Sourced from rack's changelog.

[2.2.19] - 2025-10-07

Security

• CVE-2025-61772 Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
• CVE-2025-61771 Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
• CVE-2025-61770 Unbounded multipart preamble buffering enables DoS (memory exhaustion)

• 4c4ea29 Bump patch version.
• c370dcd Limit amount of retained data when parsing multipart requests
• d869fed Fix denial of service vulnerbilties in multipart parsing
• See full diff in compare view

Sourced from rack's changelog.

[2.2.19] - 2025-10-07

Security

• CVE-2025-61772 Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
• CVE-2025-61771 Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
• CVE-2025-61770 Unbounded multipart preamble buffering enables DoS (memory exhaustion)

• 4c4ea29 Bump patch version.
• c370dcd Limit amount of retained data when parsing multipart requests
• d869fed Fix denial of service vulnerbilties in multipart parsing
• See full diff in compare view

Sourced from rack's changelog.

[2.2.19] - 2025-10-07

Security

• CVE-2025-61772 Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
• CVE-2025-61771 Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
• CVE-2025-61770 Unbounded multipart preamble buffering enables DoS (memory exhaustion)

• 4c4ea29 Bump patch version.
• c370dcd Limit amount of retained data when parsing multipart requests
• d869fed Fix denial of service vulnerbilties in multipart parsing
• See full diff in compare view

Sourced from rack's changelog.

[2.2.19] - 2025-10-07

Security

• CVE-2025-61772 Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
• CVE-2025-61771 Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
• CVE-2025-61770 Unbounded multipart preamble buffering enables DoS (memory exhaustion)

• 4c4ea29 Bump patch version.
• c370dcd Limit amount of retained data when parsing multipart requests
• d869fed Fix denial of service vulnerbilties in multipart parsing
• See full diff in compare view

Sourced from rack's changelog.

[2.2.19] - 2025-10-07

Security

• CVE-2025-61772 Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
• CVE-2025-61771 Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
• CVE-2025-61770 Unbounded multipart preamble buffering enables DoS (memory exhaustion)

• 4c4ea29 Bump patch version.
• c370dcd Limit amount of retained data when parsing multipart requests
• d869fed Fix denial of service vulnerbilties in multipart parsing
• See full diff in compare view

Sourced from rack's changelog.

[2.2.19] - 2025-10-07

Security

• CVE-2025-61772 Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
• CVE-2025-61771 Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
• CVE-2025-61770 Unbounded multipart preamble buffering enables DoS (memory exhaustion)

• 4c4ea29 Bump patch version.
• c370dcd Limit amount of retained data when parsing multipart requests
• d869fed Fix denial of service vulnerbilties in multipart parsing
• See full diff in compare view

Sourced from rack's changelog.

[2.2.19] - 2025-10-07

Security

• CVE-2025-61772 Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
• CVE-2025-61771 Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
• CVE-2025-61770 Unbounded multipart preamble buffering enables DoS (memory exhaustion)

• 4c4ea29 Bump patch version.
• c370dcd Limit amount of retained data when parsing multipart requests
• d869fed Fix denial of service vulnerbilties in multipart parsing
• See full diff in compare view

Sourced from rackup's changelog.

v2.1.0

• Correctly support streaming responses with webrick.

v2.0.0

• Initial release and migration of code from rack.

• eaea24a Bump minor version.
• 482635c Correctly support streaming responses with webrick. (#8)
• f3cab52 Update contributors according to enhanced mailmap.
• 036b1bd Bump major version.
• 686416d Install Ragel dependency for Puma.
• 690883d Test falcon and puma external test suites.
• 8321537 Add missing rackup executable.
• 1c1dfd6 Test on main rack.
• ce660d5 Revert "Prepare for Rack 2.x compatible release."
• See full diff in compare view

Sourced from rake's changelog.

=== 13.2.1

• Suppressed "internal:array:52:in 'Array#each'" from backtrace by @​hsbt in #554
• Bump actions/configure-pages from 4 to 5 by @​dependabot in #553

=== 13.2.0

• Fix rule example to be correct by @​zenspider in #525
• Switch to use test-unit by @​hsbt in #536
• Removed redundant block by @​hsbt in #537
• Use Struct instead of OpenStruct. by @​hsbt in #545
• Accept FileList object as directory task's target by @​gemmaro in #530
• Fix exception when exception has nil backtrace by @​janbiedermann in #451
• Add TruffleRuby on CI by @​andrykonchin in #551

=== 13.1.0

• Added dependabot.yml for actions by @​hsbt in #416
• Add Ruby 3.1 to the CI matrix by @​petergoldstein in #415
• (Performance) Remove unnecessary I/O syscalls for FileTasks by @​da2x in #393
• Skip test failure with JRuby by @​hsbt in #418
• Remove bin/rdoc by @​tnir in #421
• Remove bin/rake by @​tnir in #422
• Remove bin/bundle by @​tnir in #425
• Apply RuboCop linting for Ruby 2.3 by @​tnir in #423
• Update rubocop to work with Ruby 2.4 compatible by @​tnir in #424
• chore: fix typo in comments by @​tnir in #429
• Use 'test' as workflow name on Actions by @​tnir in #427
• docs: update CONTRIBUTING.rdoc by @​tnir in #428
• Add RuboCop job to Actions by @​tnir in #426
• Lock minitest-5.15.0 for Ruby 2.2 by @​hsbt in #442
• Eagerly require set in thread_pool.rb by @​jeremyevans in #440
• Avoid creating an unnecessary thread pool by @​jeremyevans in #441
• Add credit for maintenance in Rake 12/13 by @​tnir in #443
• Sh fully echoes commands which error exit by @​MarkDBlackwell in #147
• Correct RuboCop offenses by @​deivid-rodriguez in #444
• [StepSecurity] ci: Harden GitHub Actions by @​step-security-bot in #450
• Add ruby 3.2 to test matrix by @​hanneskaeufler in #458
• Missing 'do' on example by @​zzak in #467
• Try to use dependabot automerge by @​hsbt in #470
• Rewrite auto-merge feature for dependabot by @​hsbt in #471
• Update bundler in Dependabot by @​ono-max in #472
• Fix grammar in help text by @​mebezac in #381
• Try to use ruby/ruby/.github/workflows/ruby_versions.yml@master by @​hsbt in #475
• Use GitHub Pages Action for generating rdoc page by @​hsbt in #477
• Support #detailed_message when task failed by @​ksss in #486
• Debug at stop when task fail by @​ksss in #489
• Drop to support Ruby 2.2 by @​hsbt in #492
• Bump up setup-ruby by @​hsbt in #497
• Update development dependencies by @​hsbt in #505

... (truncated)

• d84f6ef Bump up 13.2.1
• 8b33b36 Merge pull request #553 from ruby/dependabot/github_actions/actions/configure...
• 99f6823 Merge pull request #554 from ruby/suppress-array-internal
• 54950e0 Suppressed "<internal:array>:52:in 'Array#each'" from backtrace
• 675498c Bump up 13.2.0
• 3dc4277 Bump actions/configure-pages from 4 to 5
• c68e010 Merge pull request #549 from ruby/dependabot/github_actions/dependabot/fetch-...
• 2cb46b6 Merge pull request #551 from andrykonchin/ak/restore-truffleruby-on-ci
• c342e96 Add TruffleRuby on CI
• d569f0f Merge pull request #550 from ruby/dependabot/github_actions/ruby/setup-ruby-1...
• Additional commits viewable in compare view

Sourced from rexml's releases.

REXML 3.4.4 - 2025-09-10

Improvement

• Accept REXML::Document.new("") for backward compatibility
  • GH-296
  • GH-295
  • Patch by NAITOH Jun
  • Reported by Joe Rafaniello

Thanks

• NAITOH Jun

• Joe Rafaniello

Sourced from rexml's changelog.

3.4.4 - 2025-09-10 {#version-3-4-4}

Improvement

• Accept REXML::Document.new("") for backward compatibility
  • GH-296
  • GH-295
  • Patch by NAITOH Jun
  • Reported by Joe Rafaniello

Thanks

• NAITOH Jun

• Joe Rafaniello

• 4f32ea3 Add 3.4.4 entry (#297)
• 37cde3f Accept REXML::Document.new("") for backward compatibility (#295)
• 4ffe211 Bump version
• See full diff in compare view

Sourced from rubyzip's releases.

v3.1.1

Version 3.1.1

The 3.1.x line adds AES decryption.

⚠️ There are breaking changes in the 3.x series ⚠️

Please see the README and Updating to version 3.x in the wiki for help upgrading from version 2.4.x to version 3.x.

Sourced from rubyzip's changelog.

3.1.1 (2025-09-26)

• Improve the IO pipeline when decompressing. #649 (which also fixes #647)

Tooling/internal:

• Improve the DecryptedIo class with various updates and optimizations.
• Remove the NullDecrypter class.
• Properly convert the test suite to use minitest.
• Move all test helper code into separate files.
• Updates to the Actions CI, including new OS versions.
• Update rubocop versions and fix resultant cop failures. #646

• f87340d Update version number and Changelog for release.
• 813d96d Add a Rubocop badge to the README.
• 61c25b0 Reduce the number of YJIT test runs in CI.
• 69dcb8e Allow Windows CI builds to fail.
• da44b2c Update OS versions in the Actions CI.
• fd78455 Use require_relative when pulling in test_helper.
• 78848c5 Only require test helpers where they are needed.
• e55f7c9 Move all test helper code into separate files.
• 5f1fcb2 Remove unnecessary perms from gentestfiles.rb.
• ceabd03 Remove unnecessary requires from test_helper.rb.
• Additional commits viewable in compare view

Sourced from rack's changelog.

[2.2.19] - 2025-10-07

Security

• CVE-2025-61772 Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
• CVE-2025-61771 Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
• CVE-2025-61770 Unbounded multipart preamble buffering enables DoS (memory exhaustion)

• 4c4ea29 Bump patch version.
• c370dcd Limit amount of retained data when parsing multipart requests
• d869fed Fix denial of service vulnerbilties in multipart parsing
• See full diff in compare view

Sourced from rackup's changelog.

v2.1.0

• Correctly support streaming responses with webrick.

v2.0.0

• Initial release and migration of code from rack.

• eaea24a Bump minor version.
• 482635c Correctly support streaming responses with webrick. (#8)
• f3cab52 Update contributors according to enhanced mailmap.
• 036b1bd Bump major version.
• 686416d Install Ragel dependency for Puma.
• 690883d Test falcon and puma external test suites.
• 8321537 Add missing rackup executable.
• 1c1dfd6 Test on main rack.
• ce660d5 Revert "Prepare for Rack 2.x compatible release."
• See full diff in compare view

Sourced from rake's changelog.

=== 13.2.1

• Suppressed "internal:array:52:in 'Array#each'" from backtrace by @​hsbt in #554
• Bump actions/configure-pages from 4 to 5 by @​dependabot in #553

=== 13.2.0

• Fix rule example to be correct by @​zenspider in #525
• Switch to use test-unit by @​hsbt in #536
• Removed redundant block by @​hsbt in #537
• Use Struct instead of OpenStruct. by @​hsbt in #545
• Accept FileList object as directory task's target by @​gemmaro in #530
• Fix exception when exception has nil backtrace by @​janbiedermann in #451
• Add TruffleRuby on CI by @​andrykonchin in #551

=== 13.1.0

• Added dependabot.yml for actions by @​hsbt in #416
• Add Ruby 3.1 to the CI matrix by @​petergoldstein in #415
• (Performance) Remove unnecessary I/O syscalls for FileTasks by @​da2x in #393
• Skip test failure with JRuby by @​hsbt in #418
• Remove bin/rdoc by @​tnir in #421
• Remove bin/rake by @​tnir in #422
• Remove bin/bundle by @​tnir in #425
• Apply RuboCop linting for Ruby 2.3 by @​tnir in #423
• Update rubocop to work with Ruby 2.4 compatible by @​tnir in #424
• chore: fix typo in comments by @​tnir in #429
• Use 'test' as workflow name on Actions by @​tnir in #427
• docs: update CONTRIBUTING.rdoc by @​tnir in #428
• Add RuboCop job to Actions by @​tnir in #426
• Lock minitest-5.15.0 for Ruby 2.2 by @​hsbt in #442
• Eagerly require set in thread_pool.rb by @​jeremyevans in #440
• Avoid creating an unnecessary thread pool by @​jeremyevans in #441
• Add credit for maintenance in Rake 12/13 by @​tnir in #443
• Sh fully echoes commands which error exit by @​MarkDBlackwell in #147
• Correct RuboCop offenses by @​deivid-rodriguez in #444
• [StepSecurity] ci: Harden GitHub Actions by @​step-security-bot in #450
• Add ruby 3.2 to test matrix by @​hanneskaeufler in #458
• Missing 'do' on example by @​zzak in #467
• Try to use dependabot automerge by @​hsbt in #470
• Rewrite auto-merge feature for dependabot by @​hsbt in #471
• Update bundler in Dependabot by @​ono-max in #472
• Fix grammar in help text by @​mebezac in #381
• Try to use ruby/ruby/.github/workflows/ruby_versions.yml@master by @​hsbt in #475
• Use GitHub Pages Action for generating rdoc page by @​hsbt in #477
• Support #detailed_message when task failed by @​ksss in #486
• Debug at stop when task fail by @​ksss in #489
• Drop to support Ruby 2.2 by @​hsbt in #492
• Bump up setup-ruby by @​hsbt in #497
• Update development dependencies by @​hsbt in #505

... (truncated)

• d84f6ef Bump up 13.2.1
• 8b33b36 Merge pull request #553 from ruby/dependabot/github_actions/actions/configure...
• 99f6823 Merge pull request #554 from ruby/suppress-array-internal
• 54950e0 Suppressed "<internal:array>:52:in 'Array#each'" from backtrace
• 675498c Bump up 13.2.0
• 3dc4277 Bump actions/configure-pages from 4 to 5
• c68e010 Merge pull request #549 from ruby/dependabot/github_actions/dependabot/fetch-...
• 2cb46b6 Merge pull request #551 from andrykonchin/ak/restore-truffleruby-on-ci
• c342e96 Add TruffleRuby on CI
• d569f0f Merge pull request #550 from ruby/dependabot/github_actions/ruby/setup-ruby-1...
• Additional commits viewable in compare view

Sourced from rack's changelog.

[2.2.19] - 2025-10-07

Security

• CVE-2025-61772 Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
• CVE-2025-61771 Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
• CVE-2025-61770 Unbounded multipart preamble buffering enables DoS (memory exhaustion)

• 4c4ea29 Bump patch version.
• c370dcd Limit amount of retained data when parsing multipart requests
• d869fed Fix denial of service vulnerbilties in multipart parsing
• See full diff in compare view

Sourced from rack's changelog.

[2.2.19] - 2025-10-07

Security

• CVE-2025-61772 Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
• CVE-2025-61771 Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
• CVE-2025-61770 Unbounded multipart preamble buffering enables DoS (memory exhaustion)

• 4c4ea29 Bump patch version.
• c370dcd Limit amount of retained data when parsing multipart requests
• d869fed Fix denial of service vulnerbilties in multipart parsing
• See full diff in compare view

Sourced from rack's changelog.

[2.2.19] - 2025-10-07

Security

• CVE-2025-61772 Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
• CVE-2025-61771 Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
• CVE-2025-61770 Unbounded multipart preamble buffering enables DoS (memory exhaustion)

• 4c4ea29 Bump patch version.
• c370dcd Limit amount of retained data when parsing multipart requests
• d869fed Fix denial of service vulnerbilties in multipart parsing
• See full diff in compare view

Sourced from rails's releases.

8.0.3

Active Support

• ActiveSupport::FileUpdateChecker does not depend on Time.now to prevent unnecessary reloads with time travel test helpers

  Jan Grodowski

• Fix ActiveSupport::BroadcastLogger from executing a block argument for each logger (tagged, info, etc.).

  Jared Armstrong

• Make ActiveSupport::Logger #freeze-friendly.

  Joshua Young

• Fix ActiveSupport::HashWithIndifferentAccess#transform_keys! removing defaults.

  Hartley McGuire

• Fix ActiveSupport::HashWithIndifferentAccess#tranform_keys! to handle collisions.

  If the transformation would result in a key equal to another not yet transformed one, it would result in keys being lost.

  Before:

  >> {a: 1, b: 2}.with_indifferent_access.transform_keys!(&:succ)
  => {"c" => 1}
  

  After:

  >> {a: 1, b: 2}.with_indifferent_access.transform_keys!(&:succ)
  => {"c" => 1, "d" => 2}
  

  Jason T Johnson, Jean Boussier

• Fix ActiveSupport::Cache::MemCacheStore#read_multi to handle network errors.

  This method specifically wasn't handling network errors like other codepaths.

  Alessandro Dal Grande

• Fix configuring RedisCacheStore with raw: true.

  fatkodima

... (truncated)

• 529f933 Preparing for 8.0.3 release
• 6409b24 Merge pull request #55719 from skipkayhil/hm-fix-label-for-namespace
• 030f68c Remove lock for rdoc gem in Gemfile
• 0160f42 Sync CHANGELOGs
• 6394bfb Merge pull request #55725 from byroot/js-include-type-module-sym
• 0ff0d09 Merge pull request #55724 from fatkodima/preserve-locale-eml-preview
• 74038d7 Merge pull request #55722 from kozy4324/fix-lease-sticky-flag-timing
• 78fe965 Merge pull request #55710 from Shopify/grodowski/file-update-checker-time-tra...
• 4fc9618 Merge pull request #55703 from byroot/hly-fix-query-cache-system-tests-2
• 847072c Fix TransitionTable#as_json compatibility with json 2.14.0
• Additional commits viewable in compare view

Sourced from rack's changelog.

[2.2.19] - 2025-10-07

Security

• CVE-2025-61772 Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
• CVE-2025-61771 Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
• CVE-2025-61770 Unbounded multipart preamble buffering enables DoS (memory exhaustion)

• 4c4ea29 Bump patch version.
• c370dcd Limit amount of retained data when parsing multipart requests
• d869fed Fix denial of service vulnerbilties in multipart parsing
• See full diff in compare view

Sourced from actioncable's releases.

8.0.3

Active Support

• ActiveSupport::FileUpdateChecker does not depend on Time.now to prevent unnecessary reloads with time travel test helpers

  Jan Grodowski

• Fix ActiveSupport::BroadcastLogger from executing a block argument for each logger (tagged, info, etc.).

  Jared Armstrong

• Make ActiveSupport::Logger #freeze-friendly.

  Joshua Young

• Fix ActiveSupport::HashWithIndifferentAccess#transform_keys! removing defaults.

  Hartley McGuire

• Fix ActiveSupport::HashWithIndifferentAccess#tranform_keys! to handle collisions.

  If the transformation would result in a key equal to another not yet transformed one, it would result in keys being lost.

  Before:

  >> {a: 1, b: 2}.with_indifferent_access.transform_keys!(&:succ)
  => {"c" => 1}
  

  After:

  >> {a: 1, b: 2}.with_indifferent_access.transform_keys!(&:succ)
  => {"c" => 1, "d" => 2}
  

  Jason T Johnson, Jean Boussier

• Fix ActiveSupport::Cache::MemCacheStore#read_multi to handle network errors.

  This method specifically wasn't handling network errors like other codepaths.

  Alessandro Dal Grande

• Fix configuring RedisCacheStore with raw: true.

  fatkodima

... (truncated)

Sourced from actioncable's changelog.

Rails 8.0.3 (September 22, 2025)

• Fixed compatibility with redis gem 5.4.1

  Jean Boussier

• Fixed a possible race condition in stream_from.

  OuYangJinTing

Rails 8.0.2.1 (August 13, 2025)

• No changes.

Rails 8.0.2 (March 12, 2025)

• No changes.

Rails 8.0.1 (December 13, 2024)

• Ensure the Postgresql adapter always use a dedicated connection even during system tests.

  Fix an issue with the Action Cable Postgresql adapter causing deadlock or various weird pg client error during system tests.

  Jean Boussier

Rails 8.0.0.1 (December 10, 2024)

• No changes.

Rails 8.0.0 (November 07, 2024)

• No changes.

Rails 8.0.0.rc2 (October 30, 2024)

• No changes.

Rails 8.0.0.rc1 (October 19, 2024)

• No changes.

... (truncated)

• 529f933 Preparing for 8.0.3 release
• 0160f42 Sync CHANGELOGs
• 5eb4c3d Merge pull request #54031 from bai/bun-lockfile-txt
• b2ad417 Merge security patches in 8-0-stable
• b0c813b Preparing for 8.0.2.1 release
• 5f3b209 Replace "mailing list" with "forum" [ci-skip]
• e0278f5 Merge pull request #55359 from byroot/actioncable-redis-5.4.1-compat
• cb04cf5 Appease rubocop
• 11493e8 Fix changelog formatting
• f5b8826 Merge pull request #55201 from OuYangJinTing/fix/actioncable/channel
• Additional commits viewable in compare view

Sourced from actionmailbox's releases.

8.0.3

Active Support

• ActiveSupport::FileUpdateChecker does not depend on Time.now to prevent unnecessary reloads with time travel test helpers

  Jan Grodowski

• Fix ActiveSupport::BroadcastLogger from executing a block argument for each logger (tagged, info, etc.).

  Jared Armstrong

• Make ActiveSupport::Logger #freeze-friendly.

  Joshua Young

• Fix ActiveSupport::HashWithIndifferentAccess#transform_keys! removing defaults.

  Hartley McGuire

• Fix ActiveSupport::HashWithIndifferentAccess#tranform_keys! to handle collisions.

  If the transformation would result in a key equal to another not yet transformed one, it would result in keys being lost.

  Before:

  >> {a: 1, b: 2}.with_indifferent_access.transform_keys!(&:succ)
  => {"c" => 1}
  

  After:

  >> {a: 1, b: 2}.with_indifferent_access.transform_keys!(&:succ)
  => {"c" => 1, "d" => 2}
  

  Jason T Johnson, Jean Boussier

• Fix ActiveSupport::Cache::MemCacheStore#read_multi to handle network errors.

  This method specifically wasn't handling network errors like other codepaths.

  Alessandro Dal Grande

• Fix configuring RedisCacheStore with raw: true.

  fatkodima

... (truncated)

Sourced from actionmailbox's changelog.

Rails 8.0.3 (September 22, 2025)

• No changes.

Rails 8.0.2.1 (August 13, 2025)

• No changes.

Rails 8.0.2 (March 12, 2025)

• No changes.

Rails 8.0.1 (December 13, 2024)

• No changes.

Rails 8.0.0.1 (December 10, 2024)

• No changes.

Rails 8.0.0 (November 07, 2024)

• No changes.

Rails 8.0.0.rc2 (October 30, 2024)

• No changes.

Rails 8.0.0.rc1 (October 19, 2024)

• No changes.

Rails 8.0.0.beta1 (September 26, 2024)

Please check 7-2-stable for previous changes.

• 529f933 Preparing for 8.0.3 release
• b2ad417 Merge security patches in 8-0-stable
• b0c813b Preparing for 8.0.2.1 release
• 5308e75 Merge pull request #53383 from Earlopain/rack-3.2-deprecation
• 2ec3115 Fix CHANGELOG
• 3235827 Preparing for 8.0.2 release
• 6644442 Merge pull request #54617 from byroot/move-strict-warnings
• cf6ff17 Preparing for 8.0.1 release
• a993c27 Preparing for 8.0.0.1 release
• dd8f718 Preparing for 8.0.0 release
• Additional commits viewable in compare view

Sourced from actionmailer's releases.

8.0.3

Active Support

• ActiveSupport::FileUpdateChecker does not depend on Time.now to prevent unnecessary reloads with time travel test helpers

  Jan Grodowski

• Fix ActiveSupport::BroadcastLogger from executing a block argument for each logger (tagged, info, etc.).

  Jared Armstrong

• Make ActiveSupport::Logger #freeze-friendly.

  Joshua Young

• Fix ActiveSupport::HashWithIndifferentAccess#transform_keys! removing defaults.

  Hartley McGuire

• Fix ActiveSupport::HashWithIndifferentAccess#tranform_keys! to handle collisions.

  If the transformation would result in a key equal to another not yet transformed one, it would result in keys being lost.

  Before:

  >> {a: 1, b: 2}.with_indifferent_access.transform_keys!(&:succ)
  => {"c" => 1}
  

  After:

  >> {a: 1, b: 2}.with_indifferent_access.transform_keys!(&:succ)
  => {"c" => 1, "d" => 2}
  

  Jason T Johnson, Jean Boussier

• Fix ActiveSupport::Cache::MemCacheStore#read_multi to handle network errors.

  This method specifically wasn't handling network errors like other codepaths.

  Alessandro Dal Grande

• Fix configuring RedisCacheStore with raw: true.

  fatkodima

... (truncated)