search

Vonage / vonage-ruby-code-snippets

Ruby code examples for working with Vonage
MIT License
8 stars 9 forks source link

Update dependency sinatra to v2.2.3 (master) #102

Open mend-for-github-com[bot] opened 8 months ago

mend-for-github-com[bot] commented 8 months ago

This PR contains the following updates:

Package Update Change
sinatra (source, changelog) minor '2.1.0' -> '2.2.3'

By merging this PR, the issue #86 will be automatically resolved and closed:

Severity CVSS Score CVE Reachability
High High 8.8 CVE-2022-45442
High High 7.5 CVE-2022-29970

Release Notes

sinatra/sinatra (sinatra) ### [`v2.2.3`](https://redirect.github.com/sinatra/sinatra/blob/HEAD/CHANGELOG.md#223--2022-11-25) [Compare Source](https://redirect.github.com/sinatra/sinatra/compare/v2.2.2...v2.2.3) - Fix: Escape filename in the Content-Disposition header. [#​1841](https://redirect.github.com/sinatra/sinatra/pull/1841) by Kunpei Sakai - Fix: fixed ReDoS for Rack::Protection::IPSpoofing. [#​1823](https://redirect.github.com/sinatra/sinatra/pull/1823) by [@​ooooooo-q](https://redirect.github.com/ooooooo-q) ### [`v2.2.2`](https://redirect.github.com/sinatra/sinatra/blob/HEAD/CHANGELOG.md#222--2022-07-23) [Compare Source](https://redirect.github.com/sinatra/sinatra/compare/v2.2.1...v2.2.2) - Update mustermann dependency to version 2. ### [`v2.2.1`](https://redirect.github.com/sinatra/sinatra/blob/HEAD/CHANGELOG.md#221--2022-07-15) [Compare Source](https://redirect.github.com/sinatra/sinatra/compare/v2.2.0...v2.2.1) - Fix JRuby regression by using ruby2\_keywords for delegation. [#​1750](https://redirect.github.com/sinatra/sinatra/issues/1750) by Patrik Ragnarsson - Add JRuby to CI. [#​1755](https://redirect.github.com/sinatra/sinatra/issues/1755) by Karol Bucek ### [`v2.2.0`](https://redirect.github.com/sinatra/sinatra/blob/HEAD/CHANGELOG.md#220--2022-02-15) [Compare Source](https://redirect.github.com/sinatra/sinatra/compare/v2.1.0...v2.2.0) - Breaking change: Add `#select`, `#reject` and `#compact` methods to `Sinatra::IndifferentHash`. If hash keys need to be converted to symbols, call `#to_h` to get a `Hash` instance first. [#​1711](https://redirect.github.com/sinatra/sinatra/pull/1711) by Olivier Bellone - Handle EOFError raised by Rack and return Bad Request 400 status. [#​1743](https://redirect.github.com/sinatra/sinatra/pull/1743) by tamazon - Minor refactors in `base.rb`. [#​1640](https://redirect.github.com/sinatra/sinatra/pull/1640) by ceclinux - Add escaping to the static 404 page. [#​1645](https://redirect.github.com/sinatra/sinatra/pull/1645) by Chris Gavin - Remove `detect_rack_handler` method. [#​1652](https://redirect.github.com/sinatra/sinatra/pull/1652) by ceclinux - Respect content type set in superclass before filter. Fixes [#​1647](https://redirect.github.com/sinatra/sinatra/issues/1647) [#​1649](https://redirect.github.com/sinatra/sinatra/pull/1649) by Jordan Owens - *Revert "Use prepend instead of include for helpers.* [#​1662](https://redirect.github.com/sinatra/sinatra/pull/1662) by namusyaka - Fix usage of inherited `Sinatra::Base` classes keyword arguments. Fixes [#​1669](https://redirect.github.com/sinatra/sinatra/issues/1669) [#​1670](https://redirect.github.com/sinatra/sinatra/pull/1670) by Cadu Ribeiro - Reduce RDoc generation time by not including every README. Fixes [#​1578](https://redirect.github.com/sinatra/sinatra/issues/1578) [#​1671](https://redirect.github.com/sinatra/sinatra/pull/1671) by Eloy Pérez - Add support for per form csrf tokens. Fixes [#​1616](https://redirect.github.com/sinatra/sinatra/issues/1616) [#​1653](https://redirect.github.com/sinatra/sinatra/pull/1653) by Jordan Owens - Update MAINTENANCE.md with the `stable` branch status. [#​1681](https://redirect.github.com/sinatra/sinatra/pull/1681) by Fredrik Rubensson - Validate expanded path matches `public_dir` when serving static files. [#​1683](https://redirect.github.com/sinatra/sinatra/pull/1683) by cji-stripe - Fix Delegator to pass keyword arguments for Ruby 3.0. [#​1684](https://redirect.github.com/sinatra/sinatra/pull/1684) by andrewtblake - Fix use with keyword arguments for Ruby 3.0. [#​1701](https://redirect.github.com/sinatra/sinatra/pull/1701) by Robin Wallin - Fix memory leaks for proc template. Fixes [#​1704](https://redirect.github.com/sinatra/sinatra/issues/1714) [#​1719](https://redirect.github.com/sinatra/sinatra/pull/1719) by Slevin - Remove unnecessary `test_files` from the gemspec. [#​1712](https://redirect.github.com/sinatra/sinatra/pull/1712) by Masataka Pocke Kuwabara - Docs: Spanish documentation: Update README.es.md with removal of Thin. [#​1630](https://redirect.github.com/sinatra/sinatra/pull/1630) by Espartaco Palma - Docs: German documentation: Fixed typos in German README.md. [#​1648](https://redirect.github.com/sinatra/sinatra/pull/1648) by Juri - Docs: Japanese documentation: Update README.ja.md with removal of Thin. [#​1629](https://redirect.github.com/sinatra/sinatra/pull/1629) by Ryuichi KAWAMATA - Docs: English documentation: Various minor fixes to README.md. [#​1663](https://redirect.github.com/sinatra/sinatra/pull/1663) by Yanis Zafirópulos - Docs: English documentation: Document when `dump_errors` is enabled. Fixes [#​1664](https://redirect.github.com/sinatra/sinatra/issues/1664) [#​1665](https://redirect.github.com/sinatra/sinatra/pull/1665) by Patrik Ragnarsson - Docs: Brazilian Portuguese documentation: Update README.pt-br.md with translation fixes. [#​1668](https://redirect.github.com/sinatra/sinatra/pull/1668) by Vitor Oliveira ##### CI - Use latest JRuby 9.2.16.0 on CI. [#​1682](https://redirect.github.com/sinatra/sinatra/pull/1682) by Olle Jonsson - Switch CI from travis to GitHub Actions. [#​1691](https://redirect.github.com/sinatra/sinatra/pull/1691) by namusyaka - Skip the Slack action if `secrets.SLACK_WEBHOOK` is not set. [#​1705](https://redirect.github.com/sinatra/sinatra/pull/1705) by Robin Wallin - Small CI improvements. [#​1703](https://redirect.github.com/sinatra/sinatra/pull/1703) by Robin Wallin - Drop auto-generated boilerplate comments from CI configuration file. [#​1728](https://redirect.github.com/sinatra/sinatra/pull/1728) by Olle Jonsson ##### sinatra-contrib - Do not raise when key is an enumerable. [#​1619](https://redirect.github.com/sinatra/sinatra/pull/1619) by Ulysse Buonomo ##### Rack protection - Fix broken `origin_whitelist` option. Fixes [#​1641](https://redirect.github.com/sinatra/sinatra/issues/1641) [#​1642](https://redirect.github.com/sinatra/sinatra/pull/1642) by Takeshi YASHIRO
mend-for-github-com[bot] commented 8 months ago

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

The artifact failure details are included below:

File name: Gemfile.lock
Fetching gem metadata from https://rubygems.org/.........
Resolving dependencies...

Calling `DidYouMean::SPELL_CHECKERS.merge!(error_name => spell_checker)' has been deprecated. Please call `DidYouMean.correct_error(error_name, spell_checker)' instead.
Bundler could not find compatible versions for gem "sinatra":
  In Gemfile:
    sinatra (= 2.2.3)

    sinatra-contrib (= 2.1.0) was resolved to 2.1.0, which depends on
      sinatra (= 2.1.0)
mend-for-github-com[bot] commented 3 days ago

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

The artifact failure details are included below:

File name: Gemfile.lock
Fetching gem metadata from https://rubygems.org/.........
Resolving dependencies...

Calling `DidYouMean::SPELL_CHECKERS.merge!(error_name => spell_checker)' has been deprecated. Please call `DidYouMean.correct_error(error_name, spell_checker)' instead.
Bundler could not find compatible versions for gem "sinatra":
  In Gemfile:
    sinatra (= 2.2.3)

    sinatra-contrib (= 2.1.0) was resolved to 2.1.0, which depends on
      sinatra (= 2.1.0)