eatmore
eatmore copied to clipboard
marckohlbrugge
Telegram bot that reminds you to eat more
_Dependabot Preview will be shut down on August 3rd, 2021. In order to keep getting Dependabot updates, please merge this PR and migrate to GitHub-native Dependabot before then._ Dependabot has...
![dependabot-preview[bot] avatar](https://avatars.githubusercontent.com/in/2141?v=4 "dependabot-preview[bot] avatar"){kind=avatar}
Bumps [puma](https://github.com/puma/puma) from 3.11.3 to 4.3.8. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Moderate severity vulnerability that affects puma Keepalive thread overload/DoS Impact...
Bumps [rexml](https://github.com/ruby/rexml) from 3.2.4 to 3.2.5. **This update includes a security fix.** Vulnerabilities fixed Sourced from The Ruby Advisory Database. XML round-trip vulnerability in REXML When parsing and serializing a...
Bumps [shrine](https://github.com/shrinerb/shrine) from 2.9.0 to 3.3.0. Changelog Sourced from shrine's changelog. 3.3.0 (2020-10-04) s3 - Support new Aws::S3::EncryptionV2::Client for client-side encryption (@janko) derivation_endpoint – Reduce possibility of timing attacks when...
Bumps [capybara](https://github.com/teamcapybara/capybara) from 2.18.0 to 3.35.3. Changelog Sourced from capybara's changelog. Version 3.35.3 Release date: 2021-01-29 Fixed Just a release to have the correct dates in the History.md in released...
Bumps [rubyzip](https://github.com/rubyzip/rubyzip) from 1.2.2 to 1.3.0. **This update includes a security fix.** Vulnerabilities fixed *Sourced from [The Ruby Advisory Database](https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rubyzip/CVE-2019-16892.yml).* > **Denial of Service in rubyzip ("zip bombs")** > In...
Bumps [web-console](https://github.com/rails/web-console) from 3.5.1 to 3.7.0. Release notes *Sourced from [web-console's releases](https://github.com/rails/web-console/releases).* > ## 3.7.0 > > * [#263](https://github-redirect.dependabot.com/rails/web-console/pull/263) Show binding changes ([[**causztic**](https://github.com/causztic)]) > * [#258](https://github-redirect.dependabot.com/rails/web-console/pull/258) Support Ctrl-A, Ctrl-W and...
Bumps [byebug](https://github.com/deivid-rodriguez/byebug) from 10.0.0 to 11.1.3. Release notes Sourced from byebug's releases. 11.1.3 Fixed #674: crash when using byebug on ruby 2.7.0 on Windows. ... (truncated) Changelog Sourced from byebug's...
Bumps [uglifier](https://github.com/lautis/uglifier) from 4.1.8 to 4.2.0. Changelog *Sourced from [uglifier's changelog](https://github.com/lautis/uglifier/blob/master/CHANGELOG.md).* > ## next > > - show code context for error messages ([#167](https://github-redirect.dependabot.com/lautis/uglifier/issues/167)) > - defer initialisation of ExecJS...
Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-ruby) from 0.1.3 to 0.1.5. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service in websocket-extensions (RubyGem) Impact...