rails-starter-template
rails-starter-template copied to clipboard
Published
20 hours ago •
peterberkenbosch
peterberkenbosch
Build(deps): Bump nokogiri from 1.16.4 to 1.16.7
Bumps nokogiri from 1.16.4 to 1.16.7.
Release notes
Sourced from nokogiri's releases.
v1.16.7 / 2024-07-27
Dependencies
- [CRuby] Vendored libxml2 is updated to v2.12.9, which the upstream release notes state is a security release to address CVE-2024-40896. Nokogiri's maintainers believe this vulnerability does not affect users of Nokogiri, but we advise upgrading at your earliest convenience anyway.
sha256 checksums:
78778d35f165b59513be31c0fe232c63a82cf97626ffba695b5f822e5da1d74b nokogiri-1.16.7-aarch64-linux.gem c84cdb9e3aa44c35bbb981b20175838c4b2066c26c5cb118f31f177168a42fc3 nokogiri-1.16.7-arm-linux.gem 276dcea1b988a5b22b5acc1ba901d24b8e908c40b71dccd5d54a2ae279480dad nokogiri-1.16.7-arm64-darwin.gem 044c45ca46abc2b6135a85ab39a546ff2f0434d43142bc59b83e5b1068876a42 nokogiri-1.16.7-java.gem 01ed785392f9cbdfd45e0e5ef6ad6d2c80a6128672589448f18952168bd68e56 nokogiri-1.16.7-x64-mingw-ucrt.gem d8fd5c675743b85354c9098117bfa9e703c7cacab8c33e5190104ea8218ad1ec nokogiri-1.16.7-x64-mingw32.gem dddbf1c1ef99ce9fab98302b14f8bacb703e6f16e89b99f05ecee8a1fca23664 nokogiri-1.16.7-x86-linux.gem b6517d995b024739cbb81251a26866d40e1ccb151936b5bb0977e7487f4e617c nokogiri-1.16.7-x86-mingw32.gem 630732b80fc572690eab50c73a1f18988f3ac401ed0b67ca9956ba2b1e2c3faa nokogiri-1.16.7-x86_64-darwin.gem 9e1e428641d5942af877c60b418c71163560e9feb4a5c4015f3230a8b86a40f6 nokogiri-1.16.7-x86_64-linux.gem f819cbfdfb0a7b19c9c52c6f2ca63df0e58a6125f4f139707b586b9511d7fe95 nokogiri-1.16.7.gemv1.16.6 / 2024-06-13
Dependencies
- [CRuby] Vendored libxml2 is updated to v2.12.8, which the release notes state is a bugfix release.
sha256 checksums:
7f4c37ee2dd9c97fdfb6278cf3d9dd2078651f241eed320e26902135dbf78183 nokogiri-1.16.6-aarch64-linux.gem 73d7a7ca569308f181a234269e6607c9acb26ecc93ccbb05998d24a9546c0a94 nokogiri-1.16.6-arm-linux.gem 43e8a783697c65413408a4923b5c2ed6bea6632cfdab4da220446b601733fa4b nokogiri-1.16.6-arm64-darwin.gem 993ec13a1f0fb2261913e62e1f7a662c77108b1a59c903033eac432f74437275 nokogiri-1.16.6-java.gem 285687f16c330a9b61793d9d45913becf7a9aa82b0ce15c48fc1e0d6c6c9972f nokogiri-1.16.6-x64-mingw-ucrt.gem dbbefbfabe363daaa90e7c0b15854769e17ee5b8ae243014e0e55c01047eb5cd nokogiri-1.16.6-x64-mingw32.gem dedac3ee38b4deed1141747f04dd5ac512ef9165259cec66ec934edaa8a2a848 nokogiri-1.16.6-x86-linux.gem 5080e9512e3ba320aef074c16a23aef737301ac0e3b7a173a299dcaaa40b6a20 nokogiri-1.16.6-x86-mingw32.gem 92fa413d866baf9b609f17558ecfbcf950d5373213babcf4ce11d7eaed4b21cf nokogiri-1.16.6-x86_64-darwin.gem 769bd2c14ad76dd5a7e14c867741cf2e3b8c25626a34f40aee7b0b998b8de820 nokogiri-1.16.6-x86_64-linux.gem 935fe4dd67d4377f4a05002acb1ffbadbcae265ea8e7869fc40e3a8121f3e1ef nokogiri-1.16.6.gemv1.16.5 / 2024-05-13
... (truncated)
Changelog
Sourced from nokogiri's changelog.
v1.16.7 / 2024-07-27
Dependencies
- [CRuby] Vendored libxml2 is updated to v2.12.9, which the upstream release notes state is a security release to address CVE-2024-40896. Nokogiri's maintainers believe this vulnerability does not affect users of Nokogiri, but we advise upgrading at your earliest convenience anyway.
v1.16.6 / 2024-06-13
Dependencies
- [CRuby] Vendored libxml2 is updated to v2.12.8, which the release notes state is a bugfix release.
v1.16.5
Security
- [CRuby] Vendored libxml2 is updated to address CVE-2024-34459. See GHSA-r95h-9x8f-r3f7 for more information.
Dependencies
- [CRuby] Vendored libxml2 is updated to v2.12.7 from v2.12.6. (
@flavorjones)
Commits
d8d6ba3version bump to v1.16.776199bbdep: update libxml2 to v2.12.9 (branch v1.16.x) (#3297)ca92e48dep: update packaged libxml2 to v2.12.9fb833eaversion bump to v1.16.6bacc8dcdep: update libxml2 to 2.12.8 (backport to v1.16.x) (#3229)cf0579fdoc: update CHANGELOG447fd12dep: update libxml2 to 2.12.8cd70bd3version bump to v1.16.5afc36dedep: update vendored libxml2 to v2.12.7 (#3191)41b4f08ci: add arm64-darwin coverage using macos-14- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebasewill rebase this PR -
@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it -
@dependabot mergewill merge this PR after your CI passes on it -
@dependabot squash and mergewill squash and merge this PR after your CI passes on it -
@dependabot cancel mergewill cancel a previously requested merge and block automerging -
@dependabot reopenwill reopen this PR if it is closed -
@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency -
@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "Published by a pub.dev verified publisher"){kind=small}