Copycopter Server is open source. Run it as a web service.

Overview

Copycopter

Build Status

ABANDONED

This software is no longer being maintained.

Description

Copycopter is a service for editing the copy text of a Rails application.

Each Rails application has its own Project, connected by an API key. Each piece of copy in a Project is a Blurb. Each Blurb has many Versions, which track changes users make to copy.

Each Version is either draft or published. The most typical scenario is to display published content in production, and draft in all other environments.

A developer can issue a deploy, which marks the latest Version of all Blurbs as published.

Setup

git clone git://github.com/copycopter/copycopter-server.git
cd copycopter-server

Deploy

Deploy Copycopter Server like any other Rails app. Heroku example:

heroku create --stack cedar
git push heroku master
heroku run rake db:migrate
heroku restart

Adding a Project

heroku run rake copycopter:project NAME=Iora USERNAME=Copy PASSWORD=Copter

Updating a Projects password

heroku run rake copycopter:change_project_password NAME=IORA OLD=Copter NEW=COPTAH

Removing a Project

To remove a project from Copycopter:

heroku run rake copycopter:remove_project NAME=Iora

Contribute

See the style guide.

Set up dependencies:

bundle

Run the test suite:

bundle exec rake

Run the server:

foreman start

Automatically regenerate CSS when you edit Sass files:

sass --watch public/stylesheets/sass:public/stylesheets \
  -r ./public/stylesheets/sass/bourbon/lib/bourbon.rb

Credits

thoughtbot

Copycopter Server was created by thoughtbot, inc

It is maintained by the fine folks at Crowdtap and Iora Health.

License

Copycopter Server is free software, and may be redistributed under the terms specified in the MIT-LICENSE file.

Issues
  • Make Copcopter run as a mountable Rails engine

    Make Copcopter run as a mountable Rails engine

    I'm thinking of a particular use case where it would be awesome to let http://stattleship.com crowd-source translations of their stories to their users.

    feature 
    opened by croaky 15
  • Add ability to create new blurb versions via JSON API

    Add ability to create new blurb versions via JSON API

    I'd like to be able to mix copycopter with some inline edit gem so that my clients can modify them inline on the copycopter client app.

    I think that probably the best way to accomplish this is to ping copycopter with POST requests and GET back the updated text, but I don't see that there is an existing way to do this.

    feature 
    opened by calebhearth 7
  • Memory quota exceeded in Heroku

    Memory quota exceeded in Heroku

    We installed Copycopter server in Heroku, but after 3 days of running with no problems, our app is permanently down. Our Heroku logs says this:

    2012-08-06T19:11:20+00:00 heroku[web.1]: Process running mem=667M(130.3%)
    2012-08-06T19:11:20+00:00 heroku[web.1]: Error R14 (Memory quota exceeded)
    

    Any thoughts on this? Maybe some memory leaks somewhere?

    Update: The 1355 blurbs are generating more than 1 million entires in the blurb table!!!

    opened by juandazapata 7
  • Add copycopter gemset to rvm

    Add copycopter gemset to rvm

    Instead of muddying up the global gemset in 1.9.2, add a gemset to keep it clean and isolated

    opened by addynaik 7
  • Import codebase from thoughtbot

    Import codebase from thoughtbot

    Remove things like KISSMetrics, New Relic, accounts, subscriptions, plans, limits.

    opened by croaky 6
  • Add path for downloading translations with a hierarchy instead of a flat

    Add path for downloading translations with a hierarchy instead of a flat

    The reason for this change is that most javascript I18N plugins expect the data in the same hierarchy that it is stored on as the locale yaml files.

    Currently, we have to come up with a conversion to store and retrieve our keys differently to match the key to the translation. With this change we allow the flexibility of allowing the end user (CopyCopter client or some other javascript client) to pass a optional argument formart with a type of hierarchy to get the data in the format of:

      {
        "en": {
          "test": {
            "one": "expected one",           
            "two": "expected two"
          }
        }
      }
    
    opened by cmavromoustakos 6
  • SQL syntax error when using MySQL

    SQL syntax error when using MySQL

    If using MySQL database instead of PostrgeSQL it shows an error when opening the newly created project in browser:

    ActiveRecord::StatementInvalid in Projects#show
    
    Showing /home/evgeny/code/tmp/copycopter-server/app/views/projects/show.html.erb where line #4 raised:
    
    Mysql2::Error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'key ASC' at line 1: SELECT `locales`.* FROM `locales`  WHERE `locales`.`project_id` = 1 AND `locales`.`enabled` = 1 ORDER BY key ASC
    

    Is copycopter-server supposed to support MySQL?

    opened by evgenyneu 6
  • Gemspec error while migrating to copycopter 2.0 with new server

    Gemspec error while migrating to copycopter 2.0 with new server

    Using Rails 2.3 with Ruby 1.8.7, Bundler version 1.1.3

    When doing a rake deploy to a Heroku Bamboo stack, after Rake Db:migrate, I get the following error:

    WARNING:  #<ArgumentError: Illformed requirement
    ["#<YAML::Syck::DefaultKey:0x2b11f8fbac68> 0.9.2"]>
    # -*- encoding: utf-8 -*-
    
    
    Gem::Specification.new do |s|
     s.name = %q{copycopter_client}
     s.version = "2.0.0"
    
     s.required_rubygems_version = Gem::Requirement.new(">= 0") if
    s.respond_to? :required_rubygems_version=
     s.authors = ["thoughtbot"]
     s.date = %q{2012-03-16}
     s.email = %q{[email protected]}
     s.files = [".gitignore", ".rspec", ".travis.yml", "Appraisals",
    "Gemfile", "Gemfile.lock", "MIT-LICENSE", "README.md", "Rakefile",
    "copycopter_client.gemspec", "features/rails.feature",
    "features/step_definitions/copycopter_server_steps.rb",
    "features/step_definitions/rails_steps.rb", "features/support/env.rb",
    "features/support/rails_server.rb", "gemfiles/2.3.gemfile",
    "gemfiles/2.3.gemfile.lock", "gemfiles/3.0.gemfile",
    "gemfiles/3.0.gemfile.lock", "gemfiles/3.1.gemfile",
    "gemfiles/3.1.gemfile.lock", "init.rb", "lib/copycopter_client.rb",
    "lib/copycopter_client/cache.rb", "lib/copycopter_client/client.rb",
    "lib/copycopter_client/configuration.rb",
    "lib/copycopter_client/errors.rb",
    "lib/copycopter_client/i18n_backend.rb",
    "lib/copycopter_client/poller.rb",
    "lib/copycopter_client/prefixed_logger.rb",
    "lib/copycopter_client/process_guard.rb",
    "lib/copycopter_client/rails.rb", "lib/copycopter_client/railtie.rb",
    "lib/copycopter_client/request_sync.rb",
    "lib/copycopter_client/version.rb",
    "lib/tasks/copycopter_client_tasks.rake",
    "spec/copycopter_client/cache_spec.rb",
    "spec/copycopter_client/client_spec.rb",
    "spec/copycopter_client/configuration_spec.rb",
    "spec/copycopter_client/i18n_backend_spec.rb",
    "spec/copycopter_client/poller_spec.rb",
    "spec/copycopter_client/prefixed_logger_spec.rb",
    "spec/copycopter_client/process_guard_spec.rb",
    "spec/copycopter_client/request_sync_spec.rb",
    "spec/copycopter_client_spec.rb", "spec/spec_helper.rb",
    "spec/support/client_spec_helpers.rb",
    "spec/support/defines_constants.rb", "spec/support/fake_client.rb",
    "spec/support/fake_copycopter_app.rb",
    "spec/support/fake_html_safe_string.rb",
    "spec/support/fake_logger.rb", "spec/support/fake_passenger.rb",
    "spec/support/fake_resque_job.rb", "spec/support/fake_unicorn.rb",
    "spec/support/middleware_stack.rb", "spec/support/writing_cache.rb",
    "tmp/projects.json"]
     s.homepage = %q{http://github.com/copycopter/copycopter-ruby-client}
     s.require_paths = ["lib"]
     s.rubygems_version = %q{1.3.7}
     s.summary = %q{Client for the Copycopter copy management service}
     s.test_files = ["features/rails.feature",
    "features/step_definitions/copycopter_server_steps.rb",
    "features/step_definitions/rails_steps.rb", "features/support/env.rb",
    "features/support/rails_server.rb",
    "spec/copycopter_client/cache_spec.rb",
    "spec/copycopter_client/client_spec.rb",
    "spec/copycopter_client/configuration_spec.rb",
    "spec/copycopter_client/i18n_backend_spec.rb",
    "spec/copycopter_client/poller_spec.rb",
    "spec/copycopter_client/prefixed_logger_spec.rb",
    "spec/copycopter_client/process_guard_spec.rb",
    "spec/copycopter_client/request_sync_spec.rb",
    "spec/copycopter_client_spec.rb", "spec/spec_helper.rb",
    "spec/support/client_spec_helpers.rb",
    "spec/support/defines_constants.rb", "spec/support/fake_client.rb",
    "spec/support/fake_copycopter_app.rb",
    "spec/support/fake_html_safe_string.rb",
    "spec/support/fake_logger.rb", "spec/support/fake_passenger.rb",
    "spec/support/fake_resque_job.rb", "spec/support/fake_unicorn.rb",
    "spec/support/middleware_stack.rb", "spec/support/writing_cache.rb"]
    
     if s.respond_to? :specification_version then
       current_version = Gem::Specification::CURRENT_SPECIFICATION_VERSION
       s.specification_version = 3
    
       if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
         s.add_runtime_dependency(%q<i18n>, [">= 0.5.0"])
         s.add_runtime_dependency(%q<json>, [">= 0"])
         s.add_development_dependency(%q<appraisal>, ["~> 0.4"])
         s.add_development_dependency(%q<aruba>, ["~> 0.3.2"])
         s.add_development_dependency(%q<bourne>, [">= 0"])
         s.add_development_dependency(%q<cucumber>, ["~> 0.10.0"])
         s.add_development_dependency(%q<i18n>, [">= 0"])
         s.add_development_dependency(%q<rails>, ["~> 3.1.0"])
         s.add_development_dependency(%q<rake>,
    ["#<YAML::Syck::DefaultKey:0x2b11f8fbac68> 0.9.2"])
         s.add_development_dependency(%q<rspec>, ["~> 2.3"])
         s.add_development_dependency(%q<sham_rack>, [">= 0"])
         s.add_development_dependency(%q<sinatra>, [">= 0"])
         s.add_development_dependency(%q<sqlite3-ruby>, [">= 0"])
         s.add_development_dependency(%q<thin>, [">= 0"])
         s.add_development_dependency(%q<webmock>, [">= 0"])
         s.add_development_dependency(%q<yard>, [">= 0"])
       else
         s.add_dependency(%q<i18n>, [">= 0.5.0"])
         s.add_dependency(%q<json>, [">= 0"])
         s.add_dependency(%q<appraisal>, ["~> 0.4"])
         s.add_dependency(%q<aruba>, ["~> 0.3.2"])
         s.add_dependency(%q<bourne>, [">= 0"])
         s.add_dependency(%q<cucumber>, ["~> 0.10.0"])
         s.add_dependency(%q<i18n>, [">= 0"])
         s.add_dependency(%q<rails>, ["~> 3.1.0"])
         s.add_dependency(%q<rake>,
    ["#<YAML::Syck::DefaultKey:0x2b11f8fbac68> 0.9.2"])
         s.add_dependency(%q<rspec>, ["~> 2.3"])
         s.add_dependency(%q<sham_rack>, [">= 0"])
         s.add_dependency(%q<sinatra>, [">= 0"])
         s.add_dependency(%q<sqlite3-ruby>, [">= 0"])
         s.add_dependency(%q<thin>, [">= 0"])
         s.add_dependency(%q<webmock>, [">= 0"])
         s.add_dependency(%q<yard>, [">= 0"])
       end
     else
       s.add_dependency(%q<i18n>, [">= 0.5.0"])
       s.add_dependency(%q<json>, [">= 0"])
       s.add_dependency(%q<appraisal>, ["~> 0.4"])
       s.add_dependency(%q<aruba>, ["~> 0.3.2"])
       s.add_dependency(%q<bourne>, [">= 0"])
       s.add_dependency(%q<cucumber>, ["~> 0.10.0"])
       s.add_dependency(%q<i18n>, [">= 0"])
       s.add_dependency(%q<rails>, ["~> 3.1.0"])
       s.add_dependency(%q<rake>,
    ["#<YAML::Syck::DefaultKey:0x2b11f8fbac68> 0.9.2"])
       s.add_dependency(%q<rspec>, ["~> 2.3"])
       s.add_dependency(%q<sham_rack>, [">= 0"])
       s.add_dependency(%q<sinatra>, [">= 0"])
       s.add_dependency(%q<sqlite3-ruby>, [">= 0"])
       s.add_dependency(%q<thin>, [">= 0"])
       s.add_dependency(%q<webmock>, [">= 0"])
       s.add_dependency(%q<yard>, [">= 0"])
     end
    end
    WARNING:  Invalid .gemspec format in
    '/app/.bundle/gems/ruby/1.8/specifications/copycopter_client-2.0.0.gemspec'
    WARNING:  #<ArgumentError: Illformed requirement
    ["#<YAML::Syck::DefaultKey:0x2b11f8fbac68> 0.9.2"]>
    # -*- encoding: utf-8 -*-
    
    Gem::Specification.new do |s|
     s.name = %q{copycopter_client}
     s.version = "2.0.0"
    
     s.required_rubygems_version = Gem::Requirement.new(">= 0") if
    s.respond_to? :required_rubygems_version=
     s.authors = ["thoughtbot"]
     s.date = %q{2012-03-16}
     s.email = %q{[email protected]}
     s.files = [".gitignore", ".rspec", ".travis.yml", "Appraisals",
    "Gemfile", "Gemfile.lock", "MIT-LICENSE", "README.md", "Rakefile",
    "copycopter_client.gemspec", "features/rails.feature",
    "features/step_definitions/copycopter_server_steps.rb",
    "features/step_definitions/rails_steps.rb", "features/support/env.rb",
    "features/support/rails_server.rb", "gemfiles/2.3.gemfile",
    "gemfiles/2.3.gemfile.lock", "gemfiles/3.0.gemfile",
    "gemfiles/3.0.gemfile.lock", "gemfiles/3.1.gemfile",
    "gemfiles/3.1.gemfile.lock", "init.rb", "lib/copycopter_client.rb",
    "lib/copycopter_client/cache.rb", "lib/copycopter_client/client.rb",
    "lib/copycopter_client/configuration.rb",
    "lib/copycopter_client/errors.rb",
    "lib/copycopter_client/i18n_backend.rb",
    "lib/copycopter_client/poller.rb",
    "lib/copycopter_client/prefixed_logger.rb",
    "lib/copycopter_client/process_guard.rb",
    "lib/copycopter_client/rails.rb", "lib/copycopter_client/railtie.rb",
    "lib/copycopter_client/request_sync.rb",
    "lib/copycopter_client/version.rb",
    "lib/tasks/copycopter_client_tasks.rake",
    "spec/copycopter_client/cache_spec.rb",
    "spec/copycopter_client/client_spec.rb",
    "spec/copycopter_client/configuration_spec.rb",
    "spec/copycopter_client/i18n_backend_spec.rb",
    "spec/copycopter_client/poller_spec.rb",
    "spec/copycopter_client/prefixed_logger_spec.rb",
    "spec/copycopter_client/process_guard_spec.rb",
    "spec/copycopter_client/request_sync_spec.rb",
    "spec/copycopter_client_spec.rb", "spec/spec_helper.rb",
    "spec/support/client_spec_helpers.rb",
    "spec/support/defines_constants.rb", "spec/support/fake_client.rb",
    "spec/support/fake_copycopter_app.rb",
    "spec/support/fake_html_safe_string.rb",
    "spec/support/fake_logger.rb", "spec/support/fake_passenger.rb",
    "spec/support/fake_resque_job.rb", "spec/support/fake_unicorn.rb",
    "spec/support/middleware_stack.rb", "spec/support/writing_cache.rb",
    "tmp/projects.json"]
     s.homepage = %q{http://github.com/copycopter/copycopter-ruby-client}
     s.require_paths = ["lib"]
     s.rubygems_version = %q{1.3.7}
     s.summary = %q{Client for the Copycopter copy management service}
     s.test_files = ["features/rails.feature",
    "features/step_definitions/copycopter_server_steps.rb",
    "features/step_definitions/rails_steps.rb", "features/support/env.rb",
    "features/support/rails_server.rb",
    "spec/copycopter_client/cache_spec.rb",
    "spec/copycopter_client/client_spec.rb",
    "spec/copycopter_client/configuration_spec.rb",
    "spec/copycopter_client/i18n_backend_spec.rb",
    "spec/copycopter_client/poller_spec.rb",
    "spec/copycopter_client/prefixed_logger_spec.rb",
    "spec/copycopter_client/process_guard_spec.rb",
    "spec/copycopter_client/request_sync_spec.rb",
    "spec/copycopter_client_spec.rb", "spec/spec_helper.rb",
    "spec/support/client_spec_helpers.rb",
    "spec/support/defines_constants.rb", "spec/support/fake_client.rb",
    "spec/support/fake_copycopter_app.rb",
    "spec/support/fake_html_safe_string.rb",
    "spec/support/fake_logger.rb", "spec/support/fake_passenger.rb",
    "spec/support/fake_resque_job.rb", "spec/support/fake_unicorn.rb",
    "spec/support/middleware_stack.rb", "spec/support/writing_cache.rb"]
    
     if s.respond_to? :specification_version then
       current_version = Gem::Specification::CURRENT_SPECIFICATION_VERSION
       s.specification_version = 3
    
       if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
         s.add_runtime_dependency(%q<i18n>, [">= 0.5.0"])
         s.add_runtime_dependency(%q<json>, [">= 0"])
         s.add_development_dependency(%q<appraisal>, ["~> 0.4"])
         s.add_development_dependency(%q<aruba>, ["~> 0.3.2"])
         s.add_development_dependency(%q<bourne>, [">= 0"])
         s.add_development_dependency(%q<cucumber>, ["~> 0.10.0"])
         s.add_development_dependency(%q<i18n>, [">= 0"])
         s.add_development_dependency(%q<rails>, ["~> 3.1.0"])
         s.add_development_dependency(%q<rake>,
    ["#<YAML::Syck::DefaultKey:0x2b11f8fbac68> 0.9.2"])
         s.add_development_dependency(%q<rspec>, ["~> 2.3"])
         s.add_development_dependency(%q<sham_rack>, [">= 0"])
         s.add_development_dependency(%q<sinatra>, [">= 0"])
         s.add_development_dependency(%q<sqlite3-ruby>, [">= 0"])
         s.add_development_dependency(%q<thin>, [">= 0"])
         s.add_development_dependency(%q<webmock>, [">= 0"])
         s.add_development_dependency(%q<yard>, [">= 0"])
       else
         s.add_dependency(%q<i18n>, [">= 0.5.0"])
         s.add_dependency(%q<json>, [">= 0"])
         s.add_dependency(%q<appraisal>, ["~> 0.4"])
         s.add_dependency(%q<aruba>, ["~> 0.3.2"])
         s.add_dependency(%q<bourne>, [">= 0"])
         s.add_dependency(%q<cucumber>, ["~> 0.10.0"])
         s.add_dependency(%q<i18n>, [">= 0"])
         s.add_dependency(%q<rails>, ["~> 3.1.0"])
         s.add_dependency(%q<rake>,
    ["#<YAML::Syck::DefaultKey:0x2b11f8fbac68> 0.9.2"])
         s.add_dependency(%q<rspec>, ["~> 2.3"])
         s.add_dependency(%q<sham_rack>, [">= 0"])
         s.add_dependency(%q<sinatra>, [">= 0"])
         s.add_dependency(%q<sqlite3-ruby>, [">= 0"])
         s.add_dependency(%q<thin>, [">= 0"])
         s.add_dependency(%q<webmock>, [">= 0"])
         s.add_dependency(%q<yard>, [">= 0"])
       end
     else
       s.add_dependency(%q<i18n>, [">= 0.5.0"])
       s.add_dependency(%q<json>, [">= 0"])
       s.add_dependency(%q<appraisal>, ["~> 0.4"])
       s.add_dependency(%q<aruba>, ["~> 0.3.2"])
       s.add_dependency(%q<bourne>, [">= 0"])
       s.add_dependency(%q<cucumber>, ["~> 0.10.0"])
       s.add_dependency(%q<i18n>, [">= 0"])
       s.add_dependency(%q<rails>, ["~> 3.1.0"])
       s.add_dependency(%q<rake>,
    ["#<YAML::Syck::DefaultKey:0x2b11f8fbac68> 0.9.2"])
       s.add_dependency(%q<rspec>, ["~> 2.3"])
       s.add_dependency(%q<sham_rack>, [">= 0"])
       s.add_dependency(%q<sinatra>, [">= 0"])
       s.add_dependency(%q<sqlite3-ruby>, [">= 0"])
       s.add_dependency(%q<thin>, [">= 0"])
       s.add_dependency(%q<webmock>, [">= 0"])
       s.add_dependency(%q<yard>, [">= 0"])
     end
    end
    WARNING:  Invalid .gemspec format in
    '/app/.bundle/gems/ruby/1.8/specifications/copycopter_client-2.0.0.gemspec'
    
    opened by ghost 5
  • 'server' and 'client' are too general as project names

    'server' and 'client' are too general as project names

    Given that most users are going to fork this project, having a 'server' project in their organization is not clear. Granted they can rename the project but I feel we shouldn't have to require them to do this. I recommend changing the project names to 'copycopter.server' and 'copycopter.client'. Thoughts?

    opened by kareemk 5
  • Screen slides right

    Screen slides right

    As a user, when editing a copycopter key the editor slides to the right of the screen out of the container. This should not happen.

    opened by lucaslevin1 4
  • Bump nokogiri from 1.5.4 to 1.12.5

    Bump nokogiri from 1.5.4 to 1.12.5

    Bumps nokogiri from 1.5.4 to 1.12.5.

    Release notes

    Sourced from nokogiri's releases.

    1.12.5 / 2021-09-27

    Security

    [JRuby] Address CVE-2021-41098 (GHSA-2rr5-8q37-2w7h).

    In Nokogiri v1.12.4 and earlier, on JRuby only, the SAX parsers resolve external entities (XXE) by default. This fix turns off entity-resolution-by-default in the JRuby SAX parsers to match the CRuby SAX parsers' behavior.

    CRuby users are not affected by this CVE.

    Fixed

    • [CRuby] Document#to_xhtml properly serializes self-closing tags in libxml > 2.9.10. A behavior change introduced in libxml 2.9.11 resulted in emitting start and and tags (e.g., <br></br>) instead of a self-closing tag (e.g., <br/>) in previous Nokogiri versions. [#2324]

    SHA256 checksums:

    36bfa3a07aced069b3f3c9b39d9fb62cb0728d284d02b079404cd55780beaeff  nokogiri-1.12.5-arm64-darwin.gem
    16b1a9ddbb70a9c998462912a5972097cbc79c3e01eb373906886ef8a469f589  nokogiri-1.12.5-java.gem
    218dcc6edd1b49cc6244b5f88afb978739bb2f3f166c271557fe5f51e4bc713c  nokogiri-1.12.5-x64-mingw32.gem
    e33bb919d64c16d931a5f26dc880969e587d225cfa97e6b56e790fb52179f527  nokogiri-1.12.5-x86-linux.gem
    e13c2ed011b8346fbd589e96fe3542d763158bc2c7ad0f4f55f6d801afd1d9ff  nokogiri-1.12.5-x86-mingw32.gem
    1ed64f7db7c1414b87fce28029f2a10128611d2037e0871ba298d00f9a00edd6  nokogiri-1.12.5-x86_64-darwin.gem
    0868c8d0a147904d4dedaaa05af5f06656f2d3c67e4432601718559bf69d6cea  nokogiri-1.12.5-x86_64-linux.gem
    2b20905942acc580697c8c496d0d1672ab617facb9d30d156b3c7676e67902ec  nokogiri-1.12.5.gem
    

    1.12.4 / 2021-08-29

    Notable fix: Namespace inheritance

    Namespace behavior when reparenting nodes has historically been poorly specified and the behavior diverged between CRuby and JRuby. As a result, making this behavior consistent in v1.12.0 introduced a breaking change.

    This patch release reverts the Builder behavior present in v1.12.0..v1.12.3 but keeps the Document behavior. This release also introduces a Document attribute to allow affected users to easily change this behavior for their legacy code without invasive changes.

    Compensating Feature in XML::Document

    This release of Nokogiri introduces a new Document boolean attribute, namespace_inheritance, which controls whether children should inherit a namespace when they are reparented. Nokogiri::XML:Document defaults this attribute to false meaning "do not inherit," thereby making explicit the behavior change introduced in v1.12.0.

    CRuby users who desire the pre-v1.12.0 behavior may set document.namespace_inheritance = true before reparenting nodes.

    See https://nokogiri.org/rdoc/Nokogiri/XML/Document.html#namespace_inheritance-instance_method for example usage.

    Fix for XML::Builder

    ... (truncated)

    Changelog

    Sourced from nokogiri's changelog.

    1.12.5 / 2021-09-27

    Security

    [JRuby] Address CVE-2021-41098 (GHSA-2rr5-8q37-2w7h).

    In Nokogiri v1.12.4 and earlier, on JRuby only, the SAX parsers resolve external entities (XXE) by default. This fix turns off entity-resolution-by-default in the JRuby SAX parsers to match the CRuby SAX parsers' behavior.

    CRuby users are not affected by this CVE.

    Fixed

    • [CRuby] Document#to_xhtml properly serializes self-closing tags in libxml > 2.9.10. A behavior change introduced in libxml 2.9.11 resulted in emitting start and and tags (e.g., <br></br>) instead of a self-closing tag (e.g., <br/>) in previous Nokogiri versions. [#2324]

    1.12.4 / 2021-08-29

    Notable fix: Namespace inheritance

    Namespace behavior when reparenting nodes has historically been poorly specified and the behavior diverged between CRuby and JRuby. As a result, making this behavior consistent in v1.12.0 introduced a breaking change.

    This patch release reverts the Builder behavior present in v1.12.0..v1.12.3 but keeps the Document behavior. This release also introduces a Document attribute to allow affected users to easily change this behavior for their legacy code without invasive changes.

    Compensating Feature in XML::Document

    This release of Nokogiri introduces a new Document boolean attribute, namespace_inheritance, which controls whether children should inherit a namespace when they are reparented. Nokogiri::XML:Document defaults this attribute to false meaning "do not inherit," thereby making explicit the behavior change introduced in v1.12.0.

    CRuby users who desire the pre-v1.12.0 behavior may set document.namespace_inheritance = true before reparenting nodes.

    See https://nokogiri.org/rdoc/Nokogiri/XML/Document.html#namespace_inheritance-instance_method for example usage.

    Fix for XML::Builder

    However, recognizing that we want Builder-created children to inherit namespaces, Builder now will set namespace_inheritance=true on the underlying document for both JRuby and CRuby. This means that, on CRuby, the pre-v1.12.0 behavior is restored.

    Users who want to turn this behavior off may pass a keyword argument to the Builder constructor like so:

    Nokogiri::XML::Builder.new(namespace_inheritance: false)
    

    See https://nokogiri.org/rdoc/Nokogiri/XML/Builder.html#label-Namespace+inheritance for example usage.

    Downstream gem maintainers

    Note that any downstream gems may want to specifically omit Nokogiri v1.12.0--v1.12.3 from their dependency specification if they rely on child namespace inheritance:

    ... (truncated)

    Commits
    • 47f6a46 version bump to v1.12.5
    • 2a0ac88 update CHANGELOG
    • 6b60637 Merge pull request #2329 from sparklemotion/flavorjones-GHSA-2rr5-8q37-2w7h_1...
    • 4bd943c fix(jruby): SAX parser uses an entity resolver
    • f943ee4 refactor(jruby): handle errors more consistently
    • 2790122 format: test files
    • 01e1618 Merge pull request #2327 from sparklemotion/2324-xhtml-self-closing-tags_v1.12.x
    • a0180c7 fix: HTML4::Document.to_xhtml self-closing tags
    • 564ac17 release v1.12.4
    • 4d5754b backport #2320
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump rake from 0.9.2.2 to 13.0.1

    Bump rake from 0.9.2.2 to 13.0.1

    Bumps rake from 0.9.2.2 to 13.0.1.

    Changelog

    Sourced from rake's changelog.

    === 13.0.1

    ==== Bug fixes

    • Fixed bug: Reenabled task raises previous exception on second invokation Pull Request #271 by thorsteneckel
    • Fix an incorrectly resolved arg pattern Pull Request #327 by mjbellantoni

    === 13.0.0

    ==== Enhancements

    • Follows recent changes on keyword arguments in ruby 2.7. Pull Request #326 by nobu
    • Make PackageTask be able to omit parent directory while packing files Pull Request #310 by tonytonyjan
    • Add order only dependency Pull Request #269 by take-cheeze

    ==== Compatibility changes

    • Drop old ruby versions(< 2.2)

    === 12.3.3

    ==== Bug fixes

    • Use the application's name in error message if a task is not found. Pull Request #303 by tmatilai

    ==== Enhancements:

    • Use File.open explicitly.

    === 12.3.2

    ==== Bug fixes

    • Fixed test fails caused by 2.6 warnings. Pull Request #297 by hsbt

    ==== Enhancements:

    • Rdoc improvements. Pull Request #293 by colby-swandale
    • Improve multitask performance. Pull Request #273 by jsm
    • Add alias prereqs. Pull Request #268 by take-cheeze
    ... (truncated)
    Commits
    • c8251e2 Bump version to 13.0.1
    • 8edd860 Fixed build failure of the latest GitHub Actions
    • b6e2a66 Merge pull request #271 from thorsteneckel/bugfix-reenable_invocation_exception
    • 985abff Merge pull request #327 from mjbellantoni/mjb-order-only-arg-fix
    • 4a90acb Merge pull request #329 from jeremyevans/skip-taint-test-on-2.7
    • 4dc6282 Skip a taint test on Ruby 2.7
    • a08b697 Merge pull request #328 from orien/gem-metadata
    • c3953d4 Add project metadata to the gemspec
    • 46a8f7c Update comments to reflect the current state
    • 00aacdc Fix an incorrectly resolved arg pattern
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump jquery-rails from 1.0.19 to 3.1.3

    Bump jquery-rails from 1.0.19 to 3.1.3

    Bumps jquery-rails from 1.0.19 to 3.1.3.

    Changelog

    Sourced from jquery-rails's changelog.

    3.1.3 (16 June 2015)

    • Fix CSP bypass vulnerability. CVE-2015-1840

    3.1.2 (1 September 2014)

    • Updated to jquery-ujs 1.0.1

    3.1.1 (23 June 2014)

    • Updated to jQuery 1.11.1
    • Updated to jquery-ujs 1.0.0

    3.1.0 (29 January 2014)

    • Updated to jQuery 1.11.0
    • Updated to latest jquery-ujs
    • Added development rake task for updating jQuery

    3.0.4 (10 July 2013)

    • Fixed jQuery source map

    3.0.3 (10 July 2013)

    • Updated to jQuery 1.10.2

    3.0.2 (04 July 2013)

    • Updated to latest jquery-ujs

    3.0.1 (07 June 2013)

    • Updated to jQuery 1.10.1
    • Removed jQuery UI from generator

    3.0.0 (29 May 2013)

    • Removed jQuery UI

    2.3.0 (29 May 2013)

    • Updated to jQuery 1.10.0
    • Updated to jQuery UI 1.10.3

    2.2.2 (29 May 2013)

    • Updated to latest jquery-ujs

    2.2.1 (08 February 2013)

    ... (truncated)
    Commits
    • ee1ed3c Release 3.1.3
    • 92f2a9d Upgrade jquery-ujs to do proper checks for cross domain requests
    • 135ba0f Release 3.1.2
    • 1eabddd Update to latest jquery-ujs.
    • d3bc214 Merge branch 'master' into 3-1-stable
    • 4bc300a Merge pull request #164 from mattmenefee/patch-1
    • 0374462 Update Changelog.md to correct release year
    • a3e9a29 Merge pull request #163 from dy-dx/update-readme
    • 614d06a updated readme with jQuery version 1.11.1
    • 7d0cf26 Release 3.1.1
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump rails from 3.2.6 to 3.2.17

    Bump rails from 3.2.6 to 3.2.17

    Bumps rails from 3.2.6 to 3.2.17.

    Commits
    • 666e9f6 Preparing for 3.2.17 release
    • 388d2f8 Use the reference for the mime type to get the format
    • eaa2101 Escape format, negative_format and units options of number helpers
    • 6422630 updating the changelog
    • d5a4095 Deep Munge the parameters for GET and POST
    • 78790e4 Stop using i18n's built in HTML error handling.
    • 5ed70c5 Escape the unit value provided to number_to_currency
    • bee3b7f Only use valid mime type symbols as cache keys
    • 5f844d6 Merge branch '3-2-sec' into 3-2-stable
    • 538f8ba updating changelogs
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    opened by dependabot[bot] 0
  • Bump i18n from 0.6.0 to 0.9.5

    Bump i18n from 0.6.0 to 0.9.5

    Bumps i18n from 0.6.0 to 0.9.5.

    Release notes

    Sourced from i18n's releases.

    v0.9.5

    • #404 reported a regression in 0.9.3, which wasn't fixed by 0.9.4. #408 fixes this issue.

    Thanks @​wjordan!

    v0.9.4

    • Fixed a regression with chained backends introduced in v0.9.3 (#402) - #405 - bug report / #407 - PR to fix
    • Optimize Backend::Simple#available_locales - reports are that this is now 4x faster than previously - #406

    v0.9.3

    (For those wondering where v0.9.2 went: I got busy after I pushed the commit for the release, so there was no gem release that day. I am not busy today, so here is v0.9.3 in its stead. This changelog contains changes from v0.9.1 -> v0.9.3)

    • I18n no longer stores translations for unavailable locales. #391.
    • Added the ability to interpolate with arrays #395.
    • Documentation for lambda has been corrected. #396
    • I18n will use oj -- a faster JSON library -- but only if it is available. #398
    • Fixed an issue with translate and default: [false] as an option. #399
    • Fixed an issue with translate with nil and empty keys. #400
    • Fix issue with disabled subtrees and pluralization for KeyValue backend #402

    Thank you to @​stereobooster, @​fatkodima and @​lulalala for the patches that went towards this release. We appreciate your efforts!

    v0.9.1

    • Reverted Hash#slice behaviour introduced with #250 - See #390.
    • Fixed a regression caused by #387, where translations may have returned a not-helpful error message - See #389

    v0.9.0

    • Made Backend::Memoize threadsafe. See #51 and #352.
    • Added a middleware I18n::Middleware that should be used to ensure that i18n config is reset correctly between requests. See #381 and #382.

    v0.8.6

    Fixed a small regression introduced in v0.8.5 when using fallbacks - See #378

    v0.8.5

    • Improved error message for MissingPluralizationKey error - See #371
    • Fixed a thread issue when calling translate when fallbacks were enabled - See #369

    v0.8.4

    Reverted #236 - "Don't allow nil to be submitted as a key to I18n.translate" - See #370

    v0.8.3

    I18n::Gettext#plural_keys will now return a hash from Gettext if no arguments are provided - svenfuchs/i18n#122 Fixed a bug where passing false to translate would not translate that value - svenfuchs/i18n#367

    v0.8.2

    Do not allow nil to be passed to translate - svenfuchs/i18n#236

    ... (truncated)
    Commits
    • 416859a Bump to 0.9.5
    • 5c28de8 Lock Rake to 12.2.x versions
    • 29fe565 Merge pull request #408 from wjordan/enforce_available_locales_false_fix
    • 596a71d store translations for unavailable locales if enforce_available_locales is false
    • 888abcb Bump to 0.9.4
    • ba8b206 Merge pull request #407 from fatkodima/fix-key-value-subtrees
    • 9ddc9f5 Merge pull request #406 from jhawthorn/optimize_available_locales
    • 77c26aa Fix Chained backend with KeyValue
    • 7eb3576 Optimize Backend::Simple#available_locales
    • 7c6ccf4 Bump to 0.9.3
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump yajl-ruby from 1.1.0 to 1.3.1

    Bump yajl-ruby from 1.1.0 to 1.3.1

    Bumps yajl-ruby from 1.1.0 to 1.3.1.

    Changelog

    Sourced from yajl-ruby's changelog.

    Changelog

    Commits
    • 556f05d bump version for 1.3.1 release
    • fe083cc Merge pull request #178 from brianmario/brianmario/prevent-bad-read
    • a8ca8f4 Don't advance our end pointer until we've checked we have enough
    • b634855 Merge pull request #175 from koic/ci_against_latest_rubies
    • 07b3f53 Merge branch 'master' into ci_against_latest_rubies
    • 15da83a Merge pull request #172 from keithduncan/remove-old-rubies
    • 9c0f565 Merge pull request #174 from koic/fix_some_warnings
    • 0a3ab5f CI against Ruby 2.2, 2.3, and 2.4
    • 7d94079 Suppress warning: URI.escape is obsolete
    • 65fde67 Suppress `warning: ambiguous first argument; put parentheses or a space even ...
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump json from 1.7.3 to 1.8.6

    Bump json from 1.7.3 to 1.8.6

    Bumps json from 1.7.3 to 1.8.6.

    Changelog

    Sourced from json's changelog.

    2017-01-13 (1.8.6)

    • Be compatible with ancient ruby 1.8 (maybe?) 2015-09-11 (1.8.5)
    • Be compatible with ruby 2.4.0
    • There were still some mentions of dual GPL licensing in the source, but JSON has just the Ruby license that itself includes an explicit dual-licensing clause that allows covered software to be distributed under the terms of the Simplified BSD License instead for all ruby versions >= 1.9.3. This is however a GPL compatible license according to the Free Software Foundation. I changed these mentions to be consistent with the Ruby license setting in the gemspec files which were already correct now. ---------- (1.8.4) Skipped. 2015-06-01 (1.8.3)
    • Fix potential memory leak, thx to nobu. 2015-01-08 (1.8.2)
    • Some performance improvements by Vipul A M [email protected].
    • Fix by Jason R. Clark [email protected] to avoid mutation of JSON.dump_default_options.
    • More tests by Michael Mac-Vicar [email protected] and fixing space_before accessor in generator.
    • Performance on Jruby improvemed by Ben Browning [email protected].
    • Some fixes to be compatible with the new Ruby 2.2 by Zachary Scott [email protected] and SHIBATA Hiroshi [email protected]. 2013-05-13 (1.8.1)
    • Remove Rubinius exception since transcoding should be working now. 2013-05-13 (1.8.0)
    • Fix flori/json#162 reported by Marc-Andre Lafortune [email protected]. Thanks!
    • Applied patches by Yui NARUSE [email protected] to suppress warning with -Wchar-subscripts and better validate UTF-8 strings.
    • Applied patch by [email protected] to remove unnecessary if.
    • Add load/dump interface to JSON::GenericObject to make serialize :some_attribute, JSON::GenericObject work in Rails active models for convenient SomeModel#some_attribute.foo.bar access to serialised JSON data. 2013-02-04 (1.7.7)
    • Security fix for JSON create_additions default value and JSON::GenericObject. It should not be possible to create additions unless explicitely requested by setting the create_additions argument to true or using the JSON.load/dump interface. If JSON::GenericObject is supposed to be automatically deserialised, this has to be explicitely enabled by setting JSON::GenericObject.json_creatable = true as well.
    • Remove useless assert in fbuffer implementation.
    • Apply patch attached to https://github.com/flori/json/issues#issue/155 provided by John Shahid [email protected], Thx!
    • Add license information to rubygems spec data, reported by Jordi Massaguer Pla [email protected].
    • Improve documentation, thx to Zachary Scott [email protected]. 2012-11-29 (1.7.6)
    ... (truncated)
    Commits
    • 7f4cfd8 Try to be compatible with ruby 1.8
    • 4cf6c62 Update gemspecs
    • 48c5e99 Stop testing on 1.8, it might work though
    • 5d46fb9 Travis don't know how to build these rubies
    • 7f05140 Fix conversion crash on 1.9
    • 2bcacc1 Require ruby version 2.0 or better
    • f8e2aa6 Reduce supported ruby versions
    • b4eeed1 Test newer rubies
    • c7a6e31 Use 2.3.1 for testing
    • 953f474 Merge RUBY_INTEGER_UNIFICATION changes
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump sprockets from 2.1.3 to 2.1.4

    Bump sprockets from 2.1.3 to 2.1.4

    Bumps sprockets from 2.1.3 to 2.1.4.

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump ffi from 1.0.11 to 1.11.1

    Bump ffi from 1.0.11 to 1.11.1

    Bumps ffi from 1.0.11 to 1.11.1.

    Changelog

    Sourced from ffi's changelog.

    1.11.1 / 2019-05-20

    Changed:

    • Raise required ruby version to >=2.0. #699, #700
    • Fix a possible linker error on ruby < 2.3 on Linux.

    1.11.0 / 2019-05-17

    This version was yanked on 2019-05-20 to fix an install issue on ruby-1.9.3. #700

    Added:

    • Add ability to disable or force use of system libffi. #669 Use like gem inst ffi -- --enable-system-libffi .
    • Add ability to call FFI callbacks from outside of FFI call frame. #584
    • Add proper documentation to FFI::Generator and ::Task
    • Add gemspec metadata. #696, #698

    Changed:

    • Fix stdcall on Win32. #649, #669
    • Fix load paths for FFI::Generator::Task
    • Fix FFI::Pointer#read_string(0) to return a binary String. #692
    • Fix benchmark suite so that it runs on ruby-2.x
    • Move FFI::Platform::CPU from C to Ruby. #663
    • Move FFI::StructByReference to Ruby. #681
    • Move FFI::DataConverter to Ruby (#661)
    • Various cleanups and improvements of specs and benchmarks

    Removed:

    • Remove ruby-1.8 and 1.9 compatibility code. #683
    • Remove unused spec files. #684

    1.10.0 / 2019-01-06

    Added:

    • Add /opt/local/lib/ to ffi's fallback library search path. #638
    • Add binary gem support for ruby-2.6 on Windows
    • Add FreeBSD on AArch64 and ARM support. #644
    • Add FFI::LastError.winapi_error on Windows native or Cygwin. #633

    Changed:

    • Update to rake-compiler-dock-0.7.0
    • Use 64-bit inodes on FreeBSD >= 12. #644
    • Switch time_t and suseconds_t types to long on FreeBSD. #627
    • Make register_t long_long on 64-bit FreeBSD. #644
    • Fix Pointer#write_array_of_type #637
    ... (truncated)
    Commits
    • 3d8c91c Update CHANGELOG for ffi-1.11.1
    • 2a3d9d6 Bump VERSION to 1.11.1
    • 19d5776 Add some missing items to CHANGELOG for ffi-1.11.0
    • 08b9b78 Raise ruby version requirement to >=2.0
    • e76c43b Fix build on ruby-2.0 on Linux
    • 9b4a9e4 Add version 1.11.0 to CHANGELOG
    • 36f1bb5 Bump VERSION to 1.11.0
    • 29c07a9 Pass options from rake task to the FFI::Generator
    • 7efdd2e Include the name of the template file instead of just rake
    • bc99b7e Add proper documentation to FFI::Generator and ::Task
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump rack from 1.4.1 to 1.4.7

    Bump rack from 1.4.1 to 1.4.7

    Bumps rack from 1.4.1 to 1.4.7.

    Changelog

    Sourced from rack's changelog.

    Changelog

    All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference Keep A Changelog

    [Unreleased]

    Added

    Changed

    • Rack::Utils.status_code now raises an error when the status symbol is invalid instead of 500.
    • Rack::Request::SCHEME_WHITELIST has been renamed to Rack::Request::ALLOWED_SCHEMES
    • Rack::Multipart::Parser.get_filename now accepts file that contains + in its name, avoiding the replacement of + to space character since filenames with + are valid.

    Removed

    History/News Archive

    Items below this line are from the previously maintained HISTORY.md and NEWS.md files.

    [2.0.0]

    • Rack::Session::Abstract::ID is deprecated. Please change to use Rack::Session::Abstract::Persisted

    [2.0.0.alpha] 2015-12-04

    • First-party "SameSite" cookies. Browsers omit SameSite cookies from third-party requests, closing the door on many CSRF attacks.
    • Pass same_site: true (or :strict) to enable: response.set_cookie 'foo', value: 'bar', same_site: true or same_site: :lax to use Lax enforcement: response.set_cookie 'foo', value: 'bar', same_site: :lax
    • Based on version 7 of the Same-site Cookies internet draft: https://tools.ietf.org/html/draft-west-first-party-cookies-07
    • Thanks to Ben Toews (@​mastahyeti) and Bob Long (@​bobjflong) for updating to drafts 5 and 7.
    • Add Rack::Events middleware for adding event based middleware: middleware that does not care about the response body, but only cares about doing work at particular points in the request / response lifecycle.
    • Add Rack::Request#authority to calculate the authority under which the response is being made (this will be handy for h2 pushes).
    • Add Rack::Response::Helpers#cache_control and cache_control=. Use this for setting cache control headers on your response objects.
    • Add Rack::Response::Helpers#etag and etag=. Use this for setting etag values on the response.
    • Introduce Rack::Response::Helpers#add_header to add a value to a multi-valued response header. Implemented in terms of other Response#*_header methods, so it's available to any response-like class that includes the Helpers module.
    • Add Rack::Request#add_header to match.
    • Rack::Session::Abstract::ID IS DEPRECATED. Please switch to Rack::Session::Abstract::Persisted. Rack::Session::Abstract::Persisted uses a request object rather than the env hash.
    • Pull ENV access inside the request object in to a module. This will help with legacy Request objects that are ENV based but don't want to inherit from Rack::Request
    • Move most methods on the Rack::Request to a module Rack::Request::Helpers and use public API to get values from the request object. This enables users to mix Rack::Request::Helpers in to their own objects so they can implement (get|set|fetch|each)_header as they see fit (for example a proxy object).
    • Files and directories with + in the name are served correctly. Rather than unescaping paths like a form, we unescape with a URI parser using Rack::Utils.unescape_path. Fixes #265
    • Tempfiles are automatically closed in the case that there were too many posted.
    • Added methods for manipulating response headers that don't assume they're stored as a Hash. Response-like classes may include the Rack::Response::Helpers module if they define these methods:
      • Rack::Response#has_header?
      • Rack::Response#get_header
      • Rack::Response#set_header
    ... (truncated)
    Commits
    • f5c0968 bumping version
    • bf5bd20 Merge pull request #814 from johnnaegle/only_increment_open_file_count_for_fi...
    • e4f4df5 Explicitly fail when hitting the multipart limit
    • 1ae52c1 bumping the release
    • 88b067e raise an exception if the parameters are too deep
    • 688516a Prevent signals from being sent to pid 0
    • 9939d40 Bump version number
    • 56374f2 Update README for todays releases
    • 5c9b0de Prevent symlink path traversals
    • 6c39dfc Use secure_compare for hmac comparison
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
Open source back-end server for web, mobile and IoT. The backend for busy developers. (self-hosted or hosted)

A scalable, multitenant backend for the cloud. Para is a scalable, multitenant backend server/framework for object persistence and retrieval. It helps

Erudika 419 Jan 10, 2022
Calibre OPDS (and HTML) PHP Server : web-based light alternative to Calibre content server / Calibre2OPDS to serve ebooks (epub, mobi, pdf, ...)

COPS COPS stands for Calibre OPDS (and HTML) Php Server. See : COPS's home for more details. Don't forget to check the Wiki. Why ? In my opinion Calib

Sébastien Lucas 1.2k Jan 18, 2022
GeneWeb is an open source genealogy software with a web interface created by Daniel de Rauglaudre.

GeneWeb GeneWeb is an open source genealogy software written in OCaml. It comes with a Web interface and can be used off-line or as a Web service. Doc

GeneWeb 203 Jan 6, 2022
A free open source IT asset/license management system

Snipe-IT - Open Source Asset Management System This is a FOSS project for asset management in IT Operations. Knowing who has which laptop, when it was

snipe 5.7k Jan 18, 2022
A one-of-a-kind resume builder that keeps your privacy in mind. Completely secure, customizable, portable, open-source and free forever. Try it out today!

A free and open source resume builder. Go to App What is this app all about? Reactive Resume is a free and open source resume builder that’s built to

Amruth Pillai 3.3k Jan 12, 2022
The world's most popular free, open source ad serving system. You can download the latest release at:

Revive Adserver The world's most popular free, open source ad serving system Revive Adserver is an open source ad serving tool that enables publishers

Revive Adserver 995 Jan 19, 2022
🔥 Open source static (serverless) status page. Uses hyperfast Go & Hugo, minimal HTML/CSS/JS, customizable, outstanding browser support (IE8+), preloaded CMS, read-only API, badges & more.

Über fast, backwards compatible (IE8+), tiny, and simple status page built with Hugo. Completely free with Netlify. Comes with Netlify CMS, read-only

cState 1.5k Jan 14, 2022
Open source API management platform

About Fusio is an open source API management platform which helps to build and manage REST APIs. Fusio provides all tools to quickly build an API from

Apioo 1k Jan 13, 2022
Kimai v1 open source time-tracking - please switch to Kimai v2

?? Kimai v1 is not maintained any more Go ahead to https://github.com/kevinpapst/kimai2 and update to use the latest release, rewritten from scratch,

Kimai - Time Tracking Software 581 Jan 4, 2022
Skygear - an open source serverless platform for modern secure app development

Next is the V2 of Skygear that aim to follow Support multi tenant at core, make cloud deploy scalable at first day. Simplify deployment. Give back app

SkygearIO 393 Dec 21, 2021
Simple, easy to use, open source time tracking system.

Anuko Time Tracker About Anuko Time Tracker is an open source, web-based time tracking application written in PHP. It allows you to track the time tha

null 153 Dec 29, 2021
OpenProject is the leading open source project management software.

OpenProject OpenProject is a web-based project management software. Its key features are: Project planning and scheduling Product roadmap and release

OpenProject 5.4k Jan 13, 2022
Open Source multi-language/multi-currency/multi-store E-commerce platform for Ruby on Rails with a modern UX, PWA frontend, REST API, GraphQL, several official extensions, and 3rd party integrations.

Spree Commerce Success Stories Documentation Integrations Spree is a complete open source e-commerce solution built with Ruby on Rails. It was started

Spree Commerce 11.6k Jan 22, 2022
A privacy-aware, distributed, open source social network.

diaspora* A privacy-aware, distributed, open source social network Project site | Wiki | Bugtracker | Discussions and Support | License | Authors Inst

diaspora* social network 13k Jan 15, 2022
[WIP] Ulterius™ server where all the magic happens :rocket: :feelsgood:

Ulterius: Easy Remote Management Interested in sublicensing? Want to use our code in your stack or rebrand it for internal use? Reach out to us at and

Ulterius™ 602 Jan 10, 2022
Mirror of the PulseAudio sound server (for bug reports and pull requests go to the website!)

PULSEAUDIO SOUND SERVER WEB SITE: http://pulseaudio.org/ GIT: https://gitlab.freedesktop.org/pulseaudio/pulseaudio.git GitLab: https://gitlab.fr

PulseAudio 317 Dec 29, 2021
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

CyberChef The Cyber Swiss Army Knife CyberChef is a simple, intuitive web app for carrying out all manner of "cyber" operations within a web browser.

GCHQ 14.9k Jan 23, 2022