|Link||package | bugs open | bugs closed | Wiki | GitHub | web search|
|Description||A Ruby/Rack web server built for concurrency|
Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on...
puma may not always call close on the response body. Rails, prior to version 18.104.22.168, depended on the response body being closed in order for its...
Using puma with a proxy which forwards LF characters as line endings could allow HTTP request smuggling. Puma is only aware of a single proxy server which...