Top Ruby Gems: https://github.com/rack/rack
rack ruby web
Score: 37.26491186805315
Last synced: about 1 hour ago
JSON representation
Repository metadata:
A modular Ruby web server interface.
- Host: GitHub
- URL: https://github.com/rack/rack
- Owner: rack
- License: other
- Created: 2008-12-24T03:03:12.000Z (over 17 years ago)
- Default Branch: main
- Last Pushed: 2026-05-02T06:07:27.000Z (12 days ago)
- Last Synced: 2026-05-09T02:17:51.252Z (5 days ago)
- Topics: rack, ruby, web
- Language: Ruby
- Homepage:
- Size: 10.2 MB
- Stars: 5,110
- Watchers: 151
- Forks: 1,673
- Open Issues: 29
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- Contributing: CONTRIBUTING.md
- License: MIT-LICENSE
- Security: SECURITY.md
Owner metadata:
- Name: Official Rack repositories
- Login: rack
- Email:
- Kind: organization
- Description:
- Website: http://rack.github.com
- Location:
- Twitter:
- Company:
- Icon url: https://avatars.githubusercontent.com/u/42379?v=4
- Repositories: 10
- Last Synced at: 2024-03-25T19:32:49.958Z
- Profile URL: https://github.com/rack
GitHub Events
Total
- Commit comment event: 1
- Create event: 56
- Delete event: 27
- Discussion event: 1
- Fork event: 43
- Issue comment event: 468
- Issues event: 89
- Pull request event: 155
- Pull request review comment event: 183
- Pull request review event: 258
- Push event: 307
- Watch event: 184
- Total: 1772
Last Year
- Commit comment event: 1
- Create event: 23
- Delete event: 10
- Discussion event: 1
- Fork event: 18
- Issue comment event: 166
- Issues event: 32
- Pull request event: 71
- Pull request review comment event: 63
- Pull request review event: 98
- Push event: 146
- Watch event: 71
- Total: 700
Committers metadata
Last synced: about 15 hours ago
Total Commits: 2,828
Total Committers: 567
Avg Commits per committer: 4.988
Development Distribution Score (DDS): 0.902
Commits in past year: 102
Committers in past year: 32
Avg Commits per committer in past year: 3.188
Development Distribution Score (DDS) in past year: 0.667
| Name | Commits | |
|---|---|---|
| Samuel Williams | s****s@o****z | 277 |
| Leah Neukirchen | l****h@v****g | 262 |
| Jeremy Evans | c****e@j****t | 232 |
| James Tucker | j****r@g****m | 228 |
| Aaron Patterson | a****n@g****m | 177 |
| Scytrin dai Kinthra | s****n@g****m | 105 |
| Joshua Peek | j****h@j****m | 101 |
| Konstantin Haase | k****s@g****m | 63 |
| Michael Fellinger | m****r@g****m | 44 |
| Santiago Pastorino | s****o@w****m | 44 |
| Ryan Tomayko | r****o@g****m | 31 |
| Jeremy Kemper | j****y@b****t | 27 |
| James Tucker | r****i@g****m | 24 |
| deepj | d****a@g****m | 23 |
| José Valim | j****m@g****m | 22 |
| Christoffer Sawicki | c****i@g****m | 20 |
| Ravil Bayramgalin | b****a@e****m | 17 |
| Eric Wong | n****n@y****t | 16 |
| Eric Wong | e****@8****g | 14 |
| Lars Gierth | l****h@g****m | 14 |
| Rafael Mendonça França | r****a@g****m | 14 |
| Oscar Del Ben | o****r@o****m | 14 |
| Postmodern | p****3@g****m | 13 |
| eileencodes | e****s@g****m | 13 |
| Yoshiyuki Hirano | y****o@m****m | 12 |
| Olle Jonsson | o****n@a****m | 12 |
| Thomas Klemm | g****b@t****u | 12 |
| Patrik Ragnarsson | p****k@s****t | 12 |
| Hongli Lai (Phusion) | h****i@p****l | 12 |
| Nick Adams | n****k@n****k | 12 |
| and 537 more... | ||
Issue and Pull Request metadata
Last synced: 2 days ago
Total issues: 153
Total pull requests: 443
Average time to close issues: 4 months
Average time to close pull requests: about 1 month
Total issue authors: 115
Total pull request authors: 105
Average comments per issue: 5.24
Average comments per pull request: 2.78
Merged pull request: 330
Bot issues: 0
Bot pull requests: 8
Past year issues: 35
Past year pull requests: 84
Past year average time to close issues: 8 days
Past year average time to close pull requests: 8 days
Past year issue authors: 32
Past year pull request authors: 36
Past year average comments per issue: 3.17
Past year average comments per pull request: 1.92
Past year merged pull request: 52
Past year bot issues: 0
Past year bot pull requests: 4
Top Issue Authors
- ioquatix (29)
- catatsuy (3)
- Fjan (3)
- gegenelnet (2)
- lloeki (2)
- LevitatingBusinessMan (2)
- radar (2)
- mikgry (2)
- doriantaylor (2)
- trak3r (1)
- leviwilson (1)
- larouxn (1)
- JunichiIto (1)
- jurruh (1)
- p8 (1)
Top Pull Request Authors
- ioquatix (123)
- jeremyevans (73)
- Earlopain (34)
- dentarg (15)
- skipkayhil (8)
- dependabot[bot] (8)
- casperisfine (6)
- p8 (5)
- MSP-Greg (5)
- alexanderadam (5)
- sandipransing (4)
- byroot (4)
- willbryant (4)
- tenderlove (4)
- adam12 (4)
Top Issue Labels
- Documentation (6)
- SPEC (3)
- Maintenance (2)
- Bug (2)
- Needs Feedback (1)
Top Pull Request Labels
- dependencies (8)
- Backport (8)
- Bug (4)
- github_actions (4)
- Maintenance (3)
- SPEC (3)
- hacktoberfest-accepted (2)
- Feature (1)
- Needs Feedback (1)
Package metadata
- Total packages: 4
-
Total downloads:
- rubygems: 2,547,417,092 total
- Total docker downloads: 2,693,372,318
- Total dependent packages: 3,634 (may contain duplicates)
- Total dependent repositories: 1,043,594 (may contain duplicates)
- Total versions: 427
- Total maintainers: 6
- Total advisories: 99
gem.coop: rack
Rack provides a minimal, modular and adaptable interface for developing web applications in Ruby. By wrapping HTTP requests and responses in the simplest way possible, it unifies and distills the API for web servers, web frameworks, and software in between (the so-called middleware) into a single method call.
- Homepage: https://github.com/rack/rack
- Documentation: http://www.rubydoc.info/gems/rack/
- Licenses: MIT
- Latest release: 3.2.6 (published about 1 month ago)
- Last Synced: 2026-05-11T18:01:20.676Z (2 days ago)
- Versions: 178
- Dependent Packages: 0
- Dependent Repositories: 0
- Downloads: 1,273,149,697 Total
- Docker Downloads: 1,346,686,159
-
Rankings:
- Dependent repos count: 0.0%
- Dependent packages count: 0.0%
- Average: 0.001%
- Downloads: 0.004%
- Maintainers (6)
-
Advisories:
- Rack::Request accepts invalid Host characters, enabling host allowlist bypass
- Rack has Content-Length mismatch in Rack::Files error responses
- Rack::Sendfile header-based X-Accel-Mapping regex injection enables unauthorized X-Accel-Redirect
- Rack's multipart parsing without Content-Length header allows unbounded chunked file uploads
- Rack has a root directory disclosure via unescaped regex interpolation in Rack::Directory
- Rack has quadratic complexity in Rack::Utils.select_best_encoding via wildcard Accept-Encoding header
- Rack: Forwarded Header semicolon injection enables Host and Scheme spoofing
- Rack's improper unfolding of folded multipart headers preserves CRLF in parsed parameter values
- Rack's greedy multipart boundary parsing can cause parser differentials and WAF bypass.
- Rack's multipart header parsing allows Denial of Service via escape-heavy quoted parameters
- Rack's multipart byte range processing allows denial of service via excessive overlapping ranges
- Rack:: Static header_rules bypass via URL-encoded paths
- Rack::Static prefix matching can expose unintended files under the static root
- Stored XSS in Rack::Directory via javascript: filenames rendered into anchor href
- Rack has a Directory Traversal via Rack:Directory
- Rack is vulnerable to a memory-exhaustion DoS through unbounded URL-encoded body parsing
- Rack has a Possible Information Disclosure Vulnerability
- Rack's multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
- Rack: Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
- Rack's unbounded multipart preamble buffering enables DoS (memory exhaustion)
- Rack has an unsafe default in Rack::QueryParser allows params_limit bypass via semicolon-separated parameters
- ReDoS Vulnerability in Rack::Multipart handle_mime_head
- Rack has an Unbounded-Parameter DoS in Rack::QueryParser
- Rack session gets restored after deletion
- Local File Inclusion in Rack::Static
- Escape Sequence Injection vulnerability in Rack lead to Possible Log Injection
- Possible Log Injection in Rack::CommonLogger
- Rack ReDoS Vulnerability in HTTP Accept Headers Parsing
- Rack vulnerable to ReDoS in content type parsing (2nd degree polynomial)
- Rack has possible DoS Vulnerability with Range Header
- Rack Header Parsing leads to Possible Denial of Service Vulnerability
- Possible Denial of Service Vulnerability in Rack's header parsing
- Rack has possible DoS Vulnerability in Multipart MIME parsing
- Denial of Service Vulnerability in Rack Content-Disposition parsing
- Denial of service via header parsing in Rack
- Denial of service via multipart parsing in Rack
- Denial of Service Vulnerability in Rack Multipart Parsing
- Possible shell escape sequence injection vulnerability in Rack
- Rack Gem Subject to Denial of Service via Hash Collisions
- Rack arbitrary code execution via timing attack
- Rack vulnerable to Denial of Service
- Directory traversal in Rack::Directory app bundled with Rack
- Rack allows Percent-encoded cookies to overwrite existing prefixed cookie names
- Possible Information Leak / Session Hijack Vulnerability in Rack
- Rack vulnerable to Cross-site Scripting
- Rack vulnerable to Denial of Service
- Moderate severity vulnerability that affects rack
- Rack Vulnerable to Path Traversal
- Rack rubygems receiving excessively long lines triggers out-of-memory error
- Rack vulnerable to REDoS
- Rack vulnerable to Denial of Service via large parameter depth request
rubygems.org: rack
Rack provides a minimal, modular and adaptable interface for developing web applications in Ruby. By wrapping HTTP requests and responses in the simplest way possible, it unifies and distills the API for web servers, web frameworks, and software in between (the so-called middleware) into a single method call.
- Homepage: https://github.com/rack/rack
- Documentation: http://www.rubydoc.info/gems/rack/
- Licenses: MIT
- Latest release: 3.2.6 (published about 1 month ago)
- Last Synced: 2026-05-13T07:14:35.491Z (about 15 hours ago)
- Versions: 178
- Dependent Packages: 3,634
- Dependent Repositories: 1,043,594
- Downloads: 1,274,267,395 Total
- Docker Downloads: 1,346,686,159
-
Rankings:
- Dependent repos count: 0.004%
- Downloads: 0.007%
- Dependent packages count: 0.014%
- Average: 0.091%
- Docker downloads count: 0.098%
- Forks count: 0.146%
- Stargazers count: 0.275%
- Maintainers (6)
-
Advisories:
- Rack::Request accepts invalid Host characters, enabling host allowlist bypass
- Rack has Content-Length mismatch in Rack::Files error responses
- Rack::Sendfile header-based X-Accel-Mapping regex injection enables unauthorized X-Accel-Redirect
- Rack's multipart parsing without Content-Length header allows unbounded chunked file uploads
- Rack has a root directory disclosure via unescaped regex interpolation in Rack::Directory
- Rack has quadratic complexity in Rack::Utils.select_best_encoding via wildcard Accept-Encoding header
- Rack: Forwarded Header semicolon injection enables Host and Scheme spoofing
- Rack's improper unfolding of folded multipart headers preserves CRLF in parsed parameter values
- Rack's greedy multipart boundary parsing can cause parser differentials and WAF bypass.
- Rack's multipart header parsing allows Denial of Service via escape-heavy quoted parameters
- Rack's multipart byte range processing allows denial of service via excessive overlapping ranges
- Rack:: Static header_rules bypass via URL-encoded paths
- Rack::Static prefix matching can expose unintended files under the static root
- Stored XSS in Rack::Directory via javascript: filenames rendered into anchor href
- Rack has a Directory Traversal via Rack:Directory
- Rack is vulnerable to a memory-exhaustion DoS through unbounded URL-encoded body parsing
- Rack has a Possible Information Disclosure Vulnerability
- Rack's multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
- Rack: Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
- Rack's unbounded multipart preamble buffering enables DoS (memory exhaustion)
- Rack has an unsafe default in Rack::QueryParser allows params_limit bypass via semicolon-separated parameters
- ReDoS Vulnerability in Rack::Multipart handle_mime_head
- Rack has an Unbounded-Parameter DoS in Rack::QueryParser
- Rack session gets restored after deletion
- Local File Inclusion in Rack::Static
- Escape Sequence Injection vulnerability in Rack lead to Possible Log Injection
- Possible Log Injection in Rack::CommonLogger
- Rack ReDoS Vulnerability in HTTP Accept Headers Parsing
- Rack vulnerable to ReDoS in content type parsing (2nd degree polynomial)
- Rack has possible DoS Vulnerability with Range Header
- Rack Header Parsing leads to Possible Denial of Service Vulnerability
- Possible Denial of Service Vulnerability in Rack's header parsing
- Rack has possible DoS Vulnerability in Multipart MIME parsing
- Denial of Service Vulnerability in Rack Content-Disposition parsing
- Denial of service via header parsing in Rack
- Denial of service via multipart parsing in Rack
- Denial of Service Vulnerability in Rack Multipart Parsing
- Possible shell escape sequence injection vulnerability in Rack
- Rack Gem Subject to Denial of Service via Hash Collisions
- Rack arbitrary code execution via timing attack
- Rack vulnerable to Denial of Service
- Directory traversal in Rack::Directory app bundled with Rack
- Rack allows Percent-encoded cookies to overwrite existing prefixed cookie names
- Possible Information Leak / Session Hijack Vulnerability in Rack
- Rack vulnerable to Cross-site Scripting
- Rack vulnerable to Denial of Service
- Moderate severity vulnerability that affects rack
- Rack Vulnerable to Path Traversal
- Rack rubygems receiving excessively long lines triggers out-of-memory error
- Rack vulnerable to REDoS
- Rack vulnerable to Denial of Service via large parameter depth request
proxy.golang.org: github.com/rack/rack
- Homepage:
- Documentation: https://pkg.go.dev/github.com/rack/rack#section-documentation
- Licenses: other
- Latest release: v3.2.6+incompatible (published about 1 month ago)
- Last Synced: 2026-05-11T20:04:37.066Z (2 days ago)
- Versions: 67
- Dependent Packages: 0
- Dependent Repositories: 0
-
Rankings:
- Forks count: 0.578%
- Stargazers count: 0.977%
- Average: 5.483%
- Dependent packages count: 9.576%
- Dependent repos count: 10.802%
guix: ruby-rack
Unified web application interface for Ruby
- Homepage: https://github.com/rack/rack
- Documentation: https://git.savannah.gnu.org/cgit/guix.git/tree/gnu/packages/ruby-xyz.scm#n8284
- Licenses:
- Latest release: 3.2.5 (published about 1 month ago)
- Last Synced: 2026-04-27T16:17:30.626Z (16 days ago)
- Versions: 4
- Dependent Packages: 0
- Dependent Repositories: 0
-
Rankings:
- Dependent repos count: 0.0%
- Dependent packages count: 0.0%
- Average: 100%
Dependencies
Gemfile
rubygems
- rdoc >= 0 development
- rubocop >= 0
- rubocop-packaging >= 0
- webrick >= 0
rack.gemspec
rubygems
- bundler >= 0 development
- minitest ~> 5.0 development
- minitest-global_expectations >= 0 development
- rake >= 0 development
.github/workflows/depsreview.yaml
actions
- actions/checkout v3 composite
- actions/dependency-review-action v3 composite
.github/workflows/test-external.yaml
actions
- actions/checkout v3 composite
- ruby/setup-ruby v1 composite
.github/workflows/test.yaml
actions
- actions/checkout v3 composite
- ruby/setup-ruby v1 composite