Bump sinatra, sprockets, rails, blazer, azure-storage-blob, faraday_middleware, gds-sso, kaminari, sidekiq, overcommit, rubocop, cucumber-rails, site_prism, factory_bot_rails and rspec

[dependabot]

Bumps sinatra, sprockets, rails, blazer, azure-storage-blob, faraday_middleware, gds-sso, kaminari, sidekiq, overcommit, rubocop, cucumber-rails, site_prism, factory_bot_rails and rspec. These dependencies needed to be updated together.
Updates sinatra from 2.2.0 to 4.1.0

Changelog

Sourced from sinatra's changelog.

4.1.0 / 2024-11-18

• New: Add host_authorization setting (#2053)
  • Defaults to .localhost, .test and any IP address in development mode.
  • Security: addresses CVE-2024-21510.
• Fix: Return an instance of Sinatra::IndifferentHash when calling #except (#2044)
• Fix: Address warning from URI for Ruby 3.4 (#2060)
• Fix: rackup no longer depends on WEBrick, recommend Puma instead (4a558503)
• Fix: Zeitwerk 2.7.0+ compatibility (#2050)
• Fix: Address warning about Hash construction for Ruby 3.4 (#2028)
• Fix: Declare missing dependencies for Ruby 3.5 (#2032)
• Fix: Compatibility with --enable-frozen-string-literal (#2033)
• Fix: Rack 3.1 compatibility (#2035)
  • Don't depend on Rack::Logger
  • Don't delete content-length header when Rack::Files is used

4.0.0. / 2024-01-19

• New: Add support for Rack 3 (#1857)

  • Note: you may want to read the [Rack 3 Upgrade Guide]

• Require Ruby 2.7.8 as minimum Ruby version (#1993)

• Breaking change: Drop support for Rack 2 (#1857)

  • Note: when using Sinatra to start the web server, you now need the rackup gem installed

• Breaking change: Remove the IndifferentHash initializer (#1982)

• Breaking change: Disable session_hijacking protection by default (#1984)

• Breaking change: Remove Rack::Protection::EncryptedCookie (#1989)

  • Note: cookies are still encrypted (by [Rack::Session::Cookie])

#1857: sinatra/sinatra#1857 #1993: sinatra/sinatra#1993 #1982: sinatra/sinatra#1982 #1984: sinatra/sinatra#1984 #1989: sinatra/sinatra#1989 [Rack::Session::Cookie]: https://github.com/rack/rack-session [Rack 3 Upgrade Guide]: https://github.com/rack/rack/blob/main/UPGRADE-GUIDE.md

3.2.0 / 2023-12-29

• New: Add #except method to Sinatra::IndifferentHash (#1940)

• New: Use Exception#detailed_message to show backtrace (#1952)

• New: Add Sinatra::HamlHelpers to sinatra-contrib (#1960)

• Fix: Add base64 to rack-protection runtime dependencies (#1946)

... (truncated)

Commits

• 73f3291 4.1.0 release (#2063)
• cd3e00d Add HostAuthorization rack-protection middleware (#2053)
• 8c4cd0b Return an instance of Sinatra::IndifferentHash when calling #except (#2044)
• 3c888f7 Address URI depreciation (#2060)
• 0d33ef8 CI: don't test falcon on Ruby 2.7
• 4a55850 Remove WEBrick
• 955682e CI: unset RUBYOPT for JRuby jobs
• 2d0b347 Support Zeitwerk 2.7.0+ (#2050)
• 6569ff8 Revert "CI: document the console gem issue"
• 77df658 CI: document the console gem issue
• Additional commits viewable in compare view

Updates sprockets from 3.7.2 to 4.2.1

Release notes

Sourced from sprockets's releases.

4.2.1

What's Changed

• Fix .jpeg precompile issue by @​ghiculescu in rails/sprockets#781
• CI against Ruby 3.2 [changelog skip] by @​amatsuda in rails/sprockets#777
• Fix header casing compatibility with Rails 7 by @​skipkayhil in rails/sprockets#790
• fix: set application/css-sourcemap+json default charset to unicode by @​chadlwilson in rails/sprockets#764

New Contributors

• @​ghiculescu made their first contribution in rails/sprockets#781
• @​skipkayhil made their first contribution in rails/sprockets#791
• @​jpbalarini made their first contribution in rails/sprockets#768
• @​chadlwilson made their first contribution in rails/sprockets#764

Full Changelog: rails/sprockets@v4.2.0...v4.2.1

4.2.0

What's Changed

• Fix class name in sample code by @​ursm in rails/sprockets#751
• fix: grammar by @​benkoshy in rails/sprockets#756
• fix typo by @​benkoshy in rails/sprockets#757
• Update Link by @​benkoshy in rails/sprockets#754
• Rack 3 support by @​lsylvester in rails/sprockets#758
• Make Sprockets::Utils.module_include thread safe on JRuby by @​ntkme in rails/sprockets#759
• Fix thread safety of Sprockets::CachedEnvironment and Sprockets::Cache::MemoryStore by @​eregon in rails/sprockets#771

New Contributors

• @​ursm made their first contribution in rails/sprockets#751
• @​benkoshy made their first contribution in rails/sprockets#756
• @​ntkme made their first contribution in rails/sprockets#759

Full Changelog: rails/sprockets@v4.1.1...v4.2.0

v4.1.1

• Fix Sprockets::Server to return response headers to compatible with with Rack::Lint 2.0.

Full Changelog: rails/sprockets@v4.1.0...v4.1.1

v4.1.0

What's Changed

• Lowercase all response headers by @​amatsuda in rails/sprockets#744
• Ensure compatibility with esbuilds' base32 digests by @​dhh in rails/sprockets#726
• cache nil values in the CachedEnvironment by @​lsylvester in rails/sprockets#723
• Explain configuration for Rails engines by @​pjmorse in rails/sprockets#694
• Get rid off undefined method `start_with?' for nil:NilClass error by @​dakolech in rails/sprockets#684
• Added support for ERB in webmanifest files by @​mashedkeyboard in rails/sprockets#608
• Set application/js-sourcemap+json charset to unicode by @​andresakata in rails/sprockets#669
• Adding directive depends_on_directory by @​jessecollier in rails/sprockets#668
• Fix cache key for coffee script processor by @​code-constructor in rails/sprockets#670
• Add text/ejs to register_transformer_suffix for ERBProcessor by @​cgunther in rails/sprockets#674

... (truncated)

Changelog

Sourced from sprockets's changelog.

4.2.1

• Fix for precompile issues when multiple extensions map to the same MIME type (eg. .jpeg / .jpg). #781
• Fix application/css-sourcemap+json charset #764
• Fix compatibility with Rack 2 applications. #790

4.2.0

• Rack 3 compatibility. #758
• Fix thread safety of Sprockets::CachedEnvironment and Sprockets::Cache::MemoryStore. #771
• Add support for Rack 3.0. Headers set by sprockets will now be lower case. #758
• Make Sprockets::Utils.module_include thread safe on JRuby. #759
• Fix typo in asset.rb file. #768

4.1.1

• Fix Sprockets::Server to return response headers to be compatible with Rack::Lint 2.0.

4.1.0

• Allow age to be altered in asset:clean rake task.
• Fix Sprockets::Server to return lower-cased response headers to comply with Rack::Lint 3.0. #744
• Adding new directive depend_on_directory #668
• Fix application/js-sourcemap+json charset #669
• Fix CachedEnvironment caching nil values #723
• Process *.jst.ejs.erb files with ERBProcessor #674
• Fix cache key for coffee script processor to be dependent on the filename #670

4.0.3

• Fix Manifest#find yielding from a Promise causing issue on Ruby 3.1.0-dev. #720
• Better detect the ERB version to avoid deprecation warnings. #719
• Allow assets already fingerprinted to be served through Sprockets::Server
• Do not fingerprint files that already contain a valid digest in their name
• Remove remaining support for Ruby < 2.4.#672

4.0.2

• Fix etag and digest path compilation that were generating string with invalid digest since 4.0.1.

4.0.1

• Fix for Ruby 2.7 keyword arguments warning in base.rb. #660
• Fix for when x_sprockets_linecount is missing from a source map.
• Fix subresource integrity to match the digest of the asset.

4.0.0

• Fixes for Ruby 2.7 keyword arguments warnings #625
• Manifest files are sorted alphabetically #626

... (truncated)

Commits

• 5b040f3 Prepare for 4.2.1
• 0a5879d Remove check CHANGELOG action
• 8ee21cf Use Ruby LSP instead of rebornix.Ruby
• 5d26375 Merge pull request #764 from chadlwilson/fix-css-sourcemap-default-charset
• 572235a Merge branch 'main' into fix-css-sourcemap-default-charset
• 42f7d5e Merge pull request #790 from skipkayhil/hm-fix-rails-7-compat
• d0de178 Merge pull request #768 from jpbalarini/patch-1
• 5d795a7 Fix header casing compatibility with Rails 7
• 6554b6d Merge pull request #791 from skipkayhil/hm-fix-minitest-casing
• 4be779f Fix Minitest constant name in tests
• Additional commits viewable in compare view

Updates rails from 6.1.7.9 to 7.2.2

Release notes

Sourced from rails's releases.

7.2.2

Active Support

• Include options when instrumenting ActiveSupport::Cache::Store#delete and ActiveSupport::Cache::Store#delete_multi.

  Adam Renberg Tamm

• Print test names when running rails test -v for parallel tests.

  John Hawthorn, Abeid Ahmed

Active Model

• Fix regression in alias_attribute to work with user defined methods.

  alias_attribute would wrongly assume the attribute accessor was generated by Active Model.

  class Person
    include ActiveModel::AttributeMethods
  define_attribute_methods :name
  attr_accessor :name
  alias_attribute :full_name, :name
  end
  person.full_name # => NoMethodError: undefined method `attribute' for an instance of Person

  Jean Boussier

Active Record

• Fix support for query_cache: false in database.yml.

  query_cache: false would no longer entirely disable the Active Record query cache.

  zzak

• Set .attributes_for_inspect to :all by default.

  For new applications it is set to [:id] in config/environment/production.rb.

  In the console all the attributes are always shown.

  Andrew Novoselac

... (truncated)

Commits

• d0dcb8f Preparing for 7.2.2 release
• 9f24f75 Add yarn.lock allowed dirty files
• ad485aa Merge pull request #52951 from Ridhwana/Ridhwana/active-record-validations [c...
• f6916e7 Merge pull request #53494 from zzak/re-53492
• a7858b5 Merge pull request #53472 from p8/activerecord/improve-attributes-for-inspect...
• e6a8acd Merge pull request #53475 from p8/activerecord/show-all-attributes-in-console
• 91aac4a Merge pull request #53484 from zzak/query_cache-config-disable
• fe5f624 Better wording for config.action_dispatch.show_exceptions [ci-skip] (#53483)
• 15872b4 Merge pull request #53473 from p8/activerecord/update-attributes-for-inspect-...
• e1cccdc Add CHANGELOG entry for 170e6c178b7358a87a7304bdf80273e0b153f6fd
• Additional commits viewable in compare view

Updates blazer from 9fa50f0 to 3.0.1

Commits

• See full diff in compare view

Updates azure-storage-blob from 1.1.0 to 2.0.3

Release notes

Sourced from azure-storage-blob's releases.

Storage Client Library for Table 2.0.3

2021.10 - version 2.0.3

• Allowed to use any version 1.x of Nokogiri for Ruby version later than or equal to 2.5.0.

Storage Client Library for Queue 2.0.3

2021.10 - version 2.0.3

• Allowed to use any version 1.x of Nokogiri for Ruby version later than or equal to 2.5.0.

Storage Client Library for File 2.0.3

2021.10 - version 2.0.3

• Allowed to use any version 1.x of Nokogiri for Ruby version later than or equal to 2.5.0.

Storage Client Library for Common 2.0.3

2021.10 - version 2.0.3

• Allowed to use any version 1.x of Nokogiri for Ruby version later than or equal to 2.5.0.
• Fixed handling of invalid connection strings

Storage Client Library for Table 2.0.2

2020.8 - version 2.0.2

• Bumped up Nokogiri version to 1.11.0.rc2 for Ruby version later than or equal to 2.4.0.

Storage Client Library for Queue 2.0.2

2020.8 - version 2.0.2

• Bumped up Nokogiri version to 1.11.0.rc2 for Ruby version later than or equal to 2.4.0.

Storage Client Library for File 2.0.2

2020.8 - version 2.0.2

• Bumped up Nokogiri version to 1.11.0.rc2 for Ruby version later than or equal to 2.4.0.

Storage Client Library for Common 2.0.2

2020.8 - version 2.0.2

• Bumped up Nokogiri version to 1.11.0.rc2 for Ruby version later than or equal to 2.4.0.
• Changed to use persistent HTTP client to speed up requests #168.
• Explicitly requiring tempfile to avoid runtime errors.

Storage Client Library for Blob 2.0.2

2021.10 - version 2.0.2

• Allowed to use any version 1.x of Nokogiri for Ruby version later than or equal to 2.5.0.
• Added access tier information and creation time of blob in response.

Storage Client Library for Table 2.0.1

2020.3 - version 2.0.1

• Resolved the issue where a wrong version of 'azure-storage-common' is depended on.

Storage Client Library for Queue 2.0.1

2020.3 - version 2.0.1

• Resolved the issue where a wrong version of 'azure-storage-common' is depended on.

Storage Client Library for File 2.0.1

2020.3 - version 2.0.1

... (truncated)

Commits

• See full diff in compare view

Updates faraday_middleware from 0.12.2 to 1.2.1

Release notes

Sourced from faraday_middleware's releases.

v1.2.1

What's Changed

Fixes 🐞

• fix: drop unused addressable gem by @​olleolleolle in lostisland/faraday_middleware#283
• Don't register the request/response json middleware for Faraday 1.10+ by @​iMacTia in lostisland/faraday_middleware#288

Misc/Docs 📄

• Add Ruby 3.1 to CI by @​petergoldstein in lostisland/faraday_middleware#278
• Add link to awesome-faraday into README by @​AlexWayfer in lostisland/faraday_middleware#281
• correction in README.md by @​Vandit1604 in lostisland/faraday_middleware#284
• Adds Ruby 3.2 to CI. by @​petergoldstein in lostisland/faraday_middleware#285
• README: use GitHub Actions-based badge by @​olleolleolle in lostisland/faraday_middleware#289
• CI: Trust ruby/setup-ruby to install gems by @​olleolleolle in lostisland/faraday_middleware#290
• CI: add Ruby 3.3 to test matrix by @​olleolleolle in lostisland/faraday_middleware#291
• Ci drop yard junk by @​olleolleolle in lostisland/faraday_middleware#292

New Contributors

• @​petergoldstein made their first contribution in lostisland/faraday_middleware#278
• @​AlexWayfer made their first contribution in lostisland/faraday_middleware#281
• @​Vandit1604 made their first contribution in lostisland/faraday_middleware#284

Full Changelog: lostisland/faraday_middleware@v1.2.0...v1.2.1

v1.2.0

What's Changed

• Allow users to define its own set of Cacheable Status Code when using Faraday Middleware Cache by @​Physium in lostisland/faraday_middleware#275

New Contributors

• @​Physium made their first contribution in lostisland/faraday_middleware#275

Full Changelog: lostisland/faraday_middleware@v1.1.0...v1.2.0

v1.1.0

Features

• Use wrapped exception in Faraday::ParsingError to improve legibility of the error (#255, @​d-m-u)

Bugs fixed

• Use JSON.generate instead of .dump in request middleware (#266, @​Be-ngt-oH)

Chores and misc

• Add rubocop-package and drop git ls-files in gemspec (#263, @​utkarsh2102)

v1.0.0

This is FaradayMiddleware 1.0 official release 🎉!

This release officially supports Faraday 1.0.

... (truncated)

Commits

• b49e8ec Version bump to 1.2.1
• d0cc061 CI: Rely on --format progress in RuboCop being default
• 7e9783c CI: Drop linting step yard-junk
• d9eab98 README: Use a Retina gem version badge [ci skip]
• 88ed602 Don't register the request/response json middleware for Faraday 1.10+ (#288)
• 8786fb6 CI: use Ruby 2.7 in publish.yml
• 86ef0ae CI: add Ruby 3.3 to test matrix (#291)
• 1866410 CI: Trust ruby/setup-ruby to install gems (#290)
• c5845c5 README: use GitHub Actions-based badge
• e68ff84 Enable a more recent simplecov
• Additional commits viewable in compare view

Updates gds-sso from 15.0.1 to 19.1.0

Changelog

Sourced from gds-sso's changelog.

19.1.0

• Drop support for Rails 6

• Drop support for Ruby 3.0

• Adds config option that allows apps to change the default behaviour of intercepting 401 requests, by including an initialiser: GDS::SSO.config { |config| config.intercept_401_responses = false }.

• Added AuthorisedUserConstraint class so that consumer apps can easily add permission based constraints.

• Adds deprecation warning for GDS::SSO::ControllerMethods::PermissionDeniedException. If your app uses this you can replace it with GDS::SSO::PermissionDeniedError.

19.0.0

• We no longer set ActiveSupport::Cache::NullStore.new as the default cache. This avoids a deprecation warning when the gem is used in Rails apps.
  • If you're using gds-sso in a Rails app and relying on the Railtie to set the cache then you don't need to do anything
  • If you're using gds-sso and manually setting the cache then you don't need to do anything.
  • If you're using gds-sso outside of a Rails app and you're not explicitly setting the cache then you'll need to configure it before you can use GDS::SSO::BearerToken.locate.

18.1.0

• Enable OAuth2 PKCE extension in the GDS OAuth2 OmniAuth Strategy. The PKCE extension was enabled in Signon in PR 2312.

18.0.0

• Drop support for Ruby 2.7. (#277)
• Relax rubocop-govuk dependency constraint to ~> 4. (#280)

17.1.1

• Update Plek support to allow version 5

17.1.0

• Merge omniauth-gds gem into this codebase, ahead of that gem's retirement.

17.0.0

• Drop support for Ruby 2.6 and Rails 5.
• Permit 2.x versions of oauth2 gem.

16.1.0

• Add allow_other_host: true to redirects, for improved Rails 7 support.

16.0.2

• Upgrade OmniAuth to 2.0, and explicitly allow Get requests #243

16.0.1

• Fix linting issues

... (truncated)

Commits

• e226038 Merge pull request #304 from alphagov/bump-version-19.1.0
• 261ec3a Bump version to 19.1.0
• a9b93d2 Merge pull request #300 from alphagov/add-constraints-and-config-options
• 077e35e Update changelog
• f407c5e Add authorise user constraint system spec
• 1228da6 Re-use authorisation logic in the controller_methods class
• 2fa18d8 Extract the user authorisation logic into a separate class
• 40afea5 Add PermissionDeniedError error class under GDS::SSO namespace
• 41fc5ff Adds authorised user constraint
• 1d03541 Add config for warden to not intercept 401 requests
• Additional commits viewable in compare view

Updates kaminari from 1.2.1 to 1.2.2

Release notes

Sourced from kaminari's releases.

v1.2.2

1.2.2

Enhancements:

• Rails 7 support via dbac7d4 and 07fafc0

Bug Fixes:

• Restored path_to_next_url helper that was accidentally deleted in v1.2.0 #1027 [@​ryym]
• Fixed invalid link tag HTML output from rel_next_prev_link_tags helper #1045 [@​dlackty]
• Fixed Errno::ENOENT error for views generator on Ruby 3 #1050 [@​ar31an]
• Suppress warnings about keyword args on Ruby 2.7 #1053 [@​mishina]

Changelog

Sourced from kaminari's changelog.

1.2.2

Enhancements:

• Rails 7 support via dbac7d4 and 07fafc0

Bug Fixes:

• Restored path_to_next_url helper that was accidentally deleted in v1.2.0 #1027 [@​ryym]
• Fixed invalid link tag HTML output from rel_next_prev_link_tags helper #1045 [@​dlackty]
• Fixed Errno::ENOENT error for views generator on Ruby 3 #1050 [@​ar31an]
• Suppress warnings about keyword args on Ruby 2.7 #1053 [@​mishina]

Commits

• 508caf4 Version 1.2.2
• 5b9d723 Ch-ch-ch-ch-changes
• 51ded9b Changes for Version 1.2.2
• 13956aa This patch has been merged upstream
• aa54fbd Put the monkey-patch in a reusable manner so other kaminari-* gems can use this
• b47a7f8 To avoid validation errors in the tests
• 6786e20 Properly test with the default set of configurations of each Rails versions
• 5a49dab Kaminari supports Ruby 3.1 (trunk)
• 85e9980 ✂️ .x
• 9aeed47 CI against newer jruby
• Additional commits viewable in compare view

Updates sidekiq from 6.5.10 to 7.3.5

Changelog

Sourced from sidekiq's changelog.

7.3.5

• Reimplement retry_all and kill_all API methods to use ZPOPMIN, approximately 30-60% faster. #6481
• Add preload testing binary at examples/testing/sidekiq_boot to verify your Rails app boots correctly with Sidekiq Enterprise's app preloading.
• Fix circular require with ActiveJob adapter #6477
• Fix potential race condition leading to incorrect serialized values for CurrentAttributes #6475
• Restore missing elapsed time when default job logging is disabled

7.3.4

• Fix FrozenError when starting Sidekiq #6470

7.3.3

• Freeze global configuration once boot is complete, to avoid configuration race conditions [#6466, #6465]
• Sidekiq now warns if a job iteration takes longer than the -t timeout setting (defaults to 25 seconds)
• Iteration callbacks now have easy access to job arguments via the arguments method:

def on_stop
  p arguments # => `[123, "string", {"key" => "value"}]`
  id, str, hash = arguments
end

• Iterable jobs can be cancelled via Sidekiq::Client#cancel!:

c = Sidekiq::Client.new
jid = c.push("class" => SomeJob, "args" => [123])
c.cancel!(jid) # => true

• Take over support for ActiveJob's :sidekiq adapter [#6430, fatkodima]
• Ensure CurrentAttributes are in scope when creating batch callbacks #6455
• Add Sidekiq.gem_version API.
• Update Ukranian translations

7.3.2

• Adjust ActiveRecord batch iteration to restart an interrupted batch from the beginning. Each batch should be processed as a single transaction in order to be idempotent. #6405
• Fix typo in Sidekiq::DeadSet#kill #6397
• Fix CSS issue with bottom bar in Web UI #6414

7.3.1

• Don't count job interruptions as failures in metrics #6386

... (truncated)

Commits

• b2b03f0 release
• d34d5c7 Remove irrelevant benchmarks
• 85624d1 Add missing it translations (#6484)
• 7d1bfa3 Restore elapsed time tracking when logging is skipped
• 486ec74 bump
• 6d2466a Rewrite retry_all and kill_all APIs to use ZPOPMIN (#6482)
• 626b4bf Allow footer nav to fill container (#6480)
• 5a78e7c Fix circular require for ActiveJob integration (#6477)
• bd36049 Fix reliable_push leading to incorrect CurrentAttributes, #6475
• fd4d8f4 Dup current attributes on saving (#6475)
• Additional commits viewable in compare view

Updates overcommit from 0.45.0 to 0.64.1

Release notes

Sourced from overcommit's releases.

0.64.1

• Update minimum version of rexml to address CVE-2024-49761

0.64.0

• Add support for stylelint 16+
• Add changelog_uri to gemspec

0.63.0

• Add Sorbet pre-commit hook
• Add RSpec pre-commit hook

0.62.0

• Allow version 5 of childprocess gem dependency

0.61.0

• Allow ReplaceBranch to use skip_if
• Fix local Overcommit file merges with existing .overcommit.yml

0.60.0

• Allow overriding Gemfile.lock location for BundleCheck pre-commit hook
• Fix ReplaceBranch prepare-commit-msg hook to allow trailing spaces
• Add MixFormat pre-commit hook
• Add MixTest pre-push hook
• Allow loading custom local configuration from .local-overcommit.yml
• Handle Psych::DisallowedClass when running YamlSyntax pre-commit hook
• Add support for specifying custom encoding in RailsSchemaUpToDate pre-commit hook

Overcommit 0.59.0

• Add --disable-pending-cops as default flag to RuboCop pre-commit hook to ignore non-existent cops. Requires RuboCop 0.82.0 or newer.
• Fix deprecation warning for Bundler.with_clean_env.
• Fix handling of some kinds of pronto errors in the Pronto hook.
• Fix encoding of process output on Windows.
• Add support for specifying hook type to --run flag.
• Fix message regex parser for Stylelint.
• Fix configuration loading on Ruby 3.1.
• Fix YamlSyntax to support aliases when parsing.
• Fix run output to explicitly flush partial logs.

Overcommit 0.58.0

• Add rexml dependency explicitly to support Ruby 3.0.
• Add DartAnalyzer pre-commit hook to analyze Dart files.
• Add PubTest and FlutterTest pre-push hooks to run pub test and flutter test for Dart projects, respectively.
• Update index-tags script to support scanning only files tracked by Git.
• Fix EsLint pre-commit hook to not report certain false positives.
• Update YamlLint to fail the run instead of warn when errors are detected.
• Update YamlLint parse the line number of output so it is line aware.
• Gracefully handle breaking behavior in upstream Psych gem to support YAML aliases.
• Fix case where git would delete all tracked files when popping stash.

Overcommit 0.57.0

... (truncated)

Changelog

Sourced from overcommit's changelog.

0.64.1

• Update minimum version of rexml to address CVE-2024-49761

0.64.0

• Add support for stylelint 16+
• Add changelog_uri to gemspec

0.63.0

• Add Sorbet pre-commit hook
• Add RSpec pre-commit hook

0.62.0

• Allow version 5 of childprocess gem dependency

0.61.0

• Allow ReplaceBranch to use skip_if
• Fix local Overcommit file merges with existing .overcommit.yml

0.60.0

• Allow overriding Gemfile.lock location for BundleCheck pre-commit hook
• Fix ReplaceBranch prepare-commit-msg hook to allow trailing spaces
• Add MixFormat pre-commit hook
• Add MixTest pre-push hook
• Allow loading custom local configuration from .local-overcommit.yml
• Handle Psych::DisallowedClass when running YamlSyntax pre-commit hook
• Add support for specifying custom encoding in RailsSchemaUpToDate pre-commit hook

0.59.1

• Remove --disable-pending-cops as default flag to RuboCop pre-commit hook.
• Remove special handling of process output on Windows since it broke on Linux.

0.59.0

• Add --disable-pending-cops as default flag to RuboCop pre-commit hook to ignore non-existent cops. Requires RuboCop 0.82.0 or newer.
• Fix deprecation warning for Bundler.with_clean_env.
• Fix handling of some kinds of pronto errors in the Pronto hook.
• Fix encoding of process output on Windows.
• Add support for specifying hook type to --run flag.
• Fix message regex parser for Stylelint.
• Fix configuration loading on Ruby 3.1.
• Fix YamlSyntax to support aliases when parsing.
• Fix run output to explicitly flush partial logs.

... (truncated)

Commits

• eff94a7 Update changelog
• 9825868 Bump rexml to >= 3.3.9 to resolve GHSA-2rxp-v6pw-ch6m (#857)
• 31c83ce Expand tildes(~) for hooksPath (#853)
• 5a3d68e Fix spec compatibility with recent git versions (#854)
• 5ff9d5e Update changelog
• 939d9e6 Cut version 0.64.0 (#852)
• 26e78aa Add changelog_uri to gemspec (#851)
• 0e717f9 Support stylelint 16+, which emits messages on stderr (#848)
• 841954c Add Ruby 3.3 to CI matrix (#849)
• a14ec63 Update README with latest requirements (#845)
• Additional commits viewable in compare view

Updates rubocop from 1.57.1 to 1.68.0

Release notes

Sourced from rubocop's releases.

RuboCop 1.68

New features

• #13050: Add new Style/BitwisePredicate cop. (@​koic)
• #12140: Add new Style/CombinableDefined cop. (@​dvandersluis)
• #12988: Add new Style/AmbiguousEndlessMethodDefinition cop. (@​dvandersluis)
• #11514: Add new Lint/UnescapedBracketInRegexp cop. (@​dvandersluis)
• #13360: Add AllowSteepAnnotation config option to Layout/LeadingCommentSpace. (@​tk0miya)
• #13146: Add new IgnoreDuplicateElseBranch option to Lint/DuplicateBranch. (@​fatkodima)
• #13171: Add new Style/SafeNavigationChainLength cop. (@​fatkodima)
• #13252: Add new Style/KeywordArgumentsMerging cop. (@​fatkodima)

Bug fixes

• #13401: Fix a false negative for Style/RedundantLineContinuation when there is a line continuation at the EOF. (@​koic)
• #13368: Fix an incorrect autocorrect for Naming/BlockForwarding with Style/ExplicitBlockArgument. (@​koic)
• #13391: Fix deserialization of unknown encoding offenses. (@​earlopain)
• #13348: Ensure Style/BlockDelimiters autocorrection does not move other code between the block and comment. (@​dvandersluis)
• #13382: Fix an error during error handling for custom ruby extractors when the extractor is a class. (@​earlopain)
• #13309: Fix a false negative for Lint/UselessAssignment cop when there is a useless assignment followed by a block. (@​pCosta99)
• #13255: Fix false negatives for Style/MapIntoArray when using non-splatted arguments. (@​vlad-pisanov)
• #13356: Fix a false positive for Layout/SpaceBeforeBrackets when there is a dot before []=. (@​earlopain)
• #13365: Fix false positives for Lint/SafeNavigationConsistency when using safe navigation on the LHS with operator method on the RHS of &&. (@​koic)
• #13390: Fix false positives for Style/GuardClause when using a local variable assigned in a conditional expression in a branch. (@​koic)
• #13337: Fix false positives for Style/RedundantLineContinuation when required line continuations for && is used with an assignment after a line break. (@​koic)
• #13387: Fix false positives in Style/RedundantParentheses when parentheses are used around method chain with do...end block in keyword argument. (@​koic)
• #13341:...

  Description has been truncated

  Note
  Automatic rebases have been disabled on this pull request as it has been open for over 30 days.