mirror of
https://github.com/matrix-org/dendrite.git
synced 2024-11-22 22:31:56 -06:00
8846de7312
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.13.9 to 1.13.10. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sparklemotion/nokogiri/releases">nokogiri's releases</a>.</em></p> <blockquote> <h2>1.13.10 / 2022-12-07</h2> <h3>Security</h3> <ul> <li>[CRuby] Address CVE-2022-23476, unchecked return value from <code>xmlTextReaderExpand</code>. See <a href="https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-qv4q-mr5r-qprj">GHSA-qv4q-mr5r-qprj</a> for more information.</li> </ul> <h3>Improvements</h3> <ul> <li>[CRuby] <code>XML::Reader#attribute_hash</code> now returns <code>nil</code> on parse errors. This restores the behavior of <code>#attributes</code> from v1.13.7 and earlier. [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2715">#2715</a>]</li> </ul> <hr /> <p>sha256 checksums:</p> <pre><code>777ce2e80f64772e91459b943e531dfef387e768f2255f9bc7a1655f254bbaa1 nokogiri-1.13.10-aarch64-linux.gem b432ff47c51386e07f7e275374fe031c1349e37eaef2216759063bc5fa5624aa nokogiri-1.13.10-arm64-darwin.gem 73ac581ddcb680a912e92da928ffdbac7b36afd3368418f2cee861b96e8c830b nokogiri-1.13.10-java.gem 916aa17e624611dddbf2976ecce1b4a80633c6378f8465cff0efab022ebc2900 nokogiri-1.13.10-x64-mingw-ucrt.gem 0f85a1ad8c2b02c166a6637237133505b71a05f1bb41b91447005449769bced0 nokogiri-1.13.10-x64-mingw32.gem 91fa3a8724a1ce20fccbd718dafd9acbde099258183ac486992a61b00bb17020 nokogiri-1.13.10-x86-linux.gem d6663f5900ccd8f72d43660d7f082565b7ffcaade0b9a59a74b3ef8791034168 nokogiri-1.13.10-x86-mingw32.gem 81755fc4b8130ef9678c76a2e5af3db7a0a6664b3cba7d9fe8ef75e7d979e91b nokogiri-1.13.10-x86_64-darwin.gem 51d5246705dedad0a09b374d09cc193e7383a5dd32136a690a3cd56e95adf0a3 nokogiri-1.13.10-x86_64-linux.gem d3ee00f26c151763da1691c7fc6871ddd03e532f74f85101f5acedc2d099e958 nokogiri-1.13.10.gem </code></pre> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md">nokogiri's changelog</a>.</em></p> <blockquote> <h2>1.13.10 / 2022-12-07</h2> <h3>Security</h3> <ul> <li>[CRuby] Address CVE-2022-23476, unchecked return value from <code>xmlTextReaderExpand</code>. See <a href="https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-qv4q-mr5r-qprj">GHSA-qv4q-mr5r-qprj</a> for more information.</li> </ul> <h3>Improvements</h3> <ul> <li>[CRuby] <code>XML::Reader#attribute_hash</code> now returns <code>nil</code> on parse errors. This restores the behavior of <code>#attributes</code> from v1.13.7 and earlier. [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2715">#2715</a>]</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="4c80121dc3
"><code>4c80121</code></a> version bump to v1.13.10</li> <li><a href="85410e3841
"><code>85410e3</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2715">#2715</a> from sparklemotion/flavorjones-fix-reader-error-hand...</li> <li><a href="9fe0761c47
"><code>9fe0761</code></a> fix(cruby): XML::Reader#attribute_hash returns nil on error</li> <li><a href="3b9c736bee
"><code>3b9c736</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2717">#2717</a> from sparklemotion/flavorjones-lock-psych-to-fix-bui...</li> <li><a href="2efa87b49a
"><code>2efa87b</code></a> test: skip large cdata test on system libxml2</li> <li><a href="3187d6739c
"><code>3187d67</code></a> dep(dev): pin psych to v4 until v5 builds in CI</li> <li><a href="a16b4bf14c
"><code>a16b4bf</code></a> style(rubocop): disable Minitest/EmptyLineBeforeAssertionMethods</li> <li>See full diff in <a href="https://github.com/sparklemotion/nokogiri/compare/v1.13.9...v1.13.10">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=nokogiri&package-manager=bundler&previous-version=1.13.9&new-version=1.13.10)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/matrix-org/dendrite/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
286 lines
7.8 KiB
Plaintext
286 lines
7.8 KiB
Plaintext
GEM
|
|
remote: https://rubygems.org/
|
|
specs:
|
|
activesupport (6.0.5)
|
|
concurrent-ruby (~> 1.0, >= 1.0.2)
|
|
i18n (>= 0.7, < 2)
|
|
minitest (~> 5.1)
|
|
tzinfo (~> 1.1)
|
|
zeitwerk (~> 2.2, >= 2.2.2)
|
|
addressable (2.8.0)
|
|
public_suffix (>= 2.0.2, < 5.0)
|
|
coffee-script (2.4.1)
|
|
coffee-script-source
|
|
execjs
|
|
coffee-script-source (1.11.1)
|
|
colorator (1.1.0)
|
|
commonmarker (0.23.6)
|
|
concurrent-ruby (1.1.10)
|
|
dnsruby (1.61.9)
|
|
simpleidn (~> 0.1)
|
|
em-websocket (0.5.3)
|
|
eventmachine (>= 0.12.9)
|
|
http_parser.rb (~> 0)
|
|
ethon (0.15.0)
|
|
ffi (>= 1.15.0)
|
|
eventmachine (1.2.7)
|
|
execjs (2.8.1)
|
|
faraday (1.10.0)
|
|
faraday-em_http (~> 1.0)
|
|
faraday-em_synchrony (~> 1.0)
|
|
faraday-excon (~> 1.1)
|
|
faraday-httpclient (~> 1.0)
|
|
faraday-multipart (~> 1.0)
|
|
faraday-net_http (~> 1.0)
|
|
faraday-net_http_persistent (~> 1.0)
|
|
faraday-patron (~> 1.0)
|
|
faraday-rack (~> 1.0)
|
|
faraday-retry (~> 1.0)
|
|
ruby2_keywords (>= 0.0.4)
|
|
faraday-em_http (1.0.0)
|
|
faraday-em_synchrony (1.0.0)
|
|
faraday-excon (1.1.0)
|
|
faraday-httpclient (1.0.1)
|
|
faraday-multipart (1.0.3)
|
|
multipart-post (>= 1.2, < 3)
|
|
faraday-net_http (1.0.1)
|
|
faraday-net_http_persistent (1.2.0)
|
|
faraday-patron (1.0.0)
|
|
faraday-rack (1.0.0)
|
|
faraday-retry (1.0.3)
|
|
ffi (1.15.5)
|
|
forwardable-extended (2.6.0)
|
|
gemoji (3.0.1)
|
|
github-pages (226)
|
|
github-pages-health-check (= 1.17.9)
|
|
jekyll (= 3.9.2)
|
|
jekyll-avatar (= 0.7.0)
|
|
jekyll-coffeescript (= 1.1.1)
|
|
jekyll-commonmark-ghpages (= 0.2.0)
|
|
jekyll-default-layout (= 0.1.4)
|
|
jekyll-feed (= 0.15.1)
|
|
jekyll-gist (= 1.5.0)
|
|
jekyll-github-metadata (= 2.13.0)
|
|
jekyll-include-cache (= 0.2.1)
|
|
jekyll-mentions (= 1.6.0)
|
|
jekyll-optional-front-matter (= 0.3.2)
|
|
jekyll-paginate (= 1.1.0)
|
|
jekyll-readme-index (= 0.3.0)
|
|
jekyll-redirect-from (= 0.16.0)
|
|
jekyll-relative-links (= 0.6.1)
|
|
jekyll-remote-theme (= 0.4.3)
|
|
jekyll-sass-converter (= 1.5.2)
|
|
jekyll-seo-tag (= 2.8.0)
|
|
jekyll-sitemap (= 1.4.0)
|
|
jekyll-swiss (= 1.0.0)
|
|
jekyll-theme-architect (= 0.2.0)
|
|
jekyll-theme-cayman (= 0.2.0)
|
|
jekyll-theme-dinky (= 0.2.0)
|
|
jekyll-theme-hacker (= 0.2.0)
|
|
jekyll-theme-leap-day (= 0.2.0)
|
|
jekyll-theme-merlot (= 0.2.0)
|
|
jekyll-theme-midnight (= 0.2.0)
|
|
jekyll-theme-minimal (= 0.2.0)
|
|
jekyll-theme-modernist (= 0.2.0)
|
|
jekyll-theme-primer (= 0.6.0)
|
|
jekyll-theme-slate (= 0.2.0)
|
|
jekyll-theme-tactile (= 0.2.0)
|
|
jekyll-theme-time-machine (= 0.2.0)
|
|
jekyll-titles-from-headings (= 0.5.3)
|
|
jemoji (= 0.12.0)
|
|
kramdown (= 2.3.2)
|
|
kramdown-parser-gfm (= 1.1.0)
|
|
liquid (= 4.0.3)
|
|
mercenary (~> 0.3)
|
|
minima (= 2.5.1)
|
|
nokogiri (>= 1.13.4, < 2.0)
|
|
rouge (= 3.26.0)
|
|
terminal-table (~> 1.4)
|
|
github-pages-health-check (1.17.9)
|
|
addressable (~> 2.3)
|
|
dnsruby (~> 1.60)
|
|
octokit (~> 4.0)
|
|
public_suffix (>= 3.0, < 5.0)
|
|
typhoeus (~> 1.3)
|
|
html-pipeline (2.14.1)
|
|
activesupport (>= 2)
|
|
nokogiri (>= 1.4)
|
|
http_parser.rb (0.8.0)
|
|
i18n (0.9.5)
|
|
concurrent-ruby (~> 1.0)
|
|
jekyll (3.9.2)
|
|
addressable (~> 2.4)
|
|
colorator (~> 1.0)
|
|
em-websocket (~> 0.5)
|
|
i18n (~> 0.7)
|
|
jekyll-sass-converter (~> 1.0)
|
|
jekyll-watch (~> 2.0)
|
|
kramdown (>= 1.17, < 3)
|
|
liquid (~> 4.0)
|
|
mercenary (~> 0.3.3)
|
|
pathutil (~> 0.9)
|
|
rouge (>= 1.7, < 4)
|
|
safe_yaml (~> 1.0)
|
|
jekyll-avatar (0.7.0)
|
|
jekyll (>= 3.0, < 5.0)
|
|
jekyll-coffeescript (1.1.1)
|
|
coffee-script (~> 2.2)
|
|
coffee-script-source (~> 1.11.1)
|
|
jekyll-commonmark (1.4.0)
|
|
commonmarker (~> 0.22)
|
|
jekyll-commonmark-ghpages (0.2.0)
|
|
commonmarker (~> 0.23.4)
|
|
jekyll (~> 3.9.0)
|
|
jekyll-commonmark (~> 1.4.0)
|
|
rouge (>= 2.0, < 4.0)
|
|
jekyll-default-layout (0.1.4)
|
|
jekyll (~> 3.0)
|
|
jekyll-feed (0.15.1)
|
|
jekyll (>= 3.7, < 5.0)
|
|
jekyll-gist (1.5.0)
|
|
octokit (~> 4.2)
|
|
jekyll-github-metadata (2.13.0)
|
|
jekyll (>= 3.4, < 5.0)
|
|
octokit (~> 4.0, != 4.4.0)
|
|
jekyll-include-cache (0.2.1)
|
|
jekyll (>= 3.7, < 5.0)
|
|
jekyll-mentions (1.6.0)
|
|
html-pipeline (~> 2.3)
|
|
jekyll (>= 3.7, < 5.0)
|
|
jekyll-optional-front-matter (0.3.2)
|
|
jekyll (>= 3.0, < 5.0)
|
|
jekyll-paginate (1.1.0)
|
|
jekyll-readme-index (0.3.0)
|
|
jekyll (>= 3.0, < 5.0)
|
|
jekyll-redirect-from (0.16.0)
|
|
jekyll (>= 3.3, < 5.0)
|
|
jekyll-relative-links (0.6.1)
|
|
jekyll (>= 3.3, < 5.0)
|
|
jekyll-remote-theme (0.4.3)
|
|
addressable (~> 2.0)
|
|
jekyll (>= 3.5, < 5.0)
|
|
jekyll-sass-converter (>= 1.0, <= 3.0.0, != 2.0.0)
|
|
rubyzip (>= 1.3.0, < 3.0)
|
|
jekyll-sass-converter (1.5.2)
|
|
sass (~> 3.4)
|
|
jekyll-seo-tag (2.8.0)
|
|
jekyll (>= 3.8, < 5.0)
|
|
jekyll-sitemap (1.4.0)
|
|
jekyll (>= 3.7, < 5.0)
|
|
jekyll-swiss (1.0.0)
|
|
jekyll-theme-architect (0.2.0)
|
|
jekyll (> 3.5, < 5.0)
|
|
jekyll-seo-tag (~> 2.0)
|
|
jekyll-theme-cayman (0.2.0)
|
|
jekyll (> 3.5, < 5.0)
|
|
jekyll-seo-tag (~> 2.0)
|
|
jekyll-theme-dinky (0.2.0)
|
|
jekyll (> 3.5, < 5.0)
|
|
jekyll-seo-tag (~> 2.0)
|
|
jekyll-theme-hacker (0.2.0)
|
|
jekyll (> 3.5, < 5.0)
|
|
jekyll-seo-tag (~> 2.0)
|
|
jekyll-theme-leap-day (0.2.0)
|
|
jekyll (> 3.5, < 5.0)
|
|
jekyll-seo-tag (~> 2.0)
|
|
jekyll-theme-merlot (0.2.0)
|
|
jekyll (> 3.5, < 5.0)
|
|
jekyll-seo-tag (~> 2.0)
|
|
jekyll-theme-midnight (0.2.0)
|
|
jekyll (> 3.5, < 5.0)
|
|
jekyll-seo-tag (~> 2.0)
|
|
jekyll-theme-minimal (0.2.0)
|
|
jekyll (> 3.5, < 5.0)
|
|
jekyll-seo-tag (~> 2.0)
|
|
jekyll-theme-modernist (0.2.0)
|
|
jekyll (> 3.5, < 5.0)
|
|
jekyll-seo-tag (~> 2.0)
|
|
jekyll-theme-primer (0.6.0)
|
|
jekyll (> 3.5, < 5.0)
|
|
jekyll-github-metadata (~> 2.9)
|
|
jekyll-seo-tag (~> 2.0)
|
|
jekyll-theme-slate (0.2.0)
|
|
jekyll (> 3.5, < 5.0)
|
|
jekyll-seo-tag (~> 2.0)
|
|
jekyll-theme-tactile (0.2.0)
|
|
jekyll (> 3.5, < 5.0)
|
|
jekyll-seo-tag (~> 2.0)
|
|
jekyll-theme-time-machine (0.2.0)
|
|
jekyll (> 3.5, < 5.0)
|
|
jekyll-seo-tag (~> 2.0)
|
|
jekyll-titles-from-headings (0.5.3)
|
|
jekyll (>= 3.3, < 5.0)
|
|
jekyll-watch (2.2.1)
|
|
listen (~> 3.0)
|
|
jemoji (0.12.0)
|
|
gemoji (~> 3.0)
|
|
html-pipeline (~> 2.2)
|
|
jekyll (>= 3.0, < 5.0)
|
|
kramdown (2.3.2)
|
|
rexml
|
|
kramdown-parser-gfm (1.1.0)
|
|
kramdown (~> 2.0)
|
|
liquid (4.0.3)
|
|
listen (3.7.1)
|
|
rb-fsevent (~> 0.10, >= 0.10.3)
|
|
rb-inotify (~> 0.9, >= 0.9.10)
|
|
mercenary (0.3.6)
|
|
minima (2.5.1)
|
|
jekyll (>= 3.5, < 5.0)
|
|
jekyll-feed (~> 0.9)
|
|
jekyll-seo-tag (~> 2.1)
|
|
minitest (5.15.0)
|
|
multipart-post (2.1.1)
|
|
nokogiri (1.13.10-arm64-darwin)
|
|
racc (~> 1.4)
|
|
nokogiri (1.13.10-x86_64-linux)
|
|
racc (~> 1.4)
|
|
octokit (4.22.0)
|
|
faraday (>= 0.9)
|
|
sawyer (~> 0.8.0, >= 0.5.3)
|
|
pathutil (0.16.2)
|
|
forwardable-extended (~> 2.6)
|
|
public_suffix (4.0.7)
|
|
racc (1.6.1)
|
|
rb-fsevent (0.11.1)
|
|
rb-inotify (0.10.1)
|
|
ffi (~> 1.0)
|
|
rexml (3.2.5)
|
|
rouge (3.26.0)
|
|
ruby2_keywords (0.0.5)
|
|
rubyzip (2.3.2)
|
|
safe_yaml (1.0.5)
|
|
sass (3.7.4)
|
|
sass-listen (~> 4.0.0)
|
|
sass-listen (4.0.0)
|
|
rb-fsevent (~> 0.9, >= 0.9.4)
|
|
rb-inotify (~> 0.9, >= 0.9.7)
|
|
sawyer (0.8.2)
|
|
addressable (>= 2.3.5)
|
|
faraday (> 0.8, < 2.0)
|
|
simpleidn (0.2.1)
|
|
unf (~> 0.1.4)
|
|
terminal-table (1.8.0)
|
|
unicode-display_width (~> 1.1, >= 1.1.1)
|
|
thread_safe (0.3.6)
|
|
typhoeus (1.4.0)
|
|
ethon (>= 0.9.0)
|
|
tzinfo (1.2.10)
|
|
thread_safe (~> 0.1)
|
|
unf (0.1.4)
|
|
unf_ext
|
|
unf_ext (0.0.8.1)
|
|
unicode-display_width (1.8.0)
|
|
zeitwerk (2.5.4)
|
|
|
|
PLATFORMS
|
|
arm64-darwin-21
|
|
x86_64-linux
|
|
|
|
DEPENDENCIES
|
|
github-pages (~> 226)
|
|
jekyll-feed (~> 0.15.1)
|
|
|
|
BUNDLED WITH
|
|
2.3.7
|