Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): bump webrick from 1.8.1 to 1.8.2 in /buildpacks/buildpack-ruby/tests/ruby-sinatra #1320

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 3, 2024

Bumps webrick from 1.8.1 to 1.8.2.

Release notes

Sourced from webrick's releases.

v1.8.2

What's Changed

New Contributors

Full Changelog: ruby/webrick@v1.8.1...v1.8.2

Commits
  • 0fb9de6 Bump up v1.8.2
  • b9a4c81 Removed trailing spaces
  • f5faca9 Prevent request smuggling
  • 0c600e1 Fix reference to URI::REGEXP::PATTERN::HOST
  • 15a9391 Return 400 response for chunked requests with unexpected data after chunk
  • 2b38d56 Treat missing CRLF separator after headers as an EOFError
  • e4efb4a Remove unnecessary gsub calls in test_httprequest.rb
  • 426e214 Only strip space and horizontal tab in headers
  • e72cb69 Prefer squigly heredocs. (#143)
  • ee60354 Require CRLF line endings in request line and headers
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [webrick](https://github.com/ruby/webrick) from 1.8.1 to 1.8.2.
- [Release notes](https://github.com/ruby/webrick/releases)
- [Commits](ruby/webrick@v1.8.1...v1.8.2)

---
updated-dependencies:
- dependency-name: webrick
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Oct 3, 2024
@josegonzalez josegonzalez merged commit e291c33 into master Oct 4, 2024
50 checks passed
@josegonzalez josegonzalez deleted the dependabot/bundler/buildpacks/buildpack-ruby/tests/ruby-sinatra/webrick-1.8.2 branch October 4, 2024 18:55
josegonzalez added a commit that referenced this pull request Nov 11, 2024
- #1315 @dokku-bot: Update python to version v257
- #1316 @dokku-bot: Update php to version v257
- #1317 @dependabot: chore(deps-dev): bump heroku/heroku-buildpack-php from 256 to 257 in /buildpacks/buildpack-php/tests/php
- #1318 @dokku-bot: Update python to version v258
- #1319 @dokku-bot: Update go to version v198
- #1320 @dependabot: chore(deps): bump webrick from 1.8.1 to 1.8.2 in /buildpacks/buildpack-ruby/tests/ruby-sinatra
- #1321 @dokku-bot: Update java to version v74
- #1322 @dokku-bot: Update gradle to version v40
- #1323 @dokku-bot: Update nodejs to version v266
- #1326 @dependabot: chore(deps): bump markupsafe from 2.1.5 to 3.0.1 in /buildpacks/buildpack-python/tests/python-flask
- #1327 @dependabot: chore(deps): bump markupsafe from 2.1.5 to 3.0.1 in /buildpacks/buildpack-multi/tests/multi
- #1328 @dokku-bot: Update ruby to version v280
- #1329 @dokku-bot: Update python to version v259
- #1330 @dokku-bot: Update python to version v260
- #1331 @dependabot: chore(deps): bump rack from 3.1.7 to 3.1.8 in /buildpacks/buildpack-ruby/tests/ruby-sinatra
- #1332 @dependabot: chore(deps): bump rack from 3.1.7 to 3.1.8 in /buildpacks/buildpack-multi/tests/multi
- #1333 @dokku-bot: Update python to version v261
- #1334 @dependabot: chore(deps): bump markupsafe from 3.0.1 to 3.0.2 in /buildpacks/buildpack-python/tests/python-flask
- #1335 @dependabot: chore(deps): bump markupsafe from 3.0.1 to 3.0.2 in /buildpacks/buildpack-multi/tests/multi
- #1339 @dependabot: chore(deps-dev): bump heroku/heroku-buildpack-php from 257 to 258 in /buildpacks/buildpack-php/tests/php
- #1340 @dokku-bot: Update nodejs to version v269
- #1341 @dokku-bot: Update python to version v263
- #1342 @dokku-bot: Update php to version v258
- #1343 @dependabot: chore(deps): bump rackup from 2.1.0 to 2.2.0 in /buildpacks/buildpack-ruby/tests/ruby-sinatra
- #1344 @dokku-bot: Update python to version v265
- #1345 @dependabot: chore(deps): bump twig/twig from 3.11.1 to 3.11.2 in /buildpacks/buildpack-php/tests/php
- #1347 @dokku-bot: Update ruby to version v282
- #1349 @josegonzalez Copy the rds pem bundle into place to avoid build failures
- #1350 @josegonzalez Create .well-known/funding-manifest-urls
- #1351 @dokku-bot: Update python to version v266
@josegonzalez josegonzalez mentioned this pull request Nov 11, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant