manageiq-style 1.5.3 → 1.5.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 62c9e80318c44899a01039ae2ca2f4f952f4a0336ef291daaf5d1c396b09ff57
4
- data.tar.gz: 27812f1d7ee64dbdbc5baa0613b634f0fe931370a425c053138e10a71659df6d
3
+ metadata.gz: 5c53a743c920fb4713516c400e68d36d71473eb4d7593130e5d452889435d47f
4
+ data.tar.gz: 8b6aa5ec3342efb309c8735e2e054506c19fe95b88be029571f9e0f8f37b645d
5
5
  SHA512:
6
- metadata.gz: 3f68ae2839032bd0898e758f8cf709509ec9efad314e733c3d31baea95c852275891eb631aa80c7c9cc835f7f55822028c5a78c573223eb86c0cfc9edb35e572
7
- data.tar.gz: 72fbda8714aa329c8d42609eb892658772a02b914f6a5a4050ff624661e874a137a36cbce946bf198739342be976b960b23b2cabbca3ecc2cef19adedf1df425
6
+ metadata.gz: 728953d1b2cfcb5566e737795371e5d7d371ede563c08415ce374f8cad7c34762dbe811972a19724983d125125b9bb50d2fd5fd1302bb30167433f44efdcdefc
7
+ data.tar.gz: 7dfdd24a96bda5833c6435df16494411916365a409de91bdfef4cc56015461c3e5761c25a5f78344ee78dc138af0fd92fd96eb4878ec3735f2c12065bd4cb42e
data/CHANGELOG.md CHANGED
@@ -4,6 +4,10 @@ This project adheres to [Semantic Versioning](http://semver.org/).
4
4
 
5
5
  ## [Unreleased]
6
6
 
7
+ ## [1.5.4] - 2025-03-13
8
+ ### Changed
9
+ - Enforce a minimum version for rack for CVEs [[#59](https://github.com/ManageIQ/manageiq-style/pull/59)]
10
+
7
11
  ## [1.5.3] - 2025-01-09
8
12
  ### Changed
9
13
  - Bump Rexml minimum version for CVE-2024-49761 [[#57](https://github.com/ManageIQ/manageiq-style/pull/57)]
@@ -42,7 +46,8 @@ This project adheres to [Semantic Versioning](http://semver.org/).
42
46
  ## [1.0.1] - 2020-06-19
43
47
  ## [1.0.0] - 2020-05-19
44
48
 
45
- [Unreleased]: https://github.com/ManageIQ/manageiq-style/compare/v1.5.3...HEAD
49
+ [Unreleased]: https://github.com/ManageIQ/manageiq-style/compare/v1.5.4...HEAD
50
+ [1.5.4]: https://github.com/ManageIQ/manageiq-style/compare/v1.5.3...v1.5.4
46
51
  [1.5.3]: https://github.com/ManageIQ/manageiq-style/compare/v1.5.2...v1.5.3
47
52
  [1.5.2]: https://github.com/ManageIQ/manageiq-style/compare/v1.5.1...v1.5.2
48
53
  [1.5.1]: https://github.com/ManageIQ/manageiq-style/compare/v1.5.0...v1.5.1
@@ -1,5 +1,5 @@
1
1
  module ManageIQ
2
2
  module Style
3
- VERSION = "1.5.3".freeze
3
+ VERSION = "1.5.4".freeze
4
4
  end
5
5
  end
@@ -28,11 +28,9 @@ Gem::Specification.new do |spec|
28
28
  spec.add_runtime_dependency "rubocop", "= 1.56.3"
29
29
  spec.add_runtime_dependency "rubocop-performance"
30
30
  spec.add_runtime_dependency "rubocop-rails"
31
- # style depends upon rubocop
32
- # rubocop depends upon rexml.
33
- # minimum rexml version is here for CVE-2024-49761
34
- # remove after upgrading rubocop. (newer versions no longer depend upon rexml)
35
- spec.add_runtime_dependency "rexml", ">= 3.3.9"
31
+
32
+ spec.add_runtime_dependency "rexml", ">= 3.3.9" # rubocop depends on rexml. Enforce a minimum for CVE-2024-49761
33
+ spec.add_runtime_dependency "rack", ">= 3.1.12" # rubocop-rails depends on rack. Enforce a minimum for CVE-2025-27610
36
34
 
37
35
  spec.add_development_dependency "rake", "~> 12.0"
38
36
  spec.add_development_dependency "rspec", "~> 3.0"
data/renovate.json CHANGED
@@ -1,6 +1,5 @@
1
1
  {
2
2
  "$schema": "https://docs.renovatebot.com/renovate-schema.json",
3
- "extends": [
4
- "config:recommended"
5
- ]
3
+ "inheritConfig": true,
4
+ "inheritConfigRepoName": "manageiq/renovate-config"
6
5
  }
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: manageiq-style
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.5.3
4
+ version: 1.5.4
5
5
  platform: ruby
6
6
  authors:
7
7
  - ManageIQ Authors
8
8
  autorequire:
9
9
  bindir: exe
10
10
  cert_chain: []
11
- date: 2025-01-09 00:00:00.000000000 Z
11
+ date: 2025-03-13 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: more_core_extensions
@@ -94,6 +94,20 @@ dependencies:
94
94
  - - ">="
95
95
  - !ruby/object:Gem::Version
96
96
  version: 3.3.9
97
+ - !ruby/object:Gem::Dependency
98
+ name: rack
99
+ requirement: !ruby/object:Gem::Requirement
100
+ requirements:
101
+ - - ">="
102
+ - !ruby/object:Gem::Version
103
+ version: 3.1.12
104
+ type: :runtime
105
+ prerelease: false
106
+ version_requirements: !ruby/object:Gem::Requirement
107
+ requirements:
108
+ - - ">="
109
+ - !ruby/object:Gem::Version
110
+ version: 3.1.12
97
111
  - !ruby/object:Gem::Dependency
98
112
  name: rake
99
113
  requirement: !ruby/object:Gem::Requirement
@@ -193,7 +207,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
193
207
  - !ruby/object:Gem::Version
194
208
  version: '0'
195
209
  requirements: []
196
- rubygems_version: 3.5.23
210
+ rubygems_version: 3.5.22
197
211
  signing_key:
198
212
  specification_version: 4
199
213
  summary: Style and linting configuration for ManageIQ projects.