Граф коммитов

18 Коммитов

Автор SHA1 Сообщение Дата
Jeremy Evans 3a0de05bee Remove mention of $SAFE and taint from doc [ci skip] 2019-11-18 01:00:25 +02:00
kazu 07efce075b Use https instead of http in some URLs
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@56135 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2016-09-11 10:33:36 +00:00
nobu e27a538eab security.rdoc: correction
* doc/security.rdoc (Symbols): ID2SYM never creates new IDs bound
  to immortal symbols, SYM2ID may create new IDs.

git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@49516 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2015-02-05 21:09:27 +00:00
marcandre 899a1faa8f * doc/security.rdoc: [DOC] ammend symbols section for bug with
keyword args [ci-skip]

git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@49514 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2015-02-05 20:06:11 +00:00
marcandre 8350b7dc04 * doc/security.rdoc: [DOC] ammend symbols section for bug with send [ci-skip]
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@49498 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2015-02-04 16:41:38 +00:00
marcandre 229bfa7bb1 * doc/security.rdoc: [DOC] update symbols section [ci-skip]
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@49496 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2015-02-04 16:24:16 +00:00
nobu 92c1538d48 security.rdoc: update about Symbol GC [ci skip]
* doc/security.rdoc (Symbols): update about Symbol GC.  Symbols
  explicitly converted from Strings now can be collected, but
  reflection/metaprogramming still can cause memory flooding.
  [Fix GH-725]

git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@49468 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2015-02-02 01:51:37 +00:00
ktsj c65e9bbff9 * doc/security.rdoc: [DOC] fix typo.
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@42868 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-09-07 04:58:40 +00:00
shugo 73a229c3a5 * NEWS: add notes for $SAFE.
* doc/security.rd: remove the description of $SAFE=4.

git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@41290 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-06-14 00:53:37 +00:00
zzak 5835461b16 * doc/security.rdoc: Add note about reporting security vulns
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@40574 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-05-03 22:21:34 +00:00
zzak 4f74d59be9 * doc/security.rb: Translate japanese kanji to english
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39120 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-06 17:16:39 +00:00
zzak a99dc84165 * doc/security.rdoc: Link to japanese version of CVE page patch by
nagachika


git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39118 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-06 16:35:15 +00:00
zzak fe072cef25 * doc/security.rdoc: Add link to CVEs on ruby-lang.org/en/security
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39088 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-06 04:03:39 +00:00
zzak 55f11348c3 * doc/security.rdoc: Remove documentation for unsafe CSV.load which
was deleted in r39077


git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39078 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-05 18:44:46 +00:00
charliesome 81f9052c11 * doc/security.rdoc: add regex, eval and drb sections
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39072 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-05 09:49:09 +00:00
zzak 6dfd56696f * doc/security.rdoc: Wrap security guide at 80 columns
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39054 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-05 01:18:22 +00:00
zzak 47da37b0a0 * doc/security.rdoc: Grammatical error on security guide
Patch by Josh Bassett [Github fixes #245]


git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39053 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-05 01:14:52 +00:00
charliesome cac38cd0a6 * doc/security.rdoc: add first cut at a Ruby security document
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@39026 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
2013-02-03 07:14:44 +00:00