summaryrefslogtreecommitdiff
path: root/doc/security.rdoc
AgeCommit message (Collapse)Author
2024-03-11[DOC] security.rdoc: fix YAML security documentationAndrea Brancaleoni
Since https://github.com/ruby/ruby/commit/fbb4e3f96c10de2240f2d87eac19cf6f62f65fea `YAML` does not unmarshal arbitrary ruby objects.
2019-11-18Remove mention of $SAFE and taint from doc [ci skip]Jeremy Evans
Notes: Merged: https://github.com/ruby/ruby/pull/2476
2016-09-11Use https instead of http in some URLskazu
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@56135 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2015-02-05security.rdoc: correctionnobu
* doc/security.rdoc (Symbols): ID2SYM never creates new IDs bound to immortal symbols, SYM2ID may create new IDs. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@49516 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2015-02-05* doc/security.rdoc: [DOC] ammend symbols section for bug withmarcandre
keyword args [ci-skip] git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@49514 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2015-02-04* doc/security.rdoc: [DOC] ammend symbols section for bug with send [ci-skip]marcandre
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@49498 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2015-02-04* doc/security.rdoc: [DOC] update symbols section [ci-skip]marcandre
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@49496 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2015-02-02security.rdoc: update about Symbol GC [ci skip]nobu
* doc/security.rdoc (Symbols): update about Symbol GC. Symbols explicitly converted from Strings now can be collected, but reflection/metaprogramming still can cause memory flooding. [Fix GH-725] git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@49468 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-09-07* doc/security.rdoc: [DOC] fix typo.ktsj
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@42868 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-06-14* NEWS: add notes for $SAFE.shugo
* doc/security.rd: remove the description of $SAFE=4. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@41290 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-05-03* doc/security.rdoc: Add note about reporting security vulnszzak
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@40574 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-06* doc/security.rb: Translate japanese kanji to englishzzak
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39120 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-06* doc/security.rdoc: Link to japanese version of CVE page patch byzzak
nagachika git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39118 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-06* doc/security.rdoc: Add link to CVEs on ruby-lang.org/en/securityzzak
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39088 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-05* doc/security.rdoc: Remove documentation for unsafe CSV.load whichzzak
was deleted in r39077 git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39078 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-05* doc/security.rdoc: add regex, eval and drb sectionscharliesome
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39072 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-05* doc/security.rdoc: Wrap security guide at 80 columnszzak
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39054 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-05* doc/security.rdoc: Grammatical error on security guidezzak
Patch by Josh Bassett [Github fixes #245] git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39053 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-03* doc/security.rdoc: add first cut at a Ruby security documentcharliesome
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39026 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-05 15:02:32 +0000