www/ruby-rails80: update to 8.0.5

Ruby on Rails 8.0.4.1 (2026-03-23)

Active Support

* Reject scientific notation in NumberConverter [CVE-2026-33176]
  Jean Boussier

* Fix SafeBuffer#% to preserve unsafe status [CVE-2026-33170]
  Jean Boussier

* Improve performance of NumberToDelimitedConverter [CVE-2026-33169]
  Jean Boussier

Action View

* Skip blank attribute names in tag helpers to avoid generating invalid
  HTML.  [CVE-2026-33168]
  Mike Dalessio

Active Storage

* Filter user supplied metadata in DirectUploadController [CVE-2026-33173]
  Jean Boussier

* Configurable maxmimum streaming chunk size
  Makes sure that byte ranges for blobs don't exceed 100mb by default.
  Content ranges that are too big can result in denial of service.
  [CVE-2026-33174]  Gannon McGibbon

* Limit range requests to a single range [CVE-2026-33658]
  Jean Boussier

* Prevent path traversal in DiskService.

  DiskService#path_for now raises an InvalidKeyError when passed keys with
  dot segments (".", ".."), or if the resolved path is outside the storage
  root directory.

  #path_for also now consistently raises InvalidKeyError if the key is
  invalid in any way, for example containing null bytes or having an
  incompatible encoding. Previously, the exception raised may have been
  ArgumentError or Encoding::CompatibilityError.

  DiskController now explicitly rescues InvalidKeyError with appropriate
  HTTP status codes.

  [CVE-2026-33195]  Mike Dalessio

* Prevent glob injection in DiskService#delete_prefixed.
  Escape glob metacharacters in the resolved path before passing to Dir.glob.

  Note that this change breaks any existing code that is relying on
  delete_prefixed to expand glob metacharacters. This change presumes that
  is unintended behavior (as other storage services do not respect these
  metacharacters).

  [CVE-2026-33202]

  Mike Dalessio

Active Model
Active Record
Action Pack
Active Job
Action Mailer
Action Cable
Action Mailbox
Action Text
Railties

* No change except version.

8.0.5 (2026-03-24)

Changes are too many to write here, please refer:
<https://github.com/rails/rails/releases/tag/v8.0.5>.

Author: taca

databases/ruby-activerecord80/distinfo

@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.5 2025/11/03 08:51:48 taca Exp $
+$NetBSD: distinfo,v 1.6 2026/03/29 14:23:50 taca Exp $
 
-BLAKE2s (activerecord-8.0.4.gem) = 3f375ebb5071f27fa6c5a390effbd46bed1b6d8326f3051f15abe941f2724423
-SHA512 (activerecord-8.0.4.gem) = bf763c7bc2cb8fe0f89c597e637b2bf4b24386df0a746f57f82dc25bd575900d3eafe4d6c186f830d994a74c3460688fa99ca16ca78c8ca2d602dc808c89e174
-Size (activerecord-8.0.4.gem) = 548864 bytes
+BLAKE2s (activerecord-8.0.5.gem) = 8390e9e4dd04e04b3462fa2f3dc360dcb703e7f807cea1a50f7f05c9c5aa3f04
+SHA512 (activerecord-8.0.5.gem) = 977ad460e33e0787c4b9b18ba7fd7bfaea5df749de78d53fe3a8f0fad61ba4d7871e41b9bb1b562c4c31772bc2778eda01ba38b5ec6834755a81ec1d31b40726
+Size (activerecord-8.0.5.gem) = 549888 bytes

devel/ruby-activejob80/distinfo

@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.5 2025/11/03 08:51:47 taca Exp $
+$NetBSD: distinfo,v 1.6 2026/03/29 14:23:50 taca Exp $
 
-BLAKE2s (activejob-8.0.4.gem) = fb00267ede5ddea94e56fe6b6912a835c44ab791b65cc4a94c09b2be82aa381d
-SHA512 (activejob-8.0.4.gem) = 81de93c8d748971c55ce46c7c60af4b6fb634d0d67dde5478c4ae1d2daa307a9f7f71417bbd2936d7fafa2ddd99ee600c2570b32ee8d9b7ab2d4791321fa95ea
-Size (activejob-8.0.4.gem) = 35840 bytes
+BLAKE2s (activejob-8.0.5.gem) = 8338176c743c540ee9df048378f3bc1523a88afa2f0b2b8eb51889d75db383d9
+SHA512 (activejob-8.0.5.gem) = 5b53e0a2fdde0d6cacbbfca828b0b36842f0f0fa334ad7a632549f3becdc358b2ca21110f16b349d62d6423f2173b70e123caa08bf8d6e01968c9540a0d12907
+Size (activejob-8.0.5.gem) = 35840 bytes

devel/ruby-activemodel80/distinfo

@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.5 2025/11/03 08:51:47 taca Exp $
+$NetBSD: distinfo,v 1.6 2026/03/29 14:23:50 taca Exp $
 
-BLAKE2s (activemodel-8.0.4.gem) = 341f81083851d760b2f2425abeebe9a2f53b1e71267b7f34a9e56ea1d97a90e1
-SHA512 (activemodel-8.0.4.gem) = 20ddc69c86566f0af6cbf8776d57687719aff0704c1fdbfbbe7377febd56d40d5964fc11d63fa701ec97446381e1eafaf1199dffa77e53e667750a72cfe2aa45
-Size (activemodel-8.0.4.gem) = 69120 bytes
+BLAKE2s (activemodel-8.0.5.gem) = fb85efb82c6acf9f598a8f03446c4d10cff6d17eb468199570bdcc1cace9fcf9
+SHA512 (activemodel-8.0.5.gem) = 9b058ee78d46a2c95f3bd60117c6dfd93e4dd4814e9174551ed168f0e1fbeec0eb3cae189eef611f25ded2e9bf2c7e6f8aeaf8f0b0f3f6435b02ba77b1880f38
+Size (activemodel-8.0.5.gem) = 69120 bytes

devel/ruby-activestorage80/distinfo

@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.5 2025/11/03 08:51:48 taca Exp $
+$NetBSD: distinfo,v 1.6 2026/03/29 14:23:51 taca Exp $
 
-BLAKE2s (activestorage-8.0.4.gem) = 1dbfd60f1093638b041338b16c860625013ccc5f66a796b4b661fee58c93385f
-SHA512 (activestorage-8.0.4.gem) = 624db3d6fc80ff4d2175be141d0206051ae2e88147c12ab0f19cde291aaa89aceb3c74e0d9ac0d0e403c177be3dc571a5094b08a41d8938426d86b0f2bdc9a5b
-Size (activestorage-8.0.4.gem) = 66560 bytes
+BLAKE2s (activestorage-8.0.5.gem) = 9d2cda98ea45570ded55f78112a30a555db02e79cf6e59a936294954bed27215
+SHA512 (activestorage-8.0.5.gem) = 5f5fe68707d9cff08d24b731ea7b098863f1ef9999aba3d6bfaa6b16b6ee5dba0ef7cd920761930695f24183dbf34c95ac7394f3c668811688da158d51975b70
+Size (activestorage-8.0.5.gem) = 68608 bytes

devel/ruby-activesupport80/distinfo

@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.5 2025/11/03 08:51:47 taca Exp $
+$NetBSD: distinfo,v 1.6 2026/03/29 14:23:50 taca Exp $
 
-BLAKE2s (activesupport-8.0.4.gem) = 321fb2cd8c0e3203e73d0668bf451b3f05b533842745705f6156b7839369aebe
-SHA512 (activesupport-8.0.4.gem) = e22ce03c63ece3f6603cf5b282832ca61c267e82c984f06c52bfe23d8e5e80d9adcb0f133ff7ad7e536dc4abc9b77da6223dedab2d4c1804ec81c7c23a7d1e14
-Size (activesupport-8.0.4.gem) = 252928 bytes
+BLAKE2s (activesupport-8.0.5.gem) = 1fdd3c25a547a0d6dc6c83a28150a5e1d27e5b4083b1fed9854b3993d52f18dd
+SHA512 (activesupport-8.0.5.gem) = 896521cafa8b51b91b0d92ea08def3a4c311ece32e8866d71038efdd9b8f5bce569661848afd0ffc97809e10f081af2cbda816c5cf3a71caf2dd83b8f1af1dfd
+Size (activesupport-8.0.5.gem) = 253952 bytes

devel/ruby-railties80/Makefile

@@ -1,8 +1,7 @@
-# $NetBSD: Makefile,v 1.4 2026/02/11 07:28:55 taca Exp $
+# $NetBSD: Makefile,v 1.5 2026/03/29 14:23:51 taca Exp $
 
 DISTNAME=	railties-${RAILS_VERSION}
 PKGNAME=	${RUBY_PKGPREFIX}-railties${RUBY_RAILS}-${RAILS_VERSION}
-PKGREVISION=	1
 CATEGORIES=	devel
 
 MAINTAINER=	pkgsrc-users@NetBSD.org

devel/ruby-railties80/distinfo

@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.5 2025/11/03 08:51:48 taca Exp $
+$NetBSD: distinfo,v 1.6 2026/03/29 14:23:51 taca Exp $
 
-BLAKE2s (railties-8.0.4.gem) = b566e61674784036fc917f33e1362e73de54b99c594839f8b4648512cdeff243
-SHA512 (railties-8.0.4.gem) = 7e62953d2e5c2af8457f0a3e0898a8ee1c990434b122d2cf48d152b3bbefbbfca177e690e090fcc44895a438e6036aa0145ca89a8c9974ac21422132e1a0270d
-Size (railties-8.0.4.gem) = 198144 bytes
+BLAKE2s (railties-8.0.5.gem) = 495dac8084ce7e07c7c0139b3cce260fe393d3202887eae86481bcd57ac78e52
+SHA512 (railties-8.0.5.gem) = 295ed12b6fd0083045011110038ba4dd971a4dda79eed3f64377e1ba117996b700d74b36b86cd3f59e073c59c6bce105ec8c6ebd6a22b8c09e3c5e366180ade6
+Size (railties-8.0.5.gem) = 198656 bytes

mail/ruby-actionmailbox80/distinfo

@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.5 2025/11/03 08:51:48 taca Exp $
+$NetBSD: distinfo,v 1.6 2026/03/29 14:23:51 taca Exp $
 
-BLAKE2s (actionmailbox-8.0.4.gem) = 4b248c7cc2081de1090c93ca3a6f9a07872304aa9ce8ea114ac1b5423adb1282
-SHA512 (actionmailbox-8.0.4.gem) = 746999d80a40f852516d14e549403f6be2957b4d70b2264b28df224a9d4df9ab6c4426007c6676781188a30a56839508aadd53cbbc9ac51ac9b5000dacbf236b
-Size (actionmailbox-8.0.4.gem) = 22016 bytes
+BLAKE2s (actionmailbox-8.0.5.gem) = 23be57dbd16392ba7aa6e3e7f151f8aee1cc42101f2dadbfcca82bbd419f0a32
+SHA512 (actionmailbox-8.0.5.gem) = 275688c738a1bc9a8ab53e2963651e7ee3dec7b98aa378aba25b73e10e653b6a7ba2625c76625a0097a5ee0f89ed8fee523351d598554d116e245e6da17937c3
+Size (actionmailbox-8.0.5.gem) = 22528 bytes

mail/ruby-actionmailer80/distinfo

@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.5 2025/11/03 08:51:48 taca Exp $
+$NetBSD: distinfo,v 1.6 2026/03/29 14:23:51 taca Exp $
 
-BLAKE2s (actionmailer-8.0.4.gem) = 533a7cb616e91adf704131631f3506bd8bf4a576a4d09bb82ac6a9cb942d7e1d
-SHA512 (actionmailer-8.0.4.gem) = 0c60d6df4819863d06bb22a163edef6ce12df42c82023af0daa897398c02dc8ab5678f8137694c7933673a7ac2facb1b6980b1297a59ffe7d16395301aad4907
-Size (actionmailer-8.0.4.gem) = 32256 bytes
+BLAKE2s (actionmailer-8.0.5.gem) = 55fc24ca3647de4a19c98c7324efa4ae303cce2a313fd2d60efc3b8cc7923cd1
+SHA512 (actionmailer-8.0.5.gem) = a50b7e40c0ac23956ade47a47d84d9d7723b4148fb2d6e78047ae4e4eb2cfbcaccf8f7e8e93ff1cff7c6349ecf02fb20819d01eaa1977044581fc04f93ccaa26
+Size (actionmailer-8.0.5.gem) = 32256 bytes

textproc/ruby-actiontext80/distinfo

@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.5 2025/11/03 08:51:49 taca Exp $
+$NetBSD: distinfo,v 1.6 2026/03/29 14:23:51 taca Exp $
 
-BLAKE2s (actiontext-8.0.4.gem) = 5f8e4b8b86e55a29c977fa4471350f5d1be37e71e68fd5464bbd0a36a943a93f
-SHA512 (actiontext-8.0.4.gem) = 7249f32037f3690aeb6c197d4e7eaaa47aa2a58dbda8b383da84a1d0b1956d823e8e3926a6e9027b9749bca8cf4d90a738f60b51a8a5b8b866c380b277c09bc9
-Size (actiontext-8.0.4.gem) = 141824 bytes
+BLAKE2s (actiontext-8.0.5.gem) = dfbe1ecc4cfd2397ebce5e887587d4b5f412bfeb6fe8a774ca7e4908ce3b822e
+SHA512 (actiontext-8.0.5.gem) = f648652a39225e44864284c7c189922f130c927251aa64839007700ace8ba3c635f7890dcfe3a22d0b48874e3d9fea93424125aea964637684eb0a91b3950c31
+Size (actiontext-8.0.5.gem) = 141824 bytes