Update rubocop-rails_config: 0.2.5 → 0.12.2 (major)

[depfu]

Here is everything you need to know about this update. Please take a good look at what changed and the test results before merging this pull request.

What changed?

✳️ rubocop-rails_config (0.2.5 → 0.12.2) · Repo · Changelog

Release Notes

Too many releases to show here. View the full release notes.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ builder (indirect, 3.2.3 → 3.2.4) · Repo · Changelog

↗️ concurrent-ruby (indirect, 1.0.5 → 1.1.6) · Repo · Changelog

Release Notes

1.1.6 (from changelog)

concurrent-ruby:

• (#841) Concurrent.disable_at_exit_handlers! is no longer needed and was deprecated.
• (#841) AbstractExecutorService#auto_terminate= was deprecated and has no effect. Set :auto_terminate option instead when executor is initialized.

1.1.5 (from changelog)

concurrent-ruby:

• fix potential leak of context on JRuby and Java 7

concurrent-ruby-edge:

• Add finalized Concurrent::Cancellation
• Add finalized Concurrent::Throttle
• Add finalized Concurrent::Promises::Channel
• Add new Concurrent::ErlangActor

1.1.4 (from changelog)

• (#780) Remove java_alias of 'submit' method of Runnable to let executor service work on java 11
• (#776) Fix NameError on defining a struct with a name which is already taken in an ancestor

1.1.0

concurrent-ruby:

• requires at least Ruby 2.0
• Promises
  are moved from concurrent-ruby-edge to concurrent-ruby
• Add support for TruffleRuby
  • (#734) Fix Array/Hash/Set construction broken on TruffleRuby
  • AtomicReference fixed
• fixed documentation and README links
• fix Set for TruffleRuby and Rubinius
• CI stabilization
• remove sharp dependency edge -> core
• remove warnings
• documentation updates
• Exchanger is no longer documented as edge since it was already available in
  concurrent-ruby
• (#644) Fix Map#each and #each_pair not returning enumerator outside of MRI
• (#659) Edge promises fail during error handling
• (#741) Raise on recursive Delay#value call
• (#727) #717 fix global IO executor on JRuby
• (#740) Drop support for CRuby 1.9, JRuby 1.7, Rubinius.
• (#737) Move AtomicMarkableReference out of Edge
• (#708) Prefer platform specific memory barriers
• (#735) Fix wrong expected exception in channel spec assertion
• (#729) Allow executor option in Promise#then
• (#725) fix timeout check to use timeout_interval
• (#719) update engine detection
• (#660) Add specs for Promise#zip/Promise.zip ordering
• (#654) Promise.zip execution changes
• (#666) Add thread safe set implementation
• (#651) #699 #to_s, #inspect should not output negative object IDs.
• (#685) Avoid RSpec warnings about raise_error
• (#680) Avoid RSpec monkey patching, persist spec results locally, use RSpec
  v3.7.0
• (#665) Initialize the monitor for new subarrays on Rubinius
• (#661) Fix error handling in edge promises

concurrent-ruby-edge:

• (#659) Edge promises fail during error handling
• Edge files clearly separated in lib-edge
• added ReInclude
• add Promises.zip_futures_over_on

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ crass (indirect, 1.0.4 → 1.0.6) · Repo · Changelog

Release Notes

1.0.6

• Number values are now limited to a maximum of Float::MAX and a minimum of negative Float::MAX. (#11)

• Added project metadata to the gemspec. (#9 - @orien)

1.0.5

• Removed test files from the gem. (#8 - @t-richards)

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ erubi (indirect, 1.7.1 → 1.9.0) · Repo · Changelog

Release Notes

1.9.0 (from changelog)

* Change default :bufvar from 'String.new' to '::String.new' to work with BasicObject (jeremyevans)

1.8.0 (from changelog)

* Support :yield_returns_buffer option in capture_end for always returning the (potentially modified) buffer in <%|= tags (evanleck) (#15)

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ i18n (indirect, 1.1.0 → 1.8.2) · Repo · Changelog

Release Notes

1.8.2

• Restoration of #499 via #509 - deep_merge! & deep_merge methods appear again in the Hash refinement.
• An issue was introduced in v1.7.0 where some translations were returned as hashes, see #510. This was fixed in 1b5e345, and is available in this release.

1.2.0

• Provide a uniform API between Simple, KeyValue and Chain backends - #109 (one of our oldest PRs, and I am pleased that @kidpollo has persisted for all this time!)
• Support translation hashes with numeric keys in Simple backend - #422
• Add CacheFile backend module - #423
• Add JSON backend module - #429
• Updated README to point to the wiki - #438
• Added plural rules for oc locale - #440
• Removed tests from the bundled gem (leading to smaller download sizes) - #441
• Added a post-install message about fallback breaking change introduced in v1.1.0 - #442

1.1.1

• Expose translations with an option to perform initialization (if it hasn't been done already) (#353 / #254)
• Removed un-used Kernel core extension #436
• Added project metadata for RubyGems #434

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ loofah (indirect, 2.2.2 → 2.5.0) · Repo · Changelog

Release Notes

2.5.0 (from changelog)

Features

• Allow more CSS length units: "ch", "vw", "vh", "Q", "lh", "vmin", "vmax". [#178] (Thanks, @JuanitoFatas!)

Fixes

• Remove comments from Loofah::HTML::Documents that exist outside the html element. [#80]

Other changes

• Gem metadata being set [#181] (Thanks, @JuanitoFatas!)
• Test files removed from gem file [#180,#166,#159] (Thanks, @JuanitoFatas and @greysteil!)

2.4.0

2.4.0 / 2019-11-25

Features

• Allow CSS property max-width [#175] (Thanks, @bchaney!)
• Allow CSS sizes expressed in rem [#176, #177]
• Add frozen_string_literal: true magic comment to all lib files. [#118]

2.3.1

2.3.1 / 2019-10-22

Security

Address CVE-2019-15587: Unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.

This CVE's public notice is at #171

2.3.0 (from changelog)

Features

• Expand set of allowed protocols to include tel: and line:. [#104, #147]
• Expand set of allowed CSS functions. [related to #122]
• Allow greater precision in shorthand CSS values. [#149] (Thanks, @danfstucky!)
• Allow CSS property list-style [#162] (Thanks, @jaredbeck!)
• Allow CSS keywords thick and thin [#168] (Thanks, @georgeclaghorn!)
• Allow HTML property contenteditable [#167] (Thanks, @andreynering!)

Bug fixes

• CSS hex values are no longer limited to lowercase hex. Previously uppercase hex were scrubbed. [#165] (Thanks, @asok!)

Deprecations / Name Changes

The following method and constants are hereby deprecated, and will be completely removed in a future release:

• Deprecate Loofah::Helpers::ActionView.white_list_sanitizer, please use Loofah::Helpers::ActionView.safe_list_sanitizer instead.
• Deprecate Loofah::Helpers::ActionView::WhiteListSanitizer, please use Loofah::Helpers::ActionView::SafeListSanitizer instead.
• Deprecate Loofah::HTML5::WhiteList, please use Loofah::HTML5::SafeList instead.

Thanks to @JuanitoFatas for submitting these changes in #164 and for making the language used in Loofah more inclusive.

2.2.3

Notably, this release addresses CVE-2018-16468.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ method_source (indirect, 0.9.0 → 0.9.2) · Repo

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ mini_portile2 (indirect, 2.3.0 → 2.4.0) · Repo · Changelog

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ minitest (indirect, 5.11.3 → 5.14.1) · Repo · Changelog

Release Notes

5.14.0 (from changelog)

• 2 minor enhancements:

  • Block-assertions (eg assert_output) now error if raised inside the block. (casperisfine)

  • Changed assert_raises to only catch Assertion since that covers Skip and friends.

• 3 bug fixes:

  • Added example for value wrapper with block to Expectations module. (stomar)

  • Fixed use of must/wont_be_within_delta on Expectation instance. (stomar)

  • Renamed UnexpectedError#exception to #error to avoid problems with reraising. (casperisfine)

5.13.0 (from changelog)

• 9 minor enhancements:

  • Added Minitest::Guard#osx?

  • Added examples to documentation for assert_raises. (lxxxvi)

  • Added expectations #path_must_exist and #path_wont_exist. Not thrilled with the names.

  • Added fail_after(year, month, day, msg) to allow time-bombing after a deadline.

  • Added skip_until(year, month, day, msg) to allow deferring until a deadline.

  • Deprecated Minitest::Guard#maglev?

  • Deprecated Minitest::Guard#rubinius?

  • Finally added assert_path_exists and refute_path_exists. (deivid-rodriguez)

  • Refactored and pulled Assertions#things_to_diff out of #diff. (BurdetteLamar)

• 3 bug fixes:

  • Fix autorun bug that affects fork exit status in tests. (dylanahsmith/jhawthorn)

  • Improved documentation for _/value/expect, especially for blocks. (svoop)

  • Support new Proc#to_s format. (ko1)

5.12.2 (from changelog)

• 1 bug fix:

  • After chatting w/ @y-yagi and others, decided to lower support to include ruby 2.2.

5.12.1 (from changelog)

• 1 minor enhancement:

  • Added documentation for Reporter classes. (sshaw)

• 3 bug fixes:

  • Avoid using 'match?' to support older ruby versions. (y-yagi)

  • Fixed broken link to reference on goodness-of-fit testing. (havenwood)

  • Update requirements in readme and Rakefile/hoe spec.

5.12.0 (from changelog)

• 8 minor enhancements:

  • Added a descriptive error if assert_output or assert_raises called without a block. (okuramasafumi)

  • Changed mu_pp_for_diff to make having both n and \n easier to debug.

  • Deprecated $N for specifying number of parallel test runners. Use MT_CPU.

  • Deprecated use of global expectations. To be removed from MT6.

  • Extended Assertions#mu_pp to encoding validity output for strings to improve diffs.

  • Extended Assertions#mu_pp to output encoding and validity if invalid to improve diffs.

  • Extended Assertions#mu_pp_for_diff to make escaped newlines more obvious in diffs.

  • Fail gracefully when expectation used outside of `it`.

• 3 bug fixes:

  • Check `option` klass before match. Fixes 2.6 warning. (y-yagi)

  • Fixed Assertions#diff from recalculating if set to nil

  • Fixed spec section of readme to not use deprecated global expectations. (CheezItMan)

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ nokogiri (indirect, 1.8.5 → 1.10.9) · Repo · Changelog

Release Notes

1.10.9

1.10.9 / 2020-03-01

Fixed

• [MRI] Raise an exception when Nokogiri detects a specific libxml2 edge case involving blank Schema nodes wrapped by Ruby objects that would cause a segfault. Currently no fix is available upstream, so we're preventing a dangerous operation and informing users to code around it if possible. [#1985, #2001]
• [JRuby] Change NodeSet#to_a to return a RubyArray instead of Object, for compilation under JRuby 9.2.9 and later. [#1968, #1969] (Thanks, @headius!)

1.10.8

1.10.8 / 2020-02-10

Security

[MRI] Pulled in upstream patch from libxml that addresses CVE-2020-7595. Full details are available in #1992. Note that this patch is not yet (as of 2020-02-10) in an upstream release of libxml.

1.10.7

1.10.7 / 2019-12-03

Bug

• [MRI] Ensure the patch applied in v1.10.6 works with GNU patch. [#1954]

1.10.6

1.10.6 / 2019-12-03

Bug

• [MRI] Fix FreeBSD installation of vendored libxml2. [#1941, #1953] (Thanks, @nurse!)

1.10.5

1.10.5 / 2019-10-31

Dependencies

• [MRI] vendored libxml2 is updated from 2.9.9 to 2.9.10
• [MRI] vendored libxslt is updated from 1.1.33 to 1.1.34

1.10.4

1.10.4 / 2019-08-11

Security

Address CVE-2019-5477 (#1915)

A command injection vulnerability in Nokogiri v1.10.3 and earlier allows commands to be executed in a subprocess by Ruby's Kernel.open method. Processes are vulnerable only if the undocumented method Nokogiri::CSS::Tokenizer#load_file is being passed untrusted user input.

This vulnerability appears in code generated by the Rexical gem versions v1.0.6 and earlier. Rexical is used by Nokogiri to generate lexical scanner code for parsing CSS queries. The underlying vulnerability was addressed in Rexical v1.0.7 and Nokogiri upgraded to this version of Rexical in Nokogiri v1.10.4.

This CVE's public notice is #1915

1.10.3

1.10.3 / 2019-04-22

Security Notes

[MRI] Pulled in upstream patch from libxslt that addresses CVE-2019-11068. Full details are available in #1892. Note that this patch is not yet (as of 2019-04-22) in an upstream release of libxslt.

1.10.2

1.10.2 / 2019-03-24

Security

• [MRI] Remove support from vendored libxml2 for future script macros. [#1871]
• [MRI] Remove support from vendored libxml2 for server-side includes within attributes. [#1877]

Bug fixes

• [JRuby] Fix node ownership in duplicated documents. [#1060]
• [JRuby] Rethrow exceptions caught by Java SAX handler. [#1847, #1872] (Thanks, @adjam!)

1.10.1

1.10.1 / 2019-01-13

Features

• [MRI] During installation, handle Xcode 10's new library pathOS. [#1801, #1851] (Thanks, @mlj and @deepj!)
• Avoid unnecessary creation of Procs in many methods. [#1776] (Thanks, @chopraanmol1!)

Bug fixes

• CSS selector :has() now correctly matches against any descendant. Previously this selector matched against only direct children). [#350] (Thanks, @Phrogz!)
• NodeSet#attr now returns nil if it's empty. Previously this raised a NoMethodError.
• [MRI] XPath errors are no longer suppressed during XSLT::Stylesheet#transform. Previously these errors were suppressed which led to silent failures and a subsequent segfault. [#1802]

1.10.0

1.10.0 / 2019-01-04

Features

• [MRI] Cross-built Windows gems now support Ruby 2.6 [#1842, #1850]

Backwards incompatibilities

This release ends support for:

• Ruby 2.2, for which official support ended on 2018-03-31 [#1841]
• JRuby 1.7, for which official support ended on 2017-11-21 [#1741]

Dependencies

• [MRI] libxml2 is updated from 2.9.8 to 2.9.9
• [MRI] libxslt is updated from 1.1.32 to 1.1.33

1.9.1

1.9.1 / 2018-12-17

Bug fixes

• Fix a bug introduced in v1.9.0 where XML::DocumentFragment#dup no longer returned an instance of the callee's class, instead always returning an XML::DocumentFragment. This notably broke any subclass of XML::DocumentFragment including HTML::DocumentFragment as well as the Loofah gem's Loofah::HTML::DocumentFragment. [#1846]

1.9.0

1.9.0 / 2018-12-17

Security Notes

• [JRuby] Upgrade Xerces dependency from 2.11.0 to 2.12.0 to address upstream vulnerability CVE-2012-0881 [#1831] (Thanks @grajagandev for reporting.)

Notable non-functional changes

• Decrease installation size by removing many unneeded files (e.g., /test) from the packaged gems. [#1719] (Thanks, @stevecrozz!)

Features

• XML::Attr#value= allows HTML node attribute values to be set to either a blank string or an empty boolean attribute. [#1800]
• Introduce XML::Node#wrap which does what XML::NodeSet#wrap has always done, but for a single node. [#1531] (Thanks, @ethirajsrinivasan!)
• [MRI] Improve installation experience on macOS High Sierra (Darwin). [#1812, #1813] (Thanks, @gpakosz and @nurse!)
• [MRI] Node#dup supports copying a node directly to a new document. See the method documentation for details.
• [MRI] DocumentFragment#dup is now more memory-efficient, avoiding making unnecessary copies. [#1063]
• [JRuby] NodeSet has been rewritten to improve performance! [#1795]

Bug fixes

• NodeSet#each now returns self instead of zero. [#1822] (Thanks, @olehif!)
• [MRI] Address a memory leak when using XML::Builder to create nodes with namespaces. [#1810]
• [MRI] Address a memory leak when unparenting a DTD. [#1784] (Thanks, @stevecheckoway!)
• [MRI] Use RbConfig::CONFIG instead of ::MAKEFILE_CONFIG to fix installations that use Makefile macros. [#1820] (Thanks, @nobu!)
• [JRuby] Decrease large memory usage when making nested XPath queries. [#1749]
• [JRuby] Fix failing tests on JRuby 9.2.x
• [JRuby] Fix default namespaces in nodes reparented into a different document [#1774]
• [JRuby] Fix support for Java 9. [#1759] (Thanks, @Taywee!)

Dependencies

• [MRI] Upgrade mini_portile2 dependency from ~> 2.3.0 to ~> 2.4.0

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ parallel (indirect, 1.12.1 → 1.19.1) · Repo

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ parser (indirect, 2.5.1.2 → 2.7.1.2) · Repo · Changelog

Release Notes

2.7.1.0 (from changelog)

API modifications:

• Bump ruby versions to 2.4.10, 2.5.8, 2.6.6, 2.7.1. (#665) (Ilya Bylich)

Features implemented:

• ruby27.y: allow newlines inside braced pattern. (#664) (Ilya Bylich)
• ruby27.y: Allow trailing comma in hash pattern (#661) (Koichi ITO)

2.7.0.5 (from changelog)

Features implemented:

• ruby27.y: fix array pattern with tail source map (#659) (Vladimir Dementyev)

Bugs fixed:

• builder.rb: fix constant_pattern source map (#660) (Vladimir Dementyev)

2.7.0.2 (from changelog)

Bugs fixed:

• lexer.rl: fix paren_nest for curly braces (#646) (Ilya Bylich)

2.7.0.1 (from changelog)

Bugs fixed:

• dedenter.rb: prevent ArgumentError when processing binary en… (#642) (Koichi ITO)

2.7.0.0 (from changelog)

API modifications:

• README.md: documented compatibility issue with EOF chars after… (#637) (Ilya Bylich)
• ruby27.y: refactor logic around 'circular argument reference'(#628) (Ilya Bylich)

Features implemented:

• ruby27.y: added pattern matching (#574) (Ilya Bylich)
• lexer.rl: parse embedded ivars/cvars starting with digit as str (#639) (Ilya Bylich)
• lexer.rl: warn on ... at EOL. (#636) (Ilya Bylich)
• ruby27.y: removed opt_block_args_tail: tOROP rule. (#635) (Ilya Bylich)
• ruby27.y: reverted method reference operator (added in #634) (Ilya Bylich)
• ruby27.y: treat numparams as locals outside numblock. (#633) (Ilya Bylich)

Bugs fixed:

• dedenter.rb: fixed over-dedenting of squiggly heredocs (#641) (Ilya Bylich)
• ruby27.y: added "arguments forwarding" (#625) (Ilya Bylich)
• ruby27.y: reject circular argument reference. (#622) (Ilya Bylich)
• ruby27.y: changed prefix of numparams to "_" (#620) (Ilya Bylich)

2.6.5.0 (from changelog)

API modifications:

• Bump ruby versions to 2.4.9, 2.5.7 and 2.6.5. (#619) (Ilya Bylich)

Features implemented:

• lexer.rl: changed max numparam to @9 (#617) (Ilya Bylich)
• lexer.rl: support comments before leading dot in 27 mode. (#613) (Ilya Bylich)

Bugs fixed:

• lexer.rl: emit tMETHREF as tDOT+tCOLON for rubies < 27. (#614) (Ilya Bylich)

2.6.4.1 (from changelog)

Features implemented:

• ruby27.y: Add kwnilarg for **nil argument (#606) (Ilya Bylich)

Bugs fixed:

• lexer.rl: fix parsing of 'm a + b do end' (#605) (Ilya Bylich)

2.6.4.0 (from changelog)

API modifications:

• Added specs for heredocs with mixed encoding. (#581) (Ilya Bylich)

Features implemented:

• ruby27.y: Revert "pipeline operator" (#601) (Koichi ITO)
• ruby27.y: Fix parsing of mutiple assignment with rescue modifier (#600) (Koichi ITO)
• ruby27.y: hoisted out f_rest_marg. (#594) (Ilya Bylich)
• ruby27.y: added pipeline operator. (#592) (Ilya Bylich)
• ruby27.y: reject safe navigator in LHS of mass-assignment. (#586) (Ilya Bylich)
• lexer.rl: reject whitespaces in meta and control chars. (#585) (Ilya Bylich)
• lexer.rl: Reject numparams as symbol literals. (#582) (Ilya Bylich)
• ruby27.y: Added numbered parameters support. (#565) (Ilya Bylich)
• lexer.rl: Reject \n and \r in heredoc identifiers starting from 2.7. (#575) (Ilya Bylich)

Bugs fixed:

• ruby-parse: print empty string when --emit-json and empty input are given. (#590) (Ilya Bylich)
• AST_FORMAT: fixed documentation of the string with interpolation. (#589) (Ilya Bylich)
• builder.rb, processor.rb: Changed format of the procarg0 node. (#587) (Ilya Bylich)

2.6.3.0 (from changelog)

Features implemented:

• ruby27.y: Added beginless ranges support. (#570) (Ilya Bylich)

2.6.2.1 (from changelog)

API modifications:

• Bump 2.4 branch to 2.4.6. (#569) (Ilya Bylich)
• Lexer should know about current parsing context. (#566) (Ilya Bylich)

2.6.2.0 (from changelog)

API modifications:

• Bump ruby versions to 2.5.5 and 2.6.2. (#563) (Ilya Bylich)
• Bump Ruby version to 2.6.1. (#554) (Ilya Bylich)

Features implemented:

• ruby27.y: dsym should be treated as string. (#560) (Ilya Bylich)
• ruby27.y: Refactored symbol rules. (#557) (Ilya Bylich)
• ruby27.y: Added method reference operator. (#556) (Ilya Bylich)
• ruby27.y: branch parser. (#546) (Ilya Bylich)

2.6.0.0 (from changelog)

API modifications:

• 2.6.0 was released, unmark is as -dev. (#538) (Ilya Bylich)

Bugs fixed:

• Fix parsing of "\\n" escaped sequences in various literals. (#539) (Ilya Bylich)

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ rails-html-sanitizer (indirect, 1.0.4 → 1.3.0) · Repo · Changelog

Release Notes

1.3.0

• Address deprecations in Loofah 2.3.0.

  Josh Goodall

1.2.0

• Remove needless white_list_sanitizer deprecation.

  By deprecating this, we were forcing Rails 5.2 to be updated or spew
  deprecations that users could do nothing about.

  That's pointless and I'm sorry for adding that!

  Now there's no deprecation warning and Rails 5.2 works out of the box, while
  Rails 6 can use the updated naming.

  Kasper Timm Hansen

1.1.0

• Add safe_list_sanitizer and deprecate white_list_sanitizer to be removed
  in 1.2.0. #87

  Juanito Fatas

• Remove href from LinkScrubber's tags as it's not an element.
  #92

  Juanito Fatas

• Explain that we don't need to bump Loofah here if there's CVEs.
  d4d823c

  Kasper Timm Hansen

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ rubocop (indirect, 0.59.2 → 0.84.0) · Repo · Changelog

Release Notes

Too many releases to show here. View the full release notes.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ ruby-progressbar (indirect, 1.10.0 → 1.10.1) · Repo · Changelog

Release Notes

1.10.1 (from changelog)

Change

• Make Extra Sure We're Not Loading Ruby's Time Class

Fix

• CHANGELOG URI in both gemspecs to point to master CHANGELOG.md
• Ruby 1.8/1.9 IO Doesn't Respond to winsize

Remove

• allowed_push_host From gemspecs

Does any of this look wrong? Please let us know.

↗️ thor (indirect, 0.20.0 → 1.0.1) · Repo · Changelog

Release Notes

1.0.1 (from changelog)

• Fix thor when thor/base and thor/group are required without thor.rb.
• Handle relative source path in create_link.

1.0.0 (from changelog)

• Drop support to Ruby 1.8 and 1.9.

• Deprecate relying on default exit_on_failure?. In preparation to make Thor commands exit when there is a failure we are deprecating defining a command without defining what behavior is expected when there is a failure.

  To fix the deprecation you need to define a class method called exit_on_failure? returning

  false if you want the current behavior or true if you want the new behavior.

• Deprecate defining an option with the default value using a different type as defined in the option.

• Allow options to be repeatable. See #674.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ tzinfo (indirect, 1.2.5 → 1.2.7) · Repo · Changelog

Release Notes

1.2.7

• Fixed 'wrong number of arguments' errors when running on JRuby 9.0. #114.
• Fixed warnings when running on Ruby 2.8. #112.

TZInfo v1.2.7 on RubyGems.org

1.2.6

• Timezone#strftime('%s', time) will now return the correct number of seconds since the epoch. #91.
• Removed the unused TZInfo::RubyDataSource::REQUIRE_PATH constant.
• Fixed "SecurityError: Insecure operation - require" exceptions when loading data with recent Ruby releases in safe mode.
• Fixed warnings when running on Ruby 2.7. #106 and #111.

TZInfo v1.2.6 on RubyGems.org

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ unicode-display_width (indirect, 1.4.0 → 1.7.0) · Repo · Changelog

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

🆕 rexml (added, 3.2.4)

🆕 rubocop-ast (added, 0.0.3)

🆕 rubocop-performance (added, 1.6.0)

🆕 rubocop-rails (added, 2.5.2)

🗑️ jaro_winkler (removed)

🗑️ powerpack (removed)

---

Depfu will automatically keep this PR conflict-free, as long as you don't add any commits to this branch yourself. You can also trigger a rebase manually by commenting with @depfu rebase.

All Depfu comment commands

@​depfu rebase

Rebases against your default branch and redoes this update

@​depfu recreate

Recreates this PR, overwriting any edits that you've made to it

@​depfu merge

Merges this PR once your tests are passing and conflicts are resolved

@​depfu close

Closes this PR and deletes the branch

@​depfu reopen

Restores the branch and reopens this PR (if it's closed)

@​depfu pause

Ignores all future updates for this dependency and closes this PR

@​depfu pause [minor|major]

Ignores all future minor/major updates for this dependency and closes this PR

@​depfu resume

Future versions of this dependency will create PRs again (leaves this PR as is)

[depfu]

Closed in favor of #77.