idobata-hooks
idobata-hooks copied to clipboard
idobata
A collection of Idobata hooks
Bumps [activesupport](https://github.com/rails/rails) from 5.1.6.1 to 7.0.4.1. Release notes Sourced from activesupport's releases. v7.0.4.1 This is a security release. More information is available in our security announcements forum: https://discuss.rubyonrails.org/c/security-announcements/9 Active Support...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [actionpack](https://github.com/rails/rails) from 5.1.6.1 to 7.0.4.1. Release notes Sourced from actionpack's releases. v7.0.4.1 This is a security release. More information is available in our security announcements forum: https://discuss.rubyonrails.org/c/security-announcements/9 Active Support...
Bumps [rails-html-sanitizer](https://github.com/rails/rails-html-sanitizer) from 1.3.0 to 1.4.4. Release notes Sourced from rails-html-sanitizer's releases. 1.4.4 / 2022-12-13 Address inefficient regular expression complexity with certain configurations of Rails::Html::Sanitizer. Fixes CVE-2022-23517. See GHSA-5x79-w82f-gw8w for...
Bumps [loofah](https://github.com/flavorjones/loofah) from 2.3.0 to 2.19.1. Release notes Sourced from loofah's releases. 2.19.1 / 2022-12-13 Security Address CVE-2022-23514, inefficient regular expression complexity. See GHSA-486f-hjj9-9vhh for more information. Address CVE-2022-23515, improper...
Bumps [addressable](https://github.com/sporkmonger/addressable) from 2.5.2 to 2.8.1. Changelog Sourced from addressable's changelog. Addressable 2.8.1 refactor Addressable::URI.normalize_path to address linter offenses (#430) remove redundant colon in Addressable::URI::CharacterClasses::AUTHORITY regex (#438) update gemspec to...
Bumps [commonmarker](https://github.com/gjtorikian/commonmarker) from 0.20.1 to 0.23.6. Release notes Sourced from commonmarker's releases. v0.23.6 What's Changed This release includes two updates from the upstream cmark-gfm library, namely: DoS vulnerability in autolink...
Bumps [tzinfo](https://github.com/tzinfo/tzinfo) from 1.2.5 to 2.0.5. Release notes Sourced from tzinfo's releases. v2.0.5 Changed DateTime results to always use the proleptic Gregorian calendar. This affects DateTime results prior to 1582-10-15...
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.10.4 to 1.13.6. Release notes Sourced from nokogiri's releases. 1.13.6 / 2022-05-08 Security [CRuby] Address CVE-2022-29181, improper handling of unexpected data types, related to untrusted inputs to...
Bumps [actionview](https://github.com/rails/rails) from 5.1.6.1 to 7.0.2.4. Release notes Sourced from actionview's releases. 7.0.2.3 Active Support No changes. Active Model No changes. Active Record No changes. Action View No changes. Action...
Bumps [tmpl](https://github.com/daaku/nodejs-tmpl) from 1.0.4 to 1.0.5. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...