Matt Jankowski
0d919f27be
Use released version 4.1.0 of devise-two-factor ( #24875 )
2023-05-05 19:48:23 +02:00
Nick Schonning
baed1e7687
Revert "Bump better_errors from 2.9.1 to 2.10.0 ( #24779 )" ( #24827 )
2023-05-04 05:22:50 +02:00
dependabot[bot]
412215ff88
Bump better_errors from 2.9.1 to 2.10.0 ( #24779 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-03 11:13:49 +02:00
Claire
e964406ec3
Optimize archive export service and export zip files instead of gzipped tar files ( #23360 )
2023-05-02 15:09:43 +02:00
Nick Schonning
519ae8c0c6
Drop EOL Ruby 2.7 ( #24237 )
2023-04-27 01:46:18 +02:00
dependabot[bot]
1e785f3506
Bump pg from 1.4.6 to 1.5.2 ( #24671 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-26 17:46:01 +02:00
dependabot[bot]
d66dd79ea7
Bump rack from 2.2.6.4 to 2.2.7 ( #24672 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-26 17:45:49 +02:00
dependabot[bot]
776a75a146
Bump json-schema from 3.0.0 to 4.0.0 ( #24642 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-26 14:57:08 +02:00
Matt Jankowski
afc366e8dc
Update `attr_encrypted` & `devise-two-factor` gems ( #24626 )
2023-04-24 19:08:21 +02:00
Matt Jankowski
ce515b40b2
Gem version bumps ( #24131 )
2023-04-24 19:07:45 +02:00
dependabot[bot]
6cf564a7c6
Bump faker from 3.1.1 to 3.2.0 ( #24579 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-18 10:39:46 +02:00
dependabot[bot]
b7937d49dc
Bump chewy from 7.2.7 to 7.3.0 ( #24507 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-12 13:47:38 +02:00
dependabot[bot]
b03ef74b20
Bump net-ldap from 0.17.1 to 0.18.0 ( #24484 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-11 12:53:13 +02:00
dependabot[bot]
210b55a718
Bump puma from 6.1.1 to 6.2.1 ( #24402 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-05 13:57:21 +02:00
dependabot[bot]
3f998a2f4d
Bump capybara from 3.38.0 to 3.39.0 ( #24395 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-05 13:29:14 +02:00
dependabot[bot]
e4ad1fb231
Bump aws-sdk-s3 from 1.119.2 to 1.120.0 ( #24401 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-05 13:26:33 +02:00
dependabot[bot]
c728972888
Bump tzinfo-data from 1.2022.7 to 1.2023.2 ( #24300 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-29 10:32:51 +02:00
Matt Jankowski
48befe5dbd
Update strong_migrations to version 0.8.0 ( #24270 )
2023-03-27 09:11:10 +02:00
dependabot[bot]
a600670940
Bump rack-cors from 1.1.1 to 2.0.1 ( #24189 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-21 10:42:34 +09:00
Nick Schonning
8d05167e5f
Include config/ and update all rubcop deps ( #23963 )
2023-03-17 10:13:28 +01:00
Eugen Rochko
4ea5355857
Remove `bullet` and `active_record_query_trace` gems ( #24121 )
2023-03-16 02:53:55 +01:00
dependabot[bot]
69c0672fc4
Bump rack-test from 2.0.2 to 2.1.0 ( #24112 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-16 10:33:26 +09:00
Nick Schonning
30328759da
Setup haml-lint CI with todo config ( #23524 )
2023-03-15 04:15:36 +01:00
Matt Jankowski
76950ce2bc
Explicitly set github repo in instance presenter spec ( #24036 )
2023-03-09 14:27:48 +01:00
dependabot[bot]
e0ab946c12
Bump omniauth_openid_connect from 0.6.0 to 0.6.1 ( #23991 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-08 11:44:23 +01:00
Nick Schonning
88aa9e012d
Convert CircleCI to GitHub Actions ( #23608 )
2023-03-07 04:49:43 +01:00
Nick Schonning
1f82971d12
Remove pinned rexml ( #23964 )
2023-03-06 15:43:21 +01:00
Nick Schonning
5f8438c42c
Remove pry gems ( #23884 )
2023-03-03 22:53:08 +01:00
Nick Schonning
03e192ae38
Remove climate_control gem ( #23886 )
2023-03-03 22:48:48 +01:00
Matt Jankowski
0d409f9fd7
Update rspec-rails to version 6.0.1 ( #23908 )
2023-03-02 15:55:37 +01:00
Shlee
8ed5fc7252
[Dependashlee] Update to Puma 6.1.0 ( #23795 )
2023-02-28 13:30:28 +01:00
dependabot[bot]
185e7aa9ea
Bump devise from 4.8.1 to 4.9.0 ( #23691 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-21 10:41:28 +01:00
dependabot[bot]
b8dc16c819
Bump oj from 3.13.23 to 3.14.2 ( #23560 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-18 14:21:10 +09:00
dependabot[bot]
b683ba772e
Bump webauthn from 2.5.2 to 3.0.0 ( #23659 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-17 10:06:24 +01:00
Aaron Patterson
edc6f486bf
Upgrade to Ruby 3.2 ( #22928 )
...
Co-authored-by: Matthew Ford <matt@bitzesty.com>
2023-02-15 08:30:27 +01:00
Stan Hu
7ab1306c20
Switch OpenID Connect gems ( #23223 )
...
Co-authored-by: Claire <claire.github-309c@sitedethib.com>
2023-02-13 15:47:50 +01:00
Claire
9a70c0de00
Add dependency on net-http ( #23571 )
2023-02-13 14:36:07 +01:00
dependabot[bot]
d9fdce121c
Bump sidekiq-scheduler from 4.0.3 to 5.0.0 ( #23212 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Claire <claire.github-309c@sitedethib.com>
2023-02-13 13:31:42 +01:00
Nick Schonning
acf0bbcab8
Replace hamlit-rails with haml-rails ( #23542 )
2023-02-13 04:59:30 +01:00
dependabot[bot]
be3006e888
Bump bootsnap from 1.15.0 to 1.16.0 ( #23340 )
...
Bumps [bootsnap](https://github.com/Shopify/bootsnap ) from 1.15.0 to 1.16.0.
- [Release notes](https://github.com/Shopify/bootsnap/releases )
- [Changelog](https://github.com/Shopify/bootsnap/blob/main/CHANGELOG.md )
- [Commits](https://github.com/Shopify/bootsnap/compare/v1.15.0...v1.16.0 )
---
updated-dependencies:
- dependency-name: bootsnap
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-04 15:55:07 +09:00
dependabot[bot]
bc290e9a2a
Bump redcarpet from 3.5.1 to 3.6.0 ( #23339 )
...
Bumps [redcarpet](https://github.com/vmg/redcarpet ) from 3.5.1 to 3.6.0.
- [Release notes](https://github.com/vmg/redcarpet/releases )
- [Changelog](https://github.com/vmg/redcarpet/blob/master/CHANGELOG.md )
- [Commits](https://github.com/vmg/redcarpet/compare/v3.5.1...v3.6.0 )
---
updated-dependencies:
- dependency-name: redcarpet
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-01 11:19:30 +01:00
dependabot[bot]
8eec28e802
Bump aws-sdk-s3 from 1.118.0 to 1.119.0 ( #23341 )
...
Bumps [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby ) from 1.118.0 to 1.119.0.
- [Release notes](https://github.com/aws/aws-sdk-ruby/releases )
- [Changelog](https://github.com/aws/aws-sdk-ruby/blob/version-3/gems/aws-sdk-s3/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-ruby/commits )
---
updated-dependencies:
- dependency-name: aws-sdk-s3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-01 11:16:38 +01:00
dependabot[bot]
2b107ab81f
Bump simple_form from 5.1.0 to 5.2.0 ( #23328 )
...
Bumps [simple_form](https://github.com/heartcombo/simple_form ) from 5.1.0 to 5.2.0.
- [Release notes](https://github.com/heartcombo/simple_form/releases )
- [Changelog](https://github.com/heartcombo/simple_form/blob/main/CHANGELOG.md )
- [Commits](https://github.com/heartcombo/simple_form/compare/v5.1.0...v5.2.0 )
---
updated-dependencies:
- dependency-name: simple_form
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-01 11:07:16 +01:00
dependabot[bot]
0758811df2
Bump gitlab-omniauth-openid-connect from 0.10.0 to 0.10.1 ( #23241 )
...
Bumps [gitlab-omniauth-openid-connect](https://gitlab.com/gitlab-org/gitlab-omniauth-openid-connect ) from 0.10.0 to 0.10.1.
- [Release notes](https://gitlab.com/gitlab-org/gitlab-omniauth-openid-connect/tags )
- [Commits](https://gitlab.com/gitlab-org/gitlab-omniauth-openid-connect/compare/v0.10.0...v0.10.1 )
---
updated-dependencies:
- dependency-name: gitlab-omniauth-openid-connect
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-31 00:46:27 +09:00
dependabot[bot]
6b0624261b
Bump aws-sdk-s3 from 1.117.2 to 1.118.0 ( #23202 )
...
Bumps [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby ) from 1.117.2 to 1.118.0.
- [Release notes](https://github.com/aws/aws-sdk-ruby/releases )
- [Changelog](https://github.com/aws/aws-sdk-ruby/blob/version-3/gems/aws-sdk-s3/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-ruby/commits )
---
updated-dependencies:
- dependency-name: aws-sdk-s3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-30 10:57:59 +09:00
Kaspar V
930de8db1f
fix(pghero): update because CVE-2023-22626 ( #23190 )
...
There is a vulnerability
[CVE-2023-22626](https://github.com/advisories/GHSA-vf99-xw26-86g5 )
```
Name: pghero
Version: 2.8.3
CVE: CVE-2023-22626
GHSA: GHSA-vf99-xw26-86g5
Criticality: High
URL: https://github.com/ankane/pghero/issues/439
Title: Information Disclosure Through EXPLAIN Feature
Solution: upgrade to '>= 3.1.0'
```
2023-01-22 23:09:02 +01:00
dependabot[bot]
17cc4e39e6
Bump rack from 2.2.5 to 2.2.6.2 ( #23142 )
...
Bumps [rack](https://github.com/rack/rack ) from 2.2.5 to 2.2.6.2.
- [Release notes](https://github.com/rack/rack/releases )
- [Changelog](https://github.com/rack/rack/blob/main/CHANGELOG.md )
- [Commits](https://github.com/rack/rack/compare/v2.2.5...v2.2.6.2 )
---
updated-dependencies:
- dependency-name: rack
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-18 11:31:39 +01:00
dependabot[bot]
170a2a28be
Bump nokogiri from 1.13.10 to 1.14.0 ( #23128 )
...
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri ) from 1.13.10 to 1.14.0.
- [Release notes](https://github.com/sparklemotion/nokogiri/releases )
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md )
- [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.13.10...v1.14.0 )
---
updated-dependencies:
- dependency-name: nokogiri
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-18 10:54:19 +01:00
Aaron Patterson
eb135d1c58
Remove microformats gem dependency ( #22923 )
...
Looks like this gem was introduced as a dependency in 90aa720d2e
for
testing Miroformat output. The last test using the Microformats gem was
removed in 8ad51fba6c
, so I think it is
safe to remove this dependency.
For context, you [can't install the microformats gem with Ruby 3.2](https://github.com/microformats/microformats-ruby/pull/131 ),
so we can't currently bundle Mastodon with Ruby 3.2. But since we don't
really need this gem, we can just remove it and unblock Ruby 3.2
2023-01-04 01:45:16 +01:00
dependabot[bot]
640210c251
Bump redis-namespace from 1.9.0 to 1.10.0 ( #22765 )
...
Bumps [redis-namespace](https://github.com/resque/redis-namespace ) from 1.9.0 to 1.10.0.
- [Release notes](https://github.com/resque/redis-namespace/releases )
- [Changelog](https://github.com/resque/redis-namespace/blob/master/CHANGELOG.md )
- [Commits](https://github.com/resque/redis-namespace/compare/v1.9...v1.10.0 )
---
updated-dependencies:
- dependency-name: redis-namespace
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-27 09:52:15 +09:00