Update rails 6.1.7.6 → 6.1.7.7 (patch)

[depfu[bot]]

👉 This PR is queued up to get rebased by Depfu

Here is everything you need to know about this update. Please take a good look at what changed and the test results before merging this pull request.

What changed?

✳️ rails (6.1.7.6 → 6.1.7.7) · Repo

Release Notes

6.1.7.7

Active Support

• No changes.

Active Model

• No changes.

Active Record

• No changes.

Action View

• No changes.

Action Pack

• No changes.

Active Job

• No changes.

Action Mailer

• No changes.

Action Cable

• No changes.

Active Storage

• Disables the session in ActiveStorage::Blobs::ProxyController
  and ActiveStorage::Representations::ProxyController
  in order to allow caching by default in some CDNs as CloudFlare

  Fixes #44136

  Bruno Prieto

Action Mailbox

• No changes.

Action Text

• No changes.

Railties

• No changes.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 2 commits:

• Preparing for 6.1.7.7 release
• update changelog

↗️ actioncable (indirect, 6.1.7.6 → 6.1.7.7) · Repo · Changelog

Release Notes

6.1.7.7 (from changelog)

• No changes.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 2 commits:

• Preparing for 6.1.7.7 release
• update changelog

↗️ actionmailbox (indirect, 6.1.7.6 → 6.1.7.7) · Repo · Changelog

↗️ actionmailer (indirect, 6.1.7.6 → 6.1.7.7) · Repo · Changelog

Release Notes

6.1.7.7 (from changelog)

• No changes.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 2 commits:

• Preparing for 6.1.7.7 release
• update changelog

↗️ actionpack (indirect, 6.1.7.6 → 6.1.7.7) · Repo · Changelog

Release Notes

6.1.7.7 (from changelog)

• No changes.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 2 commits:

• Preparing for 6.1.7.7 release
• update changelog

↗️ actiontext (indirect, 6.1.7.6 → 6.1.7.7) · Repo · Changelog

Release Notes

6.1.7.7 (from changelog)

• No changes.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 2 commits:

• Preparing for 6.1.7.7 release
• update changelog

↗️ actionview (indirect, 6.1.7.6 → 6.1.7.7) · Repo · Changelog

Release Notes

6.1.7.7 (from changelog)

• No changes.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 2 commits:

• Preparing for 6.1.7.7 release
• update changelog

↗️ activejob (indirect, 6.1.7.6 → 6.1.7.7) · Repo · Changelog

Release Notes

6.1.7.7 (from changelog)

• No changes.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 2 commits:

• Preparing for 6.1.7.7 release
• update changelog

↗️ activemodel (indirect, 6.1.7.6 → 6.1.7.7) · Repo · Changelog

Release Notes

6.1.7.7 (from changelog)

• No changes.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 2 commits:

• Preparing for 6.1.7.7 release
• update changelog

↗️ activerecord (indirect, 6.1.7.6 → 6.1.7.7) · Repo · Changelog

Release Notes

6.1.7.7 (from changelog)

• No changes.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 2 commits:

• Preparing for 6.1.7.7 release
• update changelog

↗️ activestorage (indirect, 6.1.7.6 → 6.1.7.7) · Repo · Changelog

Release Notes

6.1.7.7 (from changelog)

• Disables the session in ActiveStorage::Blobs::ProxyController and ActiveStorage::Representations::ProxyController in order to allow caching by default in some CDNs as CloudFlare

  Fixes #44136

  Bruno Prieto

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 2 commits:

• Preparing for 6.1.7.7 release
• update changelog

↗️ activesupport (indirect, 6.1.7.6 → 6.1.7.7) · Repo · Changelog

Release Notes

6.1.7.7 (from changelog)

• No changes.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 2 commits:

• Preparing for 6.1.7.7 release
• update changelog

↗️ concurrent-ruby (indirect, 1.2.2 → 1.2.3) · Repo · Changelog

Release Notes

1.2.3

What's Changed

• Fix TimerTask :execution_interval docs by @freemanoid in #994
• Fix TimerTask docs to not refer to #execute as "blocking" by @bensheldon in #996
• Fix TimerTask example output by @bensheldon in #1003
• Fix broken CI due to rake-compiler error on Ruby < 2.6 by @mattbrictson in #1007
• Fix doc typo: yeild → yield by @mattbrictson in #1006
• Fix DaemonThreadFactory - reuse single Java thread factory by @obulkin in #1009
• Fix sporadic failures testing with JRuby by @headius in #1012
• Allow TimerSet to safely handle an executor raising RejectedExecutionError by @bensheldon in #999
• Use executor from arg in then_on/rescue_on/chain_on for Promises by @tgwizard in #1005
• Allow TimerTask to be initialized with a specified Executor by @bensheldon in #1000
• Create method ThreadPoolExecutor#active_count to expose the number of threads that are actively executing tasks by @bensheldon in #1002
• Drop dependency on mutex_m by @casperisfine in #1013
• Fix compile error on FreeBSD 14 by @janbiedermann in #1014
• Fix spurious return in Promises#wait_until_resolved by @eregon in #1016
• Remove AtomicReferenceMapBackend and CheapLockable by @eregon in #1018
• Add Ruby 3.3 in CI by @eregon in #1021
• docs: fix typo in throttle docs by @G-Rath in #1024
• docs: update promises grammar by @G-Rath in #1026
• Add TimerTask#interval_type option to configure interval calculation by @bensheldon in #997

New Contributors

• @freemanoid made their first contribution in #994
• @bensheldon made their first contribution in #996
• @mattbrictson made their first contribution in #1007
• @obulkin made their first contribution in #1009
• @headius made their first contribution in #1012
• @tgwizard made their first contribution in #1005
• @janbiedermann made their first contribution in #1014
• @G-Rath made their first contribution in #1024

Full Changelog: v1.2.2...v1.2.3

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 25 commits:

• 1.2.3
• Add `TimerTask.new(interval_type:)` option to configure interval calculation
• docs: update promises grammar (#1026)
• docs: fix typo in throttle docs (#1024)
• Add Ruby 3.3 in CI
• Remove AtomicReferenceMapBackend and CheapLockable
• Fix some typos
• Fix spurious return in Promises#wait_until_resolved
• Fix compile error on FreeBSD 14
• Drop dependency on mutex_m
• Expose the number of threads that are actively executing tasks with `ThreadPoolExecutor#active_count`. (#1002)
• Update the list of maintainers
• Allow TimerTask to be initialized with a specified Executor
• Use executor from arg in then_on/rescue_on/chain_on for Promises
• Allow TimerSet to safely handle an executor raising `RejectedExecutionError` (#999)
• Fix sporadic failures testing with JRuby (#1012)
• Fix DaemonThreadFactory - reuse single Java thread factory
• Fix doc typo: yeild → yield
• Fix broken CI due to rake-compiler error on Ruby < 2.6
• Fix TimerTask example output (#1003)
• Fix TimerTask docs to not refer to `#execute` as "blocking" (#996)
• Fix TimerTask `:execution_interval` docs
• Update comment about ::Array on CRuby, it's not fully thread-safe
• Update comment about ::Hash on CRuby, it's not fully thread-safe
• Check the first Concurrent::Map default_proc argument is a Concurrent::Map in more tests

↗️ net-imap (indirect, 0.4.9.1 → 0.4.10) · Repo

Release Notes

0.4.10

What's Changed

Fixes

• 🐛 Do not automatically freeze SearchResult by @nevans in #263
  This fixes a backwards incompatible change in v0.4.8 that affected the mail gem.
  See #262, reported by @stanley90.

Documentation

• 📚 Workaround rdoc method visibility issue by @nevans in #257
• 📚 Workaround rdoc issue with :yield: and visibility by @nevans in #258

Miscellaneous

• ⬆️ Bump actions/upload-pages-artifact from 2 to 3 by @dependabot in #256
• ⬆️ Bump actions/deploy-pages from 3 to 4 by @dependabot in #255
• Renew test certificates by @sorah in #259
• Add base64 dev dependency by @hsbt in #261
• Import sample code from ruby/ruby by @hsbt in #260

New Contributors

• @sorah made their first contribution in #259

Full Changelog: v0.4.9...v0.4.10

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ rack (indirect, 2.2.8 → 2.2.8.1) · Repo · Changelog

Release Notes

2.2.8.1

What's Changed

• Fixed ReDoS in Accept header parsing [CVE-2024-26146]
• Fixed ReDoS in Content Type header parsing [CVE-2024-25126]
• Reject Range headers which are too large [CVE-2024-26141]

Full Changelog: v2.2.8...v2.2.8.1

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 4 commits:

• bump version
• Avoid 2nd degree polynomial regexp in MediaType
• Return an empty array when ranges are too large
• Fixing ReDoS in header parsing

↗️ railties (indirect, 6.1.7.6 → 6.1.7.7) · Repo · Changelog

Release Notes

6.1.7.7 (from changelog)

• No changes.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 2 commits:

• Preparing for 6.1.7.7 release
• update changelog

↗️ zeitwerk (indirect, 2.6.12 → 2.6.13) · Repo · Changelog

Release Notes

2.6.13 (from changelog)

• There is a new experimental null inflector that simply returns its input unchanged:

  loader.inflector = Zeitwerk::NullInflector.new

  Projects using this inflector are expected to define their constants in files and directories with names exactly matching them:

  User.rb       -> User
  HTMLParser.rb -> HTMLParser
  Admin/Role.rb -> Admin::Role
  

  Please see its documentation for further details.

• Documentation improvements.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 13 commits:

• Ready for 2.6.13
• Document null inflector and case-insensitive file systems
• Add test coverage for symlinks and for_gem
• Merge pull request #286 from m-nakamura145/update-actions-checkout
• Bump actions/checkout
• Revise the conceptual translation of for_gem
• Delete comment in Kernel#require decoration
• Merge pull request #279 from stevenharman/typo_and_doc_tweeks
• Fix small typo & clarify some grammar in the docs
• Merge pull request #278 from m-nakamura145/update-ci-matrix
• Add Ruby 3.3 to CI matrix
• Revise docs re the null inflector and Rails
• Provide a null inflector

---

Depfu will automatically keep this PR conflict-free, as long as you don't add any commits to this branch yourself. You can also trigger a rebase manually by commenting with @depfu rebase.

All Depfu comment commands

@​depfu rebase

Rebases against your default branch and redoes this update

@​depfu recreate

Recreates this PR, overwriting any edits that you've made to it

@​depfu merge

Merges this PR once your tests are passing and conflicts are resolved

@​depfu cancel merge

Cancels automatic merging of this PR

@​depfu close

Closes this PR and deletes the branch

@​depfu reopen

Restores the branch and reopens this PR (if it's closed)

@​depfu pause

Ignores all future updates for this dependency and closes this PR

@​depfu pause [minor|major]

Ignores all future minor/major updates for this dependency and closes this PR

@​depfu resume

Future versions of this dependency will create PRs again (leaves this PR as is)

[depfu[bot]]

Closing because this update has already been applied