Security

• Fixed Rack::Session::Cookie timing attack vulnerability (CVE-2013-0263)
• Fixed unsafe object creation vulnerability in JSON (CVE-2013-0269 | more info)
• Fixed unsafe YAML attribute serialization vulnerability (CVE-2013-0277 | more info)

Bugfixes / Enhancements

• Upgraded git to our latest custom build, fixing some issues with refs going missing under certain conditions.