mirror of
https://github.com/discourse/discourse.git
synced 2024-12-15 23:16:03 +08:00
05b2c5babf
This release contains security fixes to the underlying rack library used by Discourse. Impact is not too high as we do not use request.scheme in our templates
559 lines
12 KiB
Plaintext
559 lines
12 KiB
Plaintext
GEM
|
|
remote: https://rubygems.org/
|
|
specs:
|
|
actionmailer (5.2.0)
|
|
actionpack (= 5.2.0)
|
|
actionview (= 5.2.0)
|
|
activejob (= 5.2.0)
|
|
mail (~> 2.5, >= 2.5.4)
|
|
rails-dom-testing (~> 2.0)
|
|
actionpack (5.2.0)
|
|
actionview (= 5.2.0)
|
|
activesupport (= 5.2.0)
|
|
rack (~> 2.0)
|
|
rack-test (>= 0.6.3)
|
|
rails-dom-testing (~> 2.0)
|
|
rails-html-sanitizer (~> 1.0, >= 1.0.2)
|
|
actionview (5.2.0)
|
|
activesupport (= 5.2.0)
|
|
builder (~> 3.1)
|
|
erubi (~> 1.4)
|
|
rails-dom-testing (~> 2.0)
|
|
rails-html-sanitizer (~> 1.0, >= 1.0.3)
|
|
active_model_serializers (0.8.4)
|
|
activemodel (>= 3.0)
|
|
activejob (5.2.0)
|
|
activesupport (= 5.2.0)
|
|
globalid (>= 0.3.6)
|
|
activemodel (5.2.0)
|
|
activesupport (= 5.2.0)
|
|
activerecord (5.2.0)
|
|
activemodel (= 5.2.0)
|
|
activesupport (= 5.2.0)
|
|
arel (>= 9.0)
|
|
activesupport (5.2.0)
|
|
concurrent-ruby (~> 1.0, >= 1.0.2)
|
|
i18n (>= 0.7, < 2)
|
|
minitest (~> 5.1)
|
|
tzinfo (~> 1.1)
|
|
addressable (2.5.2)
|
|
public_suffix (>= 2.0.2, < 4.0)
|
|
annotate (2.7.4)
|
|
activerecord (>= 3.2, < 6.0)
|
|
rake (>= 10.4, < 13.0)
|
|
arel (9.0.0)
|
|
ast (2.4.0)
|
|
aws-eventstream (1.0.1)
|
|
aws-partitions (1.92.0)
|
|
aws-sdk-core (3.21.2)
|
|
aws-eventstream (~> 1.0)
|
|
aws-partitions (~> 1.0)
|
|
aws-sigv4 (~> 1.0)
|
|
jmespath (~> 1.0)
|
|
aws-sdk-kms (1.5.0)
|
|
aws-sdk-core (~> 3)
|
|
aws-sigv4 (~> 1.0)
|
|
aws-sdk-s3 (1.14.0)
|
|
aws-sdk-core (~> 3, >= 3.21.2)
|
|
aws-sdk-kms (~> 1)
|
|
aws-sigv4 (~> 1.0)
|
|
aws-sigv4 (1.0.2)
|
|
barber (0.12.0)
|
|
ember-source (>= 1.0, < 3.1)
|
|
execjs (>= 1.2, < 3)
|
|
better_errors (2.4.0)
|
|
coderay (>= 1.0.0)
|
|
erubi (>= 1.0.0)
|
|
rack (>= 0.9.0)
|
|
binding_of_caller (0.8.0)
|
|
debug_inspector (>= 0.0.1)
|
|
bootsnap (1.3.0)
|
|
msgpack (~> 1.0)
|
|
builder (3.2.3)
|
|
bullet (5.7.5)
|
|
activesupport (>= 3.0.0)
|
|
uniform_notifier (~> 1.11.0)
|
|
byebug (10.0.2)
|
|
certified (1.0.0)
|
|
chunky_png (1.3.10)
|
|
claide (1.0.2)
|
|
claide-plugins (0.9.2)
|
|
cork
|
|
nap
|
|
open4 (~> 1.3)
|
|
coderay (1.1.2)
|
|
colored2 (3.1.2)
|
|
concurrent-ruby (1.0.5)
|
|
connection_pool (2.2.2)
|
|
cork (0.3.0)
|
|
colored2 (~> 3.1)
|
|
cppjieba_rb (0.3.0)
|
|
crack (0.4.3)
|
|
safe_yaml (~> 1.0.0)
|
|
crass (1.0.4)
|
|
danger (5.6.3)
|
|
claide (~> 1.0)
|
|
claide-plugins (>= 0.9.2)
|
|
colored2 (~> 3.1)
|
|
cork (~> 0.1)
|
|
faraday (~> 0.9)
|
|
faraday-http-cache (~> 1.0)
|
|
git (~> 1)
|
|
kramdown (~> 1.5)
|
|
no_proxy_fix
|
|
octokit (~> 4.7)
|
|
terminal-table (~> 1)
|
|
debug_inspector (0.0.3)
|
|
diff-lcs (1.3)
|
|
discourse_image_optim (0.26.2)
|
|
exifr (~> 1.2, >= 1.2.2)
|
|
fspath (~> 3.0)
|
|
image_size (~> 1.5)
|
|
in_threads (~> 1.3)
|
|
progress (~> 3.0, >= 3.0.1)
|
|
email_reply_trimmer (0.1.12)
|
|
ember-data-source (3.0.2)
|
|
ember-source (>= 2, < 3.0)
|
|
ember-handlebars-template (0.7.5)
|
|
barber (>= 0.11.0)
|
|
sprockets (>= 3.3, < 4)
|
|
ember-rails (0.18.5)
|
|
active_model_serializers
|
|
ember-data-source (>= 1.0.0.beta.5)
|
|
ember-handlebars-template (>= 0.1.1, < 1.0)
|
|
ember-source (>= 1.1.0)
|
|
jquery-rails (>= 1.0.17)
|
|
railties (>= 3.1)
|
|
ember-source (2.13.3)
|
|
erubi (1.7.1)
|
|
excon (0.62.0)
|
|
execjs (2.7.0)
|
|
exifr (1.3.4)
|
|
fabrication (2.20.1)
|
|
fakeweb (1.3.0)
|
|
faraday (0.12.2)
|
|
multipart-post (>= 1.2, < 3)
|
|
faraday-http-cache (1.3.1)
|
|
faraday (~> 0.8)
|
|
fast_blank (1.0.0)
|
|
fast_xor (1.1.3)
|
|
rake
|
|
rake-compiler
|
|
fast_xs (0.8.0)
|
|
fastimage (2.1.3)
|
|
ffi (1.9.25)
|
|
flamegraph (0.9.5)
|
|
foreman (0.85.0)
|
|
thor (~> 0.19.1)
|
|
fspath (3.1.0)
|
|
gc_tracer (1.5.1)
|
|
git (1.4.0)
|
|
globalid (0.4.1)
|
|
activesupport (>= 4.2.0)
|
|
guess_html_encoding (0.0.11)
|
|
hashdiff (0.3.7)
|
|
hashie (3.5.7)
|
|
highline (1.7.10)
|
|
hiredis (0.6.1)
|
|
hkdf (0.3.0)
|
|
htmlentities (4.3.4)
|
|
http_accept_language (2.0.5)
|
|
i18n (1.0.1)
|
|
concurrent-ruby (~> 1.0)
|
|
image_size (1.5.0)
|
|
in_threads (1.5.0)
|
|
jaro_winkler (1.5.1)
|
|
jmespath (1.4.0)
|
|
jquery-rails (4.3.3)
|
|
rails-dom-testing (>= 1, < 3)
|
|
railties (>= 4.2.0)
|
|
thor (>= 0.14, < 2.0)
|
|
jwt (1.5.6)
|
|
kgio (2.11.2)
|
|
kramdown (1.17.0)
|
|
libv8 (6.7.288.46.1)
|
|
listen (3.1.5)
|
|
rb-fsevent (~> 0.9, >= 0.9.4)
|
|
rb-inotify (~> 0.9, >= 0.9.7)
|
|
ruby_dep (~> 1.2)
|
|
lograge (0.10.0)
|
|
actionpack (>= 4)
|
|
activesupport (>= 4)
|
|
railties (>= 4)
|
|
request_store (~> 1.0)
|
|
logstash-event (1.2.02)
|
|
logstash-logger (0.26.1)
|
|
logstash-event (~> 1.2)
|
|
logster (1.2.11)
|
|
loofah (2.2.3)
|
|
crass (~> 1.0.2)
|
|
nokogiri (>= 1.5.9)
|
|
lru_redux (1.1.0)
|
|
mail (2.7.1.rc1)
|
|
mini_mime (>= 0.1.1)
|
|
memory_profiler (0.9.10)
|
|
message_bus (2.1.5)
|
|
rack (>= 1.1.3)
|
|
metaclass (0.0.4)
|
|
method_source (0.8.2)
|
|
mini_mime (1.0.0)
|
|
mini_portile2 (2.3.0)
|
|
mini_racer (0.2.0)
|
|
libv8 (>= 6.3)
|
|
mini_scheduler (0.8.1)
|
|
mini_sql (0.1.10)
|
|
mini_suffix (0.3.0)
|
|
ffi (~> 1.9)
|
|
minitest (5.11.3)
|
|
mocha (1.5.0)
|
|
metaclass (~> 0.0.1)
|
|
mock_redis (0.18.0)
|
|
moneta (1.0.0)
|
|
msgpack (1.2.4)
|
|
multi_json (1.13.1)
|
|
multi_xml (0.6.0)
|
|
multipart-post (2.0.0)
|
|
mustache (1.0.5)
|
|
nap (1.1.0)
|
|
no_proxy_fix (0.1.2)
|
|
nokogiri (1.8.3)
|
|
mini_portile2 (~> 2.3.0)
|
|
nokogumbo (1.5.0)
|
|
nokogiri
|
|
oauth (0.5.4)
|
|
oauth2 (1.4.0)
|
|
faraday (>= 0.8, < 0.13)
|
|
jwt (~> 1.0)
|
|
multi_json (~> 1.3)
|
|
multi_xml (~> 0.5)
|
|
rack (>= 1.2, < 3)
|
|
octokit (4.9.0)
|
|
sawyer (~> 0.8.0, >= 0.5.3)
|
|
oj (3.6.2)
|
|
omniauth (1.8.1)
|
|
hashie (>= 3.4.6, < 3.6.0)
|
|
rack (>= 1.6.2, < 3)
|
|
omniauth-facebook (5.0.0)
|
|
omniauth-oauth2 (~> 1.2)
|
|
omniauth-github (1.3.0)
|
|
omniauth (~> 1.5)
|
|
omniauth-oauth2 (>= 1.4.0, < 2.0)
|
|
omniauth-google-oauth2 (0.5.3)
|
|
jwt (>= 1.5)
|
|
omniauth (>= 1.1.1)
|
|
omniauth-oauth2 (>= 1.5)
|
|
omniauth-instagram (1.3.0)
|
|
omniauth (~> 1)
|
|
omniauth-oauth2 (~> 1)
|
|
omniauth-oauth (1.1.0)
|
|
oauth
|
|
omniauth (~> 1.0)
|
|
omniauth-oauth2 (1.5.0)
|
|
oauth2 (~> 1.1)
|
|
omniauth (~> 1.2)
|
|
omniauth-openid (1.0.1)
|
|
omniauth (~> 1.0)
|
|
rack-openid (~> 1.3.1)
|
|
omniauth-twitter (1.4.0)
|
|
omniauth-oauth (~> 1.1)
|
|
rack
|
|
onebox (1.8.60)
|
|
htmlentities (~> 4.3)
|
|
moneta (~> 1.0)
|
|
multi_json (~> 1.11)
|
|
mustache
|
|
nokogiri (~> 1.7)
|
|
sanitize
|
|
open4 (1.3.4)
|
|
openid-redis-store (0.0.2)
|
|
redis
|
|
ruby-openid
|
|
optimist (3.0.0)
|
|
parallel (1.12.1)
|
|
parser (2.5.1.0)
|
|
ast (~> 2.4.0)
|
|
pg (1.1.0)
|
|
powerpack (0.1.2)
|
|
progress (3.4.0)
|
|
pry (0.10.4)
|
|
coderay (~> 1.1.0)
|
|
method_source (~> 0.8.1)
|
|
slop (~> 3.4)
|
|
pry-nav (0.2.4)
|
|
pry (>= 0.9.10, < 0.11.0)
|
|
pry-rails (0.3.6)
|
|
pry (>= 0.10.4)
|
|
public_suffix (3.0.2)
|
|
puma (3.11.4)
|
|
r2 (0.2.7)
|
|
rack (2.0.6)
|
|
rack-mini-profiler (1.0.0)
|
|
rack (>= 1.2.0)
|
|
rack-openid (1.3.1)
|
|
rack (>= 1.1.0)
|
|
ruby-openid (>= 2.1.8)
|
|
rack-protection (2.0.3)
|
|
rack
|
|
rack-test (1.0.0)
|
|
rack (>= 1.0, < 3)
|
|
rails-dom-testing (2.0.3)
|
|
activesupport (>= 4.2.0)
|
|
nokogiri (>= 1.6)
|
|
rails-html-sanitizer (1.0.4)
|
|
loofah (~> 2.2, >= 2.2.2)
|
|
rails_multisite (2.0.4)
|
|
activerecord (> 4.2, < 6)
|
|
railties (> 4.2, < 6)
|
|
railties (5.2.0)
|
|
actionpack (= 5.2.0)
|
|
activesupport (= 5.2.0)
|
|
method_source
|
|
rake (>= 0.8.7)
|
|
thor (>= 0.18.1, < 2.0)
|
|
rainbow (3.0.0)
|
|
raindrops (0.19.0)
|
|
rake (12.3.1)
|
|
rake-compiler (1.0.4)
|
|
rake
|
|
rb-fsevent (0.10.3)
|
|
rb-inotify (0.9.10)
|
|
ffi (>= 0.5.0, < 2)
|
|
rbtrace (0.4.11)
|
|
ffi (>= 1.0.6)
|
|
msgpack (>= 0.4.3)
|
|
optimist (>= 3.0.0)
|
|
rchardet (1.8.0)
|
|
redis (4.0.1)
|
|
redis-namespace (1.6.0)
|
|
redis (>= 3.0.4)
|
|
request_store (1.4.1)
|
|
rack (>= 1.4)
|
|
rinku (2.0.4)
|
|
rotp (3.3.1)
|
|
rqrcode (0.10.1)
|
|
chunky_png (~> 1.0)
|
|
rspec (3.7.0)
|
|
rspec-core (~> 3.7.0)
|
|
rspec-expectations (~> 3.7.0)
|
|
rspec-mocks (~> 3.7.0)
|
|
rspec-core (3.7.1)
|
|
rspec-support (~> 3.7.0)
|
|
rspec-expectations (3.7.0)
|
|
diff-lcs (>= 1.2.0, < 2.0)
|
|
rspec-support (~> 3.7.0)
|
|
rspec-html-matchers (0.9.1)
|
|
nokogiri (~> 1)
|
|
rspec (>= 3.0.0.a, < 4)
|
|
rspec-mocks (3.7.0)
|
|
diff-lcs (>= 1.2.0, < 2.0)
|
|
rspec-support (~> 3.7.0)
|
|
rspec-rails (3.7.2)
|
|
actionpack (>= 3.0)
|
|
activesupport (>= 3.0)
|
|
railties (>= 3.0)
|
|
rspec-core (~> 3.7.0)
|
|
rspec-expectations (~> 3.7.0)
|
|
rspec-mocks (~> 3.7.0)
|
|
rspec-support (~> 3.7.0)
|
|
rspec-support (3.7.1)
|
|
rtlit (0.0.5)
|
|
rubocop (0.57.2)
|
|
jaro_winkler (~> 1.5.1)
|
|
parallel (~> 1.10)
|
|
parser (>= 2.5)
|
|
powerpack (~> 0.1)
|
|
rainbow (>= 2.2.2, < 4.0)
|
|
ruby-progressbar (~> 1.7)
|
|
unicode-display_width (~> 1.0, >= 1.0.1)
|
|
ruby-openid (2.7.0)
|
|
ruby-prof (0.17.0)
|
|
ruby-progressbar (1.9.0)
|
|
ruby-readability (0.7.0)
|
|
guess_html_encoding (>= 0.0.4)
|
|
nokogiri (>= 1.6.0)
|
|
ruby_dep (1.5.0)
|
|
safe_yaml (1.0.4)
|
|
sanitize (4.6.5)
|
|
crass (~> 1.0.2)
|
|
nokogiri (>= 1.4.4)
|
|
nokogumbo (~> 1.4)
|
|
sass (3.5.6)
|
|
sass-listen (~> 4.0.0)
|
|
sass-listen (4.0.0)
|
|
rb-fsevent (~> 0.9, >= 0.9.4)
|
|
rb-inotify (~> 0.9, >= 0.9.7)
|
|
sassc (1.11.4)
|
|
bundler
|
|
ffi (~> 1.9.6)
|
|
sass (>= 3.3.0)
|
|
sawyer (0.8.1)
|
|
addressable (>= 2.3.5, < 2.6)
|
|
faraday (~> 0.8, < 1.0)
|
|
seed-fu (2.3.9)
|
|
activerecord (>= 3.1)
|
|
activesupport (>= 3.1)
|
|
shoulda (3.5.0)
|
|
shoulda-context (~> 1.0, >= 1.0.1)
|
|
shoulda-matchers (>= 1.4.1, < 3.0)
|
|
shoulda-context (1.2.2)
|
|
shoulda-matchers (2.8.0)
|
|
activesupport (>= 3.0.0)
|
|
sidekiq (5.1.3)
|
|
concurrent-ruby (~> 1.0)
|
|
connection_pool (~> 2.2, >= 2.2.0)
|
|
rack-protection (>= 1.5.0)
|
|
redis (>= 3.3.5, < 5)
|
|
slop (3.6.0)
|
|
sprockets (3.7.2)
|
|
concurrent-ruby (~> 1.0)
|
|
rack (> 1, < 3)
|
|
sprockets-rails (3.2.1)
|
|
actionpack (>= 4.0)
|
|
activesupport (>= 4.0)
|
|
sprockets (>= 3.0.0)
|
|
sshkey (1.9.0)
|
|
stackprof (0.2.11)
|
|
terminal-table (1.8.0)
|
|
unicode-display_width (~> 1.1, >= 1.1.1)
|
|
thor (0.19.4)
|
|
thread_safe (0.3.6)
|
|
tilt (2.0.8)
|
|
tzinfo (1.2.5)
|
|
thread_safe (~> 0.1)
|
|
uglifier (4.1.11)
|
|
execjs (>= 0.3.0, < 3)
|
|
unf (0.1.4)
|
|
unf_ext
|
|
unf_ext (0.0.7.5)
|
|
unicode-display_width (1.4.0)
|
|
unicorn (5.4.0)
|
|
kgio (~> 2.6)
|
|
raindrops (~> 0.7)
|
|
uniform_notifier (1.11.0)
|
|
webmock (3.4.2)
|
|
addressable (>= 2.3.6)
|
|
crack (>= 0.3.2)
|
|
hashdiff
|
|
webpush (0.3.2)
|
|
hkdf (~> 0.2)
|
|
jwt
|
|
|
|
PLATFORMS
|
|
ruby
|
|
|
|
DEPENDENCIES
|
|
actionmailer (= 5.2)
|
|
actionpack (= 5.2)
|
|
actionview (= 5.2)
|
|
active_model_serializers (~> 0.8.3)
|
|
activemodel (= 5.2)
|
|
activerecord (= 5.2)
|
|
activesupport (= 5.2)
|
|
annotate
|
|
aws-sdk-s3
|
|
barber
|
|
better_errors
|
|
binding_of_caller
|
|
bootsnap
|
|
bullet
|
|
byebug
|
|
certified
|
|
colored2
|
|
cppjieba_rb
|
|
danger
|
|
discourse_image_optim
|
|
email_reply_trimmer (~> 0.1)
|
|
ember-handlebars-template (= 0.7.5)
|
|
ember-rails (= 0.18.5)
|
|
ember-source (= 2.13.3)
|
|
excon
|
|
execjs
|
|
fabrication
|
|
fakeweb (~> 1.3.0)
|
|
fast_blank
|
|
fast_xor
|
|
fast_xs
|
|
fastimage
|
|
flamegraph
|
|
foreman
|
|
gc_tracer
|
|
highline (~> 1.7.0)
|
|
hiredis
|
|
htmlentities
|
|
http_accept_language (~> 2.0.5)
|
|
listen
|
|
lograge
|
|
logstash-event
|
|
logstash-logger
|
|
logster
|
|
lru_redux
|
|
mail (= 2.7.1.rc1)
|
|
memory_profiler
|
|
message_bus
|
|
mini_mime
|
|
mini_racer
|
|
mini_scheduler
|
|
mini_sql
|
|
mini_suffix
|
|
minitest
|
|
mocha
|
|
mock_redis
|
|
multi_json
|
|
mustache
|
|
nokogiri
|
|
oj
|
|
omniauth
|
|
omniauth-facebook
|
|
omniauth-github
|
|
omniauth-google-oauth2
|
|
omniauth-instagram
|
|
omniauth-oauth2
|
|
omniauth-openid
|
|
omniauth-twitter
|
|
onebox (= 1.8.60)
|
|
openid-redis-store
|
|
pg
|
|
pry-nav
|
|
pry-rails
|
|
puma
|
|
r2 (~> 0.2.5)
|
|
rack-mini-profiler
|
|
rack-protection
|
|
rails_multisite
|
|
railties (= 5.2)
|
|
rake
|
|
rb-fsevent
|
|
rb-inotify (~> 0.9)
|
|
rbtrace
|
|
rchardet
|
|
redis
|
|
redis-namespace
|
|
rinku
|
|
rotp
|
|
rqrcode
|
|
rspec
|
|
rspec-html-matchers
|
|
rspec-rails
|
|
rtlit
|
|
rubocop
|
|
ruby-prof
|
|
ruby-readability
|
|
sanitize
|
|
sassc
|
|
seed-fu
|
|
shoulda
|
|
sidekiq
|
|
sprockets-rails
|
|
sshkey
|
|
stackprof
|
|
thor
|
|
tilt
|
|
uglifier
|
|
unf
|
|
unicorn
|
|
webmock
|
|
webpush
|
|
|
|
BUNDLED WITH
|
|
1.17.0
|