Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the patch-and-minor-dependencies group across 1 directory with 6 updates #121

Closed
wants to merge 1 commit into from
Closed

Bump the patch-and-minor-dependencies group across 1 directory with 6 updates #121

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 27, 2024
edited
Loading

Bumps the patch-and-minor-dependencies group with 6 updates in the / directory:

Package From To
rake 13.1.0 13.2.1
roda 3.76.0 3.79.0
htmlbeautifier 1.4.2 1.4.3
rubocop 1.60.2 1.63.3
yard 0.9.34 0.9.36
minitest 5.21.2 5.22.3

Updates rake from 13.1.0 to 13.2.1

Changelog

Sourced from rake's changelog.

=== 13.2.1

  • Suppressed "internal:array:52:in 'Array#each'" from backtrace by @​hsbt in #554
  • Bump actions/configure-pages from 4 to 5 by @​dependabot in #553

=== 13.2.0

Commits
  • d84f6ef Bump up 13.2.1
  • 8b33b36 Merge pull request #553 from ruby/dependabot/github_actions/actions/configure...
  • 99f6823 Merge pull request #554 from ruby/suppress-array-internal
  • 54950e0 Suppressed "<internal:array>:52:in 'Array#each'" from backtrace
  • 675498c Bump up 13.2.0
  • 3dc4277 Bump actions/configure-pages from 4 to 5
  • c68e010 Merge pull request #549 from ruby/dependabot/github_actions/dependabot/fetch-...
  • 2cb46b6 Merge pull request #551 from andrykonchin/ak/restore-truffleruby-on-ci
  • c342e96 Add TruffleRuby on CI
  • d569f0f Merge pull request #550 from ruby/dependabot/github_actions/ruby/setup-ruby-1...
  • Additional commits viewable in compare view

Updates roda from 3.76.0 to 3.79.0

Changelog

Sourced from roda's changelog.

= master

  • Support :namespace option in hmac_paths plugin, allowing for easy per-user/per-group HMAC paths (jeremyevans)

= 3.79.0 (2024-04-12)

  • Do not update template mtime when there is an error reloading templates in the render plugin (jeremyevans)

  • Add hmac_paths plugin for preventing path enumeration and supporting access control (jeremyevans)

= 3.78.0 (2024-03-13)

  • Add permissions_policy plugin for setting Permissions-Policy header (jeremyevans)

= 3.77.0 (2024-02-12)

  • Support formaction/formmethod attributes in forms in route_csrf plugin (jeremyevans)

= 3.76.0 (2024-01-12)

  • Support :filter plugin option in error_mail and error_email for filtering parameters, environment variables, and session values (jeremyevans) (#346)

  • Set temporary name on Ruby 3.3 in middleware plugin for middleware class created (janko) (#344)

  • Add break plugin, for using break inside a routing block to return from the block and keep routing (jeremyevans)

= 3.75.0 (2023-12-14)

  • Add cookie_flags plugin, for overriding, warning, or raising for incorrect cookie flags (jeremyevans)

= 3.74.0 (2023-11-13)

  • Add redirect_http_to_https plugin, helping to ensure future requests from the browser are submitted via HTTPS (jeremyevans)

= 3.73.0 (2023-10-13)

  • Support :next_if_not_found option for middleware plugin (jeremyevans) (#334)

  • Remove dependency on base64 library from sessions and route_csrf plugin, as it will not be part of the standard library in Ruby 3.4+ (jeremyevans)

= 3.72.0 (2023-09-12)

  • Add invalid_request_body plugin for custom handling of invalid request bodies (jeremyevans)

  • Warn when defining method that expects 1 argument when block requires multiple arguments when :check_arity option is set to :warn (jeremyevans)

  • Implement the match_hooks plugin using the match_hook_args plugin (jeremyevans)

= 3.71.0 (2023-08-14)

... (truncated)

Commits
  • 446633c Bump version to 3.79.0
  • 0a2e9fc Fix hmac_paths documentation
  • cd7caf3 Do not update template mtime when there is an error reloading templates in th...
  • f6cc4d9 Make recheck_precompiled_assets spec temp directory same as assets spec temp ...
  • f55eab3 Add hmac_paths plugin for preventing path enumeration and supporting access c...
  • e4c736b Bump version to 3.78.0
  • f812deb Add link to permissions_policy plugin to documentation page
  • 3a76f9f Update permissions_policy documentation and code examples
  • bdebe4a Add permissions_policy plugin for setting Permissions-Policy header
  • 8f8082a Fix bad example code in content_security_policy plugin documentation
  • Additional commits viewable in compare view

Updates htmlbeautifier from 1.4.2 to 1.4.3

Commits
  • 9738604 Version 1.4.3
  • 3d75d9b Make README input and output clearer
  • d438227 Merge pull request #75 from tomclose/master
  • 6055ecb Indent case statements
  • 3a3cf72 Merge branch 'ruby-standard'
  • ed056d0 Apply formatting rules from the Standard project
  • 1a15089 Merge pull request #79 from andyw8/andyw8/fix-rubocop-failures
  • 1c80785 Fix failures on latest RuboCop version
  • See full diff in compare view

Updates rubocop from 1.60.2 to 1.63.3

Release notes

Sourced from rubocop's releases.

RuboCop 1.63.2

Bug fixes

  • #12843: Fix an error for Lint/MixedCaseRange when a character between Z and a is used in the regexp range. (@​koic)
  • #12846: Fix an error for RuboCop::Lockfile when there is no Bundler environment. (@​koic)
  • #12832: Fix an error for Style/ArgumentsForwarding when using block arg in nested method definitions. (@​koic)
  • #12841: Fix false negatives for Lint/UnreachableLoop when using pattern matching. (@​koic)
  • #12835: Allow global offenses to be disabled by directive comments. (@​earlopain)

Changes

  • #12845: Exclude debug/open_nonstop from Lint/Debugger by default. (@​koic)

RuboCop 1.63.1

Bug fixes

  • #12828: Fix a false positive for Lint/AssignmentInCondition if assigning inside a method call. (@​earlopain)
  • #12823: Fixed "uninitialized constant RuboCop::Lockfile::Bundler", caused when running RuboCop without bundler exec on codebases that use rubocop-rails. (@​amomchilov)

RuboCop 1.63

New features

Bug fixes

  • #12769: Fix a false positive for Lint/RedundantWithIndex when calling with_index with receiver and a block. (@​koic)
  • #12547: Added a comment recommending upgrading to the latest version of Rubocop in the error text when an Infinite loop detected error occurs. ([@​Hiroto-Iizuka][])
  • #12782: Fix an error for Style/Alias with EnforcedStyle: prefer_alias when calling alias_method with fewer than 2 arguments. (@​earlopain)
  • #12781: Fix an error for Style/ExactRegexpMatch when calling match without a receiver. (@​earlopain)
  • #12780: Fix an error for Style/RedundantEach when using reverse_each.each without a block. (@​earlopain)
  • #12731: Treat &. the same way as . for setter methods in Lint/AssignmentInCondition. ([@​jonas054][])
  • #12793: Fix false positives for Style/RedundantLineContinuation when using line continuation with modifier. (@​koic)
  • #12807: Fix false positives for Naming/BlockForwarding when using explicit block forwarding in block method and others. (@​koic)
  • #12796: Fix false positives for Style/EvalWithLocation when using eval with a line number from a method call or a variable. (@​koic)
  • #12794: Fix false positives for Style/RedundantArgument when when single-quoted strings for cntrl character. (@​koic)
  • #12797: Fix false positives for Style/RedundantLineContinuation when using line continuations with && or || operator in assignment. (@​koic)
  • #12793: Fix false positives for Style/RedundantLineContinuation when multi-line continuations with operators. (@​koic)
  • #12801: Fix incorrect autocorrect for Style/CollectionCompact when using delete_if. (@​koic)
  • #12789: Make Style/RedundantPercentQ safe on multiline strings. ([@​boardfish][])
  • #12802: Return global offenses for Naming/FileName and Naming/InclusiveLanguage for empty files. (@​earlopain)
  • #12804: Return global offenses for Style/Copyright when the file is empty. (@​earlopain)

... (truncated)

Changelog

Sourced from rubocop's changelog.

1.63.3 (2024-04-22)

Bug fixes

  • #12857: Fix false negatives for Lint/UnreachableCode when using pattern matching. ([@​koic][])
  • #12852: Fix an error for Lint/EmptyFile in formatters when using cache. ([@​earlopain][])
  • #12848: Fix an error that occurs in RuboCop::Lockfile when the constant Bundler is uninitialized. ([@​koic][])

Changes

  • #12855: Set custom program name for the built-in LSP server. ([@​koic][])

1.63.2 (2024-04-16)

Bug fixes

  • #12843: Fix an error for Lint/MixedCaseRange when a character between Z and a is used in the regexp range. ([@​koic][])
  • #12846: Fix an error for RuboCop::Lockfile when there is no Bundler environment. ([@​koic][])
  • #12832: Fix an error for Style/ArgumentsForwarding when using block arg in nested method definitions. ([@​koic][])
  • #12841: Fix false negatives for Lint/UnreachableLoop when using pattern matching. ([@​koic][])
  • #12835: Allow global offenses to be disabled by directive comments. ([@​earlopain][])

Changes

  • #12845: Exclude debug/open_nonstop from Lint/Debugger by default. ([@​koic][])

1.63.1 (2024-04-10)

Bug fixes

  • #12828: Fix a false positive for Lint/AssignmentInCondition if assigning inside a method call. ([@​earlopain][])
  • #12823: Fixed "uninitialized constant RuboCop::Lockfile::Bundler", caused when running RuboCop without bundler exec on codebases that use rubocop-rails. ([@​amomchilov][])

1.63.0 (2024-04-08)

New features

Bug fixes

  • #12769: Fix a false positive for Lint/RedundantWithIndex when calling with_index with receiver and a block. ([@​koic][])
  • #12547: Added a comment recommending upgrading to the latest version of Rubocop in the error text when an Infinite loop detected error occurs. ([@​Hiroto-Iizuka][])
  • #12782: Fix an error for Style/Alias with EnforcedStyle: prefer_alias when calling alias_method with fewer than 2 arguments. ([@​earlopain][])
  • #12781: Fix an error for Style/ExactRegexpMatch when calling match without a receiver. ([@​earlopain][])
  • #12780: Fix an error for Style/RedundantEach when using reverse_each.each without a block. ([@​earlopain][])
  • #12731: Treat &. the same way as . for setter methods in Lint/AssignmentInCondition. ([@​jonas054][])
  • #12793: Fix false positives for Style/RedundantLineContinuation when using line continuation with modifier. ([@​koic][])
  • #12807: Fix false positives for Naming/BlockForwarding when using explicit block forwarding in block method and others. ([@​koic][])

... (truncated)

Commits
  • a10fbef Cut 1.63.3
  • 21893ac Update Changelog
  • a35ef47 Make InternalAffairs/ExampleDescription aware of an improper description
  • 5706ac0 Remove redundant braces in a few uses of def_node_matcher
  • f1a748b Fix false negatives for Lint/UnreachableCode
  • c30838d [Fix #12848] Fix an error for RuboCop::Lockfile
  • 74037d9 Set custom program name for the built-in LSP server
  • dd47fa8 Merge pull request #12856 from koic/workaround_for_prism_0_26
  • 245b8cc Workaround for incompatibilities between Prism 0.25.0 and 0.26.0
  • d86b8d1 Merge pull request #12853 from Earlopain/global-offense-cache
  • Additional commits viewable in compare view

Updates yard from 0.9.34 to 0.9.36

Release notes

Sourced from yard's releases.

Release v0.9.36

  • Further XSS fixes for generated frameset pages (#1538)
  • Improve tests for Ruby 3.3 compatibility (#1519, #1531)
  • Documentation improvements (#1524)

Release v0.9.35

  • Fix possible XSS on generated YARD frameset pages (thanks to @​RedYetiDev for finding and patching) (2069e2b).
  • Fix errors when using @option on non-method objects (#1508)
  • Support Ruby 3.3 changes in Ripper parser (#1510)
Changelog

Sourced from yard's changelog.

0.9.36 - February 29th, 2024

  • Further XSS fixes for generated frameset pages (#1538)
  • Improve tests for Ruby 3.3 compatibility (#1519, #1531)
  • Documentation improvements (#1524)

0.9.35 - February 28th, 2024

  • Fix possible XSS on generated YARD frameset pages (thanks to @​RedYetiDev for finding and patching) (2069e2b).
  • Fix errors when using @option on non-method objects (#1508)
  • Support Ruby 3.3 changes in Ripper parser (#1510)
Commits

Updates minitest from 5.21.2 to 5.22.3

Changelog

Sourced from minitest's changelog.

=== 5.22.3 / 2024-03-13

  • 1 minor enhancement:

    • MASSIVE improvement of minitest's pride plugin output: Frequencies doubled! Sine waves shifted!! Comments improved!!! Colors rotated!!!! (havenwood)

  • 3 bug fixes:

    • Improved wording on Minitest::Test#parallelize_me! to clarify it goes INSIDE your test class/describe.
    • Minor changes to tests to pass when tests ran with extra flags (eg -p).
    • Support Ruby 3.4's new error message format. (mame)

=== 5.22.2 / 2024-02-07

  • 1 bug fix:

    • Third time's a charm? Remember: 'ensure' is almost always the wrong way to go (for results... it's great for cleaning up).

=== 5.22.1 / 2024-02-06

  • 1 bug fix:

    • Don't exit non-zero if no tests ran and no filter (aka, the test file is empty). (I'm starting to think the exit 1 thing for @​tenderlove was a mistake...)

=== 5.22.0 / 2024-02-05

  • 1 minor enhancement:

    • Added "did you mean" output if your --name filter matches nothing. (tenderlove)

  • 2 bug fixes:

    • Big cleanup of test filtering. Much prettier / more functional.
    • Fix situation where Assertion#location can't find the location. (pftg)
Commits
  • d0a993f Branching minitest to version 5.22.3
  • 112cdff - Minor changes to tests to pass when tests ran with extra flags (eg -p).
  • 9d2fc6c + MASSIVE improvement of minitest's pride plugin output: Frequencies doubled!...
  • 1ead76c - Improved wording on Minitest::Test#parallelize_me! to clarify it goes INSID...
  • 93597e5 - Support Ruby 3.4's new error message format. (mame)
  • d00cc0d prepped for release
  • 6cf8dce - Third time's a charm? Remember: 'ensure' is almost always the wrong way to go.
  • 319036f prepped for release
  • f92f48d - Don't exit non-zero if no tests ran and no filter (aka, the test file is em...
  • 6138c39 prepped for release
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the patch-and-minor-dependencies group across 1 directory with 6…
e311b95 
… updates

Bumps the patch-and-minor-dependencies group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [rake](https://github.com/ruby/rake) | `13.1.0` | `13.2.1` |
| [roda](https://github.com/jeremyevans/roda) | `3.76.0` | `3.79.0` |
| [htmlbeautifier](https://github.com/threedaymonk/htmlbeautifier) | `1.4.2` | `1.4.3` |
| [rubocop](https://github.com/rubocop/rubocop) | `1.60.2` | `1.63.3` |
| [yard](https://github.com/lsegal/yard) | `0.9.34` | `0.9.36` |
| [minitest](https://github.com/minitest/minitest) | `5.21.2` | `5.22.3` |



Updates `rake` from 13.1.0 to 13.2.1
- [Release notes](https://github.com/ruby/rake/releases)
- [Changelog](https://github.com/ruby/rake/blob/master/History.rdoc)
- [Commits](ruby/rake@v13.1.0...v13.2.1)

Updates `roda` from 3.76.0 to 3.79.0
- [Changelog](https://github.com/jeremyevans/roda/blob/master/CHANGELOG)
- [Commits](jeremyevans/roda@3.76.0...3.79.0)

Updates `htmlbeautifier` from 1.4.2 to 1.4.3
- [Changelog](https://github.com/threedaymonk/htmlbeautifier/blob/master/History.txt)
- [Commits](threedaymonk/htmlbeautifier@v1.4.2...v1.4.3)

Updates `rubocop` from 1.60.2 to 1.63.3
- [Release notes](https://github.com/rubocop/rubocop/releases)
- [Changelog](https://github.com/rubocop/rubocop/blob/master/CHANGELOG.md)
- [Commits](rubocop/rubocop@v1.60.2...v1.63.3)

Updates `yard` from 0.9.34 to 0.9.36
- [Release notes](https://github.com/lsegal/yard/releases)
- [Changelog](https://github.com/lsegal/yard/blob/main/CHANGELOG.md)
- [Commits](lsegal/yard@v0.9.34...v0.9.36)

Updates `minitest` from 5.21.2 to 5.22.3
- [Changelog](https://github.com/minitest/minitest/blob/master/History.rdoc)
- [Commits](minitest/minitest@v5.21.2...v5.22.3)

---
updated-dependencies:
- dependency-name: rake
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: patch-and-minor-dependencies
- dependency-name: roda
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: patch-and-minor-dependencies
- dependency-name: htmlbeautifier
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: patch-and-minor-dependencies
- dependency-name: rubocop
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: patch-and-minor-dependencies
- dependency-name: yard
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: patch-and-minor-dependencies
- dependency-name: minitest
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: patch-and-minor-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Apr 27, 2024
@dependabot dependabot bot mentioned this pull request Apr 27, 2024
Closed
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github May 4, 2024

Superseded by #122.

@dependabot dependabot bot closed this May 4, 2024
@dependabot dependabot bot deleted the dependabot/bundler/patch-and-minor-dependencies-2b50314c61 branch May 4, 2024 09:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@simonneutert simonneutert

Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@simonneutert