Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the patch-and-minor-dependencies group across 1 directory with 6 updates #126

Closed
wants to merge 1 commit into from
Closed

Bump the patch-and-minor-dependencies group across 1 directory with 6 updates #126

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 18, 2024
edited
Loading

Bumps the patch-and-minor-dependencies group with 6 updates in the / directory:

Package From To
rake 13.1.0 13.2.1
roda 3.76.0 3.80.0
htmlbeautifier 1.4.2 1.4.3
rubocop 1.60.2 1.63.5
yard 0.9.34 0.9.36
minitest 5.21.2 5.23.0

Updates rake from 13.1.0 to 13.2.1

Changelog

Sourced from rake's changelog.

=== 13.2.1

  • Suppressed "internal:array:52:in 'Array#each'" from backtrace by @​hsbt in #554
  • Bump actions/configure-pages from 4 to 5 by @​dependabot in #553

=== 13.2.0

Commits
  • d84f6ef Bump up 13.2.1
  • 8b33b36 Merge pull request #553 from ruby/dependabot/github_actions/actions/configure...
  • 99f6823 Merge pull request #554 from ruby/suppress-array-internal
  • 54950e0 Suppressed "<internal:array>:52:in 'Array#each'" from backtrace
  • 675498c Bump up 13.2.0
  • 3dc4277 Bump actions/configure-pages from 4 to 5
  • c68e010 Merge pull request #549 from ruby/dependabot/github_actions/dependabot/fetch-...
  • 2cb46b6 Merge pull request #551 from andrykonchin/ak/restore-truffleruby-on-ci
  • c342e96 Add TruffleRuby on CI
  • d569f0f Merge pull request #550 from ruby/dependabot/github_actions/ruby/setup-ruby-1...
  • Additional commits viewable in compare view

Updates roda from 3.76.0 to 3.80.0

Changelog

Sourced from roda's changelog.

= 3.80.0 (2024-05-10)

  • Support :namespace option in hmac_paths plugin, allowing for easy per-user/per-group HMAC paths (jeremyevans)

= 3.79.0 (2024-04-12)

  • Do not update template mtime when there is an error reloading templates in the render plugin (jeremyevans)

  • Add hmac_paths plugin for preventing path enumeration and supporting access control (jeremyevans)

= 3.78.0 (2024-03-13)

  • Add permissions_policy plugin for setting Permissions-Policy header (jeremyevans)

= 3.77.0 (2024-02-12)

  • Support formaction/formmethod attributes in forms in route_csrf plugin (jeremyevans)

= 3.76.0 (2024-01-12)

  • Support :filter plugin option in error_mail and error_email for filtering parameters, environment variables, and session values (jeremyevans) (#346)

  • Set temporary name on Ruby 3.3 in middleware plugin for middleware class created (janko) (#344)

  • Add break plugin, for using break inside a routing block to return from the block and keep routing (jeremyevans)

= 3.75.0 (2023-12-14)

  • Add cookie_flags plugin, for overriding, warning, or raising for incorrect cookie flags (jeremyevans)

= 3.74.0 (2023-11-13)

  • Add redirect_http_to_https plugin, helping to ensure future requests from the browser are submitted via HTTPS (jeremyevans)

= 3.73.0 (2023-10-13)

  • Support :next_if_not_found option for middleware plugin (jeremyevans) (#334)

  • Remove dependency on base64 library from sessions and route_csrf plugin, as it will not be part of the standard library in Ruby 3.4+ (jeremyevans)

= 3.72.0 (2023-09-12)

  • Add invalid_request_body plugin for custom handling of invalid request bodies (jeremyevans)

  • Warn when defining method that expects 1 argument when block requires multiple arguments when :check_arity option is set to :warn (jeremyevans)

  • Implement the match_hooks plugin using the match_hook_args plugin (jeremyevans)

= 3.71.0 (2023-08-14)

... (truncated)

Commits
  • b9a91aa Bump version to 3.80.0
  • e2ef45b Support :namespace option in hmac_paths plugin, allowing for easy per-user/pe...
  • 446633c Bump version to 3.79.0
  • 0a2e9fc Fix hmac_paths documentation
  • cd7caf3 Do not update template mtime when there is an error reloading templates in th...
  • f6cc4d9 Make recheck_precompiled_assets spec temp directory same as assets spec temp ...
  • f55eab3 Add hmac_paths plugin for preventing path enumeration and supporting access c...
  • e4c736b Bump version to 3.78.0
  • f812deb Add link to permissions_policy plugin to documentation page
  • 3a76f9f Update permissions_policy documentation and code examples
  • Additional commits viewable in compare view

Updates htmlbeautifier from 1.4.2 to 1.4.3

Commits
  • 9738604 Version 1.4.3
  • 3d75d9b Make README input and output clearer
  • d438227 Merge pull request #75 from tomclose/master
  • 6055ecb Indent case statements
  • 3a3cf72 Merge branch 'ruby-standard'
  • ed056d0 Apply formatting rules from the Standard project
  • 1a15089 Merge pull request #79 from andyw8/andyw8/fix-rubocop-failures
  • 1c80785 Fix failures on latest RuboCop version
  • See full diff in compare view

Updates rubocop from 1.60.2 to 1.63.5

Release notes

Sourced from rubocop's releases.

RuboCop 1.63.5

Bug fixes

  • #12877: Fix an infinite loop error for Layout/FirstArgumentIndentation when specifying EnforcedStyle: with_fixed_indentation of Layout/ArrayAlignment. (@​koic)
  • #12873: Fix an error for Metrics/BlockLength when the CountAsOne config is invalid. (@​koic)
  • #12881: Fix incorrect autocorrect when Style/NumericPredicate is used with negations. (@​fatkodima)
  • #12882: Fix Layout/CommentIndentation for comment-only pattern matching. (@​nekketsuuu)

RuboCop 1.63.4

Bug fixes

  • #12871: Fix an error for rubocop -V when .rubocop.yml contains ERB. (@​earlopain)
  • #12862: Fix a false positive for Style/RedundantLineContinuation when line continuations involve return with a return value. (@​koic)
  • #12664: Fix handling of textDocument/diagnostic. (@​muxcmux)
  • #12865: Fix Rails Cops, which weren't reporting any violations unless running with bundle exec. (@​amomchilov)

RuboCop 1.63.3

Bug fixes

  • #12857: Fix false negatives for Lint/UnreachableCode when using pattern matching. (@​koic)
  • #12852: Fix an error for Lint/EmptyFile in formatters when using cache. (@​earlopain)
  • #12848: Fix an error that occurs in RuboCop::Lockfile when the constant Bundler is uninitialized. (@​koic)

Changes

  • #12855: Set custom program name for the built-in LSP server. (@​koic)

RuboCop 1.63.2

Bug fixes

  • #12843: Fix an error for Lint/MixedCaseRange when a character between Z and a is used in the regexp range. (@​koic)
  • #12846: Fix an error for RuboCop::Lockfile when there is no Bundler environment. (@​koic)
  • #12832: Fix an error for Style/ArgumentsForwarding when using block arg in nested method definitions. (@​koic)
  • #12841: Fix false negatives for Lint/UnreachableLoop when using pattern matching. (@​koic)
  • #12835: Allow global offenses to be disabled by directive comments. (@​earlopain)

Changes

... (truncated)

Changelog

Sourced from rubocop's changelog.

1.63.5 (2024-05-09)

Bug fixes

  • #12877: Fix an infinite loop error for Layout/FirstArgumentIndentation when specifying EnforcedStyle: with_fixed_indentation of Layout/ArrayAlignment. ([@​koic][])
  • #12873: Fix an error for Metrics/BlockLength when the CountAsOne config is invalid. ([@​koic][])
  • #12881: Fix incorrect autocorrect when Style/NumericPredicate is used with negations. ([@​fatkodima][])
  • #12882: Fix Layout/CommentIndentation for comment-only pattern matching. ([@​nekketsuuu][])

1.63.4 (2024-04-28)

Bug fixes

  • #12871: Fix an error for rubocop -V when .rubocop.yml contains ERB. ([@​earlopain][])
  • #12862: Fix a false positive for Style/RedundantLineContinuation when line continuations involve return with a return value. ([@​koic][])
  • #12664: Fix handling of textDocument/diagnostic. ([@​muxcmux][])
  • #12865: Fix Rails Cops, which weren't reporting any violations unless running with bundle exec. ([@​amomchilov][])

1.63.3 (2024-04-22)

Bug fixes

  • #12857: Fix false negatives for Lint/UnreachableCode when using pattern matching. ([@​koic][])
  • #12852: Fix an error for Lint/EmptyFile in formatters when using cache. ([@​earlopain][])
  • #12848: Fix an error that occurs in RuboCop::Lockfile when the constant Bundler is uninitialized. ([@​koic][])

Changes

  • #12855: Set custom program name for the built-in LSP server. ([@​koic][])

1.63.2 (2024-04-16)

Bug fixes

  • #12843: Fix an error for Lint/MixedCaseRange when a character between Z and a is used in the regexp range. ([@​koic][])
  • #12846: Fix an error for RuboCop::Lockfile when there is no Bundler environment. ([@​koic][])
  • #12832: Fix an error for Style/ArgumentsForwarding when using block arg in nested method definitions. ([@​koic][])
  • #12841: Fix false negatives for Lint/UnreachableLoop when using pattern matching. ([@​koic][])
  • #12835: Allow global offenses to be disabled by directive comments. ([@​earlopain][])

Changes

  • #12845: Exclude debug/open_nonstop from Lint/Debugger by default. ([@​koic][])

1.63.1 (2024-04-10)

Bug fixes

  • #12828: Fix a false positive for Lint/AssignmentInCondition if assigning inside a method call. ([@​earlopain][])
  • #12823: Fixed "uninitialized constant RuboCop::Lockfile::Bundler", caused when running RuboCop without bundler exec on codebases that use rubocop-rails. ([@​amomchilov][])

... (truncated)

Commits
  • 4c3045c Cut 1.63.5
  • c5ff510 Update Changelog
  • f7f3b5e Merge pull request #12890 from koic/add_ostruct_to_gemfile
  • 1d5ef36 Workaround for Ruby's warning in YARD
  • 9845aff Merge pull request #12886 from koic/suppress_interrupt_exception_for_lsp
  • 9e9caa6 Fix a build error
  • 63fc72d Fix docs for Style/SpecialGlobalVars use_builtin_english_names
  • 1ec4ef9 Suppress Interrupt exception for LSP
  • 49c6e92 Correct some example descriptions
  • 7f9595a Merge pull request #12882 from nekketsuuu/nekketsuuu-case-in-comment
  • Additional commits viewable in compare view

Updates yard from 0.9.34 to 0.9.36

Release notes

Sourced from yard's releases.

Release v0.9.36

  • Further XSS fixes for generated frameset pages (#1538)
  • Improve tests for Ruby 3.3 compatibility (#1519, #1531)
  • Documentation improvements (#1524)

Release v0.9.35

  • Fix possible XSS on generated YARD frameset pages (thanks to @​RedYetiDev for finding and patching) (2069e2b).
  • Fix errors when using @option on non-method objects (#1508)
  • Support Ruby 3.3 changes in Ripper parser (#1510)
Changelog

Sourced from yard's changelog.

0.9.36 - February 29th, 2024

  • Further XSS fixes for generated frameset pages (#1538)
  • Improve tests for Ruby 3.3 compatibility (#1519, #1531)
  • Documentation improvements (#1524)

0.9.35 - February 28th, 2024

  • Fix possible XSS on generated YARD frameset pages (thanks to @​RedYetiDev for finding and patching) (2069e2b).
  • Fix errors when using @option on non-method objects (#1508)
  • Support Ruby 3.3 changes in Ripper parser (#1510)
Commits

Updates minitest from 5.21.2 to 5.23.0

Changelog

Sourced from minitest's changelog.

=== 5.23.0 / 2024-05-15

  • 3 minor enhancements:

    • Added -Werror to raise on any warning output. (byroot)
    • Added UnexpectedWarning as a failure summary type, added count to output if activated.
    • Added minitest/manual_plugins.rb w/ new Minitest.load method. (tenderlove)

  • 2 bug fixes:

    • Allow empty_run! and reporter to display summary for empty runs. (zzak)
    • Make test task verbose using either rake's -v or -t (was just -t).

=== 5.22.3 / 2024-03-13

  • 1 minor enhancement:

    • MASSIVE improvement of minitest's pride plugin output: Frequencies doubled! Sine waves shifted!! Comments improved!!! Colors rotated!!!! (havenwood)

  • 3 bug fixes:

    • Improved wording on Minitest::Test#parallelize_me! to clarify it goes INSIDE your test class/describe.
    • Minor changes to tests to pass when tests ran with extra flags (eg -p).
    • Support Ruby 3.4's new error message format. (mame)

=== 5.22.2 / 2024-02-07

  • 1 bug fix:

    • Third time's a charm? Remember: 'ensure' is almost always the wrong way to go (for results... it's great for cleaning up).

=== 5.22.1 / 2024-02-06

  • 1 bug fix:

    • Don't exit non-zero if no tests ran and no filter (aka, the test file is empty). (I'm starting to think the exit 1 thing for @​tenderlove was a mistake...)

=== 5.22.0 / 2024-02-05

  • 1 minor enhancement:

    • Added "did you mean" output if your --name filter matches nothing. (tenderlove)

  • 2 bug fixes:

    • Big cleanup of test filtering. Much prettier / more functional.
    • Fix situation where Assertion#location can't find the location. (pftg)
Commits
  • b04feec Branching minitest to version 5.23.0
  • f0f17b9 + Added -Werror to raise on any warning output. (byroot)
  • 609f1ad Added testW0 rake task.
  • d6f62b9 Fixed specs task for pattern_match expectation mapping.
  • 56f5068 OMG... Rake.verbose returns Object.new if unset. Fixed by ruby/rake#567, but ...
  • 3f14f2a Updated versions/EOL for ruby/rails in readme
  • b2a4b43 + Added minitest/manual_plugins.rb w/ new Minitest.load method. (tenderlove)
  • 6a8f348 - Make test task verbose using either rake's -v or -t (was just -t).
  • 9594e87 - Allow empty_run! and reporter to display summary for empty runs. (zzak)
  • ea9caaf Ignore unused block. (ko1)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the patch-and-minor-dependencies group across 1 directory with 6…
3c5663f 
… updates

Bumps the patch-and-minor-dependencies group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [rake](https://github.com/ruby/rake) | `13.1.0` | `13.2.1` |
| [roda](https://github.com/jeremyevans/roda) | `3.76.0` | `3.80.0` |
| [htmlbeautifier](https://github.com/threedaymonk/htmlbeautifier) | `1.4.2` | `1.4.3` |
| [rubocop](https://github.com/rubocop/rubocop) | `1.60.2` | `1.63.5` |
| [yard](https://github.com/lsegal/yard) | `0.9.34` | `0.9.36` |
| [minitest](https://github.com/minitest/minitest) | `5.21.2` | `5.23.0` |



Updates `rake` from 13.1.0 to 13.2.1
- [Release notes](https://github.com/ruby/rake/releases)
- [Changelog](https://github.com/ruby/rake/blob/master/History.rdoc)
- [Commits](ruby/rake@v13.1.0...v13.2.1)

Updates `roda` from 3.76.0 to 3.80.0
- [Changelog](https://github.com/jeremyevans/roda/blob/master/CHANGELOG)
- [Commits](jeremyevans/roda@3.76.0...3.80.0)

Updates `htmlbeautifier` from 1.4.2 to 1.4.3
- [Changelog](https://github.com/threedaymonk/htmlbeautifier/blob/master/History.txt)
- [Commits](threedaymonk/htmlbeautifier@v1.4.2...v1.4.3)

Updates `rubocop` from 1.60.2 to 1.63.5
- [Release notes](https://github.com/rubocop/rubocop/releases)
- [Changelog](https://github.com/rubocop/rubocop/blob/master/CHANGELOG.md)
- [Commits](rubocop/rubocop@v1.60.2...v1.63.5)

Updates `yard` from 0.9.34 to 0.9.36
- [Release notes](https://github.com/lsegal/yard/releases)
- [Changelog](https://github.com/lsegal/yard/blob/main/CHANGELOG.md)
- [Commits](lsegal/yard@v0.9.34...v0.9.36)

Updates `minitest` from 5.21.2 to 5.23.0
- [Changelog](https://github.com/minitest/minitest/blob/master/History.rdoc)
- [Commits](minitest/minitest@v5.21.2...v5.23.0)

---
updated-dependencies:
- dependency-name: rake
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: patch-and-minor-dependencies
- dependency-name: roda
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: patch-and-minor-dependencies
- dependency-name: htmlbeautifier
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: patch-and-minor-dependencies
- dependency-name: rubocop
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: patch-and-minor-dependencies
- dependency-name: yard
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: patch-and-minor-dependencies
- dependency-name: minitest
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: patch-and-minor-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label May 18, 2024
@dependabot dependabot bot mentioned this pull request May 18, 2024
Closed
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github May 25, 2024

Superseded by #127.

@dependabot dependabot bot closed this May 25, 2024
@dependabot dependabot bot deleted the dependabot/bundler/patch-and-minor-dependencies-635e71f4d9 branch May 25, 2024 09:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@simonneutert simonneutert

Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@simonneutert