headlines
headlines copied to clipboard
wilg
Fake headlines created by smashing up real headlines.
Bumps [addressable](https://github.com/sporkmonger/addressable) from 2.3.8 to 2.8.1. Changelog Sourced from addressable's changelog. Addressable 2.8.1 refactor Addressable::URI.normalize_path to address linter offenses (#430) remove redundant colon in Addressable::URI::CharacterClasses::AUTHORITY regex (#438) update gemspec to...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [tzinfo](https://github.com/tzinfo/tzinfo) from 1.2.6 to 1.2.10. Release notes Sourced from tzinfo's releases. v1.2.10 Fixed a relative path traversal bug that could cause arbitrary files to be loaded with require when...
Bumps [rails-html-sanitizer](https://github.com/rails/rails-html-sanitizer) from 1.3.0 to 1.4.3. Release notes Sourced from rails-html-sanitizer's releases. 1.4.3 / 2022-06-09 Address a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer. Prevent the combination of select...
Bumps [jquery-rails](https://github.com/rails/jquery-rails) from 4.3.5 to 4.4.0. **This update includes a security fix.** Vulnerabilities fixed Sourced from The Ruby Advisory Database. Potential XSS vulnerability in jQuery Impact Passing HTML containing ``...
![dependabot-preview[bot] avatar](https://avatars.githubusercontent.com/in/2141?v=4 "dependabot-preview[bot] avatar"){kind=avatar}
Bumps [addressable](https://github.com/sporkmonger/addressable) from 2.3.8 to 2.8.0. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service in Addressable templates Impact...
Bumps [newrelic_rpm](https://github.com/newrelic/newrelic-ruby-agent) from 6.7.0.359 to 7.2.0. Release notes Sourced from newrelic_rpm's releases. 7.2.0 No release notes provided. Prerelease 7.2.0 No release notes provided. prerelease 7.1.0 No release notes provided. pre-release...
_Dependabot Preview will be shut down on August 3rd, 2021. In order to keep getting Dependabot updates, please merge this PR and migrate to GitHub-native Dependabot before then._ Dependabot has...
Bumps [puma](https://github.com/puma/puma) from 4.3.3 to 4.3.8. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. HTTP Smuggling via Transfer-Encoding Header in Puma Impact This is...
Bumps [handlebars_assets](https://github.com/leshill/handlebars_assets) from 0.20.2 to 0.23.9. Changelog Sourced from handlebars_assets's changelog. 0.23.8 (2021-03-18) Update Handlebars to v4.7.7 0.23.8 (2019-02-24) Update Handlebars to v4.7.3 0.23.7 (2019-11-20) Update Handlebars to v4.5.3 0.23.6...
Bumps [sanitize](https://github.com/rgrove/sanitize) from 5.1.0 to 5.2.3. **This update includes security fixes.** Vulnerabilities fixed Sourced from The Ruby Advisory Database. Cross-site scripting vulnerability via <math> or <svg> element in Sanitize When...