manageiq-style 1.5.6 → 1.5.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (7) hide show
  1. checksums.yaml +4 -4
  2. data/.github/workflows/ci.yaml +1 -1
  3. data/CHANGELOG.md +13 -1
  4. data/lib/manageiq/style/version.rb +1 -1
  5. data/manageiq-style.gemspec +3 -3
  6. data/styles/base.yml +0 -2
  7. metadata +7 -11
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 9bd1d7fd6d0b88bd7028b1039097a173df9ee6a0218f2727670af45c726d2acc
4
- data.tar.gz: f75328202dc38168b655fd55eeed83b5ebc79890bc745bdbfdaf8bfe16662eb5
3
+ metadata.gz: 0bd98f853751ea933d11b67925a3b3a07dc1352258f1f0dbfa43ff161ab5dbbb
4
+ data.tar.gz: 129a0b2145e7c6cf7070dee40138d6c022fb939e877f1a4061c34340f74f1227
5
5
  SHA512:
6
- metadata.gz: 795925d1043e9afcda036e1277038e2213e2ca45abf8ad3832c7aa21b7aca1533fe6f8c8fac6941a7a75d43e83729fd7b3fc3fd7b8d9af8998ddaf1ea6cce12d
7
- data.tar.gz: 5635f6cf4b32bbe12b4417cf31d4ac34849fc69c2d0b55cf4c4163c163363cc19d97d3b23afa730d58bc12dca1ed5fafa7cd6cfc929e13dbbd122a5235c4a3c6
6
+ metadata.gz: 7e3b5931ac2bd44de6d4592cc0e8d1658df061e70e3b5830c2fb9595e4c5355172243fd95674b54f306e9eb5ad44b96ed2dd99241f96f75a14cf5b85d96eb0de
7
+ data.tar.gz: 7064dbf3ddf3f6bff37da1cf5e1abcb89d0eedfb5c2a2187c31b36c04a64214bc90bd67c6f90912f7ca32daee761b0b8e45ab60ecd97e9c2c607f259381a3825
data/.github/workflows/ci.yaml CHANGED
@@ -19,7 +19,7 @@ jobs:
19
19
  env:
20
20
  CC_TEST_REPORTER_ID: ${{ secrets.CC_TEST_REPORTER_ID }}
21
21
  steps:
22
- - uses: actions/checkout@v4
22
+ - uses: actions/checkout@v5
23
23
  - name: Set up Ruby
24
24
  uses: ruby/setup-ruby@v1
25
25
  with:
data/CHANGELOG.md CHANGED
@@ -1,9 +1,19 @@
1
1
  # Change Log
2
+
2
3
  All notable changes to this project will be documented in this file.
3
4
  This project adheres to [Semantic Versioning](http://semver.org/).
4
5
 
5
6
  ## [Unreleased]
6
7
 
8
+ ## [1.5.8] - 2025-10-01
9
+ ### Changed
10
+ - Bump minimum version for rack for CVE-2025-59830 [[#66](https://github.com/ManageIQ/manageiq-style/pull/66)]
11
+
12
+ ## [1.5.7] - 2025-09-22
13
+ ### Changed
14
+ - Bump minimum for rexml for CVE-2025-58767 [[#65](https://github.com/ManageIQ/manageiq-style/pull/65)]
15
+ - Drop require_nested and include_concern [[#63](https://github.com/ManageIQ/manageiq-style/pull/63)]
16
+
7
17
  ## [1.5.6] - 2025-07-03
8
18
  ### Changed
9
19
  - Lockdown rubocop-ast to the last version before the deprecation warnings [[#62](https://github.com/ManageIQ/manageiq-style/pull/62)]
@@ -55,7 +65,9 @@ This project adheres to [Semantic Versioning](http://semver.org/).
55
65
  ## [1.0.1] - 2020-06-19
56
66
  ## [1.0.0] - 2020-05-19
57
67
 
58
- [Unreleased]: https://github.com/ManageIQ/manageiq-style/compare/v1.5.6...HEAD
68
+ [Unreleased]: https://github.com/ManageIQ/manageiq-style/compare/v1.5.8...HEAD
69
+ [1.5.8]: https://github.com/ManageIQ/manageiq-style/compare/v1.5.7...v1.5.8
70
+ [1.5.7]: https://github.com/ManageIQ/manageiq-style/compare/v1.5.6...v1.5.7
59
71
  [1.5.6]: https://github.com/ManageIQ/manageiq-style/compare/v1.5.5...v1.5.6
60
72
  [1.5.5]: https://github.com/ManageIQ/manageiq-style/compare/v1.5.4...v1.5.5
61
73
  [1.5.4]: https://github.com/ManageIQ/manageiq-style/compare/v1.5.3...v1.5.4
data/lib/manageiq/style/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  module ManageIQ
2
2
  module Style
3
- VERSION = "1.5.6".freeze
3
+ VERSION = "1.5.8".freeze
4
4
  end
5
5
  end
data/manageiq-style.gemspec CHANGED
@@ -30,14 +30,14 @@ Gem::Specification.new do |spec|
30
30
  spec.add_runtime_dependency "rubocop-performance"
31
31
  spec.add_runtime_dependency "rubocop-rails"
32
32
 
33
- spec.add_runtime_dependency "rexml", ">= 3.3.9" # rubocop depends on rexml. Enforce a minimum for CVE-2024-49761
33
+ spec.add_runtime_dependency "rexml", ">= 3.4.4" # rubocop depends on rexml. Enforce a minimum for CVE-2025-58767
34
34
 
35
- # rubocop-rails depends on rack. Enforce a minimum of 2.2.17, 3.0.18, or 3.1.16 for various CVEs
35
+ # rubocop-rails depends on rack. Enforce a minimum of 2.2.18 for various CVEs
36
36
  #
37
37
  # NOTE: Previously we locked down to exclude many specific versions, but due to
38
38
  # https://github.com/rubygems/rubygems.org/issues/5541 we can't release the gem.
39
39
  # For now, we just lock down to at least the minimum rack.
40
- spec.add_runtime_dependency "rack", ">= 2.2.17", "< 4"
40
+ spec.add_runtime_dependency "rack", ">= 2.2.18", "< 4" # CVE-2025-59830 https://github.com/advisories/GHSA-625h-95r8-8xpm
41
41
 
42
42
  spec.add_development_dependency "rake", "~> 12.0"
43
43
  spec.add_development_dependency "rspec", "~> 3.0"
data/styles/base.yml CHANGED
@@ -241,8 +241,6 @@ Style/MethodCallWithArgsParentheses:
241
241
  - deprecate_attribute
242
242
  - drop_trigger
243
243
  - encrypt_column
244
- - include_concern
245
- - require_nested
246
244
  - signal
247
245
  - supports
248
246
  - supports_not
metadata CHANGED
@@ -1,14 +1,13 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: manageiq-style
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.5.6
4
+ version: 1.5.8
5
5
  platform: ruby
6
6
  authors:
7
7
  - ManageIQ Authors
8
- autorequire:
9
8
  bindir: exe
10
9
  cert_chain: []
11
- date: 2025-07-03 00:00:00.000000000 Z
10
+ date: 1980-01-02 00:00:00.000000000 Z
12
11
  dependencies:
13
12
  - !ruby/object:Gem::Dependency
14
13
  name: more_core_extensions
@@ -100,21 +99,21 @@ dependencies:
100
99
  requirements:
101
100
  - - ">="
102
101
  - !ruby/object:Gem::Version
103
- version: 3.3.9
102
+ version: 3.4.4
104
103
  type: :runtime
105
104
  prerelease: false
106
105
  version_requirements: !ruby/object:Gem::Requirement
107
106
  requirements:
108
107
  - - ">="
109
108
  - !ruby/object:Gem::Version
110
- version: 3.3.9
109
+ version: 3.4.4
111
110
  - !ruby/object:Gem::Dependency
112
111
  name: rack
113
112
  requirement: !ruby/object:Gem::Requirement
114
113
  requirements:
115
114
  - - ">="
116
115
  - !ruby/object:Gem::Version
117
- version: 2.2.17
116
+ version: 2.2.18
118
117
  - - "<"
119
118
  - !ruby/object:Gem::Version
120
119
  version: '4'
@@ -124,7 +123,7 @@ dependencies:
124
123
  requirements:
125
124
  - - ">="
126
125
  - !ruby/object:Gem::Version
127
- version: 2.2.17
126
+ version: 2.2.18
128
127
  - - "<"
129
128
  - !ruby/object:Gem::Version
130
129
  version: '4'
@@ -171,7 +170,6 @@ dependencies:
171
170
  - !ruby/object:Gem::Version
172
171
  version: 0.21.2
173
172
  description: Style and linting configuration for ManageIQ projects.
174
- email:
175
173
  executables:
176
174
  - manageiq-style
177
175
  extensions: []
@@ -213,7 +211,6 @@ metadata:
213
211
  homepage_uri: https://github.com/ManageIQ/manageiq-style
214
212
  rubygems_mfa_required: 'true'
215
213
  source_code_uri: https://github.com/ManageIQ/manageiq-style
216
- post_install_message:
217
214
  rdoc_options: []
218
215
  require_paths:
219
216
  - lib
@@ -228,8 +225,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
228
225
  - !ruby/object:Gem::Version
229
226
  version: '0'
230
227
  requirements: []
231
- rubygems_version: 3.5.22
232
- signing_key:
228
+ rubygems_version: 3.7.1
233
229
  specification_version: 4
234
230
  summary: Style and linting configuration for ManageIQ projects.
235
231
  test_files: []