https://pact.io logo
Join Slack
Powered by
<#84 chore(deps): bump addressable from 2.5.2 to 2...
# pact-ruby-standalone
g
#84 chore(deps): bump addressable from 2.5.2 to 2.8.1 Pull request opened by dependabot[bot] Bumps addressable from 2.5.2 to 2.8.1. Changelog Sourced from addressable's changelog.
Addressable 2.8.1
• refactor 
Addressable::URI.normalize_path
to address linter offenses (#430)
• remove redundant colon in 
Addressable::URI::CharacterClasses::AUTHORITY
regex (#438)
• update gemspec to reflect supported Ruby versions (#466, #464, #463)
• compatibility w/ public_suffix 5.x (#466, #465, #460)
• fixes "invalid byte sequence in UTF-8" exception when unencoding URLs containing non UTF-8 characters (#459)
Ractor
compatibility (#449)
• use the whole string instead of a single line for template match (#431)
• force UTF-8 encoding only if needed (#341)
#460: sporkmonger/addressable#460 #463: sporkmonger/addressable#463 #464: sporkmonger/addressable#464 #465: sporkmonger/addressable#465 #466: sporkmonger/addressable#466
Addressable 2.8.0
• fixes ReDoS vulnerability in Addressable::Template#match
• no longer replaces 
+
with spaces in queries for non-http(s) schemes
• fixed encoding ipv6 literals
• the 
:compacted
flag for 
normalized_query
now dedupes parameters
• fix broken 
escape_component
alias
• dropping support for Ruby 2.0 and 2.1
• adding Ruby 3.0 compatibility for development tasks
• drop support for 
rack-mount
and remove Addressable::Template#generate
• performance improvements
• switch CI/CD to GitHub Actions
Addressable 2.7.0
• added 
:compacted
flag to 
normalized_query
heuristic_parse
handles 
mailto:
more intuitively
• dropped explicit support for JRuby 9.0.5.0
• compatibility w/ public_suffix 4.x
• performance improvements
Addressable 2.6.0
• added 
tld=
method to allow assignment to the public suffix
• most 
heuristic_parse
patterns are now case-insensitive
heuristic_parse
handles more 
file://
URI variations
• fixes bug in 
heuristic_parse
when uri starts with digit
• fixes bug in 
request_uri=
with query strings
• fixes template issues with 
nil
and 
?
operator
frozen_string_literal
pragmas added
• minor performance improvements in regexps
• fixes to eliminate warnings
Commits • `8657465` Update version, gemspec, and CHANGELOG for 2.8.1 (#474) • `4fc5bb6` CI: remove Ubuntu 18.04 job (#473) • `860fede` Force UTF-8 encoding only if needed (#341) • `99810af` Merge pull request #431 from ojab/ct-_do_not_parse_multiline_strings • `7ce0f48` Merge branch 'main' into ct-_do_not_parse_multiline_strings • `7ecf751` Merge pull request #449 from okeeblow/freeze_concatenated_strings • `41f12dd` Merge branch 'main' into freeze_concatenated_strings • `068f673` Merge pull request #459 from jarthod/iso-encoding-problem • `b4c9882` Merge branch 'main' into iso-encoding-problem • `08d27e8` Merge pull request #471 from sporkmonger/sporkmonger-enable-codeql • Additional commits viewable in compare view Dependabot compatibility score Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting 
@dependabot rebase
. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • 
@dependabot rebase
will rebase this PR • 
@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it • 
@dependabot merge
will merge this PR after your CI passes on it • 
@dependabot squash and merge
will squash and merge this PR after your CI passes on it • 
@dependabot cancel merge
will cancel a previously requested merge and block automerging • 
@dependabot reopen
will reopen this PR if it is closed • 
@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • 
@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • 
@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • 
@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • 
@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language • `… pact-foundation/pact-ruby-standalone GitHub Actions: build GitHub Actions: build 1 other check has passed 1/3 successful checks
Open in Slack
PreviousNext
Powered by