lib/safe_cookies.rb in safe_cookies-0.1.1 vs lib/safe_cookies.rb in safe_cookies-0.1.2

@@ -19,9 +19,11 @@
       # when not on HTTPS (this should rarely be the case).
       #
       # The :non_http_only option is analog, use it for storing data you want to access
       # with javascript.
 
+      options = options.dup
+
       @app = app
       @non_secure = (options.delete(:non_secure) || []).map(&:to_s)
       @non_http_only = (options.delete(:non_http_only) || []).map(&:to_s)
       @cookies_to_update = options
     end