🚨 [security] Update rubocop-rspec 2.14.1 → 3.10.2 (major)#93
Open
depfu[bot] wants to merge 1 commit into
Open
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
🚨 Your current dependencies have known security vulnerabilities 🚨
This dependency update fixes known security vulnerabilities. Please see the details below and assess their impact carefully. We recommend to merge and deploy this as soon as possible!
Here is everything you need to know about this upgrade. Please take a good look at what changed and the test results before merging this pull request.
What changed?
✳️ rubocop-rspec (2.14.1 → 3.10.2) · Repo · Changelog
Release Notes
Too many releases to show here. View the full release notes.
Commits
See the full diff on Github. The new version differs by more commits than we can show here.
✳️ rubocop (1.37.1 → 1.87.0) · Repo · Changelog
Release Notes
Too many releases to show here. View the full release notes.
Commits
See the full diff on Github. The new version differs by 29 commits:
Cut 1.87Update ChangelogFix incorrect autocorrect for `Style/StructInheritance` cop[Fix #15185] Make `Layout/EmptyLineAfterGuardClause` accept new SimpleCov directivesMerge pull request #15190 from koic/fix_false_positives_in_style_yoda_condition[Fix #15188] Fix false positives for `Style/YodaCondition`Fix incorrect autocorrect for `Style/HashConversion` copMerge pull request #15184 from rubocop/fix-typos-and-grammar-in-docsFix various typos and grammar mistakes in documentationMerge pull request #15182 from koic/fix_incorrect_autocorrect_for_style_alias_inside_visibility_modifierFix incorrect autocorrect for `Style/Alias` copMerge pull request #15180 from koic/fix_incorrect_autocorrect_for_style_file_write_copFix incorrect autocorrect for `Style/FileWrite` copAdd lazy load support to RegistryAdd `--enable-all-cops` and `--disable-all-cops` command line optionsAdd optional Rubydex integrationMerge pull request #15175 from ddbrendan/fix/multiline-block-body-indentation-after-chainMerge pull request #15174 from koic/fix_incorrect_autocorrect_for_style_class_and_module_childrenFix `Layout/IndentationWidth` for trailing-dot chains under `relative_to_receiver`Fix incorrect autocorrect for `Style/ClassAndModuleChildren`Merge pull request #15140 from hammadxcm/fix/15135-redundant-parentheses-comment-swallows-chainMerge pull request #15171 from rubocop/cache-file-patterns-match-resultsCache `FilePatterns#match?` results per pathMerge pull request #15170 from koic/fix_infinite_loop_for_layout_redundant_line_breakFix an infinite loop for `Layout/RedundantLineBreak` copMerge pull request #15169 from koic/fix_false_positives_in_lint_parentheses_as_grouped_expression[Fix #15168] Fix false positives in `Lint/ParenthesesAsGroupedExpression`Use mcp gem 0.16.0+ for developmentReset the docs versionCommits
See the full diff on Github. The new version differs by 10 commits:
Bump version.Update CI matrix, remove redundant `context`s from specs (#42)Replace bacon with rspec (#41)Use latest ruby versions on test job (#39)Bump actions/checkout (#38)Use `require_relative` instead of `require` (#37)Update Rubies in CI (#35)Fix usage example for Sexp (#36)Fix broken linkFixnum is now spelled Integer (#33)Security Advisories 🚨
🚨 Ruby JSON has a format string injection vulnerability
🚨 Ruby JSON has a format string injection vulnerability
🚨 Ruby JSON has a format string injection vulnerability
🚨 Out-of-bounds Read in Ruby JSON Parser
Release Notes
Too many releases to show here. View the full release notes.
Commits
See the full diff on Github. The new version differs by more commits than we can show here.
Release Notes
2.1.0 (from changelog)
Does any of this look wrong? Please let us know.
Commits
See the full diff on Github. The new version differs by 75 commits:
v2.1.0Merge pull request #373 from grosser/grosser/hmacprevent pipe injectionMerge pull request #372 from tagliala/chore/remove-regex-matchPrefer `String#include?` and `match?` over `=~`Merge pull request #371 from tagliala/chore/remove-old-specRemove stale Darwin hwprefs specMerge pull request #368 from grosser/grosser/speedspeed up testsv2.0.1Merge pull request #366 from tagliala/chore/opt-in-for-mfa-explicitlyOpt-in for MFA requirement explicitlysimplify changelogMerge pull request #364 from sferik/changelogAdd CHANGELOG.md with full release historyv2.0.0Merge pull request #363 from grosser/grosser/rac4ruby 4 ractorsMerge pull request #362 from brandonzylstra/patch-1Update Readme.mdMerge pull request #361 from grosser/grosser/4bump rubiesv1.28.0Merge pull request #360 from grosser/grosser/dumpdump undumpable exceptions without cause if that fixes the issueMerge pull request #358 from grosser/grosser/upbundle and cleanup test duplicationv1.27.0Merge pull request #355 from grosser/grosser/34skipruby 3.4v1.26.3Merge pull request #351 from y-yagi/ensure_not_to_use_old_concurrent-rubyEnsure not to use old `concurrent-ruby`v1.26.2Revert "Revert "Merge pull request #348 from y-yagi/use_available_processor_count""v1.26.1Revert "Merge pull request #348 from y-yagi/use_available_processor_count"v1.26.0Merge pull request #348 from y-yagi/use_available_processor_countUse cgroups aware processor count by defaultv1.25.1Merge pull request #347 from Earlopain/speedup-windows-cpuImprove speed for `Get-CimInstance`v1.25.0Merge pull request #346 from Earlopain/drop-win32oleAdd Ruby 3.3 to CIBump `sqlite3` to solve compilation failures with latest libBump `actions/checkout` to v4Remove dependency on `win32ole`Merge pull request #344 from grosser/grosser/readexample for proc usageMerge pull request #343 from grosser/grosser/bumprubocop: fix assignment in conditionupdate rubocopfix rubocopupdate ruby requirementsMerge pull request #341 from MITSUBOSHI/remove-unneeded-travis-envRemove unneeded ENV['TRAVIS'] from specthx for the prv1.24.0Merge pull request #340 from grosser/grosser/orderpolishMerge pull request #339 from shaicoleman/finish-in-orderAdd :finish_in_order optionv1.23.0Merge pull request #336 from grosser/grosser/filter-mapadd filter-mapMerge pull request #333 from M-Yamashita01/fix-inline-method-in-processor-countInline the methods of ProcessorCount module.Merge pull request #331 from msasaki666/add-ruby-3.2-to-ciadd ruby 3.2 to ciMerge pull request #330 from grosser/grosser/docssmall docs fiximprove ractor docsRelease Notes
Too many releases to show here. View the full release notes.
Commits
See the full diff on Github. The new version differs by more commits than we can show here.
Release Notes
Too many releases to show here. View the full release notes.
Commits
See the full diff on Github. The new version differs by more commits than we can show here.
Release Notes
Too many releases to show here. View the full release notes.
Commits
See the full diff on Github. The new version differs by more commits than we can show here.
Release Notes
1.13.0 (from changelog)
1.12.0 (from changelog)
Does any of this look wrong? Please let us know.
Release Notes
Too many releases to show here. View the full release notes.
Commits
See the full diff on Github. The new version differs by more commits than we can show here.
🆕 language_server-protocol (added, 3.17.0.5)
🆕 lint_roller (added, 1.1.0)
🆕 prism (added, 1.9.0)
🆕 racc (added, 1.8.1)
🆕 unicode-emoji (added, 4.2.0)
🗑️ rexml (removed)
Depfu will automatically keep this PR conflict-free, as long as you don't add any commits to this branch yourself. You can also trigger a rebase manually by commenting with
@depfu rebase.All Depfu comment commands