search

TracksApp / tracks

Tracks is a GTD™ web application, built with Ruby on Rails
https://www.getontracks.org/
GNU General Public License v2.0
1.17k stars 537 forks source link

Bump pg from 1.5.4 to 1.5.6 #3012

Closed dependabot[bot] closed 2 months ago

dependabot[bot] commented 2 months ago

Bumps pg from 1.5.4 to 1.5.6.

Changelog

Sourced from pg's changelog.

v1.5.6 [2024-03-01] Lars Kanis lars@greiz-reinsdorf.de

  • Renew address resolution (DNS) in conn.reset. #558 This is important, if DNS is used for load balancing, etc.
  • Make bigdecimal an optional dependency. #556 It's a gem in ruby-3.4+, so that users shouldn't be forced to use it.

v1.5.5 [2024-02-15] Lars Kanis lars@greiz-reinsdorf.de

  • Explicitly retype timespec fields to int64_t to fix compatibility with 32bit arches. #547
  • Fix possible buffer overflows in PG::BinaryDecoder::CopyRow on 32 bit systems. #548
  • Add binary Windows gems for Ruby 3.3.
  • Update Windows fat binary gem to OpenSSL-3.2.1 and PostgreSQL-16.2.
Commits
  • c59ca8f Add renewed certificate for x509 signature of gem releases
  • caf11ba Bump VERSION to 1.5.6
  • 91cdac8 Add release notes for pg-1.5.6
  • 27d7c2a Merge pull request #559 from larskanis/reset-with-dns
  • 016c17c libpq resolves the host address while PQreset, but ruby-pg doesn't. This is b...
  • 21ca5cc Merge pull request #556 from larskanis/optional-bigdecimal
  • 5804665 Make bigdecimal an optional dependency
  • daec80f Add release notes for pg-1.5.5
  • 72cdd6b Add ruby-3.3 to windows binary gems
  • d99a6b4 Bump VERSION to 1.5.5
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)