Changelog
*Sourced from [rack-protection's changelog](https://github.com/sinatra/sinatra/blob/master/CHANGELOG.md).*
> ## 2.0.7 / 2019-08-22
>
> * Fix a regression [#1560](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1560) by Kunpei Sakai
>
> ## 2.0.6 / 2019-08-21
>
> * Fix an issue setting environment from command line option [#1547](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1547), [#1554](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1554) by Jordan Owens, Kunpei Sakai
>
> * Support pandoc as a new markdown renderer [#1533](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1533) by Vasiliy
>
> * Remove outdated code for tilt 1.x [#1532](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1532) by Vasiliy
>
> * Remove an extra logic for `force_encoding` [#1527](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1527) by Jordan Owens
>
> * Avoid multiple errors even if `params` contains special values [#1526](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1527) by Kunpei Sakai
>
> * Support `bundler/inline` with `require 'sinatra'` integration [#1520](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1520) by Kunpei Sakai
>
> * Avoid `TypeError` when params contain a key without a value on Ruby < 2.4 [#1516](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1516) by Samuel Giddins
>
> * Improve development support and documentation and source code by Olle Jonsson, Basavanagowda Kanur, Yuki MINAMIYA
>
> ## 2.0.5 / 2018-12-22
>
> * Avoid FrozenError when params contains frozen value [#1506](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1506) by Kunpei Sakai
>
> * Add support for Erubi [#1494](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1494) by [@tkmru](https://github.com/tkmru)
>
> * `IndifferentHash` monkeypatch warning improvements [#1477](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1477) by Mike Pastore
>
> * Improve development support and documentation and source code by Anusree Prakash, Jordan Owens, [@ceclinux](https://github.com/ceclinux) and [@krororo](https://github.com/krororo).
>
> ### sinatra-contrib
>
> * Add `flush` option to `content_for` [#1225](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1225) by Shota Iguchi
>
> * Drop activesupport dependency from sinatra-contrib [#1448](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1448)
>
> * Update `yield_content` to append default to ERB template buffer [#1500](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1500) by Jordan Owens
>
> ### rack-protection
>
> * Don't track the Accept-Language header by default [#1504](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1504) by Artem Chistyakov
>
> ## 2.0.4 / 2018-09-15
>
> * Don't blow up when passing frozen string to `send_file` disposition [#1137](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1137) by Andrew Selder
>
> * Fix ubygems LoadError [#1436](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1436) by Pavel Rosický
>
> ... (truncated)
Commits
- See full diff in [compare view](https://github.com/sinatra/sinatra/commits)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/ripienaar/gdash/network/alerts).
Bumps rack-protection from 1.2.0 to 1.5.5.
Changelog
*Sourced from [rack-protection's changelog](https://github.com/sinatra/sinatra/blob/master/CHANGELOG.md).* > ## 2.0.7 / 2019-08-22 > > * Fix a regression [#1560](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1560) by Kunpei Sakai > > ## 2.0.6 / 2019-08-21 > > * Fix an issue setting environment from command line option [#1547](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1547), [#1554](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1554) by Jordan Owens, Kunpei Sakai > > * Support pandoc as a new markdown renderer [#1533](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1533) by Vasiliy > > * Remove outdated code for tilt 1.x [#1532](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1532) by Vasiliy > > * Remove an extra logic for `force_encoding` [#1527](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1527) by Jordan Owens > > * Avoid multiple errors even if `params` contains special values [#1526](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1527) by Kunpei Sakai > > * Support `bundler/inline` with `require 'sinatra'` integration [#1520](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1520) by Kunpei Sakai > > * Avoid `TypeError` when params contain a key without a value on Ruby < 2.4 [#1516](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1516) by Samuel Giddins > > * Improve development support and documentation and source code by Olle Jonsson, Basavanagowda Kanur, Yuki MINAMIYA > > ## 2.0.5 / 2018-12-22 > > * Avoid FrozenError when params contains frozen value [#1506](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1506) by Kunpei Sakai > > * Add support for Erubi [#1494](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1494) by [@tkmru](https://github.com/tkmru) > > * `IndifferentHash` monkeypatch warning improvements [#1477](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1477) by Mike Pastore > > * Improve development support and documentation and source code by Anusree Prakash, Jordan Owens, [@ceclinux](https://github.com/ceclinux) and [@krororo](https://github.com/krororo). > > ### sinatra-contrib > > * Add `flush` option to `content_for` [#1225](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1225) by Shota Iguchi > > * Drop activesupport dependency from sinatra-contrib [#1448](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1448) > > * Update `yield_content` to append default to ERB template buffer [#1500](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1500) by Jordan Owens > > ### rack-protection > > * Don't track the Accept-Language header by default [#1504](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1504) by Artem Chistyakov > > ## 2.0.4 / 2018-09-15 > > * Don't blow up when passing frozen string to `send_file` disposition [#1137](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1137) by Andrew Selder > > * Fix ubygems LoadError [#1436](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1436) by Pavel Rosický > > ... (truncated)Commits
- See full diff in [compare view](https://github.com/sinatra/sinatra/commits)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/ripienaar/gdash/network/alerts).