Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump the bundler group group in /appengine/flexible/ruby31-and-earlier/rails-hello_world with 4 updates #1409

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

build(deps): bump the bundler group group in /appengine/flexible/ruby31-and-earlier/rails-hello_world with 4 updates #1409

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 27, 2024

Bumps the bundler group group in /appengine/flexible/ruby31-and-earlier/rails-hello_world with 4 updates: rails, sass-rails, rspec-rails and web-console.

Updates rails from 5.2.8.1 to 7.1.3.2

Release notes

Sourced from rails's releases.

v7.1.3.2

Active Support

  • No changes.

Active Model

  • No changes.

Active Record

  • No changes.

Action View

  • No changes.

Action Pack

  • Fix raise_on_missing_translations not working correctly with the translate method in controllers after the patch for CVE-2024-26143.

Active Job

  • No changes.

Action Mailer

  • No changes.

Action Cable

  • No changes.

... (truncated)

Commits
  • 6f0d1ad Preparing for 7.1.3.2 release
  • c25f0fc Respect raise_on_missing_ in controller
  • d73ed95 Preparing for 7.1.3.1 release
  • 43037d8 update changelog
  • 5187a9e fix XSS vulnerability when using translation
  • b4d3bfb Fix ReDoS in accept header scanning
  • 36c1591 Preparing for 7.1.3 release
  • a84622f Sync changelog
  • 1f505f0 Merge pull request #50771 from rails/backport-preview-nplus1
  • d8a8dd9 Merge pull request #50758 from rails/fix-video-preview-nplus1
  • Additional commits viewable in compare view

Updates sass-rails from 5.0.7 to 6.0.0

Release notes

Sourced from sass-rails's releases.

6.0.0

Breaking change

Commits
  • a77240c Prepare to 6.0.0
  • 8dbe4dc Bump version to 6.0.0.beta3
  • 830a8ec Bump minimum version of sassc-rails
  • ff54c20 Fix open-ended dependency
  • ebe9ef7 Bump version to v6.0.0.beta2
  • 409d871 Merge pull request #424 from rails/sassc-rails
  • d809900 Recomend to use SassC::Rails::Importer to users requiring sass/rails/importer
  • 706526d Make sass-rails an wrapper for sassc-rails to allow a smooth upgrade path
  • ac38f1e Merge pull request #423 from gregmolnar/master
  • d61b999 remove gemnasium badge from readme
  • Additional commits viewable in compare view

Updates rspec-rails from 3.7.2 to 6.1.2

Changelog

Sourced from rspec-rails's changelog.

6.1.2 / 2024-03-19

Full Changelog

Bug Fixes:

  • Fix generated mailer paths to match Rails convention. (Patrício dos Santos, #2735)
  • Fix class in template for generator specs. (Nicolas Buduroi, #2744)

6.1.1 / 2024-01-25

Full Changelog

Bug Fixes:

  • Improved deprecation message for RSpec::Rails::Configuration.fixture_paths (Benoit Tigeot, #2720)
  • Fix support for namespaced fixtures in Rails 7.1. (Benedikt Deicke, #2716)

6.1.0 / 2023-11-21

Full Changelog

Enhancements:

  • Support for Rails 7.1
  • Minor tweak to generated rails_helper.rb to use Rails.root.join. (@​masato-bkn, Ryo Nakamura, #2640, #2678)
  • Add RSpec::Rails::Configuration.fixture_paths configuration to support the matching change to ActiveRecord::TestFixtures, previous singular form is deprecated and will be removed in Rails 7.2. (Juan Gueçaimburu, #2673)
  • Add send_email matcher to match emails rather than specific jobs. (Andrei Kaleshka, #2670)
  • When using render in view specs, :locals will now be merged into the default implicit template, allowing render locals: {...} style calls. (Jon Rowe, #2686)
  • Add support for Rails.config.action_mailer.preview_paths on Rails 7.1/ (Jon Rowe, #2706)

6.0.4 / 2023-11-21

Full Changelog

Bug Fixes:

  • Fuzzy match have_broadcasted_to so that argument matchers can be used. (Timothy Peraza, #2684)
  • Fix fixture warning during :context hooks on Rails main. (Jon Rowe, #2685)
  • Fix stub_template on Rails main. (Jon Rowe, #2685)
  • Fix variable name in scaffolded view specs when namespaced. (Taketo Takashima, #2694)
  • Prevent take_failed_screenshot producing an additional error through metadata access. (Jon Rowe, #2704)
  • Use ActiveSupport::ExecutionContext::TestHelper on Rails 7+. (Jon Rowe, #2711)
  • Fix leak of templates stubbed with stub_template on Rails 7.1. (Jon Rowe, #2714)

... (truncated)

Commits

Updates web-console from 3.6.2 to 4.2.1

Release notes

Sourced from web-console's releases.

4.2.1

What's Changed

  • Support to Rails 7.1
  • Support to Rack 3.0

New Contributors

Full Changelog: rails/web-console@v4.2.0...v4.2.1

4.2.0

4.1.0

4.0.4

4.0.3

... (truncated)

Changelog

Sourced from web-console's changelog.

4.2.1

  • Support to Rails 7.1
  • Support to Rack 3.0

4.2.0

4.1.0

4.0.4

4.0.3

4.0.2

4.0.1

4.0.0

3.7.0

Commits
  • a3b7c2a Prepare for 4.2.1
  • 8c1670f Merge pull request #332 from JoeDupuis/support-rack-2-and-3
  • 33f6d58 [FIX #331] Add simultaneous support for both Rack 2 and 3
  • 4f7e392 Test with all supported versions of Rails
  • 7536fb0 Test with Ruby 3.2
  • 11efc57 Only adds the deprecator in the app if Rails supports it
  • dc3df04 Remove warning by defining the constant in the right place
  • 405d4af Add devcontainer config
  • 3cb71a1 Merge pull request #325 from etiennebarrie/use-dedicated-deprecator
  • d07fa6a Use a dedicated ActiveSupport::Deprecation object
  • Additional commits viewable in compare view

Updates sass-rails from 5.0.7 to 6.0.0

Release notes

Sourced from sass-rails's releases.

6.0.0

Breaking change

Commits
  • a77240c Prepare to 6.0.0
  • 8dbe4dc Bump version to 6.0.0.beta3
  • 830a8ec Bump minimum version of sassc-rails
  • ff54c20 Fix open-ended dependency
  • ebe9ef7 Bump version to v6.0.0.beta2
  • 409d871 Merge pull request #424 from rails/sassc-rails
  • d809900 Recomend to use SassC::Rails::Importer to users requiring sass/rails/importer
  • 706526d Make sass-rails an wrapper for sassc-rails to allow a smooth upgrade path
  • ac38f1e Merge pull request #423 from gregmolnar/master
  • d61b999 remove gemnasium badge from readme
  • Additional commits viewable in compare view

Updates rspec-rails from 3.7.2 to 6.1.2

Changelog

Sourced from rspec-rails's changelog.

6.1.2 / 2024-03-19

Full Changelog

Bug Fixes:

  • Fix generated mailer paths to match Rails convention. (Patrício dos Santos, #2735)
  • Fix class in template for generator specs. (Nicolas Buduroi, #2744)

6.1.1 / 2024-01-25

Full Changelog

Bug Fixes:

  • Improved deprecation message for RSpec::Rails::Configuration.fixture_paths (Benoit Tigeot, #2720)
  • Fix support for namespaced fixtures in Rails 7.1. (Benedikt Deicke, #2716)

6.1.0 / 2023-11-21

Full Changelog

Enhancements:

  • Support for Rails 7.1
  • Minor tweak to generated rails_helper.rb to use Rails.root.join. (@​masato-bkn, Ryo Nakamura, #2640, #2678)
  • Add RSpec::Rails::Configuration.fixture_paths configuration to support the matching change to ActiveRecord::TestFixtures, previous singular form is deprecated and will be removed in Rails 7.2. (Juan Gueçaimburu, #2673)
  • Add send_email matcher to match emails rather than specific jobs. (Andrei Kaleshka, #2670)
  • When using render in view specs, :locals will now be merged into the default implicit template, allowing render locals: {...} style calls. (Jon Rowe, #2686)
  • Add support for Rails.config.action_mailer.preview_paths on Rails 7.1/ (Jon Rowe, #2706)

6.0.4 / 2023-11-21

Full Changelog

Bug Fixes:

  • Fuzzy match have_broadcasted_to so that argument matchers can be used. (Timothy Peraza, #2684)
  • Fix fixture warning during :context hooks on Rails main. (Jon Rowe, #2685)
  • Fix stub_template on Rails main. (Jon Rowe, #2685)
  • Fix variable name in scaffolded view specs when namespaced. (Taketo Takashima, #2694)
  • Prevent take_failed_screenshot producing an additional error through metadata access. (Jon Rowe, #2704)
  • Use ActiveSupport::ExecutionContext::TestHelper on Rails 7+. (Jon Rowe, #2711)
  • Fix leak of templates stubbed with stub_template on Rails 7.1. (Jon Rowe, #2714)

... (truncated)

Commits

Updates web-console from 3.6.2 to 4.2.1

Release notes

Sourced from web-console's releases.

4.2.1

What's Changed

  • Support to Rails 7.1
  • Support to Rack 3.0

New Contributors

Full Changelog: rails/web-console@v4.2.0...v4.2.1

4.2.0

4.1.0

4.0.4

4.0.3

... (truncated)

Changelog

Sourced from web-console's changelog.

4.2.1

  • Support to Rails 7.1
  • Support to Rack 3.0

4.2.0

4.1.0

4.0.4

4.0.3

4.0.2

4.0.1

4.0.0

3.7.0

Commits
  • a3b7c2a Prepare for 4.2.1
  • 8c1670f Merge pull request #332 from JoeDupuis/support-rack-2-and-3
  • 33f6d58 [FIX #331] Add simultaneous support for both Rack 2 and 3
  • 4f7e392 Test with all supported versions of Rails
  • 7536fb0 Test with Ruby 3.2
  • 11efc57 Only adds the deprecator in the app if Rails supports it
  • dc3df04 Remove warning by defining the constant in the right place
  • 405d4af Add devcontainer config
  • 3cb71a1 Merge pull request #325 from etiennebarrie/use-dedicated-deprecator
  • d07fa6a Use a dedicated ActiveSupport::Deprecation object
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
build(deps): bump the bundler group group
0c35ffb 
Bumps the bundler group group in /appengine/flexible/ruby31-and-earlier/rails-hello_world with 4 updates: [rails](https://github.com/rails/rails), [sass-rails](https://github.com/rails/sass-rails), [rspec-rails](https://github.com/rspec/rspec-rails) and [web-console](https://github.com/rails/web-console).


Updates `rails` from 5.2.8.1 to 7.1.3.2
- [Release notes](https://github.com/rails/rails/releases)
- [Commits](rails/rails@v5.2.8.1...v7.1.3.2)

Updates `sass-rails` from 5.0.7 to 6.0.0
- [Release notes](https://github.com/rails/sass-rails/releases)
- [Commits](rails/sass-rails@v5.0.7...v6.0.0)

Updates `rspec-rails` from 3.7.2 to 6.1.2
- [Changelog](https://github.com/rspec/rspec-rails/blob/main/Changelog.md)
- [Commits](rspec/rspec-rails@v3.7.2...v6.1.2)

Updates `web-console` from 3.6.2 to 4.2.1
- [Release notes](https://github.com/rails/web-console/releases)
- [Changelog](https://github.com/rails/web-console/blob/main/CHANGELOG.markdown)
- [Commits](rails/web-console@v3.6.2...v4.2.1)

Updates `sass-rails` from 5.0.7 to 6.0.0
- [Release notes](https://github.com/rails/sass-rails/releases)
- [Commits](rails/sass-rails@v5.0.7...v6.0.0)

Updates `rspec-rails` from 3.7.2 to 6.1.2
- [Changelog](https://github.com/rspec/rspec-rails/blob/main/Changelog.md)
- [Commits](rspec/rspec-rails@v3.7.2...v6.1.2)

Updates `web-console` from 3.6.2 to 4.2.1
- [Release notes](https://github.com/rails/web-console/releases)
- [Changelog](https://github.com/rails/web-console/blob/main/CHANGELOG.markdown)
- [Commits](rails/web-console@v3.6.2...v4.2.1)

---
updated-dependencies:
- dependency-name: rails
  dependency-type: direct:production
  dependency-group: bundler-security-group
- dependency-name: sass-rails
  dependency-type: direct:production
  dependency-group: bundler-security-group
- dependency-name: rspec-rails
  dependency-type: direct:development
  dependency-group: bundler-security-group
- dependency-name: web-console
  dependency-type: direct:development
  dependency-group: bundler-security-group
- dependency-name: sass-rails
  dependency-type: direct:production
  dependency-group: bundler-security-group
- dependency-name: rspec-rails
  dependency-type: direct:development
  dependency-group: bundler-security-group
- dependency-name: web-console
  dependency-type: direct:development
  dependency-group: bundler-security-group
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested review from a team as code owners March 27, 2024 14:42
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Mar 27, 2024
@dependabot dependabot bot mentioned this pull request Mar 27, 2024
Closed
@trusted-contributions-gcf trusted-contributions-gcf bot added the kokoro:force-run Add this label to force Kokoro to re-run the tests. label Mar 27, 2024
@product-auto-label product-auto-label bot added the samples Issues that are directly related to samples. label Mar 27, 2024
@kokoro-team kokoro-team removed the kokoro:force-run Add this label to force Kokoro to re-run the tests. label Mar 27, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code samples Issues that are directly related to samples.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@kokoro-team