upcase
upcase copied to clipboard
thoughtbot
Sharpen your programming skills.
Bumps [tzinfo](https://github.com/tzinfo/tzinfo) from 1.2.8 to 1.2.10. Release notes Sourced from tzinfo's releases. v1.2.10 Fixed a relative path traversal bug that could cause arbitrary files to be loaded with require when...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [rails-html-sanitizer](https://github.com/rails/rails-html-sanitizer) from 1.3.0 to 1.4.3. Release notes Sourced from rails-html-sanitizer's releases. 1.4.3 / 2022-06-09 Address a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer. Prevent the combination of select...
Bumps [jmespath](https://github.com/trevorrowe/jmespath.rb) from 1.4.0 to 1.6.1. Release notes Sourced from jmespath's releases. Release v1.6.1 - 2022-03-07 Issue - Use JSON.parse instead of JSON.load. Release v1.6.0 - 2022-02-14 Feature - Add...
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.10.10 to 1.13.6. Release notes Sourced from nokogiri's releases. 1.13.6 / 2022-05-08 Security [CRuby] Address CVE-2022-29181, improper handling of unexpected data types, related to untrusted inputs to...
Bumps [sinatra](https://github.com/sinatra/sinatra) from 2.1.0 to 2.2.0. Changelog Sourced from sinatra's changelog. 2.2.0 / 2022-02-15 Handle EOFError raised by Rack and return Bad Request 400 status. #1743 by tamazon Minor refactors...
Bumps [puma](https://github.com/puma/puma) from 5.1.1 to 5.6.4. Release notes Sourced from puma's releases. 5.6.4 Security Close several HTTP Request Smuggling exploits (CVE-2022-24790) The 5.6.3 release was a mistake (released the wrong...
Bumps [doorkeeper](https://github.com/doorkeeper-gem/doorkeeper) from 5.1.1 to 5.5.2. Release notes Sourced from doorkeeper's releases. v5.5.2 #1502 Drop support for Ruby 2.4 because of EOL. #1504 Updated the url fragment in the comment...
![dependabot-preview[bot] avatar](https://avatars.githubusercontent.com/in/2141?v=4 "dependabot-preview[bot] avatar"){kind=avatar}
Bumps [puma](https://github.com/puma/puma) from 5.1.1 to 5.3.1. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Keepalive Connections Causing Denial Of Service in puma This...
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.10.10 to 1.11.4. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. XXE in Nokogiri Severity Nokogiri maintainers have evaluated this as...
Bumps [octokit](https://github.com/octokit/octokit.rb) from 4.19.0 to 4.21.0. Release notes Sourced from octokit's releases. v4.21.0 API Support #1319 Add delete workflow run support @szemek #1322 Add match refs support @AHaymond #1329 Add...