🚨 [security] Update rubocop: 0.81.0 → 1.11.0 (major) #334
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
🚨 Your current dependencies have known security vulnerabilities 🚨
This dependency update fixes known security vulnerabilities. Please see the details below and assess their impact carefully. We recommend to merge and deploy this as soon as possible!
Here is everything you need to know about this update. Please take a good look at what changed and the test results before merging this pull request.
What changed?
✳️ rubocop (0.81.0 → 1.11.0) · Repo · Changelog
Release Notes
Too many releases to show here. View the full release notes.
Commits
See the full diff on Github. The new version differs by more commits than we can show here.
✳️ capybara (3.33.0 → 3.35.3) · Repo · Changelog
Release Notes
3.35.3 (from changelog)
3.35.2 (from changelog)
3.35.1 (from changelog)
3.35.0 (from changelog)
3.34.0 (from changelog)
Does any of this look wrong? Please let us know.
Commits
See the full diff on Github. The new version differs by more commits than we can show here.
Commits
See the full diff on Github. The new version differs by 12 commits:
Bump version.
Run tests using github actions (#32)
added dummy test github action
Enable matching with `Node#deconstruct` (#31)
Add Truffleruby head to CI
Bump version.
Fixed AST::Node#updated to always return a copy. (#25)
Removed unused dependencies from gemspec.
update ci
bump rake
Only ship the necessary library files in the gem artifact
Fix typo.
Release Notes
2.5.0
Does any of this look wrong? Please let us know.
Commits
See the full diff on Github. The new version differs by 10 commits:
version bump to v2.5.0
update CHANGELOG
ci: ensure bundler is up-to-date
ci: ensure bundler is up-to-date
ci: update concourse, split pipelines into master and pr
rakefile: rufo formatting
gemspec: update dev dep for bundler
gemspec: rufo formatting
Merge pull request #90 from hanazuki/multiple-pubkeys
Remove all the imported pubkeys from keyring
Security Advisories 🚨
🚨 Nokogiri::XML::Schema trusts input by default, exposing risk of an XXE vulnerability
Release Notes
1.11.1
1.11.0
Does any of this look wrong? Please let us know.
Commits
See the full diff on Github. The new version differs by more commits than we can show here.
Commits
See the full diff on Github. The new version differs by 22 commits:
v1.20.1
Merge pull request #287 from grosser/grosser/eol
bring back ruby 2.4 since that broke rubocop builds because of some dependency foobar
Merge pull request #288 from grosser/grosser/ga
use GA
v1.20.0
Merge pull request #285 from grosser/grosser/break
allow breaking with value
Merge pull request #278 from grosser/grosser/ci
remove cert
fix errors
bump rake to fix warnings
bump rails
bump ruby requirements
bump AR
fix ci
v1.19.2
Merge pull request #277 from grosser/grosser/timeout
Allow timeout usage inside of threads
simplify activerecord wording
Merge pull request #272 from kakra/fixes/issue-150
docs: Improve notes about ActiveRecord
Release Notes
3.0.0.0 (from changelog)
2.7.2.0 (from changelog)
2.7.1.5 (from changelog)
2.7.1.4 (from changelog)
2.7.1.3 (from changelog)
2.7.1.0 (from changelog)
Does any of this look wrong? Please let us know.
Commits
See the full diff on Github. The new version differs by more commits than we can show here.
Release Notes
4.0.6 (from changelog)
Does any of this look wrong? Please let us know.
Commits
See the full diff on Github. The new version differs by 6 commits:
Release 4.0.6
Last release with 2.3
Ignore rubocop cop
Update rubocop
Updated definitions
Fix key duplication in codecov.yml (#175)
Commits
See the full diff on Github. The new version differs by 61 commits:
Release v2.1.1
Require base error where it is needed
Avoid calling #__dir__ during load time
Add js_regex to gouteur testing
Release v2.1.0
Inherit from a base error class to support catch-all
Add gouteur testing
Fix escape tokenization in sets
Fix a few #dup methods and Group::Options#dup,#clone
Support meta/control escapes within sets
Typo
Spacing
Simplify lookup
Clean up Parser a bit ...
Update dev dep
Fix scanning of some exotic ref/call ids
Fix scanning of \g<0>, \g'0' after f2e700b
Prefer __dir__ or require_relative over __FILE__
Add basic rubocop linting
Release v2.0.3
Dont raise when encountering collation/equivalent lookalikes
Fix Syntax lookup error ancestry
Release v2.0.2
Merge pull request #77 from dgollahon/allow-calling-to_s-on-frozen-passive-groups
Support `#to_s` on frozen Group::Passive
Merge pull request #78 from dgollahon/address-linter-flags
Add parentheses around assignments in conditions
Remove unused block arguments
Remove unused &block captures
Underscore unused arguments
Add missing text assertion for quantifiers
Release v2.0.1
Fix scanning of single-xdigit hex escapes ...
Support a wider range of group names ...
Update README.md
Fix workflow syntax
Use GitHub actions
Release v2.0.0
Merge pull request #69 from ammar/handle_chained_quantifiers
Add simple handling/workaround for chained quantifiers
Remove deprecated methods
Always use UTF-8 encoding, not just for literals
Merge pull request #73 from ammar/use_character_indices
Provide character- instead of byte-based indices ...
Add Regexp::Expression::Base#base_length
Release v1.8.2
Remove warning on Ruby 3.x
Merge pull request #71 from twalpole/range_patch
Don't modify range for Ruby 2.7+
Update README.md
Release v1.8.1
Fix scanning of comment-like text in normal mode ...
Specify correct minimum ruby after 7c4d268
Release v1.8.0
Merge pull request #68 from owst/allow_options_when_parsing_strings
fixup! Allow options to be passed when processing a String pattern
Allow options to be passed when processing a String pattern
Support \g, \k without group id as literal escapes
Let travis build all branches
Merge pull request #67 from owst/allow_no_whitespace_comments
Allow no-whitespace and single-line comments (#66)
Release Notes
1.11.0 (from changelog)
Does any of this look wrong? Please let us know.
Commits
See the full diff on Github. The new version differs by more commits than we can show here.
🆕 racc (added, 1.5.2)
🆕 rubocop-ast (added, 1.4.1)
🗑️ jaro_winkler (removed)
Depfu will automatically keep this PR conflict-free, as long as you don't add any commits to this branch yourself. You can also trigger a rebase manually by commenting with
@depfu rebase
.All Depfu comment commands