All Versions
Latest Version
Avg Release Cycle
100 days
Latest Release
256 days ago

Changelog History
Page 3

  • v4.4.0 Changes

    February 10, 2016
    • New: support for MemCacheStore (#153). Thanks @elhu.
    • Some documentation and test harness improvements.
  • v4.3.1 Changes

    December 18, 2015
    • SECURITY FIX: Normalize request paths when using ActionDispatch. Thanks Andres Riancho at @includesecurity for reporting it.
    • Remove support for ruby 1.9.x
    • Add Code of Conduct
    • Several documentation and testing improvements
  • v4.3.0 Changes

    May 22, 2015
    • Redis proxy passes raw: true (thanks @stanhu)
    • Redis supports delete method to be consistent with Dalli (thanks @stanhu)
    • Support the ability to reset Fail2Ban count and ban flag (thanks @stanhu)
  • v4.2.0 Changes

    October 26, 2014
    • Throttle's period argument now takes a proc as well as a number (thanks @gsamokovarov)
    • Invoke the #call method on blocklist_response and throttle_response instead of #[], as per the Rack spec. (thanks @gsamokovarov)
  • v4.1.1 Changes

    September 11, 2014
    • Fix a race condition in throttles that could allow more requests than intended.
  • v4.1.0 Changes

    May 22, 2014
    • Tracks take an optional limit and period to only notify once a threshold is reached (similar to throttles). Thanks @chiliburger!
    • Default throttled & blocklist responses have Content-Type: text/plain
    • Rack::Attack.clear! resets tracks
  • v4.0.1 Changes

    May 14, 2014
    • Add throttle discriminator to rack env (thanks @blahed)
  • v4.0.0 Changes

    April 28, 2014
    • Implement proxy for Dalli with better Memcachier support. (thanks @hakanensari)
    • returns an instance to ease testing. (thanks @stevehodgkiss) [Changing a module to a class is not backwards compatible, hence v4.0.0.]
    • Use Rack::Attack::Request subclass of Rack::Request for easier extending (thanks @tristandunn)
    • Test more dalli versions.
  • v3.0.0 Changes

    March 15, 2014
    • Change default blocklisted response to 403 Forbidden (thanks @carpodaster).
    • Fail gracefully when Redis store is not available; rescue exeption and don't throttle request. (thanks @wkimeria)
    • TravisCI runs integration tests.
  • v2.3.0 Changes

    October 11, 2013
    • Allow throttle limit argument to be a proc. (thanks @lunks)
    • Add Allow2Ban, complement of Fail2Ban. (thanks @jormon)
    • Improved TravisCI testing