Sourced from roda's\r\nchangelog.
\r\n\r\n\r\n= master
\r\n\r\n
\r\n- \r\n
\r\nCorrectly parse Ruby 3.4 backtraces in exception_page plugin\r\n(jeremyevans)
\r\n- \r\n
\r\nSupport :until and :seconds option in hmac_paths plugin, for paths\r\nvalid only until a specific time (jeremyevans)
\r\n= 3.80.0 (2024-05-10)
\r\n\r\n
\r\n- Support :namespace option in hmac_paths plugin, allowing for easy\r\nper-user/per-group HMAC paths (jeremyevans)
\r\n= 3.79.0 (2024-04-12)
\r\n\r\n
\r\n- \r\n
\r\nDo not update template mtime when there is an error reloading\r\ntemplates in the render plugin (jeremyevans)
\r\n- \r\n
\r\nAdd hmac_paths plugin for preventing path enumeration and supporting\r\naccess control (jeremyevans)
\r\n= 3.78.0 (2024-03-13)
\r\n\r\n
\r\n- Add permissions_policy plugin for setting Permissions-Policy header\r\n(jeremyevans)
\r\n= 3.77.0 (2024-02-12)
\r\n\r\n
\r\n- Support formaction/formmethod attributes in forms in route_csrf\r\nplugin (jeremyevans)
\r\n= 3.76.0 (2024-01-12)
\r\n\r\n
\r\n- \r\n
\r\nSupport :filter plugin option in error_mail and error_email for\r\nfiltering parameters, environment variables, and session values\r\n(jeremyevans) (#346)
\r\n- \r\n
\r\nSet temporary name on Ruby 3.3 in middleware plugin for middleware\r\nclass created (janko) (#344)
\r\n- \r\n
\r\nAdd break plugin, for using break inside a routing block to return\r\nfrom the block and keep routing (jeremyevans)
\r\n= 3.75.0 (2023-12-14)
\r\n\r\n
\r\n- Add cookie_flags plugin, for overriding, warning, or raising for\r\nincorrect cookie flags (jeremyevans)
\r\n= 3.74.0 (2023-11-13)
\r\n\r\n
\r\n- Add redirect_http_to_https plugin, helping to ensure future requests\r\nfrom the browser are submitted via HTTPS (jeremyevans)
\r\n= 3.73.0 (2023-10-13)
\r\n\r\n
\r\n- \r\n
\r\nSupport :next_if_not_found option for middleware plugin (jeremyevans)\r\n(#334)
\r\n- \r\n
\r\nRemove dependency on base64 library from sessions and route_csrf\r\nplugin, as it will not be part of the standard library in Ruby 3.4+\r\n(jeremyevans)
\r\n= 3.72.0 (2023-09-12)
\r\n\r\n
\r\n\r\n- Add invalid_request_body plugin for custom handling of invalid\r\nrequest bodies (jeremyevans)
\r\n
... (truncated)
\r\nb9a91aa
\r\nBump version to 3.80.0e2ef45b
\r\nSupport :namespace option in hmac_paths plugin, allowing for easy\r\nper-user/pe...Sourced from rubocop-rspec's\r\nreleases.
\r\n\r\n\r\nRuboCop RSpec v2.30.0
\r\n\r\n
\r\n- Add new
\r\nRSpec/ExpectInLet
cop. (@yasu551
)RuboCop RSpec v2.29.2
\r\n\r\n
\r\n- Fix beginless and endless range bug for RepeatedIncludeExample cop.\r\n(
\r\n@hasghari
)- Fix a false positive for
\r\nRSpec/RepeatedSubjectCall
when\r\nsubject is used as argument to function call. (@K-S-A
)
Sourced from rubocop-rspec's\r\nchangelog.
\r\n\r\n\r\nChangelog
\r\nMaster (Unreleased)
\r\n\r\n
\r\n- Remove extracted cops in
\r\nCapybara
,\r\nFactoryBot
andRails
departments. ([@ydah
])- Remove
\r\nRuboCop::RSpec::Language::NodePattern
. ([@ydah
])- Remove
\r\nRSpec/FilePath
cop. ([@ydah
])- Add new
\r\nRSpec/ExpectInLet
cop. ([@yasu551
])- Remove
\r\nRSpec/Capybara/FeatureMethods
cop. If you are\r\nusing this cop, change it to useRSpec/Dialect
. ([@ydah
])- Support
\r\nAutoCorrect: contextual
option for LSP. ([@ydah
])2.29.2 (2024-05-02)
\r\n\r\n
\r\n- Fix beginless and endless range bug for RepeatedIncludeExample cop.\r\n([
\r\n@hasghari
])- Fix a false positive for
\r\nRSpec/RepeatedSubjectCall
when\r\nsubject is used as argument to function call. ([@K-S-A
])
510b019
\r\nMerge pull request #1897\r\nfrom rubocop/release-2-30-06fc377b
\r\nBump to v2.30.05dea642
\r\nMerge pull request #1895\r\nfrom rubocop/run-actions-on-2-x-stable-branch3d97a57
\r\nMerge pull request #1894\r\nfrom rubocop/backport-pr-188572846b0
\r\nAdd new RSpec/ExpectInLet
cop5cf9381
\r\nfixup! Configure GHA workflows for the 2-x-stable branch9efc2ad
\r\nConfigure GHA workflows for the 2-x-stable branchcd279a8
\r\nMerge pull request #1896\r\nfrom rubocop/backport-pr-18817067b79
\r\nFix an edge offense for Style/SymbolProc
0d51335
\r\nMerge pull request #1875\r\nfrom rubocop/releaseSourced from rubocop's\r\nreleases.
\r\n\r\n\r\nRuboCop 1.64.1
\r\nBug fixes
\r\n\r\n
\r\n- #12951:\r\nFix an error for
\r\nStyle/Copyright
when\r\nAutocorrectNotice
is missing. (@koic
)- #12932:\r\nFix end position of diagnostic for LSP. (
\r\n@ksss
)- #12926:\r\nFix a false positive for
\r\nStyle/SuperArguments
when the\r\nmethods block argument is reassigned beforesuper
. (@earlopain
)- #12931:\r\nFix false positives for
\r\nStyle/RedundantLineContinuation
\r\nwhen line continuations involvebreak
,next
,\r\noryield
with a return value. (@koic
)- #12924:\r\nFix false positives for
\r\nStyle/SendWithLiteralMethodName
\r\nwhenpublic_send
argument is a method name that cannot be\r\nautocorrected. (@koic
)RuboCop 1.64
\r\nNew features
\r\n\r\n
\r\n- #12904:\r\nAdd new
\r\neither_consistent
\r\nSupportedShorthandSyntax
toStyle/HashSyntax
.\r\n(@pawelma
)- #12842:\r\nAdd new
\r\nStyle/SendWithLiteralMethodName
cop. (@koic
)- #12309:\r\nAdd new
\r\nStyle/SuperArguments
cop. (@earlopain
)- #12917:\r\nSuggest correct formatter name for
\r\n--format
command line\r\noption. (@koic
)- #12242:\r\nSupport
\r\nAllowModifiersOnAttrs
option for\r\nStyle/AccessModifierDeclarations
. (@krororo
)- #11585:\r\nSupport
\r\nAllowedMethods
for\r\nStyle/DocumentationMethod
. (@koic
)Bug fixes
\r\n\r\n
\r\n- #7189:\r\nFix a false positive for
\r\nStyle/Copyright
when using\r\nmultiline copyright notice. (@koic
)- #12914:\r\nFix a false negative for
\r\nLayout/EmptyComment
when using an\r\nempty comment next to code after comment line. (@koic
)- #12919:\r\nFix false negatives for
\r\nStyle/ArgumentsForwarding
when\r\nforward target issuper
. (@koic
)- #12923:\r\nFix false negatives for
\r\nStyle/ArgumentsForwarding
when\r\nforward target is safe navigation method. (@koic
)- #12894:\r\nFix false positives for
\r\nStyle/MapIntoArray
when using\r\neach
without receiver with<<
to build\r\nan array. (@koic
)- #12876:\r\nFix an error for the lockfile parser if a gemfile exists but a lockfile\r\ndoesn't. (
\r\n@earlopain
)- #12888:\r\nFix
\r\n--no-exclude-limit
generating a todo with\r\nMax
config instead of listing everything out with\r\nExclude
. (@earlopain
)- #12898:\r\nFix an error for
\r\nTargetRailsVersion
when parsing from the\r\nlockfile with prerelease rails. (@earlopain
)Changes
\r\n\r\n
\r\n- #12908:\r\nAdd rubocop-rspec back to suggested extensions when rspec-rails is in\r\nuse. (
\r\n@pirj
)- #12884:\r\nAlign output from
\r\ncop.documentation_url
with\r\n--show-docs-url
when passing a config as argument. (@earlopain
)- #12905:\r\nSupport
\r\nActiveSupportExtensionsEnabled
for\r\nStyle/SymbolProc
. (@koic
)- #12897:\r\nRespect user's intentions with
\r\nworkspace/executeCommand
LSP\r\nmethod. (@koic
)RuboCop 1.63.5
\r\nBug fixes
\r\n\r\n
... (truncated)
\r\nSourced from rubocop's\r\nchangelog.
\r\n\r\n\r\n1.64.1 (2024-05-31)
\r\nBug fixes
\r\n\r\n
\r\n- #12951:\r\nFix an error for
\r\nStyle/Copyright
when\r\nAutocorrectNotice
is missing. ([@koic
][])- #12932:\r\nFix end position of diagnostic for LSP. ([
\r\n@ksss
][])- #12926:\r\nFix a false positive for
\r\nStyle/SuperArguments
when the\r\nmethods block argument is reassigned beforesuper
. ([@earlopain
][])- #12931:\r\nFix false positives for
\r\nStyle/RedundantLineContinuation
\r\nwhen line continuations involvebreak
,next
,\r\noryield
with a return value. ([@koic
][])- #12924:\r\nFix false positives for
\r\nStyle/SendWithLiteralMethodName
\r\nwhenpublic_send
argument is a method name that cannot be\r\nautocorrected. ([@koic
][])1.64.0 (2024-05-23)
\r\nNew features
\r\n\r\n
\r\n- #12904:\r\nAdd new
\r\neither_consistent
\r\nSupportedShorthandSyntax
toStyle/HashSyntax
.\r\n([@pawelma
][])- #12842:\r\nAdd new
\r\nStyle/SendWithLiteralMethodName
cop. ([@koic
][])- #12309:\r\nAdd new
\r\nStyle/SuperArguments
cop. ([@earlopain
][])- #12917:\r\nSuggest correct formatter name for
\r\n--format
command line\r\noption. ([@koic
][])- #12242:\r\nSupport
\r\nAllowModifiersOnAttrs
option for\r\nStyle/AccessModifierDeclarations
. ([@krororo
][])- #11585:\r\nSupport
\r\nAllowedMethods
for\r\nStyle/DocumentationMethod
. ([@koic
][])Bug fixes
\r\n\r\n
\r\n- #7189:\r\nFix a false positive for
\r\nStyle/Copyright
when using\r\nmultiline copyright notice. ([@koic
][])- #12914:\r\nFix a false negative for
\r\nLayout/EmptyComment
when using an\r\nempty comment next to code after comment line. ([@koic
][])- #12919:\r\nFix false negatives for
\r\nStyle/ArgumentsForwarding
when\r\nforward target issuper
. ([@koic
][])- #12923:\r\nFix false negatives for
\r\nStyle/ArgumentsForwarding
when\r\nforward target is safe navigation method. ([@koic
][])- #12894:\r\nFix false positives for
\r\nStyle/MapIntoArray
when using\r\neach
without receiver with<<
to build\r\nan array. ([@koic
][])- #12876:\r\nFix an error for the lockfile parser if a gemfile exists but a lockfile\r\ndoesn't. ([
\r\n@earlopain
][])- #12888:\r\nFix
\r\n--no-exclude-limit
generating a todo with\r\nMax
config instead of listing everything out with\r\nExclude
. ([@earlopain
][])- #12898:\r\nFix an error for
\r\nTargetRailsVersion
when parsing from the\r\nlockfile with prerelease rails. ([@earlopain
][])Changes
\r\n\r\n
\r\n- #12908:\r\nAdd rubocop-rspec back to suggested extensions when rspec-rails is in\r\nuse. ([
\r\n@pirj
][])- #12884:\r\nAlign output from
\r\ncop.documentation_url
with\r\n--show-docs-url
when passing a config as argument. ([@earlopain
][])- #12905:\r\nSupport
\r\nActiveSupportExtensionsEnabled
for\r\nStyle/SymbolProc
. ([@koic
][])- #12897:\r\nRespect user's intentions with
\r\nworkspace/executeCommand
LSP\r\nmethod. ([@koic
][])1.63.5 (2024-05-09)
\r\nBug fixes
\r\n\r\n
\r\n- #12877:\r\nFix an infinite loop error for\r\n
\r\nLayout/FirstArgumentIndentation
when specifying\r\nEnforcedStyle: with_fixed_indentation
of\r\nLayout/ArrayAlignment
. ([@koic
][])- #12873:\r\nFix an error for
\r\nMetrics/BlockLength
when the\r\nCountAsOne
config is invalid. ([@koic
][])- #12881:\r\nFix incorrect autocorrect when
\r\nStyle/NumericPredicate
is\r\nused with negations. ([@fatkodima
][])- #12882:\r\nFix
\r\nLayout/CommentIndentation
for comment-only pattern\r\nmatching. ([@nekketsuuu
][])
31be300
\r\nCut 1.64.18ba7464
\r\nUpdate Changelog80f619b
\r\nFix an error for Style/Copyright
a920ba5
\r\n[Fix #12949]\r\nUse the secret for the coverage reporter idf01e933
\r\nMerge pull request #12946\r\nfrom Earlopain/speedier-ci43105b4
\r\nSlightly speed up CI runs6463bf2
\r\nMove main tests to GitHub actions54421d6
\r\n[Fix #12910]\r\nEnsure that RuboCop runs warning-free1cfe0b3
\r\nMove ascii_spec
to GitHub actionsfbdffc3
\r\nMove internal_investigation
to GitHub actionsSourced from rack's\r\nchangelog.
\r\n\r\n\r\n[3.0.11] - 2024-05-10
\r\n\r\n
\r\n- Backport #2062 to\r\n3-0-stable: Do not allow
\r\nBodyProxy
to respond to\r\nto_str
, maketo_ary
call close . (#2062,@jeremyevans
)
Sourced from webmock's\r\nchangelog.
\r\n\r\n\r\n3.23.1
\r\n\r\n
\r\n- \r\n
\r\nAdded support for async-http version >= 0.65.0 PR
\r\nThanks to Jacob\r\nFrautschi
\r\n
1b23927
\r\nAdded Ruby 3.3 to the list of supported Ruby versions in README13b8a28
\r\nVersion 3.23.10092f5d
\r\nMerge pull request #1056\r\nfrom IFTTT/master6cbfed0
\r\nMuch simpler54519b2
\r\nUse Async::Socket if is present83b6ec7
\r\nUpdate version.rb001f15f
\r\nUse single-quotes39a4c5c
\r\nReplace Async::IO::Socket usage with stdlib Socket for async-http\r\nadapter to ...Sourced from nokogiri's\r\nreleases.
\r\n\r\n\r\nv1.16.5 / 2024-05-13
\r\nSecurity
\r\n\r\n
\r\n- [CRuby] Vendored libxml2 is updated to address CVE-2024-34459. See\r\nGHSA-r95h-9x8f-r3f7\r\nfor more information.
\r\nDependencies
\r\n\r\n
\r\n- [CRuby] Vendored libxml2 is updated to v2.12.7\r\nfrom v2.12.6. (
\r\n@flavorjones
)
\r\nsha256 checksums:
\r\n\r\n\r\naf0f44fa3e664dfb2aa10de8b551447d720c1e8d1f0aa3f35783dcc43e40a874\r\nnokogiri-1.16.5-aarch64-linux.gem\r\n23dc2357b26409a5c33b7e32a82902f0e9995305420f16d1a03ab3ea1a482fec\r\nnokogiri-1.16.5-arm-linux.gem\r\n950d037530edb49f75ad35de0b8038b970a7dda57e2b6326895b0e49fadf6214\r\nnokogiri-1.16.5-arm64-darwin.gem\r\nb7aefc94370c62476b8528e8d8abb6160203abd84a1f4eceda8f1aa8974d9989\r\nnokogiri-1.16.5-java.gem\r\nec2167160df8fec3137bf95d574ed80ebc1d002bb3b281546b60b4aa9002466e\r\nnokogiri-1.16.5-x64-mingw-ucrt.gem\r\n6984200491fac69974005ecfa2de129d61843d345eafa5d6f58e8b908d1cf107\r\nnokogiri-1.16.5-x64-mingw32.gem\r\nabdc389ab1ec6604492da16bd9d06ad746fdb6bd6a1bd274c400d61ffcadb3c4\r\nnokogiri-1.16.5-x86-linux.gem\r\n63d24981345856f2baf7f4089870a62d3042fb8d3021b280fb04fc052532e3c4\r\nnokogiri-1.16.5-x86-mingw32.gem\r\n71b5f54e378c433d13df67c3b71acc4716129da62402d8181f310c4216a63279\r\nnokogiri-1.16.5-x86_64-darwin.gem\r\n0ca238da870066bed2f7837af6f35791bb9b76c4c5638999c46aac44818a6a97\r\nnokogiri-1.16.5-x86_64-linux.gem\r\nec36162c68984fa0a90a5c4ae7ab7759460639e716cc1ce75f34c3cb54158ad2\r\nnokogiri-1.16.5.gem\r\n
v1.16.4 / 2024-04-10
\r\nDependencies
\r\n\r\n
\r\n- [CRuby] Vendored zlib in the precompiled native gems is updated to\r\nv1.3.1 from v1.3. Nokogiri\r\nis not affected by the minizip CVE patched in this version, but this\r\nupdate may satisfy some security scanners. Related, see this\r\ndiscussion about removing the compression libraries altogether in a\r\nfuture version of Nokogiri.
\r\n
\r\nsha256 checksums:
\r\n\r\n\r\nbdb1dc4378ebcf3ade8f440c7df68f6d76946a1a96c4823a2b4c53c01a320cd5\r\nnokogiri-1.16.4-aarch64-linux.gem\r\n0c994b9996d5576eddcc3201a94ef2bff6fc3627c4ae4d2708b0ec9b9743ec6a\r\nnokogiri-1.16.4-arm-linux.gem\r\n8e86abb64c93c06d3c588042a0e757279e8f1dc88b5210a00be892a9a7a27196\r\nnokogiri-1.16.4-arm64-darwin.gem\r\nbf84fa28be4943692bd64772186e0832fb1061f80714ccb93e111e9d72b1cadc\r\nnokogiri-1.16.4-java.gem\r\na46808467c1f63a2031e1ca0715cd5336bb4ec759e9c0e2f4c951c1cc30994ae\r\nnokogiri-1.16.4-x64-mingw-ucrt.gem\r\n4cdf64bc5e9443ec3e0b595347ecc8affe21968d9ae934c0825d26630ef96468\r\nnokogiri-1.16.4-x64-mingw32.gem\r\nd86d21bae47dd9f6f5223055e45d33fae08b0b89aad94cbc0ece4f4274fa7af5\r\nnokogiri-1.16.4-x86-linux.gem\r\nd488b872884844686780fda7cf5da44ee884d32faa713a55aeb4736d76718168\r\nnokogiri-1.16.4-x86-mingw32.gem\r\na896e52a56951ffb0e6a9279afbf485d683e357a053d27f4cfcb2a73b0824628\r\nnokogiri-1.16.4-x86_64-darwin.gem\r\n92ff4f09910255fec84b3bc4c4b182e94cada3ed12b9f7a6ea058e0af186fb31\r\nnokogiri-1.16.4-x86_64-linux.gem\r\n</tr></table> \r\n
... (truncated)
\r\nSourced from nokogiri's\r\nchangelog.
\r\n\r\n\r\nv1.16.5
\r\nSecurity
\r\n\r\n
\r\n- [CRuby] Vendored libxml2 is updated to address CVE-2024-34459. See\r\nGHSA-r95h-9x8f-r3f7\r\nfor more information.
\r\nDependencies
\r\n\r\n
\r\n- [CRuby] Vendored libxml2 is updated to v2.12.7\r\nfrom v2.12.6. (
\r\n@flavorjones
)v1.16.4 / 2024-04-10
\r\nDependencies
\r\n\r\n
\r\n- [CRuby] Vendored zlib in the precompiled native gems is updated to\r\nv1.3.1 from v1.3. Nokogiri\r\nis not affected by the minizip CVE patched in this version, but this\r\nupdate may satisfy some security scanners. Related, see this\r\ndiscussion about removing the compression libraries altogether in a\r\nfuture version of Nokogiri.
\r\n
cd70bd3
\r\nversion bump to v1.16.5afc36de
\r\ndep: update vendored libxml2 to v2.12.7 (#3191)41b4f08
\r\nci: add arm64-darwin coverage using macos-1467b9e86
\r\ndep: update libxml2 to v2.12.717c0362
\r\nversion bump to v1.16.41c329e9
\r\ndep: update to zlib 1.3.1 (v1.16.x) (#3175)edeac07
\r\ndep: update to zlib 1.3.1Sourced from rexml's\r\nreleases.
\r\n\r\n\r\nREXML 3.2.8 - 2024-05-16
\r\nFixes
\r\n\r\n
\r\n- Suppressed a warning
\r\nREXML 3.2.7 - 2024-05-16
\r\nImprovements
\r\n\r\n
\r\n- \r\n
\r\nImprove parse performance by using
\r\n\r\nStringScanner
.- \r\n
\r\nImproved parse performance when an attribute has many\r\n
\r\n<
s.\r\n
\r\n- GH-124
\r\nFixes
\r\n\r\n
\r\n\r\n- \r\n
\r\nXPath: Fixed a bug of
\r\n\r\nnormalize_space(array)
.- \r\n
\r\nXPath: Fixed a bug that wrong position is used with nested path.
\r\n\r\n- \r\n
\r\nFixed a bug that an exception message can't be generated for\r\ninvalid encoding XML.
\r\n
... (truncated)
\r\nSourced from rexml's\r\nchangelog.
\r\n\r\n\r\n3.2.8 - 2024-05-16 {#version-3-2-8}
\r\nFixes
\r\n\r\n
\r\n- Suppressed a warning
\r\n3.2.7 - 2024-05-16 {#version-3-2-7}
\r\nImprovements
\r\n\r\n
\r\n- \r\n
\r\nImprove parse performance by using
\r\n\r\nStringScanner
.- \r\n
\r\nImproved parse performance when an attribute has many\r\n
\r\n<
s.\r\n
\r\n- GH-124
\r\nFixes
\r\n\r\n
\r\n\r\n- \r\n
\r\nXPath: Fixed a bug of
\r\n\r\nnormalize_space(array)
.- \r\n
\r\nXPath: Fixed a bug that wrong position is used with nested path.
\r\n\r\n- \r\n
\r\nFixed a bug that an exception message can't be generated for
\r\n
... (truncated)
\r\n1cf37ba
\r\nAdd 3.2.8 entryb67081c
\r\nRemove an unused variable (#128)94e180e
\r\nSuppress a warningd574ba5
\r\nci: install only gems required for running tests (#129)4670f8f
\r\nAdd missing Thanks section9ba35f9
\r\nBump version085def0
\r\nAdd 3.2.7 entry4325835
\r\nRead quoted attributes in chunks (#126)e77365e
\r\nExclude older than 2.6 on macos-14bf2c8ed
\r\nMove development dependencies to Gemfile (#124)