Update devise: 4.7.1 → 4.7.3 (patch)

[depfu]

Here is everything you need to know about this update. Please take a good look at what changed and the test results before merging this pull request.

What changed?

✳️ devise (4.7.1 → 4.7.3) · Repo · Changelog

Release Notes

4.7.3 (from changelog)

• bug fixes
  • Do not modify :except option given to #serializable_hash. (by @dpep)
  • Fix thor deprecation when running the devise generator. (by @deivid-rodriguez)
  • Fix hanging tests for streaming controllers using Devise. (by @afn)

4.7.2 (from changelog)

• enhancements

  • Increase default stretches to 12 (by @sergey-alekseev)
  • Ruby 2.7 support (kwarg warnings removed)

• bug fixes

  • Generate scoped views with proper scoped errors partial (by @shobhitic)
  • Allow to set scoped already_authenticated error messages (by @gurgelrenan)

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by more commits than we can show here.

↗️ bcrypt (indirect, 3.1.13 → 3.1.16) · Repo · Changelog

Release Notes

3.1.16 (from changelog)

  - Fix compilation on FreeBSD. [GH #234]

3.1.15 (from changelog)

  - Remove GVL optimization.  Apparently it breaks things [GH #230]

3.1.14 (from changelog)

  - Start calibration from the minimum cost supported by the algorithm [GH #206 by @sergey-alekseev]

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 35 commits:

• bump version / fix changelog
• Merge pull request #234 from michelboaventura/fix_crypt_r
• Fix crypt_r definition
• Merge pull request #231 from agrare/add_ruby_2_7_to_test_matrix
• Remove Gemfile.lock
• bump version
• Install a recent bundler version
• Revert "unlock the gvl when calculating hashes / salts"
• Add ruby 2.7 to the test matrix
• Merge pull request #227 from nathanKramer/fix/valid-hash-return-type
• Fixing Java build
• updating lockfile
• bumping version
• Ensure valid_hash? returns a Boolean
• Merge pull request #219 from sergey-alekseev/fix-v-3-1-13-changelog
• Merge pull request #217 from jmartin-r7/bug/201-limit-asm
• fix v3.1.13 changelog entry
• Update to more compatible syntax & protect stack
• Merge pull request #124 from tenderlove/nogvl
• Fix free function
• We don't support 1.8 anymore
• make sure we use null padded buffers
• unlock the gvl when calculating hashes / salts
• Merge pull request #214 from fliiiix/bugfix/changelog
• Merge pull request #215 from jeremy/strdup-segfault
• Fix rare strdup segfault
• Merge pull request #216 from jeremy/ci-allows-head-failures
• CI: allow failures on bleeding edge Rubies
• Reverse CHANGELOG order to fix #203
• Update Changeloge for v3.1.13
• Merge pull request #212 from bfarago/master
• Fix cppcheck style findings #213
• fix original repos issue #201 compilation on non-i386 platforms
• Merge pull request #206 from sergey-alekseev/master
• start calibration from the minimum cost supported by the algorithm

↗️ i18n (indirect, 1.8.8 → 1.8.9) · Repo · Changelog

Release Notes

1.8.9

• Rely on Ruby 3's native Hash#except method -- #557

This release also contains several build related updates -- rather than listing them out here, you can see the compare view between 1.8.8 and 1.8.9.

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 10 commits:

• Bump to 1.8.9
• Only attempt to set fallbacks= in tests if method is defined
• Merge pull request #557 from ruby-i18n/ca-except-ruby3
• Merge pull request #558 from ruby-i18n/ca-build
• Merge pull request #550 from taki/update-require
• Prevent overwriting `Hash#except` method present in Ruby 3+
• Exclude Ruby 3+ with all Rails 5.x versions
• Rails main only supports Ruby 2.7+ going forward
• Run tests on the latest patch version of each Ruby release
• Run tests on Rails 5.0.x and 5.1.x again

↗️ responders (indirect, 3.0.0 → 3.0.1) · Repo · Changelog

Release Notes

3.0.1 (from changelog)

• Add support to Ruby 2.7

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 16 commits:

• Prepare to 3.0.1
• Upgrade all gems
• Remove all mentions to Plataformatec
• Merge pull request #221 from casperisfine/ruby-2.7
• Test against Ruby 2.7
• Merge pull request #220 from marco-nicola/fix-typo-in-respond_with-documentation
• Fix typo in 'respond_with' documentation
• Merge pull request #219 from martinbjeldbak/patch-1
• Minor README improvements
• Merge pull request #216 from plataformatec/mf-allow-failures-rails-head-ci
• Allow failures against rails head in CI
• Merge pull request #215 from plataformatec/mf-add-rails-head-to-ci
• Add rails head and ruby head to CI
• Use released rails 6 to test on travis
• Merge pull request #212 from deivid-rodriguez/simplify_readme_description
• Simplify README description

↗️ warden (indirect, 1.2.8 → 1.2.9) · Repo · Changelog

Release Notes

1.2.9 (from changelog)

• Avoid warning on uninitialized instance variable (#188)
• Bump rack to 2.2.3 (#190)
• Remove Gemfile.lock
• Resolve outstanding TODO entries (#179)
• A bunch of gem structure cleanup (thanks @olleolleolle)
• Set winning strategy when :warden is thrown (#174)
• Bump rack dependency to >= 2.0.9 due to CVEs

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 36 commits:

• Remove travis ci file
• Fix failing test
• Update ruby.yml
• Create ruby.yml
• Add CVE entry to changelog
• Update CHANGELOG and prep for release
• Remove Gemfile.lock
• Merge pull request #188 from olleolleolle/avoid-warning-in-base-strategy
• Merge branch 'master' into avoid-warning-in-base-strategy
• Merge pull request #190 from wardencommunity/dependabot/bundler/rack-2.2.3
• Bump rack from 2.0.8 to 2.2.3
• Merge pull request #189 from olleolleolle/update-rspec-in-gemfile-lock
• Gemfile: Use a newer RSpec
• Avoid warning on uninitialized instance variable
• Merge pull request #184 from wardencommunity/dependabot/bundler/rake-13.0.1
• Bump rake from 12.1.0 to 13.0.1
• Merge pull request #181 from wardencommunity/dependabot/bundler/rack-2.0.8
• Bump rack from 2.0.6 to 2.0.8
• Merge pull request #179 from landongrindheim/resolve-TODOs
• Merge branch 'master' into resolve-TODOs
• Merge pull request #178 from olleolleolle/patch-2
• Remove no longer needed spec setup
• Ensure expectation is run
• Set :failure_app only when exercising it
• Format CHANGELOG.md as Markdown
• Merge pull request #177 from olleolleolle/patch-1
• gemspec: rubyforge_project is removed
• Merge pull request #175 from landongrindheim/set-winning-strategy-when-warden-symbol-is-thrown
• Set `winning_strategy` when `:warden` is thrown
• Merge pull request #173 from colorbox/fix_document
• Merge branch 'master' into fix_document
• Merge pull request #174 from colorbox/add_ruby_version_on_CI
• Add newer ruby versions for CI
• Fix document comment[ci skip]
• Merge pull request #172 from buncismamen/master
• change warden wiki link in README.md

---

Depfu will automatically keep this PR conflict-free, as long as you don't add any commits to this branch yourself. You can also trigger a rebase manually by commenting with @depfu rebase.

All Depfu comment commands

@​depfu rebase

Rebases against your default branch and redoes this update

@​depfu recreate

Recreates this PR, overwriting any edits that you've made to it

@​depfu merge

Merges this PR once your tests are passing and conflicts are resolved

@​depfu close

Closes this PR and deletes the branch

@​depfu reopen

Restores the branch and reopens this PR (if it's closed)

@​depfu pause

Ignores all future updates for this dependency and closes this PR

@​depfu pause [minor|major]

Ignores all future minor/major updates for this dependency and closes this PR

@​depfu resume

Future versions of this dependency will create PRs again (leaves this PR as is)

[hennevogel]

@depfu rebase