The default serializer will now use YAML.safe_load unless
ActiveRecord.use_yaml_unsafe_load. This change only affects users whose
versions table has object or object_changes columns of type text, and
who use the YAML serializer. People who use the JSON serializer, or those with
json(b) columns, are unaffected. Please see
https://github.com/paper-trail-gem/paper_trail/blob/master/doc/pt_13_yaml_safe_load.md for details.
Added
None
Fixed
None
Commits
9de2a7d Merge pull request #1398 from paper-trail-gem/release-13.0.0
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps paper_trail from 12.3.0 to 13.0.0.
Changelog
Sourced from paper_trail's changelog.
Commits
9de2a7dMerge pull request #1398 from paper-trail-gem/release-13.0.0d380042Release 13.0.0b2ab298Merge pull request #1397 from paper-trail-gem/yaml_safe_loadd17fdabDefault serializer will use YAML.safe_loadf7462eaMerge pull request #1387 from turrisxyz/Pinned-Dependencies-GitHub25dcf20chore: Set permissions for GitHub actionsab4f119Merge pull request #1379 from cisbox/diesl-patch-1b1378d5Merge pull request #1383 from aaronkelton/patch-167d80d9Merge pull request #1382 from henrik/patch-1cd6c30dMerge pull request #1385 from wonda-tea-coffee/replace-git.io-linkDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)