Update dependency sinatra to v3 (main) - autoclosed

[mend-for-github-com]

This PR contains the following updates:

Package	Update	Change
sinatra (source, changelog)	major	2.0.8.1 -> 3.0.4

By merging this PR, the issue #4 will be automatically resolved and closed:

Severity	CVSS Score	CVE	Reachability
High	8.8	CVE-2022-45442

---

Release Notes

sinatra/sinatra (sinatra)

v3.0.4

Compare Source

• Fix: Escape filename in the Content-Disposition header. #​1841 by Kunpei Sakai

v3.0.3

Compare Source

• Fix: fixed ReDoS for Rack::Protection::IPSpoofing. #​1823 by @​ooooooo-q

v3.0.2

Compare Source

• New: Add Haml 6 support. #​1820 by Jordan Owens

v3.0.1

Compare Source

• Fix: Revert removal of rack-protection.rb. #​1814 by Olle Jonsson

• Fix: Revert change to server start and stop messaging by using Kernel#warn. Renamed internal warn method warn_for_deprecation. #​1818 by Jordan Owens

v3.0.0

Compare Source

• New: Add Falcon support. #​1794 by Samuel Williams and @​horaciob

• New: Add AES GCM encryption support for session cookies. [#​1324] (https://github.com/sinatra/sinatra/pull/1324) by Michael Coyne

• Deprecated: Sinatra Reloader will be removed in the next major release.

• Fix: Internal Sinatra errors now extend Sinatra::Error. This fixes #​1204 and #​1518. bda8c29d by Jordan Owens

• Fix: Preserve query param value if named route param nil. #​1676 by Jordan Owens

• Require Ruby 2.6 as minimum Ruby version. #​1699 by Eloy Pérez

• Breaking change: Remove support for the Stylus template engine. #​1697 by Eloy Pérez

• Breaking change: Remove support for the erubis template engine. #​1761 by Eloy Pérez

• Breaking change: Remove support for the textile template engine. #​1766 by Eloy Pérez

• Breaking change: Remove support for SASS as a template engine. #​1768 by Eloy Pérez

• Breaking change: Remove support for Wlang as a template engine. #​1780 by Eloy Pérez

• Breaking change: Remove support for CoffeeScript as a template engine. #​1790 by Eloy Pérez

• Breaking change: Remove support for Mediawiki as a template engine. #​1791 by Eloy Pérez

• Breaking change: Remove support for Creole as a template engine. #​1792 by Eloy Pérez

• Breaking change: Remove support for Radius as a template engine. #​1793 by Eloy Pérez

• Breaking change: Remove support for the defunct Less templating library. See #​1716, #​1715 for more discussion and background. d1af2f1e by Olle Jonsson

• Breaking change: Remove Reel integration. 54597502 by Olle Jonsson

• CI: Start testing on Ruby 3.1. 60e221940 and b0fa4bef by Johannes Würbach

• Use Kernel#caller_locations. #​1491 by Julik Tarkhanov

• Docs: Japanese documentation: Add notes about the default_content_type setting. #​1650 by Akifumi Tominaga

• Docs: Polish documentation: Add section about Multithreaded modes and Routes. #​1708 by Patrick Gramatowski

• Docs: Japanese documentation: Make Session section reflect changes done to README.md. #​1731 by @​shu-i-chi

v2.2.4

Compare Source

v2.2.3

Compare Source

• Fix: Escape filename in the Content-Disposition header. #​1841 by Kunpei Sakai

• Fix: fixed ReDoS for Rack::Protection::IPSpoofing. #​1823 by @​ooooooo-q

v2.2.2

Compare Source

• Update mustermann dependency to version 2.

v2.2.1

Compare Source

• Fix JRuby regression by using ruby2_keywords for delegation. #​1750 by Patrik Ragnarsson

• Add JRuby to CI. #​1755 by Karol Bucek

v2.2.0

Compare Source

• Breaking change: Add #select, #reject and #compact methods to Sinatra::IndifferentHash. If hash keys need to be converted to symbols, call #to_h to get a Hash instance first. #​1711 by Olivier Bellone

• Handle EOFError raised by Rack and return Bad Request 400 status. #​1743 by tamazon

• Minor refactors in base.rb. #​1640 by ceclinux

• Add escaping to the static 404 page. #​1645 by Chris Gavin

• Remove detect_rack_handler method. #​1652 by ceclinux

• Respect content type set in superclass before filter. Fixes #​1647 #​1649 by Jordan Owens

• Revert "Use prepend instead of include for helpers. #​1662 by namusyaka

• Fix usage of inherited Sinatra::Base classes keyword arguments. Fixes #​1669 #​1670 by Cadu Ribeiro

• Reduce RDoc generation time by not including every README. Fixes #​1578 #​1671 by Eloy Pérez

• Add support for per form csrf tokens. Fixes #​1616 #​1653 by Jordan Owens

• Update MAINTENANCE.md with the stable branch status. #​1681 by Fredrik Rubensson

• Validate expanded path matches public_dir when serving static files. #​1683 by cji-stripe

• Fix Delegator to pass keyword arguments for Ruby 3.0. #​1684 by andrewtblake

• Fix use with keyword arguments for Ruby 3.0. #​1701 by Robin Wallin

• Fix memory leaks for proc template. Fixes #​1704 #​1719 by Slevin

• Remove unnecessary test_files from the gemspec. #​1712 by Masataka Pocke Kuwabara

• Docs: Spanish documentation: Update README.es.md with removal of Thin. #​1630 by Espartaco Palma

• Docs: German documentation: Fixed typos in German README.md. #​1648 by Juri

• Docs: Japanese documentation: Update README.ja.md with removal of Thin. #​1629 by Ryuichi KAWAMATA

• Docs: English documentation: Various minor fixes to README.md. #​1663 by Yanis Zafirópulos

• Docs: English documentation: Document when dump_errors is enabled. Fixes #​1664 #​1665 by Patrik Ragnarsson

• Docs: Brazilian Portuguese documentation: Update README.pt-br.md with translation fixes. #​1668 by Vitor Oliveira

CI

• Use latest JRuby 9.2.16.0 on CI. #​1682 by Olle Jonsson

• Switch CI from travis to GitHub Actions. #​1691 by namusyaka

• Skip the Slack action if secrets.SLACK_WEBHOOK is not set. #​1705 by Robin Wallin

• Small CI improvements. #​1703 by Robin Wallin

• Drop auto-generated boilerplate comments from CI configuration file. #​1728 by Olle Jonsson

sinatra-contrib

• Do not raise when key is an enumerable. #​1619 by Ulysse Buonomo

Rack protection

• Fix broken origin_whitelist option. Fixes #​1641 #​1642 by Takeshi YASHIRO

v2.1.0

Compare Source

• Fix additional Ruby 2.7 keyword warnings #​1586 by Stefan Sundin

• Drop Ruby 2.2 support #​1455 by Eloy Pérez

• Add Rack::Protection::ReferrerPolicy #​1291 by Stefan Sundin

• Add default_content_type setting. Fixes #​1238 #​1239 by Mike Pastore

• Allow set :<engine> in sinatra-namespace #​1255 by Christian Höppner

• Use prepend instead of include for helpers. Fixes #​1213 #​1214 by Mike Pastore

• Fix issue with passed routes and provides Fixes #​1095 #​1606 by Mike Pastore, Jordan Owens

• Add QuietLogger that excludes paths from Rack::CommonLogger 1250 by Christoph Wagner

• Sinatra::Contrib dependency updates. Fixes #​1207 #​1411 by Mike Pastore

• Allow CSP to fallback to default-src. Fixes #​1484 #​1490 by Jordan Owens

• Replace origin_whitelist with permitted_origins. Closes #​1620 #​1625 by rhymes

• Use Rainbows instead of thin for async/stream features. Closes #​1624 #​1627 by Ryuichi KAWAMATA

• Enable EscapedParams if passed via settings. Closes #​1615 #​1632 by Anders Bälter

• Support for parameters in mime types. Fixes #​1141 by John Hope

• Handle null byte when serving static files #​1574 by Kush Fanikiso

• Improve development support and documentation and source code by Olle Jonsson, Pierre-Adrien Buisson, Shota Iguchi

---

• If you want to rebase/retry this PR, check this box

[mend-for-github-com]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: Gemfile.lock

/opt/containerbase/tools/bundler/2.1.4/3.4.1/gems/bundler-2.1.4/lib/bundler/vendor/thor/lib/thor/error.rb:105:in '<class:Thor>': uninitialized constant DidYouMean::SPELL_CHECKERS (NameError)

    DidYouMean::SPELL_CHECKERS.merge!(
              ^^^^^^^^^^^^^^^^
Did you mean?  DidYouMean::SpellChecker
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/gems/bundler-2.1.4/lib/bundler/vendor/thor/lib/thor/error.rb:1:in '<top (required)>'
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/gems/bundler-2.1.4/lib/bundler/vendor/thor/lib/thor/base.rb:3:in 'Kernel#require_relative'
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/gems/bundler-2.1.4/lib/bundler/vendor/thor/lib/thor/base.rb:3:in '<top (required)>'
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/gems/bundler-2.1.4/lib/bundler/vendor/thor/lib/thor.rb:2:in 'Kernel#require_relative'
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/gems/bundler-2.1.4/lib/bundler/vendor/thor/lib/thor.rb:2:in '<top (required)>'
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/gems/bundler-2.1.4/lib/bundler/vendored_thor.rb:8:in 'Kernel#require_relative'
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/gems/bundler-2.1.4/lib/bundler/vendored_thor.rb:8:in '<top (required)>'
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/gems/bundler-2.1.4/lib/bundler/friendly_errors.rb:3:in 'Kernel#require_relative'
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/gems/bundler-2.1.4/lib/bundler/friendly_errors.rb:3:in '<top (required)>'
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/gems/bundler-2.1.4/exe/bundle:29:in 'Kernel#require_relative'
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/gems/bundler-2.1.4/exe/bundle:29:in '<top (required)>'
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/gems/bundler-2.1.4/exe/bundler:4:in 'Kernel#load'
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/gems/bundler-2.1.4/exe/bundler:4:in '<top (required)>'
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/bin/bundler:25:in 'Kernel#load'
	from /opt/containerbase/tools/bundler/2.1.4/3.4.1/bin/bundler:25:in '<main>'