We maintain several forks since [CVE-2023-23913] of rails-ujs and jquery-ujs. Since each Rails app has a different way of handling asset packages, we introduced several new...

...gem with one of our forked versions. Use the NPM package @railslts/jquery-ujs to replace the jquery-ujs NPM package, e.g. with npm install @railslts/jquery-ujs. Use the NPM package @railslts/rails-ujs to...

...LTS includes a monkey-patch fixing this vulnerability. CVE-2023-23913 This affects the jquery-ujs / prototype-ujs / rails-ujs gems / npm packages which are not part of Rails LTS...

Rails 2.3 LTS is not affected. Unfixed for Rails 3.2 LTS when using the jquery-rails gem or jquery_ujs npm package. Unfixed for Rails 4.2 LTS when using...

...is no longer maintained and has a few XSS vulnerabilities. Note on rails-ujs or jquery-ujs In case your app still uses the old jquery-ujs Javascript integration, please...

...see the installation instructions for our fork of jquery-ujs. If your application uses @rails/ujs, you can keep using the official release (version 6.1.7-8). Breaking changes There are currently...

Also, in your database.yml, change the adapter to mysql2. Note on rails-ujs or jquery-ujs See installation instructions here. Breaking changes By default, Rails LTS does not allow...

...have a public fork on Github that fixes the issue. Note on rails-ujs or jquery-ujs See installation instructions here. Note on mysql If you have trouble using the...

...notified whenever a new patch for Rails LTS becomes available. Note on rails-ujs or jquery-ujs See installation instructions here. Breaking changes By default, Rails LTS does not allow...

...notified whenever a new patch for Rails LTS becomes available. Note on rails-ujs or jquery-ujs See installation instructions here. Breaking changes Mimicking vanilla Rails 5, Rails 5.2 LTS...