Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump webauthn from 2.5.2 to 3.1.0 #1665

Open
wants to merge 1 commit into
base: mathtodon
Choose a base branch
from
Open

Bump webauthn from 2.5.2 to 3.1.0 #1665

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Jan 1, 2024

Bumps webauthn from 2.5.2 to 3.1.0.

Changelog

Sourced from webauthn's changelog.

[v3.1.0] - 2023-12-26

Added

  • Add support for optional authenticator_attachment in PublicKeyCredential. #370 [@​8ma10s]

Fixed

  • Fix circular require warning between webauthn/relying_party and webauthn/credential. #389 [@​bdewater]
  • Correctly verify attestation that contains just a batch certificate that is present in the attestation root certificates. #406 [@​santiagorodriguez96]

Changed

[v3.0.0] - 2023-02-15

Added

[v3.0.0.alpha2] - 2022-09-12

Added

  • Rebased support for multiple relying parties from v3.0.0.alpha1 on top of v2.5.2, the previous alpha version was based on v2.3.0 ([@​bdewater])

BREAKING CHANGES

  • Bumped minimum required Ruby version to 2.5 ([@​bdewater])

[v3.0.0.alpha1] - 2020-06-27

Added

Commits
  • 486c43d build: prepare new 3.1.0 release
  • 6a5d7e9 Suppressing unexpected error with `WebAuthn::PublicKeyCredentialWithAttestati...
  • 43a491b Merge pull request #410 from cedarcode/sr--packed-attestation-verification-wi...
  • 2f1e315 feat: correctly verify "packed" attestation with self referenced cert
  • d897c1a Merge pull request #402 from olleolleolle/add-base64-dependency
  • e4e0c13 Inline base64 implementation
  • 6db9596 Merge pull request #404 from cedarcode/dependabot/github_actions/actions/chec...
  • a2c6f04 build(deps): bump actions/checkout from 3 to 4
  • 54ec025 Merge pull request #403 from olleolleolle/patch-1
  • 2ebaff8 Configure Dependabot to update GitHub Actions
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump webauthn from 2.5.2 to 3.1.0
4e21353 
Bumps [webauthn](https://github.com/cedarcode/webauthn-ruby) from 2.5.2 to 3.1.0.
- [Changelog](https://github.com/cedarcode/webauthn-ruby/blob/master/CHANGELOG.md)
- [Commits](cedarcode/webauthn-ruby@v2.5.2...v3.1.0)

---
updated-dependencies:
- dependency-name: webauthn
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Jan 1, 2024
@dependabot dependabot bot mentioned this pull request Jan 1, 2024
Closed
@github-actions GitHub Actions
Copy link

github-actions bot commented Sep 1, 2024

This pull request has merge conflicts that must be resolved before it can be merged.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file rebase needed 🚧 ruby Pull requests that update Ruby code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants