ChiliProject is not maintained anymore. Please be advised that there will be no more updates.
We do not recommend that you setup new ChiliProject instances and we urge all existing users to migrate their data to a maintained system, e.g. Redmine. We will provide a migration script later. In the meantime, you can use the instructions by Christian Daehn.
Update to Rails 2.3.12 to fix some bugs (Bug #453)
| Status: | Closed | Start date: | 2011-06-08 |
|---|---|---|---|
| Priority: | Normal | Due date: | |
| Assignee: |  Eric Davis |
% Done: | 0% |
| Category: | Libraries | ||
| Target version: | 2.0.0 | ||
| Remote issue URL: | Affected version: | unstable |
Description
Rails 2.3.11 is said to not work with RubyGems 1.8.5. Also there is an edge-case XSS vulnerability in Rails 2.3.11.
Rails 2.3.12 should fix the above issues.
I propose waiting for another two days before updating (since the Rails team tends to screw their 2.3.x releases) but this should definitely become part of Chili 2.0.
Associated revisions
[#453] Upgrade to Rails 2.3.12
History
Updated by Gregor Schmidt at 2011-06-08 06:47 am
If desired, I could provide a pull request. But there is really not much to do besides updating the Gemfile.
Updated by Eric Davis at 2011-06-10 03:49 pm
We wouldn't be affected by the XSS edge case since we aren't using rails_xss at all.
We should check with @tenderlove to see if he's planning any more releases soon. I think 2.3.x isn't getting too much new code now so we could do upgrades in minor releases once we review the changes. (e.g. 2.0.0 => 2.1.0 could have a Rails 2.3.x upgrade)
- Category set to Libraries
Updated by Eric Davis at 2011-06-10 05:12 pm
@tenderlove said there shouldn't be any more releases 2.3.x so we can upgrade now.
- Assignee set to Eric Davis
- Status changed from Ready for review to Open
Updated by Eric Davis at 2011-06-10 05:44 pm
Upgraded in 731de48. Had to require the rdoc gem too.
- Status changed from Open to Closed