eatmore
eatmore copied to clipboard
marckohlbrugge
Telegram bot that reminds you to eat more
Bumps [tzinfo](https://github.com/tzinfo/tzinfo) from 1.2.9 to 1.2.10. Release notes Sourced from tzinfo's releases. v1.2.10 Fixed a relative path traversal bug that could cause arbitrary files to be loaded with require when...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [rails-html-sanitizer](https://github.com/rails/rails-html-sanitizer) from 1.3.0 to 1.4.3. Release notes Sourced from rails-html-sanitizer's releases. 1.4.3 / 2022-06-09 Address a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer. Prevent the combination of select...
Bumps [jmespath](https://github.com/trevorrowe/jmespath.rb) from 1.3.1 to 1.6.1. Release notes Sourced from jmespath's releases. Release v1.6.1 - 2022-03-07 Issue - Use JSON.parse instead of JSON.load. Release v1.6.0 - 2022-02-14 Feature - Add...
Bumps [rack](https://github.com/rack/rack) from 2.2.3 to 2.2.3.1. Changelog Sourced from rack's changelog. Changelog All notable changes to this project will be documented in this file. For info on how to format...
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.11.3 to 1.13.6. Release notes Sourced from nokogiri's releases. 1.13.6 / 2022-05-08 Security [CRuby] Address CVE-2022-29181, improper handling of unexpected data types, related to untrusted inputs to...
Bumps [puma](https://github.com/puma/puma) from 3.11.3 to 4.3.12. Release notes Sourced from puma's releases. 4.3.12 Security Close several HTTP Request Smuggling exploits (CVE-2022-24790) 4.3.11 Bugfix/Security Response body will always be closed. (GHSA-rmj8-8hhh-gv5h,...
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.11.3 to 1.12.0. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Update packaged dependency libxml2 from 2.9.10 to 2.9.12 Summary Nokogiri...
![dependabot-preview[bot] avatar](https://avatars.githubusercontent.com/in/2141?v=4 "dependabot-preview[bot] avatar"){kind=avatar}
Bumps [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) from 1.8.2 to 1.98.0. Changelog Sourced from aws-sdk-s3's changelog. 1.98.0 (2021-07-30) Feature - Code Generated Changes, see ./build_tools or aws-sdk-core's CHANGELOG.md for details. 1.97.0 (2021-07-28) Feature - Code...
Bumps [addressable](https://github.com/sporkmonger/addressable) from 2.5.2 to 2.8.0. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service in Addressable templates Impact...
Bumps [telegram-bot](https://github.com/telegram-bot-rb/telegram-bot) from `bdff6b2` to `3049ced`. Commits 3049ced Fix tests 07faf87 Merge pull request #163 from telegram-bot-rb/update_api ac45940 Switch from travis-ci.org to travis-ci.com a49ef51 Update to Bot API 5.3 4f669fc...