Changelog
*Sourced from [liquid's changelog](https://github.com/Shopify/liquid/blob/master/History.md).*
> ## 4.0.2 / 2019-03-08
>
> ### Changed
> * Add `where` filter ([#1026](https://github-redirect.dependabot.com/Shopify/liquid/issues/1026)) [Samuel Doiron]
> * Add `ParseTreeVisitor` to iterate the Liquid AST ([#1025](https://github-redirect.dependabot.com/Shopify/liquid/issues/1025)) [Stephen Paul Weber]
> * Improve `strip_html` performance ([#1032](https://github-redirect.dependabot.com/Shopify/liquid/issues/1032)) [printercu]
>
> ### Fixed
> * Add error checking for invalid combinations of inputs to sort, sort_natural, where, uniq, map, compact filters ([#1059](https://github-redirect.dependabot.com/Shopify/liquid/issues/1059)) [Garland Zhang]
> * Validate the character encoding in url_decode ([#1070](https://github-redirect.dependabot.com/Shopify/liquid/issues/1070)) [Clayton Smith]
Commits
- [`8013df8`](https://github.com/Shopify/liquid/commit/8013df8ca2e25b72260d945f0d6bfb1484a7d04c) v4.0.2
- [`14cd011`](https://github.com/Shopify/liquid/commit/14cd011cb5eef042af192ad5294c8f0e1ae89f06) Merge pull request [#1070](https://github-redirect.dependabot.com/Shopify/liquid/issues/1070) from Shopify/url-decode-validation
- [`e2d9907`](https://github.com/Shopify/liquid/commit/e2d9907df280ee4099757bd57d240de44690d695) Validate the character encoding in url_decode.
- [`23d669f`](https://github.com/Shopify/liquid/commit/23d669f5e63f99fd13c72a84150b5e449a77f6ef) Merge pull request [#1032](https://github-redirect.dependabot.com/Shopify/liquid/issues/1032) from printercu/patch-1
- [`ed73794`](https://github.com/Shopify/liquid/commit/ed73794f82b6a7fc529c7bd85761c225e7bc5a09) Preserve existing strip_html behaviour for weird inputs
- [`f59f6de`](https://github.com/Shopify/liquid/commit/f59f6dea83234b71a7be994078ee8e9dddf60dc3) Fix simple RuboCop offenses and update TODO file ([#1062](https://github-redirect.dependabot.com/Shopify/liquid/issues/1062))
- [`7a81fb8`](https://github.com/Shopify/liquid/commit/7a81fb821ac240f4d8e49bd3c4bb4e5b4826f566) Merge pull request [#1059](https://github-redirect.dependabot.com/Shopify/liquid/issues/1059) from Shopify/map_error_checking
- [`cec27ea`](https://github.com/Shopify/liquid/commit/cec27ea326f3bdf09622363bf5df75f41e71f8bc) Extract raise error line and some filters with begin/rescue blocks
- [`14999e8`](https://github.com/Shopify/liquid/commit/14999e8f7c564656947d9cbf2f1b27811ce823c0) Merge pull request [#1053](https://github-redirect.dependabot.com/Shopify/liquid/issues/1053) from er1/update-changelog-v4.0.1
- [`b41fc10`](https://github.com/Shopify/liquid/commit/b41fc10d8e22ae4182b90ce3a069c88da14db16c) Updated changelog for v4.0.1
- Additional commits viewable in [compare view](https://github.com/Shopify/liquid/compare/v4.0.1...v4.0.2)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
- `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme
Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com):
- Update frequency (including time of day and day of week)
- Automerge options (never/patch/minor, and dev/runtime dependencies)
- Pull request limits (per update run and/or open at any time)
- Out-of-range updates (receive only lockfile updates, if desired)
- Security updates (receive only security updates, if desired)
Finally, you can contact us by mentioning @dependabot.
Bumps liquid from 4.0.1 to 4.0.2.
Changelog
*Sourced from [liquid's changelog](https://github.com/Shopify/liquid/blob/master/History.md).* > ## 4.0.2 / 2019-03-08 > > ### Changed > * Add `where` filter ([#1026](https://github-redirect.dependabot.com/Shopify/liquid/issues/1026)) [Samuel Doiron] > * Add `ParseTreeVisitor` to iterate the Liquid AST ([#1025](https://github-redirect.dependabot.com/Shopify/liquid/issues/1025)) [Stephen Paul Weber] > * Improve `strip_html` performance ([#1032](https://github-redirect.dependabot.com/Shopify/liquid/issues/1032)) [printercu] > > ### Fixed > * Add error checking for invalid combinations of inputs to sort, sort_natural, where, uniq, map, compact filters ([#1059](https://github-redirect.dependabot.com/Shopify/liquid/issues/1059)) [Garland Zhang] > * Validate the character encoding in url_decode ([#1070](https://github-redirect.dependabot.com/Shopify/liquid/issues/1070)) [Clayton Smith]Commits
- [`8013df8`](https://github.com/Shopify/liquid/commit/8013df8ca2e25b72260d945f0d6bfb1484a7d04c) v4.0.2 - [`14cd011`](https://github.com/Shopify/liquid/commit/14cd011cb5eef042af192ad5294c8f0e1ae89f06) Merge pull request [#1070](https://github-redirect.dependabot.com/Shopify/liquid/issues/1070) from Shopify/url-decode-validation - [`e2d9907`](https://github.com/Shopify/liquid/commit/e2d9907df280ee4099757bd57d240de44690d695) Validate the character encoding in url_decode. - [`23d669f`](https://github.com/Shopify/liquid/commit/23d669f5e63f99fd13c72a84150b5e449a77f6ef) Merge pull request [#1032](https://github-redirect.dependabot.com/Shopify/liquid/issues/1032) from printercu/patch-1 - [`ed73794`](https://github.com/Shopify/liquid/commit/ed73794f82b6a7fc529c7bd85761c225e7bc5a09) Preserve existing strip_html behaviour for weird inputs - [`f59f6de`](https://github.com/Shopify/liquid/commit/f59f6dea83234b71a7be994078ee8e9dddf60dc3) Fix simple RuboCop offenses and update TODO file ([#1062](https://github-redirect.dependabot.com/Shopify/liquid/issues/1062)) - [`7a81fb8`](https://github.com/Shopify/liquid/commit/7a81fb821ac240f4d8e49bd3c4bb4e5b4826f566) Merge pull request [#1059](https://github-redirect.dependabot.com/Shopify/liquid/issues/1059) from Shopify/map_error_checking - [`cec27ea`](https://github.com/Shopify/liquid/commit/cec27ea326f3bdf09622363bf5df75f41e71f8bc) Extract raise error line and some filters with begin/rescue blocks - [`14999e8`](https://github.com/Shopify/liquid/commit/14999e8f7c564656947d9cbf2f1b27811ce823c0) Merge pull request [#1053](https://github-redirect.dependabot.com/Shopify/liquid/issues/1053) from er1/update-changelog-v4.0.1 - [`b41fc10`](https://github.com/Shopify/liquid/commit/b41fc10d8e22ae4182b90ce3a069c88da14db16c) Updated changelog for v4.0.1 - Additional commits viewable in [compare view](https://github.com/Shopify/liquid/compare/v4.0.1...v4.0.2)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) Finally, you can contact us by mentioning @dependabot.