Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump haml from 3.0.25 to 5.1.2 #33

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 14, 2019

Bumps haml from 3.0.25 to 5.1.2.

Changelog

Sourced from haml's changelog.

5.1.2

Released on August 6, 2019
(diff).

  • Fix crash in some environments such as New Relic by unfreezing string literals for ParseNode#inspect. #1016 (thanks Jalyna)

5.1.1

Released on May 25, 2019
(diff).

  • Fix NameError bug that happens on ruby 2.6.1-2.6.3 + haml 5.1.0 + rails < 5.1 + erubi. (Akira Matsuda)

5.1.0

Released on May 16, 2019
(diff).

  • Rails 6 support #1008 (thanks Seb Jacobs)
  • Add escape_filter_interpolations option for backwards compatibility with haml 4 defaults #984 (thanks Will Jordan)
  • Fix error on empty :javascript and :css filter blocks #986 (thanks Will Jordan)
  • Respect changes in Haml::Options.defaults in Haml::TempleEngine options (Takashi Kokubun)
  • Un-freeze TempleEngine precompiled string literals #983 (thanks Will Jordan)
  • Various performance/memory improvements #965, #966, #963 (thanks Dillon Welch)
  • Enable frozen_string_literal magic comment for all .rb files #967 (thanks Dillon Welch)

5.0.4

Released on October 13, 2017
(diff).

  • Fix haml -c --stdin regression in 5.0.2. #958 (thanks Timo Göllner)
  • Ruby 2.5 support (it wasn't working due to Ripper API change). (Akira Matsuda)

5.0.3

Released on September 7, 2017
(diff).

  • Use String#dump instead of String#inspect to generate string literal. (Takashi Kokubun)
  • Fix Erubi superclass mismatch error. #952 (thanks Robin Daugherty)

5.0.2

Released on August 1, 2017
(diff).

  • Let haml -c fail if generated Ruby code is syntax error. #880 (Takashi Kokubun)
  • Fix NoMethodError bug caused with Sprockets 3 and :sass filter. #930 (thanks Gonzalez Maximiliano)
... (truncated)
Commits
  • 9be4e1f Version 5.1.2
  • 645fcfc rails 4.2 requires bundler < 2 without bundler >= 2 being installed
  • 4dbb180 Merge pull request #1016 from jalyna/fix-frozen-string-literals-on-inspect
  • bc88181 Unfreeze string literals for ParseNode#inspect
  • a054e2a Stop polluting toplevel unnecessarily
  • 2705bbc
  • c7da7a1 ruby < 1.9.3 is no longer supported
  • d134875 Freeze some constants
  • f7c5baa if + else = elsif
  • d6c50ec This has been just an accessor since 1b784bcc50f5f437fd85b9e1a5fe147665d5a5ca
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Nov 14, 2019
@dependabot dependabot bot force-pushed the dependabot/bundler/haml-5.1.2 branch 2 times, most recently from 888b0ec to 2de95e6 Compare December 5, 2019 22:01
@asalant asalant force-pushed the dependabot/bundler/haml-5.1.2 branch from 2de95e6 to c468e40 Compare December 6, 2019 21:13
@asalant
Copy link
Owner

asalant commented Dec 6, 2019

haml 5 requires Ruby 2 while Freehub is on 1.9.3.

TODO: investigate the security issue and if their is a 1.9.3-compatible version that resolves it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant