---
- branch: MAIN
  date: Wed Jul 13 14:44:10 UTC 2022
  files:
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/databases/ruby-activerecord60/distinfo
    pathrev: pkgsrc/databases/ruby-activerecord60/distinfo@1.19
    type: modified
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/devel/ruby-activejob60/distinfo
    pathrev: pkgsrc/devel/ruby-activejob60/distinfo@1.19
    type: modified
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/devel/ruby-activemodel60/distinfo
    pathrev: pkgsrc/devel/ruby-activemodel60/distinfo@1.19
    type: modified
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/devel/ruby-activestorage60/distinfo
    pathrev: pkgsrc/devel/ruby-activestorage60/distinfo@1.19
    type: modified
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/devel/ruby-activesupport60/distinfo
    pathrev: pkgsrc/devel/ruby-activesupport60/distinfo@1.19
    type: modified
  - new: '1.5'
    old: '1.4'
    path: pkgsrc/devel/ruby-railties60/Makefile
    pathrev: pkgsrc/devel/ruby-railties60/Makefile@1.5
    type: modified
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/devel/ruby-railties60/distinfo
    pathrev: pkgsrc/devel/ruby-railties60/distinfo@1.19
    type: modified
  - new: '1.130'
    old: '1.129'
    path: pkgsrc/lang/ruby/rails.mk
    pathrev: pkgsrc/lang/ruby/rails.mk@1.130
    type: modified
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/mail/ruby-actionmailbox60/distinfo
    pathrev: pkgsrc/mail/ruby-actionmailbox60/distinfo@1.19
    type: modified
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/mail/ruby-actionmailer60/distinfo
    pathrev: pkgsrc/mail/ruby-actionmailer60/distinfo@1.19
    type: modified
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/textproc/ruby-actiontext60/distinfo
    pathrev: pkgsrc/textproc/ruby-actiontext60/distinfo@1.19
    type: modified
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/www/ruby-actioncable60/distinfo
    pathrev: pkgsrc/www/ruby-actioncable60/distinfo@1.19
    type: modified
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/www/ruby-actionpack60/distinfo
    pathrev: pkgsrc/www/ruby-actionpack60/distinfo@1.19
    type: modified
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/www/ruby-actionview60/distinfo
    pathrev: pkgsrc/www/ruby-actionview60/distinfo@1.19
    type: modified
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/www/ruby-rails60/distinfo
    pathrev: pkgsrc/www/ruby-rails60/distinfo@1.19
    type: modified
  id: 20220713T144410Z.52d553b3d0081190c059ce9763549224670a08cb
  log: "www/ruby-rails60: update to 6.0.5.1\n\nRails 6.0.5.1 (2022-07-12) updates
    databases/ruby-activerecord60 only.\n\ndatabases/ruby-activerecord60\n\n* Change
    ActiveRecord::Coders::YAMLColumn default to safe_load\n\n  This adds two new configuration
    options The configuration options are as\n  follows:\n\n\to config.active_storage.use_yaml_unsafe_load\n\n
    \ When set to true, this configuration option tells Rails to use the old\n  \"unsafe\"
    YAML loading strategy, maintaining the existing behavior but\n  leaving the possible
    escalation vulnerability in place.  Setting this\n  option to true is *not* recommended,
    but can aid in upgrading.\n\n\to config.active_record.yaml_column_permitted_classes\n\n
    \ The \"safe YAML\" loading method does not allow all classes to be\n  deserialized
    by default.  This option allows you to specify classes deemed\n  \"safe\" in your
    application.  For example, if your application uses Symbol\n  and Time in serialized
    data, you can add Symbol and Time to the allowed\n  list as follows:\n\n\tconfig.active_record.yaml_column_permitted_classes
    = [Symbol, Date, Time]\n\n  [CVE-2022-32224]\n"
  module: pkgsrc
  subject: 'CVS commit: pkgsrc'
  unixtime: '1657723450'
  user: taca