Hi, intrigeri wrote (09 Feb 2015 15:11:38 GMT) : > Another lead might be to reintroduce ruby-activerecord-3.x into > Jessie(!). Apparently it also involves getting a compatibility patch > back into ruby-arel, that was removed in the 5.0.1.20140414130214-1 > upload. Before I test this: is there any upstream security support for > activerecord 3.x these days?
The way I understand upstream's maintenance [1] and security [2] policies, and how things went in the past: 3.x currently gets fixes for "Severe security issues" only, but once Rails 5.x is out (Fall, 2015) this will stop. So, I'm afraid this (admittedly crazy) option must be discarded for Jessie. [1] http://guides.rubyonrails.org/maintenance_policy.html [2] http://rubyonrails.org/security/ Cheers, -- intrigeri -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
