search

Scalingo / ruby-buildpack

Ruby Buildpack for Scalingo
MIT License
5 stars 13 forks source link

Bump excon from 0.76.0 to 0.87.0 #31

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps excon from 0.76.0 to 0.87.0.

Changelog

Sourced from excon's changelog.

0.87.0 2021-10-08

avoid sensitive data in header value errors by only including header keys

0.86.0 2021-10-01

prevent test suite stall on test server failure fix logging behavior for query hashes improve debbuging by reading server response during EPIPE errors update bundled certs

0.85.0 2021-07-16

fix socket datum regression introduced in #742

0.84.0 2021-07-07

update bundled certs

0.83.0 2021-06-28

add ssl_security_level option with pass through to ssl_context

0.82.0 2021-05-27

update actions/checkout update actions/stale update bundled certs

0.81.0 2021-04-28

add helper for converting headers to strings add ssl_proxy_headers datum key and usage pass datum to socket tweak logging middleware to allow Syslog::logger usage remove ruby 3 from allowed failures

0.80.1 2021-04-15

adjust error checking from 0.80.0 to support Ruby <2.3

... (truncated)

Commits
  • 8551154 v0.87.0
  • 58a8d95 Merge pull request #762 from grobie/master
  • 4f1d960 Stop leaking sensitive header values in error messages
  • f062ba5 v0.86.0
  • c76f4be update bundled certs
  • 5f384be Merge pull request #761 from stanhu/sh-epipe-show-server-response
  • dc10c8b [fix] Read server response during EPIPE
  • 973e581 Merge pull request #759 from carlfin/logging-instrumentor-queries-as-hash
  • bb90e2c [fix] untangle logfile names for tests
  • 61ee867 [fix] typo/syntax error on test code
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 2 years ago

The following labels could not be found: dependencies.

EtienneM commented 2 years ago

@dependabot ignore this dependency

Dependencies upgrades should be handled upstream

dependabot[bot] commented 2 years ago

OK, I won't notify you about excon again, unless you re-open this PR or update it yourself. 😢