When running bundle install --verbose on Bundler versions 1.12+, you might see errors of the form HTTP 403 Forbidden https://...
August 14th 2025, Rails version 2.3.18.60 Backported fixes for two vulnerabilies. Read the announcement. This includes: Dangerous transformation methods in...
August 14th 2025, Rails version 3.2.22.50 Backported fixes for two vulnerabilies. Read the announcement. This includes: Dangerous transformation methods in...
August 14th 2025, Rails version 4.2.11.40 Backported fixes for two vulnerabilies. Read the announcement. This includes: Dangerous transformation methods in...
August 14th 2025, Rails version 5.2.8.33 Backported fixes for two vulnerabilies. Read the announcement. This includes: Dangerous transformation methods in...
August 14th 2025, Rails version 6.1.7.29 Backported fixes for two vulnerabilies. Read the announcement. This includes: Dangerous transformation methods in...
This is a list of known CVEs relevant for Rails LTS 2.3+. All CVEs are fixed in all versions of...
Rails LTS (<= 4.2) contains a fix for CVE-2021-22885, but this includes a breaking change you can opt out...
Best results in other decks
When things go wrong, for example, caused by a bad commit, we need to revert back to an earlier known...
When RSpecs runs the first feature spec, you may see log output like this: Capybara starting Puma... * Version 6.5.0, codename...