Packages changed: ibus-table (1.16.9 -> 1.16.11) iio-sensor-proxy (3.3 -> 3.4) rubygem-actioncable-7.0 (7.0.3 -> 7.0.3.1) rubygem-actionmailbox-7.0 (7.0.3 -> 7.0.3.1) rubygem-actionmailer-7.0 (7.0.3 -> 7.0.3.1) rubygem-actionpack-7.0 (7.0.3 -> 7.0.3.1) rubygem-actiontext-7.0 (7.0.3 -> 7.0.3.1) rubygem-actionview-7.0 (7.0.3 -> 7.0.3.1) rubygem-activejob-7.0 (7.0.3 -> 7.0.3.1) rubygem-activemodel-7.0 (7.0.3 -> 7.0.3.1) rubygem-activerecord-7.0 (7.0.3 -> 7.0.3.1) rubygem-activestorage-7.0 (7.0.3 -> 7.0.3.1) rubygem-activesupport-7.0 (7.0.3 -> 7.0.3.1) rubygem-airbrussh (1.4.0 -> 1.4.1) rubygem-autoprefixer-rails (10.4.2.0 -> 10.4.7.0) rubygem-bootsnap (1.12.0 -> 1.13.0) rubygem-bundler (2.3.13 -> 2.3.19) rubygem-bundler-audit (0.9.0.1 -> 0.9.1) rubygem-chef-utils (17.9.52 -> 17.10.0) rubygem-rails-7.0 (7.0.3 -> 7.0.3.1) rubygem-rails-i18n (7.0.3 -> 7.0.5) rubygem-railties-7.0 (7.0.3 -> 7.0.3.1) === Details === ==== ibus-table ==== Version update (1.16.9 -> 1.16.11) update: 1.16.10 -> 1.16.11 - Remove hashbang from chinese_variants.py and tabcreatedb.py * gh#mike-fabian/ibus-table#118 update: 1.16.9 -> 1.6.10 - Add png versions of the ibus-table.svg icon - Add (remote) icon to ibus-table.appdata.xml - Add screenshot to ibus-table.appdata.xml feat: use _service files to automate fetching sources ==== iio-sensor-proxy ==== Version update (3.3 -> 3.4) - Update to version 3.4: * Add polkit checks for whether a user is allowed to claim a sensor. * Fix the ambient light sensor readings on some systems, a regression in the fake-input-accelerometer test binary. * A number of memory leaks. - Package polkit privilege file (subject to boo#1201558); add BuildRequires: pkgconfig(polkit-gobject-1). ==== rubygem-actioncable-7.0 ==== Version update (7.0.3 -> 7.0.3.1) updated to version 7.0.3.1 see installed CHANGELOG.md [#]# Rails 7.0.3.1 (July 12, 2022) ## * No changes. ==== rubygem-actionmailbox-7.0 ==== Version update (7.0.3 -> 7.0.3.1) updated to version 7.0.3.1 see installed CHANGELOG.md [#]# Rails 7.0.3.1 (July 12, 2022) ## * No changes. ==== rubygem-actionmailer-7.0 ==== Version update (7.0.3 -> 7.0.3.1) updated to version 7.0.3.1 see installed CHANGELOG.md [#]# Rails 7.0.3.1 (July 12, 2022) ## * No changes. ==== rubygem-actionpack-7.0 ==== Version update (7.0.3 -> 7.0.3.1) updated to version 7.0.3.1 see installed CHANGELOG.md [#]# Rails 7.0.3.1 (July 12, 2022) ## * No changes. ==== rubygem-actiontext-7.0 ==== Version update (7.0.3 -> 7.0.3.1) updated to version 7.0.3.1 see installed CHANGELOG.md [#]# Rails 7.0.3.1 (July 12, 2022) ## * No changes. ==== rubygem-actionview-7.0 ==== Version update (7.0.3 -> 7.0.3.1) updated to version 7.0.3.1 see installed CHANGELOG.md [#]# Rails 7.0.3.1 (July 12, 2022) ## * No changes. ==== rubygem-activejob-7.0 ==== Version update (7.0.3 -> 7.0.3.1) updated to version 7.0.3.1 see installed CHANGELOG.md [#]# Rails 7.0.3.1 (July 12, 2022) ## * No changes. ==== rubygem-activemodel-7.0 ==== Version update (7.0.3 -> 7.0.3.1) updated to version 7.0.3.1 see installed CHANGELOG.md [#]# Rails 7.0.3.1 (July 12, 2022) ## * No changes. ==== rubygem-activerecord-7.0 ==== Version update (7.0.3 -> 7.0.3.1) updated to version 7.0.3.1 see installed CHANGELOG.md [#]# Rails 7.0.3.1 (July 12, 2022) ## * Change ActiveRecord::Coders::YAMLColumn default to safe_load This adds two new configuration options The configuration options are as follows: * `config.active_storage.use_yaml_unsafe_load` When set to true, this configuration option tells Rails to use the old "unsafe" YAML loading strategy, maintaining the existing behavior but leaving the possible escalation vulnerability in place. Setting this option to true is *not* recommended, but can aid in upgrading. * `config.active_record.yaml_column_permitted_classes` The "safe YAML" loading method does not allow all classes to be deserialized by default. This option allows you to specify classes deemed "safe" in your application. For example, if your application uses Symbol and Time in serialized data, you can add Symbol and Time to the allowed list as follows: ``` config.active_record.yaml_column_permitted_classes = [Symbol, Date, Time] ``` [CVE-2022-32224] ==== rubygem-activestorage-7.0 ==== Version update (7.0.3 -> 7.0.3.1) updated to version 7.0.3.1 see installed CHANGELOG.md [#]# Rails 7.0.3.1 (July 12, 2022) ## * No changes. ==== rubygem-activesupport-7.0 ==== Version update (7.0.3 -> 7.0.3.1) updated to version 7.0.3.1 see installed CHANGELOG.md [#]# Rails 7.0.3.1 (July 12, 2022) ## * No changes. ==== rubygem-airbrussh ==== Version update (1.4.0 -> 1.4.1) updated to version 1.4.1 see installed CHANGELOG.md ==== rubygem-autoprefixer-rails ==== Version update (10.4.2.0 -> 10.4.7.0) updated to version 10.4.7.0 see installed CHANGELOG.md [#]# 10.4.7.0 * Fixed `print-color-adjust` support in Firefox. * Fixed `print-color-adjust` support. * Fixed `NaN` in grid (by @SukkaW). ==== rubygem-bootsnap ==== Version update (1.12.0 -> 1.13.0) updated to version 1.13.0 see installed CHANGELOG.md [#] 1.13.0 * Stop decorating `Kernel.load`. This used to be very useful in development because the Rails "classic" autoloader was using `Kernel.load` in dev and `Kernel.require` in production. But Zeitwerk is now the default, and it doesn't use `Kernel.load` at all. People still using the classic autoloader might want to stick to `bootsnap 1.12`. * Add `Bootsnap.unload_cache!`. Applications can call it at the end of their boot sequence when they know no more code will be loaded to reclaim a bit of memory. ==== rubygem-bundler ==== Version update (2.3.13 -> 2.3.19) updated to version 2.3.19 see installed CHANGELOG.md [#] 2.3.19 (July 27, 2022) [#]# Enhancements: - Add `Bundler.settings[:only]` to install gems of the specified groups [#5759](https://github.com/rubygems/rubygems/pull/5759) - Add `ignore_funding_requests` config flag [#5767](https://github.com/rubygems/rubygems/pull/5767) - Prevent random crash when autoloading `Pathname` [#5769](https://github.com/rubygems/rubygems/pull/5769) - Don't corrupt lockfile when user moves a gem that's already in the lockfile to an incorrect source by mistake [#5070](https://github.com/rubygems/rubygems/pull/5070) - Reconcile error/warning message for multiple global sources with documentation [#5741](https://github.com/rubygems/rubygems/pull/5741) - Improve error message when gems cannot be found to include the source for each gem [#5729](https://github.com/rubygems/rubygems/pull/5729) [#]# Bug fixes: - Fix yet another TruffleRuby platform selection regression [#5746](https://github.com/rubygems/rubygems/pull/5746) - Show a proper error if extension dir is not writable [#5726](https://github.com/rubygems/rubygems/pull/5726) [#]# Performance: - Lazily check incomplete lockfile to improve performance [#5546](https://github.com/rubygems/rubygems/pull/5546) [#]# Documentation: - Add deprecation notice of bundle inject [#5776](https://github.com/rubygems/rubygems/pull/5776) - Add deprecation notice of `bundle viz` to man pages [#5765](https://github.com/rubygems/rubygems/pull/5765) - Update command example in `bundle exec` man page [#5754](https://github.com/rubygems/rubygems/pull/5754) - Remove bundle show from obsolete commands [#5753](https://github.com/rubygems/rubygems/pull/5753) - Improve global source(s) documentation [#5732](https://github.com/rubygems/rubygems/pull/5732) - Use https protocol for URLs for config mirror in bundler man [#5722](https://github.com/rubygems/rubygems/pull/5722) [#] 2.3.18 (July 14, 2022) [#]# Enhancements: - Extend `gem` DSL with a `force_ruby_platform` option [#4049](https://github.com/rubygems/rubygems/pull/4049) [#]# Bug fixes: - Fix misleading error if compact index cannot be copied [#5709](https://github.com/rubygems/rubygems/pull/5709) - Fix TruffleRuby no longer able to install lockfiles generated with other implementations [#5711](https://github.com/rubygems/rubygems/pull/5711) - Fix TruffleRuby no longer installing lockfiles using "ruby" platform correctly [#5694](https://github.com/rubygems/rubygems/pull/5694) - Fix crash when updating vendor cache of default gems [#5679](https://github.com/rubygems/rubygems/pull/5679) [#]# Performance: - Speed up `bundler/setup` by using the raw `Gemfile.lock` information without extra processing whenever possible [#5695](https://github.com/rubygems/rubygems/pull/5695) [#]# Documentation: - Use modern style hashes in Gemfile DSL docs [#5674](https://github.com/rubygems/rubygems/pull/5674) [#] 2.3.17 (June 29, 2022) [#]# Enhancements: - Add support for platform `:x64_mingw` to correctly lookup "x64-mingw-ucrt" [#5649](https://github.com/rubygems/rubygems/pull/5649) - Fix some errors being printed twice in `--verbose` mode [#5654](https://github.com/rubygems/rubygems/pull/5654) - Fix extension paths in generated standalone script [#5632](https://github.com/rubygems/rubygems/pull/5632) [#]# Bug fixes: - Raise if ruby platform is forced and there are no ruby variants [#5495](https://github.com/rubygems/rubygems/pull/5495) - Fix `bundle package --no-install` no longer skipping install [#5639](https://github.com/rubygems/rubygems/pull/5639) [#]# Performance: - Improve performance of `Bundler::SpecSet#for` by using hash lookup of handled deps [#5537](https://github.com/rubygems/rubygems/pull/5537) [#]# Documentation: - Fix formatting issue in `bundle add` man page [#5642](https://github.com/rubygems/rubygems/pull/5642) [#] 2.3.16 (June 15, 2022) [#]# Performance: - Improve performance of installing gems from gem server sources [#5614](https://github.com/rubygems/rubygems/pull/5614) [#] 2.3.15 (June 1, 2022) [#]# Enhancements: - Show better error when previous installation fails to be removed [#5564](https://github.com/rubygems/rubygems/pull/5564) - Show exception cause in bug report template [#5563](https://github.com/rubygems/rubygems/pull/5563) [#]# Bug fixes: - Fix `bundle remove` by invalidating cached `Bundle.definition` [#5443](https://github.com/rubygems/rubygems/pull/5443) - Fix generated standalone script when it includes default gems [#5586](https://github.com/rubygems/rubygems/pull/5586) - Skip duplicated dependency warning for gemspec dev deps [#5587](https://github.com/rubygems/rubygems/pull/5587) - Give better conflict resolution advice [#5581](https://github.com/rubygems/rubygems/pull/5581) - Fix crash when commenting out a mirror in configuration [#5576](https://github.com/rubygems/rubygems/pull/5576) - Fix crash when installing gems with symlinks [#5570](https://github.com/rubygems/rubygems/pull/5570) - Ignore `Errno::EROFS` errors when creating `bundler.lock` [#5580](https://github.com/rubygems/rubygems/pull/5580) - Ignore `Errno::EPERM` errors when creating `bundler.lock` [#5579](https://github.com/rubygems/rubygems/pull/5579) - Fix crash when printing resolution conflicts on metadata requirements [#5562](https://github.com/rubygems/rubygems/pull/5562) [#] 2.3.14 (May 18, 2022) [#]# Bug fixes: - Fix confusing inline mode install output [#5530](https://github.com/rubygems/rubygems/pull/5530) - Fix error message when locked version of a gem does not support running Ruby [#5525](https://github.com/rubygems/rubygems/pull/5525) [#]# Performance: - Improve `bundler/setup` performance again by not deduplicating intermediate results [#5533](https://github.com/rubygems/rubygems/pull/5533) [#]# Documentation: - Fix typo in documentation [#5514](https://github.com/rubygems/rubygems/pull/5514) - Update man page for `require` option in `bundle add` command [#5513](https://github.com/rubygems/rubygems/pull/5513) ==== rubygem-bundler-audit ==== Version update (0.9.0.1 -> 0.9.1) updated to version 0.9.1 see installed ChangeLog.md [#]## 0.9.1 / 2022-05-19 [#]### CLI * Improve the readability of the suggested gem versions to upgrade to (pull #331). [#]### Rake Task * Fixed a regression introduced in 0.9.0 where the `bundler:audit` rake task was not exiting with an error status code if vulnerabilities were found. Now when the `bundler-audit` command fails, the rake task will also exit with the `bundler-audit` command's error code. * If the `bundler-audit` command could not be found for some reason raise the {Bundler::Audit::Task::CommandNotFound} exception. ==== rubygem-chef-utils ==== Version update (17.9.52 -> 17.10.0) updated to version 17.10.0 no changelog found ==== rubygem-rails-7.0 ==== Version update (7.0.3 -> 7.0.3.1) updated to version 7.0.3.1 no changelog found ==== rubygem-rails-i18n ==== Version update (7.0.3 -> 7.0.5) updated to version 7.0.5 see installed CHANGELOG.md - Remove eager loading of translations during boot phase (this is now done by Rails). [#]# 7.0.3 (2022-03-01) - Revert long date formats on default "en" locale #980 ==== rubygem-railties-7.0 ==== Version update (7.0.3 -> 7.0.3.1) updated to version 7.0.3.1 see installed CHANGELOG.md [#]# Rails 7.0.3.1 (July 12, 2022) ## * No changes.