Closed depfu[bot] closed 7 months ago
All modified and coverable lines are covered by tests :white_check_mark:
Project coverage is 90.89%. Comparing base (
cfa73ba
) to head (9525edc
).
:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.
Closed in favor of #731.
🚨 Your current dependencies have known security vulnerabilities 🚨
This dependency update fixes known security vulnerabilities. Please see the details below and assess their impact carefully. We recommend to merge and deploy this as soon as possible!
Here is everything you need to know about this update. Please take a good look at what changed and the test results before merging this pull request.
What changed?
✳️ yard (0.9.34 → 0.9.35) · Repo · Changelog
Security Advisories 🚨
🚨 YARD's default template vulnerable to Cross-site Scripting in generated frames.html
Commits
See the full diff on Github. The new version differs by 16 commits:
Tag release v0.9.35
Prepare changelog
Update changelog
Merge pull request from GHSA-8mq4-9jjh-9xrc
Update frames.erb
Merge pull request #1508 from ksss/non-method-option
Fix error when `@option` with non-method
Merge pull request #1510 from MSP-Greg/00-ruby3.3-bom
Merge pull request #1511 from lsegal/dependabot/github_actions/actions/checkout-4
Bump actions/checkout from 3 to 4
Create dependabot.yml
Parser::SourceParser#convert_encoding - fixup BOM encoding
Merge pull request #1498 from technicalpickles/patch-1
Merge pull request #1506 from ksss/base-file-doc
Base#file might potentially return `nil`.
Fix typo in markdown_spec.rb
Depfu will automatically keep this PR conflict-free, as long as you don't add any commits to this branch yourself. You can also trigger a rebase manually by commenting with
@depfu rebase
.All Depfu comment commands