Alan Guo Xiang Tan
75446832b2
SECURITY: Update URI gem to 0.12.1 to address CVE-2023-28755 ( #20907 )
...
See https://www.ruby-lang.org/en/news/2023/03/28/redos-in-uri-cve-2023-28755/
2023-03-31 07:51:55 +08:00
Blake Erickson
92ffbcaece
SECURITY: Bump Rails to v7.0.4.3 ( #20675 )
2023-03-16 16:25:48 -06:00
Rafael dos Santos Silva
107a4da71b
Backport Nokogiri to stable for Ruby 3.2 ( #20417 )
...
* Build(deps): Bump nokogiri from 1.13.10 to 1.14.0 (#19856 )
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri ) from 1.13.10 to 1.14.0.
- [Release notes](https://github.com/sparklemotion/nokogiri/releases )
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md )
- [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.13.10...v1.14.0 )
---
updated-dependencies:
- dependency-name: nokogiri
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Build(deps): Bump nokogiri from 1.14.0 to 1.14.1 (#20079 )
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri ) from 1.14.0 to 1.14.1.
- [Release notes](https://github.com/sparklemotion/nokogiri/releases )
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md )
- [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.14.0...v1.14.1 )
---
updated-dependencies:
- dependency-name: nokogiri
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Build(deps): Bump nokogiri from 1.14.1 to 1.14.2 (#20272 )
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri ) from 1.14.1 to 1.14.2.
- [Release notes](https://github.com/sparklemotion/nokogiri/releases )
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md )
- [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.14.1...v1.14.2 )
---
updated-dependencies:
- dependency-name: nokogiri
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---------
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-22 13:13:07 -03:00
Arpit Jalan
29805b32ef
DEV: Move back to web-push gem ( #19849 ) ( #20091 )
...
Our fork was needed for OpenSSL 3 and Ruby 2.X compatibility.
The OpenSSL 3 part was merged into the gem for version 3.
Discourse dropped support for Ruby 2.X.
That means we don't need our fork anymore.
Co-authored-by: Rafael dos Santos Silva <xfalcox@gmail.com>
2023-01-31 14:54:04 +05:30
David Taylor
5e28c1e883
SECURITY: Bump Rails to v7.0.4.1 (stable) ( #19957 )
2023-01-23 15:39:24 -05:00
dependabot[bot]
3ee0a49254
Build(deps): Bump pry from 0.14.1 to 0.14.2 ( #19807 )
...
Bumps [pry](https://github.com/pry/pry ) from 0.14.1 to 0.14.2.
- [Release notes](https://github.com/pry/pry/releases )
- [Changelog](https://github.com/pry/pry/blob/master/CHANGELOG.md )
- [Commits](https://github.com/pry/pry/compare/v0.14.1...v0.14.2 )
---
updated-dependencies:
- dependency-name: pry
dependency-type: indirect
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-11 06:18:26 +08:00
dependabot[bot]
c76f15a0da
Build(deps-dev): Bump listen from 3.7.1 to 3.8.0 ( #19808 )
...
Bumps [listen](https://github.com/guard/listen ) from 3.7.1 to 3.8.0.
- [Release notes](https://github.com/guard/listen/releases )
- [Commits](https://github.com/guard/listen/compare/v3.7.1...v3.8.0 )
---
updated-dependencies:
- dependency-name: listen
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-11 06:18:10 +08:00
dependabot[bot]
edbaa7cace
Build(deps): Bump rubocop from 1.42.0 to 1.43.0 ( #19818 )
...
Bumps [rubocop](https://github.com/rubocop/rubocop ) from 1.42.0 to 1.43.0.
- [Release notes](https://github.com/rubocop/rubocop/releases )
- [Changelog](https://github.com/rubocop/rubocop/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rubocop/rubocop/compare/v1.42.0...v1.43.0 )
---
updated-dependencies:
- dependency-name: rubocop
dependency-type: indirect
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-11 06:15:32 +08:00
dependabot[bot]
72318a30ec
Build(deps): Bump rspec-mocks from 3.12.1 to 3.12.2 ( #19784 )
...
Bumps [rspec-mocks](https://github.com/rspec/rspec-mocks ) from 3.12.1 to 3.12.2.
- [Release notes](https://github.com/rspec/rspec-mocks/releases )
- [Changelog](https://github.com/rspec/rspec-mocks/blob/main/Changelog.md )
- [Commits](https://github.com/rspec/rspec-mocks/compare/v3.12.1...v3.12.2 )
---
updated-dependencies:
- dependency-name: rspec-mocks
dependency-type: indirect
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-09 06:55:04 +08:00
dependabot[bot]
9a6338c6cb
Build(deps-dev): Bump rubocop-discourse from 3.0.2 to 3.0.3 ( #19785 )
...
Bumps [rubocop-discourse](https://github.com/discourse/rubocop-discourse ) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/discourse/rubocop-discourse/releases )
- [Commits](https://github.com/discourse/rubocop-discourse/compare/v3.0.2...v3.0.3 )
---
updated-dependencies:
- dependency-name: rubocop-discourse
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-09 06:54:51 +08:00
dependabot[bot]
d82c9f28a5
Build(deps): Bump rspec-expectations from 3.12.1 to 3.12.2 ( #19783 )
...
Bumps [rspec-expectations](https://github.com/rspec/rspec-expectations ) from 3.12.1 to 3.12.2.
- [Release notes](https://github.com/rspec/rspec-expectations/releases )
- [Changelog](https://github.com/rspec/rspec-expectations/blob/main/Changelog.md )
- [Commits](https://github.com/rspec/rspec-expectations/compare/v3.12.1...v3.12.2 )
---
updated-dependencies:
- dependency-name: rspec-expectations
dependency-type: indirect
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-08 23:21:50 +01:00
David Taylor
93e2dad656
DEV: Introduce syntax_tree code formatter ( #19775 )
...
This commit introduces the necessary gems and config, but adds all our ruby code directories to the `--ignore-files` list.
Future commits will apply syntax_tree to parts of the codebase, removing the ignore patterns as we go
2023-01-07 11:11:08 +00:00
David Taylor
5ce5ff053e
FIX: Bump messagebus to v4.3.1 ( #19771 )
...
Includes "FIX: Ensure non-long-polling requests are always spaced out": 233b248c96
2023-01-06 14:31:10 +00:00
dependabot[bot]
fb2c0ed548
Build(deps): Bump excon from 0.95.0 to 0.96.0 ( #19721 )
...
Bumps [excon](https://github.com/excon/excon ) from 0.95.0 to 0.96.0.
- [Release notes](https://github.com/excon/excon/releases )
- [Changelog](https://github.com/excon/excon/blob/master/changelog.txt )
- [Commits](https://github.com/excon/excon/compare/v0.95.0...v0.96.0 )
---
updated-dependencies:
- dependency-name: excon
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-04 22:38:22 +01:00
dependabot[bot]
f6c683e58c
Build(deps): Bump unicode-display_width from 2.4.0 to 2.4.2 ( #19720 )
...
Bumps [unicode-display_width](https://github.com/janlelis/unicode-display_width ) from 2.4.0 to 2.4.2.
- [Release notes](https://github.com/janlelis/unicode-display_width/releases )
- [Changelog](https://github.com/janlelis/unicode-display_width/blob/main/CHANGELOG.md )
- [Commits](https://github.com/janlelis/unicode-display_width/compare/v2.4.0...v2.4.2 )
---
updated-dependencies:
- dependency-name: unicode-display_width
dependency-type: indirect
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-04 22:37:48 +01:00
dependabot[bot]
5c39e4b1c0
Build(deps-dev): Bump simplecov from 0.21.2 to 0.22.0 ( #19626 )
...
Bumps [simplecov](https://github.com/simplecov-ruby/simplecov ) from 0.21.2 to 0.22.0.
- [Release notes](https://github.com/simplecov-ruby/simplecov/releases )
- [Changelog](https://github.com/simplecov-ruby/simplecov/blob/main/CHANGELOG.md )
- [Commits](https://github.com/simplecov-ruby/simplecov/compare/v0.21.2...v0.22.0 )
---
updated-dependencies:
- dependency-name: simplecov
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-04 19:47:12 +01:00
dependabot[bot]
696ec39327
Build(deps): Bump racc from 1.6.1 to 1.6.2 ( #19625 )
...
Bumps [racc](https://github.com/tenderlove/racc ) from 1.6.1 to 1.6.2.
- [Release notes](https://github.com/tenderlove/racc/releases )
- [Changelog](https://github.com/ruby/racc/blob/master/ChangeLog )
- [Commits](https://github.com/tenderlove/racc/compare/v1.6.1...v1.6.2 )
---
updated-dependencies:
- dependency-name: racc
dependency-type: indirect
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-04 17:16:39 +01:00
dependabot[bot]
6e0d4b2c1c
Build(deps): Bump unicode-display_width from 2.3.0 to 2.4.0 ( #19700 )
...
Bumps [unicode-display_width](https://github.com/janlelis/unicode-display_width ) from 2.3.0 to 2.4.0.
- [Release notes](https://github.com/janlelis/unicode-display_width/releases )
- [Changelog](https://github.com/janlelis/unicode-display_width/blob/main/CHANGELOG.md )
- [Commits](https://github.com/janlelis/unicode-display_width/compare/v2.3.0...v2.4.0 )
---
updated-dependencies:
- dependency-name: unicode-display_width
dependency-type: indirect
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-04 09:07:41 +08:00
dependabot[bot]
fdc64c4555
Build(deps): Bump parser from 3.1.3.0 to 3.2.0.0 ( #19699 )
...
Bumps [parser](https://github.com/whitequark/parser ) from 3.1.3.0 to 3.2.0.0.
- [Release notes](https://github.com/whitequark/parser/releases )
- [Changelog](https://github.com/whitequark/parser/blob/master/CHANGELOG.md )
- [Commits](https://github.com/whitequark/parser/compare/v3.1.3.0...v3.2.0.0 )
---
updated-dependencies:
- dependency-name: parser
dependency-type: indirect
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-04 09:07:13 +08:00
dependabot[bot]
65ba9e3f60
Build(deps-dev): Bump bullet from 7.0.5 to 7.0.7 ( #19698 )
...
Bumps [bullet](https://github.com/flyerhzm/bullet ) from 7.0.5 to 7.0.7.
- [Release notes](https://github.com/flyerhzm/bullet/releases )
- [Changelog](https://github.com/flyerhzm/bullet/blob/main/CHANGELOG.md )
- [Commits](https://github.com/flyerhzm/bullet/compare/7.0.5...7.0.7 )
---
updated-dependencies:
- dependency-name: bullet
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-04 09:06:51 +08:00
David Taylor
431b129d8b
DEV: Update bundler to 2.4.1 ( #19662 )
2023-01-03 10:01:36 +08:00
dependabot[bot]
523f86d422
Build(deps): Bump puma from 6.0.1 to 6.0.2 ( #19679 )
...
Bumps [puma](https://github.com/puma/puma ) from 6.0.1 to 6.0.2.
- [Release notes](https://github.com/puma/puma/releases )
- [Changelog](https://github.com/puma/puma/blob/master/History.md )
- [Commits](https://github.com/puma/puma/compare/v6.0.1...v6.0.2 )
---
updated-dependencies:
- dependency-name: puma
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-03 10:01:00 +08:00
dependabot[bot]
e82689c1bf
Build(deps): Bump mini_portile2 from 2.8.0 to 2.8.1 ( #19624 )
...
Bumps [mini_portile2](https://github.com/flavorjones/mini_portile ) from 2.8.0 to 2.8.1.
- [Release notes](https://github.com/flavorjones/mini_portile/releases )
- [Changelog](https://github.com/flavorjones/mini_portile/blob/main/CHANGELOG.md )
- [Commits](https://github.com/flavorjones/mini_portile/compare/v2.8.0...v2.8.1 )
---
updated-dependencies:
- dependency-name: mini_portile2
dependency-type: indirect
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-02 14:25:01 +01:00
dependabot[bot]
129e1429a2
Build(deps): Bump rack from 2.2.4 to 2.2.5 ( #19628 )
...
Bumps [rack](https://github.com/rack/rack ) from 2.2.4 to 2.2.5.
- [Release notes](https://github.com/rack/rack/releases )
- [Changelog](https://github.com/rack/rack/blob/main/CHANGELOG.md )
- [Commits](https://github.com/rack/rack/compare/2.2.4...v2.2.5 )
---
updated-dependencies:
- dependency-name: rack
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-02 14:24:04 +01:00
dependabot[bot]
a032f45421
Build(deps): Bump css_parser from 1.12.0 to 1.13.0 ( #19668 )
...
Bumps [css_parser](https://github.com/premailer/css_parser ) from 1.12.0 to 1.13.0.
- [Release notes](https://github.com/premailer/css_parser/releases )
- [Changelog](https://github.com/premailer/css_parser/blob/master/CHANGELOG.md )
- [Commits](https://github.com/premailer/css_parser/compare/v1.12.0...v1.13.0 )
---
updated-dependencies:
- dependency-name: css_parser
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-02 13:20:11 +01:00
dependabot[bot]
8ed525f9ce
Build(deps): Bump highline from 2.0.3 to 2.1.0 ( #19669 )
...
Bumps [highline](https://github.com/JEG2/highline ) from 2.0.3 to 2.1.0.
- [Release notes](https://github.com/JEG2/highline/releases )
- [Changelog](https://github.com/JEG2/highline/blob/master/Changelog.md )
- [Commits](https://github.com/JEG2/highline/commits )
---
updated-dependencies:
- dependency-name: highline
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-02 13:20:02 +01:00
dependabot[bot]
94b9cc8de3
Build(deps): Bump rubocop from 1.41.1 to 1.42.0 ( #19670 )
...
Bumps [rubocop](https://github.com/rubocop/rubocop ) from 1.41.1 to 1.42.0.
- [Release notes](https://github.com/rubocop/rubocop/releases )
- [Changelog](https://github.com/rubocop/rubocop/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rubocop/rubocop/compare/v1.41.1...v1.42.0 )
---
updated-dependencies:
- dependency-name: rubocop
dependency-type: indirect
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-02 13:19:54 +01:00
dependabot[bot]
eb02ff6447
Build(deps-dev): Bump bullet from 7.0.4 to 7.0.5 ( #19671 )
...
Bumps [bullet](https://github.com/flyerhzm/bullet ) from 7.0.4 to 7.0.5.
- [Release notes](https://github.com/flyerhzm/bullet/releases )
- [Changelog](https://github.com/flyerhzm/bullet/blob/main/CHANGELOG.md )
- [Commits](https://github.com/flyerhzm/bullet/compare/7.0.4...7.0.5 )
---
updated-dependencies:
- dependency-name: bullet
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-02 13:19:45 +01:00
dependabot[bot]
567bca8d23
Build(deps-dev): Bump minitest from 5.16.3 to 5.17.0 ( #19673 )
...
Bumps [minitest](https://github.com/seattlerb/minitest ) from 5.16.3 to 5.17.0.
- [Release notes](https://github.com/seattlerb/minitest/releases )
- [Changelog](https://github.com/minitest/minitest/blob/master/History.rdoc )
- [Commits](https://github.com/seattlerb/minitest/compare/v5.16.3...v5.17.0 )
---
updated-dependencies:
- dependency-name: minitest
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-02 13:19:26 +01:00
dependabot[bot]
63debd6d33
Build(deps): Bump rubocop-ast from 1.24.0 to 1.24.1 ( #19656 )
...
Bumps [rubocop-ast](https://github.com/rubocop/rubocop-ast ) from 1.24.0 to 1.24.1.
- [Release notes](https://github.com/rubocop/rubocop-ast/releases )
- [Changelog](https://github.com/rubocop/rubocop-ast/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rubocop/rubocop-ast/compare/v1.24.0...v1.24.1 )
---
updated-dependencies:
- dependency-name: rubocop-ast
dependency-type: indirect
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-30 06:51:10 +08:00
dependabot[bot]
f7cfffa043
Build(deps-dev): Bump ruby-prof from 1.4.4 to 1.4.5 ( #19645 )
...
Bumps [ruby-prof](https://github.com/ruby-prof/ruby-prof ) from 1.4.4 to 1.4.5.
- [Release notes](https://github.com/ruby-prof/ruby-prof/releases )
- [Changelog](https://github.com/ruby-prof/ruby-prof/blob/master/CHANGES )
- [Commits](https://github.com/ruby-prof/ruby-prof/compare/1.4.4...1.4.5 )
---
updated-dependencies:
- dependency-name: ruby-prof
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-29 09:49:41 +08:00
dependabot[bot]
295289aeb3
Build(deps): Bump web-push from 9b1ab76
to 369df8f
( #19635 )
...
Bumps [web-push](https://github.com/xfalcox/web-push ) from `9b1ab76` to `369df8f`.
- [Release notes](https://github.com/xfalcox/web-push/releases )
- [Commits](9b1ab768d1...369df8f475
)
---
updated-dependencies:
- dependency-name: web-push
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-28 13:01:23 +00:00
Rafael dos Santos Silva
7b53973bd8
DEV: Use WebPush fork for OpenSSL 3 compat ( #19627 )
...
* DEV: Use WebPush fork for OpenSSL 3 compat
* add some context on gemfile changes
2022-12-27 15:28:13 -03:00
Rafael dos Santos Silva
e430f22936
FIX: Ensure we have a patched version of CGI gem ( #19588 )
...
* FIX: Ensure we have a patched version of CGI gem
Per https://github.com/ruby/cgi/pull/29 the current shipped version of
the CGI gem doesn't allow for leading dots in domain names, which breaks
setting cookies like `.example.com`.
* Update Gemfile
Co-authored-by: Jarek Radosz <jradosz@gmail.com>
Co-authored-by: Jarek Radosz <jradosz@gmail.com>
2022-12-22 19:52:20 -03:00
dependabot[bot]
6ea6b385e0
Build(deps): Bump rubocop from 1.41.0 to 1.41.1 ( #19590 )
...
Bumps [rubocop](https://github.com/rubocop/rubocop ) from 1.41.0 to 1.41.1.
- [Release notes](https://github.com/rubocop/rubocop/releases )
- [Changelog](https://github.com/rubocop/rubocop/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rubocop/rubocop/compare/v1.41.0...v1.41.1 )
---
updated-dependencies:
- dependency-name: rubocop
dependency-type: indirect
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-22 22:33:57 +01:00
Rafael dos Santos Silva
7c5744a4cb
DEV: Ruby 3.1 compat ( #19543 )
...
* DEV: Ruby 3.1 compat
* DEV: Add webrick to test/dev
* DEV: Review ruby2_keywords license
* move ruby2_keywords to ignored
* move openssl to ignored
2022-12-21 01:20:43 -03:00
dependabot[bot]
552edc8a5b
Build(deps): Bump puma from 6.0.0 to 6.0.1 ( #19537 )
...
Bumps [puma](https://github.com/puma/puma ) from 6.0.0 to 6.0.1.
- [Release notes](https://github.com/puma/puma/releases )
- [Changelog](https://github.com/puma/puma/blob/master/History.md )
- [Commits](https://github.com/puma/puma/compare/v6.0.0...v6.0.1 )
---
updated-dependencies:
- dependency-name: puma
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-21 05:27:12 +08:00
dependabot[bot]
59d964e391
Build(deps): Bump rubocop from 1.40.0 to 1.41.0 ( #19536 )
...
Bumps [rubocop](https://github.com/rubocop/rubocop ) from 1.40.0 to 1.41.0.
- [Release notes](https://github.com/rubocop/rubocop/releases )
- [Changelog](https://github.com/rubocop/rubocop/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rubocop/rubocop/compare/v1.40.0...v1.41.0 )
---
updated-dependencies:
- dependency-name: rubocop
dependency-type: indirect
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-21 05:26:59 +08:00
Rafael dos Santos Silva
318ebdf7e0
DEV: Bump rubocop-discourse from 3.0 to 3.0.1 ( #19534 )
2022-12-20 13:57:54 -03:00
dependabot[bot]
e30c5f80d5
Build(deps-dev): Bump ruby-prof from 1.4.3 to 1.4.4 ( #19522 )
...
Bumps [ruby-prof](https://github.com/ruby-prof/ruby-prof ) from 1.4.3 to 1.4.4.
- [Release notes](https://github.com/ruby-prof/ruby-prof/releases )
- [Changelog](https://github.com/ruby-prof/ruby-prof/blob/master/CHANGES )
- [Commits](https://github.com/ruby-prof/ruby-prof/compare/1.4.3...1.4.4 )
---
updated-dependencies:
- dependency-name: ruby-prof
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-20 00:35:01 +01:00
dependabot[bot]
43a8ca00b9
Build(deps): Bump net-http from 0.2.2 to 0.3.2 ( #19518 )
...
Bumps [net-http](https://github.com/ruby/net-http ) from 0.2.2 to 0.3.2.
- [Release notes](https://github.com/ruby/net-http/releases )
- [Commits](https://github.com/ruby/net-http/compare/v0.2.2...v0.3.2 )
---
updated-dependencies:
- dependency-name: net-http
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
---
Update spec stubs
To account for changes in 65aed40f35
---
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: David Taylor <david@taylorhq.com>
2022-12-19 15:05:18 +00:00
dependabot[bot]
898e544efa
Build(deps-dev): Bump shoulda-matchers from 5.2.0 to 5.3.0 ( #19505 )
...
Bumps [shoulda-matchers](https://github.com/thoughtbot/shoulda-matchers ) from 5.2.0 to 5.3.0.
- [Release notes](https://github.com/thoughtbot/shoulda-matchers/releases )
- [Changelog](https://github.com/thoughtbot/shoulda-matchers/blob/main/CHANGELOG.md )
- [Commits](https://github.com/thoughtbot/shoulda-matchers/compare/v5.2.0...v5.3.0 )
---
updated-dependencies:
- dependency-name: shoulda-matchers
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-18 22:17:07 +01:00
dependabot[bot]
3f7d04e45b
Build(deps): Bump rack-protection from 3.0.4 to 3.0.5 ( #19503 )
...
Bumps [rack-protection](https://github.com/sinatra/sinatra ) from 3.0.4 to 3.0.5.
- [Release notes](https://github.com/sinatra/sinatra/releases )
- [Changelog](https://github.com/sinatra/sinatra/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sinatra/sinatra/compare/v3.0.4...v3.0.5 )
---
updated-dependencies:
- dependency-name: rack-protection
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-18 22:16:52 +01:00
dependabot[bot]
10ae732b08
Build(deps): Bump rspec-expectations from 3.12.0 to 3.12.1 ( #19504 )
...
Bumps [rspec-expectations](https://github.com/rspec/rspec-expectations ) from 3.12.0 to 3.12.1.
- [Release notes](https://github.com/rspec/rspec-expectations/releases )
- [Changelog](https://github.com/rspec/rspec-expectations/blob/main/Changelog.md )
- [Commits](https://github.com/rspec/rspec-expectations/compare/v3.12.0...v3.12.1 )
---
updated-dependencies:
- dependency-name: rspec-expectations
dependency-type: indirect
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-18 22:16:36 +01:00
dependabot[bot]
8126c1613a
Build(deps): Bump rotp from 6.2.1 to 6.2.2 ( #19473 )
...
Bumps [rotp](https://github.com/mdp/rotp ) from 6.2.1 to 6.2.2.
- [Release notes](https://github.com/mdp/rotp/releases )
- [Changelog](https://github.com/mdp/rotp/blob/main/CHANGELOG.md )
- [Commits](https://github.com/mdp/rotp/compare/v6.2.1...v6.2.2 )
---
updated-dependencies:
- dependency-name: rotp
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-15 22:46:24 +02:00
dependabot[bot]
644237b395
Build(deps): Bump faraday from 2.7.1 to 2.7.2 ( #19474 )
...
Bumps [faraday](https://github.com/lostisland/faraday ) from 2.7.1 to 2.7.2.
- [Release notes](https://github.com/lostisland/faraday/releases )
- [Changelog](https://github.com/lostisland/faraday/blob/main/CHANGELOG.md )
- [Commits](https://github.com/lostisland/faraday/compare/v2.7.1...v2.7.2 )
---
updated-dependencies:
- dependency-name: faraday
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-15 11:51:14 +01:00
dependabot[bot]
2b9fa41a6e
Build(deps): Bump rails-html-sanitizer from 1.4.3 to 1.4.4 ( #19456 )
...
Bumps [rails-html-sanitizer](https://github.com/rails/rails-html-sanitizer ) from 1.4.3 to 1.4.4.
- [Release notes](https://github.com/rails/rails-html-sanitizer/releases )
- [Changelog](https://github.com/rails/rails-html-sanitizer/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rails/rails-html-sanitizer/compare/v1.4.3...v1.4.4 )
---
updated-dependencies:
- dependency-name: rails-html-sanitizer
dependency-type: indirect
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-13 23:08:40 +01:00
dependabot[bot]
d33394a4a3
Build(deps): Bump rubocop-rspec from 2.15.0 to 2.16.0 ( #19457 )
...
Bumps [rubocop-rspec](https://github.com/rubocop/rubocop-rspec ) from 2.15.0 to 2.16.0.
- [Release notes](https://github.com/rubocop/rubocop-rspec/releases )
- [Changelog](https://github.com/rubocop/rubocop-rspec/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rubocop/rubocop-rspec/compare/v2.15.0...v2.16.0 )
---
updated-dependencies:
- dependency-name: rubocop-rspec
dependency-type: indirect
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-13 22:27:55 +01:00
dependabot[bot]
cce13d2582
Build(deps): Bump loofah from 2.19.0 to 2.19.1 ( #19454 )
...
Bumps [loofah](https://github.com/flavorjones/loofah ) from 2.19.0 to 2.19.1.
- [Release notes](https://github.com/flavorjones/loofah/releases )
- [Changelog](https://github.com/flavorjones/loofah/blob/main/CHANGELOG.md )
- [Commits](https://github.com/flavorjones/loofah/compare/v2.19.0...v2.19.1 )
---
updated-dependencies:
- dependency-name: loofah
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-13 21:34:12 +01:00
dependabot[bot]
a03b2cd469
Build(deps): Bump excon from 0.94.0 to 0.95.0 ( #19429 )
...
Bumps [excon](https://github.com/excon/excon ) from 0.94.0 to 0.95.0.
- [Release notes](https://github.com/excon/excon/releases )
- [Changelog](https://github.com/excon/excon/blob/master/changelog.txt )
- [Commits](https://github.com/excon/excon/compare/v0.94.0...v0.95.0 )
---
updated-dependencies:
- dependency-name: excon
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-12 22:29:50 +01:00