consul/nairobi
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
15,172 Commits 1 Branch 0 Tags
e28fa4be3bb8f93981ee728cbc2ac04ddcc58985
Commit Graph

514 Commits

Author SHA1 Message Date
dependabot-preview[bot]
e28fa4be3b Bump web-console from 3.3.0 to 3.7.0 
Bumps [web-console](https://github.com/rails/web-console) from 3.3.0 to 3.7.0.
- [Release notes](https://github.com/rails/web-console/releases)
- [Changelog](https://github.com/rails/web-console/blob/master/CHANGELOG.markdown)
- [Commits](https://github.com/rails/web-console/compare/v3.3.0...v3.7.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-08-22 13:08:17 +00:00
Javier Martín
affd12a046 Merge pull request #4093 from consul/dependabot/bundler/scss_lint-0.59.0 
Bump scss_lint from 0.55.0 to 0.59.0
 2020-08-22 15:06:33 +02:00
Javier Martín
3178f388ea Merge pull request #4094 from consul/dependabot/bundler/i18n-tasks-0.9.31 
Bump i18n-tasks from 0.9.29 to 0.9.31
 2020-08-22 15:01:04 +02:00
dependabot-preview[bot]
8be7facf15 Bump i18n-tasks from 0.9.29 to 0.9.31 
Bumps [i18n-tasks](https://github.com/glebm/i18n-tasks) from 0.9.29 to 0.9.31.
- [Release notes](https://github.com/glebm/i18n-tasks/releases)
- [Changelog](https://github.com/glebm/i18n-tasks/blob/master/CHANGES.md)
- [Commits](https://github.com/glebm/i18n-tasks/compare/v0.9.29...v0.9.31)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-08-18 13:14:56 +00:00
dependabot-preview[bot]
1367b30934 Bump scss_lint from 0.55.0 to 0.59.0 
Bumps [scss_lint](https://github.com/sds/scss-lint) from 0.55.0 to 0.59.0.
- [Release notes](https://github.com/sds/scss-lint/releases)
- [Changelog](https://github.com/sds/scss-lint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/sds/scss-lint/compare/v0.55.0...v0.59.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-08-18 13:14:12 +00:00
dependabot-preview[bot]
67f3b7dc67 Bump capybara-webmock from 0.5.3 to 0.5.5 
Bumps [capybara-webmock](https://github.com/hashrocket/capybara-webmock) from 0.5.3 to 0.5.5.
- [Release notes](https://github.com/hashrocket/capybara-webmock/releases)
- [Commits](https://github.com/hashrocket/capybara-webmock/commits)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-08-17 13:16:36 +00:00
Javier Martín
146ffc8b9a Merge pull request #3905 from consul/dependabot/bundler/paperclip-6.1.0 
Bump paperclip from 5.2.1 to 6.1.0
 2020-08-14 23:17:12 +02:00
dependabot-preview[bot]
9d9824d1f3 Bump groupdate from 3.2.0 to 5.1.0 
Bumps [groupdate](https://github.com/ankane/groupdate) from 3.2.0 to 5.1.0.
- [Release notes](https://github.com/ankane/groupdate/releases)
- [Changelog](https://github.com/ankane/groupdate/blob/master/CHANGELOG.md)
- [Commits](https://github.com/ankane/groupdate/compare/v3.2.0...v5.1.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-08-14 20:42:18 +00:00
dependabot-preview[bot]
8419d7fbd7 [Security] Bump omniauth from 1.9.0 to 1.9.1 
Bumps [omniauth](https://github.com/omniauth/omniauth) from 1.9.0 to 1.9.1. **This update includes a security fix.**
- [Release notes](https://github.com/omniauth/omniauth/releases)
- [Commits](https://github.com/omniauth/omniauth/compare/v1.9.0...v1.9.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-08-14 20:26:15 +00:00
dependabot-preview[bot]
7786e45114 Bump paperclip from 5.2.1 to 6.1.0 
Bumps [paperclip](https://github.com/thoughtbot/paperclip) from 5.2.1 to 6.1.0.
- [Release notes](https://github.com/thoughtbot/paperclip/releases)
- [Changelog](https://github.com/thoughtbot/paperclip/blob/master/NEWS)
- [Commits](https://github.com/thoughtbot/paperclip/compare/v5.2.1...v6.1.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-08-14 20:24:08 +00:00
dependabot-preview[bot]
f397d91e04 Bump daemons and capistrano3-delayed-job 
Bumps [daemons](https://github.com/thuehlinger/daemons) and [capistrano3-delayed-job](https://github.com/AgileConsultingLLC/capistrano3-delayed-job). These dependencies needed to be updated together.

Updates `daemons` from 1.2.6 to 1.3.1
- [Release notes](https://github.com/thuehlinger/daemons/releases)
- [Changelog](https://github.com/thuehlinger/daemons/blob/master/Releases)
- [Commits](https://github.com/thuehlinger/daemons/compare/v1.2.6...v1.3.1)

Updates `capistrano3-delayed-job` from 1.7.5 to 1.7.6
- [Release notes](https://github.com/AgileConsultingLLC/capistrano3-delayed-job/releases)
- [Commits](https://github.com/AgileConsultingLLC/capistrano3-delayed-job/compare/v1.7.5...v1.7.6)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-08-14 20:09:08 +00:00
dependabot-preview[bot]
0de2b7d56d Bump wicked_pdf from 1.1.0 to 2.1.0 
Bumps [wicked_pdf](https://github.com/mileszs/wicked_pdf) from 1.1.0 to 2.1.0.
- [Release notes](https://github.com/mileszs/wicked_pdf/releases)
- [Changelog](https://github.com/mileszs/wicked_pdf/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mileszs/wicked_pdf/commits)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-08-14 18:46:10 +00:00
Javier Martín
07a6279f58 Merge pull request #3710 from consul/dependabot/bundler/jquery-fileupload-rails-1.0.0 
Bump jquery-fileupload-rails from 0.4.7 to 1.0.0
 2020-08-14 20:42:36 +02:00
dependabot-preview[bot]
7bbaad9f52 Bump jquery-fileupload-rails from 0.4.7 to 1.0.0 
Bumps [jquery-fileupload-rails](https://github.com/tors/jquery-fileupload-rails) from 0.4.7 to 1.0.0.
- [Release notes](https://github.com/tors/jquery-fileupload-rails/releases)
- [Commits](https://github.com/tors/jquery-fileupload-rails/commits)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-08-14 18:26:31 +00:00
dependabot-preview[bot]
637d162b74 Bump rails-assets-markdown-it from 8.2.2 to 9.0.1 
Bumps rails-assets-markdown-it from 8.2.2 to 9.0.1.

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-08-14 18:07:14 +00:00
dependabot-preview[bot]
3ccc0cfcf0 Bump rails-assets-leaflet from 1.2.0 to 1.5.1 
Bumps rails-assets-leaflet from 1.2.0 to 1.5.1.

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-08-14 11:15:05 +00:00
Javier Martín
545501ae0f Merge pull request #3708 from consul/dependabot/bundler/cocoon-1.2.14 
Bump cocoon from 1.2.11 to 1.2.14
 2020-08-14 13:11:52 +02:00
Javier Martín
2094c25eba Merge pull request #3865 from consul/dependabot/bundler/acts-as-taggable-on-6.5.0 
Bump acts-as-taggable-on from 6.0.0 to 6.5.0
 2020-08-14 12:56:25 +02:00
dependabot-preview[bot]
c23ece99e1 Bump cocoon from 1.2.11 to 1.2.14 
Bumps [cocoon](https://github.com/nathanvda/cocoon) from 1.2.11 to 1.2.14.
- [Release notes](https://github.com/nathanvda/cocoon/releases)
- [Changelog](https://github.com/nathanvda/cocoon/blob/master/History.md)
- [Commits](https://github.com/nathanvda/cocoon/compare/v1.2.11...v1.2.14)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-08-14 10:41:23 +00:00
Javier Martín
b8894eac70 Merge pull request #3699 from consul/upgrade_turbolinks 
Bump turbolinks to 5.2.1
 2020-08-12 14:34:19 +02:00
Javi Martín
44f6d43212 Bump mdl from 0.5.0 to 0.10.0 
This contains a security fix since we're upgrading kramdown.
 2020-08-11 12:13:17 +02:00
dependabot-preview[bot]
9c54825d3b Bump acts-as-taggable-on from 5.0.0 to 6.5.0 
Bumps [acts-as-taggable-on](https://github.com/mbleigh/acts-as-taggable-on) from 5.0.0 to 6.5.0.
- [Release notes](https://github.com/mbleigh/acts-as-taggable-on/releases)
- [Changelog](https://github.com/mbleigh/acts-as-taggable-on/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mbleigh/acts-as-taggable-on/compare/v5.0.0...v6.5.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-08-10 09:53:52 +00:00
Javier Martín
b2a07121e3 Merge pull request #4035 from consul/dependabot/bundler/geocoder-1.6.3 
[Security] Bump geocoder from 1.4.5 to 1.6.3
 2020-08-08 18:42:18 +02:00
Javi Martín
7b96180a76 Upgrade Turbolinks to version 5.2.1 
We didn't upgrade Turbolinks when we upgraded to Rails 5 so we didn't
upgrade too many things at the same time, and postponed it... until now
:).

Note upgrading Turbolinks fixes an issue with foundation's sticky when
using the browser's back and forward buttons. We're adding tests for
these scenarios.

Co-authored-by: Senén Rodero Rodríguez <senenrodero@gmail.com>
 2020-08-05 14:10:22 +02:00
Javi Martín
9318c4f1e9 Bump pg_search from 2.0.1 to 2.3.0 
Using pg_search 2.0.1 with Rails 5.2 results in deprecation warnings:

DEPRECATION WARNING: Dangerous query method (method whose arguments used
as raw SQL) called with non-attribute argument(s):
"pg_search_978c2f8941354cf552831b.rank DESC, \"tags\".\"id\" ASC".
Non-attribute arguments will be disallowed in Rails 6.0. This method
should not be called with user-provided values, such as request
parameters or model attributes. Known-safe values can be passed by
wrapping them in Arel.sql().

We're not upgrading to the latest pg_search because it only supports
ActiveRecord >= 5.2.
 2020-07-14 13:16:08 +02:00
Javier Martín
11a1fa1b1d Merge pull request #4042 from consul/dependabot/bundler/rack-2.2.3 
[Security] Bump rack from 2.2.2 to 2.2.3
 2020-06-23 19:06:33 +02:00
Javier Martín
21572e704d Merge pull request #4033 from consul/dependabot/bundler/websocket-extensions-0.1.5 
[Security] Bump websocket-extensions from 0.1.4 to 0.1.5
 2020-06-16 17:49:09 +02:00
dependabot-preview[bot]
976f031984 [Security] Bump rack from 2.2.2 to 2.2.3 
Bumps [rack](https://github.com/rack/rack) from 2.2.2 to 2.2.3. **This update includes a security fix.**
- [Release notes](https://github.com/rack/rack/releases)
- [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rack/rack/compare/v2.2.2...2.2.3)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-06-16 12:16:08 +00:00
Javi Martín
199d8ff609 Bump rubocop from 0.75.0 to 0.83.0 
Recent versions introduce the `Layout/SpaceAroundMethodCallOperator`,
which we are going to use. We aren't upgrading to the latest rubocop
version because it conflicts with the version of Capybara we're using
and because it isn't supported by Hound.

Some rules have been renamed:

Layout/IndentAssignment is now Layout/AssignmentIndentation
Layout/IndentHeredoc is now Layout/HeredocIndentation
Layout/LeadingBlankLines is now Layout/LeadingEmptyLines
Layout/Tab is now Layout/IndentationStyle
Layout/TrailingBlankLines is now Layout/TrailingEmptyLines
Lint/StringConversionInInterpolation is now Lint/RedundantStringCoercion
Metrics/LineLength is now Layout/LineLength

Note after upgrading we get a new "offense" in the `StartWith` rule, so
we're changing the code in order to fix it.
 2020-06-16 13:47:38 +02:00
dependabot-preview[bot]
b734732cfd [Security] Bump geocoder from 1.4.5 to 1.6.3 
Bumps [geocoder](https://github.com/alexreisner/geocoder) from 1.4.5 to 1.6.3. **This update includes a security fix.**
- [Release notes](https://github.com/alexreisner/geocoder/releases)
- [Changelog](https://github.com/alexreisner/geocoder/blob/master/CHANGELOG.md)
- [Commits](https://github.com/alexreisner/geocoder/compare/v1.4.5...v1.6.3)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-06-08 15:11:06 +00:00
dependabot-preview[bot]
4b5f518482 [Security] Bump websocket-extensions from 0.1.4 to 0.1.5 
Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-ruby) from 0.1.4 to 0.1.5. **This update includes a security fix.**
- [Release notes](https://github.com/faye/websocket-extensions-ruby/releases)
- [Changelog](https://github.com/faye/websocket-extensions-ruby/blob/master/CHANGELOG.md)
- [Commits](https://github.com/faye/websocket-extensions-ruby/compare/0.1.4...0.1.5)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-06-05 14:36:56 +00:00
dependabot-preview[bot]
eab36f476e [Security] Bump kaminari from 1.1.1 to 1.2.1 
Bumps [kaminari](https://github.com/kaminari/kaminari) from 1.1.1 to 1.2.1. **This update includes a security fix.**
- [Release notes](https://github.com/kaminari/kaminari/releases)
- [Changelog](https://github.com/kaminari/kaminari/blob/master/CHANGELOG.md)
- [Commits](https://github.com/kaminari/kaminari/compare/v1.1.1...v1.2.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-05-28 21:14:42 +00:00
dependabot-preview[bot]
8e36fab5ad [Security] Bump puma from 4.3.3 to 4.3.5 
Bumps [puma](https://github.com/puma/puma) from 4.3.3 to 4.3.5. **This update includes security fixes.**
- [Release notes](https://github.com/puma/puma/releases)
- [Changelog](https://github.com/puma/puma/blob/master/History.md)
- [Commits](https://github.com/puma/puma/commits)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-05-26 16:39:43 +00:00
Javi Martín
59b625a5f9 Simplify chromedriver installation with webdrivers 
This gem will automatically install chromedriver based on the installed
version of Chrome/Chromium.
 2020-05-25 15:50:35 +02:00
Javi Martín
f89bf0c52c Bump initialjs-rails from 0.2.0.5 to 0.2.0.8 
Version 0.2.0.5 was causing comments to have invalid HTML because the
avatars had `<img>` tags with an empty `src` attribute.
 2020-05-12 23:57:57 +02:00
Javi Martín
e316ad9c96 Bump byebug to version 11.1.1 
Rails 5.1 updated the `method_source` dependency, which is incompatible
with pry 0.12.x (which some developers are using), and upgrading pry and
pry-byebug requires a more recent version of byebug.
 2020-04-24 15:43:54 +02:00
Javi Martín
1118c732f1 Bump acts-as-taggable-on to 6.0.0 
Rails 5.1 introduced certain changes in the way a record is touched when
the counter cache option is enabled in a belongs to association.

We need to upgrade acts-as-taggable-on so it keeps changing the
`updated_at` attribute when a new tag is added to a record.

Note we now need to reload the records in some cases to get the
`context_tag_list` method to return what we expect. Methods like
`context_tags` however work properly with no need to reload the record.
 2020-04-23 18:49:43 +02:00
Javi Martín
31fa6b8bde Upgrade Rails to 5.1 
Note we need to upgrade the bullet gem, although another option would be
to remove it completely.

Now we don't need the rubocop rules for deprecated methods, since using
them will raise an error and we'll be notified immediately.
 2020-04-23 18:49:43 +02:00
Javier Martín
7212f6d701 Merge pull request #3788 from consul/dependabot/bundler/capybara-3.29.0 
Bump capybara from 2.17.0 to 3.29.0
 2020-04-06 20:34:37 +02:00
dependabot-preview[bot]
781188758a Bump capybara from 2.17.0 to 3.29.0 
Bumps [capybara](https://github.com/teamcapybara/capybara) from 2.17.0 to 3.29.0.
- [Release notes](https://github.com/teamcapybara/capybara/releases)
- [Changelog](https://github.com/teamcapybara/capybara/blob/master/History.md)
- [Commits](https://github.com/teamcapybara/capybara/compare/2.17.0...3.29.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-04-06 20:11:44 +02:00
dependabot-preview[bot]
73cdc60ed7 [Security] Bump json from 2.1.0 to 2.3.0 
Bumps [json](https://github.com/flori/json) from 2.1.0 to 2.3.0. **This update includes a security fix.**
- [Release notes](https://github.com/flori/json/releases)
- [Changelog](https://github.com/flori/json/blob/master/CHANGES.md)
- [Commits](https://github.com/flori/json/compare/v2.1.0...v2.3.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-03-19 16:12:36 +00:00
dependabot-preview[bot]
2fccacfb10 [Security] Bump user_agent_parser from 2.4.1 to 2.6.0 
Bumps [user_agent_parser](https://github.com/ua-parser/uap-ruby) from 2.4.1 to 2.6.0. **This update includes a security fix.**
- [Release notes](https://github.com/ua-parser/uap-ruby/releases)
- [Commits](https://github.com/ua-parser/uap-ruby/compare/v2.4.1...v2.6.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-03-10 19:48:29 +01:00
dependabot-preview[bot]
41777c93e6 [Security] Bump puma from 4.3.1 to 4.3.3 
Bumps [puma](https://github.com/puma/puma) from 4.3.1 to 4.3.3. **This update includes security fixes.**
- [Release notes](https://github.com/puma/puma/releases)
- [Changelog](https://github.com/puma/puma/blob/master/History.md)
- [Commits](https://github.com/puma/puma/compare/v4.3.1...v4.3.3)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-03-01 22:55:54 +00:00
dependabot-preview[bot]
2b0450ef4f [Security] Bump nokogiri from 1.10.7 to 1.10.8 
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.10.7 to 1.10.8. **This update includes a security fix.**
- [Release notes](https://github.com/sparklemotion/nokogiri/releases)
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/master/CHANGELOG.md)
- [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.10.7...v1.10.8)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-02-24 19:43:53 +00:00
Javier Martín
9bbed55d20 Merge pull request #3840 from consul/omniauth_csrf 
Add CSRF protection to Omniauth requests
 2020-01-28 12:52:17 +01:00
dependabot-preview[bot]
58071fd66b Bump foundation-rails from 6.4.3.0 to 6.6.1.0 
Bumps [foundation-rails](https://get.foundation) from 6.4.3.0 to 6.6.1.0.

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-01-18 10:09:00 +00:00
Alberto
34c75fec4b Merge pull request #3606 from consul/fontawesome 
Add Font Awesome icons
 2020-01-18 11:07:03 +01:00
dependabot-preview[bot]
81883ad89d [Security] Bump rack from 2.0.7 to 2.0.8 
Bumps [rack](https://github.com/rack/rack) from 2.0.7 to 2.0.8. **This update includes a security fix.**
- [Release notes](https://github.com/rack/rack/releases)
- [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rack/rack/compare/2.0.7...2.0.8)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-01-17 15:46:48 +00:00
dependabot-preview[bot]
a1d8dd0966 [Security] Bump puma from 4.3.0 to 4.3.1 
Bumps [puma](https://github.com/puma/puma) from 4.3.0 to 4.3.1. **This update includes a security fix.**
- [Release notes](https://github.com/puma/puma/releases)
- [Changelog](https://github.com/puma/puma/blob/master/History.md)
- [Commits](https://github.com/puma/puma/compare/v4.3.0...v4.3.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-12-05 19:39:57 +00:00
Javi Martín
92ea3c3d43 Bump knapsack_pro from 1.1.0 to 1.15.0 2019-12-03 14:11:19 +01:00