Leeway
Leeway copied to clipboard
zamandalee
A messaging website for organized communication and optimized for the workplace, inspired by Slack. Makes use of a Rails/PostgreSQL backend with React and Redux on the frontend.
Removes [global-modules-path](https://github.com/rosen-vladimirov/global-modules-path). It's no longer used after updating ancestor dependency [webpack-cli](https://github.com/webpack/webpack-cli). These dependencies need to be updated together. Removes `global-modules-path` Updates `webpack-cli` from 3.1.0 to 3.3.12 Changelog Sourced from webpack-cli's...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [rails-html-sanitizer](https://github.com/rails/rails-html-sanitizer) from 1.0.4 to 1.4.4. Release notes Sourced from rails-html-sanitizer's releases. 1.4.4 / 2022-12-13 Address inefficient regular expression complexity with certain configurations of Rails::Html::Sanitizer. Fixes CVE-2022-23517. See GHSA-5x79-w82f-gw8w for...
Bumps [loofah](https://github.com/flavorjones/loofah) from 2.2.2 to 2.19.1. Release notes Sourced from loofah's releases. 2.19.1 / 2022-12-13 Security Address CVE-2022-23514, inefficient regular expression complexity. See GHSA-486f-hjj9-9vhh for more information. Address CVE-2022-23515, improper...
Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2. Release notes Sourced from decode-uri-component's releases. v0.2.2 Prevent overwriting previously decoded tokens 980e0bf https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2 v0.2.1 Switch to GitHub workflows 76abc93 Fix issue where decode...
Bumps [loader-utils](https://github.com/webpack/loader-utils) from 1.1.0 to 1.4.2. Release notes Sourced from loader-utils's releases. v1.4.2 1.4.2 (2022-11-11) Bug Fixes ReDoS problem (#226) (17cbf8f) v1.4.1 1.4.1 (2022-11-07) Bug Fixes security problem (#220) (4504e34)...
Bumps [addressable](https://github.com/sporkmonger/addressable) from 2.5.2 to 2.8.1. Changelog Sourced from addressable's changelog. Addressable 2.8.1 refactor Addressable::URI.normalize_path to address linter offenses (#430) remove redundant colon in Addressable::URI::CharacterClasses::AUTHORITY regex (#438) update gemspec to...
Bumps [tzinfo](https://github.com/tzinfo/tzinfo) from 1.2.5 to 1.2.10. Release notes Sourced from tzinfo's releases. v1.2.10 Fixed a relative path traversal bug that could cause arbitrary files to be loaded with require when...
Bumps [jmespath](https://github.com/trevorrowe/jmespath.rb) from 1.4.0 to 1.6.1. Release notes Sourced from jmespath's releases. Release v1.6.1 - 2022-03-07 Issue - Use JSON.parse instead of JSON.load. Release v1.6.0 - 2022-02-14 Feature - Add...
Bumps [puma](https://github.com/puma/puma) from 3.12.0 to 4.3.12. Release notes Sourced from puma's releases. 4.3.12 Security Close several HTTP Request Smuggling exploits (CVE-2022-24790) 4.3.11 Bugfix/Security Response body will always be closed. (GHSA-rmj8-8hhh-gv5h,...
Bumps [lodash-es](https://github.com/lodash/lodash) from 4.17.10 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...
Metadata
Owner
Metadata
A messaging website for organized communication and optimized for the workplace, inspired by Slack. Makes use of a Rails/PostgreSQL backend with React and Redux on the frontend.