rack-cloudflare_middleware 1.2.3 → 1.2.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (9) hide show
  1. checksums.yaml +4 -4
  2. data/.github/workflows/ci.yml +3 -3
  3. data/.github/workflows/release.yml +1 -1
  4. data/CHANGELOG.md +4 -0
  5. data/Gemfile +3 -3
  6. data/Gemfile.lock +41 -37
  7. data/lib/rack/cloudflare_middleware/version.rb +1 -1
  8. metadata +2 -3
  9. data/.github/workflows/pull-request-updated.yml +0 -32
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 2609ebe8665618548d47b46498870d9a8c1e5331caea52cc947dd1cad87a8fc7
4
- data.tar.gz: aaa6de3fdab8d9ca9818ce5e6f7d4ae3641cd83b489fd287fa7e4d67f7acd91b
3
+ metadata.gz: 1e072e19640e5ab0839946a07b45b2bc3c96f5c82d2d1f2eb5e4dacd45d905d5
4
+ data.tar.gz: c0e6c9baaf3174163785cbc0e7308a209405bec198a630f49bf117a3248f7f97
5
5
  SHA512:
6
- metadata.gz: 4c0e453400a747e25b00364d05f9a8278e2b408532599e32d551d463f204995b5dcabfb91230512ee48bde649d39227b454bbacfc4beead1e8ff23f4b18d0486
7
- data.tar.gz: ccccb2ba8e68dacf97b4142e175f1686307937a18b95bea9cb38d0f49afc3a282e3a2efa9973b17eb8c18a92b7e04de07e23e2004f3ede628ed5167550ae50ca
6
+ metadata.gz: 3a459d3d80c6ed44eb6c4d932784591cf7f3661c4cc9bb5201188b9551199550a4b2b1b6fb36f2ad8def142f34b75f3864ec53c85d7b0458c1eb2375b2bb889b
7
+ data.tar.gz: 0d8a3bc82581206924393b028af66174ff43725e45551fbcccc6e5faffb73631e4427767303e3f514ae8ee75c4f052fd52d222c19a5c3e30fcf737011c743051
data/.github/workflows/ci.yml CHANGED
@@ -19,7 +19,7 @@ jobs:
19
19
  ruby: ["3.1", "3.2", "3.3", "3.4"]
20
20
  steps:
21
21
  - name: Checkout code
22
- uses: actions/checkout@v4
22
+ uses: actions/checkout@v6
23
23
  - name: Install Ruby and gems
24
24
  uses: ruby/setup-ruby@v1
25
25
  with:
@@ -35,7 +35,7 @@ jobs:
35
35
  contents: read
36
36
  steps:
37
37
  - name: Checkout code
38
- uses: actions/checkout@v4
38
+ uses: actions/checkout@v6
39
39
  - name: Install Ruby and gems
40
40
  uses: ruby/setup-ruby@v1
41
41
  with:
@@ -44,7 +44,7 @@ jobs:
44
44
  - name: Bundle Audit Check
45
45
  run: bundle exec bundle-audit update && bundle exec bundle-audit check
46
46
  - name: Setup Python
47
- uses: actions/setup-python@v5
47
+ uses: actions/setup-python@v6
48
48
  with:
49
49
  python-version: "3.12"
50
50
  - name: Run pre-commit
data/.github/workflows/release.yml CHANGED
@@ -9,7 +9,7 @@ jobs:
9
9
  contents: read
10
10
  steps:
11
11
  - name: Checkout code
12
- uses: actions/checkout@v4
12
+ uses: actions/checkout@v6
13
13
  - name: Install Ruby and gems
14
14
  uses: ruby/setup-ruby@v1
15
15
  with:
data/CHANGELOG.md CHANGED
@@ -1,4 +1,8 @@
1
1
 
2
+ v1.2.4 - 2026-02-10
3
+ -------------------
4
+ - Updated Faraday dependency to >= 2.14.1 to address CVE-2026-25765 (SSRF vulnerability)
5
+
2
6
  v1.2.3 - 2025-07-25
3
7
  -------------------
4
8
  - Libraries updates
data/Gemfile CHANGED
@@ -4,7 +4,7 @@ source "https://rubygems.org"
4
4
 
5
5
  gemspec
6
6
 
7
- gem "faraday", "~> 2.13"
7
+ gem "faraday", "~> 2.14"
8
8
  gem "rake", "~> 13.3"
9
9
 
10
10
  group :development, :test do
@@ -13,6 +13,6 @@ group :development, :test do
13
13
  gem "rack-test", "~> 2"
14
14
  gem "standard", "~> 1"
15
15
  gem "pry"
16
- gem "webmock", "~> 3.25"
17
- gem "bundler-audit", "~> 0.9.2"
16
+ gem "webmock", "~> 3.26"
17
+ gem "bundler-audit", "~> 0.9.3"
18
18
  end
data/Gemfile.lock CHANGED
@@ -1,7 +1,7 @@
1
1
  PATH
2
2
  remote: .
3
3
  specs:
4
- rack-cloudflare_middleware (1.2.3)
4
+ rack-cloudflare_middleware (1.2.4)
5
5
  faraday (>= 1.0, < 3)
6
6
  rack (>= 2, < 4)
7
7
 
@@ -11,51 +11,55 @@ GEM
11
11
  addressable (2.8.7)
12
12
  public_suffix (>= 2.0.2, < 7.0)
13
13
  ast (2.4.3)
14
- bigdecimal (3.1.9)
15
- bundler-audit (0.9.2)
16
- bundler (>= 1.2.0, < 3)
14
+ bigdecimal (3.3.1)
15
+ bundler-audit (0.9.3)
16
+ bundler (>= 1.2.0)
17
17
  thor (~> 1.0)
18
18
  coderay (1.1.3)
19
- crack (1.0.0)
19
+ crack (1.0.1)
20
20
  bigdecimal
21
21
  rexml
22
22
  diff-lcs (1.6.2)
23
- faraday (2.13.3)
23
+ faraday (2.14.1)
24
24
  faraday-net_http (>= 2.0, < 3.5)
25
25
  json
26
26
  logger
27
- faraday-net_http (3.4.1)
28
- net-http (>= 0.5.0)
29
- hashdiff (1.1.2)
30
- json (2.13.0)
27
+ faraday-net_http (3.4.2)
28
+ net-http (~> 0.5)
29
+ hashdiff (1.2.1)
30
+ io-console (0.8.2)
31
+ json (2.18.1)
31
32
  language_server-protocol (3.17.0.5)
32
33
  lint_roller (1.1.0)
33
34
  logger (1.7.0)
34
35
  method_source (1.1.0)
35
- net-http (0.6.0)
36
- uri
36
+ net-http (0.9.1)
37
+ uri (>= 0.11.1)
37
38
  parallel (1.27.0)
38
- parser (3.3.8.0)
39
+ parser (3.3.10.0)
39
40
  ast (~> 2.4.1)
40
41
  racc
41
- prism (1.4.0)
42
- pry (0.15.2)
42
+ prism (1.6.0)
43
+ pry (0.16.0)
43
44
  coderay (~> 1.1)
44
45
  method_source (~> 1.0)
45
- public_suffix (6.0.1)
46
+ reline (>= 0.6.0)
47
+ public_suffix (6.0.2)
46
48
  racc (1.8.1)
47
- rack (3.1.16)
49
+ rack (3.2.4)
48
50
  rack-test (2.2.0)
49
51
  rack (>= 1.3)
50
52
  rainbow (3.1.1)
51
- rake (13.3.0)
52
- regexp_parser (2.10.0)
53
- rexml (3.4.1)
54
- rspec (3.13.1)
53
+ rake (13.3.1)
54
+ regexp_parser (2.11.3)
55
+ reline (0.6.3)
56
+ io-console (~> 0.5)
57
+ rexml (3.4.4)
58
+ rspec (3.13.2)
55
59
  rspec-core (~> 3.13.0)
56
60
  rspec-expectations (~> 3.13.0)
57
61
  rspec-mocks (~> 3.13.0)
58
- rspec-core (3.13.4)
62
+ rspec-core (3.13.6)
59
63
  rspec-support (~> 3.13.0)
60
64
  rspec-expectations (3.13.5)
61
65
  diff-lcs (>= 1.2.0, < 2.0)
@@ -63,11 +67,11 @@ GEM
63
67
  rspec-its (2.0.0)
64
68
  rspec-core (>= 3.13.0)
65
69
  rspec-expectations (>= 3.13.0)
66
- rspec-mocks (3.13.5)
70
+ rspec-mocks (3.13.6)
67
71
  diff-lcs (>= 1.2.0, < 2.0)
68
72
  rspec-support (~> 3.13.0)
69
- rspec-support (3.13.4)
70
- rubocop (1.75.5)
73
+ rspec-support (3.13.6)
74
+ rubocop (1.81.7)
71
75
  json (~> 2.3)
72
76
  language_server-protocol (~> 3.17.0.2)
73
77
  lint_roller (~> 1.1.0)
@@ -75,10 +79,10 @@ GEM
75
79
  parser (>= 3.3.0.2)
76
80
  rainbow (>= 2.2.2, < 4.0)
77
81
  regexp_parser (>= 2.9.3, < 3.0)
78
- rubocop-ast (>= 1.44.0, < 2.0)
82
+ rubocop-ast (>= 1.47.1, < 2.0)
79
83
  ruby-progressbar (~> 1.7)
80
84
  unicode-display_width (>= 2.4.0, < 4.0)
81
- rubocop-ast (1.44.1)
85
+ rubocop-ast (1.48.0)
82
86
  parser (>= 3.3.7.2)
83
87
  prism (~> 1.4)
84
88
  rubocop-performance (1.25.0)
@@ -86,10 +90,10 @@ GEM
86
90
  rubocop (>= 1.75.0, < 2.0)
87
91
  rubocop-ast (>= 1.38.0, < 2.0)
88
92
  ruby-progressbar (1.13.0)
89
- standard (1.50.0)
93
+ standard (1.52.0)
90
94
  language_server-protocol (~> 3.17.0.2)
91
95
  lint_roller (~> 1.0)
92
- rubocop (~> 1.75.5)
96
+ rubocop (~> 1.81.7)
93
97
  standard-custom (~> 1.0.0)
94
98
  standard-performance (~> 1.8)
95
99
  standard-custom (1.0.2)
@@ -99,11 +103,11 @@ GEM
99
103
  lint_roller (~> 1.1)
100
104
  rubocop-performance (~> 1.25.0)
101
105
  thor (1.4.0)
102
- unicode-display_width (3.1.4)
103
- unicode-emoji (~> 4.0, >= 4.0.4)
104
- unicode-emoji (4.0.4)
105
- uri (1.0.3)
106
- webmock (3.25.1)
106
+ unicode-display_width (3.2.0)
107
+ unicode-emoji (~> 4.1)
108
+ unicode-emoji (4.1.0)
109
+ uri (1.1.1)
110
+ webmock (3.26.1)
107
111
  addressable (>= 2.8.0)
108
112
  crack (>= 0.3.2)
109
113
  hashdiff (>= 0.4.0, < 2.0.0)
@@ -116,8 +120,8 @@ PLATFORMS
116
120
 
117
121
  DEPENDENCIES
118
122
  bundler (~> 2)
119
- bundler-audit (~> 0.9.2)
120
- faraday (~> 2.13)
123
+ bundler-audit (~> 0.9.3)
124
+ faraday (~> 2.14)
121
125
  pry
122
126
  rack-cloudflare_middleware!
123
127
  rack-test (~> 2)
@@ -125,7 +129,7 @@ DEPENDENCIES
125
129
  rspec (~> 3.13)
126
130
  rspec-its (~> 2.0)
127
131
  standard (~> 1)
128
- webmock (~> 3.25)
132
+ webmock (~> 3.26)
129
133
 
130
134
  BUNDLED WITH
131
135
  2.5.23
data/lib/rack/cloudflare_middleware/version.rb CHANGED
@@ -2,6 +2,6 @@
2
2
 
3
3
  module Rack
4
4
  module CloudflareMiddleware
5
- VERSION = "1.2.3"
5
+ VERSION = "1.2.4"
6
6
  end
7
7
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: rack-cloudflare_middleware
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.2.3
4
+ version: 1.2.4
5
5
  platform: ruby
6
6
  authors:
7
7
  - James Brown
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2025-07-25 00:00:00.000000000 Z
11
+ date: 2026-02-10 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: faraday
@@ -115,7 +115,6 @@ extra_rdoc_files: []
115
115
  files:
116
116
  - ".github/dependabot.yml"
117
117
  - ".github/workflows/ci.yml"
118
- - ".github/workflows/pull-request-updated.yml"
119
118
  - ".github/workflows/release.yml"
120
119
  - ".gitignore"
121
120
  - ".pre-commit-config.yaml"
data/.github/workflows/pull-request-updated.yml DELETED
@@ -1,32 +0,0 @@
1
- name: Pull Request Updated
2
-
3
- on:
4
- pull_request_target:
5
- types:
6
- - opened
7
- - reopened
8
- - edited
9
-
10
- jobs:
11
- tag-for-dependabot:
12
- name: Tag Infrastructure For Dependabot
13
- if: ${{ github.actor == 'dependabot[bot]' }}
14
- runs-on: ubuntu-24.04
15
- timeout-minutes: 2
16
- permissions:
17
- contents: read
18
- pull-requests: write
19
- steps:
20
- - name: Generate a token
21
- id: generate_token
22
- uses: actions/create-github-app-token@v2
23
- with:
24
- owner: ${{ github.repository_owner }}
25
- repositories: ${{ github.event.repository.name }}
26
- - name: Auto Assign infrastructure as reviewer
27
- run: gh pr edit "$PR_URL" --add-reviewer "$REVIEWER"
28
- env:
29
- PR_URL: ${{ github.event.pull_request.html_url }}
30
- REVIEWER: instrumentl/infrastructure
31
- GITHUB_TOKEN: ${{ steps.generate_token.outputs.token }}
32
- GH_REPO: ${{github.repository}}