Bump the bundler-all group across 1 directory with 22 updates

[dependabot]

Bumps the bundler-all group with 12 updates in the / directory:

Package	From	To
autoprefixer-rails	10.4.16.0	10.4.19.0
aws-sdk-s3	1.156.0	1.158.0
bootsnap	1.18.3	1.18.4
good_job	4.1.0	4.2.0
sentry-rails	5.18.2	5.19.0
textacular	5.6.0	5.7.0
rspec-rails	6.1.3	6.1.4
rubocop	1.65.0	1.65.1
rubocop-rspec	3.0.3	3.0.4
childprocess	5.0.0	5.1.0
hashdiff	1.1.0	1.1.1
sprockets-rails	3.5.1	3.5.2

Updates autoprefixer-rails from 10.4.16.0 to 10.4.19.0

Changelog

Sourced from autoprefixer-rails's changelog.

10.4.19.0

• Removed end value has mixed support, consider using flex-end warning since end/start now have good support.
• Fixed removing -webkit-box-orient on -webkit-line-clamp (@​Goodwine).
• Fixed user-select: contain prefixes.

Commits

• 987430a Release 10.4.19.0
• 5b36bc6 build: upgrade dependencies
• 16fe8da Update autoprefixer to 10.4.19
• cf0af28 Update documentation on source maps in README.md
• 8cb3b04 Add Ruby 3.3 to CI matrix
• See full diff in compare view

Updates aws-sdk-s3 from 1.156.0 to 1.158.0

Changelog

Sourced from aws-sdk-s3's changelog.

1.158.0 (2024-08-15)

• Feature - Amazon Simple Storage Service / Features : Adds support for pagination in the S3 ListBuckets API.

1.157.0 (2024-08-01)

• Feature - Support head_bucket, get_object_attributes, delete_objects, and copy_object for Access Grants.

Commits

• See full diff in compare view

Updates bootsnap from 1.18.3 to 1.18.4

Changelog

Sourced from bootsnap's changelog.

1.18.4

• Allow using bootsnap without bundler. See #488.
• Fix startup failure if the cache directory points to a broken symlink.

Commits

• cae219a Release 1.18.4
• 407bdef Merge pull request #489 from Shopify/fix-load-error
• 7afa951 Fix bootsnap setup in environments without bundler
• c5513d9 Merge pull request #487 from Uaitt/update-gh-action-versions
• 65691ca Update GitHub actions versions
• 156b8c9 Merge pull request #485 from Uaitt/changelog-typo
• e76fe38 Merge pull request #486 from Uaitt/correct-rubocop-offenses
• 9ec8d70 Correct Rubocop offenses
• 47ad134 Correct a typo present in the CHANGELOG
• f627992 Add --version flag
• Additional commits viewable in compare view

Updates good_job from 4.1.0 to 4.2.0

Release notes

Sourced from good_job's releases.

v4.2.0

Review the Changelog for more details.

What's Changed

• Add retry functionality for batches by @​bensheldon in bensheldon/good_job#1456
• Do not use advisory lock on heartbeat in production by @​bensheldon in bensheldon/good_job#1451
• Fix a few method redefinition warnings by @​Earlopain in bensheldon/good_job#1459
• Fix perform_throttle even if perform_limit is provided by @​doits in bensheldon/good_job#1470
• Remove smaller_number_is_higher_priority option from v4 by @​bensheldon in bensheldon/good_job#1453

New Contributors

• @​doits made their first contribution in bensheldon/good_job#1470

Full Changelog: bensheldon/good_job@v4.1.1...v4.2.0

v4.1.1

Review the Changelog for more details.

What's Changed

• Refactor Adapter to reference jobs, not executions by @​bensheldon in bensheldon/good_job#1426
• Replace references to "Discrete" executions with simply Executions; deprecate GoodJob::DiscreteExecution by @​bensheldon in bensheldon/good_job#1427
• Refactor Concurrency extension for Rails 6.1+ compatibility by @​bensheldon in bensheldon/good_job#1429
• Remove references to and ignore good_jobs.retried_good_job_id column by @​bensheldon in bensheldon/good_job#1430
• Add Brakeman to linters by @​bensheldon in bensheldon/good_job#1431
• Ensure remaining inline jobs are unlocked when one job raises in Adapter#enqueue_all by @​bensheldon in bensheldon/good_job#1438
• Update development dependencies, Ruby 3.3.4 by @​bensheldon in bensheldon/good_job#1437
• German translation pass by @​Earlopain in bensheldon/good_job#1432
• Remove duplicate word on batches show page by @​Earlopain in bensheldon/good_job#1441
• Use svg use for svg icons by @​Earlopain in bensheldon/good_job#1428
• Handle empty asset format in Frontends controller by @​bensheldon in bensheldon/good_job#1443
• Fix N+1 on dashboard batches index page by @​bensheldon in bensheldon/good_job#1442
• All running jobs now have performed_at set so use that in status query; fix flaky test that took advisory lock in before block by @​bensheldon in bensheldon/good_job#1444
• Convert Concurrency extension to use transaction-level (xact) advisory locks by @​bensheldon in bensheldon/good_job#1439
• Refactor inline adapter to enable deferred execution after enqueue to allow batch-callbacks to use transaction-based advisory lock by @​bensheldon in bensheldon/good_job#1433
• Improve some Spanish transcriptions by @​sebastian-cloudnonic in bensheldon/good_job#1452

New Contributors

• @​sebastian-cloudnonic made their first contribution in bensheldon/good_job#1452

Full Changelog: bensheldon/good_job@v4.1.0...v4.1.1

Changelog

Sourced from good_job's changelog.

v4.2.0 (2024-08-16)

Full Changelog

Implemented enhancements:

• Add retry functionality for batches #1456 (bensheldon)

Fixed bugs:

• respect perform_throttle even if perform_limit is provided #1470 (doits)
• Do not use advisory lock on heartbeat in production #1451 (bensheldon)

Closed issues:

• perform_limit and perform_throttle don't work both #1469
• Edge rails changes breaking binding commits #1466
• Dynamic creation of CronEntries #1457
• Batch callback job not enqueued after success of retried job #1450

Merged pull requests:

• Update cron documentation to remove confusion about multiple processes #1467 (bensheldon)
• Update compatibility matrix, remove compatibility code #1465 (Earlopain)
• Run tests with warnings enabled #1462 (Earlopain)
• Add appraisal for Rails 7.2; bracket lowest PG version instead of enumerating all #1460 (bensheldon)
• Fix a few method redefinition warnings #1459 (Earlopain)
• Bump rexml from 3.3.2 to 3.3.3 #1455 (dependabot[bot])
• Remove smaller_number_is_higher_priority option from v4 #1453 (bensheldon)

v4.1.1 (2024-07-31)

Full Changelog

Implemented enhancements:

• Convert Concurrency extension to use transaction-level (xact) advisory locks #1439 (bensheldon)

Fixed bugs:

• Fix N+1 on dashboard batches index page #1442 (bensheldon)
• Remove duplicate word on batches show page #1441 (Earlopain)
• Ensure remaining inline jobs are unlocked when one job raises in Adapter#enqueue_all #1438 (bensheldon)

Closed issues:

• Using Good Job to track all ActiveJob executions, even those with perform_now #1448
• RuntimeError when running good_job executable after updating v3 -> v4 #1445
• 2.99 -> 3.0.2 migration not applying cleanly from a fresh DB #1435
• [Enhance] Enhance performance via counter cache #1375

... (truncated)

Commits

• 43ec2ad Release good_job v4.2.0
• 2da97eb respect perform_throttle even if perform_limit is provided (#1470)
• cc9784d Update compatibility matrix, remove compatibility code (#1465)
• 59c3300 Update cron documentation to remove confusion about multiple processes (#1467)
• a61fc09 Run tests with warnings enabled (#1462)
• 72ba713 Fix a few method redefinition warnings (#1459)
• a19bd1d Do not use advisory lock on heartbeat in production (#1451)
• 4201534 Add appraisal for Rails 7.2; bracket lowest PG version instead of enumerating...
• b0c9707 Add retry functionality for batches (#1456)
• aebdb97 Bump rexml from 3.3.2 to 3.3.3 (#1455)
• Additional commits viewable in compare view

Updates sentry-rails from 5.18.2 to 5.19.0

Changelog

Sourced from sentry-rails's changelog.

5.19.0

Features

• Use Concurrent.available_processor_count instead of Concurrent.usable_processor_count (#2358)

• Support for tracing Faraday requests (#2345)

  • Closes #1795
  • Please note that the Faraday instrumentation has some limitations in case of async requests: lostisland/faraday#1381

  Usage:

  Sentry.init do |config|
    # ...
    config.enabled_patches << :faraday
  end

• Support for attachments (#2357)

  Usage:

  Sentry.add_attachment(path: '/foo/bar.txt')
  Sentry.add_attachment(filename: 'payload.json', bytes: '{"value": 42}'))

• Transaction data are now included in the context (#2365)

  • Closes #2364

• Inject Sentry meta tags in the Rails application layout automatically in the generator (#2369)

  To turn this behavior off, use

  bin/rails generate sentry --inject-meta false

Bug Fixes

• Fix skipping connect spans in open-telemetry #2364

Commits

• 43c5cc2 release: 5.19.0
• a09da50 Include Sentry meta tag in the layout automatically (#2369)
• See full diff in compare view

Updates textacular from 5.6.0 to 5.7.0

Changelog

Sourced from textacular's changelog.

5.7.0

• ActiveRecord 7.2 compatibility
• Defer extending ActiveRecord::Base until Active Record is loaded

Commits

• 89eedb3 release 5.7.0
• ea00b4a relax Active Record dependency
• 7ebd3e1 Merge pull request #159 from bensheldon/patch-1
• 68c7086 Merge pull request #161 from elektronaut/rails-7-2
• 0e854f8 Add support for TestCase.fixture_paths
• f15394c Fix migrations task
• 0d23e59 Update gem requirements to allow Rails 7.2
• 4e1a6f3 Defer extending ActiveRecord::Base until Active Record is loaded
• See full diff in compare view

Updates rspec-rails from 6.1.3 to 6.1.4

Changelog

Sourced from rspec-rails's changelog.

6.1.4 / 2024-08-15

Full Changelog

Bug Fixes:

• Prevent have_http_status matcher raising an error when encountering a raw Rack::MockResponse. (Christophe Bliard, #2771)
• Move Rails version conditional from index scaffold generated file to template. (Matt Jankowski, #2777)

Commits

• 3f56a9f 6.1.4
• d6792b4 Extract cell_selector method in scaffold index view spec generator (#2777)
• 49b34bd Changelog for #2771
• 5a71461 Merge pull request #2771 from cbliard/support-rack-mock-response-with-have-ht...
• 7214738 Create SECURITY.md
• 95b496b Merge pull request #2770 from toshimaru/use-perform_enqueued_jobs
• See full diff in compare view

Updates rubocop from 1.65.0 to 1.65.1

Release notes

Sourced from rubocop's releases.

RuboCop 1.65.1

New features

• #13068: Add config validation to Naming/PredicateName to check that all ForbiddenPrefixes are being checked. (@​maxjacobson)

Bug fixes

• #13051: Fix an error for Lint/FloatComparison when comparing with rational literal. (@​koic)
• #13065: Fix an error for Lint/UselessAssignment when same name variables are assigned using chained assignment. (@​koic)
• #13062: Fix an error for Style/InvertibleUnlessCondition when using empty parenthesis as condition. (@​earlopain)
• #11438: Explicitly load fileutils before calculating before_us. (@​r7kamura)
• #13044: Fix false negatives for Lint/ImplicitStringConcatenation when using adjacent string interpolation literals on the same line. (@​koic)
• #13083: Fix a false positive for Style/GlobalStdStream when using namespaced constants like Foo::STDOUT. (@​earlopain)
• #13081: Fix a false positive for Style/ZeroLengthPredicate when using safe navigation and non-zero comparison. (@​fatkodima)
• #13041: Fix false positives for Lint/UselessAssignment when pattern match variable is assigned and used in a block. (@​koic)
• #13076: Fix an incorrect autocorrect for Naming/RescuedExceptionsVariableName when using hash value omission. (@​koic)

Changelog

Sourced from rubocop's changelog.

1.65.1 (2024-08-01)

New features

• #13068: Add config validation to Naming/PredicateName to check that all ForbiddenPrefixes are being checked. ([@​maxjacobson][])

Bug fixes

• #13051: Fix an error for Lint/FloatComparison when comparing with rational literal. ([@​koic][])
• #13065: Fix an error for Lint/UselessAssignment when same name variables are assigned using chained assignment. ([@​koic][])
• #13062: Fix an error for Style/InvertibleUnlessCondition when using empty parenthesis as condition. ([@​earlopain][])
• #11438: Explicitly load fileutils before calculating before_us. ([@​r7kamura][])
• #13044: Fix false negatives for Lint/ImplicitStringConcatenation when using adjacent string interpolation literals on the same line. ([@​koic][])
• #13083: Fix a false positive for Style/GlobalStdStream when using namespaced constants like Foo::STDOUT. ([@​earlopain][])
• #13081: Fix a false positive for Style/ZeroLengthPredicate when using safe navigation and non-zero comparison. ([@​fatkodima][])
• #13041: Fix false positives for Lint/UselessAssignment when pattern match variable is assigned and used in a block. ([@​koic][])
• #13076: Fix an incorrect autocorrect for Naming/RescuedExceptionsVariableName when using hash value omission. ([@​koic][])

Commits

• b073d7a Cut 1.65.1
• 8c4c144 Update Changelog
• 19b3d9d Merge pull request #13083 from Earlopain/false-positive-global-std-stream
• 761b917 Fix false positive for Style/GlobalStdStream for namespaced constants
• 58eeb7a Clarify docs in Naming/PredicateName
• 2443641 Add a validate_config for Naming/PredicateName
• 68bd9da Merge pull request #13079 from koic/fix_incorrect_autocorrect_for_naming_resc...
• 748a568 Merge pull request #13081 from fatkodima/zero_length_predicate-false-positive
• 70d8e88 Fix a false positive for Style/ZeroLengthPredicate when using safe navigati...
• ea309c2 [Fix #13076] Fix an incorrect autocorrect for `Naming/RescuedExceptionsVariab...
• Additional commits viewable in compare view

Updates rubocop-rspec from 3.0.3 to 3.0.4

Release notes

Sourced from rubocop-rspec's releases.

RuboCop RSpec v3.0.4

• Fix false-negative for UnspecifiedException when matcher is chained. (@​r7kamura)

Changelog

Sourced from rubocop-rspec's changelog.

3.0.4 (2024-08-05)

• Fix false-negative for UnspecifiedException when matcher is chained. ([@​r7kamura])

Commits

• ff213ae Merge pull request #1945 from rubocop/release
• 728fcc6 Release v3.0.4
• 9eb23a6 Merge pull request #1940 from r7kamura/unspecified-exception-chain
• ce4cd77 Merge pull request #1941 from rubocop/fix-offenses
• 6f06a33 Fix rubocop offenses
• 60199ba Fix false-negative for UnspecifiedException when matcher is chained
• See full diff in compare view

Updates aws-partitions from 1.959.0 to 1.965.0

Changelog

Sourced from aws-partitions's changelog.

1.965.0 (2024-08-16)

• Feature - Updated the partitions source data the determines the AWS service regions and endpoints.

1.964.0 (2024-08-15)

• Feature - Updated the partitions source data the determines the AWS service regions and endpoints.

1.963.0 (2024-08-09)

• Feature - Updated the partitions source data the determines the AWS service regions and endpoints.

1.962.0 (2024-08-05)

• Feature - Updated the partitions source data the determines the AWS service regions and endpoints.

1.961.0 (2024-08-01)

• Feature - Added support for enumerating regions for Aws::SSMQuickSetup.

1.960.0 (2024-07-30)

• Feature - Updated the partitions source data the determines the AWS service regions and endpoints.

Commits

• See full diff in compare view

Updates aws-sdk-core from 3.201.3 to 3.201.5

Changelog

Sourced from aws-sdk-core's changelog.

3.201.5 (2024-08-15)

• Issue - Allow legacy/undocumented sigv4_signer configuration to override resolved signer.
• Issue - Consider sigv4a supported without crt check.

3.201.4 (2024-08-08)

• Issue - Update waiters to handle expected boolean values when matching errors.

Commits

• See full diff in compare view

Updates childprocess from 5.0.0 to 5.1.0

Release notes

Sourced from childprocess's releases.

5.1.0

• #196: Remove ostruct dependency to fix deprecation warning on Ruby 3.4
• #199: Add logger dependency to fix deprecation warning on Ruby 3.4

Changelog

Sourced from childprocess's changelog.

Version 5.1.0 / 2024-01-06

• #196: Remove ostruct dependency to fix deprecation warning on Ruby 3.4
• #199: Add logger dependency to fix deprecation warning on Ruby 3.4

Commits

• c756730 Cut version 5.1.0
• 3a954ed Add logger dependency to fix warning on Ruby 3.4 (#199)
• 4315989 Fix CI (#197)
• 9c0d345 Remove ostruct dependency (#196)
• 127a3d1 Update CI badge in README.md (#194)
• See full diff in compare view

Updates concurrent-ruby from 1.3.3 to 1.3.4

Release notes

Sourced from concurrent-ruby's releases.

v1.3.4

What's Changed

• Update comment for JRuby variant of processor_count to reality by @​meineerde in ruby-concurrency/concurrent-ruby#1054
• Add Concurrent.cpu_requests that is cgroups aware. by @​heka1024 in ruby-concurrency/concurrent-ruby#1058
• Fix the doc of Concurrent.available_processor_count by @​y-yagi in ruby-concurrency/concurrent-ruby#1059
• Fix the return value of Concurrent.available_processor_count when cpu.cfs_quota_us is -1 by @​y-yagi in ruby-concurrency/concurrent-ruby#1060

New Contributors

• @​heka1024 made their first contribution in ruby-concurrency/concurrent-ruby#1058
• @​y-yagi made their first contribution in ruby-concurrency/concurrent-ruby#1059

Full Changelog: ruby-concurrency/concurrent-ruby@v1.3.3...v1.3.4

Changelog

Sourced from concurrent-ruby's changelog.

Release v1.3.4 (10 August 2024)

• (#1060) Fix bug with return value of Concurrent.available_processor_count when cpu.cfs_quota_us is -1.
• (#1058) Add Concurrent.cpu_shares that is cgroups aware.

Commits

• 044020f Avoid requiring files of the gem in Rakefile to avoid redefined method warnings
• 09bfcd0 Avoid require in Gemfile & Rakefile to avoid redefined constant warnings
• f131214 Avoid require in *.gemspec files to avoid redefined constant warnings
• 13badd0 Update docs-source/signpost.md
• 8fefd59 1.3.4
• e671fec Check early that $CONCURRENT_JRUBY_HOME is set
• 98d0f16 Fix the return value of Concurrent.available_processor_count when `cpu.cfs_...
• cbee215 Fix the doc of Concurrent.available_processor_count
• 6f7c91a Add Concurrent.cpu_shares that is cgroups aware.
• cadc8de Update comment for JRuby variant of processor_count to reality
• See full diff in compare view

Updates fugit from 1.11.0 to 1.11.1

Changelog

Sourced from fugit's changelog.

fugit 1.11.1 released 2024-08-15

• Prevent nat parsing chocking on long input (> 256 chars), gh-104

Commits

• 228b53d Release 1.11.1
• 2a0ec27 Upgrade Ruby test matrix versions
• ad2c1c9 Lower time expectations for labby rubies, gh-104
• 767ef55 Add spec for Fugit.parse() and .do_parse, gh-104
• 025ad7b Bring in spec helpers from raabro
• a9a2628 Add Fugit::Nat.parse() spec input len > 256 gh-104
• 2a11805 Add note about nat 256 char limit, gh-104
• 6a75274 Peg Fugit::Nat.parse(s) at 256 chars, gh-104
• d2f6cf3 Prepare 1.11.1
• See full diff in compare view

Updates hashdiff from 1.1.0 to 1.1.1

Changelog

Sourced from hashdiff's changelog.

v1.1.1 2024-08-02

• Fix bug in ignore_keys option #88 (@​Matzfan)
• Exclude spec files from gem package #94 (@​amatsuda)

Commits

• 1117c26 Bump version to 1.1.1
• b96fee0 Merge pull request #94 from amatsuda/exclude_specs_from_gem_package
• a290c7f Merge pull request #93 from MatzFan/ignore_keys_fix
• 81a025f Exclude spec files from gem package
• 945a87d fix #88 bug in ignore_keys option
• 1579751 Merge pull request #91 from nishidayuya/chore_follow_rubocop_changes
• 9ede92e chore: migrate from Metrics/LineLength to Layout/LineLength
• ad50e5f chore: follow rubocop changes
• bc2360e Merge pull request #90 from nishidayuya/ci_add_github_actions_workflow
• 41e2723 docs: fix repository path to original repository owner
• Additional commits viewable in compare view

Updates minitest from 5.24.1 to 5.25.1

Changelog

Sourced from minitest's changelog.

=== 5.25.1 / 2024-08-16

• 2 bug fixes:

  • Fix incompatibility caused by minitest-hooks & rails invading minitest internals.
  • Revert change from =~ to match? to allow for nil if $TERM undefined.

=== 5.25.0 / 2024-08-13

• 2 minor enhancements:

  • Fixed some inefficiencies filtering and matching (mostly backtraces).
  • Refactored siginfo handler to reduce runtime costs. Saved ~30%!

• 5 bug fixes:

  • Added missing rdoc to get back to 100% coverage.
  • Cleaning up ancient code checking for defined?(Encoding) and the like.
  • Disambiguated some shadowed variables in minitest/compress.
  • Fixed an ironic bug if using string-literals AND Werror.
  • Improve description of test:slow task. (stomar)

Commits

• 6d83843 prepped for release
• 0ccdc80 - Fix incompatibility caused by minitest-hooks & rails invading minitest inte...
• 9e7c58d - Revert change from =~ to match? to allow for nil if $TERM undefined.
• 393e334 prepped for release
• 8cd3b1c + Refactored siginfo handler to reduce runtime costs. Saved ~30%!
• bd96499 normalized all actual/expected var names for assert_equal tests
• 4fe69b1 Accept colon style Hash#inspect in test. (tompng)
• 296269c - Improve description of test:slow task. (stomar)
• 1156b6c - Cleaning up ancient code checking for defined?(Encoding) and the like.
• 2bd62c5 Minor fix to make deprecation tests pass when using rake testW0
• Additional commits viewable in compare view

Updates parallel from 1.25.1 to 1.26.3

Commits

• 8abc124 v1.26.3
• b24e422 Merge pull request #351 from y-yagi/ensure_not_to_use_old_concurrent-ruby
• 43c9805 Ensure not to use old concurrent-ruby
• ab06d9e v1.26.2
• fcae579 Revert "Revert "Merge pull request #348 from y-yagi/use_available_processor_c...
• cd63939 v1.26.1
• c316cc5 Revert "Merge pull request #348 from y-yagi/use_available_processor_count"
• af5755b v1.26.0
• 21fdad7 Merge pull request #348 from y-yagi/use_available_processor_count
• 39f5630 Use cgroups aware processor count by default
• See full diff in compare view

Updates parser from 3.3.4.0 to 3.3.4.2

Changelog

Sourced from parser's changelog.

Changelog

Not released (2024-08-08)

Bugs fixed:

• Fix errros in the ascii specs of RuboCop (#1037) (Koichi ITO)

v3.3.4.1 (2024-08-07)

API modifications:

• Bump 3.2 branch to 3.2.5. (#1036) (Ilya Bylich)
• Bump Racc to 1.8.1 (#1031) (Koichi ITO)

Bugs fixed:

• builder.rb: catch encoding errors when parsing invalid encoding regexp (#1033) (Earlopain)

Commits

• ed583ec Update changelog.
• 770531c Bump version.
• 98aa428 - Fix errros in the ascii specs of RuboCop (#1037)
• e3b4afb Update changelog.
• dada026 Update changelog.
• 04fdf67 Bump version.
• 40a515c * Bump 3.2 branch to 3.2.5. (#1036)
• c7af34c - builder.rb: catch encoding errors when parsing invalid encoding regexp (#1033)
• 5bc1032 * Bump Racc to 1.8.1 (#1031)
• 767bdc8 Suppress Ruby 3.4's warning (#1028)
• Additional commits viewable in compare view

Updates rexml from 3.3.3 to 3.3.5

Release notes

Sourced from rexml's releases.

REXML 3.3.5 - 2024-08-12

Fixes

• Fixed a bug that REXML::Security.entity_expansion_text_limit check has wrong text size calculation in SAX and pull parsers.
  • GH-193
  • GH-195
  • Reported by Viktor Ivarsson.
  • Patch by NAITOH Jun.

Thanks

• Viktor Ivarsson

• NAITOH Jun

REXML 3.3.4 - 2024-08-01

Fixes

• Fixed a bug that REXML::Security isn't defined when REXML::Parsers::StreamParser is used and rexml/parsers/streamparser is only required.
  • GH-189
  • Patch by takuya kodama.

Thanks

• takuya kodama

Changelog

Sourced from rexml's changelog.

3.3.5 - 2024-08-12 {#version-3-3-5}

Fixes

• Fixed a bug that REXML::Security.entity_expansion_text_limit check has wrong text size calculation in SAX and pull parsers.
  • GH-193
  • GH-195
  • Reported by Viktor Ivarsson.
  • Patch by NAITOH Jun.

Thanks

• Viktor Ivarsson

• NAITOH Jun

3.3.4 - 2024-08-01 {#version-3-3-4}

Fixes

• Fixed a bug that REXML::Security isn't defined when REXML::Parsers::StreamParser is used and rexml/parsers/streamparser is only required.
  • GH-189
  • Patch by takuya kodama.

Thanks

• takuya kodama

Commits

• 21d90cb Add 3.3.5 entry
• 1892770 Fix calculation of Security.entity_expansion_text_limit in SAX/pull parsers (...
• e3f747f Bump version
• 911dca4 Add 3.3.4 entry
• cb21378 Add missing rexml/security require in rexml/parsers/baseparser.rb (#189)
• d65e27c Bump version
• See full diff in compare view

Updates rubocop-ast from 1.31...

Description has been truncated

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.