Rails Daily: Parameter Safety and Date Format Improvements

Transcript

Good morning, this is Rails Daily for Tuesday, May 21st, 2026.

Yesterday saw significant activity with 11 merged pull requests addressing parameter handling, date formatting, and performance improvements.

Edilbek merged a new deep_transform_values method for ActionController::Parameters, providing a safer alternative to the current to_unsafe_h approach for nested value transformations while preserving the permitted/unpermitted distinction.

The Rails team introduced new ActiveSupport::TimeFormats and DateFormats modules from Shopify, offering a cleaner API for registering custom date formats and deprecating the existing DATE_FORMATS constants.

Three major documentation updates were completed by p8, covering the Active Record Query Interface guide, Rails on Rack guide, and caching documentation, with extensive revisions to improve readability and align with current Rails behavior.

Performance improvements came from byroot with two commits optimizing fixtures parsing and lookup patterns, particularly benefiting tests with non-transactional fixtures.

A PostgreSQL-specific fix was merged addressing referential integrity handling for partitioned tables, resolving issues where foreign key constraints were incorrectly marked as NOT VALID during migrations.

Additional fixes included preventing duplicate development welcome routes during route reloads and improved deprecation warnings for the new date format APIs.

Looking ahead, the fixtures parsing optimizations suggest continued focus on test performance improvements, while the parameter transformation additions indicate ongoing work to strengthen Rails' security features without compromising developer experience.

That's your Rails Daily update. We'll be back tomorrow with the latest from the Rails repository.