1569 Commits

Author	SHA1	Message	Date
Guo Xiang Tan	5c24f83a6b	DEV: Bump rails_failover.	2020-06-01 10:22:04 +08:00
Guo Xiang Tan	3b311f6b15	DEV: Bump rails_failover.	2020-05-29 09:02:34 +08:00
Robin Ward	cae839ca96	DEV: Update gems to latest versions (#9909)	2020-05-28 13:13:10 -04:00
dependabot-preview[bot]	0e9a380b13	Build(deps): Bump parser from 2.7.1.2 to 2.7.1.3 (#9884) ... Bumps [parser](https://github.com/whitequark/parser) from 2.7.1.2 to 2.7.1.3. - [Release notes](https://github.com/whitequark/parser/releases) - [Changelog](https://github.com/whitequark/parser/blob/master/CHANGELOG.md) - [Commits](https://github.com/whitequark/parser/compare/v2.7.1.2...v2.7.1.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-28 10:00:57 -04:00
Robin Ward	2033c3ec9c	Revert "Revert "DEV: Import MessageBus from message-bus-client instead of globals"" ... This reverts commit b10e995d9d.	2020-05-28 08:42:36 -04:00
Guo Xiang Tan	8c86a109bb	DEV: Add ENV flag to test out ActiveRecord::Failover.	2020-05-28 16:24:22 +08:00
Blake Erickson	b10e995d9d	Revert "DEV: Import MessageBus from message-bus-client instead of globals" ... This reverts commit 9dddbcc00d.	2020-05-27 16:14:09 -06:00
Robin Ward	9dddbcc00d	DEV: Import MessageBus from message-bus-client instead of globals	2020-05-27 16:42:42 -04:00
Robin Ward	0f71d38d3a	Revert "DEV: Import MessageBus from message-bus-client instead of globals (#9902)" ... This reverts commit d3bd482142.	2020-05-27 16:34:30 -04:00
Robin Ward	d3bd482142	DEV: Import MessageBus from message-bus-client instead of globals (#9902)	2020-05-27 15:56:46 -04:00
dependabot-preview[bot]	63b3155983	Build(deps): Bump onebox from 1.9.28.2 to 1.9.28.3 (#9887) ... Bumps [onebox](https://github.com/discourse/onebox) from 1.9.28.2 to 1.9.28.3. - [Release notes](https://github.com/discourse/onebox/releases) - [Changelog](https://github.com/discourse/onebox/blob/master/CHANGELOG.md) - [Commits](https://github.com/discourse/onebox/compare/v1.9.28.2...v1.9.28.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-27 08:38:16 +05:30
Arpit Jalan	a6189c5070	Bump onebox version ... - use oEmbed for Instagram onebox	2020-05-26 22:03:51 +05:30
dependabot-preview[bot]	d38e571cba	Build(deps): Bump excon from 0.72.0 to 0.73.0 (#9228) ... Bumps [excon](https://github.com/excon/excon) from 0.72.0 to 0.73.0. - [Release notes](https://github.com/excon/excon/releases) - [Changelog](https://github.com/excon/excon/blob/master/changelog.txt) - [Commits](https://github.com/excon/excon/compare/v0.72.0...v0.73.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-26 12:28:28 -04:00
dependabot-preview[bot]	098c9e5950	Build(deps-dev): Bump rspec-rails from 4.0.0 to 4.0.1 (#9804) ... Bumps [rspec-rails](https://github.com/rspec/rspec-rails) from 4.0.0 to 4.0.1. - [Release notes](https://github.com/rspec/rspec-rails/releases) - [Changelog](https://github.com/rspec/rspec-rails/blob/master/Changelog.md) - [Commits](https://github.com/rspec/rspec-rails/compare/v4.0.0...v4.0.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-25 15:50:56 +10:00
dependabot-preview[bot]	32d13ab97f	DEV: Bump rack-mini-profiler from 2.0.1 to 2.0.2 (#9865) ... Bumps [rack-mini-profiler](https://github.com/MiniProfiler/rack-mini-profiler) from 2.0.1 to 2.0.2. - [Release notes](https://github.com/MiniProfiler/rack-mini-profiler/releases) - [Changelog](https://github.com/MiniProfiler/rack-mini-profiler/blob/master/CHANGELOG.md) - [Commits](https://github.com/MiniProfiler/rack-mini-profiler/compare/v2.0.1...v2.0.2) This is a simple fix to restore client timings in the UI	2020-05-25 15:43:55 +10:00
Michael Brown	d9a02d1336	Revert "Revert "Merge branch 'master' of https://github.com/discourse/discourse"" ... This reverts commit 20780a1eee. * SECURITY: re-adds accidentally reverted commit: 03d26cd6: ensure embed_url contains valid http(s) uri * when the merge commit e62a85cf was reverted, git chose the 2660c2e2 parent to land on instead of the 03d26cd6 parent (which contains security fixes)	2020-05-23 00:56:13 -04:00
Jeff Atwood	20780a1eee	Revert "Merge branch 'master' of https://github.com/discourse/discourse" ... This reverts commit e62a85cf6f, reversing changes made to 2660c2e21d.	2020-05-22 20:25:56 -07:00
dependabot-preview[bot]	11304ba27c	Build(deps): Bump rubocop from 0.83.0 to 0.84.0 (#9849) ... Bumps [rubocop](https://github.com/rubocop-hq/rubocop) from 0.83.0 to 0.84.0. - [Release notes](https://github.com/rubocop-hq/rubocop/releases) - [Changelog](https://github.com/rubocop-hq/rubocop/blob/master/CHANGELOG.md) - [Commits](https://github.com/rubocop-hq/rubocop/compare/v0.83.0...v0.84.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-21 09:23:34 -04:00
Guo Xiang Tan	a2d939608d	Bump rails_failover to 0.2.0.	2020-05-21 11:41:58 +08:00
dependabot-preview[bot]	cfff8b1f27	Build(deps): Bump puma from 4.3.4 to 4.3.5 (#9836) ... Bumps [puma](https://github.com/puma/puma) from 4.3.4 to 4.3.5. - [Release notes](https://github.com/puma/puma/releases) - [Changelog](https://github.com/puma/puma/blob/master/History.md) - [Commits](https://github.com/puma/puma/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-20 10:37:43 -04:00
Guo Xiang Tan	f7f436e536	DEV: Install rails_failover gem to test our Redis changes.	2020-05-20 15:40:27 +08:00
dependabot-preview[bot]	42229fecad	Build(deps): Bump rbtrace from 0.4.12 to 0.4.13 (#9827) ... Bumps [rbtrace](https://github.com/tmm1/rbtrace) from 0.4.12 to 0.4.13. - [Release notes](https://github.com/tmm1/rbtrace/releases) - [Commits](https://github.com/tmm1/rbtrace/compare/v0.4.12...v0.4.13) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-19 12:46:16 -04:00
dependabot-preview[bot]	b23fe547ab	Build(deps): Bump puma from 4.3.3 to 4.3.4 (#9824) ... Bumps [puma](https://github.com/puma/puma) from 4.3.3 to 4.3.4. - [Release notes](https://github.com/puma/puma/releases) - [Changelog](https://github.com/puma/puma/blob/master/History.md) - [Commits](https://github.com/puma/puma/compare/v4.3.3...v4.3.4) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-19 12:40:39 -04:00
dependabot-preview[bot]	01c27d991a	Build(deps-dev): Bump minitest from 5.14.0 to 5.14.1 (#9807) ... Bumps [minitest](https://github.com/seattlerb/minitest) from 5.14.0 to 5.14.1. - [Release notes](https://github.com/seattlerb/minitest/releases) - [Changelog](https://github.com/seattlerb/minitest/blob/master/History.rdoc) - [Commits](https://github.com/seattlerb/minitest/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-19 11:34:53 -04:00
Krzysztof Kotlarek	16f6240782	FIX: Bump rack version from 2.0.8 to 2.2.2 (#9811) ... Version 2.1.1 was not working with our Sidekiq but version 2.2.2 is fine	2020-05-19 08:43:45 +10:00
dependabot-preview[bot]	769611f2d9	Build(deps-dev): Bump ruby-prof from 1.4.0 to 1.4.1 (#9790) ... Bumps [ruby-prof](https://github.com/ruby-prof/ruby-prof) from 1.4.0 to 1.4.1. - [Release notes](https://github.com/ruby-prof/ruby-prof/releases) - [Changelog](https://github.com/ruby-prof/ruby-prof/blob/master/CHANGES) - [Commits](https://github.com/ruby-prof/ruby-prof/compare/1.4.0...1.4.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-15 10:13:49 -04:00
Sam Saffron	4601833e4e	PERF: ensure we run full GC on contexts ... Prior to this change we would never clear memory from contexts and rely on V8 reacting to pressure This could lead to bloating of PrettyText and Transpiler contexts This optimisations ensures that we will clear memory 2 seconds after the last eval on the context	2020-05-15 14:01:54 +10:00
Sam Saffron	5b603cb3ab	FIX: update mini racer to correct heap dumps ... This corrects an issue where mini racer's `write_heap_snapshot` produces corrupt heaps cause the file is not flushed.	2020-05-14 17:52:05 +10:00
dependabot-preview[bot]	e1f11f4374	Build(deps-dev): Bump better_errors from 2.7.0 to 2.7.1 (#9767) ... Bumps [better_errors](https://github.com/BetterErrors/better_errors) from 2.7.0 to 2.7.1. - [Release notes](https://github.com/BetterErrors/better_errors/releases) - [Commits](https://github.com/BetterErrors/better_errors/compare/v2.7.0...v2.7.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-13 16:03:56 -04:00
dependabot-preview[bot]	d69263f934	Build(deps-dev): Bump ruby-prof from 1.3.2 to 1.4.0 (#9761) ... Bumps [ruby-prof](https://github.com/ruby-prof/ruby-prof) from 1.3.2 to 1.4.0. - [Release notes](https://github.com/ruby-prof/ruby-prof/releases) - [Changelog](https://github.com/ruby-prof/ruby-prof/blob/master/CHANGES) - [Commits](https://github.com/ruby-prof/ruby-prof/compare/1.3.2...1.4.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-13 10:57:39 -04:00
dependabot-preview[bot]	4ea7a7cf67	Build(deps): Bump rubocop from 0.82.0 to 0.83.0 ... Bumps [rubocop](https://github.com/rubocop-hq/rubocop) from 0.82.0 to 0.83.0. - [Release notes](https://github.com/rubocop-hq/rubocop/releases) - [Changelog](https://github.com/rubocop-hq/rubocop/blob/master/CHANGELOG.md) - [Commits](https://github.com/rubocop-hq/rubocop/compare/v0.82.0...v0.83.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-05-12 14:28:29 +08:00
dependabot-preview[bot]	33b8314ac5	Build(deps): Bump public_suffix from 4.0.4 to 4.0.5 (#9733) ... Bumps [public_suffix](https://github.com/weppos/publicsuffix-ruby) from 4.0.4 to 4.0.5. - [Release notes](https://github.com/weppos/publicsuffix-ruby/releases) - [Changelog](https://github.com/weppos/publicsuffix-ruby/blob/master/CHANGELOG.md) - [Commits](https://github.com/weppos/publicsuffix-ruby/compare/v4.0.4...v4.0.5) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-11 11:20:35 -04:00
dependabot-preview[bot]	22ed36e483	Build(deps): Bump rspec-expectations from 3.9.1 to 3.9.2 (#9732) ... Bumps [rspec-expectations](https://github.com/rspec/rspec-expectations) from 3.9.1 to 3.9.2. - [Release notes](https://github.com/rspec/rspec-expectations/releases) - [Changelog](https://github.com/rspec/rspec-expectations/blob/master/Changelog.md) - [Commits](https://github.com/rspec/rspec-expectations/compare/v3.9.1...v3.9.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-11 11:20:15 -04:00
dependabot-preview[bot]	dae29afd7d	Build(deps): Bump jquery-rails from 4.3.5 to 4.4.0 (#9709) ... Bumps [jquery-rails](https://github.com/rails/jquery-rails) from 4.3.5 to 4.4.0. - [Release notes](https://github.com/rails/jquery-rails/releases) - [Changelog](https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md) - [Commits](https://github.com/rails/jquery-rails/compare/v4.3.5...v4.4.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-08 13:50:56 -04:00
Sam Saffron	609e929186	Revert "Revert "DEV: upgrade to Rails 6.0.3"" ... This reverts commit 2ff8b4f5d9. Attempt #2 at a Rails update this time we also update the rails_multisite gem to allow for cleaner reordering	2020-05-08 11:49:22 +10:00
David Taylor	2ff8b4f5d9	Revert "DEV: upgrade to Rails 6.0.3" ... This was causing issues during multisite:migrate https://meta.discourse.org/t/multisite-migrate-broken-since-rails-6-0-3-update/150691 This reverts commit 136a545653.	2020-05-07 11:44:39 +01:00
Sam Saffron	136a545653	DEV: upgrade to Rails 6.0.3 ... Upgrades Rails to latest, this version has better compatibility with Ruby 2.7 During the upgrade we needed a new cleaner mechanism for configuring message bus. All tests are green. If anything weird pops up please revert.	2020-05-07 15:53:40 +10:00
Jarek Radosz	666823d4b7	Revert "Revert "DEV: Move rubocop config to rubocop-discourse (#9616)"" ... This reverts commit 2d31a14789. Should be good now - all the plugins are using the updated rubocop config.	2020-05-06 18:41:15 +02:00
Jarek Radosz	2d31a14789	Revert "DEV: Move rubocop config to rubocop-discourse (#9616)" ... This reverts commit e23f1a9071. Reverting as this currently breaks our plugin linting job in GithHub Action and Jenkins. Will re-revert after all the plugins get the latest rubocop config and/or a (potential) rubocop issue is fixed.	2020-05-06 17:22:25 +02:00
Arpit Jalan	10ca6968af	Bump onebox version ... - reuse existing video icon class - CSS changes for reddit video onebox	2020-05-06 19:34:03 +05:30
Jarek Radosz	e23f1a9071	DEV: Move rubocop config to rubocop-discourse (#9616)	2020-05-06 15:03:06 +02:00
Arpit Jalan	8ede0e7bc2	Bump onebox version. ... - add linkedin and meetedgar to whitelist - FEATURE: reddit video onebox - FEATURE: facebook video onebox	2020-05-06 17:55:00 +05:30
Sam Saffron	57fcea7709	DEV: update rspec dependencies ... rspec-rails 4.0 was released so we no longer need to depend on a beta version. Also updates minor on a bunch of rspec gems. Thanks to @ryanwi for raising this.	2020-05-04 15:21:34 +10:00
Guo Xiang Tan	e32ac831ee	DEV: Update rubocop-discourse to 2.1.2.	2020-05-04 10:51:33 +08:00
dependabot-preview[bot]	85605efe84	Build(deps): Bump redis from 4.1.3 to 4.1.4 (#9608) ... Bumps [redis](https://github.com/redis/redis-rb) from 4.1.3 to 4.1.4. - [Release notes](https://github.com/redis/redis-rb/releases) - [Changelog](https://github.com/redis/redis-rb/blob/master/CHANGELOG.md) - [Commits](https://github.com/redis/redis-rb/compare/v4.1.3...v4.1.4) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-01 11:06:03 -04:00
dependabot-preview[bot]	a4a7ee110b	Build(deps-dev): Bump rubocop-rspec from 1.38.1 to 1.39.0 (#9606) ... Bumps [rubocop-rspec](https://github.com/rubocop-hq/rubocop-rspec) from 1.38.1 to 1.39.0. - [Release notes](https://github.com/rubocop-hq/rubocop-rspec/releases) - [Changelog](https://github.com/rubocop-hq/rubocop-rspec/blob/master/CHANGELOG.md) - [Commits](https://github.com/rubocop-hq/rubocop-rspec/compare/v1.38.1...v1.39.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-05-01 11:04:53 -04:00
dependabot-preview[bot]	43210004e5	DEV: Bump parser from 2.7.1.1 to 2.7.1.2 (#9602) ... Bumps [parser](https://github.com/whitequark/parser) from 2.7.1.1 to 2.7.1.2. - [Release notes](https://github.com/whitequark/parser/releases) - [Changelog](https://github.com/whitequark/parser/blob/master/CHANGELOG.md) - [Commits](https://github.com/whitequark/parser/compare/v2.7.1.1...v2.7.1.2) Very minor, used for ruby 2.7 support	2020-05-01 11:58:57 +10:00
dependabot-preview[bot]	c092370847	Build(deps-dev): Bump rb-fsevent from 0.10.3 to 0.10.4 (#9599) ... Bumps [rb-fsevent](https://github.com/thibaudgg/rb-fsevent) from 0.10.3 to 0.10.4. - [Release notes](https://github.com/thibaudgg/rb-fsevent/releases) - [Commits](https://github.com/thibaudgg/rb-fsevent/compare/0.10.3...v0.10.4) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-30 11:14:34 -04:00
Régis Hanol	501b19b6e0	FIX: server-side HtmlToMarkdown improvements (#9586) ... TLDR; this commit vastly improves how whitespaces are handled when converting from HTML to Markdown. It also adds support for converting HTML <tables> to markdown tables. The previous 'remove_whitespaces!' method was traversing the whole HTML tree and used a heuristic to remove leading and trailing whitespaces whenever it was appropriate (ie. mostly before and after HTML block elements) It was a good idea, but it was very limited and leaded to bad conversion when the html had leading whitespaces on several lines for example. One such example can be found [here](https://meta.discourse.org/t/86782). For various reasons, most of the whitespaces in a HTML file is ignored when the page is being displayed in a browser. The rules that the browsers follow are the [CSS' White Space Processing Rules](https://www.w3.org/TR/css-text-3/#white-space-rules). They can be quite complicated when you take into account RTL languages and other various tidbits but they boils down to the following: - Collapse whitespaces down to one space (0x20) inside an inline context (ie. nodes/tags that are being displaying on the same line) - Remove any leading/trailing whitespaces inside an inline context One quick & dirty way of getting this 90% solved would be to do 'HTML.gsub!(/[[:space:]]+/, " ")'. We would also need to hoist <pre> elements in order to not mess with their whitespaces. Unfortunately, this solution let some whitespaces creep around HTML tags which leads to more '.strip!' calls than I can bear. I decided to "emulate" the browser's handling of whitespaces and came up with a solution in 4 parts 1. remove_not_allowed! The HtmlToMarkdown library is recursively "visiting" all the nodes in the HTML in order to convert them to Markdown. All the nodes that aren't handled by the library (eg. <script>, <style> or any non-textual HTML tags) are "swallowed". In order to reduce the number of nodes visited, the method 'remove_not_allowed!' will automatically delete all the nodes that have no "visitor" (eg. a 'visit_<tag>' method) defined. 2. remove_hidden! Similar purpose as the previous method (eg. reducing number of nodes visited), there's no point trying to convert something that is hidden. The 'remove_hidden!' method removes any nodes that was hidden using the "hidden" HTML attribute, some CSS or with a width or height equal to 0. 3. hoist_line_breaks! The 'hoist_line_breaks!' method is there to handle <br> tags. I know those tiny <br> don't do much but they can be quite annoying. The <br> tags are inline elements but they visually work like a block element (ie. they create a new line). If you have the following HTML "<i>Foo<br>Bar</i>", it ends up visually similar to "<i>Foo</i><br><i>Bar</i>". The latter being much more easy to process than the former, so that's what this method is doing. The "hoist_line_breaks" will hoist <br> tags out of inline tags until their parent is a block element. 4. remove_whitespaces! The "remove_whitespaces!" is where all the whitespace removal is happening. It's broken down into 4 methods as well - remove_whitespaces! - is_inline? - collapse_spaces! - remove_trailing_space! The 'remove_whitespace!' method is recursively walking the HTML tree (skipping <pre> tags). If a node has any children, they will be chunked into groups of inline elements vs block elements. For each chunks of inline elements, it will call the "collapse_space!" and "remove_trailing_space!" methods. For each chunks of block elements, it will call "remote_whitespace!" to keep walking the HTML tree recursively. The "is_inline?" method determines whether a node is part of a inline context. A node is inline iif it's a text node or it's an inline tag, but not <br>, and all its children are also inline. The "collapse_spaces!" method will collapse any kind of (white) space into a single space (" ") character, even accros tags. For example, if we have " Foo \n<i> Bar </i>\t42", it will return "Foo <i>Bar </i>42". Finally, the "remove_trailing_space!" method is there to remove any trailing space that might creep in at the end of the inline chunk. This solution is not 100% bullet-proof. It does not support RTL languages at all and has some caveats that I felt were not worth the work to get properly fixed. FIX: better detection of hidden elements when converting HTML to Markdown FIX: take into account the 'allowed_href_schemes' site setting when converting HTML <a> to Markdown FIX: added support for 'mailto:' scheme when converting <a> from HTML to Markdown FIX: added support for <img> dimensions when converting from HTML to Markdown FIX: added support for <dl>, <dd> and <dt> when converting from HTML to Markdown FIX: added support for multilines emphases, strongs and strikes when converting from HTML to Markdown FIX: added support for <acronym> when converting from HTML to Markdown DEV: remove unused 'sanitize' gem Wow, did you just read all that?! Congratz, here's a cookie: 🍪.	2020-04-30 12:21:25 +02:00
Sam Saffron	4f5ed8e781	DEV: pry-nav was holding back on pry upgrades ... pry-nav is not yet supported on latest pry, this holds off on upgrading pry, which in turn holds off on upgrading deps Stripping pry-nav for now till it works with latest pry	2020-04-30 09:40:50 +10:00
Robin Ward	3ec21b4124	SECURITY: Update onebox to add rel="noopener"	2020-04-29 10:57:05 -04:00
dependabot-preview[bot]	7ccfc73edb	Build(deps): Bump rqrcode_core from 0.1.1 to 0.1.2 (#9244) ... Bumps [rqrcode_core](https://github.com/whomwah/rqrcode_core) from 0.1.1 to 0.1.2. - [Release notes](https://github.com/whomwah/rqrcode_core/releases) - [Commits](https://github.com/whomwah/rqrcode_core/commits)	2020-04-29 12:58:52 +01:00
David Taylor	6a9a7b56df	DEV: Bump Hashie and Faraday (#9583) ... These were previously pinned due to a dependency in the zendesk plugin. That has now been resolved.	2020-04-29 12:55:30 +01:00
dependabot-preview[bot]	d3dc8fc1b3	DEV: Bump message_bus from 3.0.0 to 3.1.0 (#9565) ... Bumps [message_bus](https://github.com/SamSaffron/message_bus) from 3.0.0 to 3.1.0. - [Release notes](https://github.com/SamSaffron/message_bus/releases) - [Changelog](https://github.com/discourse/message_bus/blob/master/CHANGELOG) - [Commits](https://github.com/SamSaffron/message_bus/compare/v3.0.0...v3.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com> Very safe change introduces new API needed for message filtering. 7fad5a3e7d	2020-04-28 15:46:40 +10:00
Blake Erickson	a93ef2926d	DEV: Add rswag to aid in api documention (#9546) ... Adding in rswag will allow us to write spec files to document and test our api.	2020-04-27 16:40:07 -06:00
dependabot-preview[bot]	e92a54f681	Build(deps): Bump aws-sigv4 from 1.1.2 to 1.1.3 (#9560) ... Bumps [aws-sigv4](https://github.com/aws/aws-sdk-ruby) from 1.1.2 to 1.1.3. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sigv4/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/compare/1.1.2...1.1.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-27 16:08:31 -04:00
dependabot-preview[bot]	f15fc0ebf3	Build(deps): Bump unicorn from 5.5.4 to 5.5.5 (#9552) ... Bumps [unicorn](https://yhbt.net/unicorn/) from 5.5.4 to 5.5.5. Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-27 12:50:03 -04:00
Guo Xiang Tan	e0725fd123	Upgrade message_bus to 3.0.0 ... Fixes an issue where specifying `group_ids` and `user_ids` while publishing a message would result in an intersection between both options.	2020-04-27 12:45:23 +08:00
dependabot-preview[bot]	94d753ad16	Build(deps-dev): Bump better_errors from 2.6.0 to 2.7.0 (#9544) ... Bumps [better_errors](https://github.com/BetterErrors/better_errors) from 2.6.0 to 2.7.0. - [Release notes](https://github.com/BetterErrors/better_errors/releases) - [Commits](https://github.com/BetterErrors/better_errors/compare/v2.6.0...v2.7.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-24 14:22:05 -04:00
dependabot-preview[bot]	8b0ac092d8	Build(deps-dev): Bump byebug from 11.1.2 to 11.1.3 ... Bumps [byebug](https://github.com/deivid-rodriguez/byebug) from 11.1.2 to 11.1.3. - [Release notes](https://github.com/deivid-rodriguez/byebug/releases) - [Changelog](https://github.com/deivid-rodriguez/byebug/blob/master/CHANGELOG.md) - [Commits](https://github.com/deivid-rodriguez/byebug/compare/v11.1.2...v11.1.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-04-24 09:42:19 +08:00
dependabot-preview[bot]	4d45602517	Build(deps): Bump mini_racer from 0.2.9 to 0.2.10 (#9507) ... Bumps [mini_racer](https://github.com/discourse/mini_racer) from 0.2.9 to 0.2.10. - [Release notes](https://github.com/discourse/mini_racer/releases) - [Changelog](https://github.com/rubyjs/mini_racer/blob/master/CHANGELOG) - [Commits](https://github.com/discourse/mini_racer/compare/v0.2.9...v0.2.10) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-22 10:26:31 -04:00
dependabot-preview[bot]	32f3f1c14b	Build(deps-dev): Bump mock_redis from 0.22.0 to 0.23.0 (#9506) ... Bumps [mock_redis](https://github.com/sds/mock_redis) from 0.22.0 to 0.23.0. - [Release notes](https://github.com/sds/mock_redis/releases) - [Changelog](https://github.com/sds/mock_redis/blob/master/CHANGELOG.md) - [Commits](https://github.com/sds/mock_redis/compare/v0.22.0...v0.23.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-22 10:26:09 -04:00
Jarek Radosz	07e0490fe4	DEV: Update mocha (#9490) ... The spec that was blocking the update was fixed in c08753dc34.	2020-04-21 18:32:42 +02:00
dependabot-preview[bot]	776caa24c9	DEV: Bump optimist from 3.0.0 to 3.0.1 (#9476) ... Bumps [optimist](https://github.com/ManageIQ/optimist) from 3.0.0 to 3.0.1. Mostly about fixing tests and adding a license file	2020-04-21 15:32:24 +10:00
dependabot-preview[bot]	afe1407c75	Build(deps): Bump aws-sdk-s3 from 1.61.2 to 1.62.0 (#9479) ... Bumps [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) from 1.61.2 to 1.62.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-s3/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits/v1.62.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-20 16:06:38 -04:00
dependabot-preview[bot]	f63ac79b9d	Build(deps-dev): Bump ruby-prof from 1.3.1 to 1.3.2 (#9474) ... Bumps [ruby-prof](https://github.com/ruby-prof/ruby-prof) from 1.3.1 to 1.3.2. - [Release notes](https://github.com/ruby-prof/ruby-prof/releases) - [Changelog](https://github.com/ruby-prof/ruby-prof/blob/master/CHANGES) - [Commits](https://github.com/ruby-prof/ruby-prof/compare/1.3.1...1.3.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-20 12:34:53 -04:00
Daniel Waterworth	7876ee2d67	DEV: upgrade Rails ... Latest version of Rails contains compatibility fixes for Ruby 2.7 and some minor security fixes we would like to have It also broke some of the multisite tests. Rails tries to use the same connection for reading from a replica as writing to the leader during tests, because, with everything happening in a transaction, changes to the DB wouldn't otherwise be reflected in the replica connection. The difference now is that Rails tries to do this for connections opened after the test has started which affected rails multisite connections. The upshot of this is that, as things stand, you are likely to experience problems if you try to connect to a different multisite DB in a test when the `current_db` is not 'default'.	2020-04-20 12:55:53 +01:00
dependabot-preview[bot]	3ac6e16250	Build(deps): Bump aws-sigv4 from 1.1.1 to 1.1.2 (#9465) ... Bumps [aws-sigv4](https://github.com/aws/aws-sdk-ruby) from 1.1.1 to 1.1.2. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sigv4/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/compare/1.1.1...1.1.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-17 17:32:30 -04:00
dependabot-preview[bot]	80563705da	Build(deps-dev): Bump byebug from 11.1.1 to 11.1.2 (#9462) ... Bumps [byebug](https://github.com/deivid-rodriguez/byebug) from 11.1.1 to 11.1.2. - [Release notes](https://github.com/deivid-rodriguez/byebug/releases) - [Changelog](https://github.com/deivid-rodriguez/byebug/blob/master/CHANGELOG.md) - [Commits](https://github.com/deivid-rodriguez/byebug/compare/v11.1.1...v11.1.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-17 14:31:27 -04:00
dependabot-preview[bot]	77dd31a642	Build(deps): Bump sidekiq from 6.0.6 to 6.0.7 (#9460) ... Bumps [sidekiq](https://github.com/mperham/sidekiq) from 6.0.6 to 6.0.7. - [Release notes](https://github.com/mperham/sidekiq/releases) - [Changelog](https://github.com/mperham/sidekiq/blob/master/Changes.md) - [Commits](https://github.com/mperham/sidekiq/compare/v6.0.6...v6.0.7) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-17 12:10:39 -04:00
Robin Ward	6f391b9387	Upgrade rubocop	2020-04-17 11:16:14 -04:00
dependabot-preview[bot]	338eaf9167	Build(deps): Bump parser from 2.7.1.0 to 2.7.1.1 (#9425) ... Bumps [parser](https://github.com/whitequark/parser) from 2.7.1.0 to 2.7.1.1. - [Release notes](https://github.com/whitequark/parser/releases) - [Changelog](https://github.com/whitequark/parser/blob/master/CHANGELOG.md) - [Commits](https://github.com/whitequark/parser/compare/v2.7.1.0...v2.7.1.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-15 10:30:30 -04:00
dependabot-preview[bot]	81c7f369eb	Build(deps): Bump aws-eventstream from 1.0.3 to 1.1.0 (#9395) ... Bumps [aws-eventstream](https://github.com/aws/aws-sdk-ruby) from 1.0.3 to 1.1.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-eventstream/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/compare/1.0.3...1.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-09 09:57:50 -04:00
dependabot-preview[bot]	3e176f9bf4	Build(deps): Bump mini_sql from 0.2.4 to 0.2.5 (#9368) ... Bumps [mini_sql](https://github.com/discourse/mini_sql) from 0.2.4 to 0.2.5. - [Release notes](https://github.com/discourse/mini_sql/releases) - [Changelog](https://github.com/discourse/mini_sql/blob/master/CHANGELOG) - [Commits](https://github.com/discourse/mini_sql/compare/v0.2.4...v0.2.5) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-07 10:29:49 -04:00
dependabot-preview[bot]	ed74a6c126	Build(deps): Bump public_suffix from 4.0.3 to 4.0.4 (#9353) ... Bumps [public_suffix](https://github.com/weppos/publicsuffix-ruby) from 4.0.3 to 4.0.4. - [Release notes](https://github.com/weppos/publicsuffix-ruby/releases) - [Changelog](https://github.com/weppos/publicsuffix-ruby/blob/master/CHANGELOG.md) - [Commits](https://github.com/weppos/publicsuffix-ruby/compare/4.0.3...v4.0.4) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-06 11:42:03 -04:00
dependabot-preview[bot]	c72fb252a5	Build(deps): Bump loofah from 2.4.0 to 2.5.0 (#9352) ... Bumps [loofah](https://github.com/flavorjones/loofah) from 2.4.0 to 2.5.0. - [Release notes](https://github.com/flavorjones/loofah/releases) - [Changelog](https://github.com/flavorjones/loofah/blob/master/CHANGELOG.md) - [Commits](https://github.com/flavorjones/loofah/compare/v2.4.0...v2.5.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-06 11:41:47 -04:00
dependabot-preview[bot]	24fbe3e796	Build(deps): Bump oj from 3.10.5 to 3.10.6 (#9351) ... Bumps [oj](https://github.com/ohler55/oj) from 3.10.5 to 3.10.6. - [Release notes](https://github.com/ohler55/oj/releases) - [Changelog](https://github.com/ohler55/oj/blob/develop/CHANGELOG.md) - [Commits](https://github.com/ohler55/oj/compare/v3.10.5...v3.10.6) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-06 11:40:45 -04:00
dependabot-preview[bot]	8c06c64bfb	Build(deps): Bump aws-sdk-s3 from 1.61.1 to 1.61.2 (#9348) ... Bumps [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) from 1.61.1 to 1.61.2. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-s3/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-06 11:35:29 -04:00
dependabot-preview[bot]	a00cfe853a	Build(deps): Bump parser from 2.7.0.5 to 2.7.1.0 (#9347) ... Bumps [parser](https://github.com/whitequark/parser) from 2.7.0.5 to 2.7.1.0. - [Release notes](https://github.com/whitequark/parser/releases) - [Changelog](https://github.com/whitequark/parser/blob/master/CHANGELOG.md) - [Commits](https://github.com/whitequark/parser/compare/v2.7.0.5...v2.7.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-06 11:34:59 -04:00
dependabot-preview[bot]	4500928a39	Build(deps-dev): Bump fabrication from 2.21.0 to 2.21.1 (#9341) ... Bumps [fabrication](https://github.com/paulelliott/fabrication) from 2.21.0 to 2.21.1. - [Release notes](https://github.com/paulelliott/fabrication/releases) - [Changelog](https://github.com/paulelliott/fabrication/blob/master/Changelog.markdown) - [Commits](https://github.com/paulelliott/fabrication/compare/2.21.0...2.21.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-03 10:32:05 -04:00
dependabot-preview[bot]	06de6f80f8	Build(deps): Bump tzinfo from 1.2.6 to 1.2.7 (#9340) ... Bumps [tzinfo](https://github.com/tzinfo/tzinfo) from 1.2.6 to 1.2.7. - [Release notes](https://github.com/tzinfo/tzinfo/releases) - [Changelog](https://github.com/tzinfo/tzinfo/blob/master/CHANGES.md) - [Commits](https://github.com/tzinfo/tzinfo/compare/v1.2.6...v1.2.7) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-03 10:31:45 -04:00
dependabot-preview[bot]	0d646d1a26	Build(deps-dev): Bump rubocop from 0.80.1 to 0.81.0 (#9330) ... Bumps [rubocop](https://github.com/rubocop-hq/rubocop) from 0.80.1 to 0.81.0. - [Release notes](https://github.com/rubocop-hq/rubocop/releases) - [Changelog](https://github.com/rubocop-hq/rubocop/blob/master/CHANGELOG.md) - [Commits](https://github.com/rubocop-hq/rubocop/compare/v0.80.1...v0.81.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-04-01 11:31:14 -04:00
dependabot-preview[bot]	14b8e221e7	Build(deps): Bump cose from 0.11.0 to 1.0.0 (#9307) ... Bumps [cose](https://github.com/cedarcode/cose-ruby) from 0.11.0 to 1.0.0. - [Release notes](https://github.com/cedarcode/cose-ruby/releases) - [Changelog](https://github.com/cedarcode/cose-ruby/blob/master/CHANGELOG.md) - [Commits](https://github.com/cedarcode/cose-ruby/compare/v0.11.0...v1.0.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-30 11:18:55 -04:00
dependabot-preview[bot]	0841ba1c6b	Build(deps): Bump unf_ext from 0.0.7.6 to 0.0.7.7 (#9306) ... Bumps [unf_ext](https://github.com/knu/ruby-unf_ext) from 0.0.7.6 to 0.0.7.7. - [Release notes](https://github.com/knu/ruby-unf_ext/releases) - [Changelog](https://github.com/knu/ruby-unf_ext/blob/master/CHANGELOG.md) - [Commits](https://github.com/knu/ruby-unf_ext/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-30 11:18:31 -04:00
dependabot-preview[bot]	8ab39f6916	Build(deps): Bump logster from 2.7.1 to 2.8.0 (#9310) ... This includes Font Awesome upgrade to version 5. Bumps [logster](https://github.com/discourse/logster) from 2.7.1 to 2.8.0. - [Release notes](https://github.com/discourse/logster/releases) - [Changelog](https://github.com/discourse/logster/blob/master/CHANGELOG.md) - [Commits](https://github.com/discourse/logster/compare/v2.7.1...v2.8.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-30 07:52:04 +03:00
Jarek Radosz	7ff889574d	DEV: Add rubocop-rspec (#9288) ... This adds rubocop-rspec, and enables some cops that were either already passing or are passing now, after fixing them in this commit. Some new cops are disabled for now, with annotation: "TODO" or "To be decided". Those either need to be discussed first, or require manual changes, or the number of found and fixed offenses is too large to bundle them up in a single PR. Includes: * DEV: Update rubocop's `TargetRubyVersion` to 2.6 * DEV: Enable RSpec/VoidExpect * DEV: Enable RSpec/SharedContext * DEV: Enable RSpec/EmptyExampleGroup (Removed an obsolete empty spec file) * DEV: Enable RSpec/ItBehavesLike * DEV: Remove RSpec/ScatteredLet (It's too strict, as it doesn't recognize fab! as a let-like) * DEV: Remove RSpec/MultipleExpectations	2020-03-27 17:35:40 +01:00
Jarek Radosz	d21d80198c	DEV: Update rubocop-discourse (#9270) ... Includes: * DEV: Use `eq_time` matcher	2020-03-26 16:32:41 +01:00
Sam Saffron	25f1f23288	FEATURE: Stricter rules for user presence ... Previously we would consider a user "present" and "last seen" if the browser window was visible. This has many edge cases, you could be considered present and around for days just by having a window open and no screensaver on. Instead we now also check that you either clicked, transitioned around app or scrolled the page in the last minute in combination with window visibility This will lead to more reliable notifications via email and reduce load of message bus for cases where a user walks away from the terminal	2020-03-26 17:36:52 +11:00
Sam Saffron	35e153d84f	DEV: update unicorn ... This is a minor update to unicorn, in this update unicorn handles chunked encoding a bit more correctly according to RFC Should have no impact, but message bus will be validated in production to confirm chunked encoding still works as expected	2020-03-25 15:38:25 +11:00
Sam Saffron	c7151f0fd6	Revert "DEV: upgrade Rails" ... This reverts commit 5b3bb4b2f0. This erratically breaks multisite operation, we need more debugging	2020-03-24 17:11:13 +11:00
Sam Saffron	5b3bb4b2f0	DEV: upgrade Rails ... Latest version of Rails contains compatibility fixes for Ruby 2.7 and some minor security fixes we would like to have	2020-03-24 16:47:40 +11:00
dependabot-preview[bot]	4452817ed0	DEV: Bump pg from 1.2.2 to 1.2.3 (#9235) ... Bumps [pg](https://github.com/ged/ruby-pg) from 1.2.2 to 1.2.3. - [Release notes](https://github.com/ged/ruby-pg/releases) - [Changelog](https://github.com/ged/ruby-pg/blob/master/History.rdoc) - [Commits](https://github.com/ged/ruby-pg/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com> Pretty safe, adds protection for 2 possible segfaults.	2020-03-24 16:25:52 +11:00
dependabot-preview[bot]	ecda9dbf25	DEV: Bump annotate from 3.1.0 to 3.1.1 (#9261) ... Bumps [annotate](https://github.com/ctran/annotate_models) from 3.1.0 to 3.1.1. - [Release notes](https://github.com/ctran/annotate_models/releases) - [Changelog](https://github.com/ctran/annotate_models/blob/develop/CHANGELOG.md) - [Commits](https://github.com/ctran/annotate_models/compare/v3.1.0...v3.1.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com> Very safe upgrade, annotate only used in dev	2020-03-24 16:23:16 +11:00
Sam Saffron	9726a0e0b4	DEV: upgrade json gem and add explicit dependency ... json is shipped out of sync with Ruby. Even though we use OJ for many things we still use the json gem sometimes, this ensures we use the latest b8b29e79ad/config/initializers/100-oj.rb (L9-L9)	2020-03-24 15:21:50 +11:00
dependabot-preview[bot]	8b7dc35e76	Build(deps): Bump sidekiq from 6.0.5 to 6.0.6 (#9258) ... Bumps [sidekiq](https://github.com/mperham/sidekiq) from 6.0.5 to 6.0.6. - [Release notes](https://github.com/mperham/sidekiq/releases) - [Changelog](https://github.com/mperham/sidekiq/blob/master/Changes.md) - [Commits](https://github.com/mperham/sidekiq/compare/v6.0.5...v6.0.6) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-23 14:27:51 -04:00
dependabot-preview[bot]	f413ea6b38	Build(deps): Bump onebox from 1.9.26 to 1.9.27.1 (#9255) ... Bumps [onebox](https://github.com/discourse/onebox) from 1.9.26 to 1.9.27.1. - [Release notes](https://github.com/discourse/onebox/releases) - [Changelog](https://github.com/discourse/onebox/blob/master/CHANGELOG.md) - [Commits](https://github.com/discourse/onebox/compare/v1.9.26...v1.9.27.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-23 10:18:30 -04:00
dependabot-preview[bot]	8174f1551c	Build(deps): Bump aws-sdk-s3 from 1.61.0 to 1.61.1 (#9216) ... Bumps [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) from 1.61.0 to 1.61.1. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-s3/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-20 09:43:58 -04:00
David Taylor	e9a3639b10	DEV: Pin hashie and faraday versions for zendesk api compatibility (#9214)	2020-03-19 19:52:31 +00:00
dependabot-preview[bot]	0b2e6f4301	Build(deps): Bump aws-partitions from 1.283.0 to 1.284.0 (#9227) ... Bumps [aws-partitions](https://github.com/aws/aws-sdk-ruby) from 1.283.0 to 1.284.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-partitions/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-17 17:22:50 -04:00
dependabot-preview[bot]	9d8eabd32f	Build(deps): Bump aws-partitions from 1.281.0 to 1.283.0 (#9217) ... Bumps [aws-partitions](https://github.com/aws/aws-sdk-ruby) from 1.281.0 to 1.283.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-partitions/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-17 15:30:12 -04:00
dependabot-preview[bot]	125c9966f1	Build(deps): Bump rspec-expectations from 3.9.0 to 3.9.1 (#9211) ... Bumps [rspec-expectations](https://github.com/rspec/rspec-expectations) from 3.9.0 to 3.9.1. - [Release notes](https://github.com/rspec/rspec-expectations/releases) - [Changelog](https://github.com/rspec/rspec-expectations/blob/master/Changelog.md) - [Commits](https://github.com/rspec/rspec-expectations/compare/v3.9.0...v3.9.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-17 15:17:29 -04:00
dependabot-preview[bot]	1b2019e7eb	Build(deps): Bump rack-mini-profiler from 1.1.6 to 2.0.1 (#9222) ... * Build(deps): Bump rack-mini-profiler from 1.1.6 to 2.0.1 Bumps [rack-mini-profiler](https://github.com/MiniProfiler/rack-mini-profiler) from 1.1.6 to 2.0.1. - [Release notes](https://github.com/MiniProfiler/rack-mini-profiler/releases) - [Changelog](https://github.com/MiniProfiler/rack-mini-profiler/blob/master/CHANGELOG.md) - [Commits](https://github.com/MiniProfiler/rack-mini-profiler/compare/v1.1.6...v2.0.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Enable rails patches Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com> Co-authored-by: OsamaSayegh <asooomaasoooma90@gmail.com>	2020-03-17 14:09:45 +03:00
dependabot-preview[bot]	12c29ae955	Build(deps): Bump rbtrace from 0.4.11 to 0.4.12 ... Bumps [rbtrace](https://github.com/tmm1/rbtrace) from 0.4.11 to 0.4.12. - [Release notes](https://github.com/tmm1/rbtrace/releases) - [Commits](https://github.com/tmm1/rbtrace/compare/v0.4.11...v0.4.12) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-03-17 10:15:36 +00:00
David Taylor	610261f48e	DEV: Bump omniauth from 1.9.0 to 1.9.1	2020-03-16 13:12:10 +00:00
David Taylor	ce50695bff	DEV: Bump OAuth2 from 1.4.2 to 1.4.4	2020-03-16 12:42:23 +00:00
dependabot-preview[bot]	aad43a6223	Build(deps-dev): Bump parallel_tests from 2.31.0 to 2.32.0 (#9210) ... Bumps [parallel_tests](https://github.com/grosser/parallel_tests) from 2.31.0 to 2.32.0. - [Release notes](https://github.com/grosser/parallel_tests/releases) - [Commits](https://github.com/grosser/parallel_tests/compare/v2.31.0...v2.32.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-16 13:18:07 +01:00
dependabot-preview[bot]	81ba516741	Build(deps): Bump rubyzip from 2.2.0 to 2.3.0 (#9208) ... Bumps [rubyzip](https://github.com/rubyzip/rubyzip) from 2.2.0 to 2.3.0. - [Release notes](https://github.com/rubyzip/rubyzip/releases) - [Changelog](https://github.com/rubyzip/rubyzip/blob/master/Changelog.md) - [Commits](https://github.com/rubyzip/rubyzip/compare/v2.2.0...v2.3.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-16 13:17:41 +01:00
dependabot-preview[bot]	8a4784d36f	Build(deps): Bump rails_multisite from 2.1.0 to 2.1.1 (#9196) ... Bumps [rails_multisite]() from 2.1.0 to 2.1.1. Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-13 13:53:39 +00:00
dependabot-preview[bot]	aa4e76b480	Build(deps-dev): Bump ruby-prof from 1.3.0 to 1.3.1 (#9186) ... Bumps [ruby-prof](https://github.com/ruby-prof/ruby-prof) from 1.3.0 to 1.3.1. - [Release notes](https://github.com/ruby-prof/ruby-prof/releases) - [Changelog](https://github.com/ruby-prof/ruby-prof/blob/master/CHANGES) - [Commits](https://github.com/ruby-prof/ruby-prof/compare/1.3.0...1.3.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-12 11:16:29 -04:00
OsamaSayegh	b23c2437ae	DEV: Revert rack-mini-profiler version bump ... New version breaks site deploys. Will investigate and fix.	2020-03-11 22:16:15 +03:00
dependabot-preview[bot]	a4929661af	Build(deps): Bump rack-mini-profiler from 1.1.6 to 2.0.0 (#9168) ... * Build(deps): Bump rack-mini-profiler from 1.1.6 to 2.0.0 Bumps [rack-mini-profiler](https://github.com/MiniProfiler/rack-mini-profiler) from 1.1.6 to 2.0.0. - [Release notes](https://github.com/MiniProfiler/rack-mini-profiler/releases) - [Changelog](https://github.com/MiniProfiler/rack-mini-profiler/blob/master/CHANGELOG.md) - [Commits](https://github.com/MiniProfiler/rack-mini-profiler/compare/v1.1.6...v2.0.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Enable rails patches Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com> Co-authored-by: OsamaSayegh <asooomaasoooma90@gmail.com>	2020-03-11 20:11:12 +03:00
dependabot-preview[bot]	40d7686234	Build(deps-dev): Bump webmock from 3.8.2 to 3.8.3 (#9167) ... Bumps [webmock](https://github.com/bblimke/webmock) from 3.8.2 to 3.8.3. - [Release notes](https://github.com/bblimke/webmock/releases) - [Changelog](https://github.com/bblimke/webmock/blob/master/CHANGELOG.md) - [Commits](https://github.com/bblimke/webmock/compare/v3.8.2...v3.8.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-11 10:09:19 -04:00
Robin Ward	a3f0543f99	Support for transpiling .js files (#9160) ... * Remove some `.es6` from comments where it does not matter * Use a post processor for transpilation This will allow us to eventually use the directory structure to transpile rather than the extension. * FIX: Some errors and clean up in confirm-new-email It would throw an error if the webauthn element wasn't present. Also I changed things so that no-module is not explicitly referenced. * Remove `no-module` Instead we allow a magic comment: `// discourse-skip-module` to prevent the asset pipeline from creating a module. * DEV: Enable babel transpilation based on directory If it's in `app/assets/javascripts/dicourse` it will be transpiled even without the `.es6` extension. * REFACTOR: Remove Tilt/ES6ModuleTranspiler	2020-03-11 09:43:55 -04:00
dependabot-preview[bot]	08b992d257	Build(deps): Bump aws-sdk-sns from 1.21.0 to 1.22.0 (#9154) ... Bumps [aws-sdk-sns](https://github.com/aws/aws-sdk-ruby) from 1.21.0 to 1.22.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-sns/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/compare/1.21.0...1.22.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-10 10:20:34 -04:00
dependabot-preview[bot]	25b74e252b	Build(deps): Bump aws-sdk-s3 from 1.60.2 to 1.61.0 (#9153) ... Bumps [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) from 1.60.2 to 1.61.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-s3/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/compare/v1.60.2...v1.61.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>	2020-03-10 10:14:52 -04:00
dependabot-preview[bot]	5c581b475a	Build(deps): Bump oj from 3.10.3 to 3.10.5 (#9107) ... Bumps [oj](https://github.com/ohler55/oj) from 3.10.3 to 3.10.5. - [Release notes](https://github.com/ohler55/oj/releases) - [Changelog](https://github.com/ohler55/oj/blob/develop/CHANGELOG.md) - [Commits](https://github.com/ohler55/oj/compare/v3.10.3...v3.10.5) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-03-04 10:06:13 -05:00
dependabot-preview[bot]	f971ecd231	Build(deps): Bump nokogiri from 1.10.8 to 1.10.9 (#9093) ... Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.10.8 to 1.10.9. - [Release notes](https://github.com/sparklemotion/nokogiri/releases) - [Changelog](https://github.com/sparklemotion/nokogiri/blob/v1.10.9/CHANGELOG.md) - [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.10.8...v1.10.9) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-03-03 10:19:34 -05:00
OsamaSayegh	5035a490b2	DEV: Bump Logster version to 2.7.1 ... This version includes a fix to stop `env` mutation that occurred in Logster default store which caused chained loggers to report different backtraces for the same message when backtrace is provided via `env`. https://github.com/discourse/logster/compare/v2.7.0...v2.7.1	2020-03-03 07:02:01 +03:00
dependabot-preview[bot]	8a696a4ffc	Build(deps-dev): Bump annotate from 3.0.3 to 3.1.0 (#9091) ... Bumps [annotate](https://github.com/ctran/annotate_models) from 3.0.3 to 3.1.0. - [Release notes](https://github.com/ctran/annotate_models/releases) - [Changelog](https://github.com/ctran/annotate_models/blob/develop/CHANGELOG.md) - [Commits](https://github.com/ctran/annotate_models/compare/v3.0.3...v3.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-03-02 16:35:13 -05:00
dependabot-preview[bot]	ee35bbdbba	Build(deps): Bump oj from 3.10.2 to 3.10.3 (#9092) ... Bumps [oj](https://github.com/ohler55/oj) from 3.10.2 to 3.10.3. - [Release notes](https://github.com/ohler55/oj/releases) - [Changelog](https://github.com/ohler55/oj/blob/develop/CHANGELOG.md) - [Commits](https://github.com/ohler55/oj/compare/v3.10.2...v3.10.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-03-02 16:34:53 -05:00
dependabot-preview[bot]	f44ad91a52	Build(deps): Bump hashdiff from 1.0.0 to 1.0.1 (#9068) ... Bumps [hashdiff](https://github.com/liufengyun/hashdiff) from 1.0.0 to 1.0.1. - [Release notes](https://github.com/liufengyun/hashdiff/releases) - [Changelog](https://github.com/liufengyun/hashdiff/blob/master/changelog.md) - [Commits](https://github.com/liufengyun/hashdiff/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-03-02 14:31:19 -05:00
dependabot-preview[bot]	b78df9c4c9	Build(deps): Bump aws-sigv4 from 1.1.0 to 1.1.1 (#9067) ... Bumps [aws-sigv4](https://github.com/aws/aws-sdk-ruby) from 1.1.0 to 1.1.1. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sigv4/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/compare/1.1.0...1.1.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-03-02 14:31:06 -05:00
dependabot-preview[bot]	8e7868b405	Build(deps-dev): Bump rubocop from 0.80.0 to 0.80.1 (#9081) ... Bumps [rubocop](https://github.com/rubocop-hq/rubocop) from 0.80.0 to 0.80.1. - [Release notes](https://github.com/rubocop-hq/rubocop/releases) - [Changelog](https://github.com/rubocop-hq/rubocop/blob/master/CHANGELOG.md) - [Commits](https://github.com/rubocop-hq/rubocop/compare/v0.80.0...v0.80.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-03-02 14:10:19 -05:00
dependabot-preview[bot]	93b8d7ec89	Build(deps): Bump puma from 4.3.2 to 4.3.3 (#9079) ... Bumps [puma](https://github.com/puma/puma) from 4.3.2 to 4.3.3. - [Release notes](https://github.com/puma/puma/releases) - [Changelog](https://github.com/puma/puma/blob/master/History.md) - [Commits](https://github.com/puma/puma/compare/v4.3.2...v4.3.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-03-02 14:09:56 -05:00
dependabot-preview[bot]	98d4b7bbc1	Build(deps-dev): Bump better_errors from 2.5.1 to 2.6.0 (#9043) ... Bumps [better_errors](https://github.com/BetterErrors/better_errors) from 2.5.1 to 2.6.0. - [Release notes](https://github.com/BetterErrors/better_errors/releases) - [Commits](https://github.com/BetterErrors/better_errors/compare/v2.5.1...v2.6.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-03-02 14:09:33 -05:00
dependabot-preview[bot]	d85726a866	Build(deps-dev): Bump simplecov from 0.18.3 to 0.18.5 (#9044) ... Bumps [simplecov](https://github.com/colszowka/simplecov) from 0.18.3 to 0.18.5. - [Release notes](https://github.com/colszowka/simplecov/releases) - [Changelog](https://github.com/colszowka/simplecov/blob/master/CHANGELOG.md) - [Commits](https://github.com/colszowka/simplecov/compare/v0.18.3...v0.18.5) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-03-02 14:09:05 -05:00
David Taylor	68c7699c46	Revert "Build(deps-dev): Bump annotate from 3.0.3 to 3.1.0 (#9013)" ... v3.1.0 has a bug which rewrites default annotations with erroneous quotes. https://github.com/ctran/annotate_models/issues/762 This reverts commit dd4a04e72c.	2020-03-02 13:34:39 +00:00
dependabot-preview[bot]	34fddaa824	Build(deps): Bump rails_multisite from 2.0.7 to 2.1.0 (#9083) ... Bumps [rails_multisite]() from 2.0.7 to 2.1.0. Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-03-02 10:34:17 +00:00
dependabot-preview[bot]	18ed2cc7d8	Build(deps): Bump puma from 4.3.1 to 4.3.2 (#9063) ... Bumps [puma](https://github.com/puma/puma) from 4.3.1 to 4.3.2. - [Release notes](https://github.com/puma/puma/releases) - [Changelog](https://github.com/puma/puma/blob/master/History.md) - [Commits](https://github.com/puma/puma/compare/v4.3.1...v4.3.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-28 14:25:52 -05:00
dependabot-preview[bot]	87b2871074	Build(deps): Bump logster from 2.6.3 to 2.7.0 (#9050) ... This includes a new feature that allows you to control the length of log messages via `Logster.config.maximum_message_length`. More details at: e5c4fc0b6e Bumps [logster](https://github.com/discourse/logster) from 2.6.3 to 2.7.0. - [Release notes](https://github.com/discourse/logster/releases) - [Changelog](https://github.com/discourse/logster/blob/master/CHANGELOG.md) - [Commits](https://github.com/discourse/logster/compare/v2.6.3...v2.7.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-26 22:08:39 +03:00
dependabot-preview[bot]	709772ea52	Build(deps): Bump bootsnap from 1.4.5 to 1.4.6 (#9032) ... Bumps [bootsnap](https://github.com/Shopify/bootsnap) from 1.4.5 to 1.4.6. - [Release notes](https://github.com/Shopify/bootsnap/releases) - [Changelog](https://github.com/Shopify/bootsnap/blob/master/CHANGELOG.md) - [Commits](https://github.com/Shopify/bootsnap/compare/v1.4.5...v1.4.6) Simple low risk dependency, only used in dev	2020-02-25 07:54:24 +11:00
dependabot-preview[bot]	fee7a4be8a	Build(deps-dev): Bump simplecov from 0.18.2 to 0.18.3 (#9025) ... Bumps [simplecov](https://github.com/colszowka/simplecov) from 0.18.2 to 0.18.3. - [Release notes](https://github.com/colszowka/simplecov/releases) - [Changelog](https://github.com/colszowka/simplecov/blob/master/CHANGELOG.md) - [Commits](https://github.com/colszowka/simplecov/compare/v0.18.2...v0.18.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-24 13:32:38 -05:00
dependabot-preview[bot]	dedd37503e	Build(deps): Bump simplecov-html from 0.12.0 to 0.12.1 (#9024) ... Bumps [simplecov-html](https://github.com/colszowka/simplecov-html) from 0.12.0 to 0.12.1. - [Release notes](https://github.com/colszowka/simplecov-html/releases) - [Changelog](https://github.com/colszowka/simplecov-html/blob/master/CHANGELOG.md) - [Commits](https://github.com/colszowka/simplecov-html/compare/v0.12.0...v0.12.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-24 13:31:52 -05:00
dependabot-preview[bot]	31f3ed8d36	Build(deps-dev): Bump ruby-prof from 1.2.0 to 1.3.0 (#9023) ... Bumps [ruby-prof](https://github.com/ruby-prof/ruby-prof) from 1.2.0 to 1.3.0. - [Release notes](https://github.com/ruby-prof/ruby-prof/releases) - [Changelog](https://github.com/ruby-prof/ruby-prof/blob/master/CHANGES) - [Commits](https://github.com/ruby-prof/ruby-prof/compare/1.2.0...1.3.0) Minor change only impacts development	2020-02-24 13:13:09 +11:00
dependabot-preview[bot]	dd4a04e72c	Build(deps-dev): Bump annotate from 3.0.3 to 3.1.0 (#9013) ... Bumps [annotate](https://github.com/ctran/annotate_models) from 3.0.3 to 3.1.0. - [Release notes](https://github.com/ctran/annotate_models/releases) - [Changelog](https://github.com/ctran/annotate_models/blob/develop/CHANGELOG.md) - [Commits](https://github.com/ctran/annotate_models/compare/v3.0.3...v3.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-20 12:18:52 -05:00
dependabot-preview[bot]	223edd1286	Build(deps-dev): Bump rubocop from 0.79.0 to 0.80.0 (#8997) ... Bumps [rubocop](https://github.com/rubocop-hq/rubocop) from 0.79.0 to 0.80.0. - [Release notes](https://github.com/rubocop-hq/rubocop/releases) - [Changelog](https://github.com/rubocop-hq/rubocop/blob/master/CHANGELOG.md) - [Commits](https://github.com/rubocop-hq/rubocop/compare/v0.79.0...v0.80.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: Robin Ward <robin.ward@gmail.com>	2020-02-19 14:36:36 -05:00
dependabot-preview[bot]	eaf516a5ad	Build(deps-dev): Bump shoulda-matchers from 4.2.0 to 4.3.0 (#8989) ... Bumps [shoulda-matchers](https://github.com/thoughtbot/shoulda-matchers) from 4.2.0 to 4.3.0. - [Release notes](https://github.com/thoughtbot/shoulda-matchers/releases) - [Changelog](https://github.com/thoughtbot/shoulda-matchers/blob/master/NEWS.md) - [Commits](https://github.com/thoughtbot/shoulda-matchers/compare/v4.2.0...v4.3.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: Robin Ward <robin.ward@gmail.com>	2020-02-19 13:41:38 -05:00
OsamaSayegh	3e7c4dcc57	DEV: Bump Logster version to 2.6.3 ... This version includes a fix for a bug where env wouldn't show up if filter messages by a search term.	2020-02-17 22:52:18 +03:00
Sam Saffron	28d61cb0d7	Revert "Build(deps): Bump oauth2 from 1.4.2 to 1.4.4 (#8952)" ... This reverts commit c7544880b6. Plugins depend on specific version so this upgrade is in fact not safe	2020-02-16 10:45:06 +11:00
dependabot-preview[bot]	c7544880b6	Build(deps): Bump oauth2 from 1.4.2 to 1.4.4 (#8952) ... Bumps [oauth2](https://github.com/oauth-xx/oauth2) from 1.4.2 to 1.4.4. - [Release notes](https://github.com/oauth-xx/oauth2/releases) - [Changelog](https://github.com/oauth-xx/oauth2/blob/master/CHANGELOG.md) - [Commits](https://github.com/oauth-xx/oauth2/compare/v1.4.2...v1.4.4) Change should be safe mainly cosmetic	2020-02-16 10:38:56 +11:00
dependabot-preview[bot]	157dcc7e3b	DEV: Bump sidekiq from 6.0.4 to 6.0.5 (#8964) ... Bumps [sidekiq](https://github.com/mperham/sidekiq) from 6.0.4 to 6.0.5. - [Release notes](https://github.com/mperham/sidekiq/releases) - [Changelog](https://github.com/mperham/sidekiq/blob/master/Changes.md) - [Commits](https://github.com/mperham/sidekiq/compare/v6.0.4...v6.0.5) Changes are safe, mostly around 2.7 support	2020-02-14 14:53:31 +11:00
dependabot-preview[bot]	4b46db6ea8	Build(deps-dev): Bump webmock from 3.8.1 to 3.8.2 (#8951) ... Bumps [webmock](https://github.com/bblimke/webmock) from 3.8.1 to 3.8.2. - [Release notes](https://github.com/bblimke/webmock/releases) - [Changelog](https://github.com/bblimke/webmock/blob/master/CHANGELOG.md) - [Commits](https://github.com/bblimke/webmock/compare/v3.8.1...v3.8.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-13 12:32:02 -05:00
dependabot-preview[bot]	08f1866152	Build(deps-dev): Bump simplecov from 0.18.1 to 0.18.2 (#8945) ... Bumps [simplecov](https://github.com/colszowka/simplecov) from 0.18.1 to 0.18.2. - [Release notes](https://github.com/colszowka/simplecov/releases) - [Changelog](https://github.com/colszowka/simplecov/blob/master/CHANGELOG.md) - [Commits](https://github.com/colszowka/simplecov/compare/v0.18.1...v0.18.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-12 13:51:21 -05:00
dependabot-preview[bot]	fb2fad4811	Build(deps): Bump concurrent-ruby from 1.1.5 to 1.1.6 (#8930) ... Bumps [concurrent-ruby](https://github.com/ruby-concurrency/concurrent-ruby) from 1.1.5 to 1.1.6. - [Release notes](https://github.com/ruby-concurrency/concurrent-ruby/releases) - [Changelog](https://github.com/ruby-concurrency/concurrent-ruby/blob/master/CHANGELOG.md) - [Commits](https://github.com/ruby-concurrency/concurrent-ruby/compare/v1.1.5...v1.1.6) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: Robin Ward <robin.ward@gmail.com>	2020-02-12 10:11:31 -05:00
dependabot-preview[bot]	86bbc844fa	Build(deps-dev): Bump test-prof from 0.11.2 to 0.11.3 (#8931) ... Bumps [test-prof](https://github.com/palkan/test-prof) from 0.11.2 to 0.11.3. - [Release notes](https://github.com/palkan/test-prof/releases) - [Changelog](https://github.com/palkan/test-prof/blob/master/CHANGELOG.md) - [Commits](https://github.com/palkan/test-prof/compare/v0.11.2...v0.11.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: Régis Hanol <regis@hanol.fr>	2020-02-12 09:38:32 -05:00
dependabot-preview[bot]	747fa94853	Build(deps-dev): Bump test-prof from 0.11.1 to 0.11.2 (#8929) ... Bumps [test-prof](https://github.com/palkan/test-prof) from 0.11.1 to 0.11.2. - [Release notes](https://github.com/palkan/test-prof/releases) - [Changelog](https://github.com/palkan/test-prof/blob/master/CHANGELOG.md) - [Commits](https://github.com/palkan/test-prof/compare/v0.11.1...v0.11.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-11 15:43:21 -05:00
dependabot-preview[bot]	b266129ce5	Build(deps): Bump aws-partitions from 1.271.0 to 1.272.0 (#8918) ... Bumps [aws-partitions](https://github.com/aws/aws-sdk-ruby) from 1.271.0 to 1.272.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-partitions/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-11 10:06:04 -05:00
dependabot-preview[bot]	0cf19eb8fa	Build(deps): Bump aws-sdk-kms from 1.28.0 to 1.29.0 (#8917) ... Bumps [aws-sdk-kms](https://github.com/aws/aws-sdk-ruby) from 1.28.0 to 1.29.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-kms/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/compare/1.28.0...1.29.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-11 10:04:58 -05:00
David Taylor	3a906ff0e6	DEV: Bump omniauth-github from 1.3.0 to 1.4.0 (#8924) ... This switches the github API access to use header-based authentication, rather than the deprecated parameter-based method	2020-02-11 09:36:41 +00:00
dependabot-preview[bot]	d7ae6b28e7	Build(deps): Bump nokogiri from 1.10.7 to 1.10.8 (#8916) ... Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.10.7 to 1.10.8. - [Release notes](https://github.com/sparklemotion/nokogiri/releases) - [Changelog](https://github.com/sparklemotion/nokogiri/blob/master/CHANGELOG.md) - [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.10.7...v1.10.8) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-10 15:27:36 -05:00
dependabot-preview[bot]	5dc0f1bba2	Build(deps-dev): Bump test-prof from 0.10.2 to 0.11.1 (#8911) ... Bumps [test-prof](https://github.com/palkan/test-prof) from 0.10.2 to 0.11.1. - [Release notes](https://github.com/palkan/test-prof/releases) - [Changelog](https://github.com/palkan/test-prof/blob/master/CHANGELOG.md) - [Commits](https://github.com/palkan/test-prof/compare/v0.10.2...v0.11.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-10 10:57:10 -05:00
dependabot-preview[bot]	e82901875f	Build(deps): Bump aws-sdk-s3 from 1.60.1 to 1.60.2 (#8899) ... Bumps [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) from 1.60.1 to 1.60.2. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-s3/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/compare/v1.60.1...v1.60.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-10 10:42:17 -05:00
dependabot-preview[bot]	0b96e182de	Build(deps): Bump aws-partitions from 1.270.0 to 1.271.0 (#8898) ... Bumps [aws-partitions](https://github.com/aws/aws-sdk-ruby) from 1.270.0 to 1.271.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-partitions/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-10 10:41:43 -05:00
OsamaSayegh	8054ce735b	DEV: Bump Logster version to 2.6.2 ... This version includes fixes for bugs in the previous version. Changelog: 932e510436 (diff-4ac32a78649ca5bdd8e0ba38b7006a1e)	2020-02-09 15:55:49 +00:00
David Taylor	5919618a87	DEV: Drop legacy OpenID 2.0 support (#8894) ... This is not used in core or official plugins, and has been printing a deprecation notice since v2.3.0beta4. All OpenID 2.0 code and dependencies have been dropped. The user_open_ids table remains for now, in case anyone has missed the deprecation notice, and needs to migrate their data. Context at https://meta.discourse.org/t/-/113249	2020-02-07 17:32:35 +00:00
OsamaSayegh	a516c5df82	DEV: Bump logster version to 2.6.1 and enable new logster feature ... Logster 2.6.1 includes a few new features and fixes. More details here: 58bb5c5368/CHANGELOG.md	2020-02-07 13:35:26 +00:00
dependabot-preview[bot]	5eb3255b02	DEV: Bump webmock from 3.8.0 to 3.8.1 (#8884) ... Bumps [webmock](https://github.com/bblimke/webmock) from 3.8.0 to 3.8.1. - [Release notes](https://github.com/bblimke/webmock/releases) - [Changelog](https://github.com/bblimke/webmock/blob/master/CHANGELOG.md) - [Commits](https://github.com/bblimke/webmock/compare/v3.8.0...v3.8.1) Testing only, not a risky change	2020-02-07 14:13:27 +11:00
Jarek Radosz	53529a3427	DEV: Upgrade Ember to version 3.12.2 (#8753) ... * DEV: Use Ember 3.12.2 * Add Ember version to ThemeField's DEPENDENT_CONSTANTS * DEV: Use `id` instead of `elementId` (See: https://github.com/emberjs/ember.js/issues/18147) * FIX: Don't leak event listeners (bug introduced in 999e2ff)	2020-02-05 14:51:00 +01:00
dependabot-preview[bot]	a84c493de2	DEV: Bump msgpack from 1.3.2 to 1.3.3 (#8859) ... Bumps [msgpack](https://github.com/msgpack/msgpack-ruby) from 1.3.2 to 1.3.3. - [Release notes](https://github.com/msgpack/msgpack-ruby/releases) - [Changelog](https://github.com/msgpack/msgpack-ruby/blob/master/ChangeLog) - [Commits](https://github.com/msgpack/msgpack-ruby/compare/v1.3.2...v1.3.3) Very safe update, mostly covering 2.7 compat.	2020-02-05 16:26:28 +11:00
dependabot-preview[bot]	0497d64849	Build(deps): Bump aws-partitions from 1.269.0 to 1.270.0 (#8855) ... Bumps [aws-partitions](https://github.com/aws/aws-sdk-ruby) from 1.269.0 to 1.270.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-partitions/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-04 16:13:31 -05:00
dependabot-preview[bot]	14758771c6	Build(deps): Bump msgpack from 1.3.1 to 1.3.2 (#8843) ... Bumps [msgpack](https://github.com/msgpack/msgpack-ruby) from 1.3.1 to 1.3.2. - [Release notes](https://github.com/msgpack/msgpack-ruby/releases) - [Changelog](https://github.com/msgpack/msgpack-ruby/blob/master/ChangeLog) - [Commits](https://github.com/msgpack/msgpack-ruby/compare/v1.3.1...v1.3.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-04 10:29:42 -05:00
dependabot-preview[bot]	a96eba9714	Build(deps): Bump rubyzip from 2.1.0 to 2.2.0 (#8833) ... Bumps [rubyzip](https://github.com/rubyzip/rubyzip) from 2.1.0 to 2.2.0. - [Release notes](https://github.com/rubyzip/rubyzip/releases) - [Changelog](https://github.com/rubyzip/rubyzip/blob/master/Changelog.md) - [Commits](https://github.com/rubyzip/rubyzip/compare/v2.1.0...v2.2.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-03 12:11:41 -05:00
dependabot-preview[bot]	302774f0e9	Build(deps): Bump ffi from 1.12.1 to 1.12.2 (#8831) ... Bumps [ffi](https://github.com/ffi/ffi) from 1.12.1 to 1.12.2. - [Release notes](https://github.com/ffi/ffi/releases) - [Changelog](https://github.com/ffi/ffi/blob/master/CHANGELOG.md) - [Commits](https://github.com/ffi/ffi/compare/1.12.1...1.12.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-03 12:10:48 -05:00
dependabot-preview[bot]	335f63f8fd	Build(deps): Bump unicorn from 5.5.2 to 5.5.3 (#8830) ... Bumps [unicorn](https://yhbt.net/unicorn/) from 5.5.2 to 5.5.3. Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-03 12:09:29 -05:00
dependabot-preview[bot]	16ae49eb95	Build(deps-dev): Bump parallel_tests from 2.30.1 to 2.31.0 (#8829) ... Bumps [parallel_tests](https://github.com/grosser/parallel_tests) from 2.30.1 to 2.31.0. - [Release notes](https://github.com/grosser/parallel_tests/releases) - [Commits](https://github.com/grosser/parallel_tests/compare/v2.30.1...v2.31.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-02-03 12:08:54 -05:00
Arpit Jalan	e7a511fc7f	Bump onebox version. ... - remove Douban onebox - show map icon for Google Map composer preview	2020-02-03 18:57:38 +05:30
dependabot-preview[bot]	6455c6ee87	Build(deps-dev): Bump simplecov from 0.18.0 to 0.18.1 (#8827) ... Bumps [simplecov](https://github.com/colszowka/simplecov) from 0.18.0 to 0.18.1. - [Release notes](https://github.com/colszowka/simplecov/releases) - [Changelog](https://github.com/colszowka/simplecov/blob/master/CHANGELOG.md) - [Commits](https://github.com/colszowka/simplecov/compare/v0.18.0...v0.18.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-31 10:22:12 -05:00
dependabot-preview[bot]	a520012538	Build(deps): Bump cose from 0.10.0 to 0.11.0 (#8822) ... Bumps [cose](https://github.com/cedarcode/cose-ruby) from 0.10.0 to 0.11.0. - [Release notes](https://github.com/cedarcode/cose-ruby/releases) - [Changelog](https://github.com/cedarcode/cose-ruby/blob/master/CHANGELOG.md) - [Commits](https://github.com/cedarcode/cose-ruby/compare/v0.10.0...v0.11.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-30 14:32:27 -05:00
dependabot-preview[bot]	3c40bcca17	Build(deps): Bump oj from 3.10.1 to 3.10.2 (#8821) ... Bumps [oj](https://github.com/ohler55/oj) from 3.10.1 to 3.10.2. - [Release notes](https://github.com/ohler55/oj/releases) - [Changelog](https://github.com/ohler55/oj/blob/develop/CHANGELOG.md) - [Commits](https://github.com/ohler55/oj/compare/v3.10.1...v3.10.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-30 14:30:50 -05:00
Robin Ward	6d8f12612b	Revert "Build(deps): Bump oauth2 from 1.4.2 to 1.4.3 (#8815)" ... This reverts commit dc34c24ffe.	2020-01-30 11:04:50 -05:00
dependabot-preview[bot]	dc34c24ffe	Build(deps): Bump oauth2 from 1.4.2 to 1.4.3 (#8815) ... Bumps [oauth2](https://github.com/oauth-xx/oauth2) from 1.4.2 to 1.4.3. - [Release notes](https://github.com/oauth-xx/oauth2/releases) - [Changelog](https://github.com/oauth-xx/oauth2/blob/master/CHANGELOG.md) - [Commits](https://github.com/oauth-xx/oauth2/compare/v1.4.2...v1.4.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-30 10:59:59 -05:00
Sam Saffron	9f0e57b338	DEV: update rack-mini-profiler ... This contains a fix to avoid a certain exception that kept popping up on page transitions when mini profiler was fighting with our app and our app was removing the mini profiler timing.	2020-01-30 17:57:47 +11:00
dependabot-preview[bot]	d2ce733936	DEV: Bump simplecov from 0.17.1 to 0.18.0 (#8805) ... Bumps [simplecov](https://github.com/colszowka/simplecov) from 0.17.1 to 0.18.0. - [Release notes](https://github.com/colszowka/simplecov/releases) - [Changelog](https://github.com/colszowka/simplecov/blob/master/CHANGELOG.md) - [Commits](https://github.com/colszowka/simplecov/compare/v0.17.1...v0.18.0) Only used during testing, upgrade is safe	2020-01-29 12:10:31 +11:00
dependabot-preview[bot]	88548cef6a	DEV: Bump actionview_precompiler from 0.2.1 to 0.2.2 (#8798) ... Bumps [actionview_precompiler](https://github.com/jhawthorn/actionview_precompiler) from 0.2.1 to 0.2.2. - [Release notes](https://github.com/jhawthorn/actionview_precompiler/releases) - [Commits](https://github.com/jhawthorn/actionview_precompiler/compare/v0.2.1...v0.2.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> This is used by unicorn for precompilation of templates, it reduces memory and cpu on unicorn workers that reuse the work. Upgrade is safe only contains Ruby 2.7 fixes	2020-01-29 12:09:56 +11:00
dependabot-preview[bot]	54a80e0dc0	Build(deps): Bump rack-mini-profiler from 1.1.4 to 1.1.5 (#8800) ... Bumps [rack-mini-profiler](https://github.com/MiniProfiler/rack-mini-profiler) from 1.1.4 to 1.1.5. - [Release notes](https://github.com/MiniProfiler/rack-mini-profiler/releases) - [Changelog](https://github.com/MiniProfiler/rack-mini-profiler/blob/master/CHANGELOG.md) - [Commits](https://github.com/MiniProfiler/rack-mini-profiler/compare/v1.1.4...v1.1.5) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-28 11:21:57 -05:00
dependabot-preview[bot]	22a089dfa2	Build(deps): Bump excon from 0.71.1 to 0.72.0 (#8797) ... Bumps [excon](https://github.com/excon/excon) from 0.71.1 to 0.72.0. - [Release notes](https://github.com/excon/excon/releases) - [Changelog](https://github.com/excon/excon/blob/master/changelog.txt) - [Commits](https://github.com/excon/excon/compare/v0.71.1...v0.72.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-28 11:20:54 -05:00
David Taylor	885a3ca42c	DEV: Bump omniauth-facebook from 5.0.0 to 6.0.0 ... 5.0.0 uses Facebook graph API v2.11, which is deprecated from 28th Jan 2020 6.0.0 uses Facebook graph API v3.0, which is supported until July 2020	2020-01-28 10:57:56 +00:00
dependabot-preview[bot]	4d3254b37c	Build(deps): Bump rubyzip from 2.0.0 to 2.1.0 (#8785) ... Bumps [rubyzip](https://github.com/rubyzip/rubyzip) from 2.0.0 to 2.1.0. - [Release notes](https://github.com/rubyzip/rubyzip/releases) - [Changelog](https://github.com/rubyzip/rubyzip/blob/master/Changelog.md) - [Commits](https://github.com/rubyzip/rubyzip/compare/v2.0.0...v2.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-27 15:55:55 -05:00
dependabot-preview[bot]	bb816302f6	Build(deps-dev): Bump byebug from 11.1.0 to 11.1.1 (#8788) ... Bumps [byebug](https://github.com/deivid-rodriguez/byebug) from 11.1.0 to 11.1.1. - [Release notes](https://github.com/deivid-rodriguez/byebug/releases) - [Changelog](https://github.com/deivid-rodriguez/byebug/blob/master/CHANGELOG.md) - [Commits](https://github.com/deivid-rodriguez/byebug/compare/v11.1.0...v11.1.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-27 11:06:17 -05:00
dependabot-preview[bot]	869fbad2a4	Build(deps): Bump aws-partitions from 1.267.0 to 1.269.0 (#8786) ... Bumps [aws-partitions](https://github.com/aws/aws-sdk-ruby) from 1.267.0 to 1.269.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-partitions/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-27 11:06:05 -05:00
dependabot-preview[bot]	b0f2f1cfb6	Build(deps-dev): Bump ruby-prof from 1.1.0 to 1.2.0 (#8778) ... Bumps [ruby-prof](https://github.com/ruby-prof/ruby-prof) from 1.1.0 to 1.2.0. - [Release notes](https://github.com/ruby-prof/ruby-prof/releases) - [Changelog](https://github.com/ruby-prof/ruby-prof/blob/master/CHANGES) - [Commits](https://github.com/ruby-prof/ruby-prof/compare/1.1.0...1.2.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-24 12:55:08 -05:00
Arpit Jalan	5eb2efe64a	Revert Faraday to version 0.17.3	2020-01-24 12:08:56 +05:30
dependabot-preview[bot]	0b3de60bee	Build(deps): Bump faraday from 0.17.1 to 1.0.0 (#8646) ... Bumps [faraday](https://github.com/lostisland/faraday) from 0.17.1 to 1.0.0. - [Release notes](https://github.com/lostisland/faraday/releases) - [Changelog](https://github.com/lostisland/faraday/blob/master/CHANGELOG.md) - [Commits](https://github.com/lostisland/faraday/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-23 16:19:40 +01:00
dependabot-preview[bot]	9fea89a017	Build(deps-dev): Bump webmock from 3.7.6 to 3.8.0 (#8728) ... Bumps [webmock](https://github.com/bblimke/webmock) from 3.7.6 to 3.8.0. - [Release notes](https://github.com/bblimke/webmock/releases) - [Changelog](https://github.com/bblimke/webmock/blob/master/CHANGELOG.md) - [Commits](https://github.com/bblimke/webmock/compare/v3.7.6...v3.8.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-23 16:19:28 +01:00
dependabot-preview[bot]	e309db9b58	Build(deps-dev): Bump parallel_tests from 2.30.0 to 2.30.1 (#8717) ... Bumps [parallel_tests](https://github.com/grosser/parallel_tests) from 2.30.0 to 2.30.1. - [Release notes](https://github.com/grosser/parallel_tests/releases) - [Commits](https://github.com/grosser/parallel_tests/compare/v2.30.0...v2.30.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-23 16:19:14 +01:00
dependabot-preview[bot]	004d9ef3b7	Build(deps): Bump raindrops from 0.19.0 to 0.19.1 (#8680) ... Bumps [raindrops](https://yhbt.net/raindrops/) from 0.19.0 to 0.19.1. Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-23 15:47:01 +01:00
dependabot-preview[bot]	523bebbfeb	Build(deps): Bump kgio from 2.11.2 to 2.11.3 (#8679) ... Bumps [kgio](https://yhbt.net/kgio/) from 2.11.2 to 2.11.3. Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-23 15:46:50 +01:00
dependabot-preview[bot]	9e8ee90774	Build(deps): Bump aws-partitions from 1.266.0 to 1.267.0 (#8762) ... Bumps [aws-partitions](https://github.com/aws/aws-sdk-ruby) from 1.266.0 to 1.267.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-partitions/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-22 11:52:47 -05:00
dependabot-preview[bot]	b49f7a420b	Build(deps): Bump aws-sdk-kms from 1.27.0 to 1.28.0 (#8755) ... Bumps [aws-sdk-kms](https://github.com/aws/aws-sdk-ruby) from 1.27.0 to 1.28.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-kms/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/compare/1.27.0...1.28.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-21 10:09:41 -05:00
dependabot-preview[bot]	6cf088b7c9	Build(deps-dev): Bump byebug from 11.0.1 to 11.1.0 (#8758) ... Bumps [byebug](https://github.com/deivid-rodriguez/byebug) from 11.0.1 to 11.1.0. - [Release notes](https://github.com/deivid-rodriguez/byebug/releases) - [Changelog](https://github.com/deivid-rodriguez/byebug/blob/master/CHANGELOG.md) - [Commits](https://github.com/deivid-rodriguez/byebug/compare/v11.0.1...v11.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-21 10:09:20 -05:00
dependabot-preview[bot]	3c28f55ab7	Build(deps): Bump mini_sql from 0.2.3 to 0.2.4 (#8757) ... Bumps [mini_sql](https://github.com/discourse/mini_sql) from 0.2.3 to 0.2.4. - [Release notes](https://github.com/discourse/mini_sql/releases) - [Changelog](https://github.com/discourse/mini_sql/blob/master/CHANGELOG) - [Commits](https://github.com/discourse/mini_sql/compare/v0.2.3...v0.2.4) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-21 10:08:53 -05:00
dependabot-preview[bot]	32ec61d63c	Build(deps): Bump unicode-display_width from 1.6.0 to 1.6.1 (#8756) ... Bumps [unicode-display_width](https://github.com/janlelis/unicode-display_width) from 1.6.0 to 1.6.1. - [Release notes](https://github.com/janlelis/unicode-display_width/releases) - [Changelog](https://github.com/janlelis/unicode-display_width/blob/master/CHANGELOG.md) - [Commits](https://github.com/janlelis/unicode-display_width/compare/v1.6.0...v1.6.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-21 10:08:24 -05:00
dependabot-preview[bot]	304dcb3eb8	Build(deps): Bump ffi from 1.11.3 to 1.12.1 (#8721) ... Bumps [ffi](https://github.com/ffi/ffi) from 1.11.3 to 1.12.1. - [Release notes](https://github.com/ffi/ffi/releases) - [Changelog](https://github.com/ffi/ffi/blob/master/CHANGELOG.md) - [Commits](https://github.com/ffi/ffi/compare/1.11.3...1.12.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-20 15:45:55 -05:00
dependabot-preview[bot]	932ccc89d7	Build(deps): Bump i18n from 1.8.0 to 1.8.2 (#8705) ... Bumps [i18n](https://github.com/svenfuchs/i18n) from 1.8.0 to 1.8.2. - [Release notes](https://github.com/svenfuchs/i18n/releases) - [Changelog](https://github.com/ruby-i18n/i18n/blob/master/CHANGELOG.md) - [Commits](https://github.com/svenfuchs/i18n/compare/v1.8.0...v1.8.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-20 15:45:02 -05:00
dependabot-preview[bot]	cff97b9ab3	Build(deps): Bump oj from 3.10.0 to 3.10.1 (#8722) ... Bumps [oj](https://github.com/ohler55/oj) from 3.10.0 to 3.10.1. - [Release notes](https://github.com/ohler55/oj/releases) - [Changelog](https://github.com/ohler55/oj/blob/develop/CHANGELOG.md) - [Commits](https://github.com/ohler55/oj/compare/v3.10.0...v3.10.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-20 15:44:35 -05:00
dependabot-preview[bot]	e5e210f616	Build(deps): Bump aws-partitions from 1.262.0 to 1.266.0 (#8745) ... Bumps [aws-partitions](https://github.com/aws/aws-sdk-ruby) from 1.262.0 to 1.266.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-partitions/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-20 15:40:30 -05:00
dependabot-preview[bot]	4773cf2933	Build(deps): Bump onebox from 1.9.24 to 1.9.25 (#8707) ... Bumps [onebox](https://github.com/discourse/onebox) from 1.9.24 to 1.9.25. - [Release notes](https://github.com/discourse/onebox/releases) - [Changelog](https://github.com/discourse/onebox/blob/master/CHANGELOG.md) - [Commits](https://github.com/discourse/onebox/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-13 19:57:16 +05:30
Sam Saffron	eb105ba79d	DEV: revert upgrade of rack to version 2.0.8 ... We can not upgrade rack cause it breaks Sidekiq web. I can not find a trivial fix short of disabling sessions in Sidekiq which is a security concern. We need to figure out how to reuse sessions with our Rails application in Sidekiq. This gets extra complex cause we use a special cookie store for sessions. 9e399b42b9/lib/discourse_cookie_store.rb (L3-L21)	2020-01-13 18:07:16 +11:00
dependabot-preview[bot]	d50eb82d51	DEV: Bump rack from 2.0.8 to 2.1.1 (#8702) ... Bumps [rack](https://github.com/rack/rack) from 2.0.8 to 2.1.1. - [Release notes](https://github.com/rack/rack/releases) - [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md) - [Commits](https://github.com/rack/rack/compare/2.0.8...2.1.1) On a cursory look none of the changes should impact Discourse, we want to be on latest rack so we can benefit from all the latest bug fixes.	2020-01-13 12:09:50 +11:00
dependabot-preview[bot]	33a9d60569	DEV: Bump shoulda-matchers from 4.1.2 to 4.2.0 (#8689) ... Bumps [shoulda-matchers](https://github.com/thoughtbot/shoulda-matchers) from 4.1.2 to 4.2.0. - [Release notes](https://github.com/thoughtbot/shoulda-matchers/releases) - [Changelog](https://github.com/thoughtbot/shoulda-matchers/blob/master/NEWS.md) - [Commits](https://github.com/thoughtbot/shoulda-matchers/compare/v4.1.2...v4.2.0) Mostly about updating gem dependencies, only used in dev, very safe upgrade.	2020-01-13 12:04:31 +11:00
dependabot-preview[bot]	69779f79d9	DEV: Bump pg from 1.2.1 to 1.2.2 (#8685) ... Bumps [pg](https://github.com/ged/ruby-pg) from 1.2.1 to 1.2.2. - [Release notes](https://github.com/ged/ruby-pg/releases) - [Changelog](https://github.com/ged/ruby-pg/blob/master/History.rdoc) - [Commits](https://github.com/ged/ruby-pg/compare/v1.2.1...v1.2.2) Very safe upgrade, Discourse is not impacted by any of the changes.	2020-01-13 12:02:44 +11:00
dependabot-preview[bot]	c9327fce12	Build(deps-dev): Bump minitest from 5.13.0 to 5.14.0 (#8703) ... Bumps [minitest](https://github.com/seattlerb/minitest) from 5.13.0 to 5.14.0. - [Release notes](https://github.com/seattlerb/minitest/releases) - [Changelog](https://github.com/seattlerb/minitest/blob/master/History.rdoc) - [Commits](https://github.com/seattlerb/minitest/compare/v5.13.0...v5.14.0) Very safe change only impacts our test framework.	2020-01-13 12:01:40 +11:00
dependabot-preview[bot]	3ddebc61a9	Build(deps): Bump public_suffix from 4.0.2 to 4.0.3 (#8663) ... Bumps [public_suffix](https://github.com/weppos/publicsuffix-ruby) from 4.0.2 to 4.0.3. - [Release notes](https://github.com/weppos/publicsuffix-ruby/releases) - [Changelog](https://github.com/weppos/publicsuffix-ruby/blob/master/CHANGELOG.md) - [Commits](https://github.com/weppos/publicsuffix-ruby/compare/4.0.2...4.0.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-10 10:04:54 -05:00
dependabot-preview[bot]	aa9450646b	Build(deps-dev): Bump test-prof from 0.10.1 to 0.10.2 (#8676) ... Bumps [test-prof](https://github.com/palkan/test-prof) from 0.10.1 to 0.10.2. - [Release notes](https://github.com/palkan/test-prof/releases) - [Changelog](https://github.com/palkan/test-prof/blob/master/CHANGELOG.md) - [Commits](https://github.com/palkan/test-prof/compare/v0.10.1...v0.10.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-10 10:03:56 -05:00
dependabot-preview[bot]	d0cd08a67c	Build(deps): Bump parser from 2.7.0.1 to 2.7.0.2 (#8686) ... Bumps [parser](https://github.com/whitequark/parser) from 2.7.0.1 to 2.7.0.2. - [Release notes](https://github.com/whitequark/parser/releases) - [Changelog](https://github.com/whitequark/parser/blob/master/CHANGELOG.md) - [Commits](https://github.com/whitequark/parser/compare/v2.7.0.1...v2.7.0.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-10 10:03:11 -05:00
dependabot-preview[bot]	6e480392ea	Build(deps): Bump aws-sdk-core from 3.86.0 to 3.87.0 (#8696) ... Bumps [aws-sdk-core](https://github.com/aws/aws-sdk-ruby) from 3.86.0 to 3.87.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-core/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-10 10:01:57 -05:00
dependabot-preview[bot]	8b3c40c79d	DEV: Bump mini_racer from 0.2.8 to 0.2.9 (#8688) ... Bumps [mini_racer](https://github.com/discourse/mini_racer) from 0.2.8 to 0.2.9. - [Release notes](https://github.com/discourse/mini_racer/releases) - [Changelog](https://github.com/rubyjs/mini_racer/blob/master/CHANGELOG) - [Commits](https://github.com/discourse/mini_racer/compare/v0.2.8...v0.2.9) Very safe change, adds support for JavaScript Symbol which used to cause segfaults.	2020-01-09 13:11:26 +11:00
dependabot-preview[bot]	f1cd599966	DEV: Bump rubocop from 0.78.0 to 0.79.0 (#8667) ... Bumps [rubocop](https://github.com/rubocop-hq/rubocop) from 0.78.0 to 0.79.0. - [Release notes](https://github.com/rubocop-hq/rubocop/releases) - [Changelog](https://github.com/rubocop-hq/rubocop/blob/master/CHANGELOG.md) - [Commits](https://github.com/rubocop-hq/rubocop/compare/v0.78.0...v0.79.0) Changes seem pretty safe, nothing should impact Discourse. Merging so we are on latest version.	2020-01-08 17:09:24 +11:00
dependabot-preview[bot]	5736b5808c	Build(deps): Bump rspec-mocks from 3.9.0 to 3.9.1 (#8644) ... Bumps [rspec-mocks](https://github.com/rspec/rspec-mocks) from 3.9.0 to 3.9.1. - [Release notes](https://github.com/rspec/rspec-mocks/releases) - [Changelog](https://github.com/rspec/rspec-mocks/blob/master/Changelog.md) - [Commits](https://github.com/rspec/rspec-mocks/compare/v3.9.0...v3.9.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-07 01:12:04 +01:00
dependabot-preview[bot]	4352bc2a78	Build(deps): Bump aws-partitions from 1.260.0 to 1.262.0 (#8666) ... Bumps [aws-partitions](https://github.com/aws/aws-sdk-ruby) from 1.260.0 to 1.262.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-partitions/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-07 00:38:29 +01:00
dependabot-preview[bot]	d6e08308e0	Build(deps): Bump aws-sdk-s3 from 1.59.1 to 1.60.1 (#8596) ... Bumps [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) from 1.59.1 to 1.60.1. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-s3/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/compare/v1.59.1...v1.60.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2020-01-07 00:30:14 +01:00
dependabot-preview[bot]	c2b83f4dfa	DEV: Bump rake-compiler from 1.0.8 to 1.1.0 (#8636) ... Bumps [rake-compiler](https://github.com/luislavena/rake-compiler) from 1.0.8 to 1.1.0. - [Release notes](https://github.com/luislavena/rake-compiler/releases) - [Changelog](https://github.com/rake-compiler/rake-compiler/blob/master/History.txt) - [Commits](https://github.com/luislavena/rake-compiler/compare/v1.0.8...v1.1.0) Ruby 2.7 support.	2020-01-06 17:12:28 +11:00
dependabot-preview[bot]	b789fa9a50	DEV: Bump rack-protection from 2.0.7 to 2.0.8.1 (#8648) ... Bumps [rack-protection](https://github.com/sinatra/sinatra) from 2.0.7 to 2.0.8.1. - [Release notes](https://github.com/sinatra/sinatra/releases) - [Changelog](https://github.com/sinatra/sinatra/blob/master/CHANGELOG.md) - [Commits](https://github.com/sinatra/sinatra/compare/v2.0.7...v2.0.8.1) Minor performance update and Ruby 2.7 deprecation removal.	2020-01-06 17:11:37 +11:00
dependabot-preview[bot]	01358e2b42	DEV: Bump pg from 1.2.0 to 1.2.1 (#8657) ... Bumps [pg](https://github.com/ged/ruby-pg) from 1.2.0 to 1.2.1. - [Release notes](https://github.com/ged/ruby-pg/releases) - [Changelog](https://github.com/ged/ruby-pg/blob/master/History.rdoc) - [Commits](https://github.com/ged/ruby-pg/compare/v1.2.0...v1.2.1) Very minor update, adds some functionality we do not use, specifically better support for the sequel orm.	2020-01-06 17:10:24 +11:00
Régis Hanol	ce512452b5	Revert "Revert "DEV: Bump public_suffix from 4.0.1 to 4.0.2 (#8631)"" ... This reverts commit f04f6cbf01.	2019-12-31 17:12:06 +01:00
Sam Saffron	f04f6cbf01	Revert "DEV: Bump public_suffix from 4.0.1 to 4.0.2 (#8631)" ... This reverts commit 09a6bb240e.	2019-12-31 14:07:55 +11:00
Sam Saffron	e32bf19cd3	DEV: update dependencies ... Quite a few have popped up due to 2.7 release, all gems being updated have non urgent fixes, but it makes sense to be on latest.	2019-12-31 12:20:26 +11:00
dependabot-preview[bot]	d048464b03	DEV: Bump rspec-core from 3.9.0 to 3.9.1 (#8637) ... Bumps [rspec-core](https://github.com/rspec/rspec-core) from 3.9.0 to 3.9.1. - [Release notes](https://github.com/rspec/rspec-core/releases) - [Changelog](https://github.com/rspec/rspec-core/blob/master/Changelog.md) - [Commits](https://github.com/rspec/rspec-core/compare/v3.9.0...v3.9.1) Test only dependency, low risk.	2019-12-31 11:49:21 +11:00
dependabot-preview[bot]	4ddc6b8b96	DEV: Bump tzinfo from 1.2.5 to 1.2.6 (#8635) ... Bumps [tzinfo](https://github.com/tzinfo/tzinfo) from 1.2.5 to 1.2.6. - [Release notes](https://github.com/tzinfo/tzinfo/releases) - [Changelog](https://github.com/tzinfo/tzinfo/blob/master/CHANGES.md) - [Commits](https://github.com/tzinfo/tzinfo/compare/v1.2.5...v1.2.6) Pretty safe update, deals with Ruby 2.7 and corrects a minor internal bug	2019-12-31 11:48:37 +11:00
dependabot-preview[bot]	09a6bb240e	DEV: Bump public_suffix from 4.0.1 to 4.0.2 (#8631) ... Bumps [public_suffix](https://github.com/weppos/publicsuffix-ruby) from 4.0.1 to 4.0.2. - [Release notes](https://github.com/weppos/publicsuffix-ruby/releases) - [Changelog](https://github.com/weppos/publicsuffix-ruby/blob/master/CHANGELOG.md) - [Commits](https://github.com/weppos/publicsuffix-ruby/compare/v4.0.1...4.0.2) Definition only update, has very little impact.	2019-12-31 11:47:14 +11:00
dependabot-preview[bot]	acabea4cfe	DEV: Bump rspec-support from 3.9.0 to 3.9.2 (#8628) ... Bumps [rspec-support](https://github.com/rspec/rspec-support) from 3.9.0 to 3.9.2. - [Release notes](https://github.com/rspec/rspec-support/releases) - [Changelog](https://github.com/rspec/rspec-support/blob/master/Changelog.md) - [Commits](https://github.com/rspec/rspec-support/compare/v3.9.0...v3.9.2) Minor test only update, also cleans up Ruby 2.7 support	2019-12-31 11:45:43 +11:00
dependabot-preview[bot]	420fd27e48	DEV: Bump pg from 1.1.4 to 1.2.0 (#8632) ... Bumps [pg](https://github.com/ged/ruby-pg) from 1.1.4 to 1.2.0. - [Release notes](https://github.com/ged/ruby-pg/releases) - [Changelog](https://github.com/ged/ruby-pg/blob/master/History.rdoc) - [Commits](https://github.com/ged/ruby-pg/compare/v1.1.4...v1.2.0) This is a big update to the PG gem, overall our codebase should support it fully. It also comes with some perf fixes which is nice!	2019-12-31 11:44:49 +11:00
dependabot-preview[bot]	dca99c0391	Build(deps): Bump cose from 0.9.0 to 0.10.0 (#8595) ... Bumps [cose](https://github.com/cedarcode/cose-ruby) from 0.9.0 to 0.10.0. - [Release notes](https://github.com/cedarcode/cose-ruby/releases) - [Changelog](https://github.com/cedarcode/cose-ruby/blob/master/CHANGELOG.md) - [Commits](https://github.com/cedarcode/cose-ruby/compare/v0.9.0...v0.10.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-30 16:10:34 +10:00
dependabot-preview[bot]	831d46f55f	DEV: Bump aws-partitions from 1.256.0 to 1.260.0 (#8617) ... Bumps [aws-partitions](https://github.com/aws/aws-sdk-ruby) from 1.256.0 to 1.260.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-partitions/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Contains a bunch of AWS gem updates that we do not use. My long term thinking here is that maybe the AWS dependency is just too heavy and we should consume the API directly to avoid this constant churn.	2019-12-30 17:09:07 +11:00
dependabot-preview[bot]	9178b36e64	Build(deps): Bump request_store from 1.4.1 to 1.5.0 (#8608) ... Bumps [request_store](https://github.com/steveklabnik/request_store) from 1.4.1 to 1.5.0. - [Release notes](https://github.com/steveklabnik/request_store/releases) - [Commits](https://github.com/steveklabnik/request_store/compare/v1.4.1...v1.5.0) request_store is a side dependency that is only used for lograge support, not expecting this to break anything.	2019-12-30 17:07:37 +11:00
dependabot-preview[bot]	bb9c54514f	DEV: Bump unicorn from 5.5.1 to 5.5.2 (#8602) ... Bumps [unicorn](https://bogomips.org/unicorn/) from 5.5.1 to 5.5.2. This contains a fix for: 024f7a8c8c Specifically its around operation when you use the ruby tainting feature (which will soon be removed) Update has no actual impact on Discourse.	2019-12-30 17:06:00 +11:00
dependabot-preview[bot]	640fa6d118	DEV: Bump excon from 0.71.0 to 0.71.1 (#8587) ... Bumps [excon](https://github.com/excon/excon) from 0.71.0 to 0.71.1. - [Release notes](https://github.com/excon/excon/releases) - [Changelog](https://github.com/excon/excon/blob/master/changelog.txt) - [Commits](https://github.com/excon/excon/compare/v0.71.0...v0.71.1) Minor performance update, the big change here is that internally excon starts using frozen strings.	2019-12-30 16:57:32 +11:00
Sam Saffron	be880d2ac1	DEV: update rubocop ... This is a minor update to rubocop, it is fully compatible with our current set of rules.	2019-12-30 16:54:47 +11:00
dependabot-preview[bot]	0234214533	DEV: Bump stackprof from 0.2.14 to 0.2.15 (#8584) ... Bumps [stackprof](https://github.com/tmm1/stackprof) from 0.2.14 to 0.2.15. - [Release notes](https://github.com/tmm1/stackprof/releases) - [Changelog](https://github.com/tmm1/stackprof/blob/master/CHANGELOG.md) - [Commits](https://github.com/tmm1/stackprof/compare/v0.2.14...v0.2.15) Very safe change only used for diagnostics.	2019-12-30 16:42:16 +11:00
dependabot-preview[bot]	2d3d7a8f86	DEV: Bump mini_sql from 0.2.2 to 0.2.3 (#8601) ... Bumps [mini_sql](https://discourse.org) from 0.2.2 to 0.2.3. Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Minor update was there mainly for JRuby support should not have any real impact on Discourse.	2019-12-30 16:41:37 +11:00
dependabot-preview[bot]	4989fec1be	DEV: Bump sidekiq from 6.0.3 to 6.0.4 (#8611) ... Bumps [sidekiq](https://github.com/mperham/sidekiq) from 6.0.3 to 6.0.4. - [Release notes](https://github.com/mperham/sidekiq/releases) - [Changelog](https://github.com/mperham/sidekiq/blob/master/Changes.md) - [Commits](https://github.com/mperham/sidekiq/compare/v6.0.3...v6.0.4) Minor update which seems very safe.	2019-12-30 16:36:23 +11:00
Rafael dos Santos Silva	b445e0e76a	DEV: Update Bundler (#8583) ... * DEV: Update Bundler Latest RubyGems 3.1.1 vendors bundler 2.1.0 *again*. And our base image build system even updates it to 2.1.1. After that it is unable to run a simple `bundle install` because of version mismatch. Updating bundler to the one that comes with our enforced Ruby version solves this. * DEV: Update bundler in CI too	2019-12-19 16:25:33 -03:00
Neil Lalonde	93c8b4fb58	Bump rack from 2.0.7 to 2.0.8	2019-12-19 12:22:48 -05:00
dependabot-preview[bot]	e0df0f479a	Bump aws-sdk-s3 from 1.59.0 to 1.59.1 (#8575) ... Bumps [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) from 1.59.0 to 1.59.1. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-s3/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/compare/v1.59.0...v1.59.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-18 12:11:43 -03:00
dependabot-preview[bot]	2cdaf05c37	Bump ruby-prof from 1.0.0 to 1.1.0 (#8546) ... Bumps [ruby-prof](https://github.com/ruby-prof/ruby-prof) from 1.0.0 to 1.1.0. - [Release notes](https://github.com/ruby-prof/ruby-prof/releases) - [Changelog](https://github.com/ruby-prof/ruby-prof/blob/master/CHANGES) - [Commits](https://github.com/ruby-prof/ruby-prof/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-18 12:10:09 -03:00
dependabot-preview[bot]	7b7926c486	Bump rake-compiler from 1.0.7 to 1.0.8 (#8559) ... Bumps [rake-compiler](https://github.com/luislavena/rake-compiler) from 1.0.7 to 1.0.8. - [Release notes](https://github.com/luislavena/rake-compiler/releases) - [Changelog](https://github.com/rake-compiler/rake-compiler/blob/master/History.txt) - [Commits](https://github.com/luislavena/rake-compiler/compare/v1.0.7...v1.0.8) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-18 11:56:16 -03:00
dependabot-preview[bot]	aaf159c48c	Bump aws-partitions from 1.255.0 to 1.256.0 (#8566) ... Bumps [aws-partitions](https://github.com/aws/aws-sdk-ruby) from 1.255.0 to 1.256.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-partitions/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-18 11:55:44 -03:00
dependabot-preview[bot]	caa7cc51f1	Build(deps): Bump thor from 1.0.0 to 1.0.1 (#8572) ... Bumps [thor](https://github.com/erikhuda/thor) from 1.0.0 to 1.0.1. - [Release notes](https://github.com/erikhuda/thor/releases) - [Changelog](https://github.com/erikhuda/thor/blob/master/CHANGELOG.md) - [Commits](https://github.com/erikhuda/thor/compare/v1.0.0...v1.0.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-18 11:55:18 -03:00
Martin Brennan	beb91e7eff	FIX: require: false for rotp gem (#8540) ... The ROTP gem is only used in a very small amount of places in the app, we don't need to globally require it. Also set the Addressable gem to not have a specific version range, as it has not been a problem yet. Some slight refactoring of UserSecondFactor here too to use SecondFactorManager to avoid code repetition	2019-12-17 10:33:51 +10:00
dependabot-preview[bot]	998bbdc40f	Bump fspath from 3.1.0 to 3.1.2 (#8564) ... Bumps [fspath](https://github.com/toy/fspath) from 3.1.0 to 3.1.2. - [Release notes](https://github.com/toy/fspath/releases) - [Commits](https://github.com/toy/fspath/compare/v3.1.0...v3.1.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-16 12:19:31 -08:00
dependabot-preview[bot]	5acecfcb91	Bump in_threads from 1.5.1 to 1.5.3 (#8556) ... Bumps [in_threads](https://github.com/toy/in_threads) from 1.5.1 to 1.5.3. - [Release notes](https://github.com/toy/in_threads/releases) - [Changelog](https://github.com/toy/in_threads/blob/master/CHANGELOG.markdown) - [Commits](https://github.com/toy/in_threads/compare/v1.5.1...v1.5.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-16 10:57:22 -08:00
dependabot-preview[bot]	82828d5145	Bump progress from 3.5.0 to 3.5.2 (#8560) ... Bumps [progress](https://github.com/toy/progress) from 3.5.0 to 3.5.2. - [Release notes](https://github.com/toy/progress/releases) - [Changelog](https://github.com/toy/progress/blob/master/CHANGELOG.markdown) - [Commits](https://github.com/toy/progress/compare/v3.5.0...v3.5.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-16 10:45:33 -08:00
dependabot-preview[bot]	aee3c6b96b	Bump json from 2.2.0 to 2.3.0 (#8563) ... Bumps [json](https://github.com/flori/json) from 2.2.0 to 2.3.0. - [Release notes](https://github.com/flori/json/releases) - [Changelog](https://github.com/flori/json/blob/master/CHANGES.md) - [Commits](https://github.com/flori/json/compare/v2.2.0...v2.3.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-16 10:35:08 -08:00
dependabot-preview[bot]	e328700ae5	Bump aws-sdk-core from 3.85.0 to 3.86.0 (#8558) ... Bumps [aws-sdk-core](https://github.com/aws/aws-sdk-ruby) from 3.85.0 to 3.86.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-core/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-16 10:09:38 -08:00
dependabot-preview[bot]	22f1aa0c58	Bump jquery-rails from 4.3.3 to 4.3.5 (#8557) ... Bumps [jquery-rails](https://github.com/rails/jquery-rails) from 4.3.3 to 4.3.5. - [Release notes](https://github.com/rails/jquery-rails/releases) - [Changelog](https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md) - [Commits](https://github.com/rails/jquery-rails/compare/v4.3.3...v4.3.5) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-16 09:44:56 -08:00
dependabot-preview[bot]	db82ed86c4	Bump thor from 0.20.3 to 1.0.0 (#8550)	2019-12-16 09:23:47 -08:00
dependabot-preview[bot]	6b3308d614	Bump excon from 0.70.0 to 0.71.0 (#8551) ... Bumps [excon](https://github.com/excon/excon) from 0.70.0 to 0.71.0. - [Release notes](https://github.com/excon/excon/releases) - [Changelog](https://github.com/excon/excon/blob/master/changelog.txt) - [Commits](https://github.com/excon/excon/compare/v0.70.0...v0.71.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-16 08:53:42 -08:00
OsamaSayegh	dc3c4bdd00	DEV: Bump Logster version to 2.5.1 ... This version has minor follow-up fixes and changes to the pattern grouping feature that was introduced yesterday. See Logster changelog for details: https://github.com/discourse/logster/blob/master/CHANGELOG.md	2019-12-13 09:51:19 +00:00
dependabot-preview[bot]	885d2bb87a	Bump logster from 2.4.2 to 2.5.0 (#8538) ... Bumps [logster](https://github.com/discourse/logster) from 2.4.2 to 2.5.0. - [Release notes](https://github.com/discourse/logster/releases) - [Changelog](https://github.com/discourse/logster/blob/master/CHANGELOG.md) - [Commits](https://github.com/discourse/logster/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> This new version of Logster has grouping patterns that can be added via the UI to group logs that match into a single row. More details at 24d6cc9742	2019-12-12 08:26:49 +03:00
Martin Brennan	e8ee847dd2	Merge branch 'master' of github.com:discourse/discourse	2019-12-12 14:33:09 +10:00
Martin Brennan	9c1e0b8bd2	bump rubocop-discourse to 1.0.2 for NoURIEscapeEncode cop	2019-12-12 14:30:27 +10:00
Martin Brennan	edbc356593	FIX: Replace deprecated URI.encode, URI.escape, URI.unescape and URI.unencode (#8528) ... The following methods have long been deprecated in ruby due to flaws in their implementation per http://blade.nagaokaut.ac.jp/cgi-bin/vframe.rb/ruby/ruby-core/29293?29179-31097: URI.escape URI.unescape URI.encode URI.unencode escape/encode are just aliases for one another. This PR uses the Addressable gem to replace these methods with its own encode, unencode, and encode_component methods where appropriate. I have put all references to Addressable::URI here into the UrlHelper to keep them corralled in one place to make changes to this implementation easier. Addressable is now also an explicit gem dependency.	2019-12-12 12:49:21 +10:00
Sam Saffron	b6acfb7847	DEV: upgrade redis-namespace gem ... New release has a few extra commands namespaced, nothing we use. Also added a comment about why this is explicitly required.	2019-12-12 13:36:08 +11:00
dependabot-preview[bot]	61ac0d47ee	DEV: Bump stackprof from 0.2.13 to 0.2.14 (#8531) ... Bumps [stackprof](https://github.com/tmm1/stackprof) from 0.2.13 to 0.2.14. - [Release notes](https://github.com/tmm1/stackprof/releases) - [Changelog](https://github.com/tmm1/stackprof/blob/master/CHANGELOG.md) - [Commits](https://github.com/tmm1/stackprof/compare/v0.2.13...v0.2.14) Minor upgrade to stackprof which is only used for diagnostics and not default required. Changes all look safe.	2019-12-12 13:29:00 +11:00
Krzysztof Kotlarek	746ba0d8fd	SECURITY: upgrade rack-mini-profiler to avoid possible XSS (#8537)	2019-12-12 13:15:40 +11:00
dependabot-preview[bot]	863d3f89de	Build(deps): Bump aws-sdk-s3 from 1.36.1 to 1.59.0 (#8502) ... * Build(deps): Bump aws-sdk-s3 from 1.36.1 to 1.59.0 Bumps [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) from 1.36.1 to 1.59.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-s3/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/compare/v1.36.1...v1.59.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Dependabot/bundler/aws sdk s3 1.59.0 (#8532)	2019-12-11 10:18:11 -08:00
Mark VanLandingham	06c6062ed2	DEV: Lock sassc gem at version 2.0.1 with note (#8523)	2019-12-11 06:22:39 -08:00
dependabot-preview[bot]	b90a592146	DEV: Bump aws-sdk-sns from 1.13.0 to 1.21.0 (#8490) ... Bumps [aws-sdk-sns](https://github.com/aws/aws-sdk-ruby) from 1.13.0 to 1.21.0. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-sns/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/compare/1.13.0...1.21.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-11 06:13:17 -08:00
Sam Saffron	1d16b34284	DEV: forgot to check in lockfile ... updates lock file to properly match the generated one.	2019-12-11 12:45:42 +11:00
dependabot-preview[bot]	508b4c1e5e	DEV: Bump css_parser from 1.7.0 to 1.7.1 (#8524) ... Bumps [css_parser](https://github.com/premailer/css_parser) from 1.7.0 to 1.7.1. - [Release notes](https://github.com/premailer/css_parser/releases) - [Changelog](https://github.com/premailer/css_parser/blob/master/CHANGELOG.md) - [Commits](https://github.com/premailer/css_parser/compare/v1.7.0...v1.7.1) This minor update force UTF-8, this should have not impact on us as we only trade in UTF-8 strings for CSS anyway.	2019-12-11 10:56:53 +11:00
dependabot-preview[bot]	83175c9bfb	DEV: Bump rspec-html-matchers from 0.9.1 to 0.9.2 (#8525) ... Bumps [rspec-html-matchers](https://github.com/kucaahbe/rspec-html-matchers) from 0.9.1 to 0.9.2. - [Release notes](https://github.com/kucaahbe/rspec-html-matchers/releases) - [Changelog](https://github.com/kucaahbe/rspec-html-matchers/blob/master/CHANGELOG.md) - [Commits](https://github.com/kucaahbe/rspec-html-matchers/compare/v0.9.1...v0.9.2) Low risk update, only impacts tests.	2019-12-11 10:55:25 +11:00
dependabot-preview[bot]	505b8b76bc	Build(deps): Bump webpush from 0.3.8 to 1.0.0 (#8511) ... Bumps [webpush](https://github.com/zaru/webpush) from 0.3.8 to 1.0.0. - [Release notes](https://github.com/zaru/webpush/releases) - [Changelog](https://github.com/zaru/webpush/blob/master/CHANGELOG.md) - [Commits](https://github.com/zaru/webpush/compare/v0.3.8...v1.0.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-10 12:56:52 -08:00
dependabot-preview[bot]	3309a2b564	Build(deps-dev): Bump webmock from 3.5.1 to 3.7.6 (#8512) ... Bumps [webmock](https://github.com/bblimke/webmock) from 3.5.1 to 3.7.6. - [Release notes](https://github.com/bblimke/webmock/releases) - [Changelog](https://github.com/bblimke/webmock/blob/master/CHANGELOG.md) - [Commits](https://github.com/bblimke/webmock/compare/v3.5.1...v3.7.6) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-10 10:38:03 -08:00
dependabot-preview[bot]	31c6a1528b	Build(deps-dev): Bump listen from 3.1.5 to 3.2.1 (#8498) ... Bumps [listen](https://github.com/guard/listen) from 3.1.5 to 3.2.1. - [Release notes](https://github.com/guard/listen/releases) - [Commits](https://github.com/guard/listen/compare/v3.1.5...v3.2.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-10 08:48:40 -08:00
dependabot-preview[bot]	287ba20f3b	Build(deps-dev): Bump parallel_tests from 2.29.2 to 2.30.0 (#8508) ... Bumps [parallel_tests](https://github.com/grosser/parallel_tests) from 2.29.2 to 2.30.0. - [Release notes](https://github.com/grosser/parallel_tests/releases) - [Commits](https://github.com/grosser/parallel_tests/compare/v2.29.2...v2.30.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-10 16:11:49 +00:00
Mark VanLandingham	148970ca9b	DEV: Revert parallel_tests bump (#8518) ... parallel_tests with this version uses `bin/rake`, which auto-loads plugins	2019-12-10 07:58:12 -08:00
dependabot-preview[bot]	2605adede0	Build(deps-dev): Bump parallel_tests from 2.29.2 to 2.30.0 (#8508) ... Bumps [parallel_tests](https://github.com/grosser/parallel_tests) from 2.29.2 to 2.30.0. - [Release notes](https://github.com/grosser/parallel_tests/releases) - [Commits](https://github.com/grosser/parallel_tests/compare/v2.29.2...v2.30.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-10 07:12:38 -08:00
dependabot-preview[bot]	da62f87694	Build(deps): Bump rqrcode from 0.10.1 to 1.1.2 (#8497) ... Bumps [rqrcode](https://github.com/whomwah/rqrcode) from 0.10.1 to 1.1.2. - [Release notes](https://github.com/whomwah/rqrcode/releases) - [Commits](https://github.com/whomwah/rqrcode/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-10 06:49:20 -08:00
dependabot-preview[bot]	ee1f77d301	Build(deps-dev): Bump uglifier from 4.1.20 to 4.2.0 (#8510) ... Bumps [uglifier](https://github.com/lautis/uglifier) from 4.1.20 to 4.2.0. - [Release notes](https://github.com/lautis/uglifier/releases) - [Changelog](https://github.com/lautis/uglifier/blob/master/CHANGELOG.md) - [Commits](https://github.com/lautis/uglifier/compare/v4.1.20...v4.2.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-10 06:28:15 -08:00
dependabot-preview[bot]	33ae9679d8	DEV: Bump excon from 0.64.0 to 0.70.0 (#8503) ... Bumps [excon](https://github.com/excon/excon) from 0.64.0 to 0.70.0. - [Release notes](https://github.com/excon/excon/releases) - [Changelog](https://github.com/excon/excon/blob/master/changelog.txt) - [Commits](https://github.com/excon/excon/compare/v0.64.0...v0.70.0) Most changes are minor and update should be pretty safe.	2019-12-10 12:34:00 +11:00
Sam Saffron	3e0454c97b	DEV: add a note about sprockets being held back ... We want to upgrade to version 4, but it does not work atm.	2019-12-10 12:31:16 +11:00
dependabot-preview[bot]	84c251c778	DEV: Bump sidekiq from 5.2.7 to 6.0.3 (#8499) ... Bumps [sidekiq](https://github.com/mperham/sidekiq) from 5.2.7 to 6.0.3. - [Release notes](https://github.com/mperham/sidekiq/releases) - [Changelog](https://github.com/mperham/sidekiq/blob/master/Changes.md) - [Commits](https://github.com/mperham/sidekiq/compare/v5.2.7...v6.0.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> The big thing for us with this update is that it makes sidekiq a bit faster.	2019-12-10 12:05:02 +11:00
dependabot-preview[bot]	c923c49964	DEV: Bump sassc-rails from 2.1.1 to 2.1.2 (#8501) ... Bumps [sassc-rails](https://github.com/sass/sassc-rails) from 2.1.1 to 2.1.2. - [Release notes](https://github.com/sass/sassc-rails/releases) - [Commits](https://github.com/sass/sassc-rails/compare/v2.1.1...v2.1.2) Minor fixes in the gem	2019-12-10 11:50:34 +11:00
Sam Saffron	0c52537f10	DEV: update rubocop to version 0.77 ... We like to stay as close as possible to latest with rubocop cause the cops get better. This update required some code changes, specifically the default is to avoid explicit returns where implicit is done Also this renames a few rules	2019-12-10 11:48:39 +11:00
dependabot-preview[bot]	ee9afb87f2	DEV: Bump mock_redis from 0.19.0 to 0.22.0 (#8504) ... Bumps [mock_redis](https://github.com/sds/mock_redis) from 0.19.0 to 0.22.0. - [Release notes](https://github.com/sds/mock_redis/releases) - [Changelog](https://github.com/sds/mock_redis/blob/master/CHANGELOG.md) - [Commits](https://github.com/sds/mock_redis/compare/v0.19.0...v0.22.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Mock redis update adds better parity for redis mock, we use it during tests.	2019-12-10 11:36:36 +11:00
Mark VanLandingham	6740e08caa	DEV: Revert 3 dependabot suggestions (#8506)	2019-12-09 14:40:54 -08:00
Mark VanLandingham	642c17a4b2	DEV: revert webpush version bump (#8505)	2019-12-09 13:53:25 -08:00
dependabot-preview[bot]	413a49fe06	Build(deps-dev): Bump rspec-html-matchers from 0.9.1 to 0.9.2 (#8494) ... Bumps [rspec-html-matchers](https://github.com/kucaahbe/rspec-html-matchers) from 0.9.1 to 0.9.2. - [Release notes](https://github.com/kucaahbe/rspec-html-matchers/releases) - [Changelog](https://github.com/kucaahbe/rspec-html-matchers/blob/master/CHANGELOG.md) - [Commits](https://github.com/kucaahbe/rspec-html-matchers/compare/v0.9.1...v0.9.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-09 12:22:55 -08:00
dependabot-preview[bot]	866b634f22	Build(deps): Bump webpush from 0.3.8 to 1.0.0 (#8491) ... Bumps [webpush](https://github.com/zaru/webpush) from 0.3.8 to 1.0.0. - [Release notes](https://github.com/zaru/webpush/releases) - [Changelog](https://github.com/zaru/webpush/blob/master/CHANGELOG.md) - [Commits](https://github.com/zaru/webpush/compare/v0.3.8...v1.0.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-09 12:21:49 -08:00
dependabot-preview[bot]	6dd1d63671	Build(deps): Bump sassc from 2.0.1 to 2.2.1 (#8493) ... Bumps [sassc](https://github.com/sass/sassc-ruby) from 2.0.1 to 2.2.1. - [Release notes](https://github.com/sass/sassc-ruby/releases) - [Changelog](https://github.com/sass/sassc-ruby/blob/master/CHANGELOG.md) - [Commits](https://github.com/sass/sassc-ruby/compare/v2.0.1...v2.2.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-09 12:19:39 -08:00
dependabot-preview[bot]	bf847e680a	Build(deps-dev): Bump uglifier from 4.1.20 to 4.2.0 (#8489) ... Bumps [uglifier](https://github.com/lautis/uglifier) from 4.1.20 to 4.2.0. - [Release notes](https://github.com/lautis/uglifier/releases) - [Changelog](https://github.com/lautis/uglifier/blob/master/CHANGELOG.md) - [Commits](https://github.com/lautis/uglifier/compare/v4.1.20...v4.2.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-09 12:16:03 -08:00
dependabot-preview[bot]	16de46f8d4	Build(deps): Bump omniauth-google-oauth2 from 0.7.0 to 0.8.0 (#8488) ... Bumps [omniauth-google-oauth2](https://github.com/zquestz/omniauth-google-oauth2) from 0.7.0 to 0.8.0. - [Release notes](https://github.com/zquestz/omniauth-google-oauth2/releases) - [Changelog](https://github.com/zquestz/omniauth-google-oauth2/blob/master/CHANGELOG.md) - [Commits](https://github.com/zquestz/omniauth-google-oauth2/compare/v0.7.0...v0.8.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-09 12:13:07 -08:00
dependabot-preview[bot]	9be3945c91	Build(deps-dev): Bump rspec from 3.8.0 to 3.9.0 (#8487) ... Bumps [rspec](https://github.com/rspec/rspec) from 3.8.0 to 3.9.0. - [Release notes](https://github.com/rspec/rspec/releases) - [Commits](https://github.com/rspec/rspec/compare/v3.8.0...v3.9.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-09 11:34:30 -08:00
dependabot-preview[bot]	3092cdc2bd	Build(deps-dev): Bump simplecov from 0.16.1 to 0.17.1 (#8486) ... Bumps [simplecov](https://github.com/colszowka/simplecov) from 0.16.1 to 0.17.1. - [Release notes](https://github.com/colszowka/simplecov/releases) - [Changelog](https://github.com/colszowka/simplecov/blob/master/CHANGELOG.md) - [Commits](https://github.com/colszowka/simplecov/compare/v0.16.1...v0.17.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-09 11:32:25 -08:00
dependabot-preview[bot]	41f4159cc7	Build(deps): Bump multi_json from 1.13.1 to 1.14.1 (#8485) ... Bumps [multi_json](https://github.com/intridea/multi_json) from 1.13.1 to 1.14.1. - [Release notes](https://github.com/intridea/multi_json/releases) - [Changelog](https://github.com/intridea/multi_json/blob/master/CHANGELOG.md) - [Commits](https://github.com/intridea/multi_json/compare/v1.13.1...v1.14.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-09 11:30:30 -08:00
dependabot-preview[bot]	276fb7f46f	DEV: Bump parallel_tests from 2.28.0 to 2.29.2 (#8484) ... Bumps [parallel_tests](https://github.com/grosser/parallel_tests) from 2.28.0 to 2.29.2. - [Release notes](https://github.com/grosser/parallel_tests/releases) - [Commits](https://github.com/grosser/parallel_tests/compare/v2.28.0...v2.29.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-09 10:46:01 +00:00
dependabot-preview[bot]	510047c5df	Build(deps): Bump ruby-openid from 2.7.0 to 2.9.2 (#8476) ... Bumps [ruby-openid](https://github.com/openid/ruby-openid) from 2.7.0 to 2.9.2. - [Release notes](https://github.com/openid/ruby-openid/releases) - [Changelog](https://github.com/openid/ruby-openid/blob/master/CHANGELOG.md) - [Commits](https://github.com/openid/ruby-openid/compare/v2.7.0...v2.9.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>	2019-12-09 10:40:50 +00:00
Sam Saffron	ed6d3b493c	DEV: update dependencies ... This updates some low risk dependencies. Mostly minor changes. Public suffix now requires Ruby 2.3 and up which is not a problem for us.	2019-12-09 19:20:45 +11:00
dependabot-preview[bot]	9b30922109	Build(deps): Bump rotp from 3.3.1 to 5.1.0 (#8477) ... * Build(deps): Bump rotp from 3.3.1 to 5.1.0 Bumps [rotp](https://github.com/mdp/rotp) from 3.3.1 to 5.1.0. - [Release notes](https://github.com/mdp/rotp/releases) - [Changelog](https://github.com/mdp/rotp/blob/master/CHANGELOG.md) - [Commits](https://github.com/mdp/rotp/compare/v3.3.1...v5.1.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> * Fix breaking ROTP changes	2019-12-09 14:29:48 +10:00
dependabot-preview[bot]	fca727fd92	DEV: Bump tilt from 2.0.9 to 2.0.10 (#8479) ... Minor update, removes a Ruby 2.7 deprecation.	2019-12-09 14:22:55 +11:00
dependabot-preview[bot]	c853051edb	DEV: Bump mustache from 1.1.0 to 1.1.1 (#8478) ... Minor update, removes one warning which we have not seen yet.	2019-12-09 14:21:55 +11:00
dependabot-preview[bot]	7aa3233bcb	DEV: Bump puma from 3.12.2 to 4.3.1 (#8475) ... The downside here is that we are now going to require nio4r which requires some native code. It is reasonably low risk though cause puma is very well tested. We use puma mostly in test environments, not in production.	2019-12-09 12:51:41 +11:00
dependabot-preview[bot]	d198e824ce	DEV: Bump fastimage from 2.1.5 to 2.1.7 ... This library is used to detect size of images, upgrading a minor version here should be low risk, we have integration tests to detect issues.	2019-12-09 12:49:53 +11:00
Sam Saffron	8a6421565e	DEV: upgrade low risk gems ... This updates a bunch of gems that have very low risk of breaking anything or are mostly used in dev. Overall our goal is to be on latest gems with latest bug fixes so this is us working in that direction.	2019-12-06 17:12:43 +11:00
dependabot[bot]	cc92aa9e71	SECURITY: Bump puma from 3.12.1 to 3.12.2 (#8464) ... Bumps [puma](https://github.com/puma/puma) from 3.12.1 to 3.12.2. - [Release notes](https://github.com/puma/puma/releases) - [Changelog](https://github.com/puma/puma/blob/master/History.md) - [Commits](https://github.com/puma/puma/compare/v3.12.1...v3.12.2) Signed-off-by: dependabot[bot] <support@github.com>	2019-12-06 14:09:29 +11:00
Sam Saffron	a06fccae1b	DEV: update dependencies and add notes about exceptions ... Previously it was unclear why certain gems are being held back cause Gemfile had no comment explaining it. I tried to add some explanation from memory and remove some exceptions that seemed to be superfluous. This upgrades shoulda to latest, it appears to work once a couple of assertions are removed Also update http accept language used to auto detect language from http header this is tested Zeitwerk small update seems fine	2019-12-06 13:00:28 +11:00
Arpit Jalan	cab9c7c77e	Bump onebox version. ... - FIX: use dedicated Vimeo onebox for all video types	2019-11-27 16:22:25 +05:30
Arpit Jalan	7543db086a	Bump onebox version. ... - FIX: Amazon video oneboxes were not working.	2019-11-20 14:47:59 +05:30
David Taylor	eaf6096890	DEV: Use rubocop-discourse gem to add custom chdir cop ... Followup to b27e009655	2019-11-18 15:39:41 +00:00
Gerhard Schlager	c04369ed8f	DEV: Revert to Bundler 1.17 ... Follow-up to a2d6169a5e	2019-11-11 15:37:13 +01:00