Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump sinatra and rack-protection #54

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump sinatra and rack-protection #54

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Feb 17, 2022

Bumps sinatra and rack-protection. These dependencies needed to be updated together.
Updates sinatra from 1.4.8 to 2.2.0

Changelog

Sourced from sinatra's changelog.

2.2.0 / 2022-02-15

  • Handle EOFError raised by Rack and return Bad Request 400 status. #1743 by tamazon

  • Update README.es.md with removal of Thin. #1630 by Espartaco Palma

  • Minor refactors in base.rb. #1640 by ceclinux

  • Fixed typos in german README.md. #1648 by Juri

  • Add escaping to the static 404 page. #1645 by Chris Gavin

  • Remove detect_rack_handler method. #1652 by ceclinux

  • Respect content type set in superclass before filter. Fixes #1647 #1649 by Jordan Owens

  • Update README.ja.md with removal of Thin. #1629 by Ryuichi KAWAMATA

  • Revert "Use prepend instead of include for helpers. #1662 by namusyaka

  • Various minor fixes to README.md. #1663 by Yanis Zafirópulos

  • Document when dump_errors is enabled. Fixes #1664 #1665 by Patrik Ragnarsson

  • Update README.pt-br.md. #1668 by Vitor Oliveira

  • Fix usage of inherited Sinatra::Base classes keyword arguments. Fixes #1669 #1670 by Cadu Ribeiro

  • Reduce RDoc generation time by not including every README. Fixes #1578 #1671 by Eloy Pérez

  • Add support for per form csrf tokens. Fixes #1616 #1653 by Jordan Owens

  • Update MAINTENANCE.md with the stable branch status. #1681 by Fredrik Rubensson

  • Validate expanded path matches public_dir when serving static files. #1683 by cji-stripe

  • Fix Delegator to pass keyword arguments for Ruby 3.0. #1684 by andrewtblake

  • Fix use with keyword arguments for Ruby 3.0. #1701 by Robin Wallin

  • Fix memory leaks for proc template. Fixes #1704 #1719 by Slevin

  • Remove unnecessary test_files from the gemspec. #1712 by Masataka Pocke Kuwabara

  • Add #select, #reject and #compact methods to Sinatra::IndifferentHash. #1711 by Olivier Bellone

CI

  • Use latest JRuby 9.2.16.0 on CI. #1682 by Olle Jonsson

... (truncated)

Commits
  • 44ce685 Bump version to 2.2.0
  • 759a8eb Block invalid requests instead of raising error
  • f6cee1c Merge pull request #1743 from tamazon/fix_EOFError
  • 59d8b26 Merge pull request #1733 from epergo/ep/update-changelog
  • c29749d lock rack version to 2.0 for now
  • df65a73 Handle EOFError raised by Rack
  • d1597ab Update changelog since last release
  • e69b6b9 Merge pull request #1728 from olleolleolle/patch-4
  • a6554e3 chore: Drop boilerplate comments
  • d6ba201 Remove ruby head from build
  • Additional commits viewable in compare view

Updates rack-protection from 1.5.5 to 2.2.0

Changelog

Sourced from rack-protection's changelog.

2.2.0 / 2022-02-15

  • Handle EOFError raised by Rack and return Bad Request 400 status. #1743 by tamazon

  • Update README.es.md with removal of Thin. #1630 by Espartaco Palma

  • Minor refactors in base.rb. #1640 by ceclinux

  • Fixed typos in german README.md. #1648 by Juri

  • Add escaping to the static 404 page. #1645 by Chris Gavin

  • Remove detect_rack_handler method. #1652 by ceclinux

  • Respect content type set in superclass before filter. Fixes #1647 #1649 by Jordan Owens

  • Update README.ja.md with removal of Thin. #1629 by Ryuichi KAWAMATA

  • Revert "Use prepend instead of include for helpers. #1662 by namusyaka

  • Various minor fixes to README.md. #1663 by Yanis Zafirópulos

  • Document when dump_errors is enabled. Fixes #1664 #1665 by Patrik Ragnarsson

  • Update README.pt-br.md. #1668 by Vitor Oliveira

  • Fix usage of inherited Sinatra::Base classes keyword arguments. Fixes #1669 #1670 by Cadu Ribeiro

  • Reduce RDoc generation time by not including every README. Fixes #1578 #1671 by Eloy Pérez

  • Add support for per form csrf tokens. Fixes #1616 #1653 by Jordan Owens

  • Update MAINTENANCE.md with the stable branch status. #1681 by Fredrik Rubensson

  • Validate expanded path matches public_dir when serving static files. #1683 by cji-stripe

  • Fix Delegator to pass keyword arguments for Ruby 3.0. #1684 by andrewtblake

  • Fix use with keyword arguments for Ruby 3.0. #1701 by Robin Wallin

  • Fix memory leaks for proc template. Fixes #1704 #1719 by Slevin

  • Remove unnecessary test_files from the gemspec. #1712 by Masataka Pocke Kuwabara

  • Add #select, #reject and #compact methods to Sinatra::IndifferentHash. #1711 by Olivier Bellone

CI

  • Use latest JRuby 9.2.16.0 on CI. #1682 by Olle Jonsson

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump sinatra and rack-protection
fbbdf9c 
Bumps [sinatra](https://github.com/sinatra/sinatra) and [rack-protection](https://github.com/sinatra/sinatra). These dependencies needed to be updated together.

Updates `sinatra` from 1.4.8 to 2.2.0
- [Release notes](https://github.com/sinatra/sinatra/releases)
- [Changelog](https://github.com/sinatra/sinatra/blob/master/CHANGELOG.md)
- [Commits](sinatra/sinatra@v1.4.8...v2.2.0)

Updates `rack-protection` from 1.5.5 to 2.2.0
- [Release notes](https://github.com/sinatra/sinatra/releases)
- [Changelog](https://github.com/sinatra/sinatra/blob/master/CHANGELOG.md)
- [Commits](https://github.com/sinatra/sinatra/commits/v2.2.0)

---
updated-dependencies:
- dependency-name: sinatra
  dependency-type: direct:production
  update-type: version-update:semver-major
- dependency-name: rack-protection
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 17, 2022
@dependabot dependabot bot mentioned this pull request Feb 17, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants