dependabot[bot]
1f6598c144
Bump addressable from 2.7.0 to 2.8.0 ( #885 )
...
Bumps [addressable](https://github.com/sporkmonger/addressable ) from 2.7.0 to 2.8.0.
- [Release notes](https://github.com/sporkmonger/addressable/releases )
- [Changelog](https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md )
- [Commits](https://github.com/sporkmonger/addressable/compare/addressable-2.7.0...addressable-2.8.0 )
---
updated-dependencies:
- dependency-name: addressable
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-12-15 13:59:13 +01:00
dependabot[bot]
33ec295539
Bump puma from 5.3.2 to 5.5.2 ( #904 )
...
Bumps [puma](https://github.com/puma/puma ) from 5.3.2 to 5.5.2.
- [Release notes](https://github.com/puma/puma/releases )
- [Changelog](https://github.com/puma/puma/blob/master/History.md )
- [Commits](https://github.com/puma/puma/compare/v5.3.2...v5.5.2 )
---
updated-dependencies:
- dependency-name: puma
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-12-15 13:58:04 +01:00
dependabot[bot]
d0f69f8480
Bump nokogiri from 1.11.7 to 1.12.5 ( #890 )
...
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri ) from 1.11.7 to 1.12.5.
- [Release notes](https://github.com/sparklemotion/nokogiri/releases )
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md )
- [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.11.7...v1.12.5 )
---
updated-dependencies:
- dependency-name: nokogiri
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-12-14 17:24:31 +01:00
wvengen
6115cf58a1
Bundle update rails nokogiri (PR #880 )
...
CVE-2021-22904
2021-06-05 11:48:58 +02:00
dependabot[bot]
13897c0571
Bump puma from 5.2.1 to 5.3.2 (PR #879 )
...
Bumps [puma](https://github.com/puma/puma ) from 5.2.1 to 5.3.2.
- [Release notes](https://github.com/puma/puma/releases )
- [Changelog](https://github.com/puma/puma/blob/master/History.md )
- [Commits](https://github.com/puma/puma/compare/v5.2.1...v5.3.2 )
---
updated-dependencies:
- dependency-name: puma
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-06-04 17:53:02 +02:00
dependabot[bot]
6526b29ef8
Bump nokogiri from 1.11.1 to 1.11.4 (PR #872 )
...
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri ) from 1.11.1 to 1.11.4.
- [Release notes](https://github.com/sparklemotion/nokogiri/releases )
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md )
- [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.11.1...v1.11.4 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-06-04 17:43:58 +02:00
dependabot[bot]
a4ddf73967
Bump rexml from 3.2.4 to 3.2.5 (PR #869 )
...
Bumps [rexml](https://github.com/ruby/rexml ) from 3.2.4 to 3.2.5.
- [Release notes](https://github.com/ruby/rexml/releases )
- [Changelog](https://github.com/ruby/rexml/blob/master/NEWS.md )
- [Commits](https://github.com/ruby/rexml/compare/v3.2.4...v3.2.5 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-06-04 17:43:33 +02:00
lentschi
a9ca093eda
Fixes #864 (PR #865 )
...
This is the result of running `bundle update --conservative mimemagic`
as suggested by https://github.com/rails/rails/issues/41750#issuecomment-810808957
2021-04-09 16:26:31 +02:00
Patrick Gansterer
fa63e6e81d
Add RuboCop
2021-03-02 09:12:19 +01:00
Patrick Gansterer
b228ffd86b
Bundle update
2021-02-18 15:38:29 +01:00
Patrick Gansterer
434cc59ae8
Use GitHub Actions to upload Coveralls report
2021-02-18 15:38:16 +01:00
Patrick Gansterer
899a83bec4
Rails 5.2
2020-09-05 14:40:11 +02:00
Patrick Gansterer
4642eb6c54
Rails 5.1
2020-09-05 14:40:11 +02:00
Patrick Gansterer
2557645f4f
Rails 5.0
2020-09-05 14:40:11 +02:00
Patrick Gansterer
2892d5272d
bundle update
2020-09-05 13:59:17 +02:00
Patrick Gansterer
271af8f59f
Update HAML
2020-09-04 12:26:44 +02:00
wvengen
97b9145223
Update sassc to avoid crash in some cases
...
https://github.com/sass/sassc-ruby/issues/146
2020-07-29 15:46:58 +02:00
Patrick Gansterer
7657b05787
Add links plugin
...
This can be used to link to external services related to the foodcoop.
With the indirect mode it is possible to implement a secure login to other
services. In that case Foodsoft will send a HTTP GET request and redirect
the user to the returned Location header. This allows the generation of
a one-time login URL.
A typical use-case would be that a workgroup, which is responsible for
the email account, does not need to share the login credentials and can
use a link within the Foodsoft instead.
2020-07-29 11:25:04 +02:00
dependabot[bot]
b089b7c186
Bump json from 2.2.0 to 2.3.1 ( #739 )
...
Bumps [json](https://github.com/flori/json ) from 2.2.0 to 2.3.1.
- [Release notes](https://github.com/flori/json/releases )
- [Changelog](https://github.com/flori/json/blob/master/CHANGES.md )
- [Commits](https://github.com/flori/json/compare/v2.2.0...v2.3.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-07-28 18:14:56 +00:00
dependabot[bot]
682d9d23b5
Bump kaminari from 1.1.1 to 1.2.1
...
Bumps [kaminari](https://github.com/kaminari/kaminari ) from 1.1.1 to 1.2.1.
- [Release notes](https://github.com/kaminari/kaminari/releases )
- [Changelog](https://github.com/kaminari/kaminari/blob/master/CHANGELOG.md )
- [Commits](https://github.com/kaminari/kaminari/compare/v1.1.1...v1.2.1 )
Signed-off-by: dependabot[bot] <support@github.com>
2020-06-22 16:54:33 +02:00
dependabot[bot]
cc15ea16dc
Bump websocket-extensions from 0.1.4 to 0.1.5
...
Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-ruby ) from 0.1.4 to 0.1.5.
- [Release notes](https://github.com/faye/websocket-extensions-ruby/releases )
- [Changelog](https://github.com/faye/websocket-extensions-ruby/blob/master/CHANGELOG.md )
- [Commits](https://github.com/faye/websocket-extensions-ruby/compare/0.1.4...0.1.5 )
Signed-off-by: dependabot[bot] <support@github.com>
2020-06-22 16:53:55 +02:00
dependabot[bot]
2b9b4a1ca7
Bump puma from 4.3.3 to 4.3.5
...
Bumps [puma](https://github.com/puma/puma ) from 4.3.3 to 4.3.5.
- [Release notes](https://github.com/puma/puma/releases )
- [Changelog](https://github.com/puma/puma/blob/master/History.md )
- [Commits](https://github.com/puma/puma/commits )
Signed-off-by: dependabot[bot] <support@github.com>
2020-06-22 16:53:24 +02:00
dependabot[bot]
ae0a0f40cf
Bump doorkeeper from 5.0.2 to 5.0.3
...
Bumps [doorkeeper](https://github.com/doorkeeper-gem/doorkeeper ) from 5.0.2 to 5.0.3.
- [Release notes](https://github.com/doorkeeper-gem/doorkeeper/releases )
- [Changelog](https://github.com/doorkeeper-gem/doorkeeper/blob/master/CHANGELOG.md )
- [Commits](https://github.com/doorkeeper-gem/doorkeeper/compare/v5.0.2...v5.0.3 )
Signed-off-by: dependabot[bot] <support@github.com>
2020-06-22 16:52:52 +02:00
dependabot[bot]
b6542fb711
Bump puma from 4.3.1 to 4.3.3 ( #723 )
...
Bumps [puma](https://github.com/puma/puma ) from 4.3.1 to 4.3.3.
- [Release notes](https://github.com/puma/puma/releases )
- [Changelog](https://github.com/puma/puma/blob/master/History.md )
- [Commits](https://github.com/puma/puma/compare/v4.3.1...v4.3.3 )
Signed-off-by: dependabot[bot] <support@github.com>
2020-02-29 19:36:40 +00:00
dependabot[bot]
62e7550a8b
Bump nokogiri from 1.10.4 to 1.10.8 ( #721 )
...
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri ) from 1.10.4 to 1.10.8.
- [Release notes](https://github.com/sparklemotion/nokogiri/releases )
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.10.4...v1.10.8 )
Signed-off-by: dependabot[bot] <support@github.com>
2020-02-29 14:48:19 +00:00
dependabot[bot]
54f9ffcc52
Bump puma from 4.2.1 to 4.3.1
...
Bumps [puma](https://github.com/puma/puma ) from 4.2.1 to 4.3.1.
- [Release notes](https://github.com/puma/puma/releases )
- [Changelog](https://github.com/puma/puma/blob/master/History.md )
- [Commits](https://github.com/puma/puma/compare/v4.2.1...v4.3.1 )
Signed-off-by: dependabot[bot] <support@github.com>
2020-02-24 14:31:23 +01:00
Patrick Gansterer
d476993321
Add polls plugin
2020-02-24 14:27:22 +01:00
dependabot[bot]
b0ae35f73a
Bump rack from 1.6.11 to 1.6.12 (PR #713 )
...
Bumps [rack](https://github.com/rack/rack ) from 1.6.11 to 1.6.12.
- [Release notes](https://github.com/rack/rack/releases )
- [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rack/rack/compare/1.6.11...1.6.12 )
Signed-off-by: dependabot[bot] <support@github.com>
2019-12-19 12:59:08 +00:00
dependabot[bot]
f84e111b79
Bump rack-cors from 1.0.3 to 1.0.6
...
Bumps [rack-cors](https://github.com/cyu/rack-cors ) from 1.0.3 to 1.0.6.
- [Release notes](https://github.com/cyu/rack-cors/releases )
- [Changelog](https://github.com/cyu/rack-cors/blob/master/CHANGELOG.md )
- [Commits](https://github.com/cyu/rack-cors/compare/v1.0.3...v1.0.6 )
Signed-off-by: dependabot[bot] <support@github.com>
2019-11-16 00:30:19 +01:00
Martin Meyerhoff
5d82f16c70
Lock SQLite3 to < 1.4
2019-11-12 06:51:24 +01:00
Patrick Gansterer
39aff78f11
Remove protected_attributes gem
...
We do not enforce the rules, so removing it and switching the existing
annotations to strong_parameters does not make our situation worse.
2019-10-29 18:09:24 +01:00
Patrick Gansterer
bee671c90e
Remove deprecated and obsolete quiet_assets gem
...
As of sprockets-rails version 3.1.0 the same functionality can be
enabled via config.assets.quiet.
2019-10-29 09:40:22 +01:00
wvengen
6d9c35db20
Move to apparition for integration tests
2019-10-28 17:58:14 +00:00
wvengen
8823ca2060
Bundle update (except capybara)
2019-10-28 17:58:14 +00:00
wvengen
84319d2c1a
Update midi-smtp-server and silence test messages
2019-10-28 17:58:14 +00:00
wvengen
f2cb17bcd6
Upgrade factory_bot, faker
2019-10-28 17:58:14 +00:00
wvengen
900cc91197
API documentation and spec setup
2019-04-03 17:08:38 +00:00
Tom Carchrae
0d9acd3082
localize without errors applying to non-string values
2019-04-03 17:07:46 +00:00
wvengen
bb4d9d132c
Add missing explicit dependency ( #640 )
2019-03-27 16:50:12 +01:00
Patrick Gansterer
c56a936aea
Bundle update (CVE-2018-16468, CVE-2018-16471, CVE-2018-16476)
2018-12-18 16:27:52 +01:00
wvengen
110c7cc3e9
API v1 user endpoint
2018-10-13 20:41:47 +02:00
wvengen
fd96b6ccc1
Prepare for API v1 (PR #570 )
2018-10-13 20:16:35 +02:00
wvengen
d9ae0d11b0
Bundle update (CVE-2018-3760, requires Ruby 2.3, PR #561 )
2018-10-13 20:04:00 +02:00
wvengen
6ee1ce51f0
Bundle update nokogiri rails-html-sanitizer (CVE-2017-15412, CVE-2018-3741)
2018-03-24 15:35:43 +01:00
wvengen
3afbeb1be3
Bundle update nokogiri sinatra (CVE-2017-15412, CVE-2018-7212)
2018-03-16 14:25:14 +01:00
wvengen
f5bea41ccf
Remove Capistrano ( #491 , PR #521 )
2017-10-28 19:50:02 +02:00
wvengen
8a5c130875
Bundle update
2017-10-27 23:21:31 +02:00
Patrick Gansterer
da1ebe915c
Use deface in wiki plugin
2017-10-26 21:23:51 +02:00
Patrick Gansterer
c3927e4013
Enable documents plugin by default
2017-10-12 20:46:39 +02:00
Patrick Gansterer
380bd62168
Bundle update #470
2017-10-09 22:23:23 +02:00