Skip to content

Bump rails from 5.2.6 to 6.1.6#177

Closed
dependabot[bot] wants to merge 1 commit into
devfrom
dependabot/bundler/rails-6.1.6
Closed

Bump rails from 5.2.6 to 6.1.6#177
dependabot[bot] wants to merge 1 commit into
devfrom
dependabot/bundler/rails-6.1.6

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 10, 2022

Copy link
Copy Markdown
Contributor

Bumps rails from 5.2.6 to 6.1.6.

Release notes

Sourced from rails's releases.

6.1.5

Active Support

  • Fix ActiveSupport::Duration.build to support negative values.

    The algorithm to collect the parts of the ActiveSupport::Duration ignored the sign of the value and accumulated incorrect part values. This impacted ActiveSupport::Duration#sum (which is dependent on parts) but not ActiveSupport::Duration#eql? (which is dependent on value).

    Caleb Buxton, Braden Staudacher

  • Time#change and methods that call it (eg. Time#advance) will now return a Time with the timezone argument provided, if the caller was initialized with a timezone argument.

    Fixes #42467.

    Alex Ghiculescu

  • Clone to keep extended Logger methods for tagged logger.

    Orhan Toy

  • assert_changes works on including ActiveSupport::Assertions module.

    Pedro Medeiros

Active Model

  • Clear secure password cache if password is set to nil

    Before:

    user.password = 'something' user.password = nil

    user.password # => 'something'

    Now:

    user.password = 'something' user.password = nil

    user.password # => nil

    Markus Doits

... (truncated)

Commits
  • 147557d Preparing for 6.1.6 release
  • 7c2da9e Merge pull request #45027 from rails/fix-tag-helper-regression
  • 3bcb481 Merge branch '6-1-sec' into 6-1-stable
  • e2efc66 Preparing for 6.1.5.1 release
  • 57e8d5e updating changelog for release
  • 123f42a Fix and add protections for XSS in names.
  • 2b820a2 Merge pull request #44635 from imtayadeway/tjw/api-csp-i
  • d38ff07 Merge pull request #44697 from SkipKayhil/fix-mail-error-regex
  • 8687a4f fix net-smtp load error regex in 6.1.5
  • f617ec1 Merge pull request #44691 from fatkodima/fix-polymorphic-index-compat-6-1
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label May 10, 2022
@dependabot dependabot Bot force-pushed the dependabot/bundler/rails-6.1.6 branch from 371abd4 to 32101a0 Compare May 30, 2022 14:17
Bumps [rails](https://github.com/rails/rails) from 5.2.6 to 6.1.6.
- [Release notes](https://github.com/rails/rails/releases)
- [Commits](rails/rails@v5.2.6...v6.1.6)

---
updated-dependencies:
- dependency-name: rails
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/bundler/rails-6.1.6 branch from 32101a0 to 434d9bc Compare May 30, 2022 16:17
@dependabot @github

dependabot Bot commented on behalf of github Jul 13, 2022

Copy link
Copy Markdown
Contributor Author

Superseded by #185.

@dependabot dependabot Bot closed this Jul 13, 2022
@dependabot dependabot Bot deleted the dependabot/bundler/rails-6.1.6 branch July 13, 2022 01:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file do not merge

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant