypass in Action Dispatch","description":"There is a possible Cross Site Scripting (XSS) vulnerability  in the `content_security_policy` helper in Action Pack.\n\nImpact\n------\nApplications which set Content-Security-Policy (CSP) headers dynamically from untrusted user input may be vulnerable to carefully crafted inputs being able to inject new directives into the CSP. This could lead to a bypass of the CSP and its protection against XSS and other attacks.\n\nReleases\n--------\nThe fixed releases are available at the normal locations.\n\nWorkarounds\n-----------\nApplications can avoid setting CSP headers dynamically from untrusted input, or can validate/sanitize that input.\n\nCredits\n-------\nThanks to [ryotak](https://hackerone.com/ryotak) for the report!","origin":"UNSPECIFIED","severity":"LOW","published_at":"2024-12-10T22:42:27.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":2.3,"cvss_vector":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N","references":["https://github.com/rails/rails/security/advisories/GHSA-vfm5-rmrh-j26v","https://nvd.nist.gov/vuln/detail/CVE-2024-54133","https://github.com/rails/rails/commit/2e3f41e4538b9ca1044357f6644f037bbb7c6c49","https://github.com/rails/rails/commit/3da2479cfe1e00177114b17e496213c40d286b3a","https://github.com/rails/rails/commit/5558e72f22fc69c1c407b31ac5fb3b4ce087b542","https://github.com/rails/rails/commit/cb16a3bb515b5d769f73926d9757270ace691f1d","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2024-54133.yml","https://security.netapp.com/advisory/ntap-20250306-0010","https://github.com/advisories/GHSA-vfm5-rmrh-j26v"],"source_kind":"github","identifiers":["GHSA-vfm5-rmrh-j26v","CVE-2024-54133"],"repository_url":"https://github.com/rails/rails","blast_radius":13.667850661693462,"packages":[{"versions":[{"first_patched_version":"8.0.0.1","vulnerable_version_range":"\u003e= 8.0.0, \u003c 8.0.0.1"},{"first_patched_version":"7.2.2.1","vulnerable_version_range":"\u003e= 7.2.0, \u003c 7.2.2.1"},{"first_patched_version":"7.1.5.1","vulnerable_version_range":"\u003e= 7.1.0, \u003c 7.1.5.1"},{"first_patched_version":"7.0.8.7","vulnerable_version_range":"\u003e= 5.2.0, \u003c 7.0.8.7"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2024-12-10T23:07:40.935Z","updated_at":"2025-03-07T03:31:33.000Z","epss_percentage":0.00048,"epss_percentile":0.15068},{"uuid":"GSA_kwCzR0hTQS1xcGhjLWhmNXEtdjhmY80bRw","url":"https://github.com/advisories/GHSA-qphc-hf5q-v8fc","title":"actionpack Open Redirect in Host Authorization Middleware","description":"Specially crafted \"X-Forwarded-Host\" headers in combination with certain \"allowed host\" formats can cause the Host Authorization middleware in Action Pack to redirect users to a malicious website.\n\nImpacted applications will have allowed hosts with a leading dot. For example, configuration files that look like this:\n\n```\nconfig.hosts \u003c\u003c  '.EXAMPLE.com'\n```\n\nWhen an allowed host contains a leading dot, a specially crafted Host header can be used to redirect to a malicious website.\n\nThis vulnerability is similar to CVE-2021-22881 and CVE-2021-22942.\n\nReleases\n--------\nThe fixed releases are available at the normal locations.\n\nPatches\n-------\nTo aid users who aren't able to upgrade immediately we have provided patches for the two supported release series. They are in git-am format and consist of a single changeset.\n\n* 6-0-host-authorzation-open-redirect.patch - Patch for 6.0 series\n* 6-1-host-authorzation-open-redirect.patch - Patch for 6.1 series\n* 7-0-host-authorzation-open-redirect.patch - Patch for 7.0 series\n\nPlease note that only the 6.1.Z, 6.0.Z, and 5.2.Z series are supported at present. Users of earlier unsupported releases are advised to upgrade as soon as possible as we cannot guarantee the continued availability of security fixes for unsupported releases.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2021-12-14T21:19:08.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2021-44528","https://groups.google.com/g/ruby-security-ann/c/vG9gz3nk1pM/m/7-NU4MNrDAAJ?utm_medium=email\u0026utm_source=footer","https://github.com/rails/rails/commit/aecba3c301b80e9d5a63c30ea1b287bceaf2c107","https://github.com/rails/rails/blob/v6.1.4.2/actionpack/CHANGELOG.md#rails-6142-december-14-2021","https://github.com/rails/rails/commit/0fccfb9a3097a9c4260c791f1a40b128517e7815","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2021-44528.yml","https://groups.google.com/g/ruby-security-ann/c/vG9gz3nk1pM/m/7-NU4MNrDAAJ","https://www.debian.org/security/2023/dsa-5372","https://security.netapp.com/advisory/ntap-20240208-0003/","https://github.com/advisories/GHSA-qphc-hf5q-v8fc"],"source_kind":"github","identifiers":["GHSA-qphc-hf5q-v8fc","CVE-2021-44528"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"6.1.4.2","vulnerable_version_range":"\u003e= 6.1.0, \u003c= 6.1.4.1"},{"first_patched_version":"6.0.4.2","vulnerable_version_range":"\u003e= 6.0.0, \u003c= 6.0.4.1"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:40.601Z","updated_at":"2025-06-05T01:16:01.309Z","epss_percentage":0.26792,"epss_percentile":0.96066},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI3cTItNWdxZy02Yzdx","url":"https://github.com/advisories/GHSA-r7q2-5gqg-6c7q","title":"actionpack Improper Input Validation vulnerability","description":"The template selection functionality in `actionpack/lib/action_view/template/resolver.rb` in Ruby on Rails 3.0.x before 3.0.10 and 3.1.x before 3.1.0.rc6 does not properly handle glob characters, which allows remote attackers to render arbitrary views via a crafted URL, related to a \"filter skipping vulnerability.\"","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:38.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2011-2929","https://github.com/rails/rails/commit/5f94b93279f6d0682fafb237c301302c107a9552","https://bugzilla.redhat.com/show_bug.cgi?id=731432","http://groups.google.com/group/rubyonrails-security/msg/cbbbba6e4f7eaf61?dmode=source\u0026output=gplain","http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065109.html","http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065212.html","http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6","http://www.openwall.com/lists/oss-security/2011/08/17/1","http://www.openwall.com/lists/oss-security/2011/08/19/11","http://www.openwall.com/lists/oss-security/2011/08/20/1","http://www.openwall.com/lists/oss-security/2011/08/22/13","http://www.openwall.com/lists/oss-security/2011/08/22/14","http://www.openwall.com/lists/oss-security/2011/08/22/5","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2011-2929.yml","https://rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6","https://github.com/advisories/GHSA-r7q2-5gqg-6c7q"],"source_kind":"github","identifiers":["GHSA-r7q2-5gqg-6c7q","CVE-2011-2929"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.0.10","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.0.10"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.003Z","updated_at":"2023-05-21T05:00:39.000Z","epss_percentage":0.00814,"epss_percentile":0.72954},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWptZ3ctNnZqZy1qandn","url":"https://github.com/advisories/GHSA-jmgw-6vjg-jjwg","title":"actionpack Improper Input Validation vulnerability","description":"`active_support/core_ext/hash/conversions.rb` in Ruby on Rails before 2.3.15, 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly restrict casts of string values, which allows remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a denial of service (memory and CPU consumption) involving nested XML entity references, by leveraging Action Pack support for (1) YAML type conversion or (2) Symbol type conversion.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2017-10-24T18:33:37.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2013-0156","https://community.rapid7.com/community/metasploit/blog/2013/01/09/serialization-mischief-in-ruby-land-cve-2013-0156","https://groups.google.com/group/rubyonrails-security/msg/c1432d0f8c70e89d?dmode=source\u0026output=gplain","http://rhn.redhat.com/errata/RHSA-2013-0153.html","http://rhn.redhat.com/errata/RHSA-2013-0154.html","http://rhn.redhat.com/errata/RHSA-2013-0155.html","http://weblog.rubyonrails.org/2013/1/28/Rails-3-0-20-and-2-3-16-have-been-released/","http://www.debian.org/security/2013/dsa-2604","http://www.fujitsu.com/global/support/software/security/products-f/sw-sv-rcve-ror201301e.html","http://www.insinuator.net/2013/01/rails-yaml/","http://www.kb.cert.org/vuls/id/380039","http://www.kb.cert.org/vuls/id/628463","https://web.archive.org/web/20140111025708/http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html","https://web.archive.org/web/20160415043747/https://ics-cert.us-cert.gov/advisories/ICSA-13-036-01A","https://web.archive.org/web/20160806154149/https://puppet.com/security/cve/cve-2013-0156/","https://github.com/advisories/GHSA-jmgw-6vjg-jjwg"],"source_kind":"github","identifiers":["GHSA-jmgw-6vjg-jjwg","CVE-2013-0156"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.2.11","vulnerable_version_range":"\u003e= 3.2.0, \u003c 3.2.11"},{"first_patched_version":"3.1.10","vulnerable_version_range":"\u003e= 3.1.0, \u003c 3.1.10"},{"first_patched_version":"3.0.19","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.0.19"},{"first_patched_version":"2.3.15","vulnerable_version_range":"\u003c 2.3.15"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.272Z","updated_at":"2023-02-15T22:23:01.000Z","epss_percentage":0.93121,"epss_percentile":0.99786},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1weGYtZ2N3Mi1wdzVx","url":"https://github.com/advisories/GHSA-mpxf-gcw2-pw5q","title":"actionpack Improper Input Validation vulnerability","description":"`actionpack/lib/action_view/lookup_context.rb` in Action View in Ruby on Rails 3.x before 3.2.16 and 4.x before 4.0.2 allows remote attackers to cause a denial of service (memory consumption) via a header containing an invalid MIME type that leads to excessive caching.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:37.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2013-6414","https://groups.google.com/forum/message/raw?msg=ruby-security-ann/A-ebV4WxzKg/KNPTbX8XAQUJ","http://lists.opensuse.org/opensuse-updates/2013-12/msg00079.html","http://lists.opensuse.org/opensuse-updates/2013-12/msg00081.html","http://lists.opensuse.org/opensuse-updates/2013-12/msg00082.html","http://lists.opensuse.org/opensuse-updates/2014-01/msg00003.html","http://rhn.redhat.com/errata/RHSA-2013-1794.html","http://rhn.redhat.com/errata/RHSA-2014-0008.html","http://rhn.redhat.com/errata/RHSA-2014-1863.html","http://weblog.rubyonrails.org/2013/12/3/Rails_3_2_16_and_4_0_2_have_been_released/","http://www.debian.org/security/2014/dsa-2888","http://www.getchef.com/blog/2014/04/09/enterprise-chef-11-1-3-release/","https://web.archive.org/web/20160421165124/http://secunia.com/advisories/57836","https://web.archive.org/web/20160808161629/https://puppet.com/security/cve/cve-2013-6414","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2013-6414.yml","https://groups.google.com/forum/#!topic/ruby-security-ann/A-ebV4WxzKg","https://puppet.com/security/cve/cve-2013-6414","https://github.com/advisories/GHSA-mpxf-gcw2-pw5q"],"source_kind":"github","identifiers":["GHSA-mpxf-gcw2-pw5q","CVE-2013-6414"],"repository_url":null,"blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.0.2","vulnerable_version_range":"\u003e= 4.0.0, \u003c 4.0.2"},{"first_patched_version":"3.2.16","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.2.16"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:38.702Z","updated_at":"2023-11-10T05:00:49.000Z","epss_percentage":0.70843,"epss_percentile":0.98598},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk4bWYtOGY1Ny02NHFm","url":"https://github.com/advisories/GHSA-98mf-8f57-64qf","title":"actionpack Cross-site Scripting vulnerability","description":"Cross-site scripting (XSS) vulnerability in `actionpack/lib/action_view/helpers/form_tag_helper.rb` in Ruby on Rails 3.x before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 allows remote attackers to inject arbitrary web script or HTML via the `prompt` field to the `select_tag` helper.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2017-10-24T18:33:37.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2012-3463","https://groups.google.com/group/rubyonrails-security/msg/961e18e514527078?dmode=source\u0026output=gplain","http://rhn.redhat.com/errata/RHSA-2013-0154.html","http://weblog.rubyonrails.org/2012/8/9/ann-rails-3-2-8-has-been-released/","https://github.com/rails/rails/commit/6d0526db91afb0675c2ad3d871529d1536303c64","https://groups.google.com/g/rubyonrails-security/c/fV3QUToSMSw/m/eHBSFOUYHpYJ?pli=1","https://github.com/advisories/GHSA-98mf-8f57-64qf"],"source_kind":"github","identifiers":["GHSA-98mf-8f57-64qf","CVE-2012-3463"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.0.17","vulnerable_version_range":"\u003e= 3.0, \u003c 3.0.17"},{"first_patched_version":"3.2.8","vulnerable_version_range":"\u003e= 3.2.0, \u003c 3.2.8"},{"first_patched_version":"3.1.8","vulnerable_version_range":"\u003e= 3.1.0, \u003c 3.1.8"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:12:10.572Z","updated_at":"2023-11-10T05:06:12.000Z","epss_percentage":0.00236,"epss_percentile":0.46511},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVocTIteGY4OS05anhx","url":"https://github.com/advisories/GHSA-5hq2-xf89-9jxq","title":"Possible Open Redirect Vulnerability in Action Pack","description":"There is a possible Open Redirect Vulnerability in Action Pack.\n\nVersions Affected:  \u003e= v6.1.0.rc2\nNot affected:       \u003c v6.1.0.rc2\nFixed Versions:     6.1.3.2\n\nImpact\n------\nThis is similar to CVE-2021-22881. Specially crafted Host headers in combination with certain \"allowed host\" formats can cause the Host Authorization middleware in Action Pack to redirect users to a malicious\nwebsite.\n\nSince rails/rails@9bc7ea5, strings in config.hosts that do not have a leading dot are converted to regular expressions without proper escaping. This causes, for example, config.hosts \u003c\u003c \"sub.example.com\" to permit a request with a Host header value of sub-example.com.\n\n\nReleases\n--------\nThe fixed releases are available at the normal locations.\n\nWorkarounds\n-----------\nThe following monkey patch put in an initializer can be used as a workaround.\n\n```ruby\nclass ActionDispatch::HostAuthorization::Permissions\n  def sanitize_string(host)\n    if host.start_with?(\".\")\n      /\\A(.+\\.)?#{Regexp.escape(host[1..-1])}\\z/i\n    else\n      /\\A#{Regexp.escape host}\\z/i\n    end\n  end\nend\n```\n\nPatches\n-------\nTo aid users who aren't able to upgrade immediately we have provided patches for the two supported release series. They are in git-am format and consist of a single changeset.\n\n* 6-1-open-redirect.patch - Patch for 6.1 series\n\nPlease note that only the 6.1.Z, 6.0.Z, and 5.2.Z series are supported at present. Users of earlier unsupported releases are advised to upgrade as soon as possible as we cannot guarantee the continued availability of security fixes for unsupported releases.\n\nCredits\n-------\n\nThanks Jonathan Hefner (https://hackerone.com/jonathanhefner) for reporting this bug!","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2021-05-05T19:48:29.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/rails/rails/releases/tag/v6.1.3.2","https://groups.google.com/g/rubyonrails-security/c/8TxqXEtgSF0","https://nvd.nist.gov/vuln/detail/CVE-2021-22903","https://hackerone.com/reports/1148025","https://discuss.rubyonrails.org/t/cve-2021-22903-possible-open-redirect-vulnerability-in-action-pack/77867","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2021-22903.yml","https://github.com/advisories/GHSA-5hq2-xf89-9jxq"],"source_kind":"github","identifiers":["GHSA-5hq2-xf89-9jxq","CVE-2021-22903"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"6.1.3.2","vulnerable_version_range":"\u003e= 6.1.0.rc2, \u003c 6.1.3.2"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:05.239Z","updated_at":"2025-06-05T01:16:01.260Z","epss_percentage":0.00151,"epss_percentile":0.36898},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg4NzctcHJxNC05eGZ3","url":"https://github.com/advisories/GHSA-8877-prq4-9xfw","title":"Actionpack Open Redirect Vulnerability ","description":"The Host Authorization middleware in Action Pack before 6.1.2.1, 6.0.3.5 suffers from an open redirect vulnerability. Specially crafted `Host` headers in combination with certain \"allowed host\" formats can cause the Host Authorization middleware in Action Pack to redirect users to a malicious website. ","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2021-03-02T03:44:17.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2021-22881","https://hackerone.com/reports/1047447","https://benjamin-bouchet.com/cve-2021-22881-faille-de-securite-dans-le-middleware-hostauthorization/","https://discuss.rubyonrails.org/t/cve-2021-22881-possible-open-redirect-in-host-authorization-middleware/77130","https://rubygems.org/gems/actionpack","https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XQ3NS4IBYE2I3MVMGAHFZBZBIZGHXHT3/","http://www.openwall.com/lists/oss-security/2021/05/05/2","http://www.openwall.com/lists/oss-security/2021/08/20/1","http://www.openwall.com/lists/oss-security/2021/12/14/5","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2021-22881.yml","https://groups.google.com/g/rubyonrails-security/c/zN_3qA26l6E","https://github.com/rails/rails/commit/b5de7b3a4787d8a55aaad39f477c16e3af65e444","https://github.com/rails/rails/blob/v6.1.2.1/actionpack/CHANGELOG.md","https://github.com/advisories/GHSA-8877-prq4-9xfw"],"source_kind":"github","identifiers":["GHSA-8877-prq4-9xfw","CVE-2021-22881"],"repository_url":"https://github.com/rails/rails","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"6.1.2.1","vulnerable_version_range":"\u003e= 6.1.0, \u003c= 6.1.2.0"},{"first_patched_version":"6.0.3.5","vulnerable_version_range":"\u003e= 6.0.0, \u003c= 6.0.3.4"}],"ecosystem":"rubygems","package_name":"actionpack"}],"created_at":"2022-12-21T16:13:11.262Z","updated_at":"2025-06-05T01:18:25.516Z","epss_percentage":0.06852,"epss_percentile":0.90852}],"docker_usage_url":"https://docker.ecosyste.ms/usage/rubygems/actionpack","docker_dependents_count":1348,"docker_downloads_count":824839457,"usage_url":"https://repos.ecosyste.ms/usage/rubygems/actionpack","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/rubygems/actionpack/dependencies","status":null,"funding_links":[],"critical":true,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/packages/actionpack/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/packages/actionpack/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/packages/actionpack/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/packages/actionpack/related_packages","maintainers":[{"uuid":"43492","login":"jhawthorn","name":null,"email":null,"url":null,"packages_count":136,"html_url":"https://rubygems.org/profiles/jhawthorn","role":null,"created_at":"2022-11-07T12:33:28.725Z","updated_at":"2022-11-07T12:33:28.725Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/jhawthorn/packages"},{"uuid":"207","login":"tenderlove","name":null,"email":null,"url":null,"packages_count":183,"html_url":"https://rubygems.org/profiles/tenderlove","role":null,"created_at":"2022-11-07T12:33:28.755Z","updated_at":"2022-11-07T12:33:28.755Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/tenderlove/packages"},{"uuid":"54617","login":"kamipo","name":null,"email":null,"url":null,"packages_count":61,"html_url":"https://rubygems.org/profiles/kamipo","role":null,"created_at":"2022-11-07T12:33:28.720Z","updated_at":"2022-11-07T12:33:28.720Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/kamipo/packages"},{"uuid":"46413","login":"byroot","name":null,"email":null,"url":null,"packages_count":104,"html_url":"https://rubygems.org/profiles/byroot","role":null,"created_at":"2022-11-07T12:33:28.733Z","updated_at":"2022-11-07T12:33:28.733Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/byroot/packages"},{"uuid":"1550","login":"webster132","name":null,"email":null,"url":null,"packages_count":95,"html_url":"https://rubygems.org/profiles/webster132","role":null,"created_at":"2022-11-07T12:33:28.745Z","updated_at":"2022-11-07T12:33:28.745Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/webster132/packages"},{"uuid":"43998","login":"guilleiguaran","name":null,"email":null,"url":null,"packages_count":85,"html_url":"https://rubygems.org/profiles/guilleiguaran","role":null,"created_at":"2022-11-07T12:33:28.760Z","updated_at":"2022-11-07T12:33:28.760Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/guilleiguaran/packages"},{"uuid":"32977","login":"fxn","name":null,"email":null,"url":null,"packages_count":61,"html_url":"https://rubygems.org/profiles/fxn","role":null,"created_at":"2022-11-07T12:33:28.750Z","updated_at":"2022-11-07T12:33:28.750Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/fxn/packages"},{"uuid":"429","login":"cantoniodasilva","name":null,"email":null,"url":null,"packages_count":67,"html_url":"https://rubygems.org/profiles/cantoniodasilva","role":null,"created_at":"2022-11-07T12:33:28.765Z","updated_at":"2022-11-07T12:33:28.765Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/cantoniodasilva/packages"},{"uuid":"47349","login":"rafaelfranca","name":null,"email":null,"url":null,"packages_count":120,"html_url":"https://rubygems.org/profiles/rafaelfranca","role":null,"created_at":"2022-11-07T12:33:28.772Z","updated_at":"2022-11-07T12:33:28.772Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/rafaelfranca/packages"},{"uuid":"337","login":"jeremydaer","name":null,"email":null,"url":null,"packages_count":81,"html_url":"https://rubygems.org/profiles/jeremydaer","role":null,"created_at":"2022-11-07T12:33:28.738Z","updated_at":"2022-11-07T12:33:28.738Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/jeremydaer/packages"},{"uuid":"528","login":"matthewd","name":null,"email":null,"url":null,"packages_count":66,"html_url":"https://rubygems.org/profiles/matthewd","role":null,"created_at":"2022-11-07T12:33:28.778Z","updated_at":"2022-11-07T12:33:28.778Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/matthewd/packages"},{"uuid":"96878","login":"eileencodes","name":null,"email":null,"url":null,"packages_count":51,"html_url":"https://rubygems.org/profiles/eileencodes","role":null,"created_at":"2022-11-07T12:33:28.785Z","updated_at":"2022-11-07T12:33:28.785Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/eileencodes/packages"}],"registry":{"name":"rubygems.org","url":"https://rubygems.org","ecosystem":"rubygems","default":true,"packages_count":198115,"maintainers_count":66429,"namespaces_count":0,"keywords_count":17799,"github":"rubygems","metadata":{"funded_packages_count":7045},"icon_url":"https://github.com/rubygems.png","created_at":"2022-04-04T15:19:23.446Z","updated_at":"2025-06-06T05:59:27.395Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/namespaces"}},"unique_repositories_count":192,"unique_repositories_count_past_30_days":0,"recent_issues":[{"uuid":"4135090950","node_id":"PR_kwDOAeBT_c7NVYY2","number":178,"state":"open","title":"[bundler] Bump the rails group with 4 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-03-25T12:33:45.000Z","updated_at":"2026-03-25T12:34:04.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"[bundler] Bump","group_name":"rails","update_count":4,"packages":[{"name":"activemodel","old_version":"8.1.2.1","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"},{"name":"activesupport","old_version":"8.1.2.1","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"},{"name":"actionpack","old_version":"8.1.2.1","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"},{"name":"actionview","old_version":"8.1.2.1","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the rails group with 4 updates: [activemodel](https://github.com/rails/rails), [activesupport](https://github.com/rails/rails), [actionpack](https://github.com/rails/rails) and [actionview](https://github.com/rails/rails).\n\nUpdates `activemodel` from 8.1.2.1 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactivemodel's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/activemodel/CHANGELOG.md\"\u003eactivemodel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.3 (March 24, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eEdward Woodcock\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/5a3d7d903aba1219f394259c2d9c02949b1b5cd7\"\u003e\u003ccode\u003e5a3d7d9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56943\"\u003e#56943\u003c/a\u003e from yahonda/ruby-16321\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/034ca73253a001be8cce523812559012ac341fb8\"\u003e\u003ccode\u003e034ca73\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56867\"\u003e#56867\u003c/a\u003e from hammadxcm/fix-ruby4-delegator-inspect-warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6c23f3bd4e252619010bb13ab2570faa5000ed55\"\u003e\u003ccode\u003e6c23f3b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56768\"\u003e#56768\u003c/a\u003e from RemoteCTO/fix/integer-type-marshal-compat\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2.1...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `activesupport` from 8.1.2.1 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactivesupport's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/activesupport/CHANGELOG.md\"\u003eactivesupport's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.3 (March 24, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\n  inflect.acronym \u0026quot;USD\u0026quot;\n  inflect.acronym \u0026quot;USDC\u0026quot;\nend\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/c315744f2001bdd5cba32d43274adca50b71e289\"\u003e\u003ccode\u003ec315744\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56889\"\u003e#56889\u003c/a\u003e from alpaca-tc/support-spring-on-test-environment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/2ac86a8a9e32fff6bfaacd199957ba4ace0a2256\"\u003e\u003ccode\u003e2ac86a8\u003c/code\u003e\u003c/a\u003e Revert benchmark.rb to a silent shim (\u003ca href=\"https://redirect.github.com/rails/rails/issues/56832\"\u003e#56832\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8e8c95511610c6316084ccd9bc098acfd5e163b8\"\u003e\u003ccode\u003e8e8c955\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56785\"\u003e#56785\u003c/a\u003e from drsharp/dan/fix-json-encoder-bug\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/38e8df6a5a3244e5a239e33c3a08ed0c52791b73\"\u003e\u003ccode\u003e38e8df6\u003c/code\u003e\u003c/a\u003e Fix activesupport/CHANGELOG.md offense at 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/f5266eee6c69972b629cbcdeed8ad34d5410de14\"\u003e\u003ccode\u003ef5266ee\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56679\"\u003e#56679\u003c/a\u003e from Saidbek/fix-overlapping-acronyms-order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8080d2d6bbbc8d534d2ba57623b8bcf90f7e0caf\"\u003e\u003ccode\u003e8080d2d\u003c/code\u003e\u003c/a\u003e Fix changelog formatting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/594357c4bc3ee1aae1b9413715f99407352e7c19\"\u003e\u003ccode\u003e594357c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56652\"\u003e#56652\u003c/a\u003e from zzak/re-56588\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/055902a00e777d6ed5be51c73181d54aa1251e0a\"\u003e\u003ccode\u003e055902a\u003c/code\u003e\u003c/a\u003e Handle Ruby 4.1 stabby lambda in Proc#source_location start_column\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2.1...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionpack` from 8.1.2.1 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.3 (March 24, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/10c6e0eb362d4cd437ea092deb86e67f0d243dfc\"\u003e\u003ccode\u003e10c6e0e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56750\"\u003e#56750\u003c/a\u003e from nicolasva/fix/UnknownHttpMethod\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/cce61db5a22f94e8e820b3d2bf3d96cf0db9412a\"\u003e\u003ccode\u003ecce61db\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56820\"\u003e#56820\u003c/a\u003e from ybiquitous/improve-apidoc-for-ActionDispatch_I...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2.1...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionview` from 8.1.2.1 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionview's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/actionview/CHANGELOG.md\"\u003eactionview's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.3 (March 24, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix encoding errors for string locals containing non-ASCII characters.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eKataoka Katsuki\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix collection caching to only forward \u003ccode\u003eexpires_in\u003c/code\u003e argument if explicitly set.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ePieter Visser\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/e598b9427876ba44bd62c48390e6568476b3f8f0\"\u003e\u003ccode\u003ee598b94\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56906\"\u003e#56906\u003c/a\u003e from kataokatsuki/fix-strict-locals-non-ascii-encoding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/c2ea79c21161de7eb271b2789fbed21dde504071\"\u003e\u003ccode\u003ec2ea79c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56891\"\u003e#56891\u003c/a\u003e from pietervisser/fix-collection-caching-to-preserv...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2.1...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e\n\n\u003c!-- CURSOR_SUMMARY --\u003e\n---\n\n\u003e [!NOTE]\n\u003e **Low Risk**\n\u003e Lockfile-only dependency updates to Rails patch releases and `json` patch version; main risk is unexpected upstream behavior changes in framework internals.\n\u003e \n\u003e **Overview**\n\u003e Updates `Gemfile.lock` to bump the Rails framework gems (`actionpack`, `actionview`, `activemodel`, `activesupport`) from `8.1.2.1` to `8.1.3`, including refreshed checksums.\n\u003e \n\u003e Also bumps the `json` gem from `2.19.2` to `2.19.3`.\n\u003e \n\u003e \u003csup\u003eWritten by [Cursor Bugbot](https://cursor.com/dashboard?tab=bugbot) for commit 3ac7be5462b12fd672a340cddd579bbe16ff2ae5. This will update automatically on new commits. Configure [here](https://cursor.com/dashboard?tab=bugbot).\u003c/sup\u003e\n\u003c!-- /CURSOR_SUMMARY --\u003e","html_url":"https://github.com/guideline-tech/subroutine/pull/178","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/guideline-tech%2Fsubroutine/issues/178","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/178/packages"},{"uuid":"4132342745","node_id":"PR_kwDOJO1DGs7NNcfO","number":899,"state":"closed","title":"Bump actionpack from 8.1.2.1 to 8.1.3","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-25T10:30:41.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-25T04:23:36.000Z","updated_at":"2026-03-25T10:30:42.000Z","time_to_close":22025,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2.1","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2.1 to 8.1.3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.3 (March 24, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/10c6e0eb362d4cd437ea092deb86e67f0d243dfc\"\u003e\u003ccode\u003e10c6e0e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56750\"\u003e#56750\u003c/a\u003e from nicolasva/fix/UnknownHttpMethod\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/cce61db5a22f94e8e820b3d2bf3d96cf0db9412a\"\u003e\u003ccode\u003ecce61db\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56820\"\u003e#56820\u003c/a\u003e from ybiquitous/improve-apidoc-for-ActionDispatch_I...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2.1...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2.1\u0026new-version=8.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/ecosyste-ms/summary/pull/899","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ecosyste-ms%2Fsummary/issues/899","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/899/packages"},{"uuid":"4130635026","node_id":"PR_kwDOAHOAqs7NIn70","number":38840,"state":"open","title":"DEPS: Bump the rails group with 8 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-03-24T21:03:20.000Z","updated_at":"2026-03-24T21:03:39.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"DEPS: Bump","group_name":"rails","update_count":8,"packages":[{"name":"actionmailer","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"},{"name":"actionpack","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"},{"name":"actionview","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"},{"name":"activemodel","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"},{"name":"activerecord","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"},{"name":"activesupport","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"},{"name":"railties","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"},{"name":"activejob","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the rails group with 8 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [actionmailer](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n| [actionpack](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n| [actionview](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n| [activemodel](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n| [activerecord](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n| [activesupport](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n| [railties](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n| [activejob](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n\n\nUpdates `actionmailer` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/actionmailer/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)\n\nUpdates `actionpack` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/actionpack/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)\n\nUpdates `actionview` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/actionview/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)\n\nUpdates `activemodel` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/activemodel/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)\n\nUpdates `activerecord` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/activerecord/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)\n\nUpdates `activesupport` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/activesupport/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)\n\nUpdates `railties` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/railties/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)\n\nUpdates `activejob` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/activejob/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)","html_url":"https://github.com/discourse/discourse/pull/38840","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/discourse%2Fdiscourse/issues/38840","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/38840/packages"},{"uuid":"4127037722","node_id":"PR_kwDOFfdp287M98NC","number":506,"state":"closed","title":"build(deps): bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-25T11:08:20.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-24T11:08:01.000Z","updated_at":"2026-03-25T11:08:21.000Z","time_to_close":86419,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/sap-contributions/cloud_controller_ng/pull/506","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sap-contributions%2Fcloud_controller_ng/issues/506","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/506/packages"},{"uuid":"4123957783","node_id":"PR_kwDOAb-yes7M0mk0","number":11,"state":"closed","title":"Bump the bundler group across 1 directory with 7 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-02T18:51:26.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T21:59:44.000Z","updated_at":"2026-04-02T18:51:27.000Z","time_to_close":852702,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":7,"packages":[{"name":"jquery-rails","old_version":"3.0.0","new_version":"4.6.1","repository_url":"https://github.com/rails/jquery-rails"},{"name":"actionmailer","old_version":"3.2.19","new_version":"8.1.2.1"},{"name":"actionpack","old_version":"3.2.19","new_version":"8.1.2.1"},{"name":"activerecord","old_version":"3.2.19","new_version":"8.1.2.1"},{"name":"activesupport","old_version":"3.2.19","new_version":"8.1.2.1"},{"name":"rack","old_version":"1.4.5","new_version":"3.2.5"},{"name":"rdoc","old_version":"3.12.2","new_version":"7.2.0"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 1 update in the /examples/rails3 directory: [jquery-rails](https://github.com/rails/jquery-rails).\n\nUpdates `jquery-rails` from 3.0.0 to 4.6.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md\"\u003ejquery-rails's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.7.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.7.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.6.1\u003c/li\u003e\n\u003cli\u003eupdate jquery-ujs to 1.2.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.6.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.5.1 (note: \u003ca href=\"https://github.com/advisories/GHSA-jpcq-cgw6-v4j6\"\u003e3.5.0 contains important security updates\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunescape dollar signs and backticks in \u003ccode\u003eassert_select_jquery\u003c/code\u003e to match\nRails updated behavior.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.4.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.3.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.3.0\u003c/li\u003e\n\u003cli\u003eAdd possibility to test HTML: all, attribute prefix, attribute contains,\nattribute ends with, child, and class selectors\u003c/li\u003e\n\u003cli\u003eFix matching multiple calls for the same selector/function exception\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.2.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.2.0\u003c/li\u003e\n\u003cli\u003eAdd possibility to test HTML attribute selectors\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/034296045427fa54ad095f392fccd9ff5708e110\"\u003e\u003ccode\u003e0342960\u003c/code\u003e\u003c/a\u003e Release v4.6.1 with jQuery v3.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/039b12e91c148d65789030308653545943db43a4\"\u003e\u003ccode\u003e039b12e\u003c/code\u003e\u003c/a\u003e Update jquery to v3.7.1 (\u003ca href=\"https://redirect.github.com/rails/jquery-rails/issues/305\"\u003e#305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/12869dac3fcee107a9dabfbbe4f5054298d8877b\"\u003e\u003ccode\u003e12869da\u003c/code\u003e\u003c/a\u003e Release v4.6.0 with jQuery v3.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/65a9c7320d8320a14c36fde2655a06a7d52a6989\"\u003e\u003ccode\u003e65a9c73\u003c/code\u003e\u003c/a\u003e Update jquery to 3.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/fb5a7a893f62b5d3563ea904ca638a89bc7cd7a0\"\u003e\u003ccode\u003efb5a7a8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jquery-rails/issues/293\"\u003e#293\u003c/a\u003e from MichaelHoste/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/d9dfbe1d8a0bfe941970205c31cf79500ed99ebc\"\u003e\u003ccode\u003ed9dfbe1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jquery-rails/issues/296\"\u003e#296\u003c/a\u003e from okuramasafumi/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/f34a439f8047ef1de48656bed3bb636707dd784c\"\u003e\u003ccode\u003ef34a439\u003c/code\u003e\u003c/a\u003e Update CHANGELOG.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/b9e5aa7472055d9c5fd8d6af0f4d2e22dfb08ddd\"\u003e\u003ccode\u003eb9e5aa7\u003c/code\u003e\u003c/a\u003e Fix typo in CHANGELOG.md (\u003ccode\u003eusj\u003c/code\u003e =\u0026gt; \u003ccode\u003eujs\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/de8792d63210003c2bdbd973ee0b3a1d977b4a67\"\u003e\u003ccode\u003ede8792d\u003c/code\u003e\u003c/a\u003e Release v4.5.1 with jquery 3.6.1 and jquery-ujs 1.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/7e6f508b36b4ba7341a9f742d864c84a5b6bb626\"\u003e\u003ccode\u003e7e6f508\u003c/code\u003e\u003c/a\u003e Update jquery-ujs to latest v1.2.3\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/jquery-rails/compare/v3.0.0...v4.6.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionmailer` from 3.2.19 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionmailer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionmailer/CHANGELOG.md\"\u003eactionmailer's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.2 (January 08, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.1 (October 28, 2025)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.0 (October 22, 2025)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd structured events for Action Mailer:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eaction_mailer.delivered\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eaction_mailer.processed\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cem\u003eGannon McGibbon\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdd \u003ccode\u003edeliver_all_later\u003c/code\u003e to enqueue multiple emails at once.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003euser_emails = User.all.map { |user| Notifier.welcome(user) }\nActionMailer.deliver_all_later(user_emails)\n\u003ch1\u003euse a custom queue\u003c/h1\u003e\n\u003cp\u003eActionMailer.deliver_all_later(user_emails, queue: :my_queue)\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003eThis can greatly reduce the number of round-trips to the queue datastore.\nFor queue adapters that do not implement the \u003ccode\u003eenqueue_all\u003c/code\u003e method, we\nfall back to enqueuing email jobs indvidually.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003efatkodima\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease check \u003ca href=\"https://github.com/rails/rails/blob/8-0-stable/actionmailer/CHANGELOG.md\"\u003e8-0-stable\u003c/a\u003e for previous changes.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/d7c8ae65b7045490965218a994c300aea8dbb079\"\u003e\u003ccode\u003ed7c8ae6\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/dc94813e8151d0b56ec6c48b4db861cc7a666a8e\"\u003e\u003ccode\u003edc94813\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56050\"\u003e#56050\u003c/a\u003e from jclusso/fix-stylesheet-tag-nonce-mailer\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/90a1eaa1b30ba1f2d524e197460e549c03cf5698\"\u003e\u003ccode\u003e90a1eaa\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/df9f43214c637c54773581c85c910b356b16fa44\"\u003e\u003ccode\u003edf9f432\u003c/code\u003e\u003c/a\u003e Allow methods starting with underscore to be action methods.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/53c4ed887450cc2dee4b373148162c485999a400\"\u003e\u003ccode\u003e53c4ed8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/55973\"\u003e#55973\u003c/a\u003e from rails/fix-ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/f77a1c3654afdf599fa927e7910d6e9c5e9df7cf\"\u003e\u003ccode\u003ef77a1c3\u003c/code\u003e\u003c/a\u003e Require 'rails' at the top of railltie files to ensure Rails is loaded first\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1cdd190a25e483b65f1f25bbd0f13a25d696b461\"\u003e\u003ccode\u003e1cdd190\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.0 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1ace68361ed9e87fecbf32604c087d096f7b7f8a\"\u003e\u003ccode\u003e1ace683\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.0.rc1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/d6f9f62d49750fee6a45f3672e2227d5c4198a62\"\u003e\u003ccode\u003ed6f9f62\u003c/code\u003e\u003c/a\u003e Make the Structured Event Subscriber emit events in format that are useful fo...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v3.2.19...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionpack` from 3.2.19 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.2 (January 08, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd \u003ccode\u003econfig.action_controller.live_streaming_excluded_keys\u003c/code\u003e to control execution state sharing in ActionController::Live.\u003c/p\u003e\n\u003cp\u003eWhen using ActionController::Live, actions are executed in a separate thread that shares\nstate from the parent thread. This new configuration allows applications to opt-out specific\nstate keys that should not be shared.\u003c/p\u003e\n\u003cp\u003eThis is useful when streaming inside a \u003ccode\u003econnected_to\u003c/code\u003e block, where you may want\nthe streaming thread to use its own database connection context.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003e# config/application.rb\nconfig.action_controller.live_streaming_excluded_keys = [:active_record_connected_to_stack]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eBy default, all keys are shared.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eEileen M. Uchitelle\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eIpSpoofAttackError\u003c/code\u003e message to include \u003ccode\u003eForwarded\u003c/code\u003e header content.\u003c/p\u003e\n\u003cp\u003eWithout it, the error message may be misleading.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.1 (October 28, 2025)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAllow methods starting with underscore to be action methods.\u003c/p\u003e\n\u003cp\u003eDisallowing methods starting with an underscore from being action methods\nwas an unintended side effect of the performance optimization in\n207a254.\u003c/p\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/rails/rails/issues/55985\"\u003e#55985\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eRafael Mendonça França\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.0 (October 22, 2025)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSubmit test requests using \u003ccode\u003eas: :html\u003c/code\u003e with \u003ccode\u003eContent-Type: x-www-form-urlencoded\u003c/code\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSean Doyle\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/d7c8ae65b7045490965218a994c300aea8dbb079\"\u003e\u003ccode\u003ed7c8ae6\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/df98a0d4b820d9c85a466976860c8295d7304acc\"\u003e\u003ccode\u003edf98a0d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56440\"\u003e#56440\u003c/a\u003e from zzak/ac-live-streaming-keys-typo\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/0f8014a0ff97888c747a481ea8ef61015c160fd4\"\u003e\u003ccode\u003e0f8014a\u003c/code\u003e\u003c/a\u003e [8-1-stable] Minitest 6 support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/991ccf35933f5df1dcf1283a1ad2f9667c864fa6\"\u003e\u003ccode\u003e991ccf3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56393\"\u003e#56393\u003c/a\u003e from rails/add-exclude-keys-to-live-controller\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/662609d35301c42973e0b183d1294c61bb060390\"\u003e\u003ccode\u003e662609d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56252\"\u003e#56252\u003c/a\u003e from callmesangio/fix-testing-docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/81dca9cc388b7426cfcd39e34e3bc57fd287b74b\"\u003e\u003ccode\u003e81dca9c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56285\"\u003e#56285\u003c/a\u003e from markokajzer/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/c98c994f5994a0aae2b258c41732d9e0e4339f5b\"\u003e\u003ccode\u003ec98c994\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56256\"\u003e#56256\u003c/a\u003e from zzak/re-56186\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/4388688077b6406e9d71fd622f98677a83a2c2d0\"\u003e\u003ccode\u003e4388688\u003c/code\u003e\u003c/a\u003e Fix redirect_test leaking subscription state\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v3.2.19...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `activerecord` from 3.2.19 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactiverecord's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/activerecord/CHANGELOG.md\"\u003eactiverecord's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.2 (January 08, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix counting cached queries in \u003ccode\u003eActiveRecord::RuntimeRegistry\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003efatkodima\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix merging relations with arel equality predicates with null relations.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003efatkodima\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix SQLite3 schema dump for non-autoincrement integer primary keys.\u003c/p\u003e\n\u003cp\u003ePreviously, \u003ccode\u003eschema.rb\u003c/code\u003e should incorrectly restore that table with an auto incrementing\nprimary key.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eChris Hasiński\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix PostgreSQL \u003ccode\u003eschema_search_path\u003c/code\u003e not being reapplied after \u003ccode\u003ereset!\u003c/code\u003e or \u003ccode\u003ereconnect!\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThe \u003ccode\u003eschema_search_path\u003c/code\u003e configured in \u003ccode\u003edatabase.yml\u003c/code\u003e is now correctly\nreapplied instead of falling back to PostgreSQL defaults.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eTobias Egli\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRestore the ability of enum to be foats.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eenum :rating, { low: 0.0, medium: 0.5, high: 1.0 },\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eIn Rails 8.1.0, enum values are eagerly validated, and floats weren't expected.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsure batched preloaded associations accounts for klass when grouping to avoid issues with STI.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e, \u003cem\u003eStjepan Hadjic\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eActiveRecord::SoleRecordExceeded#record\u003c/code\u003e to return the relation.\u003c/p\u003e\n\u003cp\u003eThis was the case until Rails 7.2, but starting from 8.0 it\nstarted mistakenly returning the model class.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/d7c8ae65b7045490965218a994c300aea8dbb079\"\u003e\u003ccode\u003ed7c8ae6\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/3ea2701a15ac253fc6b87b0034a87e3abcb3d3e5\"\u003e\u003ccode\u003e3ea2701\u003c/code\u003e\u003c/a\u003e CHANGELOG sync\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/53e82ef8a931d4b6d01b9240ea6e486b31e14d61\"\u003e\u003ccode\u003e53e82ef\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56534\"\u003e#56534\u003c/a\u003e from khasinski/fix-sqlite3-schema-dump-default-nil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/adcface26aae1018cdfe87610f85c87508b52865\"\u003e\u003ccode\u003eadcface\u003c/code\u003e\u003c/a\u003e Fix PostgreSQL schema_search_path after reconnect and reset\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/13952d56e90bcba5cfa1076a7a0b806ae9564324\"\u003e\u003ccode\u003e13952d5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56447\"\u003e#56447\u003c/a\u003e from Saidbek/fix-enum-float-values-support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/642baed88cfdd761f8adf68452defb5573e90dd7\"\u003e\u003ccode\u003e642baed\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56482\"\u003e#56482\u003c/a\u003e from fatkodima/fix-merge-arel-equality-and-null\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/49a1f7253d910638a2885629cc049d38db878491\"\u003e\u003ccode\u003e49a1f72\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56415\"\u003e#56415\u003c/a\u003e from zzak/re-56047\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1b2a755fdcd13e0cdf12f06822b124209c700d35\"\u003e\u003ccode\u003e1b2a755\u003c/code\u003e\u003c/a\u003e Fix CI rerun command for active record tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/186d51ed7a78e8fb0f0069d5b3af77b507867ce2\"\u003e\u003ccode\u003e186d51e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56304\"\u003e#56304\u003c/a\u003e from fatkodima/fix-dumping-views-indexes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v3.2.19...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `activesupport` from 3.2.19 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactivesupport's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/activesupport/CHANGELOG.md\"\u003eactivesupport's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.2 (January 08, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eMake \u003ccode\u003edelegate\u003c/code\u003e and \u003ccode\u003edelegate_missing_to\u003c/code\u003e work in BasicObject subclasses.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eRafael Mendonça França\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix Inflectors when using a locale that fallbacks to \u003ccode\u003e:en\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eActiveSupport::TimeWithZone#as_json\u003c/code\u003e to consistently return UTF-8 strings.\u003c/p\u003e\n\u003cp\u003ePreviously the returned string would sometime be encoded in US-ASCII, which in\nsome cases may be problematic.\u003c/p\u003e\n\u003cp\u003eNow the method consistently always return UTF-8 strings.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eTimeWithZone#xmlschema\u003c/code\u003e when wrapping a \u003ccode\u003eDateTime\u003c/code\u003e instance in local time.\u003c/p\u003e\n\u003cp\u003ePreviously it would return an invalid time.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDmytro Rymar\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImplement LocalCache strategy on \u003ccode\u003eActiveSupport::Cache::MemoryStore\u003c/code\u003e. The memory store\nneeds to respond to the same interface as other cache stores (e.g. \u003ccode\u003eActiveSupport::NullStore\u003c/code\u003e).\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMikey Gough\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ec1a0e215efd27a3b3911aae6df978a80f456a49\"\u003e\u003ccode\u003eec1a0e2\u003c/code\u003e\u003c/a\u003e Improve performance of NumberToDelimitedConverter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/50d732af3b7c8aaf63cbcca0becbc00279b215b7\"\u003e\u003ccode\u003e50d732a\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/19dbab51ca086a657bb86458042bc44314916bcb\"\u003e\u003ccode\u003e19dbab5\u003c/code\u003e\u003c/a\u003e NumberConverter: reject scientific notation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/d7c8ae65b7045490965218a994c300aea8dbb079\"\u003e\u003ccode\u003ed7c8ae6\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/3ea2701a15ac253fc6b87b0034a87e3abcb3d3e5\"\u003e\u003ccode\u003e3ea2701\u003c/code\u003e\u003c/a\u003e CHANGELOG sync\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/0f8014a0ff97888c747a481ea8ef61015c160fd4\"\u003e\u003ccode\u003e0f8014a\u003c/code\u003e\u003c/a\u003e [8-1-stable] Minitest 6 support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/991ccf35933f5df1dcf1283a1ad2f9667c864fa6\"\u003e\u003ccode\u003e991ccf3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56393\"\u003e#56393\u003c/a\u003e from rails/add-exclude-keys-to-live-controller\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/c86465f65278d2a6200424d2853fc848a0e01356\"\u003e\u003ccode\u003ec86465f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56353\"\u003e#56353\u003c/a\u003e from rails/rmf-delegation-basic-object\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v3.2.19...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rack` from 1.4.5 to 3.2.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/releases\"\u003erack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.2.4\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev3.0.9.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed ReDoS in Accept header parsing [CVE-2024-26146]\u003c/li\u003e\n\u003cli\u003eFixed ReDoS in Content Type header parsing [CVE-2024-25126]\u003c/li\u003e\n\u003cli\u003eReject Range headers which are too large [CVE-2024-26141]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.9...v3.0.9.1\"\u003ehttps://github.com/rack/rack/compare/v3.0.9...v3.0.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix content-length calcuation in Rack:Response#write \u003ca href=\"https://redirect.github.com/rack/rack/issues/2150\"\u003e#2150\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.8...v3.0.9\"\u003ehttps://github.com/rack/rack/compare/v3.0.8...v3.0.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u0026quot;Fix some unused variable verbose warnings\u0026quot; by \u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2084\"\u003erack/rack#2084\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2084\"\u003erack/rack#2084\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.7...v3.0.8\"\u003ehttps://github.com/rack/rack/compare/v3.0.7...v3.0.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u0026quot;Make query parameters without = have nil values\u0026quot;. by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2060\"\u003erack/rack#2060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.6.1...v3.0.7\"\u003ehttps://github.com/rack/rack/compare/v3.0.6.1...v3.0.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.6.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev3.0.4.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.4...v3.0.4.1\"\u003ehttps://github.com/rack/rack/compare/v3.0.4...v3.0.4.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.4\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.3...v3.0.4\"\u003ehttps://github.com/rack/rack/compare/v3.0.3...v3.0.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRelease v3.0.3 by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2000\"\u003erack/rack#2000\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.2...v3.0.3\"\u003ehttps://github.com/rack/rack/compare/v3.0.2...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003cp\u003eAll notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference \u003ca href=\"https://keepachangelog.com/en/1.0.0/\"\u003eKeep A Changelog\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003eUnreleased\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-whrj-4476-wvmp\"\u003eCVE-2026-25500\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-mxw3-3hh2-x2mh\"\u003eCVE-2026-22860\u003c/a\u003e Directory traversal via root prefix bypass in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSPEC Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDefine \u003ccode\u003erack.response_finished\u003c/code\u003e callback arguments more strictly. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2365\"\u003e#2365\u003c/a\u003e, \u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eRack::Files#assign_headers\u003c/code\u003e to allow overriding how the configured file headers are set. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2377\"\u003e#2377\u003c/a\u003e, \u003ca href=\"https://github.com/codergeek121\"\u003e\u003ccode\u003e@​codergeek121\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003erack.response_finished\u003c/code\u003e to \u003ccode\u003eRack::TempfileReaper\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2363\"\u003e#2363\u003c/a\u003e, \u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for streaming bodies when using \u003ccode\u003eRack::Events\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/rack/rack/blob/main/redirect.github.com/rack/rack/pull/2375\"\u003e#2375\u003c/a\u003e, \u003ca href=\"https://github.com/unflxw\"\u003e\u003ccode\u003e@​unflxw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003edeflaters\u003c/code\u003e option to \u003ccode\u003eRack::Deflater\u003c/code\u003e to enable custom compression algorithms like zstd. (\u003ca href=\"https://redirect.github.com/rack/rack/issues/2168\"\u003e#2168\u003c/a\u003e, \u003ca href=\"https://github.com/alexanderadam\"\u003e\u003ccode\u003e@​alexanderadam\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eRack::Request#prefetch?\u003c/code\u003e for identifying requests with \u003ccode\u003eSec-Purpose: prefetch\u003c/code\u003e header set. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2405\"\u003e#2405\u003c/a\u003e, \u003ca href=\"https://github.com/glaszig\"\u003e\u003ccode\u003e@​glaszig\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003erack.request.trusted_proxy\u003c/code\u003e environment key to indicate whether the request is coming from a trusted proxy.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRaise before exceeding a part limit, not after. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2362\"\u003e#2362\u003c/a\u003e, \u003ca href=\"https://github.com/matthew-puku\"\u003e\u003ccode\u003e@​matthew-puku\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRack::Deflater now uses a fixed GZip mtime value. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2372\"\u003e#2372\u003c/a\u003e, \u003ca href=\"https://github.com/bensheldon\"\u003e\u003ccode\u003e@​bensheldon\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMultipart parser drops support for RFC 2231 \u003ccode\u003efilename*\u003c/code\u003e parameter (prohibited by RFC 7578) and now properly handles UTF-8 encoded filenames via percent-encoding and direct UTF-8 bytes. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2398\"\u003e#2398\u003c/a\u003e, \u003ca href=\"https://github.com/wtn\"\u003e\u003ccode\u003e@​wtn\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe query parser now raises \u003ccode\u003eRack::QueryParser::IncompatibleEncodingError\u003c/code\u003e if we try to parse params that are not ASCII compatible. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2416\"\u003e#2416\u003c/a\u003e, \u003ca href=\"https://github.com/bquorning\"\u003e\u003ccode\u003e@​bquorning\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eRack::MockResponse#body\u003c/code\u003e when the body is a Proc. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2420\"\u003e#2420\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rack/rack/pull/2423\"\u003e#2423\u003c/a\u003e, \u003ca href=\"https://github.com/tavianator\"\u003e\u003ccode\u003e@​tavianator\u003c/code\u003e\u003c/a\u003e, [\u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.4] - 2025-11-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3] - 2025-10-10\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/bb5f3555bd12b9065112353e829298b3b5623ceb\"\u003e\u003ccode\u003ebb5f355\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/f9bde3bc2dde2771185ac1a7b7602a4d9fa0a0d8\"\u003e\u003ccode\u003ef9bde3b\u003c/code\u003e\u003c/a\u003e Prevent directory traversal via root prefix bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/93a68f58aa82aa48f09b751501f19f5e760dd406\"\u003e\u003ccode\u003e93a68f5\u003c/code\u003e\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/3b8b0d22d68a7fb30fdea40f838d0f95a05c134d\"\u003e\u003ccode\u003e3b8b0d2\u003c/code\u003e\u003c/a\u003e Fix MockResponse#body when the body is a Proc (\u003ca href=\"https://redirect.github.com/rack/rack/issues/2420\"\u003e#2420\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/4c24539777db8833d78f881680cd245878cfba31\"\u003e\u003ccode\u003e4c24539\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/3ba5e4f22f55abac21037bb137e56e5c8e36b673\"\u003e\u003ccode\u003e3ba5e4f\u003c/code\u003e\u003c/a\u003e Allow Multipart head to span read boundary. (\u003ca href=\"https://redirect.github.com/rack/rack/issues/2392\"\u003e#2392\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/32bf8887d00bd86494f0ce08c46cda59a65d332f\"\u003e\u003ccode\u003e32bf888\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/e179614c4a653283286f5f046428cbb85f21146f\"\u003e\u003ccode\u003ee179614\u003c/code\u003e\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/57277b7741581fa827472c5c666f6e6a33abd784\"\u003e\u003ccode\u003e57277b7\u003c/code\u003e\u003c/a\u003e Improper handling of proxy headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/403b74b2441d666845177ce769036e294f663712\"\u003e\u003ccode\u003e403b74b\u003c/code\u003e\u003c/a\u003e Normalize adivsories links.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/1.4.5...v3.2.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rdoc` from 3.12.2 to 7.2.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rdoc/releases\"\u003erdoc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.2.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003e✨ Enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eExpand GitHub style references in ChangeLog to URL by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1547\"\u003eruby/rdoc#1547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHighlight bash commands by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1544\"\u003eruby/rdoc#1544\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplace attribute_manager with a new rdoc-inline-format parser by \u003ca href=\"https://github.com/tompng\"\u003e\u003ccode\u003e@​tompng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1559\"\u003eruby/rdoc#1559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix not scrolling in search results when \u003ccode\u003eArrowUp\u003c/code\u003e or \u003ccode\u003eArrowDown\u003c/code\u003e for \u003ccode\u003eAliki\u003c/code\u003e by \u003ca href=\"https://github.com/ccmywish\"\u003e\u003ccode\u003e@​ccmywish\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1587\"\u003eruby/rdoc#1587\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImplement escapes in Markdown to RDoc conversion by \u003ca href=\"https://github.com/tompng\"\u003e\u003ccode\u003e@​tompng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1575\"\u003eruby/rdoc#1575\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eChange PrismRuby not to depend on hack that stores module nesting information to context.parent by \u003ca href=\"https://github.com/tompng\"\u003e\u003ccode\u003e@​tompng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1580\"\u003eruby/rdoc#1580\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHide search results on Escape key on desktop too for \u003ccode\u003eAliki\u003c/code\u003e by \u003ca href=\"https://github.com/ccmywish\"\u003e\u003ccode\u003e@​ccmywish\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1593\"\u003eruby/rdoc#1593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix visit_call_node visit arguments twice by \u003ca href=\"https://github.com/tompng\"\u003e\u003ccode\u003e@​tompng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1596\"\u003eruby/rdoc#1596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix accept_table with incomplete rows by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1599\"\u003eruby/rdoc#1599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix sections not displaying their text by \u003ca href=\"https://github.com/Earlopain\"\u003e\u003ccode\u003e@​Earlopain\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1600\"\u003eruby/rdoc#1600\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIgnore visibility method, attr definition, module_function within block by \u003ca href=\"https://github.com/tompng\"\u003e\u003ccode\u003e@​tompng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1595\"\u003eruby/rdoc#1595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix broken legacy rdoc-ref labels and duplicate heading IDs by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1602\"\u003eruby/rdoc#1602\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd unique IDs to section headings in Aliki template by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1603\"\u003eruby/rdoc#1603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix RDoc::Attr#add_alias handling of aliased attribute accessor by \u003ca href=\"https://github.com/extern-c\"\u003e\u003ccode\u003e@​extern-c\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1605\"\u003eruby/rdoc#1605\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e📚 Documentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix broken RDoc Markup Reference link in RDoc::Comment by \u003ca href=\"https://github.com/extern-c\"\u003e\u003ccode\u003e@​extern-c\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1566\"\u003eruby/rdoc#1566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd missing quote for 'unknown' by \u003ca href=\"https://github.com/p8\"\u003e\u003ccode\u003e@​p8\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1589\"\u003eruby/rdoc#1589\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🛠 Other Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump ruby/setup-ruby from 1.281.0 to 1.284.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1569\"\u003eruby/rdoc#1569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix a test that uses invalid syntax by \u003ca href=\"https://github.com/Earlopain\"\u003e\u003ccode\u003e@​Earlopain\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1577\"\u003eruby/rdoc#1577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved truffleruby from CI by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1586\"\u003eruby/rdoc#1586\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump ruby/setup-ruby from 1.284.0 to 1.286.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1582\"\u003eruby/rdoc#1582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump step-security/harden-runner from 2.14.0 to 2.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1583\"\u003eruby/rdoc#1583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 6.0.1 to 6.0.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1584\"\u003eruby/rdoc#1584\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump ruby/setup-ruby from 1.286.0 to 1.287.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1594\"\u003eruby/rdoc#1594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e/release-check\u003c/code\u003e Claude Code skill by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1604\"\u003eruby/rdoc#1604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump ruby/setup-ruby from 1.287.0 to 1.288.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1606\"\u003eruby/rdoc#1606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump step-security/harden-runner from 2.14.1 to 2.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1607\"\u003eruby/rdoc#1607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump version to 7.2.0 by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1608\"\u003eruby/rdoc#1608\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ccmywish\"\u003e\u003ccode\u003e@​ccmywish\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1587\"\u003eruby/rdoc#1587\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/rdoc/compare/v7.1.0...v7.2.0\"\u003ehttps://github.com/ruby/rdoc/compare/v7.1.0...v7.2.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.1.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003e✨ Enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport GitHub style markdown heading anchor and link reference by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1540\"\u003eruby/rdoc#1540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow using backticks to quote text in RDoc markup too by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1551\"\u003eruby/rdoc#1551\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix comment_location for merged ClassModule by \u003ca href=\"https://github.com/tompng\"\u003e\u003ccode\u003e@​tompng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1531\"\u003eruby/rdoc#1531\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rdoc/blob/master/History.rdoc\"\u003erdoc's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e= History\u003c/p\u003e\n\u003cp\u003e== 5.1.0 / 2017-02-24\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eBug fixes\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix an issue that rdoc fails when running on Windows with RUBYOPT=-U.\nPR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/430\"\u003e#430\u003c/a\u003e by Toshihiko Ichida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eMinor enhancements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eParse ruby 2.1 \u003c!-- raw HTML omitted --\u003e def. PR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/436\"\u003e#436\u003c/a\u003e by Akira Matsuda.\u003c/li\u003e\n\u003cli\u003eSuppress warnings in eval. PR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/440\"\u003e#440\u003c/a\u003e by Nobuyoshi Nakada.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e== 5.0.0 / 2016-11-05\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eMajor enhancements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCleanup deprecated code targeted Ruby 1.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eBug fixes\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure badge data is included in result of JsonIndex template.\u003c/li\u003e\n\u003cli\u003eEnsure items in the nil section are displayed in HTML output.  Issue \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/399\"\u003e#399\u003c/a\u003e\nby Daniel Svensson.\u003c/li\u003e\n\u003cli\u003eParse rb_intern_const correctly in C.  PR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/381\"\u003e#381\u003c/a\u003e by Sho Hashimoto.\u003c/li\u003e\n\u003cli\u003eFix broken assets caused by \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/335\"\u003e#335\u003c/a\u003e when serving ri.  PR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/360\"\u003e#360\u003c/a\u003e by Alex Wood.\u003c/li\u003e\n\u003cli\u003eDon't try to parse svg files.  Issue \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/350\"\u003e#350\u003c/a\u003e by Sigurd Svela.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eMinor enhancements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eImprove class name expansion/resolution in ri.  PR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/400\"\u003e#400\u003c/a\u003e by NARUSE, Yui\u003c/li\u003e\n\u003cli\u003eImprove performance of document generation. PR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/397\"\u003e#397\u003c/a\u003e by Yusuke Endoh.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e== 4.3.0 / 2016-11-04\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eMinor enhancements\n\u003cul\u003e\n\u003cli\u003eRemoved json dependency for Ruby 2.4.0\u003c/li\u003e\n\u003cli\u003eEnd to support Ruby 1.8.x\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e== 4.2.2 / 2016-02-09\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBug fixes\n\u003cul\u003e\n\u003cli\u003eInclude lib/rdoc/generator/pot/* in built gem\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e== 4.2.1 / 2015-12-22\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBug fixes\n\u003cul\u003e\n\u003cli\u003eFixed infinite loop with CR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/339\"\u003e#339\u003c/a\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow rdoc run with --disable-gems \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/340\"\u003e#340\u003c/a\u003e  by \u003ca href=\"https://github.com/luizluca\"\u003e\u003ccode\u003e@​luizluca\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDon't store full path in GZipped js files \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/341\"\u003e#341\u003c/a\u003e by \u003ca href=\"https://github.com/voxik\"\u003e\u003ccode\u003e@​voxik\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix relative path names for drive letters \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/367\"\u003e#367\u003c/a\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for valid syntax \u003ccode\u003eclass C end\u003c/code\u003e parsing \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/368\"\u003e#368\u003c/a\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/d6422f499fb2961b91de400f48426fc6d3fa5b67\"\u003e\u003ccode\u003ed6422f4\u003c/code\u003e\u003c/a\u003e Bump version to 7.2.0 (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1608\"\u003e#1608\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/c6ecfe552f10f10cb910fc5a442e97793ca4105d\"\u003e\u003ccode\u003ec6ecfe5\u003c/code\u003e\u003c/a\u003e Fix RDoc::Attr#add_alias handling of aliased attribute accessor (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1605\"\u003e#1605\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/4889bfeae0b2bba9316e4a47f21b28309a074f1b\"\u003e\u003ccode\u003e4889bfe\u003c/code\u003e\u003c/a\u003e Add unique IDs to section headings in Aliki template (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1603\"\u003e#1603\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/26f0cc4c1dae1b520b5cf1a502ce1af9409acf23\"\u003e\u003ccode\u003e26f0cc4\u003c/code\u003e\u003c/a\u003e Add unique IDs to section headings in Aliki template (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1603\"\u003e#1603\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/0566dac111ee29c0763d150c621970429f00b59d\"\u003e\u003ccode\u003e0566dac\u003c/code\u003e\u003c/a\u003e Bump step-security/harden-runner from 2.14.1 to 2.14.2 (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1607\"\u003e#1607\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/cd586bff62c18aa0c7b6b1e6b7028f932fad56c7\"\u003e\u003ccode\u003ecd586bf\u003c/code\u003e\u003c/a\u003e Bump ruby/setup-ruby from 1.287.0 to 1.288.0 (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1606\"\u003e#1606\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/dbd747eda4f9359956dbc505f8b0c807ed78ff35\"\u003e\u003ccode\u003edbd747e\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003e/release-check\u003c/code\u003e Claude Code skill (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1604\"\u003e#1604\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/344cff27a8a373b44ee02b6149fd7c7994936fcc\"\u003e\u003ccode\u003e344cff2\u003c/code\u003e\u003c/a\u003e Fix broken legacy rdoc-ref labels and duplicate heading IDs (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1602\"\u003e#1602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/7e1157aebf10494d8052d1c5859e66840facd145\"\u003e\u003ccode\u003e7e1157a\u003c/code\u003e\u003c/a\u003e Ignore visibility method, attr definition, module_function within block (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1595\"\u003e#1595\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/ba218213d0674f411ee94025292ec63a5cb5ad16\"\u003e\u003ccode\u003eba21821\u003c/code\u003e\u003c/a\u003e Fix sections not displaying their text (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1600\"\u003e#1600\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rdoc/compare/v3.12.2...v7.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/pboling/rack-cors/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/pboling/rack-cors/pull/11","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pboling%2Frack-cors/issues/11","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/11/packages"},{"uuid":"4123706961","node_id":"PR_kwDOHbCwJc7MzzO_","number":10,"state":"closed","title":"Bump the bundler group across 1 directory with 7 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-25T21:27:25.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T21:00:18.000Z","updated_at":"2026-03-25T21:27:27.000Z","time_to_close":174427,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":7,"packages":[{"name":"action_text-trix","old_version":"2.1.16","new_version":"2.1.17","repository_url":"https://github.com/basecamp/trix"},{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"},{"name":"actionview","old_version":"8.1.2","new_version":"8.1.2.1"},{"name":"activestorage","old_version":"8.1.2","new_version":"8.1.2.1"},{"name":"activesupport","old_version":"8.1.2","new_version":"8.1.2.1"},{"name":"json","old_version":"2.18.0","new_version":"2.19.2"},{"name":"loofah","old_version":"2.25.0","new_version":"2.25.1"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 2 updates in the / directory: [action_text-trix](https://github.com/basecamp/trix) and [actionpack](https://github.com/rails/rails).\n\nUpdates `action_text-trix` from 2.1.16 to 2.1.17\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/basecamp/trix/releases\"\u003eaction_text-trix's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.17\u003c/h2\u003e\n\u003ch2\u003eSecurity\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress potential XSS vector via \u003ccode\u003edata-trix-serialized-attributes\u003c/code\u003e sanitizer bypass by \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1282\"\u003ebasecamp/trix#1282\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix bullets merging with prior elements on Firefox when the first node is removed by \u003ca href=\"https://github.com/monorkin\"\u003e\u003ccode\u003e@​monorkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1280\"\u003ebasecamp/trix#1280\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eInfrastructure/CI\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace Karma with \u003ccode\u003e@web/test-runner\u003c/code\u003e by \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1272\"\u003ebasecamp/trix#1272\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: get green (2026-01-09 edition) by \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1276\"\u003ebasecamp/trix#1276\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReport web-test-runner test failures by \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1275\"\u003ebasecamp/trix#1275\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/Cromian\"\u003e\u003ccode\u003e@​Cromian\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1239\"\u003ebasecamp/trix#1239\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/monorkin\"\u003e\u003ccode\u003e@​monorkin\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1280\"\u003ebasecamp/trix#1280\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Cromian\"\u003e\u003ccode\u003e@​Cromian\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1239\"\u003ebasecamp/trix#1239\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/basecamp/trix/compare/v2.1.16...v2.1.17\"\u003ehttps://github.com/basecamp/trix/compare/v2.1.16...v2.1.17\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/2e46d5128f3927cd93543b5fff8d81b31d35ce77\"\u003e\u003ccode\u003e2e46d51\u003c/code\u003e\u003c/a\u003e v2.1.17\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/53197ab5a142e6b0b76127cb790726b274eaf1bc\"\u003e\u003ccode\u003e53197ab\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/basecamp/trix/issues/1282\"\u003e#1282\u003c/a\u003e from basecamp/h1-3581911-serialized-attr\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/3229c29c771ded4d247ed79b2ccd2cd05c4e74b4\"\u003e\u003ccode\u003e3229c29\u003c/code\u003e\u003c/a\u003e Fix stored XSS via data-trix-serialized-attributes sanitizer bypass (H1 \u003ca href=\"https://redirect.github.com/basecamp/trix/issues/3581\"\u003e#3581\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/7069343612add268213edaf764eca2bdefa43857\"\u003e\u003ccode\u003e7069343\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/basecamp/trix/issues/1239\"\u003e#1239\u003c/a\u003e from Cromian/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/d9dbf0a27e6e25f787d8181e091c27bf47c4dbf4\"\u003e\u003ccode\u003ed9dbf0a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/basecamp/trix/issues/1280\"\u003e#1280\u003c/a\u003e from basecamp/fix-bullets-merging-with-prior-element\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/bef13e27872dddf08f803a9905a84c0a1110e322\"\u003e\u003ccode\u003ebef13e2\u003c/code\u003e\u003c/a\u003e Fix bullets merging with prior elements when the first node is removed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/194a36c5e8b07e596c35c3d2eb1c17d1e3f80155\"\u003e\u003ccode\u003e194a36c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/basecamp/trix/issues/1275\"\u003e#1275\u003c/a\u003e from basecamp/flavorjones/wtr-failure-messages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/c94abe6005136b12004734bafe757a7933ae3950\"\u003e\u003ccode\u003ec94abe6\u003c/code\u003e\u003c/a\u003e Use source-map to get better test failure messages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/6f6ab9ac8309a3c3ddd362cb1c4547e2a73cb9e9\"\u003e\u003ccode\u003e6f6ab9a\u003c/code\u003e\u003c/a\u003e Test runner reporter emits failure details\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/1d2d1a3b1a08c29a08529481298a7f0f539b8d5a\"\u003e\u003ccode\u003e1d2d1a3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/basecamp/trix/issues/1276\"\u003e#1276\u003c/a\u003e from basecamp/flavorjones/ci-green-20260109\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/basecamp/trix/compare/v2.1.16...v2.1.17\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionpack` from 8.1.2 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionview` from 8.1.2 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionview's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionview/CHANGELOG.md\"\u003eactionview's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/e91694b1f0e176eb01bfcc480a008bffc70f7602\"\u003e\u003ccode\u003ee91694b\u003c/code\u003e\u003c/a\u003e Update CHANGELOG (8.1 only)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63f5ad83edaa0b976f82d46988d745426aa4a42d\"\u003e\u003ccode\u003e63f5ad8\u003c/code\u003e\u003c/a\u003e Skip blank attribute names in Action View tag helpers\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `activestorage` from 8.1.2 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactivestorage's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/activestorage/CHANGELOG.md\"\u003eactivestorage's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFilter user supplied metadata in DirectUploadController\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33173]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eConfigurable maxmimum streaming chunk size\u003c/p\u003e\n\u003cp\u003eMakes sure that byte ranges for blobs don't exceed 100mb by default.\nContent ranges that are too big can result in denial of service.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33174]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGannon McGibbon\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eLimit range requests to a single range\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33658]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ePrevent path traversal in \u003ccode\u003eDiskService\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003ccode\u003eDiskService#path_for\u003c/code\u003e now raises an \u003ccode\u003eInvalidKeyError\u003c/code\u003e when passed keys with dot segments (\u0026quot;.\u0026quot;,\n\u0026quot;..\u0026quot;), or if the resolved path is outside the storage root directory.\u003c/p\u003e\n\u003cp\u003e\u003ccode\u003e#path_for\u003c/code\u003e also now consistently raises \u003ccode\u003eInvalidKeyError\u003c/code\u003e if the key is invalid in any way, for\nexample containing null bytes or having an incompatible encoding. Previously, the exception\nraised may have been \u003ccode\u003eArgumentError\u003c/code\u003e or \u003ccode\u003eEncoding::CompatibilityError\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003ccode\u003eDiskController\u003c/code\u003e now explicitly rescues \u003ccode\u003eInvalidKeyError\u003c/code\u003e with appropriate HTTP status codes.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33195]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ePrevent glob injection in \u003ccode\u003eDiskService#delete_prefixed\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eEscape glob metacharacters in the resolved path before passing to \u003ccode\u003eDir.glob\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eNote that this change breaks any existing code that is relying on \u003ccode\u003edelete_prefixed\u003c/code\u003e to expand\nglob metacharacters. This change presumes that is unintended behavior (as other storage services\ndo not respect these metacharacters).\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33202]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8c9676b803820110548cdb7523800db43bc6874c\"\u003e\u003ccode\u003e8c9676b\u003c/code\u003e\u003c/a\u003e Prevent glob injection in ActiveStorage DiskService#delete_prefixed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/9b06fbc0f504b8afe333f33d19548f3b85fbe655\"\u003e\u003ccode\u003e9b06fbc\u003c/code\u003e\u003c/a\u003e Prevent path traversal in ActiveStorage DiskService\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/d9502f5214e2198245a4c1defe9cd02a7c8057d0\"\u003e\u003ccode\u003ed9502f5\u003c/code\u003e\u003c/a\u003e Active Storage: Filter user supplied metadata in DirectUploadController\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/85ec5b1e00d3197d8c69a5e622e1b398a1b10b06\"\u003e\u003ccode\u003e85ec5b1\u003c/code\u003e\u003c/a\u003e ActiveStorage::Streaming limit range requests to a single range\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/42012eaaa88dfc7d0030161b2bc8074a7bbce92a\"\u003e\u003ccode\u003e42012ea\u003c/code\u003e\u003c/a\u003e Configurable maxmimum streaming chunk size\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `activesupport` from 8.1.2 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactivesupport's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/activesupport/CHANGELOG.md\"\u003eactivesupport's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ec1a0e215efd27a3b3911aae6df978a80f456a49\"\u003e\u003ccode\u003eec1a0e2\u003c/code\u003e\u003c/a\u003e Improve performance of NumberToDelimitedConverter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/50d732af3b7c8aaf63cbcca0becbc00279b215b7\"\u003e\u003ccode\u003e50d732a\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/19dbab51ca086a657bb86458042bc44314916bcb\"\u003e\u003ccode\u003e19dbab5\u003c/code\u003e\u003c/a\u003e NumberConverter: reject scientific notation\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `json` from 2.18.0 to 2.19.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/json/releases\"\u003ejson's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.19.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix a format string injection vulnerability in \u003ccode\u003eJSON.parse(doc, allow_duplicate_key: false)\u003c/code\u003e. \u003ccode\u003eCVE-2026-33210\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/json/compare/v2.19.1...v2.19.2\"\u003ehttps://github.com/ruby/json/compare/v2.19.1...v2.19.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.19.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix a compiler dependent GC bug introduced in \u003ccode\u003e2.18.0\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/json/compare/v2.19.0...v2.19.1\"\u003ehttps://github.com/ruby/json/compare/v2.19.0...v2.19.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eallow_blank\u003c/code\u003e parsing option to no longer allow invalid types (e.g. \u003ccode\u003eload([], allow_blank: true)\u003c/code\u003e now raise a type error).\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eallow_invalid_escape\u003c/code\u003e parsing option to ignore backslashes that aren't followed by one of the valid escape characters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/json/compare/v2.18.1...v2.19.0\"\u003ehttps://github.com/ruby/json/compare/v2.18.1...v2.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.18.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix a potential crash in very specific circumstance if GC triggers during a call to \u003ccode\u003eto_json\u003c/code\u003e\nwithout first invoking a user defined \u003ccode\u003e#to_json\u003c/code\u003e method.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/json/compare/v2.18.0...v2.18.1\"\u003ehttps://github.com/ruby/json/compare/v2.18.0...v2.18.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/json/blob/master/CHANGES.md\"\u003ejson's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e2026-03-18 (2.19.2)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix a format string injection vulnerability in \u003ccode\u003eJSON.parse(doc, allow_duplicate_key: false)\u003c/code\u003e. \u003ccode\u003eCVE-2026-33210\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e2026-03-08 (2.19.1)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix a compiler dependent GC bug introduced in \u003ccode\u003e2.18.0\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e2026-03-06 (2.19.0)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eallow_blank\u003c/code\u003e parsing option to no longer allow invalid types (e.g. \u003ccode\u003eload([], allow_blank: true)\u003c/code\u003e now raise a type error).\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eallow_invalid_escape\u003c/code\u003e parsing option to ignore backslashes that aren't followed by one of the valid escape characters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e2026-02-03 (2.18.1)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix a potential crash in very specific circumstance if GC triggers during a call to \u003ccode\u003eto_json\u003c/code\u003e\nwithout first invoking a user defined \u003ccode\u003e#to_json\u003c/code\u003e method.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/54f8a878aebee090476a53c851c943128894be62\"\u003e\u003ccode\u003e54f8a87\u003c/code\u003e\u003c/a\u003e Release 2.19.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/393b41c3e5f87491e1e34fa59fa78ff6fa179a74\"\u003e\u003ccode\u003e393b41c\u003c/code\u003e\u003c/a\u003e Fix a format string injection vulnerability\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/dbf6bb12aac85db939df1180028aea06c8d3b762\"\u003e\u003ccode\u003edbf6bb1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/json/issues/953\"\u003e#953\u003c/a\u003e from ruby/dependabot/github_actions/actions/create-gi...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/7187315b4571ade59d68a1fad84be2794cda744d\"\u003e\u003ccode\u003e7187315\u003c/code\u003e\u003c/a\u003e Bump actions/create-github-app-token from 2 to 3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/4a42a04280d96d8dd94558078c16f1c078c38e1b\"\u003e\u003ccode\u003e4a42a04\u003c/code\u003e\u003c/a\u003e Release 2.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/13689c269970f18316952541f8544830ec2dc5c4\"\u003e\u003ccode\u003e13689c2\u003c/code\u003e\u003c/a\u003e Add missing GC_GUARD in \u003ccode\u003efbuffer_append_str\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/a11acc1ff496627e5d72c71d6d1229e8c8ffeaa1\"\u003e\u003ccode\u003ea11acc1\u003c/code\u003e\u003c/a\u003e Release 2.19.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/0a4fb79cd97f535701cc2240ac736d76b9af5025\"\u003e\u003ccode\u003e0a4fb79\u003c/code\u003e\u003c/a\u003e fbuffer.h: Use size_t over unsigned long\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/a29fcdcb4a78164daa14f6af05812690dd3ac939\"\u003e\u003ccode\u003ea29fcdc\u003c/code\u003e\u003c/a\u003e Add depth validation to Jruby and TruffleRuby implementations\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/de993aa76639078da891f46351a36f77d51ad3d3\"\u003e\u003ccode\u003ede993aa\u003c/code\u003e\u003c/a\u003e Reject negative depth; add overflow guards to prevent hang/crash\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/json/compare/v2.18.0...v2.19.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `loofah` from 2.25.0 to 2.25.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/flavorjones/loofah/releases\"\u003eloofah's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.25.1 / 2026-03-17\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure \u003ccode\u003eLoofah::HTML5::Scrub.allowed_uri?\u003c/code\u003e recognizes unescaped whitespace entities and rejects schemas containing them. See \u003ca href=\"https://github.com/flavorjones/loofah/security/advisories/GHSA-46fp-8f5p-pf2m\"\u003eGHSA-46fp-8f5p-pf2m\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/flavorjones/loofah/issues/302\"\u003e#302\u003c/a\u003e \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/flavorjones/loofah/blob/main/CHANGELOG.md\"\u003eloofah's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.25.1 / 2026-03-17\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure \u003ccode\u003eLoofah::HTML5::Scrub.allowed_uri?\u003c/code\u003e recognizes unescaped whitespace entities and rejects schemas containing them. See \u003ca href=\"https://github.com/flavorjones/loofah/security/advisories/GHSA-46fp-8f5p-pf2m\"\u003eGHSA-46fp-8f5p-pf2m\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/flavorjones/loofah/issues/302\"\u003e#302\u003c/a\u003e \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/flavorjones/loofah/commit/c895c8b2ac9c7255ca10c4e3083b8f0b019b7189\"\u003e\u003ccode\u003ec895c8b\u003c/code\u003e\u003c/a\u003e version bump to v2.25.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/flavorjones/loofah/commit/f4ebc9c5193dde759a57541062e490e86fc7c068\"\u003e\u003ccode\u003ef4ebc9c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/flavorjones/loofah/issues/302\"\u003e#302\u003c/a\u003e from flavorjones/flavorjones/better-allowed-uri\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/flavorjones/loofah/commit/9f4e5dbd79f63775b3ad6196fa391f8e807da156\"\u003e\u003ccode\u003e9f4e5db\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003eallowed_uri?\u003c/code\u003e to handle unescaped whitespace entities\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/flavorjones/loofah/commit/e6f47515f642b1868f9025e85429301fa6f8bb20\"\u003e\u003ccode\u003ee6f4751\u003c/code\u003e\u003c/a\u003e doc: Move security reporting to Github\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/flavorjones/loofah/compare/v2.25.0...v2.25.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/saturnflyer/ice_cube_select/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/saturnflyer/ice_cube_select/pull/10","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/saturnflyer%2Fice_cube_select/issues/10","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10/packages"},{"uuid":"4123647815","node_id":"PR_kwDORp4TWc7MznLJ","number":16,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":5,"pull_request":true,"closed_at":"2026-05-06T22:50:17.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:50:11.000Z","updated_at":"2026-05-06T22:50:18.000Z","time_to_close":3808806,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/hackclub/forge/network/alerts).\n\n\u003c/details\u003e\n\n\u003e **Note**\n\u003e Automatic rebases have been disabled on this pull request as it has been open for over 30 days.","html_url":"https://github.com/hackclub/forge/pull/16","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/hackclub%2Fforge/issues/16","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/16/packages"},{"uuid":"4123644745","node_id":"PR_kwDODKRrHs7MzmiF","number":28,"state":"closed","title":"Bump the bundler group across 3 directories with 1 update","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-28T14:47:57.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:49:42.000Z","updated_at":"2026-03-28T14:47:58.000Z","time_to_close":410295,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":1,"packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"},{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"},{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 1 update in the /examples/rails7_app directory: [actionpack](https://github.com/rails/rails).\nBumps the bundler group with 1 update in the /examples/rails8_0_app directory: [actionpack](https://github.com/rails/rails).\nBumps the bundler group with 1 update in the /examples/rails8_1_app directory: [actionpack](https://github.com/rails/rails).\n\nUpdates `actionpack` from 8.1.2 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionpack` from 8.1.2 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionpack` from 8.1.2 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/mgmodell/devise-multi_email/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/mgmodell/devise-multi_email/pull/28","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/mgmodell%2Fdevise-multi_email/issues/28","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/28/packages"},{"uuid":"4123643417","node_id":"PR_kwDOEAZMuc7MzmP3","number":171,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-04-07T04:29:43.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:49:33.000Z","updated_at":"2026-04-07T04:29:52.000Z","time_to_close":1237210,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/isprambiente/Partecipo/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/isprambiente/Partecipo/pull/171","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/isprambiente%2FPartecipo/issues/171","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/171/packages"},{"uuid":"4123643014","node_id":"PR_kwDORi1QsM7MzmKj","number":16,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-03T00:50:11.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:49:29.000Z","updated_at":"2026-04-03T00:50:12.000Z","time_to_close":878442,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/romkey/pdxhackerspace-gunky/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/romkey/pdxhackerspace-gunky/pull/16","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/romkey%2Fpdxhackerspace-gunky/issues/16","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/16/packages"},{"uuid":"4123641985","node_id":"PR_kwDOAGtp087Mzl87","number":2501,"state":"closed","title":"Build(deps): bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-04-10T13:00:59.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:49:20.000Z","updated_at":"2026-04-10T13:01:01.000Z","time_to_close":1527099,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Build(deps)","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e","html_url":"https://github.com/alphagov/travel-advice-publisher/pull/2501","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/alphagov%2Ftravel-advice-publisher/issues/2501","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2501/packages"},{"uuid":"4123641718","node_id":"PR_kwDOMVkEO87Mzl5h","number":23,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-24T02:44:43.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:49:17.000Z","updated_at":"2026-03-24T02:44:44.000Z","time_to_close":21326,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/merrelltd72/song-tracker/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/merrelltd72/song-tracker/pull/23","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/merrelltd72%2Fsong-tracker/issues/23","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/23/packages"},{"uuid":"4123640767","node_id":"PR_kwDOPodVpM7MzlsX","number":41,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-04T13:13:03.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:49:09.000Z","updated_at":"2026-04-04T13:13:04.000Z","time_to_close":1009434,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Grigore-George-Mihai/default_template_r8/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Grigore-George-Mihai/default_template_r8/pull/41","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Grigore-George-Mihai%2Fdefault_template_r8/issues/41","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/41/packages"},{"uuid":"4123639052","node_id":"PR_kwDOALLjUs7MzlVe","number":584,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-04-12T17:12:01.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:48:53.000Z","updated_at":"2026-04-12T17:12:10.000Z","time_to_close":1714988,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/bunnymatic/mau/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/bunnymatic/mau/pull/584","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/bunnymatic%2Fmau/issues/584","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/584/packages"},{"uuid":"4123638270","node_id":"PR_kwDOHS8Wr87MzlLI","number":172,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-25T00:21:23.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:48:46.000Z","updated_at":"2026-03-25T00:21:24.000Z","time_to_close":99157,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/unasuke/chachat/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/unasuke/chachat/pull/172","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/unasuke%2Fchachat/issues/172","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/172/packages"},{"uuid":"4123637187","node_id":"PR_kwDOAUkijM7Mzk8Q","number":219,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-25T23:15:10.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:48:36.000Z","updated_at":"2026-03-25T23:15:11.000Z","time_to_close":181594,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/heroku/ruby-getting-started/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/heroku/ruby-getting-started/pull/219","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/heroku%2Fruby-getting-started/issues/219","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/219/packages"},{"uuid":"4123635562","node_id":"PR_kwDOCDezGM7Mzklz","number":4180,"state":"closed","title":"chore(deps-dev): Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-03-23T22:24:09.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:48:21.000Z","updated_at":"2026-03-23T22:24:18.000Z","time_to_close":5748,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps-dev): Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/pooza/mulukhiya-toot-proxy/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/pooza/mulukhiya-toot-proxy/pull/4180","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pooza%2Fmulukhiya-toot-proxy/issues/4180","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4180/packages"},{"uuid":"4123634331","node_id":"PR_kwDOOzEKC87MzkUo","number":190,"state":"closed","title":"build(deps): bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-11T12:48:53.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:48:09.000Z","updated_at":"2026-04-11T12:48:55.000Z","time_to_close":1612844,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e","html_url":"https://github.com/ekaraage/or4cle2/pull/190","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ekaraage%2For4cle2/issues/190","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/190/packages"},{"uuid":"4123633911","node_id":"PR_kwDOENzk2M7MzkOu","number":2344,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-03-26T18:16:20.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:48:04.000Z","updated_at":"2026-03-26T18:16:22.000Z","time_to_close":250096,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Crown-Commercial-Service/crown-marketplace-legacy/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Crown-Commercial-Service/crown-marketplace-legacy/pull/2344","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Crown-Commercial-Service%2Fcrown-marketplace-legacy/issues/2344","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2344/packages"},{"uuid":"4123633412","node_id":"PR_kwDOQ6bEiM7MzkHk","number":5,"state":"closed","title":"chore(deps): bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-23T21:17:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:47:59.000Z","updated_at":"2026-03-23T21:17:58.000Z","time_to_close":1797,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/alec-c4/inertia_i18n/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/alec-c4/inertia_i18n/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/alec-c4%2Finertia_i18n/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"}],"issue_packages":[{"old_version":"8.1.2.1","new_version":"8.1.3","update_type":"patch","path":null,"pr_created_at":"2026-03-25T12:33:45.000Z","version_change":"8.1.2.1 → 8.1.3","issue":{"uuid":"4135090950","node_id":"PR_kwDOAeBT_c7NVYY2","number":178,"state":"open","title":"[bundler] Bump the rails group with 4 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-03-25T12:33:45.000Z","updated_at":"2026-03-25T12:34:04.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"[bundler] Bump","group_name":"rails","update_count":4,"packages":[{"name":"activemodel","old_version":"8.1.2.1","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"},{"name":"activesupport","old_version":"8.1.2.1","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"},{"name":"actionpack","old_version":"8.1.2.1","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"},{"name":"actionview","old_version":"8.1.2.1","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the rails group with 4 updates: [activemodel](https://github.com/rails/rails), [activesupport](https://github.com/rails/rails), [actionpack](https://github.com/rails/rails) and [actionview](https://github.com/rails/rails).\n\nUpdates `activemodel` from 8.1.2.1 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactivemodel's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/activemodel/CHANGELOG.md\"\u003eactivemodel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.3 (March 24, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eEdward Woodcock\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/5a3d7d903aba1219f394259c2d9c02949b1b5cd7\"\u003e\u003ccode\u003e5a3d7d9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56943\"\u003e#56943\u003c/a\u003e from yahonda/ruby-16321\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/034ca73253a001be8cce523812559012ac341fb8\"\u003e\u003ccode\u003e034ca73\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56867\"\u003e#56867\u003c/a\u003e from hammadxcm/fix-ruby4-delegator-inspect-warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6c23f3bd4e252619010bb13ab2570faa5000ed55\"\u003e\u003ccode\u003e6c23f3b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56768\"\u003e#56768\u003c/a\u003e from RemoteCTO/fix/integer-type-marshal-compat\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2.1...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `activesupport` from 8.1.2.1 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactivesupport's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/activesupport/CHANGELOG.md\"\u003eactivesupport's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.3 (March 24, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\n  inflect.acronym \u0026quot;USD\u0026quot;\n  inflect.acronym \u0026quot;USDC\u0026quot;\nend\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/c315744f2001bdd5cba32d43274adca50b71e289\"\u003e\u003ccode\u003ec315744\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56889\"\u003e#56889\u003c/a\u003e from alpaca-tc/support-spring-on-test-environment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/2ac86a8a9e32fff6bfaacd199957ba4ace0a2256\"\u003e\u003ccode\u003e2ac86a8\u003c/code\u003e\u003c/a\u003e Revert benchmark.rb to a silent shim (\u003ca href=\"https://redirect.github.com/rails/rails/issues/56832\"\u003e#56832\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8e8c95511610c6316084ccd9bc098acfd5e163b8\"\u003e\u003ccode\u003e8e8c955\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56785\"\u003e#56785\u003c/a\u003e from drsharp/dan/fix-json-encoder-bug\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/38e8df6a5a3244e5a239e33c3a08ed0c52791b73\"\u003e\u003ccode\u003e38e8df6\u003c/code\u003e\u003c/a\u003e Fix activesupport/CHANGELOG.md offense at 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/f5266eee6c69972b629cbcdeed8ad34d5410de14\"\u003e\u003ccode\u003ef5266ee\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56679\"\u003e#56679\u003c/a\u003e from Saidbek/fix-overlapping-acronyms-order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8080d2d6bbbc8d534d2ba57623b8bcf90f7e0caf\"\u003e\u003ccode\u003e8080d2d\u003c/code\u003e\u003c/a\u003e Fix changelog formatting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/594357c4bc3ee1aae1b9413715f99407352e7c19\"\u003e\u003ccode\u003e594357c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56652\"\u003e#56652\u003c/a\u003e from zzak/re-56588\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/055902a00e777d6ed5be51c73181d54aa1251e0a\"\u003e\u003ccode\u003e055902a\u003c/code\u003e\u003c/a\u003e Handle Ruby 4.1 stabby lambda in Proc#source_location start_column\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2.1...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionpack` from 8.1.2.1 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.3 (March 24, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/10c6e0eb362d4cd437ea092deb86e67f0d243dfc\"\u003e\u003ccode\u003e10c6e0e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56750\"\u003e#56750\u003c/a\u003e from nicolasva/fix/UnknownHttpMethod\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/cce61db5a22f94e8e820b3d2bf3d96cf0db9412a\"\u003e\u003ccode\u003ecce61db\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56820\"\u003e#56820\u003c/a\u003e from ybiquitous/improve-apidoc-for-ActionDispatch_I...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2.1...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionview` from 8.1.2.1 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionview's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/actionview/CHANGELOG.md\"\u003eactionview's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.3 (March 24, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix encoding errors for string locals containing non-ASCII characters.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eKataoka Katsuki\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix collection caching to only forward \u003ccode\u003eexpires_in\u003c/code\u003e argument if explicitly set.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ePieter Visser\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/e598b9427876ba44bd62c48390e6568476b3f8f0\"\u003e\u003ccode\u003ee598b94\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56906\"\u003e#56906\u003c/a\u003e from kataokatsuki/fix-strict-locals-non-ascii-encoding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/c2ea79c21161de7eb271b2789fbed21dde504071\"\u003e\u003ccode\u003ec2ea79c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56891\"\u003e#56891\u003c/a\u003e from pietervisser/fix-collection-caching-to-preserv...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2.1...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e\n\n\u003c!-- CURSOR_SUMMARY --\u003e\n---\n\n\u003e [!NOTE]\n\u003e **Low Risk**\n\u003e Lockfile-only dependency updates to Rails patch releases and `json` patch version; main risk is unexpected upstream behavior changes in framework internals.\n\u003e \n\u003e **Overview**\n\u003e Updates `Gemfile.lock` to bump the Rails framework gems (`actionpack`, `actionview`, `activemodel`, `activesupport`) from `8.1.2.1` to `8.1.3`, including refreshed checksums.\n\u003e \n\u003e Also bumps the `json` gem from `2.19.2` to `2.19.3`.\n\u003e \n\u003e \u003csup\u003eWritten by [Cursor Bugbot](https://cursor.com/dashboard?tab=bugbot) for commit 3ac7be5462b12fd672a340cddd579bbe16ff2ae5. This will update automatically on new commits. Configure [here](https://cursor.com/dashboard?tab=bugbot).\u003c/sup\u003e\n\u003c!-- /CURSOR_SUMMARY --\u003e","html_url":"https://github.com/guideline-tech/subroutine/pull/178","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/guideline-tech%2Fsubroutine/issues/178","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/178/packages"}},{"old_version":"8.1.2.1","new_version":"8.1.3","update_type":"patch","path":null,"pr_created_at":"2026-03-25T04:23:36.000Z","version_change":"8.1.2.1 → 8.1.3","issue":{"uuid":"4132342745","node_id":"PR_kwDOJO1DGs7NNcfO","number":899,"state":"closed","title":"Bump actionpack from 8.1.2.1 to 8.1.3","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-25T10:30:41.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-25T04:23:36.000Z","updated_at":"2026-03-25T10:30:42.000Z","time_to_close":22025,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2.1","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2.1 to 8.1.3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.3 (March 24, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/10c6e0eb362d4cd437ea092deb86e67f0d243dfc\"\u003e\u003ccode\u003e10c6e0e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56750\"\u003e#56750\u003c/a\u003e from nicolasva/fix/UnknownHttpMethod\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/cce61db5a22f94e8e820b3d2bf3d96cf0db9412a\"\u003e\u003ccode\u003ecce61db\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56820\"\u003e#56820\u003c/a\u003e from ybiquitous/improve-apidoc-for-ActionDispatch_I...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2.1...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2.1\u0026new-version=8.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/ecosyste-ms/summary/pull/899","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ecosyste-ms%2Fsummary/issues/899","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/899/packages"}},{"old_version":"8.0.4","new_version":"8.0.5","update_type":"patch","path":null,"pr_created_at":"2026-03-24T21:03:20.000Z","version_change":"8.0.4 → 8.0.5","issue":{"uuid":"4130635026","node_id":"PR_kwDOAHOAqs7NIn70","number":38840,"state":"open","title":"DEPS: Bump the rails group with 8 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-03-24T21:03:20.000Z","updated_at":"2026-03-24T21:03:39.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"DEPS: Bump","group_name":"rails","update_count":8,"packages":[{"name":"actionmailer","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"},{"name":"actionpack","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"},{"name":"actionview","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"},{"name":"activemodel","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"},{"name":"activerecord","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"},{"name":"activesupport","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"},{"name":"railties","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"},{"name":"activejob","old_version":"8.0.4","new_version":"8.0.5","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the rails group with 8 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [actionmailer](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n| [actionpack](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n| [actionview](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n| [activemodel](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n| [activerecord](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n| [activesupport](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n| [railties](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n| [activejob](https://github.com/rails/rails) | `8.0.4` | `8.0.5` |\n\n\nUpdates `actionmailer` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/actionmailer/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)\n\nUpdates `actionpack` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/actionpack/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)\n\nUpdates `actionview` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/actionview/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)\n\nUpdates `activemodel` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/activemodel/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)\n\nUpdates `activerecord` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/activerecord/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)\n\nUpdates `activesupport` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/activesupport/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)\n\nUpdates `railties` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/railties/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)\n\nUpdates `activejob` from 8.0.4 to 8.0.5\n- [Release notes](https://github.com/rails/rails/releases)\n- [Changelog](https://github.com/rails/rails/blob/v8.1.3/activejob/CHANGELOG.md)\n- [Commits](https://github.com/rails/rails/compare/v8.0.4...v8.0.5)","html_url":"https://github.com/discourse/discourse/pull/38840","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/discourse%2Fdiscourse/issues/38840","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/38840/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-24T11:08:01.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4127037722","node_id":"PR_kwDOFfdp287M98NC","number":506,"state":"closed","title":"build(deps): bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-25T11:08:20.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-24T11:08:01.000Z","updated_at":"2026-03-25T11:08:21.000Z","time_to_close":86419,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/sap-contributions/cloud_controller_ng/pull/506","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sap-contributions%2Fcloud_controller_ng/issues/506","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/506/packages"}},{"old_version":"3.2.19","new_version":"8.1.2.1","update_type":"major","path":null,"pr_created_at":"2026-03-23T21:59:44.000Z","version_change":"3.2.19 → 8.1.2.1","issue":{"uuid":"4123957783","node_id":"PR_kwDOAb-yes7M0mk0","number":11,"state":"closed","title":"Bump the bundler group across 1 directory with 7 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-02T18:51:26.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T21:59:44.000Z","updated_at":"2026-04-02T18:51:27.000Z","time_to_close":852702,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":7,"packages":[{"name":"jquery-rails","old_version":"3.0.0","new_version":"4.6.1","repository_url":"https://github.com/rails/jquery-rails"},{"name":"actionmailer","old_version":"3.2.19","new_version":"8.1.2.1"},{"name":"actionpack","old_version":"3.2.19","new_version":"8.1.2.1"},{"name":"activerecord","old_version":"3.2.19","new_version":"8.1.2.1"},{"name":"activesupport","old_version":"3.2.19","new_version":"8.1.2.1"},{"name":"rack","old_version":"1.4.5","new_version":"3.2.5"},{"name":"rdoc","old_version":"3.12.2","new_version":"7.2.0"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 1 update in the /examples/rails3 directory: [jquery-rails](https://github.com/rails/jquery-rails).\n\nUpdates `jquery-rails` from 3.0.0 to 4.6.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md\"\u003ejquery-rails's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.7.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.7.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.6.1\u003c/li\u003e\n\u003cli\u003eupdate jquery-ujs to 1.2.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.6.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.5.1 (note: \u003ca href=\"https://github.com/advisories/GHSA-jpcq-cgw6-v4j6\"\u003e3.5.0 contains important security updates\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunescape dollar signs and backticks in \u003ccode\u003eassert_select_jquery\u003c/code\u003e to match\nRails updated behavior.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.4.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.3.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.3.0\u003c/li\u003e\n\u003cli\u003eAdd possibility to test HTML: all, attribute prefix, attribute contains,\nattribute ends with, child, and class selectors\u003c/li\u003e\n\u003cli\u003eFix matching multiple calls for the same selector/function exception\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.2.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.2.0\u003c/li\u003e\n\u003cli\u003eAdd possibility to test HTML attribute selectors\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/034296045427fa54ad095f392fccd9ff5708e110\"\u003e\u003ccode\u003e0342960\u003c/code\u003e\u003c/a\u003e Release v4.6.1 with jQuery v3.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/039b12e91c148d65789030308653545943db43a4\"\u003e\u003ccode\u003e039b12e\u003c/code\u003e\u003c/a\u003e Update jquery to v3.7.1 (\u003ca href=\"https://redirect.github.com/rails/jquery-rails/issues/305\"\u003e#305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/12869dac3fcee107a9dabfbbe4f5054298d8877b\"\u003e\u003ccode\u003e12869da\u003c/code\u003e\u003c/a\u003e Release v4.6.0 with jQuery v3.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/65a9c7320d8320a14c36fde2655a06a7d52a6989\"\u003e\u003ccode\u003e65a9c73\u003c/code\u003e\u003c/a\u003e Update jquery to 3.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/fb5a7a893f62b5d3563ea904ca638a89bc7cd7a0\"\u003e\u003ccode\u003efb5a7a8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jquery-rails/issues/293\"\u003e#293\u003c/a\u003e from MichaelHoste/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/d9dfbe1d8a0bfe941970205c31cf79500ed99ebc\"\u003e\u003ccode\u003ed9dfbe1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jquery-rails/issues/296\"\u003e#296\u003c/a\u003e from okuramasafumi/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/f34a439f8047ef1de48656bed3bb636707dd784c\"\u003e\u003ccode\u003ef34a439\u003c/code\u003e\u003c/a\u003e Update CHANGELOG.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/b9e5aa7472055d9c5fd8d6af0f4d2e22dfb08ddd\"\u003e\u003ccode\u003eb9e5aa7\u003c/code\u003e\u003c/a\u003e Fix typo in CHANGELOG.md (\u003ccode\u003eusj\u003c/code\u003e =\u0026gt; \u003ccode\u003eujs\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/de8792d63210003c2bdbd973ee0b3a1d977b4a67\"\u003e\u003ccode\u003ede8792d\u003c/code\u003e\u003c/a\u003e Release v4.5.1 with jquery 3.6.1 and jquery-ujs 1.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/7e6f508b36b4ba7341a9f742d864c84a5b6bb626\"\u003e\u003ccode\u003e7e6f508\u003c/code\u003e\u003c/a\u003e Update jquery-ujs to latest v1.2.3\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/jquery-rails/compare/v3.0.0...v4.6.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionmailer` from 3.2.19 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionmailer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionmailer/CHANGELOG.md\"\u003eactionmailer's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.2 (January 08, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.1 (October 28, 2025)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.0 (October 22, 2025)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd structured events for Action Mailer:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eaction_mailer.delivered\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eaction_mailer.processed\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cem\u003eGannon McGibbon\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdd \u003ccode\u003edeliver_all_later\u003c/code\u003e to enqueue multiple emails at once.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003euser_emails = User.all.map { |user| Notifier.welcome(user) }\nActionMailer.deliver_all_later(user_emails)\n\u003ch1\u003euse a custom queue\u003c/h1\u003e\n\u003cp\u003eActionMailer.deliver_all_later(user_emails, queue: :my_queue)\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003eThis can greatly reduce the number of round-trips to the queue datastore.\nFor queue adapters that do not implement the \u003ccode\u003eenqueue_all\u003c/code\u003e method, we\nfall back to enqueuing email jobs indvidually.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003efatkodima\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease check \u003ca href=\"https://github.com/rails/rails/blob/8-0-stable/actionmailer/CHANGELOG.md\"\u003e8-0-stable\u003c/a\u003e for previous changes.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/d7c8ae65b7045490965218a994c300aea8dbb079\"\u003e\u003ccode\u003ed7c8ae6\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/dc94813e8151d0b56ec6c48b4db861cc7a666a8e\"\u003e\u003ccode\u003edc94813\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56050\"\u003e#56050\u003c/a\u003e from jclusso/fix-stylesheet-tag-nonce-mailer\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/90a1eaa1b30ba1f2d524e197460e549c03cf5698\"\u003e\u003ccode\u003e90a1eaa\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/df9f43214c637c54773581c85c910b356b16fa44\"\u003e\u003ccode\u003edf9f432\u003c/code\u003e\u003c/a\u003e Allow methods starting with underscore to be action methods.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/53c4ed887450cc2dee4b373148162c485999a400\"\u003e\u003ccode\u003e53c4ed8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/55973\"\u003e#55973\u003c/a\u003e from rails/fix-ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/f77a1c3654afdf599fa927e7910d6e9c5e9df7cf\"\u003e\u003ccode\u003ef77a1c3\u003c/code\u003e\u003c/a\u003e Require 'rails' at the top of railltie files to ensure Rails is loaded first\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1cdd190a25e483b65f1f25bbd0f13a25d696b461\"\u003e\u003ccode\u003e1cdd190\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.0 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1ace68361ed9e87fecbf32604c087d096f7b7f8a\"\u003e\u003ccode\u003e1ace683\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.0.rc1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/d6f9f62d49750fee6a45f3672e2227d5c4198a62\"\u003e\u003ccode\u003ed6f9f62\u003c/code\u003e\u003c/a\u003e Make the Structured Event Subscriber emit events in format that are useful fo...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v3.2.19...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionpack` from 3.2.19 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.2 (January 08, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd \u003ccode\u003econfig.action_controller.live_streaming_excluded_keys\u003c/code\u003e to control execution state sharing in ActionController::Live.\u003c/p\u003e\n\u003cp\u003eWhen using ActionController::Live, actions are executed in a separate thread that shares\nstate from the parent thread. This new configuration allows applications to opt-out specific\nstate keys that should not be shared.\u003c/p\u003e\n\u003cp\u003eThis is useful when streaming inside a \u003ccode\u003econnected_to\u003c/code\u003e block, where you may want\nthe streaming thread to use its own database connection context.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003e# config/application.rb\nconfig.action_controller.live_streaming_excluded_keys = [:active_record_connected_to_stack]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eBy default, all keys are shared.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eEileen M. Uchitelle\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eIpSpoofAttackError\u003c/code\u003e message to include \u003ccode\u003eForwarded\u003c/code\u003e header content.\u003c/p\u003e\n\u003cp\u003eWithout it, the error message may be misleading.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.1 (October 28, 2025)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAllow methods starting with underscore to be action methods.\u003c/p\u003e\n\u003cp\u003eDisallowing methods starting with an underscore from being action methods\nwas an unintended side effect of the performance optimization in\n207a254.\u003c/p\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/rails/rails/issues/55985\"\u003e#55985\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eRafael Mendonça França\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.0 (October 22, 2025)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSubmit test requests using \u003ccode\u003eas: :html\u003c/code\u003e with \u003ccode\u003eContent-Type: x-www-form-urlencoded\u003c/code\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSean Doyle\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/d7c8ae65b7045490965218a994c300aea8dbb079\"\u003e\u003ccode\u003ed7c8ae6\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/df98a0d4b820d9c85a466976860c8295d7304acc\"\u003e\u003ccode\u003edf98a0d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56440\"\u003e#56440\u003c/a\u003e from zzak/ac-live-streaming-keys-typo\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/0f8014a0ff97888c747a481ea8ef61015c160fd4\"\u003e\u003ccode\u003e0f8014a\u003c/code\u003e\u003c/a\u003e [8-1-stable] Minitest 6 support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/991ccf35933f5df1dcf1283a1ad2f9667c864fa6\"\u003e\u003ccode\u003e991ccf3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56393\"\u003e#56393\u003c/a\u003e from rails/add-exclude-keys-to-live-controller\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/662609d35301c42973e0b183d1294c61bb060390\"\u003e\u003ccode\u003e662609d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56252\"\u003e#56252\u003c/a\u003e from callmesangio/fix-testing-docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/81dca9cc388b7426cfcd39e34e3bc57fd287b74b\"\u003e\u003ccode\u003e81dca9c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56285\"\u003e#56285\u003c/a\u003e from markokajzer/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/c98c994f5994a0aae2b258c41732d9e0e4339f5b\"\u003e\u003ccode\u003ec98c994\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56256\"\u003e#56256\u003c/a\u003e from zzak/re-56186\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/4388688077b6406e9d71fd622f98677a83a2c2d0\"\u003e\u003ccode\u003e4388688\u003c/code\u003e\u003c/a\u003e Fix redirect_test leaking subscription state\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v3.2.19...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `activerecord` from 3.2.19 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactiverecord's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/activerecord/CHANGELOG.md\"\u003eactiverecord's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.2 (January 08, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix counting cached queries in \u003ccode\u003eActiveRecord::RuntimeRegistry\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003efatkodima\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix merging relations with arel equality predicates with null relations.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003efatkodima\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix SQLite3 schema dump for non-autoincrement integer primary keys.\u003c/p\u003e\n\u003cp\u003ePreviously, \u003ccode\u003eschema.rb\u003c/code\u003e should incorrectly restore that table with an auto incrementing\nprimary key.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eChris Hasiński\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix PostgreSQL \u003ccode\u003eschema_search_path\u003c/code\u003e not being reapplied after \u003ccode\u003ereset!\u003c/code\u003e or \u003ccode\u003ereconnect!\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThe \u003ccode\u003eschema_search_path\u003c/code\u003e configured in \u003ccode\u003edatabase.yml\u003c/code\u003e is now correctly\nreapplied instead of falling back to PostgreSQL defaults.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eTobias Egli\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRestore the ability of enum to be foats.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eenum :rating, { low: 0.0, medium: 0.5, high: 1.0 },\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eIn Rails 8.1.0, enum values are eagerly validated, and floats weren't expected.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsure batched preloaded associations accounts for klass when grouping to avoid issues with STI.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e, \u003cem\u003eStjepan Hadjic\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eActiveRecord::SoleRecordExceeded#record\u003c/code\u003e to return the relation.\u003c/p\u003e\n\u003cp\u003eThis was the case until Rails 7.2, but starting from 8.0 it\nstarted mistakenly returning the model class.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/d7c8ae65b7045490965218a994c300aea8dbb079\"\u003e\u003ccode\u003ed7c8ae6\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/3ea2701a15ac253fc6b87b0034a87e3abcb3d3e5\"\u003e\u003ccode\u003e3ea2701\u003c/code\u003e\u003c/a\u003e CHANGELOG sync\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/53e82ef8a931d4b6d01b9240ea6e486b31e14d61\"\u003e\u003ccode\u003e53e82ef\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56534\"\u003e#56534\u003c/a\u003e from khasinski/fix-sqlite3-schema-dump-default-nil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/adcface26aae1018cdfe87610f85c87508b52865\"\u003e\u003ccode\u003eadcface\u003c/code\u003e\u003c/a\u003e Fix PostgreSQL schema_search_path after reconnect and reset\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/13952d56e90bcba5cfa1076a7a0b806ae9564324\"\u003e\u003ccode\u003e13952d5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56447\"\u003e#56447\u003c/a\u003e from Saidbek/fix-enum-float-values-support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/642baed88cfdd761f8adf68452defb5573e90dd7\"\u003e\u003ccode\u003e642baed\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56482\"\u003e#56482\u003c/a\u003e from fatkodima/fix-merge-arel-equality-and-null\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/49a1f7253d910638a2885629cc049d38db878491\"\u003e\u003ccode\u003e49a1f72\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56415\"\u003e#56415\u003c/a\u003e from zzak/re-56047\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1b2a755fdcd13e0cdf12f06822b124209c700d35\"\u003e\u003ccode\u003e1b2a755\u003c/code\u003e\u003c/a\u003e Fix CI rerun command for active record tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/186d51ed7a78e8fb0f0069d5b3af77b507867ce2\"\u003e\u003ccode\u003e186d51e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56304\"\u003e#56304\u003c/a\u003e from fatkodima/fix-dumping-views-indexes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v3.2.19...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `activesupport` from 3.2.19 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactivesupport's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/activesupport/CHANGELOG.md\"\u003eactivesupport's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.2 (January 08, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eMake \u003ccode\u003edelegate\u003c/code\u003e and \u003ccode\u003edelegate_missing_to\u003c/code\u003e work in BasicObject subclasses.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eRafael Mendonça França\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix Inflectors when using a locale that fallbacks to \u003ccode\u003e:en\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eActiveSupport::TimeWithZone#as_json\u003c/code\u003e to consistently return UTF-8 strings.\u003c/p\u003e\n\u003cp\u003ePreviously the returned string would sometime be encoded in US-ASCII, which in\nsome cases may be problematic.\u003c/p\u003e\n\u003cp\u003eNow the method consistently always return UTF-8 strings.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eTimeWithZone#xmlschema\u003c/code\u003e when wrapping a \u003ccode\u003eDateTime\u003c/code\u003e instance in local time.\u003c/p\u003e\n\u003cp\u003ePreviously it would return an invalid time.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDmytro Rymar\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImplement LocalCache strategy on \u003ccode\u003eActiveSupport::Cache::MemoryStore\u003c/code\u003e. The memory store\nneeds to respond to the same interface as other cache stores (e.g. \u003ccode\u003eActiveSupport::NullStore\u003c/code\u003e).\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMikey Gough\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ec1a0e215efd27a3b3911aae6df978a80f456a49\"\u003e\u003ccode\u003eec1a0e2\u003c/code\u003e\u003c/a\u003e Improve performance of NumberToDelimitedConverter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/50d732af3b7c8aaf63cbcca0becbc00279b215b7\"\u003e\u003ccode\u003e50d732a\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/19dbab51ca086a657bb86458042bc44314916bcb\"\u003e\u003ccode\u003e19dbab5\u003c/code\u003e\u003c/a\u003e NumberConverter: reject scientific notation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/d7c8ae65b7045490965218a994c300aea8dbb079\"\u003e\u003ccode\u003ed7c8ae6\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/3ea2701a15ac253fc6b87b0034a87e3abcb3d3e5\"\u003e\u003ccode\u003e3ea2701\u003c/code\u003e\u003c/a\u003e CHANGELOG sync\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/0f8014a0ff97888c747a481ea8ef61015c160fd4\"\u003e\u003ccode\u003e0f8014a\u003c/code\u003e\u003c/a\u003e [8-1-stable] Minitest 6 support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/991ccf35933f5df1dcf1283a1ad2f9667c864fa6\"\u003e\u003ccode\u003e991ccf3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56393\"\u003e#56393\u003c/a\u003e from rails/add-exclude-keys-to-live-controller\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/c86465f65278d2a6200424d2853fc848a0e01356\"\u003e\u003ccode\u003ec86465f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56353\"\u003e#56353\u003c/a\u003e from rails/rmf-delegation-basic-object\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v3.2.19...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rack` from 1.4.5 to 3.2.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/releases\"\u003erack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.2.4\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev3.0.9.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed ReDoS in Accept header parsing [CVE-2024-26146]\u003c/li\u003e\n\u003cli\u003eFixed ReDoS in Content Type header parsing [CVE-2024-25126]\u003c/li\u003e\n\u003cli\u003eReject Range headers which are too large [CVE-2024-26141]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.9...v3.0.9.1\"\u003ehttps://github.com/rack/rack/compare/v3.0.9...v3.0.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix content-length calcuation in Rack:Response#write \u003ca href=\"https://redirect.github.com/rack/rack/issues/2150\"\u003e#2150\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.8...v3.0.9\"\u003ehttps://github.com/rack/rack/compare/v3.0.8...v3.0.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u0026quot;Fix some unused variable verbose warnings\u0026quot; by \u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2084\"\u003erack/rack#2084\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2084\"\u003erack/rack#2084\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.7...v3.0.8\"\u003ehttps://github.com/rack/rack/compare/v3.0.7...v3.0.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u0026quot;Make query parameters without = have nil values\u0026quot;. by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2060\"\u003erack/rack#2060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.6.1...v3.0.7\"\u003ehttps://github.com/rack/rack/compare/v3.0.6.1...v3.0.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.6.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev3.0.4.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.4...v3.0.4.1\"\u003ehttps://github.com/rack/rack/compare/v3.0.4...v3.0.4.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.4\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.3...v3.0.4\"\u003ehttps://github.com/rack/rack/compare/v3.0.3...v3.0.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRelease v3.0.3 by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2000\"\u003erack/rack#2000\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.2...v3.0.3\"\u003ehttps://github.com/rack/rack/compare/v3.0.2...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003cp\u003eAll notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference \u003ca href=\"https://keepachangelog.com/en/1.0.0/\"\u003eKeep A Changelog\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003eUnreleased\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-whrj-4476-wvmp\"\u003eCVE-2026-25500\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-mxw3-3hh2-x2mh\"\u003eCVE-2026-22860\u003c/a\u003e Directory traversal via root prefix bypass in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSPEC Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDefine \u003ccode\u003erack.response_finished\u003c/code\u003e callback arguments more strictly. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2365\"\u003e#2365\u003c/a\u003e, \u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eRack::Files#assign_headers\u003c/code\u003e to allow overriding how the configured file headers are set. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2377\"\u003e#2377\u003c/a\u003e, \u003ca href=\"https://github.com/codergeek121\"\u003e\u003ccode\u003e@​codergeek121\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003erack.response_finished\u003c/code\u003e to \u003ccode\u003eRack::TempfileReaper\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2363\"\u003e#2363\u003c/a\u003e, \u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for streaming bodies when using \u003ccode\u003eRack::Events\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/rack/rack/blob/main/redirect.github.com/rack/rack/pull/2375\"\u003e#2375\u003c/a\u003e, \u003ca href=\"https://github.com/unflxw\"\u003e\u003ccode\u003e@​unflxw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003edeflaters\u003c/code\u003e option to \u003ccode\u003eRack::Deflater\u003c/code\u003e to enable custom compression algorithms like zstd. (\u003ca href=\"https://redirect.github.com/rack/rack/issues/2168\"\u003e#2168\u003c/a\u003e, \u003ca href=\"https://github.com/alexanderadam\"\u003e\u003ccode\u003e@​alexanderadam\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eRack::Request#prefetch?\u003c/code\u003e for identifying requests with \u003ccode\u003eSec-Purpose: prefetch\u003c/code\u003e header set. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2405\"\u003e#2405\u003c/a\u003e, \u003ca href=\"https://github.com/glaszig\"\u003e\u003ccode\u003e@​glaszig\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003erack.request.trusted_proxy\u003c/code\u003e environment key to indicate whether the request is coming from a trusted proxy.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRaise before exceeding a part limit, not after. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2362\"\u003e#2362\u003c/a\u003e, \u003ca href=\"https://github.com/matthew-puku\"\u003e\u003ccode\u003e@​matthew-puku\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRack::Deflater now uses a fixed GZip mtime value. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2372\"\u003e#2372\u003c/a\u003e, \u003ca href=\"https://github.com/bensheldon\"\u003e\u003ccode\u003e@​bensheldon\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMultipart parser drops support for RFC 2231 \u003ccode\u003efilename*\u003c/code\u003e parameter (prohibited by RFC 7578) and now properly handles UTF-8 encoded filenames via percent-encoding and direct UTF-8 bytes. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2398\"\u003e#2398\u003c/a\u003e, \u003ca href=\"https://github.com/wtn\"\u003e\u003ccode\u003e@​wtn\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe query parser now raises \u003ccode\u003eRack::QueryParser::IncompatibleEncodingError\u003c/code\u003e if we try to parse params that are not ASCII compatible. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2416\"\u003e#2416\u003c/a\u003e, \u003ca href=\"https://github.com/bquorning\"\u003e\u003ccode\u003e@​bquorning\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eRack::MockResponse#body\u003c/code\u003e when the body is a Proc. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2420\"\u003e#2420\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rack/rack/pull/2423\"\u003e#2423\u003c/a\u003e, \u003ca href=\"https://github.com/tavianator\"\u003e\u003ccode\u003e@​tavianator\u003c/code\u003e\u003c/a\u003e, [\u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.4] - 2025-11-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3] - 2025-10-10\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/bb5f3555bd12b9065112353e829298b3b5623ceb\"\u003e\u003ccode\u003ebb5f355\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/f9bde3bc2dde2771185ac1a7b7602a4d9fa0a0d8\"\u003e\u003ccode\u003ef9bde3b\u003c/code\u003e\u003c/a\u003e Prevent directory traversal via root prefix bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/93a68f58aa82aa48f09b751501f19f5e760dd406\"\u003e\u003ccode\u003e93a68f5\u003c/code\u003e\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/3b8b0d22d68a7fb30fdea40f838d0f95a05c134d\"\u003e\u003ccode\u003e3b8b0d2\u003c/code\u003e\u003c/a\u003e Fix MockResponse#body when the body is a Proc (\u003ca href=\"https://redirect.github.com/rack/rack/issues/2420\"\u003e#2420\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/4c24539777db8833d78f881680cd245878cfba31\"\u003e\u003ccode\u003e4c24539\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/3ba5e4f22f55abac21037bb137e56e5c8e36b673\"\u003e\u003ccode\u003e3ba5e4f\u003c/code\u003e\u003c/a\u003e Allow Multipart head to span read boundary. (\u003ca href=\"https://redirect.github.com/rack/rack/issues/2392\"\u003e#2392\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/32bf8887d00bd86494f0ce08c46cda59a65d332f\"\u003e\u003ccode\u003e32bf888\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/e179614c4a653283286f5f046428cbb85f21146f\"\u003e\u003ccode\u003ee179614\u003c/code\u003e\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/57277b7741581fa827472c5c666f6e6a33abd784\"\u003e\u003ccode\u003e57277b7\u003c/code\u003e\u003c/a\u003e Improper handling of proxy headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/403b74b2441d666845177ce769036e294f663712\"\u003e\u003ccode\u003e403b74b\u003c/code\u003e\u003c/a\u003e Normalize adivsories links.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/1.4.5...v3.2.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rdoc` from 3.12.2 to 7.2.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rdoc/releases\"\u003erdoc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.2.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003e✨ Enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eExpand GitHub style references in ChangeLog to URL by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1547\"\u003eruby/rdoc#1547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHighlight bash commands by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1544\"\u003eruby/rdoc#1544\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplace attribute_manager with a new rdoc-inline-format parser by \u003ca href=\"https://github.com/tompng\"\u003e\u003ccode\u003e@​tompng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1559\"\u003eruby/rdoc#1559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix not scrolling in search results when \u003ccode\u003eArrowUp\u003c/code\u003e or \u003ccode\u003eArrowDown\u003c/code\u003e for \u003ccode\u003eAliki\u003c/code\u003e by \u003ca href=\"https://github.com/ccmywish\"\u003e\u003ccode\u003e@​ccmywish\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1587\"\u003eruby/rdoc#1587\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImplement escapes in Markdown to RDoc conversion by \u003ca href=\"https://github.com/tompng\"\u003e\u003ccode\u003e@​tompng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1575\"\u003eruby/rdoc#1575\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eChange PrismRuby not to depend on hack that stores module nesting information to context.parent by \u003ca href=\"https://github.com/tompng\"\u003e\u003ccode\u003e@​tompng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1580\"\u003eruby/rdoc#1580\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHide search results on Escape key on desktop too for \u003ccode\u003eAliki\u003c/code\u003e by \u003ca href=\"https://github.com/ccmywish\"\u003e\u003ccode\u003e@​ccmywish\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1593\"\u003eruby/rdoc#1593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix visit_call_node visit arguments twice by \u003ca href=\"https://github.com/tompng\"\u003e\u003ccode\u003e@​tompng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1596\"\u003eruby/rdoc#1596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix accept_table with incomplete rows by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1599\"\u003eruby/rdoc#1599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix sections not displaying their text by \u003ca href=\"https://github.com/Earlopain\"\u003e\u003ccode\u003e@​Earlopain\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1600\"\u003eruby/rdoc#1600\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIgnore visibility method, attr definition, module_function within block by \u003ca href=\"https://github.com/tompng\"\u003e\u003ccode\u003e@​tompng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1595\"\u003eruby/rdoc#1595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix broken legacy rdoc-ref labels and duplicate heading IDs by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1602\"\u003eruby/rdoc#1602\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd unique IDs to section headings in Aliki template by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1603\"\u003eruby/rdoc#1603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix RDoc::Attr#add_alias handling of aliased attribute accessor by \u003ca href=\"https://github.com/extern-c\"\u003e\u003ccode\u003e@​extern-c\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1605\"\u003eruby/rdoc#1605\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e📚 Documentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix broken RDoc Markup Reference link in RDoc::Comment by \u003ca href=\"https://github.com/extern-c\"\u003e\u003ccode\u003e@​extern-c\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1566\"\u003eruby/rdoc#1566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd missing quote for 'unknown' by \u003ca href=\"https://github.com/p8\"\u003e\u003ccode\u003e@​p8\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1589\"\u003eruby/rdoc#1589\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🛠 Other Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump ruby/setup-ruby from 1.281.0 to 1.284.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1569\"\u003eruby/rdoc#1569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix a test that uses invalid syntax by \u003ca href=\"https://github.com/Earlopain\"\u003e\u003ccode\u003e@​Earlopain\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1577\"\u003eruby/rdoc#1577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved truffleruby from CI by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1586\"\u003eruby/rdoc#1586\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump ruby/setup-ruby from 1.284.0 to 1.286.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1582\"\u003eruby/rdoc#1582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump step-security/harden-runner from 2.14.0 to 2.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1583\"\u003eruby/rdoc#1583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 6.0.1 to 6.0.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1584\"\u003eruby/rdoc#1584\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump ruby/setup-ruby from 1.286.0 to 1.287.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1594\"\u003eruby/rdoc#1594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e/release-check\u003c/code\u003e Claude Code skill by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1604\"\u003eruby/rdoc#1604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump ruby/setup-ruby from 1.287.0 to 1.288.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1606\"\u003eruby/rdoc#1606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump step-security/harden-runner from 2.14.1 to 2.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1607\"\u003eruby/rdoc#1607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump version to 7.2.0 by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1608\"\u003eruby/rdoc#1608\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ccmywish\"\u003e\u003ccode\u003e@​ccmywish\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1587\"\u003eruby/rdoc#1587\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/rdoc/compare/v7.1.0...v7.2.0\"\u003ehttps://github.com/ruby/rdoc/compare/v7.1.0...v7.2.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.1.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003e✨ Enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport GitHub style markdown heading anchor and link reference by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1540\"\u003eruby/rdoc#1540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow using backticks to quote text in RDoc markup too by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1551\"\u003eruby/rdoc#1551\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix comment_location for merged ClassModule by \u003ca href=\"https://github.com/tompng\"\u003e\u003ccode\u003e@​tompng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/rdoc/pull/1531\"\u003eruby/rdoc#1531\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rdoc/blob/master/History.rdoc\"\u003erdoc's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e= History\u003c/p\u003e\n\u003cp\u003e== 5.1.0 / 2017-02-24\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eBug fixes\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix an issue that rdoc fails when running on Windows with RUBYOPT=-U.\nPR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/430\"\u003e#430\u003c/a\u003e by Toshihiko Ichida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eMinor enhancements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eParse ruby 2.1 \u003c!-- raw HTML omitted --\u003e def. PR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/436\"\u003e#436\u003c/a\u003e by Akira Matsuda.\u003c/li\u003e\n\u003cli\u003eSuppress warnings in eval. PR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/440\"\u003e#440\u003c/a\u003e by Nobuyoshi Nakada.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e== 5.0.0 / 2016-11-05\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eMajor enhancements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCleanup deprecated code targeted Ruby 1.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eBug fixes\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure badge data is included in result of JsonIndex template.\u003c/li\u003e\n\u003cli\u003eEnsure items in the nil section are displayed in HTML output.  Issue \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/399\"\u003e#399\u003c/a\u003e\nby Daniel Svensson.\u003c/li\u003e\n\u003cli\u003eParse rb_intern_const correctly in C.  PR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/381\"\u003e#381\u003c/a\u003e by Sho Hashimoto.\u003c/li\u003e\n\u003cli\u003eFix broken assets caused by \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/335\"\u003e#335\u003c/a\u003e when serving ri.  PR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/360\"\u003e#360\u003c/a\u003e by Alex Wood.\u003c/li\u003e\n\u003cli\u003eDon't try to parse svg files.  Issue \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/350\"\u003e#350\u003c/a\u003e by Sigurd Svela.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eMinor enhancements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eImprove class name expansion/resolution in ri.  PR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/400\"\u003e#400\u003c/a\u003e by NARUSE, Yui\u003c/li\u003e\n\u003cli\u003eImprove performance of document generation. PR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/397\"\u003e#397\u003c/a\u003e by Yusuke Endoh.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e== 4.3.0 / 2016-11-04\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eMinor enhancements\n\u003cul\u003e\n\u003cli\u003eRemoved json dependency for Ruby 2.4.0\u003c/li\u003e\n\u003cli\u003eEnd to support Ruby 1.8.x\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e== 4.2.2 / 2016-02-09\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBug fixes\n\u003cul\u003e\n\u003cli\u003eInclude lib/rdoc/generator/pot/* in built gem\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e== 4.2.1 / 2015-12-22\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBug fixes\n\u003cul\u003e\n\u003cli\u003eFixed infinite loop with CR \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/339\"\u003e#339\u003c/a\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow rdoc run with --disable-gems \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/340\"\u003e#340\u003c/a\u003e  by \u003ca href=\"https://github.com/luizluca\"\u003e\u003ccode\u003e@​luizluca\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDon't store full path in GZipped js files \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/341\"\u003e#341\u003c/a\u003e by \u003ca href=\"https://github.com/voxik\"\u003e\u003ccode\u003e@​voxik\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix relative path names for drive letters \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/367\"\u003e#367\u003c/a\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for valid syntax \u003ccode\u003eclass C end\u003c/code\u003e parsing \u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/368\"\u003e#368\u003c/a\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/d6422f499fb2961b91de400f48426fc6d3fa5b67\"\u003e\u003ccode\u003ed6422f4\u003c/code\u003e\u003c/a\u003e Bump version to 7.2.0 (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1608\"\u003e#1608\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/c6ecfe552f10f10cb910fc5a442e97793ca4105d\"\u003e\u003ccode\u003ec6ecfe5\u003c/code\u003e\u003c/a\u003e Fix RDoc::Attr#add_alias handling of aliased attribute accessor (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1605\"\u003e#1605\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/4889bfeae0b2bba9316e4a47f21b28309a074f1b\"\u003e\u003ccode\u003e4889bfe\u003c/code\u003e\u003c/a\u003e Add unique IDs to section headings in Aliki template (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1603\"\u003e#1603\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/26f0cc4c1dae1b520b5cf1a502ce1af9409acf23\"\u003e\u003ccode\u003e26f0cc4\u003c/code\u003e\u003c/a\u003e Add unique IDs to section headings in Aliki template (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1603\"\u003e#1603\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/0566dac111ee29c0763d150c621970429f00b59d\"\u003e\u003ccode\u003e0566dac\u003c/code\u003e\u003c/a\u003e Bump step-security/harden-runner from 2.14.1 to 2.14.2 (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1607\"\u003e#1607\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/cd586bff62c18aa0c7b6b1e6b7028f932fad56c7\"\u003e\u003ccode\u003ecd586bf\u003c/code\u003e\u003c/a\u003e Bump ruby/setup-ruby from 1.287.0 to 1.288.0 (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1606\"\u003e#1606\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/dbd747eda4f9359956dbc505f8b0c807ed78ff35\"\u003e\u003ccode\u003edbd747e\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003e/release-check\u003c/code\u003e Claude Code skill (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1604\"\u003e#1604\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/344cff27a8a373b44ee02b6149fd7c7994936fcc\"\u003e\u003ccode\u003e344cff2\u003c/code\u003e\u003c/a\u003e Fix broken legacy rdoc-ref labels and duplicate heading IDs (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1602\"\u003e#1602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/7e1157aebf10494d8052d1c5859e66840facd145\"\u003e\u003ccode\u003e7e1157a\u003c/code\u003e\u003c/a\u003e Ignore visibility method, attr definition, module_function within block (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1595\"\u003e#1595\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rdoc/commit/ba218213d0674f411ee94025292ec63a5cb5ad16\"\u003e\u003ccode\u003eba21821\u003c/code\u003e\u003c/a\u003e Fix sections not displaying their text (\u003ca href=\"https://redirect.github.com/ruby/rdoc/issues/1600\"\u003e#1600\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rdoc/compare/v3.12.2...v7.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/pboling/rack-cors/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/pboling/rack-cors/pull/11","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pboling%2Frack-cors/issues/11","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/11/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T21:00:18.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123706961","node_id":"PR_kwDOHbCwJc7MzzO_","number":10,"state":"closed","title":"Bump the bundler group across 1 directory with 7 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-25T21:27:25.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T21:00:18.000Z","updated_at":"2026-03-25T21:27:27.000Z","time_to_close":174427,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":7,"packages":[{"name":"action_text-trix","old_version":"2.1.16","new_version":"2.1.17","repository_url":"https://github.com/basecamp/trix"},{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"},{"name":"actionview","old_version":"8.1.2","new_version":"8.1.2.1"},{"name":"activestorage","old_version":"8.1.2","new_version":"8.1.2.1"},{"name":"activesupport","old_version":"8.1.2","new_version":"8.1.2.1"},{"name":"json","old_version":"2.18.0","new_version":"2.19.2"},{"name":"loofah","old_version":"2.25.0","new_version":"2.25.1"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 2 updates in the / directory: [action_text-trix](https://github.com/basecamp/trix) and [actionpack](https://github.com/rails/rails).\n\nUpdates `action_text-trix` from 2.1.16 to 2.1.17\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/basecamp/trix/releases\"\u003eaction_text-trix's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.17\u003c/h2\u003e\n\u003ch2\u003eSecurity\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress potential XSS vector via \u003ccode\u003edata-trix-serialized-attributes\u003c/code\u003e sanitizer bypass by \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1282\"\u003ebasecamp/trix#1282\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix bullets merging with prior elements on Firefox when the first node is removed by \u003ca href=\"https://github.com/monorkin\"\u003e\u003ccode\u003e@​monorkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1280\"\u003ebasecamp/trix#1280\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eInfrastructure/CI\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace Karma with \u003ccode\u003e@web/test-runner\u003c/code\u003e by \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1272\"\u003ebasecamp/trix#1272\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: get green (2026-01-09 edition) by \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1276\"\u003ebasecamp/trix#1276\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReport web-test-runner test failures by \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1275\"\u003ebasecamp/trix#1275\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/Cromian\"\u003e\u003ccode\u003e@​Cromian\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1239\"\u003ebasecamp/trix#1239\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/monorkin\"\u003e\u003ccode\u003e@​monorkin\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1280\"\u003ebasecamp/trix#1280\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Cromian\"\u003e\u003ccode\u003e@​Cromian\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/basecamp/trix/pull/1239\"\u003ebasecamp/trix#1239\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/basecamp/trix/compare/v2.1.16...v2.1.17\"\u003ehttps://github.com/basecamp/trix/compare/v2.1.16...v2.1.17\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/2e46d5128f3927cd93543b5fff8d81b31d35ce77\"\u003e\u003ccode\u003e2e46d51\u003c/code\u003e\u003c/a\u003e v2.1.17\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/53197ab5a142e6b0b76127cb790726b274eaf1bc\"\u003e\u003ccode\u003e53197ab\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/basecamp/trix/issues/1282\"\u003e#1282\u003c/a\u003e from basecamp/h1-3581911-serialized-attr\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/3229c29c771ded4d247ed79b2ccd2cd05c4e74b4\"\u003e\u003ccode\u003e3229c29\u003c/code\u003e\u003c/a\u003e Fix stored XSS via data-trix-serialized-attributes sanitizer bypass (H1 \u003ca href=\"https://redirect.github.com/basecamp/trix/issues/3581\"\u003e#3581\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/7069343612add268213edaf764eca2bdefa43857\"\u003e\u003ccode\u003e7069343\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/basecamp/trix/issues/1239\"\u003e#1239\u003c/a\u003e from Cromian/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/d9dbf0a27e6e25f787d8181e091c27bf47c4dbf4\"\u003e\u003ccode\u003ed9dbf0a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/basecamp/trix/issues/1280\"\u003e#1280\u003c/a\u003e from basecamp/fix-bullets-merging-with-prior-element\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/bef13e27872dddf08f803a9905a84c0a1110e322\"\u003e\u003ccode\u003ebef13e2\u003c/code\u003e\u003c/a\u003e Fix bullets merging with prior elements when the first node is removed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/194a36c5e8b07e596c35c3d2eb1c17d1e3f80155\"\u003e\u003ccode\u003e194a36c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/basecamp/trix/issues/1275\"\u003e#1275\u003c/a\u003e from basecamp/flavorjones/wtr-failure-messages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/c94abe6005136b12004734bafe757a7933ae3950\"\u003e\u003ccode\u003ec94abe6\u003c/code\u003e\u003c/a\u003e Use source-map to get better test failure messages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/6f6ab9ac8309a3c3ddd362cb1c4547e2a73cb9e9\"\u003e\u003ccode\u003e6f6ab9a\u003c/code\u003e\u003c/a\u003e Test runner reporter emits failure details\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/basecamp/trix/commit/1d2d1a3b1a08c29a08529481298a7f0f539b8d5a\"\u003e\u003ccode\u003e1d2d1a3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/basecamp/trix/issues/1276\"\u003e#1276\u003c/a\u003e from basecamp/flavorjones/ci-green-20260109\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/basecamp/trix/compare/v2.1.16...v2.1.17\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionpack` from 8.1.2 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionview` from 8.1.2 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionview's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionview/CHANGELOG.md\"\u003eactionview's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/e91694b1f0e176eb01bfcc480a008bffc70f7602\"\u003e\u003ccode\u003ee91694b\u003c/code\u003e\u003c/a\u003e Update CHANGELOG (8.1 only)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63f5ad83edaa0b976f82d46988d745426aa4a42d\"\u003e\u003ccode\u003e63f5ad8\u003c/code\u003e\u003c/a\u003e Skip blank attribute names in Action View tag helpers\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `activestorage` from 8.1.2 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactivestorage's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/activestorage/CHANGELOG.md\"\u003eactivestorage's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFilter user supplied metadata in DirectUploadController\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33173]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eConfigurable maxmimum streaming chunk size\u003c/p\u003e\n\u003cp\u003eMakes sure that byte ranges for blobs don't exceed 100mb by default.\nContent ranges that are too big can result in denial of service.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33174]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGannon McGibbon\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eLimit range requests to a single range\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33658]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ePrevent path traversal in \u003ccode\u003eDiskService\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003ccode\u003eDiskService#path_for\u003c/code\u003e now raises an \u003ccode\u003eInvalidKeyError\u003c/code\u003e when passed keys with dot segments (\u0026quot;.\u0026quot;,\n\u0026quot;..\u0026quot;), or if the resolved path is outside the storage root directory.\u003c/p\u003e\n\u003cp\u003e\u003ccode\u003e#path_for\u003c/code\u003e also now consistently raises \u003ccode\u003eInvalidKeyError\u003c/code\u003e if the key is invalid in any way, for\nexample containing null bytes or having an incompatible encoding. Previously, the exception\nraised may have been \u003ccode\u003eArgumentError\u003c/code\u003e or \u003ccode\u003eEncoding::CompatibilityError\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003ccode\u003eDiskController\u003c/code\u003e now explicitly rescues \u003ccode\u003eInvalidKeyError\u003c/code\u003e with appropriate HTTP status codes.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33195]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ePrevent glob injection in \u003ccode\u003eDiskService#delete_prefixed\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eEscape glob metacharacters in the resolved path before passing to \u003ccode\u003eDir.glob\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eNote that this change breaks any existing code that is relying on \u003ccode\u003edelete_prefixed\u003c/code\u003e to expand\nglob metacharacters. This change presumes that is unintended behavior (as other storage services\ndo not respect these metacharacters).\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33202]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8c9676b803820110548cdb7523800db43bc6874c\"\u003e\u003ccode\u003e8c9676b\u003c/code\u003e\u003c/a\u003e Prevent glob injection in ActiveStorage DiskService#delete_prefixed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/9b06fbc0f504b8afe333f33d19548f3b85fbe655\"\u003e\u003ccode\u003e9b06fbc\u003c/code\u003e\u003c/a\u003e Prevent path traversal in ActiveStorage DiskService\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/d9502f5214e2198245a4c1defe9cd02a7c8057d0\"\u003e\u003ccode\u003ed9502f5\u003c/code\u003e\u003c/a\u003e Active Storage: Filter user supplied metadata in DirectUploadController\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/85ec5b1e00d3197d8c69a5e622e1b398a1b10b06\"\u003e\u003ccode\u003e85ec5b1\u003c/code\u003e\u003c/a\u003e ActiveStorage::Streaming limit range requests to a single range\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/42012eaaa88dfc7d0030161b2bc8074a7bbce92a\"\u003e\u003ccode\u003e42012ea\u003c/code\u003e\u003c/a\u003e Configurable maxmimum streaming chunk size\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `activesupport` from 8.1.2 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactivesupport's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/activesupport/CHANGELOG.md\"\u003eactivesupport's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ec1a0e215efd27a3b3911aae6df978a80f456a49\"\u003e\u003ccode\u003eec1a0e2\u003c/code\u003e\u003c/a\u003e Improve performance of NumberToDelimitedConverter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/50d732af3b7c8aaf63cbcca0becbc00279b215b7\"\u003e\u003ccode\u003e50d732a\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/19dbab51ca086a657bb86458042bc44314916bcb\"\u003e\u003ccode\u003e19dbab5\u003c/code\u003e\u003c/a\u003e NumberConverter: reject scientific notation\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `json` from 2.18.0 to 2.19.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/json/releases\"\u003ejson's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.19.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix a format string injection vulnerability in \u003ccode\u003eJSON.parse(doc, allow_duplicate_key: false)\u003c/code\u003e. \u003ccode\u003eCVE-2026-33210\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/json/compare/v2.19.1...v2.19.2\"\u003ehttps://github.com/ruby/json/compare/v2.19.1...v2.19.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.19.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix a compiler dependent GC bug introduced in \u003ccode\u003e2.18.0\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/json/compare/v2.19.0...v2.19.1\"\u003ehttps://github.com/ruby/json/compare/v2.19.0...v2.19.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eallow_blank\u003c/code\u003e parsing option to no longer allow invalid types (e.g. \u003ccode\u003eload([], allow_blank: true)\u003c/code\u003e now raise a type error).\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eallow_invalid_escape\u003c/code\u003e parsing option to ignore backslashes that aren't followed by one of the valid escape characters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/json/compare/v2.18.1...v2.19.0\"\u003ehttps://github.com/ruby/json/compare/v2.18.1...v2.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.18.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix a potential crash in very specific circumstance if GC triggers during a call to \u003ccode\u003eto_json\u003c/code\u003e\nwithout first invoking a user defined \u003ccode\u003e#to_json\u003c/code\u003e method.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/json/compare/v2.18.0...v2.18.1\"\u003ehttps://github.com/ruby/json/compare/v2.18.0...v2.18.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/json/blob/master/CHANGES.md\"\u003ejson's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e2026-03-18 (2.19.2)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix a format string injection vulnerability in \u003ccode\u003eJSON.parse(doc, allow_duplicate_key: false)\u003c/code\u003e. \u003ccode\u003eCVE-2026-33210\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e2026-03-08 (2.19.1)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix a compiler dependent GC bug introduced in \u003ccode\u003e2.18.0\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e2026-03-06 (2.19.0)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eallow_blank\u003c/code\u003e parsing option to no longer allow invalid types (e.g. \u003ccode\u003eload([], allow_blank: true)\u003c/code\u003e now raise a type error).\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eallow_invalid_escape\u003c/code\u003e parsing option to ignore backslashes that aren't followed by one of the valid escape characters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e2026-02-03 (2.18.1)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix a potential crash in very specific circumstance if GC triggers during a call to \u003ccode\u003eto_json\u003c/code\u003e\nwithout first invoking a user defined \u003ccode\u003e#to_json\u003c/code\u003e method.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/54f8a878aebee090476a53c851c943128894be62\"\u003e\u003ccode\u003e54f8a87\u003c/code\u003e\u003c/a\u003e Release 2.19.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/393b41c3e5f87491e1e34fa59fa78ff6fa179a74\"\u003e\u003ccode\u003e393b41c\u003c/code\u003e\u003c/a\u003e Fix a format string injection vulnerability\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/dbf6bb12aac85db939df1180028aea06c8d3b762\"\u003e\u003ccode\u003edbf6bb1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/json/issues/953\"\u003e#953\u003c/a\u003e from ruby/dependabot/github_actions/actions/create-gi...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/7187315b4571ade59d68a1fad84be2794cda744d\"\u003e\u003ccode\u003e7187315\u003c/code\u003e\u003c/a\u003e Bump actions/create-github-app-token from 2 to 3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/4a42a04280d96d8dd94558078c16f1c078c38e1b\"\u003e\u003ccode\u003e4a42a04\u003c/code\u003e\u003c/a\u003e Release 2.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/13689c269970f18316952541f8544830ec2dc5c4\"\u003e\u003ccode\u003e13689c2\u003c/code\u003e\u003c/a\u003e Add missing GC_GUARD in \u003ccode\u003efbuffer_append_str\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/a11acc1ff496627e5d72c71d6d1229e8c8ffeaa1\"\u003e\u003ccode\u003ea11acc1\u003c/code\u003e\u003c/a\u003e Release 2.19.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/0a4fb79cd97f535701cc2240ac736d76b9af5025\"\u003e\u003ccode\u003e0a4fb79\u003c/code\u003e\u003c/a\u003e fbuffer.h: Use size_t over unsigned long\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/a29fcdcb4a78164daa14f6af05812690dd3ac939\"\u003e\u003ccode\u003ea29fcdc\u003c/code\u003e\u003c/a\u003e Add depth validation to Jruby and TruffleRuby implementations\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/json/commit/de993aa76639078da891f46351a36f77d51ad3d3\"\u003e\u003ccode\u003ede993aa\u003c/code\u003e\u003c/a\u003e Reject negative depth; add overflow guards to prevent hang/crash\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/json/compare/v2.18.0...v2.19.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `loofah` from 2.25.0 to 2.25.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/flavorjones/loofah/releases\"\u003eloofah's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.25.1 / 2026-03-17\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure \u003ccode\u003eLoofah::HTML5::Scrub.allowed_uri?\u003c/code\u003e recognizes unescaped whitespace entities and rejects schemas containing them. See \u003ca href=\"https://github.com/flavorjones/loofah/security/advisories/GHSA-46fp-8f5p-pf2m\"\u003eGHSA-46fp-8f5p-pf2m\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/flavorjones/loofah/issues/302\"\u003e#302\u003c/a\u003e \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/flavorjones/loofah/blob/main/CHANGELOG.md\"\u003eloofah's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.25.1 / 2026-03-17\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure \u003ccode\u003eLoofah::HTML5::Scrub.allowed_uri?\u003c/code\u003e recognizes unescaped whitespace entities and rejects schemas containing them. See \u003ca href=\"https://github.com/flavorjones/loofah/security/advisories/GHSA-46fp-8f5p-pf2m\"\u003eGHSA-46fp-8f5p-pf2m\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/flavorjones/loofah/issues/302\"\u003e#302\u003c/a\u003e \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/flavorjones/loofah/commit/c895c8b2ac9c7255ca10c4e3083b8f0b019b7189\"\u003e\u003ccode\u003ec895c8b\u003c/code\u003e\u003c/a\u003e version bump to v2.25.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/flavorjones/loofah/commit/f4ebc9c5193dde759a57541062e490e86fc7c068\"\u003e\u003ccode\u003ef4ebc9c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/flavorjones/loofah/issues/302\"\u003e#302\u003c/a\u003e from flavorjones/flavorjones/better-allowed-uri\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/flavorjones/loofah/commit/9f4e5dbd79f63775b3ad6196fa391f8e807da156\"\u003e\u003ccode\u003e9f4e5db\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003eallowed_uri?\u003c/code\u003e to handle unescaped whitespace entities\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/flavorjones/loofah/commit/e6f47515f642b1868f9025e85429301fa6f8bb20\"\u003e\u003ccode\u003ee6f4751\u003c/code\u003e\u003c/a\u003e doc: Move security reporting to Github\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/flavorjones/loofah/compare/v2.25.0...v2.25.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/saturnflyer/ice_cube_select/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/saturnflyer/ice_cube_select/pull/10","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/saturnflyer%2Fice_cube_select/issues/10","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T20:50:11.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123647815","node_id":"PR_kwDORp4TWc7MznLJ","number":16,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":5,"pull_request":true,"closed_at":"2026-05-06T22:50:17.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:50:11.000Z","updated_at":"2026-05-06T22:50:18.000Z","time_to_close":3808806,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/hackclub/forge/network/alerts).\n\n\u003c/details\u003e\n\n\u003e **Note**\n\u003e Automatic rebases have been disabled on this pull request as it has been open for over 30 days.","html_url":"https://github.com/hackclub/forge/pull/16","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/hackclub%2Fforge/issues/16","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/16/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T20:49:42.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123644745","node_id":"PR_kwDODKRrHs7MzmiF","number":28,"state":"closed","title":"Bump the bundler group across 3 directories with 1 update","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-28T14:47:57.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:49:42.000Z","updated_at":"2026-03-28T14:47:58.000Z","time_to_close":410295,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":1,"packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"},{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"},{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 1 update in the /examples/rails7_app directory: [actionpack](https://github.com/rails/rails).\nBumps the bundler group with 1 update in the /examples/rails8_0_app directory: [actionpack](https://github.com/rails/rails).\nBumps the bundler group with 1 update in the /examples/rails8_1_app directory: [actionpack](https://github.com/rails/rails).\n\nUpdates `actionpack` from 8.1.2 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionpack` from 8.1.2 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actionpack` from 8.1.2 to 8.1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/mgmodell/devise-multi_email/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/mgmodell/devise-multi_email/pull/28","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/mgmodell%2Fdevise-multi_email/issues/28","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/28/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T20:49:33.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123643417","node_id":"PR_kwDOEAZMuc7MzmP3","number":171,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-04-07T04:29:43.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:49:33.000Z","updated_at":"2026-04-07T04:29:52.000Z","time_to_close":1237210,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/isprambiente/Partecipo/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/isprambiente/Partecipo/pull/171","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/isprambiente%2FPartecipo/issues/171","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/171/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T20:49:29.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123643014","node_id":"PR_kwDORi1QsM7MzmKj","number":16,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-03T00:50:11.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:49:29.000Z","updated_at":"2026-04-03T00:50:12.000Z","time_to_close":878442,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/romkey/pdxhackerspace-gunky/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/romkey/pdxhackerspace-gunky/pull/16","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/romkey%2Fpdxhackerspace-gunky/issues/16","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/16/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T20:49:20.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123641985","node_id":"PR_kwDOAGtp087Mzl87","number":2501,"state":"closed","title":"Build(deps): bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-04-10T13:00:59.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:49:20.000Z","updated_at":"2026-04-10T13:01:01.000Z","time_to_close":1527099,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Build(deps)","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e","html_url":"https://github.com/alphagov/travel-advice-publisher/pull/2501","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/alphagov%2Ftravel-advice-publisher/issues/2501","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2501/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T20:49:17.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123641718","node_id":"PR_kwDOMVkEO87Mzl5h","number":23,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-24T02:44:43.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:49:17.000Z","updated_at":"2026-03-24T02:44:44.000Z","time_to_close":21326,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/merrelltd72/song-tracker/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/merrelltd72/song-tracker/pull/23","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/merrelltd72%2Fsong-tracker/issues/23","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/23/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T20:49:09.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123640767","node_id":"PR_kwDOPodVpM7MzlsX","number":41,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-04T13:13:03.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:49:09.000Z","updated_at":"2026-04-04T13:13:04.000Z","time_to_close":1009434,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Grigore-George-Mihai/default_template_r8/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Grigore-George-Mihai/default_template_r8/pull/41","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Grigore-George-Mihai%2Fdefault_template_r8/issues/41","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/41/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T20:48:53.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123639052","node_id":"PR_kwDOALLjUs7MzlVe","number":584,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-04-12T17:12:01.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:48:53.000Z","updated_at":"2026-04-12T17:12:10.000Z","time_to_close":1714988,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/bunnymatic/mau/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/bunnymatic/mau/pull/584","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/bunnymatic%2Fmau/issues/584","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/584/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T20:48:46.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123638270","node_id":"PR_kwDOHS8Wr87MzlLI","number":172,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-25T00:21:23.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:48:46.000Z","updated_at":"2026-03-25T00:21:24.000Z","time_to_close":99157,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/unasuke/chachat/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/unasuke/chachat/pull/172","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/unasuke%2Fchachat/issues/172","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/172/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T20:48:36.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123637187","node_id":"PR_kwDOAUkijM7Mzk8Q","number":219,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-25T23:15:10.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:48:36.000Z","updated_at":"2026-03-25T23:15:11.000Z","time_to_close":181594,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/heroku/ruby-getting-started/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/heroku/ruby-getting-started/pull/219","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/heroku%2Fruby-getting-started/issues/219","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/219/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T20:48:21.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123635562","node_id":"PR_kwDOCDezGM7Mzklz","number":4180,"state":"closed","title":"chore(deps-dev): Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-03-23T22:24:09.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:48:21.000Z","updated_at":"2026-03-23T22:24:18.000Z","time_to_close":5748,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps-dev): Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/pooza/mulukhiya-toot-proxy/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/pooza/mulukhiya-toot-proxy/pull/4180","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pooza%2Fmulukhiya-toot-proxy/issues/4180","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4180/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T20:48:09.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123634331","node_id":"PR_kwDOOzEKC87MzkUo","number":190,"state":"closed","title":"build(deps): bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-11T12:48:53.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:48:09.000Z","updated_at":"2026-04-11T12:48:55.000Z","time_to_close":1612844,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e","html_url":"https://github.com/ekaraage/or4cle2/pull/190","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ekaraage%2For4cle2/issues/190","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/190/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T20:48:04.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123633911","node_id":"PR_kwDOENzk2M7MzkOu","number":2344,"state":"closed","title":"Bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-03-26T18:16:20.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:48:04.000Z","updated_at":"2026-03-26T18:16:22.000Z","time_to_close":250096,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Crown-Commercial-Service/crown-marketplace-legacy/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Crown-Commercial-Service/crown-marketplace-legacy/pull/2344","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Crown-Commercial-Service%2Fcrown-marketplace-legacy/issues/2344","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2344/packages"}},{"old_version":"8.1.2","new_version":"8.1.2.1","update_type":null,"path":null,"pr_created_at":"2026-03-23T20:47:59.000Z","version_change":"8.1.2 → 8.1.2.1","issue":{"uuid":"4123633412","node_id":"PR_kwDOQ6bEiM7MzkHk","number":5,"state":"closed","title":"chore(deps): bump actionpack from 8.1.2 to 8.1.2.1","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-23T21:17:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-23T20:47:59.000Z","updated_at":"2026-03-23T21:17:58.000Z","time_to_close":1797,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"actionpack","old_version":"8.1.2","new_version":"8.1.2.1","repository_url":"https://github.com/rails/rails"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [actionpack](https://github.com/rails/rails) from 8.1.2 to 8.1.2.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactionpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix possible XSS in DebugExceptions middleware\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33167]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJohn Hawthorn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.2.1/actionpack/CHANGELOG.md\"\u003eactionpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/rails/compare/v8.1.2...v8.1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actionpack\u0026package-manager=bundler\u0026previous-version=8.1.2\u0026new-version=8.1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/alec-c4/inertia_i18n/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/alec-c4/inertia_i18n/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/alec-c4%2Finertia_i18n/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"}}]}