pkgsrc/textproc/ruby-safe_yaml/Makefile at 7cd61ec68d3d5dcff6e145bf582f00c66c4d49c3 - kpriv/pkgsrc - Disroot Forgejo: Brace yourself, merge conflicts ahead.

kpriv/pkgsrc

taca a50db733b3 Add ruby-safe_yaml package version 0.9.5.

The SafeYAML gem provides an alternative implementation of `YAML.load`
suitable for accepting user input in Ruby applications.  Unlike Ruby's
built-in implementation of `YAML.load`, SafeYAML's version will not expose
apps to arbitrary code execution exploits (such as [the ones
discovered](http://www.reddit.com/r/netsec/comments/167c11/serious_vulnerability_in_ruby_on_rails_allowing/)
[in Rails in early
2013](http://www.h-online.com/open/news/item/Rails-developers-close-another-extremely-critical-flaw-1793511.html)).

If you encounter any issues with SafeYAML, check out the 'Common Issues'
section below.  If you don't see anything that addresses the problem you're
experiencing, by all means,  [create an
issue](https://github.com/dtao/safe_yaml/issues/new)!

2013-09-15 16:31:27 +00:00

12 lines

292 B

Makefile

Raw Blame History

 # $NetBSD: Makefile,v 1.1 2013/09/15 16:31:27 taca Exp $
 DISTNAME=	safe_yaml-0.9.5
 CATEGORIES=	textproc
 MAINTAINER=	pkgsrc-users@NetBSD.org
 HOMEPAGE=	http://dtao.github.com/safe_yaml/
 COMMENT=	Parse YAML safely
 LICENSE=	mit
 .include "../../lang/ruby/gem.mk"
 .include "../../mk/bsd.pkg.mk"