Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

actionview

Ecosystem:
rubygems
Package URL:
pkg:gem/actionview
Total PRs:
185 Dependabot PRs
Latest PR:
17 days ago
Unique Repositories:
138 repositories
Unique Repos (30 days):
2 repositories
Security Advisories
actionview contains Path Traversal vulnerability
GHSA-vx9j-46rh-fqr8 CVE-2016-2097 MODERATE published over 8 years ago • updated about 2 hours ago
There is a possible directory traversal and information leak vulnerability in Action View. This was meant to be fixed on CVE-2016-0752. However the...
Directory traversal vulnerability in Action View in Ruby on Rails
GHSA-xrr4-p6fq-hjg7 CVE-2016-0752 HIGH published over 8 years ago • updated about 2 hours ago
Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x b...
XSS Vulnerability in Action View tag helpers
GHSA-ch3h-j2vf-95pv CVE-2022-27777 MODERATE published about 4 years ago • updated about 3 hours ago
There is a possible XSS vulnerability in Action View tag helpers. Passing untrusted input as hash keys can lead to a possible XSS vulnerability. Th...
Path Traversal in Action View
GHSA-86g5-2wh3-gc9j CVE-2019-5418 HIGH published about 7 years ago • updated 15 days ago
# File Content Disclosure in Action View Impact ------ There is a possible file content disclosure vulnerability in Action View. Specially craf...
Rails has a possible XSS vulnerability in its Action View tag helpers
GHSA-v55j-83pf-r9cq CVE-2026-33168 LOW published 2 months ago • updated 4 days ago
### Impact When a blank string is used as an HTML attribute name in Action View tag helpers, the attribute escaping is bypassed, producing malforme...
View all 12 advisories
Recent PRs (filtered by: Patch PRs )
RSS Feed Clear filter
Bump the bundler group across 1 directory with 18 updates

EthanThePhoenix38/openproject #11

8.0.2.1 → 8.0.5 Patch PR
Closed 17 days ago 1 comment
EthanThePhoenix38
Bump the bundler group across 1 directory with 16 updates

EthanThePhoenix38/openproject #8

8.0.2.1 → 8.0.4.1 Patch PR
Closed 27 days ago 1 comment
EthanThePhoenix38
Bump the bundler group across 1 directory with 17 updates

LelandParker/openproject #11

8.0.2 → 8.0.4.1 Patch PR
Closed 27 days ago 1 comment
LelandParker
[bundler] Bump the rails group with 4 updates

guideline-tech/subroutine #178

8.1.2.1 → 8.1.3 Patch PR
Open 2 months ago 1 comment
guideline-tech
:arrow_up: Bump actionview from 8.1.2.1 to 8.1.3

pglombardo/PasswordPusher #4311

8.1.2.1 → 8.1.3 Patch PR
Closed 2 months ago 2 comments
pglombardo
DEPS: Bump the rails group with 8 updates

discourse/discourse #38840

8.0.4 → 8.0.5 Patch PR
Open 2 months ago 1 comment
discourse
Bump the bundler group across 1 directory with 9 updates

LelandParker/openproject #4

8.0.2 → 8.0.4.1 Patch PR
Closed 2 months ago 1 comment
LelandParker
Bump actionview from 7.2.2.2 to 7.2.3.1

communitiesuk/submit-social-housing-lettings-and-sales-data #3265

7.2.2.2 → 7.2.3.1 Patch PR
Open 2 months ago 1 comment
communitiesuk
Bump actionview from 7.2.2.2 to 7.2.3.1

curationexperts/cypripedium #746

7.2.2.2 → 7.2.3.1 Patch PR
Open 2 months ago 1 comment
curationexperts
chore(deps): bump actionview from 7.2.2.2 to 7.2.3.1

Bulletdev/prostaff-api #25

7.2.2.2 → 7.2.3.1 Patch PR
Open 2 months ago 4 comments
Bulletdev
Bump actionview from 7.2.2.2 to 7.2.3.1

snex/xpg #99

7.2.2.2 → 7.2.3.1 Patch PR
Closed 2 months ago 1 comment
snex
Bump actionview from 7.2.2.2 to 7.2.3.1

nelsonfigueroa/personal-finance #102

7.2.2.2 → 7.2.3.1 Patch PR
Closed 2 months ago 1 comment
nelsonfigueroa
build(deps): bump actionview from 8.0.3 to 8.0.4.1 in the bundler group across 1 directory

Wbaker7702/nemo #227

8.0.3 → 8.0.4.1 Patch PR
Open 2 months ago 2 comments
Wbaker7702
build(deps): bump actionview from 8.0.3 to 8.0.4.1

maxfierke/resumis #905

8.0.3 → 8.0.4.1 Patch PR
Closed 2 months ago 1 comment
maxfierke
Bump actionview from 8.0.3 to 8.0.4.1

universalbit-dev/mastodon #34

8.0.3 → 8.0.4.1 Patch PR
Closed 2 months ago 1 comment
universalbit-dev
build(deps): Bump actionview from 8.0.2.1 to 8.0.4.1 in /shopato

getsentry/gib-potato #386

8.0.2.1 → 8.0.4.1 Patch PR
Closed 2 months ago 2 comments
getsentry
Bump actionview from 8.0.2.1 to 8.0.4.1

mogya/dengen_map #175

8.0.2.1 → 8.0.4.1 Patch PR
Closed 2 months ago 6 comments
mogya
Bump actionview from 8.0.2.1 to 8.0.4.1

Betterment/journaled #66

8.0.2.1 → 8.0.4.1 Patch PR
Closed 2 months ago 5 comments
Betterment
chore(deps): bump actionview from 8.0.3 to 8.0.4.1

hellodhlyn/baql #38

8.0.3 → 8.0.4.1 Patch PR
Closed 2 months ago 1 comment
hellodhlyn
build(deps): bump actionview from 8.0.2.1 to 8.0.4.1

GovWifi/govwifi-admin #2574

8.0.2.1 → 8.0.4.1 Patch PR
Closed 2 months ago 1 comment
GovWifi
Bump actionview from 8.1.1 to 8.1.2.1

monkee45/beans #25

8.1.1 → 8.1.2.1 Patch PR
Closed 2 months ago 1 comment
monkee45
build(deps): bump actionview from 8.1.1 to 8.1.2.1

betadots/hdm #783

8.1.1 → 8.1.2.1 Patch PR
Open 2 months ago 3 comments
betadots
Bump actionview from 8.1.1 to 8.1.2.1

bensheldon/open311status #405

8.1.1 → 8.1.2.1 Patch PR
Closed 2 months ago 1 comment
bensheldon
Bump actionview from 8.1.1 to 8.1.2.1

qbwc/qbwc #167

8.1.1 → 8.1.2.1 Patch PR
Closed 2 months ago 2 comments
qbwc
build(deps): bump the dependencies group across 1 directory with 11 updates

bronko-media/bronko.media.server #468

8.1.0 → 8.1.2 Patch PR
Closed 4 months ago 1 comment
bronko-media
Bump the dependencies group across 1 directory with 15 updates

moneybird/mail_auto_link_obfuscation #287

8.1.1 → 8.1.2 Patch PR
Closed 5 months ago 1 comment
moneybird
Update actionview requirement from >= 6, < 8.1.2 to >= 6, < 8.1.3

alphagov/govspeak #462

>= 6, < 8.1.2 → >= 6, < 8.1.3 Patch PR
Open 5 months ago 1 comment
alphagov
Bump actionview from 8.1.1 to 8.1.2

ecosyste-ms/ost #837

8.1.1 → 8.1.2 Patch PR
Closed 5 months ago 1 comment
ecosyste-ms
Bump actionview from 8.1.1 to 8.1.2

ecosyste-ms/papers #673

8.1.1 → 8.1.2 Patch PR
Closed 5 months ago 1 comment
ecosyste-ms
deps(deps): bump the production-dependencies group with 54 updates

patrick204nqh/dbwatcher #79

7.2.2.2 → 7.2.3 Patch PR
Open 5 months ago 3 comments
patrick204nqh
Build(deps): Bump the rails group with 8 updates

greptile-bench/discourse #109

8.0.2.1 → 8.0.4 Patch PR
Open 6 months ago 2 comments
greptile-bench
Build(deps): Bump the rails group with 8 updates

greptile-bench/discourse #69

8.0.2.1 → 8.0.4 Patch PR
Open 7 months ago 2 comments
greptile-bench
Build(deps): Bump the rails group with 8 updates

greptile-bench/discourse #13

8.0.2.1 → 8.0.4 Patch PR
Open 7 months ago 4 comments
greptile-bench
Chore(deps): Bump the bundler group with 25 updates

ministryofjustice/legal-framework-api #1621

8.0.3 → 8.0.4 Patch PR
Open 7 months ago 1 comment
ministryofjustice
Bump actionview from 8.1.0 to 8.1.1

davidrunger/runger_config #390

8.1.0 → 8.1.1 Patch PR
Closed 7 months ago 1 comment
davidrunger
build(deps): Bump actionview from 8.0.3 to 8.0.4

ecosyste-ms/dashboards #303

8.0.3 → 8.0.4 Patch PR
Closed 7 months ago 1 comment
ecosyste-ms
Bump actionview from 8.0.3 to 8.0.4

ecosyste-ms/ost #751

8.0.3 → 8.0.4 Patch PR
Closed 7 months ago 1 comment
ecosyste-ms
Bump actionview from 7.2.2.2 to 7.2.3

wyeworks/nucore-open #5756

7.2.2.2 → 7.2.3 Patch PR
Closed 7 months ago 1 comment
wyeworks
Bump actionview from 8.0.3 to 8.0.4

ecosyste-ms/advisories #852

8.0.3 → 8.0.4 Patch PR
Closed 7 months ago 1 comment
ecosyste-ms
:arrow_up: Bump actionview from 8.0.3 to 8.0.4

pglombardo/PasswordPusher #3813

8.0.3 → 8.0.4 Patch PR
Closed 7 months ago 3 comments
pglombardo
Bump actionview from 8.0.3 to 8.0.4

ecosyste-ms/awesome #574

8.0.3 → 8.0.4 Patch PR
Closed 7 months ago 1 comment
ecosyste-ms
build(deps): bump the all-dependencies group with 3 updates

github/rubocop-rails-accessibility #185

8.0.2.1 → 8.0.3 Patch PR
Merged 8 months ago
github
Bump actionview from 8.0.2.1 to 8.0.3

middleman/middleman #2859

8.0.2.1 → 8.0.3 Patch PR
Open 8 months ago
middleman
Bump the semver_updates group with 22 updates

botandrosedesign/rw24 #151

8.0.2.1 → 8.0.3 Patch PR
Open 8 months ago
botandrosedesign
Chore(deps): Bump the bundler group with 25 updates

ministryofjustice/laa-hmrc-interface-service-api #2267

8.0.2.1 → 8.0.3 Patch PR
Open 8 months ago
ministryofjustice
Update actionview requirement from >= 6, < 8.0.3 to >= 6, < 8.0.4

alphagov/govspeak #445

>= 6, < 8.0.3 → >= 6, < 8.0.4 Patch PR
Merged 8 months ago 1 comment
alphagov
Update actionview requirement from >= 6, < 8.0.3 to >= 6, < 8.0.4

alphagov/govuk_content_block_tools #98

>= 6, < 8.0.3 → >= 6, < 8.0.4 Patch PR
Merged 8 months ago
alphagov
build(deps): bump the dependencies group across 1 directory with 4 updates

bronko-media/bronko.media.server #440

8.0.2.1 → 8.0.3 Patch PR
Open 8 months ago
bronko-media
Chore(deps): Bump the bundler group with 23 updates

ministryofjustice/laa-assure-hmrc-data #1627

8.0.2.1 → 8.0.3 Patch PR
Closed 8 months ago 2 comments
ministryofjustice
Bump the bundler group with 21 updates

ministryofjustice/laa-court-data-ui #3093

8.0.2.1 → 8.0.3 Patch PR
Merged 8 months ago 1 comment
ministryofjustice
Package Details
Name: actionview
Ecosystem: rubygems
PURL Type: gem
Package URL: pkg:gem/actionview
JSON API: View JSON
Security Advisories

12

Active advisories
HIGH 4
MODERATE 7
LOW 1
View All gem Advisories
Package Information
Description:

Simple, battle-tested conventions and helpers for building web pages.

Repository: https://github.com/rails/rails
Homepage: https://rubyonrails.org
Latest Release: 8.0.2
about 1 year ago
Dependent Repos: 601,072
Dependent Packages: 369
Downloads: 605,374,996
Ranking: Top 0.024% by dependent repos Top 0.0273% by downloads Top 0.1249% by dependent pkgs
PR Status
Open 72 (38.9%)
Merged 25 (13.5%)
Closed 88 (47.6%)
PR Types
Major 4 (2.2%)
Minor 5 (2.7%)
Patch 81 (43.8%)