Bump activerecord-session_store, rails and rspec-rails #715
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps activerecord-session_store, rails and rspec-rails. These dependencies needed to be updated together.
Updates
activerecord-session_store
from 1.1.3 to 2.0.0Release notes
Sourced from activerecord-session_store's releases.
Commits
78e0047
Bump to 2.0.0c23358c
Move secure migration into a rake task1973f37
Update styling in README.mdb1f36fb
Update build matrixc16ddd2
Merge pull request #175 from thorsteneckel/patch-14b705d9
Migration can not rolled back as sessions are now secure hashes. Thanks to@n
...90a4cb2
Applied suggestions by@kratob
59755d3
Added documentation on how to mitigate CVE-2015-9284.9d4dd11
Merge pull request #151 from rails-lts/secure-session-store532a9a5
Merge remote-tracking branch 'upstream/master' into secure-session-storeUpdates
rails
from 5.1.7 to 5.2.4.5Release notes
Sourced from rails's releases.
... (truncated)
Commits
dc7364b
Preparing for 5.2.4.5 releasebf0ef9d
Fix possible DoS vector in PostgreSQL money type404ad9e
v5.2.4.4aaa7ab1
Fix XSS vulnerability intranslate
helper7b5cc5a
Preparing for 5.2.4.3 release559cce2
updating changelog3c806b9
bumping version9cb66f6
update changelogfbc7bec
Check that request is same-origin prior to including CSRF token in XHRsd124f19
HMAC raw CSRF token before masking it, so it cannot be used to reconstruct a ...Updates
rspec-rails
from 3.9.1 to 5.0.0Release notes
Sourced from rspec-rails's releases.
Changelog
Sourced from rspec-rails's changelog.
... (truncated)
Commits
9b5ddec
v5.0.0b64d4ae
v4.1.1a7913ba
Changelog for #2475887fc5f
Merge pull request #2475 from Naokimi/mainf249b48
Merge pull request #2476 from rspec/prep-version-51543e02
Docs for version 5.0.0710e997
added test686bf84
Remove support for < 5.277e073a
Truncate builds to 5.2+7efc47d
Limit Rails to 5.2 and aboveDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.