Bump cancancan from 1.13.1 to 3.0.2

[dependabot-preview[bot]]

Bumps cancancan from 1.13.1 to 3.0.2.

Release notes

Sourced from cancancan's releases.

3.0.0

No release notes provided.

2.0.0

Check the CHANGELOG for the list of changes: https://github.com/CanCanCommunity/cancancan/blob/develop/CHANGELOG.rdoc

1.16.0

• Introduce rubocop and fixes most of the issues

1.15.0

• Add support for Rails 5 (craig1410)

Changelog

Sourced from cancancan's changelog.

3.0.2

• #590: Fix Rule#inspect when rule is created through a SQL array. ([@frostblooded][])
• #592: Prevent normalization of through polymorphic associations.([@eloyesp][])

3.0.1

• #583: Fix regression when using a method reference block. ([@coorasse][])

3.0.0

Please read the guide on migrating from CanCanCan 2.x to 3.0

• #560: Add support for Rails 6.0. ([@coorasse][])

• #489: Drop support for actions without a subject. ([@andrew-aladev][])

• #474: Allow to add attribute-level rules. ([@phaedryx][])

• #512: Removed automatic eager loading of associations for ActiveRecord >= 5.0. ([@kaspernj][])

• #575: Use the rules compressor when generating joins in accessible_by. ([@coorasse][])

• #444: Allow to use symbols when defining conditions over enums. ([@s-mage][])

• #538: Merge alias actions when merging abilities. ([@Jcambass][])

• #462: Add support to translate the model name in messages. ([@nyamadori][])

• #567: Extensively run tests on different databases (sqlite and postgres). ([@coorasse][])

• #566: Avoid queries on session dumps (speed up error pages). ([@coorasse][])

• #568: Automatically freeze strings in all files. ([@coorasse][])

• #577: Normalise rules traversing associations to reduce the number of joins. ([@coorasse][])

2.3.0 (Sep 16th, 2018)

• #528: Compress irrelevant rules before generating a query to optimize performances. ([@coorasse][])
• #529: Remove ruby 2.2 from Travis and add ruby 2.5.1. ([@coorasse][])
• #530: Predict associations names to support multiple references to the same table. ([@coorasse][])
• #530: Raise a specific exception when using a wrong association name in rules definition. ([@coorasse][])

2.2.0 (Apr 13th, 2018)

• #482: Include conditions passed to authorize! in AccessDenied exception. ([@kraflab][])
• Removed support for dynamic finders. ([@coorasse][])
• #479: Support Rails 5.2. ([@lizzyaustad][])
• Use ActiveSupport standard loader. ([@BookOfGreg][])

2.1.4 (Apr 09th, 2018)

• Inject cancancan in ActionController::API and ActionController::Base when they are both defined. ([@arturoherrero][])

2.1.3 (Jan 16th, 2018)

• Fix compatibility with Rails 5 API. ([@Eric-Guo][])

2.1.2 (Nov 22th, 2017)

... (truncated)

Commits

• 5ce3666 Merge branch 'release/3.0.2'
• 6e08972 Bump version
• ca93c9e Update accessible_by_has_many_through_spec.rb (#603)
• ad455b7 Fix Rule#inspect when rule is created through a SQL array (#590)
• 002edf9 README: Typo in Ability example (#591)
• 2236e25 Prevent normalization of polymorphic association (#592)
• 24f3b54 Update to rails 6.0.0 (#597)
• b2e5660 Merge branch 'release/3.0.1' into develop
• 61bfbc1 Merge branch 'release/3.0.1'
• 03b00a0 Bump version
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)