Skip to content

Bump sprockets from 3.7.2 to 4.0.2 #948

New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 18, 2021
Merged

Bump sprockets from 3.7.2 to 4.0.2 #948

merged 1 commit into from
Jul 18, 2021

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 27, 2021
edited
Loading

Bumps sprockets from 3.7.2 to 4.0.2.

Changelog

Sourced from sprockets's changelog.

4.0.2

  • Fix etag and digest path compilation that were generating string with invalid digest since 4.0.1.

4.0.1

  • Fix for Ruby 2.7 keyword arguments warning in base.rb. #660
  • Fix for when x_sprockets_linecount is missing from a source map.
  • Fix subresource integrity to match the digest of the asset.

4.0.0

  • Fixes for Ruby 2.7 keyword arguments warnings #625
  • Manifest files are sorted alphabetically #626

4.0.0.beta10

4.0.0.beta9

  • Minimum Ruby version for Sprockets 4 is now 2.5+ which matches minimum ruby verision of Rails #604
  • Fix threading bug introduced in Sprockets 4 #603
  • Warn when two potential manifest files exist. #560

4.0.0.beta8

4.0.0.beta7

  • Fix a year long bug that caused Sprockets::FileNotFound errors when the asset was present #547
  • Raise an error when two assets such as foo.js and foo.js.erb would produce the same output artifact (foo.js) [Bump ruby-prof from 1.0.0 to 1.1.0 #549 #530]
  • Process *.jst.eco.erb files with ERBProcessor

4.0.0.beta6

  • Fix source map line offsets #515
  • Return a 400 Bad Request when the path encoding is invalid. #514

4.0.0.beta5

  • Reduce string allocations
  • Source map metadata uses compressed form specified by the source map v3 spec. #402 [BREAKING]
  • Generate index maps when decoding source maps isn't necessary. #402
  • Remove fingerprints from source map files. #402

4.0.0.beta4

  • Changing the version now busts the digest of all assets #404

... (truncated)

Commits
  • 8fc492a Merge pull request #685 from matteeyah/master
  • c995430 Use character for #delete_prefix instead of RegEx
  • 53efbb8 Fix rubocop violation
  • 9d1902b Only digest the environment version if it is not blank
  • 97e2ac6 Prepare to 4.0.2
  • b698a1a Digest the environment and digest before packing the hexdigest
  • 841ddbe Test with Ruby 2.7
  • ac399e5 Prepare to 4.0.1
  • 7f64817 Make sure the digest path changes when the environment changes
  • 0bcb8ae No need to call self here
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added the Tech debt label May 27, 2021
@dependabot dependabot bot force-pushed the dependabot/bundler/sprockets-4.0.2 branch from 6926736 to 35c2b03 Compare May 27, 2021 09:29
@dependabot dependabot bot force-pushed the dependabot/bundler/sprockets-4.0.2 branch 2 times, most recently from 408ed67 to 8c84c5e Compare June 18, 2021 07:42
@dependabot
Bump sprockets from 3.7.2 to 4.0.2
4b1e07b 
Bumps [sprockets](https://github.com/rails/sprockets) from 3.7.2 to 4.0.2.
- [Release notes](https://github.com/rails/sprockets/releases)
- [Changelog](https://github.com/rails/sprockets/blob/master/CHANGELOG.md)
- [Commits](rails/sprockets@v3.7.2...v4.0.2)

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/bundler/sprockets-4.0.2 branch from 8c84c5e to 4b1e07b Compare July 18, 2021 06:21
@drusepth drusepth merged commit fb40fa4 into master Jul 18, 2021
@dependabot dependabot bot deleted the dependabot/bundler/sprockets-4.0.2 branch July 18, 2021 06:38
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
Tech debt
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@drusepth