spacedecentral-network

spacedecentral-network copied to clipboard

Bumps [sidekiq](https://github.com/sidekiq/sidekiq) from 5.1.3 to 7.1.5. Changelog Sourced from sidekiq's changelog. 7.1.5 FEATURE: Job filtering within the Web UI. This feature has been open sourced from Sidekiq Pro. #6052 API...

dependabot[bot]

Bumps [puma](https://github.com/puma/puma) from 3.12.0 to 5.6.7. Release notes Sourced from puma's releases. 5.6.7 Security Address HTTP request smuggling vulnerabilities with zero-length Content Length header and trailer fields (GHSA-68xg-gqqm-vgj8) 5.6.5 /...

dependabot[bot]

Bumps [rack](https://github.com/rack/rack) from 2.0.5 to 2.2.7. Release notes Sourced from rack's releases. v2.2.7 What's Changed Correct the year number in the changelog by @​kimulab in rack/rack#2015 Support underscore in host...

dependabot[bot]

Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.13.9 to 1.15.3. Release notes Sourced from nokogiri's releases. 1.15.3 / 2023-07-05 Fixed Passing an object that is not a kind of XML::Node as the first parameter...

dependabot[bot]

Bumps [jquery-rails](https://github.com/rails/jquery-rails) from 4.3.3 to 4.4.0. Changelog Sourced from jquery-rails's changelog. 4.4.0 update jquery to 3.5.1 (note: 3.5.0 contains important security updates) unescape dollar signs and backticks in assert_select_jquery to...

dependabot[bot]

Bumps [globalid](https://github.com/rails/globalid) from 0.4.1 to 1.0.1. Release notes Sourced from globalid's releases. v1.0.1 Possible ReDoS based DoS vulnerability in GlobalID There is a ReDoS based DoS vulnerability in the GlobalID...

dependabot[bot]

Bumps [inline_svg](https://github.com/jamesmartin/inline_svg) from 1.3.1 to 1.7.2. Release notes Sourced from inline_svg's releases. v1.7.2 See the CHANGELOG entry for this release. v1.7.1 Fixed Static Asset Finder uses pathname for compatibility with...

dependabot[bot]

Bumps [rails-html-sanitizer](https://github.com/rails/rails-html-sanitizer) from 1.0.4 to 1.4.4. Release notes Sourced from rails-html-sanitizer's releases. 1.4.4 / 2022-12-13 Address inefficient regular expression complexity with certain configurations of Rails::Html::Sanitizer. Fixes CVE-2022-23517. See GHSA-5x79-w82f-gw8w for...

dependabot[bot]

Bumps [loofah](https://github.com/flavorjones/loofah) from 2.2.2 to 2.19.1. Release notes Sourced from loofah's releases. 2.19.1 / 2022-12-13 Security Address CVE-2022-23514, inefficient regular expression complexity. See GHSA-486f-hjj9-9vhh for more information. Address CVE-2022-23515, improper...

dependabot[bot]

Bumps [addressable](https://github.com/sporkmonger/addressable) from 2.5.2 to 2.8.1. Changelog Sourced from addressable's changelog. Addressable 2.8.1 refactor Addressable::URI.normalize_path to address linter offenses (#430) remove redundant colon in Addressable::URI::CharacterClasses::AUTHORITY regex (#438) update gemspec to...

dependabot[bot]