pull-request-roulette

pull-request-roulette copied to clipboard

Bumps [loofah](https://github.com/flavorjones/loofah) from 2.0.3 to 2.19.1. Release notes Sourced from loofah's releases. 2.19.1 / 2022-12-13 Security Address CVE-2022-23514, inefficient regular expression complexity. See GHSA-486f-hjj9-9vhh for more information. Address CVE-2022-23515, improper...

dependabot[bot]

Bumps [rails-html-sanitizer](https://github.com/rails/rails-html-sanitizer) from 1.0.2 to 1.4.4. Release notes Sourced from rails-html-sanitizer's releases. 1.4.4 / 2022-12-13 Address inefficient regular expression complexity with certain configurations of Rails::Html::Sanitizer. Fixes CVE-2022-23517. See GHSA-5x79-w82f-gw8w for...

dependabot[bot]

Bumps [omniauth](https://github.com/omniauth/omniauth) from 1.2.2 to 1.4.3. Release notes Sourced from omniauth's releases. v1.4.3 Security Updates the following gem requirements to avoid dependency-related security issues: jruby-openssl rack rest-client v1.4.2 Fixes Mitigate...

dependabot[bot]

Bumps [tzinfo](https://github.com/tzinfo/tzinfo) from 1.2.2 to 1.2.10. Release notes Sourced from tzinfo's releases. v1.2.10 Fixed a relative path traversal bug that could cause arbitrary files to be loaded with require when...

dependabot[bot]

Bumps [i18n](https://github.com/ruby-i18n/i18n) from 0.7.0 to 0.9.5. Release notes Sourced from i18n's releases. v0.9.5 #404 reported a regression in 0.9.3, which wasn't fixed by 0.9.4. #408 fixes this issue. Thanks @​wjordan!...

dependabot[bot]

Bumps [rack](https://github.com/rack/rack) from 1.6.4 to 1.6.13. Commits 47a1fd7 bump version b8dc520 Handle case where session id key is requested but it is missing 698a060 Merge pull request #1462 from jeremyevans/sessionid-to_s...

dependabot[bot]

PRs still listed 3 years after closing and after repo archiving

4

Visiting pullrequestroulette.com right now, I found that only 2 of the first 10 PRs on the list were open and in reachable, non-archived repos. The closed ones had been closed...

Pr0methean

Bumps [better_errors](https://github.com/BetterErrors/better_errors) from 2.1.1 to 2.8.0. Release notes Sourced from better_errors's releases. v2.8.0 Support for Rails ActionableError #465 Allow editor links to work inside an iframe or with CSP that...

dependabot[bot]

Bumps [addressable](https://github.com/sporkmonger/addressable) from 2.4.0 to 2.8.0. Changelog Sourced from addressable's changelog. Addressable 2.8.0 fixes ReDoS vulnerability in Addressable::Template#match no longer replaces + with spaces in queries for non-http(s) schemes fixed...

dependabot[bot]

The content on the home screen overlaps with the table on some screen sizes. ## Images showing this:  

Holajuwon