Bump actionpack, actionview, activemodel, rspec-rails, activesupport, railties, activerecord, factory_girl_rails, config and listen

[dependabot]

Bumps actionpack, actionview, activemodel, rspec-rails, activesupport, railties, activerecord, factory_girl_rails, config and listen. These dependencies needed to be updated together.
Updates actionpack from 5.1.6.2 to 7.0.4

Release notes

Sourced from actionpack's releases.

v7.0.4

Active Support

• Redis cache store is now compatible with redis-rb 5.0.

  Jean Boussier

• Fix NoMethodError on custom ActiveSupport::Deprecation behavior.

  ActiveSupport::Deprecation.behavior= was supposed to accept any object that responds to call, but in fact its internal implementation assumed that this object could respond to arity, so it was restricted to only Proc objects.

  This change removes this arity restriction of custom behaviors.

  Ryo Nakamura

Active Model

• Handle name clashes in attribute methods code generation cache.

  When two distinct attribute methods would generate similar names, the first implementation would be incorrectly re-used.

  class A
    attribute_method_suffix "_changed?"
    define_attribute_methods :x
  end
  class B
  attribute_method_suffix "?"
  define_attribute_methods :x_changed
  end

  Jean Boussier

Active Record

• Symbol is allowed by default for YAML columns

  Étienne Barrié

• Fix ActiveRecord::Store to serialize as a regular Hash

... (truncated)

Changelog

Sourced from actionpack's changelog.

Rails 7.0.4 (September 09, 2022)

• Prevent ActionDispatch::ServerTiming from overwriting existing values in Server-Timing.

  Previously, if another middleware down the chain set Server-Timing header, it would overwritten by ActionDispatch::ServerTiming.

  Jakub Malinowski

Rails 7.0.3.1 (July 12, 2022)

• No changes.

Rails 7.0.3 (May 09, 2022)

• Allow relative redirects when raise_on_open_redirects is enabled.

  Tom Hughes

• Fix authenticate_with_http_basic to allow for missing password.

  Before Rails 7.0 it was possible to handle basic authentication with only a username.

  authenticate_with_http_basic do |token, _|
    ApiClient.authenticate(token)
  end

  This ability is restored.

  Jean Boussier

• Fix content_security_policy returning invalid directives.

  Directives such as self, unsafe-eval and few others were not single quoted when the directive was the result of calling a lambda returning an array.

  content_security_policy do |policy|
    policy.frame_ancestors lambda { [:self, "https://example.com"] }
  end

  With this fix the policy generated from above will now be valid.

  Edouard Chin

... (truncated)

Commits

• 8015c2c Version 7.0.4
• f3c345e Merge pull request #45964 from jhawthorn/server_timing_safety
• 4d25c64 Merge pull request #45221 from jhawthorn/ac_params_eql_fix
• 47cff40 Format inline code [ci-skip]
• c5a407d Linkify code references [ci-skip]
• e874cf5 Fix typos [ci-skip]
• 290e684 Merge pull request #45615 from jtmalinowski/fix-server-timing-overwrites
• 3fc03ac Remove unsupported :same_site option value [ci-skip]
• a730810 Merge branch '7-0-sec' into 7-0-stable
• 04972d9 Preparing for 7.0.3.1 release
• Additional commits viewable in compare view

Updates actionview from 5.1.6.2 to 7.0.4

Release notes

Sourced from actionview's releases.

v7.0.4

Active Support

• Redis cache store is now compatible with redis-rb 5.0.

  Jean Boussier

• Fix NoMethodError on custom ActiveSupport::Deprecation behavior.

  ActiveSupport::Deprecation.behavior= was supposed to accept any object that responds to call, but in fact its internal implementation assumed that this object could respond to arity, so it was restricted to only Proc objects.

  This change removes this arity restriction of custom behaviors.

  Ryo Nakamura

Active Model

• Handle name clashes in attribute methods code generation cache.

  When two distinct attribute methods would generate similar names, the first implementation would be incorrectly re-used.

  class A
    attribute_method_suffix "_changed?"
    define_attribute_methods :x
  end
  class B
  attribute_method_suffix "?"
  define_attribute_methods :x_changed
  end

  Jean Boussier

Active Record

• Symbol is allowed by default for YAML columns

  Étienne Barrié

• Fix ActiveRecord::Store to serialize as a regular Hash

... (truncated)

Changelog

Sourced from actionview's changelog.

Rails 7.0.4 (September 09, 2022)

• Guard against ActionView::Helpers::FormTagHelper#field_name calls with nil object_name arguments. For example:

  <%= fields do |f| %>
    <%= f.field_name :body %>
  <% end %>

  Sean Doyle

• Strings returned from strip_tags are correctly tagged html_safe?

  Because these strings contain no HTML elements and the basic entities are escaped, they are safe to be included as-is as PCDATA in HTML content. Tagging them as html-safe avoids double-escaping entities when being concatenated to a SafeBuffer during rendering.

  Fixes rails/rails-html-sanitizer#124

  Mike Dalessio

Rails 7.0.3.1 (July 12, 2022)

• No changes.

Rails 7.0.3 (May 09, 2022)

• Ensure models passed to form_for attempt to call to_model.

  Sean Doyle

Rails 7.0.2.4 (April 26, 2022)

• Fix and add protections for XSS in ActionView::Helpers and ERB::Util.

  Escape dangerous characters in names of tags and names of attributes in the tag helpers, following the XML specification. Rename the option :escape_attributes to :escape, to simplify by applying the option to the whole tag.

  Álvaro Martín Fraguas

Rails 7.0.2.3 (March 08, 2022)

• No changes.

... (truncated)

Commits

• 8015c2c Version 7.0.4
• deb8087 Standardize format of "Options" subsections [ci-skip]
• c5a407d Linkify code references [ci-skip]
• e874cf5 Fix typos [ci-skip]
• b3e79be Merge pull request #45675 from hirotaka/fix_date_select_with_locale
• 196e0f7 Merge pull request #45572 from fatkodima/fix-cached-missing-translations
• 0f4be71 Merge pull request #45563 from diegomichel/fixes-rubydoc-info-links
• a730810 Merge branch '7-0-sec' into 7-0-stable
• 04972d9 Preparing for 7.0.3.1 release
• 0c68c1f updating version and changelog
• Additional commits viewable in compare view

Updates activemodel from 5.1.6.2 to 7.0.4

Release notes

Sourced from activemodel's releases.

v7.0.4

Active Support

• Redis cache store is now compatible with redis-rb 5.0.

  Jean Boussier

• Fix NoMethodError on custom ActiveSupport::Deprecation behavior.

  ActiveSupport::Deprecation.behavior= was supposed to accept any object that responds to call, but in fact its internal implementation assumed that this object could respond to arity, so it was restricted to only Proc objects.

  This change removes this arity restriction of custom behaviors.

  Ryo Nakamura

Active Model

• Handle name clashes in attribute methods code generation cache.

  When two distinct attribute methods would generate similar names, the first implementation would be incorrectly re-used.

  class A
    attribute_method_suffix "_changed?"
    define_attribute_methods :x
  end
  class B
  attribute_method_suffix "?"
  define_attribute_methods :x_changed
  end

  Jean Boussier

Active Record

• Symbol is allowed by default for YAML columns

  Étienne Barrié

• Fix ActiveRecord::Store to serialize as a regular Hash

... (truncated)

Changelog

Sourced from activemodel's changelog.

Rails 7.0.4 (September 09, 2022)

• Handle name clashes in attribute methods code generation cache.

  When two distinct attribute methods would generate similar names, the first implementation would be incorrectly re-used.

  class A
    attribute_method_suffix "_changed?"
    define_attribute_methods :x
  end
  class B
  attribute_method_suffix "?"
  define_attribute_methods :x_changed
  end

  Jean Boussier

Rails 7.0.3.1 (July 12, 2022)

• No changes.

Rails 7.0.3 (May 09, 2022)

• No changes.

Rails 7.0.2.4 (April 26, 2022)

• No changes.

Rails 7.0.2.3 (March 08, 2022)

• No changes.

Rails 7.0.2.2 (February 11, 2022)

• No changes.

Rails 7.0.2.1 (February 11, 2022)

• No changes.

... (truncated)

Commits

• 8015c2c Version 7.0.4
• 60ee8cf Use tap in conditionally-required password example [ci-skip]
• 117aae0 Merge pull request #45754 from jonathanhefner/has_secure_password-conditional...
• a730810 Merge branch '7-0-sec' into 7-0-stable
• 04972d9 Preparing for 7.0.3.1 release
• 0c68c1f updating version and changelog
• 0a23b96 Fix the attribute methods cache backport
• 8e7b3b7 Fix code cache namespacing for proxied attribute methods
• 3872bc0 Preparing for 7.0.3 release
• c204039 Merge branch '7-0-sec' into 7-0-stable
• Additional commits viewable in compare view

Updates rspec-rails from 3.8.2 to 6.0.1

Release notes

Sourced from rspec-rails's releases.

4.0.2 / 2020-12-26

Full Changelog

Bug Fixes:

• Indent all extra failure lines output from system specs. (Alex Robbin, #2321)
• Generated request spec for update now uses the correct let. (Paul Hanyzewski, #2344)
• Return true/false from predicate methods in config rather than raw values. (Phil Pirozhkov, Jon Rowe, #2353, #2354)
• Remove old #fixture_path feature detection code which broke under newer Rails. (Koen Punt, Jon Rowe, #2370)

Changelog

Sourced from rspec-rails's changelog.

6.0.1 / 2022-10-18

Full Changelog

Bug Fixes:

• Prevent tagged logged support in Rails 7 calling #name. (Jon Rowe, #2625)

6.0.0 / 2022-10-10

Full Changelog

Enhancements:

• Support Rails 7
• Template tweaks to remove instance variables from generated specs. (Takuma Ishikawa, #2599)
• Generators now respects default path configuration option. (@​vivekmiyani, #2508)

Breaking Changes:

• Drop support for Rails below 6.1
• Drop support for Ruby below 2.5 (following supported versions of Rails 6.1)
• Change the order of after_teardown from after to around in system specs to improve compatibility with extensions and Capybara. (Tim Diggins, #2596)

Deprecations:

• Deprecates integration spec generator (rspec:integration) which was an alias of request spec generator (rspec:request) (Luka Lüdicke, #2374)

5.1.2 / 2022-04-24

Full Changelog

Bug Fixes:

• Fix controller scaffold templates parameter name. (Taketo Takashima, #2591)
• Include generator specs in the inferred list of specs. (Jason Karns, #2597)

5.1.1 / 2022-03-07

Full Changelog

Bug Fixes:

• Properly handle global id serialised arguments in have_enqueued_mail. (Jon Rowe, #2578)

5.1.0 / 2022-01-26

Full Changelog

Enhancements:

... (truncated)

Commits

• ce70c2f v6.0.1
• 8f867f4 Changelog for 6.0.1
• ac38623 Changelog for #2625
• bc5a3c0 Merge pull request #2625 from rspec/replacement-tagged-logger-support
• 73c0989 Merge pull request #2626 from rspec/fix-build
• 0646044 v6.0.0
• 7cd6f93 s/upload_backups_spec.rb/upload_backups_job_spec.rb/g
• 8016684 Merge pull request #2587 from rspec/shanecav84/include-tagged-logging
• 0b4d164 Fixed typo
• 396c68f This updates Rubocop and uses the .rubocop_rspec_base.yml for consistency
• Additional commits viewable in compare view

Updates activesupport from 5.1.6.2 to 7.0.4

Release notes

Sourced from activesupport's releases.

v7.0.4

Active Support

• Redis cache store is now compatible with redis-rb 5.0.

  Jean Boussier

• Fix NoMethodError on custom ActiveSupport::Deprecation behavior.

  ActiveSupport::Deprecation.behavior= was supposed to accept any object that responds to call, but in fact its internal implementation assumed that this object could respond to arity, so it was restricted to only Proc objects.

  This change removes this arity restriction of custom behaviors.

  Ryo Nakamura

Active Model

• Handle name clashes in attribute methods code generation cache.

  When two distinct attribute methods would generate similar names, the first implementation would be incorrectly re-used.

  class A
    attribute_method_suffix "_changed?"
    define_attribute_methods :x
  end
  class B
  attribute_method_suffix "?"
  define_attribute_methods :x_changed
  end

  Jean Boussier

Active Record

• Symbol is allowed by default for YAML columns

  Étienne Barrié

• Fix ActiveRecord::Store to serialize as a regular Hash

... (truncated)

Changelog

Sourced from activesupport's changelog.

Rails 7.0.4 (September 09, 2022)

• Redis cache store is now compatible with redis-rb 5.0.

  Jean Boussier

• Fix NoMethodError on custom ActiveSupport::Deprecation behavior.

  ActiveSupport::Deprecation.behavior= was supposed to accept any object that responds to call, but in fact its internal implementation assumed that this object could respond to arity, so it was restricted to only Proc objects.

  This change removes this arity restriction of custom behaviors.

  Ryo Nakamura

Rails 7.0.3.1 (July 12, 2022)

• No changes.

Rails 7.0.3 (May 09, 2022)

• No changes.

Rails 7.0.2.4 (April 26, 2022)

• Fix and add protections for XSS in ActionView::Helpers and ERB::Util.

  Add the method ERB::Util.xml_name_escape to escape dangerous characters in names of tags and names of attributes, following the specification of XML.

  Álvaro Martín Fraguas

Rails 7.0.2.3 (March 08, 2022)

• No changes.

Rails 7.0.2.2 (February 11, 2022)

• Fix Reloader method signature to work with the new Executor signature

Rails 7.0.2.1 (February 11, 2022)

• No changes.

... (truncated)

Commits

• 8015c2c Version 7.0.4
• ff27758 Revert "Merge pull request #44695 from Edouard-chin/ec-tagger-logger-broadcast"
• 4a1f224 Merge pull request #45882 from rails/short-inspect-on-test-case
• a3bd3b5 Backport Redis 5.0 compatibility
• 67f37ac Fix flaky tests for RedisCacheStore
• c520e38 Document AS::Cache::MemCacheStore#write options [ci-skip]
• a74b650 Document AS::Cache::Store#initialize options [ci-skip]
• f7a82bf Document AS::Cache::Store#read options [ci-skip]
• 414351f Rewrite AS::Cache::Store#fetch options doc as list [ci-skip]
• 2661d22 Consolidate AS::Cache::Store#write documentation [ci-skip]
• Additional commits viewable in compare view

Updates railties from 5.1.6.2 to 7.0.4

Release notes

Sourced from railties's releases.

v7.0.4

Active Support

• Redis cache store is now compatible with redis-rb 5.0.

  Jean Boussier

• Fix NoMethodError on custom ActiveSupport::Deprecation behavior.

  ActiveSupport::Deprecation.behavior= was supposed to accept any object that responds to call, but in fact its internal implementation assumed that this object could respond to arity, so it was restricted to only Proc objects.

  This change removes this arity restriction of custom behaviors.

  Ryo Nakamura

Active Model

• Handle name clashes in attribute methods code generation cache.

  When two distinct attribute methods would generate similar names, the first implementation would be incorrectly re-used.

  class A
    attribute_method_suffix "_changed?"
    define_attribute_methods :x
  end
  class B
  attribute_method_suffix "?"
  define_attribute_methods :x_changed
  end

  Jean Boussier

Active Record

• Symbol is allowed by default for YAML columns

  Étienne Barrié

• Fix ActiveRecord::Store to serialize as a regular Hash

... (truncated)

Changelog

Sourced from railties's changelog.

Rails 7.0.4 (September 09, 2022)

• config.allow_concurrency = false now use a Monitor instead of a Mutex

  This allows to enable config.active_support.executor_around_test_case even when config.allow_concurrency is disabled.

  Jean Boussier

• Skip Active Storage and Action Mailer if Active Job is skipped.

  Étienne Barrié

• Correctly check if frameworks are disabled when running app:update.

  Étienne Barrié and Paulo Barros

• Fixed config.active_support.cache_format_version never being applied.

  Rails 7.0 shipped with a new serializer for Rails.cache, but the associated config wasn't working properly. Note that even after this fix, it can only be applied from the application.rb file.

  Alex Ghiculescu

Rails 7.0.3.1 (July 12, 2022)

• No changes.

Rails 7.0.3 (May 09, 2022)

• If reloading and eager loading are both enabled, after a reload Rails eager loads again the application code.

  Xavier Noria

• Use controller_class_path in Rails::Generators::NamedBase#route_url

  The route_url method now returns the correct path when generating a namespaced controller with a top-level model using --model-name.

  Previously, when running this command:

  bin/rails generate scaffold_controller Admin/Post --model-name Post

  the comments above the controller action would look like:

... (truncated)

Commits

• 8015c2c Version 7.0.4
• fae93e0 Merge pull request #45928 from Shopify/rails-error-doc
• f1bae2b Merge pull request #45857 from Shopify/monitor-hook
• 53334c2 Merge pull request #45648 from skipkayhil/fix-skip-system-test-update
• 821b433 Merge pull request #45584 from etiennebarrie/allow-symbols-in-yaml-columns
• a730810 Merge branch '7-0-sec' into 7-0-stable
• 04972d9 Preparing for 7.0.3.1 release
• 0c68c1f updating version and changelog
• 9529dc8 Change ActiveRecord::Coders::YAMLColumn default to safe_load
• 4cd5709 Merge pull request #44601 from ghiculescu/time-zone-aware-type-postgres
• Additional commits viewable in compare view

Updates activerecord from 5.1.6.2 to 7.0.4

Release notes

Sourced from activerecord's releases.

v7.0.4

Active Support

• Redis cache store is now compatible with redis-rb 5.0.

  Jean Boussier

• Fix NoMethodError on custom ActiveSupport::Deprecation behavior.

  ActiveSupport::Deprecation.behavior= was supposed to accept any object that responds to call, but in fact its internal implementation assumed that this object could respond to arity, so it was restricted to only Proc objects.

  This change removes this arity restriction of custom behaviors.

  Ryo Nakamura

Active Model

• Handle name clashes in attribute methods code generation cache.

  When two distinct attribute methods would generate similar names, the first implementation would be incorrectly re-used.

  class A
    attribute_method_suffix "_changed?"
    define_attribute_methods :x
  end
  class B
  attribute_method_suffix "?"
  define_attribute_methods :x_changed
  end

  Jean Boussier

Active Record

• Symbol is allowed by default for YAML columns

  Étienne Barrié

• Fix ActiveRecord::Store to serialize as a regular Hash

... (truncated)

Changelog

Sourced from activerecord's changelog.

Rails 7.0.4 (September 09, 2022)

• Symbol is allowed by default for YAML columns

  Étienne Barrié

• Fix ActiveRecord::Store to serialize as a regular Hash

  Previously it would serialize as an ActiveSupport::HashWithIndifferentAccess which is wasteful and cause problem with YAML safe_load.

  Jean Boussier

• Add timestamptz as a time zone aware type for PostgreSQL

  This is required for correctly parsing timestamp with time zone values in your database.

  If you don't want this, you can opt out by adding this initializer:

  ActiveRecord::Base.time_zone_aware_types -= [:timestamptz]

  Alex Ghiculescu

• Fix supporting timezone awareness for tsrange and tstzrange array columns.

  # In database migrations
  add_column :shops, :open_hours, :tsrange, array: true
  # In app config
  ActiveRecord::Base.time_zone_aware_types += [:tsrange]
  # In the code times are properly converted to app time zone
  Shop.create!(open_hours: [Time.current..8.hour.from_now])

  Wojciech Wnętrzak

• Resolve issue where a relation cache_version could be left stale.

  Previously, when reset was called on a relation object it did not reset the cache_versions ivar. This led to a confusing situation where despite having the correct data the relation still reported a stale cache_version.

  Usage:

  developers = Developer.all
  developers.cache_version

... (truncated)

Commits

• 8015c2c Version 7.0.4
• 4d9b4b4 Merge pull request #45872 from the-spectator/correct_hwia_encoding
• c5a407d Linkify code references [ci-skip]
• e874cf5 Fix typos [ci-skip]
• fb09b1b Don't handle this change for legacy_connection_handling
• 0667ba4 Merge pull request #45773 from eileencodes/only-setup-shared-pools-if-we-have...
• d60d058 Merge pull request #45744 from fatkodima/mysql-change-column-collation
• 73d6fa8 Merge pull request #45555 from bbenno/main
• aed8afa Merge pull request #44760 from lxxxvi/fix_rails_issue_db_fixtures_load_raises
• 852d2b3 Appease rubocop
• Additional commits viewable in compare view

Updates factory_girl_rails from 4.8.0 to 4.9.0

Release notes

Sourced from factory_girl_rails's releases.

Version 4.9.0

This is the final release of factory_girl_rails, which has been renamed to factory_bot_rails.

Learn more about the name change here: https://robots.thoughtbot.com/factory_bot

Version 4.8.2

This is the first release of factory_bot_rails, formerly known as factory_girl_rails.

Learn more about the name change here: https://robots.thoughtbot.com/factory_bot

Changelog

Sourced from factory_girl_rails's changelog.

factory_bot_rails versioning is synced with factory_bot releases. For this reason there might not be any notable changes in new versions of this project.

NEWS

6.2.0 (May 7, 2021)

• Changed: factory_bot dependency to ~> 6.2.0

6.1.0 (July 8, 2020)

• Changed: factory_bot dependency to ~> 6.1.0

6.0.0 (June 18, 2020)

• Fixed: generate a plural factory name when the --force-plural flag is provided
• Changed: factory_bot dependency to ~> 6.0.0
• Removed: "factory_bot.register_reloader" initializer, now registering the reloader after application initialization
• Removed: support for EOL versions of Ruby (2.3, 2.4) and Rails (4.2)

5.2.0 (April 26, 2020)

• Changed: factory_bot dependency to ~> 5.2.0

5.1.1 (September 24, 2019)

• Fixed: Ensure definitions do not load before I18n is initialized

5.1.0 (September 24, 2019)

• Changed: factory_bot dependency to ~> 5.1.0

5.0.2 (April 14, 2019)

• Bugfix: Reload factory_bot whenever the application changes to avoid holding onto stale object references
• Bugfix: Avoid watching project root when no factory definitions exist

5.0.1 (February 9, 2019)

• Bugfix: Avoid watching files and directories that don't exist (to avoid a file watching bug in Rails rails/rails#32700)

5.0.0 (February 1, 2019)

• Added: calling reload! in the Rails console will reload any factory definition files that have changed
• Added: support for custom generator templates
• Added: definition_file_paths configuration option, making it easier to place factories in custom locations
• Changed: namespaced models are now generated inside a directory matching the namespace

... (truncated)

Commits

• 13ecff9 Bump version to 4.9.0
• ebd3310 Update FactoryGirl requirement to 4.9.0
• See full diff in compare view

Updates config from 1.7.2 to 4.0.0

Release notes

Sourced from config's releases.

4.0.0

BREAKING CHANGES

• Rails versions < 5.2 are no longer supported (#316)
• Ruby versions < 2.6 are no longer supported (#316)
• Support HashSource and EnvSource instances in Config.load_files and Config.load_and_set_settings. (#315). There are a few subtle breaking changes:
  • Previously, Config.load_files (called from Config.load_and_set_settings) would call .to_s on each of its arguments. Now, this responsibility is defered to YAMLSource. In effect, if your application passes String or Pathname objects to Config.load_files, no changes are necessary, but if you were somehow relying on the .to_s call for some other type of object, you'll now need to call .to_s on that object before passing it to Config.
  • Before this change, Config.load_files would call uniq on its argument array. This call has been removed, so duplicate file paths are not removed before further processing. In some cases, this can cause differences in behavior since later config files override the values in earlier ones. In most cases, it's best to ensure that duplicate paths are not passed to Config.load_files.

3.1.1

Bug fixes

• Allow the use of unsafe YAML parsing features when using psych >= 4 (#306)

3.1.0

New features

• Evaluating ERB in YAML files can now be disabled with Config.evaluate_erb_in_yaml = false. The default value for this option is true for backwards-compatibility. (#303)

3.0.0

BREAKING CHANGES

• After upgrade behaviour of to_h would change and match behaviour of to_hash. Check #217 for more details.
• Config::Options#load_env! and Config::Options#reload_env! have been removed. If you need to reload settings after modifying the ENV hash, use Config.reload! or Config::Options#reload! instead.

Bug fixes

• Added alias to_h for to_hash (#277)

Changes

• Add Config::Sources::EnvSource for loading settings from flat Hashes with String keys and String values, such as from AWS SecretsManager (#299)

2.2.3

Bug fixes

• Revert added alias to_h for to_hash (#277)

Changes

• Raise explicit error on environment variable conflicts (#293)

2.2.2

Bug fixes

• Added alias to_h for to_hash (#277)
• Prevent unnecessary doubled loading of environment variables (#291)
• Return Hash from Config::Options#as_json instead of Array of pairs when using ActiveSupport Core Extensions (#292)

Changes

... (truncated)

Changelog

Sourced from config's changelog.

4.0.0

BREAKING CHANGES

• Rails versions < 5.2 are no longer supported (#316)
• Ruby versions < 2.6 are no longer supported (#316)
• Support HashSource and EnvSource instances in Config.load_files and Config.load_and_set_settings. (#315). There are a few subtle breaking changes:
  • Previously, Config.load_files (called from Config.load_and_set_settings) would call .to_s on each of its arguments. Now, this responsibility is defered to YAMLSource. In effect, if your application passes String or Pathname objects to Config.load_files, no changes are necessary, but if you were somehow relying on the .to_s call for some other type of object, you'll now need to call .to_s on that object before passing it to Config.
  • Before this change, Config.load_files would call uniq on its argument array. This call has been removed, so duplicate file paths are not removed before further processing. In some cases, this can cause differences in behavior since later config files override the values in earlier ones. In most cases, it's best to ensure that duplicate paths are not passed to Config.load_files.

3.1.1

Bug fixes

• Allow the use of unsafe YAML parsing features when using psych >= 4 (#306)

3.1.0

New features

• Evaluating ERB in YAML files can now be disabled with Config.evaluate_erb_in_yaml = false. The default value for this option is true for backwards-compatibility. (#303)

3.0.0

BREAKING CHANGES

• After upgrade behaviour of to_h would change and match behaviour of to_hash. Check #217 for more details.
• Config::Options#load_env! and Config::Options#reload_env! have been removed. If you need to reload settings after modifying the ENV hash, use Config.reload! or Config::Options#reload! instead.

Bug fixes

• Added alias to_h for to_hash (#277)

Changes

• Add Config::Sources::EnvSource for loading settings from flat Hashes with String keys and String values, such as from AWS SecretsManager (#299)

2.2.3

Bug fixes

• Revert added alias to_h for to_hash (#277)

Changes

• Raise explicit error on environment variable conflicts (#293)

2.2.2

Bug fixes

... (truncated)

Commits

• a7bda0e Bump to version 4.0.0
• 116fe95 Merge pull request #316 from cjlarose/remove-support-for-old-ruby-and-rails-v...
• 2981bbd Update CHANGELOG
• 59fe4b2 Add Ruby 3.0 and 3.1 to test matrix
• 26dc8a9 Drop support for Rails < 5.2
• c4cfd1b Require Ruby version 2.6 or greater
• 2af39fe Execute tests against TruffleRuby 21
• 3dd6817 Support arbitrary sources in Config.load_files and Config.load_and_set_settin...
• 9c35a5d Bump to version 3.1.1
• c0588be Update rubygems on CI to latest
• Additional commits viewable in compare view

Updates listen from 3.1.5 to 3.7.1

Release notes

Sourced from listen's releases.

v3.7.1

• Issue #548: fix error when renaming folder (#552) @​ColinDKelley
• issue #550: fix README to document start rather than unpause (#551) @​ColinDKelley
• Issue #543: Ignore emacs backup/swap files by default. (#546) @​zw963

v3.7.0

• issue #509: raise Listen::Error::INotifyMaxWatchesExceeded rather than abort (#545) @​ColinDKelley
• Plumb Silencer.new and use it #542 spec (#544) @​ColinDKelley
• fix: Avoid scanning and building entries for silenced directories (#542) @​ElMassimo

v3.6.0

✨ New Features

• #452 for FIPS compatibility, use SHA256 instead of MD5 (#541) @​ColinDKelley

v3.5.0

• Issue #533: rescue StandardError only (#535) @​ColinDKelley

v3.4.1

• Add tests for PR #529 (#531) @​ColinDKelley
• Correctly pass timeout as kwargs to wait_for_state (#529) @​the-spectator

v3.5.1

• Bump required ruby version to v2.4.0 (#536) @​cgunther

v3.3.4

• Don't return incorrect files when there's a file whose name matches a dir (#526) @​ghiculescu
• added correct link to help debug inotify workers error on linux (#527) @​williamkennedy
• issue #473: use sudo sh -c so redirection works (#525) @​ColinDKelley
• issue #473: update README for setting fs.inotify.max_user_watches (#522) @​ColinDKelley
• issue #451: change windows install instructions to suggest platforms: instead of Gem.win_platform? (#523) @​ColinDKelley
• put missing wiki content into README (#521) @​ColinDKelley

v3.3.3

• Add project metadata to the gemspec (#519) @​orien

v3.3.2

• Issue #504: tune .rubocop.yml and source code to make it pass all cops (#508) @​ColinDKelley
• Fix description typo (#515) @​ccouzens

v3.3.1

• issue #513: allow stop when not started (#514) @​ColinDKelley

v3.3.0

✨ New Features

• Use file size to check for modifications (#336) @​marawan31
• Ignore mutagen sync temporary files (#469) @​nilbus
• Add GitHub Actions for development workflow. (#485) @​ioquatix
• Allow Ruby 3 (#490) @​yahonda
• Add Truffleruby head to CI (#493, #507) @​gogainda
• Add magic # frozen_string_literal: true comment (#494) @​ColinDKelley

... (truncated)

Commits

• 51053eb release v3.7.1
• 8b66b47 issue #548: remove superstitious ||= {} since that is implied in the @​tree hash
• 098aec6 issue #548: use empty_dirname? method
• 670a92d issue #548: remove _auto_hash in favor of a reset_tree method
• 286457a issue #548: dir_entries now skips non-dir entries entirely
• 79db32e issue #548: refactor to add () around include? args
• 177125d issue #550: fix README to document start rather than unpause
• 029d60e Refactor to use \A \z instead of ^ $ in ignore regexp pattern.
• 797eb33 Ignore emacs backup/swap files by default.
• 67ba230 release v3.7.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• `...

Description has been truncated