joatu-v2
joatu-v2 copied to clipboard
joatuapp
The JoatU application, version 2. Written in Ruby on Rails.
Bumps [autoprefixer-rails](https://github.com/ai/autoprefixer-rails) from 9.4.5 to 10.3.1.0. Changelog Sourced from autoprefixer-rails's changelog. 10.3.1.0 Added ::file-selector-button support (by Luke Warlow). Fixed adding wrong prefixes to content (by Luke Warlow). Fix ReferenceError: Can't...
![dependabot-preview[bot] avatar](https://avatars.githubusercontent.com/in/2141?v=4 "dependabot-preview[bot] avatar"){kind=avatar}
Bumps [listen](https://github.com/guard/listen) from 3.1.5 to 3.6.0. Release notes Sourced from listen's releases. v3.6.0 ✨ New Features #452 for FIPS compatibility, use SHA256 instead of MD5 (#541) @ColinDKelley v3.5.0 Issue #533:...
Bumps [jquery-rails](https://github.com/rails/jquery-rails) from 4.3.5 to 4.4.0. **This update includes a security fix.** Vulnerabilities fixed Sourced from The Ruby Advisory Database. Potential XSS vulnerability in jQuery Impact Passing HTML containing ``...
Bumps [addressable](https://github.com/sporkmonger/addressable) from 2.7.0 to 2.8.0. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service in Addressable templates Impact...
_Dependabot Preview will be shut down on August 3rd, 2021. In order to keep getting Dependabot updates, please merge this PR and migrate to GitHub-native Dependabot before then._ Dependabot has...
Bumps [puma](https://github.com/puma/puma) from 3.12.6 to 4.3.8. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Keepalive Connections Causing Denial Of Service in puma This...
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.10.8 to 1.11.4. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. XXE in Nokogiri Severity Nokogiri maintainers have evaluated this as...
Bumps [mini_racer](https://github.com/discourse/mini_racer) from 0.2.9 to 0.4.0. Changelog Sourced from mini_racer's changelog. 0.4.0 FEATURE: upgrade to libv8 node 15.14.0 (v8 8.6.395.17) Promote 0.4.0.beta1 to release, using libv8-node release path 08-04-2021 0.4.0.beta1...
Bumps [carrierwave](https://github.com/carrierwaveuploader/carrierwave) from 1.3.1 to 2.2.0. **This update includes security fixes.** Vulnerabilities fixed Sourced from The Ruby Advisory Database. Server-side request forgery in CarrierWave Impact [CarrierWave download feature](https://github.com/carrierwaveuploader/carrierwave#uploading-files-from-a-remote-location has an...
Bumps [database_cleaner](https://github.com/DatabaseCleaner/database_cleaner) from 1.7.0 to 2.0.1. Changelog Sourced from database_cleaner's changelog. == 2.0.1 2021-02-04 == Bugfixes Regression: allow_remote_database_url and url_allowlist not working anymore: DatabaseCleaner/database_cleaner#671 == 2.0.0 2021-01-31 === Changes Rename...