Top Ruby Gems: https://github.com/rack/rack
rack ruby web
Score: 37.28009413815921
Last synced: about 16 hours ago
JSON representation
Repository metadata:
A modular Ruby web server interface.
- Host: GitHub
- URL: https://github.com/rack/rack
- Owner: rack
- License: other
- Created: 2008-12-24T03:03:12.000Z (over 17 years ago)
- Default Branch: main
- Last Pushed: 2026-06-22T08:42:18.000Z (6 days ago)
- Last Synced: 2026-06-23T00:21:40.854Z (5 days ago)
- Topics: rack, ruby, web
- Language: Ruby
- Homepage:
- Size: 10.2 MB
- Stars: 5,124
- Watchers: 151
- Forks: 1,676
- Open Issues: 33
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- Contributing: CONTRIBUTING.md
- License: MIT-LICENSE
- Security: SECURITY.md
Owner metadata:
- Name: Official Rack repositories
- Login: rack
- Email:
- Kind: organization
- Description:
- Website: http://rack.github.com
- Location:
- Twitter:
- Company:
- Icon url: https://avatars.githubusercontent.com/u/42379?v=4
- Repositories: 10
- Last Synced at: 2024-03-25T19:32:49.958Z
- Profile URL: https://github.com/rack
GitHub Events
Total
- Commit comment event: 1
- Create event: 56
- Delete event: 27
- Discussion event: 1
- Fork event: 43
- Issue comment event: 468
- Issues event: 89
- Pull request event: 156
- Pull request review comment event: 184
- Pull request review event: 258
- Push event: 307
- Watch event: 184
- Total: 1774
Last Year
- Commit comment event: 1
- Create event: 15
- Delete event: 9
- Discussion event: 1
- Fork event: 14
- Issue comment event: 126
- Issues event: 25
- Pull request event: 53
- Pull request review comment event: 60
- Pull request review event: 87
- Push event: 109
- Watch event: 62
- Total: 562
Committers metadata
Last synced: 7 days ago
Total Commits: 2,830
Total Committers: 568
Avg Commits per committer: 4.982
Development Distribution Score (DDS): 0.902
Commits in past year: 95
Committers in past year: 30
Avg Commits per committer in past year: 3.167
Development Distribution Score (DDS) in past year: 0.695
| Name | Commits | |
|---|---|---|
| Samuel Williams | s****s@o****z | 277 |
| Leah Neukirchen | l****h@v****g | 262 |
| Jeremy Evans | c****e@j****t | 232 |
| James Tucker | j****r@g****m | 228 |
| Aaron Patterson | a****n@g****m | 177 |
| Scytrin dai Kinthra | s****n@g****m | 105 |
| Joshua Peek | j****h@j****m | 101 |
| Konstantin Haase | k****s@g****m | 63 |
| Michael Fellinger | m****r@g****m | 44 |
| Santiago Pastorino | s****o@w****m | 44 |
| Ryan Tomayko | r****o@g****m | 31 |
| Jeremy Kemper | j****y@b****t | 27 |
| James Tucker | r****i@g****m | 24 |
| deepj | d****a@g****m | 23 |
| José Valim | j****m@g****m | 22 |
| Christoffer Sawicki | c****i@g****m | 20 |
| Ravil Bayramgalin | b****a@e****m | 17 |
| Eric Wong | n****n@y****t | 16 |
| Lars Gierth | l****h@g****m | 14 |
| Eric Wong | e****@8****g | 14 |
| Rafael Mendonça França | r****a@g****m | 14 |
| Oscar Del Ben | o****r@o****m | 14 |
| Postmodern | p****3@g****m | 13 |
| eileencodes | e****s@g****m | 13 |
| Nick Adams | n****k@n****k | 12 |
| Hongli Lai (Phusion) | h****i@p****l | 12 |
| Patrik Ragnarsson | p****k@s****t | 12 |
| Thomas Klemm | g****b@t****u | 12 |
| Yoshiyuki Hirano | y****o@m****m | 12 |
| Olle Jonsson | o****n@a****m | 12 |
| and 538 more... | ||
Issue and Pull Request metadata
Last synced: 7 days ago
Total issues: 154
Total pull requests: 448
Average time to close issues: 4 months
Average time to close pull requests: about 1 month
Total issue authors: 116
Total pull request authors: 109
Average comments per issue: 5.23
Average comments per pull request: 2.77
Merged pull request: 332
Bot issues: 0
Bot pull requests: 8
Past year issues: 32
Past year pull requests: 64
Past year average time to close issues: 9 days
Past year average time to close pull requests: 12 days
Past year issue authors: 29
Past year pull request authors: 35
Past year average comments per issue: 3.31
Past year average comments per pull request: 1.94
Past year merged pull request: 32
Past year bot issues: 0
Past year bot pull requests: 4
Top Issue Authors
- ioquatix (29)
- catatsuy (3)
- Fjan (3)
- gegenelnet (2)
- lloeki (2)
- LevitatingBusinessMan (2)
- radar (2)
- mikgry (2)
- doriantaylor (2)
- trak3r (1)
- leviwilson (1)
- larouxn (1)
- JunichiIto (1)
- jurruh (1)
- p8 (1)
Top Pull Request Authors
- ioquatix (123)
- jeremyevans (73)
- Earlopain (34)
- dentarg (15)
- skipkayhil (8)
- dependabot[bot] (8)
- casperisfine (6)
- p8 (5)
- byroot (5)
- MSP-Greg (5)
- alexanderadam (5)
- sandipransing (4)
- willbryant (4)
- tenderlove (4)
- adam12 (4)
Top Issue Labels
- Documentation (6)
- SPEC (3)
- Maintenance (2)
- Bug (2)
- Needs Feedback (1)
Top Pull Request Labels
- dependencies (8)
- Backport (8)
- Bug (4)
- github_actions (4)
- Maintenance (3)
- SPEC (3)
- hacktoberfest-accepted (2)
- Feature (1)
- Needs Feedback (1)
Package metadata
- Total packages: 5
-
Total downloads:
- rubygems: 2,599,694,247 total
- Total docker downloads: 2,693,372,318
- Total dependent packages: 3,634 (may contain duplicates)
- Total dependent repositories: 1,043,594 (may contain duplicates)
- Total versions: 441
- Total maintainers: 6
- Total advisories: 102
gem.coop: rack
Rack provides a minimal, modular and adaptable interface for developing web applications in Ruby. By wrapping HTTP requests and responses in the simplest way possible, it unifies and distills the API for web servers, web frameworks, and software in between (the so-called middleware) into a single method call.
- Homepage: https://github.com/rack/rack
- Documentation: http://www.rubydoc.info/gems/rack/
- Licenses: MIT
- Latest release: 3.2.6 (published 3 months ago)
- Last Synced: 2026-06-27T02:04:45.477Z (1 day ago)
- Versions: 178
- Dependent Packages: 0
- Dependent Repositories: 0
- Downloads: 1,299,854,296 Total
- Docker Downloads: 1,346,686,159
-
Rankings:
- Dependent repos count: 0.0%
- Dependent packages count: 0.0%
- Average: 0.001%
- Downloads: 0.004%
- Maintainers (6)
-
Advisories:
- Rack::Request accepts invalid Host characters, enabling host allowlist bypass
- Rack has Content-Length mismatch in Rack::Files error responses
- Rack::Sendfile header-based X-Accel-Mapping regex injection enables unauthorized X-Accel-Redirect
- Rack's multipart parsing without Content-Length header allows unbounded chunked file uploads
- Rack has a root directory disclosure via unescaped regex interpolation in Rack::Directory
- Rack has quadratic complexity in Rack::Utils.select_best_encoding via wildcard Accept-Encoding header
- Rack: Forwarded Header semicolon injection enables Host and Scheme spoofing
- Rack's improper unfolding of folded multipart headers preserves CRLF in parsed parameter values
- Rack's greedy multipart boundary parsing can cause parser differentials and WAF bypass.
- Rack's multipart header parsing allows Denial of Service via escape-heavy quoted parameters
- Rack's multipart byte range processing allows denial of service via excessive overlapping ranges
- Rack:: Static header_rules bypass via URL-encoded paths
- Rack::Static prefix matching can expose unintended files under the static root
- Stored XSS in Rack::Directory via javascript: filenames rendered into anchor href
- Rack has a Directory Traversal via Rack:Directory
- Rack is vulnerable to a memory-exhaustion DoS through unbounded URL-encoded body parsing
- Rack has a Possible Information Disclosure Vulnerability
- Rack's multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
- Rack: Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
- Rack's unbounded multipart preamble buffering enables DoS (memory exhaustion)
- Rack has an unsafe default in Rack::QueryParser allows params_limit bypass via semicolon-separated parameters
- ReDoS Vulnerability in Rack::Multipart handle_mime_head
- Rack has an Unbounded-Parameter DoS in Rack::QueryParser
- Rack session gets restored after deletion
- Local File Inclusion in Rack::Static
- Escape Sequence Injection vulnerability in Rack lead to Possible Log Injection
- Possible Log Injection in Rack::CommonLogger
- Rack ReDoS Vulnerability in HTTP Accept Headers Parsing
- Rack vulnerable to ReDoS in content type parsing (2nd degree polynomial)
- Rack has possible DoS Vulnerability with Range Header
- Rack Header Parsing leads to Possible Denial of Service Vulnerability
- Possible Denial of Service Vulnerability in Rack's header parsing
- Rack has possible DoS Vulnerability in Multipart MIME parsing
- Denial of Service Vulnerability in Rack Content-Disposition parsing
- Denial of service via header parsing in Rack
- Denial of service via multipart parsing in Rack
- Denial of Service Vulnerability in Rack Multipart Parsing
- Possible shell escape sequence injection vulnerability in Rack
- Rack Gem Subject to Denial of Service via Hash Collisions
- Rack arbitrary code execution via timing attack
- Rack vulnerable to Denial of Service
- Directory traversal in Rack::Directory app bundled with Rack
- Rack allows Percent-encoded cookies to overwrite existing prefixed cookie names
- Possible Information Leak / Session Hijack Vulnerability in Rack
- Rack vulnerable to Cross-site Scripting
- Rack vulnerable to Denial of Service
- Moderate severity vulnerability that affects rack
- Rack Vulnerable to Path Traversal
- Rack rubygems receiving excessively long lines triggers out-of-memory error
- Rack vulnerable to REDoS
- Rack vulnerable to Denial of Service via large parameter depth request
rubygems.org: rack
Rack provides a minimal, modular and adaptable interface for developing web applications in Ruby. By wrapping HTTP requests and responses in the simplest way possible, it unifies and distills the API for web servers, web frameworks, and software in between (the so-called middleware) into a single method call.
- Homepage: https://github.com/rack/rack
- Documentation: http://www.rubydoc.info/gems/rack/
- Licenses: MIT
- Latest release: 3.2.6 (published 3 months ago)
- Last Synced: 2026-06-27T02:04:53.032Z (1 day ago)
- Versions: 178
- Dependent Packages: 3,634
- Dependent Repositories: 1,043,594
- Downloads: 1,299,839,951 Total
- Docker Downloads: 1,346,686,159
-
Rankings:
- Dependent repos count: 0.004%
- Downloads: 0.007%
- Dependent packages count: 0.014%
- Average: 0.091%
- Docker downloads count: 0.098%
- Forks count: 0.146%
- Stargazers count: 0.275%
- Maintainers (6)
-
Advisories:
- Rack::Request accepts invalid Host characters, enabling host allowlist bypass
- Rack has Content-Length mismatch in Rack::Files error responses
- Rack::Sendfile header-based X-Accel-Mapping regex injection enables unauthorized X-Accel-Redirect
- Rack's multipart parsing without Content-Length header allows unbounded chunked file uploads
- Rack has a root directory disclosure via unescaped regex interpolation in Rack::Directory
- Rack has quadratic complexity in Rack::Utils.select_best_encoding via wildcard Accept-Encoding header
- Rack: Forwarded Header semicolon injection enables Host and Scheme spoofing
- Rack's improper unfolding of folded multipart headers preserves CRLF in parsed parameter values
- Rack's greedy multipart boundary parsing can cause parser differentials and WAF bypass.
- Rack's multipart header parsing allows Denial of Service via escape-heavy quoted parameters
- Rack's multipart byte range processing allows denial of service via excessive overlapping ranges
- Rack:: Static header_rules bypass via URL-encoded paths
- Rack::Static prefix matching can expose unintended files under the static root
- Stored XSS in Rack::Directory via javascript: filenames rendered into anchor href
- Rack has a Directory Traversal via Rack:Directory
- Rack is vulnerable to a memory-exhaustion DoS through unbounded URL-encoded body parsing
- Rack has a Possible Information Disclosure Vulnerability
- Rack's multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
- Rack: Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
- Rack's unbounded multipart preamble buffering enables DoS (memory exhaustion)
- Rack has an unsafe default in Rack::QueryParser allows params_limit bypass via semicolon-separated parameters
- ReDoS Vulnerability in Rack::Multipart handle_mime_head
- Rack has an Unbounded-Parameter DoS in Rack::QueryParser
- Rack session gets restored after deletion
- Local File Inclusion in Rack::Static
- Escape Sequence Injection vulnerability in Rack lead to Possible Log Injection
- Possible Log Injection in Rack::CommonLogger
- Rack ReDoS Vulnerability in HTTP Accept Headers Parsing
- Rack vulnerable to ReDoS in content type parsing (2nd degree polynomial)
- Rack has possible DoS Vulnerability with Range Header
- Rack Header Parsing leads to Possible Denial of Service Vulnerability
- Possible Denial of Service Vulnerability in Rack's header parsing
- Rack has possible DoS Vulnerability in Multipart MIME parsing
- Denial of Service Vulnerability in Rack Content-Disposition parsing
- Denial of service via header parsing in Rack
- Denial of service via multipart parsing in Rack
- Denial of Service Vulnerability in Rack Multipart Parsing
- Possible shell escape sequence injection vulnerability in Rack
- Rack Gem Subject to Denial of Service via Hash Collisions
- Rack arbitrary code execution via timing attack
- Rack vulnerable to Denial of Service
- Directory traversal in Rack::Directory app bundled with Rack
- Rack allows Percent-encoded cookies to overwrite existing prefixed cookie names
- Possible Information Leak / Session Hijack Vulnerability in Rack
- Rack vulnerable to Cross-site Scripting
- Rack vulnerable to Denial of Service
- Moderate severity vulnerability that affects rack
- Rack rubygems receiving excessively long lines triggers out-of-memory error
- Rack Vulnerable to Path Traversal
- Rack vulnerable to REDoS
- Rack vulnerable to Denial of Service via large parameter depth request
gentoo-portage: dev-ruby/rack
A modular Ruby webserver interface
- Homepage: https://github.com/rack/rack
- Documentation: https://packages.gentoo.org/packages/dev-ruby/rack
- Licenses: MIT
- Latest release: 3.2.4 (published 2 months ago)
- Last Synced: 2026-05-27T02:49:02.789Z (about 1 month ago)
- Versions: 14
- Dependent Packages: 0
- Dependent Repositories: 0
-
Rankings:
- Dependent repos count: 0.0%
- Dependent packages count: 0.0%
- Average: 0.119%
- Forks count: 0.132%
- Stargazers count: 0.343%
proxy.golang.org: github.com/rack/rack
- Homepage:
- Documentation: https://pkg.go.dev/github.com/rack/rack#section-documentation
- Licenses: other
- Latest release: v3.2.6+incompatible (published 3 months ago)
- Last Synced: 2026-06-27T02:04:55.158Z (1 day ago)
- Versions: 67
- Dependent Packages: 0
- Dependent Repositories: 0
-
Rankings:
- Forks count: 0.578%
- Stargazers count: 0.977%
- Average: 5.483%
- Dependent packages count: 9.576%
- Dependent repos count: 10.802%
guix: ruby-rack
Unified web application interface for Ruby
- Homepage: https://github.com/rack/rack
- Documentation: https://git.savannah.gnu.org/cgit/guix.git/tree/gnu/packages/ruby-xyz.scm#n8284
- Licenses:
- Latest release: 3.2.5 (published 3 months ago)
- Last Synced: 2026-04-27T16:17:30.626Z (2 months ago)
- Versions: 4
- Dependent Packages: 0
- Dependent Repositories: 0
-
Rankings:
- Dependent repos count: 0.0%
- Dependent packages count: 0.0%
- Average: 100%
Dependencies
Gemfile
rubygems
- rdoc >= 0 development
- rubocop >= 0
- rubocop-packaging >= 0
- webrick >= 0
rack.gemspec
rubygems
- bundler >= 0 development
- minitest ~> 5.0 development
- minitest-global_expectations >= 0 development
- rake >= 0 development
.github/workflows/depsreview.yaml
actions
- actions/checkout v3 composite
- actions/dependency-review-action v3 composite
.github/workflows/test-external.yaml
actions
- actions/checkout v3 composite
- ruby/setup-ruby v1 composite
.github/workflows/test.yaml
actions
- actions/checkout v3 composite
- ruby/setup-ruby v1 composite