Jeremy Olliver

If you check the CVE descriptions - one is for RCE via the filename, the second is for RCE via the content_type, so they are slightly different

I think the possibility of DDoS is just assumed due to the presence of an infinite looping behaviour - rather than any particular method to coerce an app to actually...

It looks like many ducks are in a row for being able to provide this feature, apart from supporting `quantize` as an option on the `net/http` integration. Previously this was...

Just browsing past this - you could try the approach outlined here http://serverfault.com/questions/107187/sudo-su-username-while-keeping-ssh-key-forwarding

Hi Mike, This isn't supported currently by the library, though that certainly sounds like something that is worth adding in. Adding in some before/after hooks to allow combining custom javascript...

Hi, The usual method for contributing patches/features on Github is to fork the project (top right of the github interface), create a new git branch for the feature, and to...

testing multiple rails versions via appraisal is setup in latest develop, builds are not yet passing on rails 4

Hi @tejaycar, The only change we made to be compatible with the latest (2.2.4) redisio, was changing the included runlist from `redisio::install` to `redisio::default`, which exists in both versions and...

I don't know whether the mentioned refactor is still in progress due to the age of this issue being open - but for anyone interested, I wrote a from scratch...