Hello,
I'd like to ask why is Rails fixing it's version, like gem 'rails',
'3.2.12' ?
Given the recent attacks on Rails - wouldn't it be more secure to not fix
the version?
Maybe have something like '~3.2.12' ?
--
You received this message because you are subscribed to the Google Groups
On 02/16/2013 07:07 AM, Slava Vishnyakov wrote:
I'd like to ask why is Rails fixing it's version, like gem 'rails', '3.2.12' ?
Given the recent attacks on Rails - wouldn't it be more secure to not fix the
version?
Maybe have something like '~3.2.12' ?
While I agree, I don't see a valid
2 matches
Mail list logo
