caketop-theater
caketop-theater copied to clipboard
XanderStrike
A web interface for your media!
Bumps [httparty](https://github.com/jnunemaker/httparty) from 0.13.7 to 0.21.0. Changelog Sourced from httparty's changelog. 0.21.0 escape filename in the multipart/form-data Content-Disposition header Fix request marshaling Replace mime-types with mini_mime 0.20.0 Breaking changes Require...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [loofah](https://github.com/flavorjones/loofah) from 2.0.3 to 2.19.1. Release notes Sourced from loofah's releases. 2.19.1 / 2022-12-13 Security Address CVE-2022-23514, inefficient regular expression complexity. See GHSA-486f-hjj9-9vhh for more information. Address CVE-2022-23515, improper...
Bumps [rails-html-sanitizer](https://github.com/rails/rails-html-sanitizer) from 1.0.2 to 1.4.4. Release notes Sourced from rails-html-sanitizer's releases. 1.4.4 / 2022-12-13 Address inefficient regular expression complexity with certain configurations of Rails::Html::Sanitizer. Fixes CVE-2022-23517. See GHSA-5x79-w82f-gw8w for...
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.6.6.2 to 1.13.9. Release notes Sourced from nokogiri's releases. 1.13.9 / 2022-10-18 Security [CRuby] Vendored libxml2 is updated to address CVE-2022-2309, CVE-2022-40304, and CVE-2022-40303. See GHSA-2qc6-mcvw-92cw for...
Bumps [tzinfo](https://github.com/tzinfo/tzinfo) from 1.2.2 to 1.2.10. Release notes Sourced from tzinfo's releases. v1.2.10 Fixed a relative path traversal bug that could cause arbitrary files to be loaded with require when...
Bumps [i18n](https://github.com/ruby-i18n/i18n) from 0.7.0 to 0.9.5. Release notes Sourced from i18n's releases. v0.9.5 #404 reported a regression in 0.9.3, which wasn't fixed by 0.9.4. #408 fixes this issue. Thanks @wjordan!...
Bumps [rack](https://github.com/rack/rack) from 1.6.4 to 1.6.13. Commits 47a1fd7 bump version b8dc520 Handle case where session id key is requested but it is missing 698a060 Merge pull request #1462 from jeremyevans/sessionid-to_s...
Bumps [redcarpet](https://github.com/vmg/redcarpet) from 3.3.3 to 3.5.1. Release notes Sourced from redcarpet's releases. Redcarpet v3.5.1 Fix a security vulnerability using :quote in combination with the :escape_html option. Reported by Johan Smits....
Bumps [chartkick](https://github.com/ankane/chartkick) from 1.4.1 to 3.4.0. Changelog Sourced from chartkick's changelog. 3.4.0 (2020-08-04) Fixed CSS injection with width and height options - more info 3.3.2 (2020-07-23) Updated Chartkick.js to 3.2.1...
Bumps [kaminari](https://github.com/kaminari/kaminari) from 0.16.3 to 1.2.1. Release notes Sourced from kaminari's releases. v1.2.0 Deprecations: Deprecated current_per_page in favor of limit_value Enhancements: Added #url_to_next_page and #url_to_prev_page helper methods: 38e95a2 Extracted url...