[SEC][ANN] Rack 1.4.2, a modular Ruby webserver interface

Hello,

Today we are proud to announce the release of Rack 1.4.2.

= Rack, a modular Ruby webserver interface

Rack provides a minimal, modular and adaptable interface for developing web applications in Ruby. By wrapping HTTP requests and responses in the simplest way possible, it unifies and distills the API for web servers, web frameworks, and software in between (the so-called middleware) into a single method call.
The exact details of this are described in the Rack specification, which all Rack applications should conform to.

== Changes

* January 6th, 2013: Twenty ninth public release 1.4.2
  * Add warnings when users do not provide a session secret
  * Fix parsing performance for unquoted filenames
  * Updated URI backports
  * Fix URI backport version matching, and silence constant warnings
  * Correct parameter parsing with empty values
  * Correct rackup '-I' flag, to allow multiple uses
  * Correct rackup pidfile handling
  * Report rackup line numbers correctly
  * Fix request loops caused by non-stale nonces with time limits
  * Fix reloader on Windows
  * Prevent infinite recursions from Response#to_ary
  * Various middleware better conforms to the body close specification
  * Updated language for the body close specification
  * Additional notes regarding ECMA escape compatibility issues
  * Fix the parsing of multiple ranges in range headers
  * Prevent errors from empty parameter keys
  * Added PATCH verb to Rack::Request
  * Various documentation updates
  * Fix session merge semantics (fixes rack-test)
  * Rack::Static :index can now handle multiple directories
  * All tests now utilize Rack::Lint (special thanks to Lars Gierth)
  * Rack::File cache_control parameter is now deprecated, and removed by 1.5
  * Correct Rack::Directory script name escaping
  * Rack::Static supports header rules for sophisticated configurations
  * Multipart parsing now works without a Content-Length header
  * New logos courtesy of Zachary Scott!
  * Rack::BodyProxy now explicitly defines #each, useful for C extensions
  * Cookies that are not URI escaped no longer cause exceptions

== Where can I get it?

You can download Rack at
        http://chneukirchen.org/releases/rack-1.4.2.tar.gz (upload pending at time of writing)
                  http://rubyforge.org/projects/rack

Alternatively, you can checkout from the development repository with:
    git clone git://github.com/rack/rack.git
cd rack && git checkout rack-1.4 # for this release

Happy hacking and have a nice day,

James Tucker
on behalf of the Rack Core Team.

ad48e43b2206ae244485241ff2b3bc51f2d1a0d0 rack-1.4.2.tar.gz
201d642833ffca3485fdf9b16eaf0e43d2c69919 rack-1.4.2.gem

Rack is really zooming through versions...

Rack is really zooming through versions...

···

On Jan 6, 2013, at 10:27 PM, tamouse mailing lists <tamouse.lists@gmail.com> wrote:

They have to keep up with firefox :wink:
All joking aside, I'm glad to see rack getting the PATCH verb.

Andrew McElroy

···

On Sun, Jan 6, 2013 at 10:27 PM, tamouse mailing lists < tamouse.lists@gmail.com> wrote:

Rack is really zooming through versions...