Package: rails | Debian Sources

Package: rails / 2:6.1.7.10+dfsg-1~deb12u1

Metadata

Package	Version	Patches format
rails	2:6.1.7.10+dfsg-1~deb12u1	3.0 (quilt)

Patch series

view the series file

Patch	File delta	Description
0001 Be careful with that bundler.patch \| (download)	railties/lib/rails/generators/app_base.rb \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	be careful with that bundler
0002 disable uglify in activestorage rollup config js.patch \| (download)	activestorage/rollup.config.js \| 18 9 + 9 - 0 ! 1 file changed, 9 insertions(+), 9 deletions(-)	rollup-plugin-uglify is not packaged, hence disabling it.
use system yarnpkg.patch \| (download)	railties/lib/rails/app_updater.rb \| 2 1 + 1 - 0 ! railties/lib/rails/generators/rails/app/app_generator.rb \| 4 2 + 2 - 0 ! railties/lib/rails/generators/rails/app/templates/bin/setup.tt \| 2 1 + 1 - 0 ! railties/lib/rails/tasks/yarn.rake \| 8 4 + 4 - 0 ! railties/test/generators/api_app_generator_test.rb \| 4 2 + 2 - 0 ! railties/test/generators/app_generator_test.rb \| 12 6 + 6 - 0 ! railties/test/generators/shared_generator_tests.rb \| 3 1 + 2 - 0 ! railties/test/isolation/abstract_unit.rb \| 4 2 + 2 - 0 ! 8 files changed, 19 insertions(+), 20 deletions(-)	use system yarnpkg instead of yarn In Debian, yarn is packaged as "yarnpkg". . This patch will replace all the "bin/yarn" usages to "bin/yarnpkg".
use system webpacker.patch \| (download)	railties/test/isolation/assets/package.json \| 4 2 + 2 - 0 ! 1 file changed, 2 insertions(+), 2 deletions(-)	use system webpacker
relax dependencies.patch \| (download)	Gemfile \| 10 4 + 6 - 0 ! railties/lib/rails/generators/app_base.rb \| 4 2 + 2 - 0 ! 2 files changed, 6 insertions(+), 8 deletions(-)	relax dependencies This patch will relax the dependencies version, remove useless dependencies, or replace the gems to which is already in Debian. Relax dependencies version: * selenium-webdriver * redis-nameserver (use packaged version) * mysql2 * selenium-webdriver * webpacker Remove/replace dependencies: * minitest-bisect + Not packaged in Debian + Not used (minitest is used) * minitest-retry + Not packaged in Debian + Used only when running on Buildkite CI * webdrivers + Not packaged in Debian + Could be replaced by chromedriver-helper (ruby-chromedriver-helper)
relax dependency sqlite3.patch \| (download)	Gemfile \| 2 1 + 1 - 0 ! activerecord/lib/active_record/connection_adapters/sqlite3/database_statements.rb \| 2 1 + 1 - 0 ! activerecord/lib/active_record/connection_adapters/sqlite3_adapter.rb \| 1 0 + 1 - 0 ! 3 files changed, 2 insertions(+), 3 deletions(-)	relax dependency version - ruby-sqlite3 From Rails 6, it started using `execute_batch2` function [1] which was introduced in gem sqlite3 1.4.0. This new function was confirmed at [1] that extremely faster than old `execute_batch` function. However, gem sqlite3 1.4.0 was not packaged in Debian yet (ruby-sqlite3 is 1.3.13-1+b2 in Debian), so this function could not be used. . This patch will rollback the `execute_batch2` usages to `execute_batch`. This patch should be removed after the ruby-sqlite3 upgraded to 1.4.0. . [1] https://github.com/rails/rails/commit/0908184e4c2dca5b941030bbd0d5eb2dfcfed120
remove ignored dependencies.patch \| (download)	Gemfile \| 33 0 + 33 - 0 ! rails.gemspec \| 1 0 + 1 - 0 ! 2 files changed, 34 deletions(-)	remove ignored dependencies
skip test internet access.patch \| (download)	activesupport/Rakefile \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	skip the tests which need internet access .. due to Debian policy 4.9.
skip test unpackaged dependencies.patch \| (download)	actioncable/Rakefile \| 2 1 + 1 - 0 ! activejob/Rakefile \| 2 1 + 1 - 0 ! activejob/test/cases/exceptions_test.rb \| 4 2 + 2 - 0 ! railties/test/isolation/abstract_unit.rb \| 5 0 + 5 - 0 ! 4 files changed, 4 insertions(+), 9 deletions(-)	skip the test due to unpackaged dependencies * websocket-client-simple + actioncable/client_test.rb * sneakers + actionjob/Rakefile + actionjob/test/cases/exceptions_test.rb * que + actionjob/Rakefile * queue_classic + actionjob/Rakefile * resque + actionjob/Rakefile * sucker_punch + actionjob/Rakefile * backburner + actionjob/Rakefile * minitest-retry + railties/test/isolation/abstract_unit.rb
skip test railties postgresql.patch \| (download)	railties/test/application/bin_setup_test.rb \| 2 2 + 0 - 0 ! railties/test/application/rake/dbs_test.rb \| 2 2 + 0 - 0 ! 2 files changed, 4 insertions(+)	skip the railties test which needs postgresql instance
ignore test stuck.patch \| (download)	railties/test/generators/app_generator_test.rb \| 2 2 + 0 - 0 ! 1 file changed, 2 insertions(+)	ignore test which goes stuck Ignore the test case which makes test stuck.
adapt to babel7.patch \| (download)	activestorage/.babelrc \| 8 0 + 8 - 0 ! activestorage/babel.config.json \| 8 8 + 0 - 0 ! 2 files changed, 8 insertions(+), 8 deletions(-)	adapt to babel7
replace webdrivers.patch \| (download)	railties/lib/rails/generators/rails/app/templates/Gemfile.tt \| 2 0 + 2 - 0 ! 1 file changed, 2 deletions(-)	replace webdrivers webdrivers can only go to contrib section
disable rack mini profiler gem.patch \| (download)	railties/lib/rails/generators/rails/app/templates/Gemfile.tt \| 2 1 + 1 - 0 ! railties/test/generators/app_generator_test.rb \| 2 1 + 1 - 0 ! 2 files changed, 2 insertions(+), 2 deletions(-)	disable rack-mini-profiler We haven't packaged this yet and it is disturbing our tests.
temporarily disable encoded key cache behavior test.patch \| (download)	activesupport/test/cache/behaviors/encoded_key_cache_behavior.rb \| 24 12 + 12 - 0 ! 1 file changed, 12 insertions(+), 12 deletions(-)	temporarily disable flaky tests Upstream discovered several race conditions in their tests. This test is flaky. Most of the time it works. Let's ignore it for now to be able to do the transition. https://github.com/rails/rails/pull/43718/files
activesupport skip flaky tests.patch \| (download)	activesupport/test/cache/behaviors/cache_store_behavior.rb \| 4 2 + 2 - 0 ! 1 file changed, 2 insertions(+), 2 deletions(-)	activesupport: skip flaky tests These tests fail randomly on the Debian CI system. This is supposed to be fixed in rails 7.
replace uglifier terser.patch \| (download)	Gemfile \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	---
rollup 3.patch \| (download)	activestorage/rollup.config.js \| 9 5 + 4 - 0 ! 1 file changed, 5 insertions(+), 4 deletions(-)	fix for rollup3
rails ruby3.1.patch \| (download)	actionmailbox/actionmailbox.gemspec \| 3 3 + 0 - 0 ! actionmailer/actionmailer.gemspec \| 3 3 + 0 - 0 ! 2 files changed, 6 insertions(+)	[patch] merge pull request #44083 from rails/rm-temporary-mail-fix Temporarily add net-gems as dependencies of frameworks that use mail Backported-by: Antonio Terceiro <terceiro@debian.org>
CVE 2024 54133.patch \| (download)	actionpack/lib/action_dispatch/http/content_security_policy.rb \| 25 21 + 4 - 0 ! actionpack/test/dispatch/content_security_policy_test.rb \| 27 27 + 0 - 0 ! 2 files changed, 48 insertions(+), 4 deletions(-)	[patch] add csp directive validation Validate directives to make sure they don't include semicolons or whitespace. These are special and denote lists and termination of directives. [CVE-2024-54133]

Patch	File delta	Description
0001 Be careful with that bundler.patch \| (download)	railties/lib/rails/generators/app_base.rb \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	be careful with that bundler
0002 disable uglify in activestorage rollup config js.patch \| (download)	activestorage/rollup.config.js \| 18 9 + 9 - 0 ! 1 file changed, 9 insertions(+), 9 deletions(-)	rollup-plugin-uglify is not packaged, hence disabling it.
use system yarnpkg.patch \| (download)	railties/lib/rails/app_updater.rb \| 2 1 + 1 - 0 ! railties/lib/rails/generators/rails/app/app_generator.rb \| 4 2 + 2 - 0 ! railties/lib/rails/generators/rails/app/templates/bin/setup.tt \| 2 1 + 1 - 0 ! railties/lib/rails/tasks/yarn.rake \| 8 4 + 4 - 0 ! railties/test/generators/api_app_generator_test.rb \| 4 2 + 2 - 0 ! railties/test/generators/app_generator_test.rb \| 12 6 + 6 - 0 ! railties/test/generators/shared_generator_tests.rb \| 3 1 + 2 - 0 ! railties/test/isolation/abstract_unit.rb \| 4 2 + 2 - 0 ! 8 files changed, 19 insertions(+), 20 deletions(-)	use system yarnpkg instead of yarn In Debian, yarn is packaged as "yarnpkg". . This patch will replace all the "bin/yarn" usages to "bin/yarnpkg".
use system webpacker.patch \| (download)	railties/test/isolation/assets/package.json \| 4 2 + 2 - 0 ! 1 file changed, 2 insertions(+), 2 deletions(-)	use system webpacker
relax dependencies.patch \| (download)	Gemfile \| 10 4 + 6 - 0 ! railties/lib/rails/generators/app_base.rb \| 4 2 + 2 - 0 ! 2 files changed, 6 insertions(+), 8 deletions(-)	relax dependencies This patch will relax the dependencies version, remove useless dependencies, or replace the gems to which is already in Debian. Relax dependencies version: * selenium-webdriver * redis-nameserver (use packaged version) * mysql2 * selenium-webdriver * webpacker Remove/replace dependencies: * minitest-bisect + Not packaged in Debian + Not used (minitest is used) * minitest-retry + Not packaged in Debian + Used only when running on Buildkite CI * webdrivers + Not packaged in Debian + Could be replaced by chromedriver-helper (ruby-chromedriver-helper)
relax dependency sqlite3.patch \| (download)	Gemfile \| 2 1 + 1 - 0 ! activerecord/lib/active_record/connection_adapters/sqlite3/database_statements.rb \| 2 1 + 1 - 0 ! activerecord/lib/active_record/connection_adapters/sqlite3_adapter.rb \| 1 0 + 1 - 0 ! 3 files changed, 2 insertions(+), 3 deletions(-)	relax dependency version - ruby-sqlite3 From Rails 6, it started using `execute_batch2` function [1] which was introduced in gem sqlite3 1.4.0. This new function was confirmed at [1] that extremely faster than old `execute_batch` function. However, gem sqlite3 1.4.0 was not packaged in Debian yet (ruby-sqlite3 is 1.3.13-1+b2 in Debian), so this function could not be used. . This patch will rollback the `execute_batch2` usages to `execute_batch`. This patch should be removed after the ruby-sqlite3 upgraded to 1.4.0. . [1] https://github.com/rails/rails/commit/0908184e4c2dca5b941030bbd0d5eb2dfcfed120
remove ignored dependencies.patch \| (download)	Gemfile \| 33 0 + 33 - 0 ! rails.gemspec \| 1 0 + 1 - 0 ! 2 files changed, 34 deletions(-)	remove ignored dependencies
skip test internet access.patch \| (download)	activesupport/Rakefile \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	skip the tests which need internet access .. due to Debian policy 4.9.
skip test unpackaged dependencies.patch \| (download)	actioncable/Rakefile \| 2 1 + 1 - 0 ! activejob/Rakefile \| 2 1 + 1 - 0 ! activejob/test/cases/exceptions_test.rb \| 4 2 + 2 - 0 ! railties/test/isolation/abstract_unit.rb \| 5 0 + 5 - 0 ! 4 files changed, 4 insertions(+), 9 deletions(-)	skip the test due to unpackaged dependencies * websocket-client-simple + actioncable/client_test.rb * sneakers + actionjob/Rakefile + actionjob/test/cases/exceptions_test.rb * que + actionjob/Rakefile * queue_classic + actionjob/Rakefile * resque + actionjob/Rakefile * sucker_punch + actionjob/Rakefile * backburner + actionjob/Rakefile * minitest-retry + railties/test/isolation/abstract_unit.rb
skip test railties postgresql.patch \| (download)	railties/test/application/bin_setup_test.rb \| 2 2 + 0 - 0 ! railties/test/application/rake/dbs_test.rb \| 2 2 + 0 - 0 ! 2 files changed, 4 insertions(+)	skip the railties test which needs postgresql instance
ignore test stuck.patch \| (download)	railties/test/generators/app_generator_test.rb \| 2 2 + 0 - 0 ! 1 file changed, 2 insertions(+)	ignore test which goes stuck Ignore the test case which makes test stuck.
adapt to babel7.patch \| (download)	activestorage/.babelrc \| 8 0 + 8 - 0 ! activestorage/babel.config.json \| 8 8 + 0 - 0 ! 2 files changed, 8 insertions(+), 8 deletions(-)	adapt to babel7
replace webdrivers.patch \| (download)	railties/lib/rails/generators/rails/app/templates/Gemfile.tt \| 2 0 + 2 - 0 ! 1 file changed, 2 deletions(-)	replace webdrivers webdrivers can only go to contrib section
disable rack mini profiler gem.patch \| (download)	railties/lib/rails/generators/rails/app/templates/Gemfile.tt \| 2 1 + 1 - 0 ! railties/test/generators/app_generator_test.rb \| 2 1 + 1 - 0 ! 2 files changed, 2 insertions(+), 2 deletions(-)	disable rack-mini-profiler We haven't packaged this yet and it is disturbing our tests.
temporarily disable encoded key cache behavior test.patch \| (download)	activesupport/test/cache/behaviors/encoded_key_cache_behavior.rb \| 24 12 + 12 - 0 ! 1 file changed, 12 insertions(+), 12 deletions(-)	temporarily disable flaky tests Upstream discovered several race conditions in their tests. This test is flaky. Most of the time it works. Let's ignore it for now to be able to do the transition. https://github.com/rails/rails/pull/43718/files
activesupport skip flaky tests.patch \| (download)	activesupport/test/cache/behaviors/cache_store_behavior.rb \| 4 2 + 2 - 0 ! 1 file changed, 2 insertions(+), 2 deletions(-)	activesupport: skip flaky tests These tests fail randomly on the Debian CI system. This is supposed to be fixed in rails 7.
replace uglifier terser.patch \| (download)	Gemfile \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	---
rollup 3.patch \| (download)	activestorage/rollup.config.js \| 9 5 + 4 - 0 ! 1 file changed, 5 insertions(+), 4 deletions(-)	fix for rollup3
rails ruby3.1.patch \| (download)	actionmailbox/actionmailbox.gemspec \| 3 3 + 0 - 0 ! actionmailer/actionmailer.gemspec \| 3 3 + 0 - 0 ! 2 files changed, 6 insertions(+)	[patch] merge pull request #44083 from rails/rm-temporary-mail-fix Temporarily add net-gems as dependencies of frameworks that use mail Backported-by: Antonio Terceiro <terceiro@debian.org>
CVE 2024 54133.patch \| (download)	actionpack/lib/action_dispatch/http/content_security_policy.rb \| 25 21 + 4 - 0 ! actionpack/test/dispatch/content_security_policy_test.rb \| 27 27 + 0 - 0 ! 2 files changed, 48 insertions(+), 4 deletions(-)	[patch] add csp directive validation Validate directives to make sure they don't include semicolons or whitespace. These are special and denote lists and termination of directives. [CVE-2024-54133]