Bump sprockets from 2.12.1 to 4.0.2

[dependabot[bot]]

Bumps sprockets from 2.12.1 to 4.0.2.

Release notes

Sourced from sprockets's releases.

v3.7.0

• Deprecated interfaces now emit deprecation warnings #345

v3.6.3

• Faster asset lookup in large directories #336
• Faster PathUtils.match_path_extname https://github.com/rails/sprockets/commit/697269cf81e5261fdd7072e32bd489403027fd7e
• Fixed uglifier comment stripping #326
• Error messages now show load path info #313

v3.6.2

Performance improvements.

• rails/sprockets#320
• rails/sprockets#312

3.6.1

Some performance improvements

3.6.0

• Add Manifest#find_sources to return the source of the compiled assets.
• Fix the list of compressable mime types.
• Improve performance of the FileStore cache.

3.5.2

• Fix JRuby bug with concurrent-ruby.
• Fix disabling gzip generation in cached environments.

3.5.1

Fix gzip asset generation for assets already on disk.

3.5.0

• Reintroduce Gzip file generation for non-binary assets.

3.4.1

• PathUtils::Entries will no longer error on an empty directory.

3.4.0

Expose method to override the sass cache in the SassProcessor.

3.3.5

• Fix bug related to absolute path being reintroduced into history cache #141.

3.3.4

• Relative cache contents now work with windows.

3.3.3

• Remove more absolute paths from cache contents.

3.3.2

• Fix cache contents to use relative paths instead of absolute paths.

Changelog

Sourced from sprockets's changelog.

4.0.2

• Fix etag and digest path compilation that were generating string with invalid digest since 4.0.1.

4.0.1

• Fix for Ruby 2.7 keyword arguments warning in base.rb. #660
• Fix for when x_sprockets_linecount is missing from a source map.
• Fix subresource integrity to match the digest of the asset.

4.0.0

• Fixes for Ruby 2.7 keyword arguments warnings #625
• Manifest files are sorted alphabetically #626

4.0.0.beta10

• Fix YACB (Yet Another Caching Bug) Fix broken expansion of asset link paths

4.0.0.beta9

• Minimum Ruby version for Sprockets 4 is now 2.5+ which matches minimum ruby verision of Rails #604
• Fix threading bug introduced in Sprockets 4 #603
• Warn when two potential manifest files exist. #560

4.0.0.beta8

• Security release for CVE-2018-3760

4.0.0.beta7

• Fix a year long bug that caused Sprockets::FileNotFound errors when the asset was present #547
• Raise an error when two assets such as foo.js and foo.js.erb would produce the same output artifact (foo.js) [#549 #530]
• Process *.jst.eco.erb files with ERBProcessor

4.0.0.beta6

• Fix source map line offsets #515
• Return a 400 Bad Request when the path encoding is invalid. #514

4.0.0.beta5

• Reduce string allocations
• Source map metadata uses compressed form specified by the source map v3 spec. #402 [BREAKING]
• Generate index maps when decoding source maps isn't necessary. #402
• Remove fingerprints from source map files. #402

4.0.0.beta4

• Changing the version now busts the digest of all assets #404

Commits

• 8fc492a Merge pull request #685 from matteeyah/master
• c995430 Use character for #delete_prefix instead of RegEx
• 53efbb8 Fix rubocop violation
• 9d1902b Only digest the environment version if it is not blank
• 97e2ac6 Prepare to 4.0.2
• b698a1a Digest the environment and digest before packing the hexdigest
• 841ddbe Test with Ruby 2.7
• ac399e5 Prepare to 4.0.1
• 7f64817 Make sure the digest path changes when the environment changes
• 0bcb8ae No need to call self here
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/alvinsj/flatten_record/network/alerts).