After a few years of service, old versions of the Ruby on Rails framework reach end-of-life (EOL). At this point the volunteer team of the Rails community that supports and maintains Rails will no longer provide security updates against critical security vulnerabilities.
Once community support for a popular version of Rails ends, Rails LTS takes over maintenance and continues to provide security patches. When a new advisory is posted to the official Rails security list or reported to us directly, we will patch the vulnerability and release a new version of the Rails LTS gems.
There is no planned EOL for any versions of Rails LTS. If we were to discontinue any versions, we would give advance warning of at least a year.
We are makandra, a team of veteran Rails developers and operations engineers. You might know us from our guides on makandra cards.
makandra is profitable and not dependent on VC funding. We currently maintain about 50 Rails applications, some of which are as old as 2007, and many of them running Rails LTS.
When the Rails core team stopped supporting Rails 2 back in 2013, we still had plenty of applications running on Rails 2.3, but many of them not under active feature development. Instead of upgrading, we decided to fork Rails and started patching known security vulnerabilities. This fork eventually became Rails LTS.
Click here to see our system requirements.
Please refer to our documentation for more information.
When maintaining a legacy Rails application, it's important to stay on a supported version. Rails LTS gives you the freedom to upgrade whenever you want, or stay on your old version indefinitely. We have no current plan to end support for any of our Rails LTS versions.
Please contact us in case you need additional information or support.
Rails LTS ships with some optional security features you can enable.