Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Gmright2-feed-gemstone #719

Open
bitokenja3 opened this issue Oct 10, 2020 · 0 comments
Open

Gmright2-feed-gemstone #719

bitokenja3 opened this issue Oct 10, 2020 · 0 comments

Comments

@bitokenja3
Copy link

@bitokenja3 bitokenja3 commented Oct 10, 2020

🚨 Your current dependencies have known security vulnerabilities 🚨
This dependency update fixes known security vulnerabilities. Please see the details below and assess their impact carefully. We recommend to merge and deploy this as soon as possible!

Here is everything you need to know about this update. Please take a good look at what changed and the test results before merging this pull request.
What changed?
✳️ github-pages (204 → 209) · Repo
Release Notes
209

  • Update jekyll-feed to 💎 v0.15.1 (#718)
    208
    #716 - Train of updates containing:
    #711 - Update rouge to 💎 v3.23.0
    #707 - Update jekyll-redirect-from to 💎 v0.16.0
    #710 - Update Jekyll-feed to 💎 v0.15.0
    #712 - Update jekyll-remote-theme to 💎 v0.4.2
    #713 - Update Jekyll-mentions to 💎 v1.6.0
    #714 - Update jekyll-theme-hacker to 💎 v0.1.2
    #715 - Update jemoji to 💎 v0.12.0
    207
    Bump jekyll to v3.9.0, kramdown to v2.3.0 (#704)
    Also, update CI to use Ruby 2.5 and greater.
    206
    Bump rouge to v3.19.0 #690
    205
  • Bump jekyll to v3.8.7 #689
    • Upgrade Ruby to 2.5.8
    • Upgrade rubocop-github to 0.16.0
    • Stop testing on Ruby 2.3 and 2.4
      Does any of this look wrong? Please let us know.
      Sorry, we couldn't find anything useful about this release.
      ↗️ activesupport (indirect, 6.0.3.1 → 6.0.3.4) · Repo · Changelog
      Release Notes
      6.0.3.4 (from changelog)
  • No changes.
    6.0.3.3 (from changelog)
  • No changes.
    6.0.3.2 (from changelog)
  • No changes.
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ concurrent-ruby (indirect, 1.1.6 → 1.1.7) · Repo · Changelog
    Release Notes
    1.1.7 (from changelog)
    concurrent-ruby:
  • (#879) Consider falsy value on Concurrent::Map#compute_if_absent for fast non-blocking path
  • (#876) Reset Async queue on forking, makes Async fork-safe
  • (#856) Avoid running problematic code in RubyThreadLocalVar on MRI that occasionally results in segfault
  • (#853) Introduce ThreadPoolExecutor without a Queue
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ dnsruby (indirect, 1.61.3 → 1.61.4) · Repo
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ em-websocket (indirect, 0.5.1 → 0.5.2) · Repo · Changelog
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ ffi (indirect, 1.12.2 → 1.13.1) · Repo · Changelog
    Release Notes
    1.13.1 (from changelog)
    Changed:
  • Revert use of ucrtbase.dll as default C library on Windows-MINGW. ucrtbase.dll is still used on MSWIN target. #790
  • Test for ffi_prep_closure_loc() to make sure we can use this function. This fixes incorrect use of system libffi on MacOS Mojave (10.14). #787
  • Update types.conf on x86_64-dragonflybsd
    1.13.0 (from changelog)
    Added:
  • Add TruffleRuby support. Almost all specs are running on TruffleRuby and succeed. #768
  • Add ruby source files to the java gem. This allows to ship the Ruby library code per platform java gem and add it as a default gem to JRuby. #763
  • Add FFI::Platform::LONG_DOUBLE_SIZE
  • Add bounds checks for writing to an inline char[] . #756
  • Add long double as callback return value. #771
  • Update type definitions and add types from stdint.h and stddef.h on i386-windows, x86_64-windows, x86_64-darwin, x86_64-linux, arm-linux, powerpc-linux. #749
  • Add new type definitions for powerpc-openbsd and sparcv9-openbsd. #775, #778
    Changed:
  • Raise required ruby version to >= 2.3.
  • Lots of cleanups and improvements in library, specs and benchmarks.
  • Fix a lot of compiler warnings at the C-extension
  • Fix several install issues on MacOS:
    • Look for libffi in SDK paths, since recent versions of macOS removed it from /usr/include . #757
    • Fix error ld: library not found for -lgcc_s.10.4
    • Don't built for i386 architecture as it is deprecated
  • Several fixes for MSVC build on Windows. #779
  • Use ucrtbase.dll as default C library on Windows instead of old msvcrt.dll. #779
  • Update builtin libffi to fix a Powerpc issue with parameters of type long
  • Allow unmodified sourcing of (the ruby code of) this gem in JRuby and TruffleRuby as a default gem. #747
  • Improve check to detect if a module has a #find_type method suitable for FFI. This fixes compatibility with stdlib mkmf . #776
    Removed:
  • Reject callback with :string return type at definition, because it didn't work so far and is not save to use. #751, #782
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ html-pipeline (indirect, 2.12.3 → 2.14.0) · Repo · Changelog
    Release Notes
    2.14.0
  • Make Rinku configurable: #335
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ jekyll (indirect, 3.8.5 → 3.9.0) · Repo · Changelog
    Release Notes
    3.9.0
    Minor Enhancements
  • Allow use of kramdown v2 (#8322)
  • Add default language for kramdown syntax highlighting (#8325)
    3.8.7
    Fixes
  • Prevent console warnings with Ruby 2.7 (#7948)
    3.8.6
    Bug Fixes
  • Update log output for an invalid theme directory (#7734)
  • Memoize SiteDrop#documents to reduce allocations (#7722)
  • Excerpt handling of custom and intermediate tags (#7467)
  • Escape valid special chars in a site's path name (#7573)
  • Revert memoizing Site#docs_to_write and refactor #documents (#7689)
  • Fix broken include_relative usage in excerpt (#7690)
  • Install platform-specific gems as required (3c06609)
    Security Fixes
  • Theme gems: ensure directories aren't symlinks (#7424)
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ jekyll-feed (indirect, 0.13.0 → 0.15.1) · Repo · Changelog
    Release Notes
    0.15.1
    Bug Fixes
  • MetaTag: when encoding for XML special characters, handle non-string objects (#326)
    0.15.0
    Minor Enhancements
  • Add support for drafts (#316)
    0.14.0
    Minor Enhancements
  • add support for categories (#153) (#233)
  • add support for tags (#264)
  • Make posts limit configurable (#314)
  • XML escape the title field of feed_meta (#306)
    Bug Fixes
  • Fix feed link when post title contains HTML (#305)
    Development Fixes
  • Use Dir to list source files (#309)
  • Require Ruby >=2.4.0 (#307)
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ jekyll-mentions (indirect, 1.5.1 → 1.6.0) · Repo · Changelog
    Release Notes
    1.6.0
    Minor Enhancements
  • Allow configuring base URL in page front matter (#72)
  • Incorporate document data only if it has override (#73)
    Development Fixes
  • ci: test against Jekyll 4.0
  • style: target Ruby 2.4
  • ignore vendor/bundle
    Bug Fixes
  • Support handling body tag across multiple lines (#70)
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ jekyll-redirect-from (indirect, 0.15.0 → 0.16.0) · Repo · Changelog
    Release Notes
    0.16.0
    Minor Enhancements
  • Allows generation of redirects.json to be disabled (#207)
  • Allow redirects from and for subclasses of page and document (#204)
    Bug Fixes
  • Use Hash#key? instead of Hash#keys.any? (#201)
    Development Fixes
  • Target Ruby 2.4
  • Stop testing with backwards-compatible site config (#211)
    Documentation
  • Simplifies YAML for redirect_to (#185)
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ jekyll-remote-theme (indirect, 0.4.1 → 0.4.2) · Repo
    Release Notes
    0.4.2
    Jekyll 4.0 support (#61)
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ jekyll-theme-hacker (indirect, 0.1.1 → 0.1.2) · Repo
    Release Notes
    0.1.2
  • Allow Jekyll v4
  • Return to home on click page title #47
  • Show full header h1 for smaller displays #49
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ jemoji (indirect, 0.11.1 → 0.12.0) · Repo · Changelog
    Release Notes
    0.12.0
    Minor Enhancements
  • perf: don't load Gemoji into memory immediately (#106)
    Development Fixes
  • deps: Ruby > 2.4 (EOL)
  • ci: test with Ruby 2.7
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ kramdown (indirect, 1.17.0 → 2.3.0) · Repo · Changelog
    Security Advisories 🚨
    🚨 Unintended read access in kramdown gem
    The kramdown gem before 2.3.0 for Ruby processes the template option inside
    Kramdown documents by default, which allows unintended read access (such as
    template="/etc/passwd") or unintended embedded Ruby code execution (such as a
    string that begins with template="string://<%= `). NOTE: kramdown is used in
    Jekyll, GitLab Pages, GitHub Pages, and Thredded Forum.
    ↗️ minitest (indirect, 5.14.1 → 5.14.2) · Repo · Changelog
    Release Notes
    5.14.2 (from changelog)
  • 1 bug fix:
    • Bumped ruby version to include 3.0 (trunk).
      Does any of this look wrong? Please let us know.
      Commits
      See the full diff on Github. The new version differs by more commits than we can show here.
      ↗️ nokogiri (indirect, 1.10.9 → 1.10.10) · Repo · Changelog
      Release Notes
      1.10.10
      1.10.10 / 2020-07-06
      Features
  • [MRI] Cross-built Windows gems now support Ruby 2.7 [#2029]. Note that prior to this release, the v1.11.x prereleases provided this support.
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ rb-fsevent (indirect, 0.10.3 → 0.10.4) · Repo
    Release Notes
    0.10.4
  • Remove bundler development dependency #85
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ rouge (indirect, 3.13.0 → 3.23.0) · Repo · Changelog
    Release Notes
    3.23.0
    This release has two new lexers: one for PostScript and one for systemd unit files. There's also fixes for the Kotlin, Ruby and Rust lexers. Thanks to all the contributors who help make Rouge better. Don't forget to wear a mask!
    3.22.0
    This is a small release with just one update: a major rewrite of the PHP lexer. Hopefully the improved level of detail makes your PHP code look prettier but do report any issues you find with it!
    3.21.0
    This release has three new lexers, one for BrightScript, one for Janet and one for SSH Config. There's also fixes for the Batchfile, C++, Jinja, Perl, PowerShell, Rego, Sass, SCSS and Twig lexers. Happy highlighting!
    3.20.0
    We've got some new lexers again! This release includes lexers for Augeas, BibTeX, HLSL, LiveScript, Velocity and Zig. On top of that, we have fixes for the C++, Diff, Haskell, HTML, JavaScript, JSX, OpenType Feature File, PowerShell, TSX and TypeScript lexers.
    I'd like to especially call out @lkinasiewicz for the LiveScript lexer. This was originally submitted back in 2017 and it's great to have it finally part of Rouge! The backlog of outstanding PRs is still too long but we are slowly making progress. As I like to say: forward, not backward; upward, not forward; and always twirling, twirling, twirling towards freedom!
    3.19.0
    No new lexers this but release but we do have fixes for the JavaScript, Kotlin, Python, SPARQL and Turtle lexers. In addition, there have been some under the hood improvements to how keywords are generated for certain languages.
    Stay safe everyone!
    3.18.0
    This release includes new lexers for Cypher, Datastudio, GHC Cmm, ISBL, Rego, Solidity and YANG. It also incorporates fixes for the C++, CMake, Console, F#, JSON, JSONDOC, Kotlin, Markdown, Pascal, PHP, Python, Racket, Ruby, Terraform, TypeScript and Vue lexers. Which seems like quite a lot. Enjoy!
    3.17.0
    This release includes the ECL lexer as a new lexer. It also incorporates fixes for the CoffeeScript, Markdown, NASM, Ruby, Scala and Varnish lexers. Enjoy your syntax highlighting! 🎉
    3.16.0
    This release includes one new lexer: the Varnish lexer! We also have fixes for the D, Java, Lua, NASM, Objective-C, PowerShell, Rust, Shell, TOML and TypeScript lexers.
    Thank you to all the contributors who've helped make Rouge better!
    3.15.0
    This release includes three new lexers: FreeFEM, GHC and Objective-C++. Thanks to contributions from the community, we also have fixes for the Console, Jinja, LLVM, Python, Rust and Swift lexers. Finally, you should now be able to pass 'false' as an option after a fix to how CGI-style options are parsed.
    Happy new year to everyone! We look forward to another year of Rouge 😃
    3.14.0
    This release includes fixes for the JSONDOC, Liquid, Magik and TOML lexers as well as the addition of the NES Assembly and Slice lexers.
    If all goes according to plan, this will be the last release for 2019. Thanks to all the contributors who improved Rouge—this library wouldn't be what it is without you. See you all again in the new year!
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ ruby-enum (indirect, 0.7.2 → 0.8.0) · Repo · Changelog
    Release Notes
    0.8.0 (from changelog)
  • #22: Added Ruby::Enum#each_key and Ruby::Enum#each_value - @dblock.
  • #22: Dropped support for Ruby 2.2 - @dblock.
  • #22: Upgraded RuboCop to 0.80.1 - @dblock.
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ rubyzip (indirect, 2.2.0 → 2.3.0) · Repo · Changelog
    Release Notes
    2.3.0
  • Fix frozen string literal error #431
  • Set OutputStream.write_buffer's buffer to binmode #439
  • Upgrade rubocop and fix various linting complaints #437 #440
    Tooling:
  • Add a bin/console script for development #420
  • Update rake requirement (development dependency only) to fix a security alert.
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ typhoeus (indirect, 1.3.1 → 1.4.0) · Repo · Changelog
    Release Notes
    1.4.0 (from changelog)
    Full Changelog
    1 feature
  • Faraday adapter exceptions namespace compatibility with Faraday v1 (@iMacTia in #616)
    3 Others
  • Yard warning fixes (@olleolleolle in #622)
  • Add more Ruby versions in CI matrix (@olleolleolle in #623)
  • Use of argument passed in function instead of attr_reader (@v-kolesnikov in #625)
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    ↗️ zeitwerk (indirect, 2.3.0 → 2.4.0) · Repo · Changelog
    Release Notes
    2.4.0 (from changelog)
  • Zeitwerk::Loader#push_dir supports an optional namespace keyword argument. Pass a class or module object if you want the given root directory to be associated with it instead of Object. Said class or module object cannot be reloadable.
  • The default inflector is even more performant.
    2.3.1 (from changelog)
  • Saves some unnecessary allocations made internally by MRI. See #125, by @casperisfine.
  • Documentation improvements.
  • Internal code base maintenance.
    Does any of this look wrong? Please let us know.
    Commits
    See the full diff on Github. The new version differs by more commits than we can show here.
    🆕 kramdown-parser-gfm (added, 1.1.0)
    🆕 rexml (added, 3.2.4)
    🆕 simpleidn (added, 0.1.1)
    🆕 unf (added, 0.1.4)
    🆕 unf_ext (added, 0.0.7.7)

Depfu will automatically keep this PR conflict-free, as long as you don't add any commits to this branch yourself. You can also trigger a rebase manually by commenting with @depfu rebase.
All Depfu comment commands
@ depfu rebase
Rebases against your default branch and redoes this update
@ depfu recreate
Recreates this PR, overwriting any edits that you've made to it
@ depfu merge
Merges this PR once your tests are passing and conflicts are resolved
@ depfu close
Closes this PR and deletes the branch
@ depfu reopen
Restores the branch and reopens this PR (if it's closed)
@ depfu pause
Ignores all future updates for this dependency and closes this PR
@ depfu pause [minor|major]
Ignores all future minor/major updates for this dependency and closes this PR
@ depfu resume
Future versions of this dependency will create PRs again (leaves this PR as is)
Go to the Depfu Dashboard to see the state of your dependencies and to customize how Depfu works.

You can view, comment on, or merge this pull request online at:
  https://github.com/gmright2/loops-2/pull/92
Commit Summary

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
1 participant
You can’t perform that action at this time.