惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

C
Cisco Blogs
Cyberwarzone
Cyberwarzone
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
SecWiki News
SecWiki News
Martin Fowler
Martin Fowler
T
Tor Project blog
N
Netflix TechBlog - Medium
C
Cybersecurity and Infrastructure Security Agency CISA
V
Vulnerabilities – Threatpost
V
Visual Studio Blog
GbyAI
GbyAI
PCI Perspectives
PCI Perspectives
D
DataBreaches.Net
Jina AI
Jina AI
H
Heimdal Security Blog
云风的 BLOG
云风的 BLOG
P
Privacy International News Feed
A
About on SuperTechFans
J
Java Code Geeks
美团技术团队
H
Hackread – Cybersecurity News, Data Breaches, AI and More
N
News | PayPal Newsroom
有赞技术团队
有赞技术团队
MyScale Blog
MyScale Blog
博客园 - 司徒正美
C
Check Point Blog
T
Threat Research - Cisco Blogs
Attack and Defense Labs
Attack and Defense Labs
宝玉的分享
宝玉的分享
AI
AI
Simon Willison's Weblog
Simon Willison's Weblog
C
Cyber Attacks, Cyber Crime and Cyber Security
I
Intezer
P
Proofpoint News Feed
Blog — PlanetScale
Blog — PlanetScale
Apple Machine Learning Research
Apple Machine Learning Research
Hugging Face - Blog
Hugging Face - Blog
The Last Watchdog
The Last Watchdog
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
Vercel News
Vercel News
I
InfoQ
阮一峰的网络日志
阮一峰的网络日志
Cisco Talos Blog
Cisco Talos Blog
W
WeLiveSecurity
Hacker News: Ask HN
Hacker News: Ask HN
Recent Commits to openclaw:main
Recent Commits to openclaw:main
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
D
Docker
博客园 - Franky
Security Archives - TechRepublic
Security Archives - TechRepublic

Ruby on Rails: Compress the complexity of modern web apps

Safer to_i coercion, custom to_fs formats, and more! This Week in Rails: May 16, 2026 This Week in Rails: May 8, 2026 This Week in Rails: May 1, 2026 Active Record gets better every week Great big Rails World 2026 update: CFP, Corporate Support tickets, workshops Query command for database queries and more Explicit query: and body: kwargs for integration tests and more! Speedup ActiveRecord::LogSubscriber#sql_color and more! This Week in Rails: March 27, 2026 Rails Versions 8.0.5 and 8.1.3 have been released! Rails Versions 7.2.3.1, 8.0.4.1, and 8.1.2.1 have been released! This Week in Rails: March 20, 2026 Validate URI scheme in Action Text and more This Week in Rails: March 6, 2026 Planning Center is the newest Rails Foundation Contributing member Action Text gets Markdown conversion, editor links in devcontainers, and more! BARRA seeks Rails developer Joe Agliozzo is looking for a Rails developer The rise of lighttpd as the alternative web server When longer is better and more is more Snowdevil: First e-tailer on Rails Natural selection for frameworks in Ruby vs Java Address book tutorial in Portuguese Becoming a better programmer with Rails 10 Things Every Java Programmer Should Know About Ruby Really Getting Started in Rails Off the Treadmill, Onto the Rails Rails 0.9.5: A world of fixes and tweaks Rich clients with Rails and XUL Pedrosa on Rails vs WebWork: 'Language DOES matter' 'Ruby on Rails is unbelievably good' Celebrating six months anniversary! Speeding up CGI access to Gem Rails CD Baby leaves PHP behind for Ruby on Rails "I think Ruby on Rails is way over hyped" Programmer needed for JSP to Rails conversion Beyond the 10,000th gem install of Rails 'That application is so stupid' Matz takes note of Ta-da and Rails Rails tutorial on O'Reilly's ONLamp Welcome Slashdotters! Ta-da goes international with UTF-8 Make your Ta-da list today Rails 0.9.4.1: Cleaning up the mess Rails 0.9.4: Caching, filters, SQLite3... An unusual high presence of Macs Having problems running tests under 1.8.2? It\'s all about the applications But what does Rails go web services with XML-RPC prototype Rails runs through XP Cincinnati RedHanded out-evangelizes the evangelizer Rails on Lighttpd with FastCGI Have a codefest and collect cash from RubyCentral Jamis Buck is working on Basecamp S5 Presents competes with SoapBX 3,000 people are doing 10,804 things... Using the Rails to impress potential employers Brian discovers the default logging goodness SoapBX: Presentations powered by S5, Textile, Rails Road Map: The rails leading to 1.0 Tracks: A Getting Things Done implementation Nicholas presents the Directors Rails 0.9.3: Optimistic locking, dynamic finders, 1.8.2 Ruby on the German Rails 43things in 5,204 lines of Ruby on Rails Watch for huge requests on default FCGI How the redesign of the website came to be Are you watching the health of your software? "Some amazing web apps appear on Ruby on Rails" Learning Ruby on Rails with 43things The Robot Co-op takes 43things.com live! Giving up on Java for lack of love Setting up EliteJournal on TextDrive without a vhost Celebrating 219 applied patches since 0.7 Escaping Java but not its thinking "Simple design that even my grandma can understand" Rails logo remixed by Olivier Hericord Rake 0.4.14 includes fix for Ruby 1.8.2 Splitting off the research patches Running rake tests with Ruby 1.8.2 Marten opens Epilog for Trac'ing Drew McLellan predicts Rails celebrates more than 10,000 downloads Variations on a railed theme Securing your Rails: Keep it secret, keep it safe Available for hire? Collaboa and EliteJournal joins the Trac Playing Active Records on MS SQLServer and DB2 Open sourcing the Rails logo Rails: Technology of the Year #1 Reacting to customer requests in real time Extracting missing content from wiki backups Ruby on Rails has its web presence overhauled 43 things makes The Seattle Times 5.gets David Heinemeier Hansson Ruby 1.8.2 finally sees the light of day Rails 0.9: Fast development, breakpoints, validations Rails 0.9.1: Small, but important bugfix for Action Pack
Rails 7.0.4.3 and 6.1.7.3 have been released!
David Heinemeier Hansson · 2023-03-13 · via Ruby on Rails: Compress the complexity of modern web apps

Monday, March 13, 2023
Posted by jhawthorn

With apologies to those starting daylight savings time this week, we are pleased to announce the release of Rails 7.0.4.3 and 6.1.7.3. These two security release include fixes for two potential XSS vulnerabilities.

While these vulnerabilities are not considered high-risk, we still recommend that all Rails users upgrade to this latest version as soon as possible.

Once again the 6.0 series now only receives updates for serious vulnerabilities. We’d encourage users on that release to upgrade to a fully supported version.

Below are the shas for the released versions:

$ shasum *-7.0.4.3*
ad394e33d5d5c7448ad9a370929f8aa310ad1479  actioncable-7.0.4.3.gem
12d773dde8a8a6dc2657afd7910af1cec491253d  actionmailbox-7.0.4.3.gem
e2712822297240d0ddcc2704817cc2c99782b76f  actionmailer-7.0.4.3.gem
9507d628de8ec1003e5e9319341045d4b70b976d  actionpack-7.0.4.3.gem
46387b939e041e616e70833c1d9e362534d5aef7  actiontext-7.0.4.3.gem
20c94e73d9faab5fa916309d3fdf24e505c02402  actionview-7.0.4.3.gem
85edb625a966ff92f5740c24e33bbb00add583d5  activejob-7.0.4.3.gem
d62f79fc9f6cdc16288431412d95fd46dad48350  activemodel-7.0.4.3.gem
9d04128c9ad4b72d551ed86aef37c4b152249e14  activerecord-7.0.4.3.gem
48a5e1729c3215daefa26566ffa4ba8c5a8d7362  activestorage-7.0.4.3.gem
71424328120f883f13f98b3e3467edd155fab3d5  activesupport-7.0.4.3.gem
f5580feffc2628ed953ee625fc534012d031b04d  rails-7.0.4.3.gem
c9ba095c0cf5d3e0e96e365f0851a7b908780c48  railties-7.0.4.3.gem
$ shasum *-6.1.7.3*
ecb025b7a442d335a130dc4a302e169258dcc703  actioncable-6.1.7.3.gem
0786e52b0ab03ea94051876b072da6415adc2c8b  actionmailbox-6.1.7.3.gem
5bcf3072429981857a4aac3e8ceef65691de32e7  actionmailer-6.1.7.3.gem
2ddfc5608ae3ecf8d3e367f151f1ca6600661356  actionpack-6.1.7.3.gem
bb97269c40b188a305e299afb5f2bc4744d6f836  actiontext-6.1.7.3.gem
6d98eb075d535496ba1772dff29145b00c7e5b5c  actionview-6.1.7.3.gem
7552a6fcb3c5941e086aaee304082a650ce20a65  activejob-6.1.7.3.gem
ae8f9d38c581f6d563982e1bc8a326f8bd7444be  activemodel-6.1.7.3.gem
7bc46d91795d8887c1c9d85082a87eaab6fe0c79  activerecord-6.1.7.3.gem
b1a543e106b76467c41a4b11bb24982a11886dc1  activestorage-6.1.7.3.gem
364e6d354cc6785a78be8d93bfec49c471873aee  activesupport-6.1.7.3.gem
cebb096eac916bfbd0e694dd311167b3a4d7ffc6  rails-6.1.7.3.gem
23a0e417e2a132e3e60eafc4c95cdbc592b279da  railties-6.1.7.3.gem

If you run in to any further issues, please sure to let us know in the issue tracker.

Thank you!