Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

activerecord

Ecosystem:
rubygems
Package URL:
pkg:gem/activerecord
Total PRs:
1,409 Dependabot PRs
Latest PR:
24 days ago
Unique Repositories:
1,163 repositories
Unique Repos (30 days):
1 repository
Security Advisories
Array data injection vulnerability in activerecord
GHSA-hqf9-rc9j-5fmj CVE-2014-0080 MODERATE published over 8 years ago • updated 3 days ago
SQL injection vulnerability in `activerecord/lib/active_record/connection_adapters/postgresql/cast.rb` in Active Record in Ruby on Rails 4.0.x befo...
Active Record vulnerable to SQL Injection via nested query parameters
GHSA-fh39-v733-mxfr CVE-2012-2661 MODERATE published over 8 years ago • updated about 2 hours ago
The Active Record component in Ruby on Rails 3.0.x before 3.0.13, 3.1.x before 3.1.5, and 3.2.x before 3.2.4 does not properly implement the passin...
Active Record contains SQL Injection
GHSA-gh2w-j7cx-2664 CVE-2012-6496 HIGH published over 8 years ago • updated about 2 hours ago
SQL injection vulnerability in the Active Record component in Ruby on Rails before 2.3.15, 3.0.x before 3.0.18, 3.1.x before 3.1.9, and 3.2.x befor...
Denial of Service Vulnerability in ActiveRecord's PostgreSQL adapter
GHSA-579w-22j4-4749 CVE-2022-44566 HIGH published over 3 years ago • updated 4 days ago
There is a potential denial of service vulnerability present in ActiveRecord's PostgreSQL adapter. This has been assigned the CVE identifier CVE-2...
ActiveRecord vulnerable to modification of protected model attributes
GHSA-gr44-7grc-37vq CVE-2013-0276 MODERATE published over 8 years ago • updated about 2 hours ago
ActiveRecord in Ruby on Rails before 2.3.17, 3.1.x before 3.1.11, and 3.2.x before 3.2.12 allows remote attackers to bypass the `attr_protected` pr...
View all 23 advisories
Recent PRs
RSS Feed
Bump the bundler group across 1 directory with 17 updates

LelandParker/openproject #11

8.0.2 → 8.0.4.1 Patch PR
Closed 24 days ago 1 comment
LelandParker
Bump activerecord from 7.0.4.2 to 7.1.6

jockeman/Idlarn #23

7.0.4.2 → 7.1.6 Minor PR
Closed about 2 months ago 1 comment
jockeman
Bump activerecord from 8.1.2 to 8.1.3

communitiesuk/epb-data-warehouse #495

8.1.2 → 8.1.3 Patch PR
Open about 2 months ago 2 comments
communitiesuk
chore(deps): bump activerecord from 8.1.2 to 8.1.3

kazu-2020/narabikae #45

8.1.2 → 8.1.3 Patch PR
Closed 2 months ago 1 comment
kazu-2020
Build(deps): bump activerecord from 8.1.2.1 to 8.1.3

beefproject/beef #3532

8.1.2.1 → 8.1.3 Patch PR
Open 2 months ago 2 comments
beefproject
Build(deps): bump activerecord from 8.1.2.1 to 8.1.3

kp-forks/beef #416

8.1.2.1 → 8.1.3 Patch PR
Open 2 months ago 1 comment
kp-forks
Bump activerecord from 8.1.2.1 to 8.1.3

ecosyste-ms/dotfiles #231

8.1.2.1 → 8.1.3 Patch PR
Closed 2 months ago 1 comment
ecosyste-ms
DEPS: Bump the rails group with 8 updates

discourse/discourse #38840

8.0.4 → 8.0.5 Patch PR
Open 2 months ago 1 comment
discourse
Bump the bundler group across 1 directory with 9 updates

LelandParker/openproject #4

8.0.2 → 8.0.4.1 Patch PR
Closed 2 months ago 1 comment
LelandParker
Bump activerecord from 8.1.2 to 8.1.2.1

zuno-tech/kaminari-api-meta-data #196

8.1.2 → 8.1.2.1
Closed 2 months ago 1 comment
zuno-tech
build(deps): Bump activerecord from 8.1.2 to 8.1.2.1

ecosyste-ms/dashboards #461

8.1.2 → 8.1.2.1
Closed 2 months ago 1 comment
ecosyste-ms
Bump activerecord from 8.1.2 to 8.1.2.1

LTe/acts-as-messageable #968

8.1.2 → 8.1.2.1
Closed 2 months ago 1 comment
LTe
Bump the bundler group across 4 directories with 13 updates

waveaccounting/activeadmin #7

7.1.4 → 7.1.5.2 Patch PR
Closed 2 months ago 1 comment
waveaccounting
Bump the bundler group across 4 directories with 12 updates

waveaccounting/activeadmin #6

7.1.4 → 7.1.5.2 Patch PR
Closed 2 months ago 1 comment
waveaccounting
Bump the bundler group across 1 directory with 7 updates

pboling/rack-cors #11

3.2.19 → 8.1.2.1 Major PR
Closed 2 months ago 1 comment
pboling
chore(deps): bump activerecord from 8.1.2 to 8.1.2.1

mishina2228/youtube-api-trial #2879

8.1.2 → 8.1.2.1
Closed 2 months ago 1 comment
mishina2228
Bump activerecord from 7.1.5.1 to 7.1.6

fractalsoft/fractalsoft.org #1259

7.1.5.1 → 7.1.6 Patch PR
Closed 3 months ago 1 comment
fractalsoft
Bump activerecord from 7.1.5.2 to 7.2.3

testdouble/good-migrations #63

7.1.5.2 → 7.2.3 Minor PR
Open 3 months ago 8 comments
testdouble
Bump activerecord from 6.1.4.1 to 7.1.5.2

hidesys/mantropy #99

6.1.4.1 → 7.1.5.2 Major PR
Closed 4 months ago 1 comment
hidesys
Bump activerecord from `1218814` to `e0e483e`

Shopify/semian #1030

`1218814` → `e0e483e`
Closed 4 months ago 1 comment
Shopify
Bump activerecord from `1218814` to `6174579`

Shopify/semian #1027

`1218814` → `6174579`
Closed 4 months ago 1 comment
Shopify
Bump activerecord from 8.0.2 to 8.0.2.1

Thiagogmr1/Rails-Store #4

8.0.2 → 8.0.2.1
Closed 4 months ago 1 comment
Thiagogmr1
Bump the bundler group across 1 directory with 7 updates

Synxsystemtool/maybe #4

7.2.2.1 → 7.2.2.2
Open 4 months ago 3 comments
Synxsystemtool
Bump the bundler group across 1 directory with 8 updates

Synxsystemtool/maybe #2

7.2.2.1 → 7.2.2.2
Closed 4 months ago 4 comments
Synxsystemtool
Bump activerecord from `1218814` to `49bb5eb`

Shopify/semian #1013

`1218814` → `49bb5eb`
Closed 4 months ago 1 comment
Shopify
Bump activerecord from `1218814` to `2b4feed`

Shopify/semian #1007

`1218814` → `2b4feed`
Closed 4 months ago 1 comment
Shopify
build(deps): bump activerecord from 7.2.2.1 to 7.2.2.2 in /backend

shiba-mountain/minnaka-map #128

7.2.2.1 → 7.2.2.2
Closed 4 months ago 2 comments
shiba-mountain
Bump activerecord from `1218814` to `7f1f459`

Shopify/semian #996

`1218814` → `7f1f459`
Closed 4 months ago 1 comment
Shopify
Bump activerecord from `1218814` to `21ecb99`

Shopify/semian #982

`1218814` → `21ecb99`
Closed 5 months ago 1 comment
Shopify
Bump activerecord from `1218814` to `01fb87c`

Shopify/semian #977

`1218814` → `01fb87c`
Closed 5 months ago 1 comment
Shopify
Bump activerecord from `1218814` to `3a49610`

Shopify/semian #975

`1218814` → `3a49610`
Closed 5 months ago 1 comment
Shopify
Bump activerecord from 7.2.2.1 to 7.2.2.2 in the bundler group across 1 directory

Sunriseaiteam/maybe #2

7.2.2.1 → 7.2.2.2
Closed 5 months ago 1 comment
Sunriseaiteam
Bump the dependencies group across 1 directory with 15 updates

moneybird/mail_auto_link_obfuscation #287

8.1.1 → 8.1.2 Patch PR
Closed 5 months ago 1 comment
moneybird
chore(deps): bump activerecord from 8.0.2 to 8.1.2

WailanTirajoh/dbviewer #50

8.0.2 → 8.1.2 Minor PR
Open 5 months ago 1 comment
WailanTirajoh
Bump activerecord from 8.1.1 to 8.1.2

ecosyste-ms/funds #543

8.1.1 → 8.1.2 Patch PR
Closed 5 months ago 1 comment
ecosyste-ms
Bump activerecord from 8.1.1 to 8.1.2

npezza93/action_push_web #32

8.1.1 → 8.1.2 Patch PR
Closed 5 months ago 1 comment
npezza93
Bump activerecord from 8.1.1 to 8.1.2

ecosyste-ms/timeline #893

8.1.1 → 8.1.2 Patch PR
Closed 5 months ago 1 comment
ecosyste-ms
Bump activerecord from 8.1.1 to 8.1.2

kp-forks/beef #388

8.1.1 → 8.1.2 Patch PR
Closed 5 months ago 1 comment
kp-forks
Bump activerecord from 8.0.2 to 8.0.2.1

acep-aedg/aedg-explorer #165

8.0.2 → 8.0.2.1
Closed 5 months ago 3 comments
acep-aedg
Bump the bundler group across 1 directory with 5 updates

morooka-cube/rails8-store #81

8.0.2 → 8.0.2.1
Closed 5 months ago 1 comment
morooka-cube
Bump the bundler group across 1 directory with 4 updates

otvorenesudy/otvorenesudy-prokuratura #46

7.1.4.1 → 7.1.5.1 Patch PR
Closed 5 months ago 1 comment
otvorenesudy
Bump activerecord from `1218814` to `a9ee16f`

Shopify/semian #949

`1218814` → `a9ee16f`
Closed 5 months ago 1 comment
Shopify
deps(deps): bump the production-dependencies group with 54 updates

patrick204nqh/dbwatcher #79

7.2.2.2 → 7.2.3 Patch PR
Open 5 months ago 3 comments
patrick204nqh
Bump activerecord from `1218814` to `e037ed2`

Shopify/semian #928

`1218814` → `e037ed2`
Closed 6 months ago 1 comment
Shopify
Bump activerecord from `1218814` to `01e5a0c`

Shopify/semian #917

`1218814` → `01e5a0c`
Closed 6 months ago 1 comment
Shopify
Bump activerecord from 7.2.1.1 to 7.2.2.2

gac2117/makeup-by-yuna2 #48

7.2.1.1 → 7.2.2.2 Patch PR
Closed 6 months ago 1 comment
gac2117
build(deps): bump the bundler group across 1 directory with 3 updates

DFE-Digital/buy-for-your-school #2399

7.2.2.1 → 7.2.2.2
Open 6 months ago 3 comments
DFE-Digital
Bump activerecord from `7af1254` to `56cec19`

Shopify/semian #901

`7af1254` → `56cec19`
Closed 6 months ago 1 comment
Shopify
Bump the gem-dependencies group with 12 updates

DFE-Digital/teaching-vacancies #8343

8.0.4 → 8.1.1 Minor PR
Closed 6 months ago 4 comments
DFE-Digital
Bump activerecord from `7af1254` to `798ff76`

Shopify/semian #895

`7af1254` → `798ff76`
Closed 6 months ago 1 comment
Shopify
Package Details
Name: activerecord
Ecosystem: rubygems
PURL Type: gem
Package URL: pkg:gem/activerecord
JSON API: View JSON
Security Advisories

23

Active advisories
CRITICAL 3
HIGH 12
MODERATE 8
View All gem Advisories
Package Information
Description:

Databases on Rails. Build a persistent domain model by mapping database tables to Ruby classes. Strong conventions for associations, validations, aggregations, migrations, and testing come baked-in.

Repository: https://github.com/rails/rails
Homepage: https://rubyonrails.org
Latest Release: 8.0.2
about 1 year ago
Dependent Repos: 907,371
Dependent Packages: 6,206
Downloads: 628,455,636
Ranking: Top 0.0095% by dependent repos Top 0.0195% by downloads Top 0.0089% by dependent pkgs
PR Status
Open 778 (55.2%)
Merged 273 (19.4%)
Closed 342 (24.3%)
PR Types
Major 76 (5.4%)
Minor 45 (3.2%)
Patch 229 (16.3%)