Sourced from tar's\nchangelog.
\n\n\nChangelog
\n7.0
\n\n
\n- Rewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface
\n- Add tree-shake friendly exports, like\n
\nimport('tar/create')
\nandimport('tar/read-entry')
to get individual functions or\nclasses.- Add
\nchmod
option that defaults to false, and deprecate\nnoChmod
. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.- Add
\nprocessUmask
option to avoid having to call\nprocess.umask()
whenchmod: true
(or\nnoChmod: false
) is\nset.6.2
\n\n
\n- Add support for brotli compression
\n- Add
\nmaxDepth
option to prevent extraction into\nexcessively\ndeep folders.6.1
\n\n
\n- remove dead link to benchmarks (#313)\n(
\n@yetzt
)- add examples/explanation of using tar.t (
\n@isaacs
)- ensure close event is emited after stream has ended (
\n@webark
)- replace deprecated String.prototype.substr() (
\n@CommanderRoot
,\n@lukekarrys
)6.0
\n\n
\n- Drop support for node 6 and 8
\n- fix symlinks and hardlinks on windows being packed with\n
\n\\
-style path targets5.0
\n\n
\n\n- Address unpack race conditions using path reservations
\n- Change large-numbers errors from TypeError to Error
\n- Add
\nTAR_*
error codes- Raise
\nTAR_BAD_ARCHIVE
warning/error when there are no\nvalid\nentries found in an archive- do not treat ignored entries as an invalid archive
\n- drop support for node v4
\n- unpack: conditionally use a file mapping to write files on\nWindows
\n- Set more portable 'mode' value in portable mode
\n- Set
\nportable
gzip option in portable mode
... (truncated)
\nbef7b1e
\n6.2.1fe8cd57
\nprevent extraction in excessively deep subfoldersfe7ebfd
\nremove security.md5bc9d40
\n6.2.0fe1ef5e
\nchangelog 6.2e483220
\nget rid of npm lint stuff689928a
\nci that works outside of npm orgdb6f539
\nfile inference improvements for .tbr and .tgz336fa8f
\nrefactor: dry and other pr commentseeba222
\nchore: lint fixesSourced from nokogiri's\nreleases.
\n\n\n1.15.6 / 2024-03-16
\nNote
\nThis security release is a backport to the unsupported v1.15.x\nbranch. Current stable is v1.16.x, which addressed the referenced CVE in\nv1.16.2 on 2024-02-04.
\nSecurity
\n\n
\n- [CRuby] Vendored libxml2 is updated to address CVE-2024-25062. See\nGHSA-xc9x-jj77-9p9j\nfor more information.
\nDependencies
\n\n
\n- [CRuby] Vendored libxml2 is updated to v2.11.7 from v2.11.6. For\ndetails please see https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.7
\n
\nsha256 checksums:
\n\n\nd79f713dffff149d60ab272d206a3ca96db2b891ab6a9f65362bfb78aface37a\ngems/nokogiri-1.15.6-aarch64-linux.gem\n62b5b7b387ec6c61c1ea5f889b7bc579eedd37f265f7cc1dc392484938549f1a\ngems/nokogiri-1.15.6-arm-linux.gem\nba93c63f5c03047778abf16c80676fe67e7eb7d871ab0aaa7e2c2dfe4ec20027\ngems/nokogiri-1.15.6-arm64-darwin.gem\nd24639a546ba58c86d18da1ed124eaecbd45c5ae4c4dec41751b730a2b732ac3\ngems/nokogiri-1.15.6-java.gem\ne36887d89ec1b080e4a01dd2ff52650003db01d2a5edf5e6ab19e4c0bdb1385f\ngems/nokogiri-1.15.6-x64-mingw-ucrt.gem\n852c59a398499c8fcb6478d76396dcd50afa8f8902563b76265cd7dc90a731a1\ngems/nokogiri-1.15.6-x64-mingw32.gem\n19e0a5fbfa4393353fbcf6801f8f62350b6e16f43c907680c5884896858a23a2\ngems/nokogiri-1.15.6-x86-linux.gem\n9d464bbbaad6721a5a73181165fda67573f64ef2803c3337f6f733603e9d309a\ngems/nokogiri-1.15.6-x86-mingw32.gem\n32d045cdb0ce097e4543a5e7a79efd13ff05d904e32f4328732149dbea3c7f15\ngems/nokogiri-1.15.6-x86_64-darwin.gem\n26a79da0377100d6938ae2f1b115230a8a4a4595e35b89164d8495af32091186\ngems/nokogiri-1.15.6-x86_64-linux.gem\n70ce799b4b3e23b358501f1da3914f70b1c7a113fb12e96a7d53558481146e08\ngems/nokogiri-1.15.6.gem\n
1.15.5 / 2023-11-17
\nDependencies
\n\n
\n- [CRuby] Vendored libxml2 is updated to v2.11.6 from v2.11.5. For\ndetails please see https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.6
\n- [CRuby] Vendored libxslt is updated to v1.1.39 from v1.1.38. For\ndetails please see https://gitlab.gnome.org/GNOME/libxslt/-/releases/v1.1.39
\n
\nsha256 checksums:
\n\n\n6dfa1d9837ddb233e234d56e244560ab1bc545d3d1744478060e18691f44ded7\nnokogiri-1.15.5-aarch64-linux.gem\ne3ac6608c6e1714bc11ff04e29a43fedf4cac2aea1bd88256cc3b927c06f347f\nnokogiri-1.15.5-arm-linux.gem\n4d7b15d53c0397d131376a19875aa97dd1c8b404c2c03bd2171f9b77e9592d40\nnokogiri-1.15.5-arm64-darwin.gem\n5f87e71aaeb4f7479b94698737a0aacea77836b4805c7433b655e9565bd56cfe\nnokogiri-1.15.5-java.gem\n7612be800909ae51e0a7cfbe1f768757857a9ff0339686814ca67d9bae271ca2\nnokogiri-1.15.5-x64-mingw-ucrt.gem\n</tr></table> \n
... (truncated)
\nSourced from nokogiri's\nchangelog.
\n\n\n1.15.6 / 2024-03-16
\nSecurity
\n\n
\n- [CRuby] Vendored libxml2 is updated to address CVE-2024-25062. See\nGHSA-xc9x-jj77-9p9j\nfor more information.
\nDependencies
\n\n
\n- [CRuby] Vendored libxml2 is updated to v2.11.7 from v2.11.6. For\ndetails please see https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.7
\n1.15.5 / 2023-11-17
\nDependencies
\n\n
\n- [CRuby] Vendored libxml2 is updated to v2.11.6 from v2.11.5. For\ndetails please see https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.6
\n- [CRuby] Vendored libxslt is updated to v1.1.39 from v1.1.38. For\ndetails please see https://gitlab.gnome.org/GNOME/libxslt/-/releases/v1.1.39
\n1.15.4 / 2023-08-11
\nDependencies
\n\n
\n- [CRuby] Vendored libxml2 is updated to v2.11.5 from v2.11.4. For\ndetails please see https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.5
\nFixed
\n\n
\n- Fixed a typo in a HTML5 parser error message. #2927\n(
\n@anishathalye
)- [CRuby]
\nObjectSpace.memsize_of
is now safe to call on\nDocument
s with complex DTDs. In previous versions, this\ndebugging method could result in a segfault. [#2923, #2924]1.15.3 / 2023-07-05
\nFixed
\n\n
\n- Passing an object that is not a kind of
\nXML::Node
as\nthe first parameter toCDATA.new
now raises a\nTypeError
. Previously this would result in either a\nsegfault (CRuby) or a Java exception (JRuby). #2920- Passing an object that is not a kind of
\nXML::Node
as\nthe first parameter toSchema.from_document
now raises a\nTypeError
. Previously this would result in either a\nsegfault (CRuby) or a Java exception (JRuby). #2920- [CRuby] Passing an object that is not a kind of\n
\nXML::Node
as the second parameter toText.new
\nnow raises aTypeError
. Previously this would result in a\nsegfault. #2920- [CRuby] Replacing a node's children via methods like\n
\nNode#inner_html=
,#children=
, and\n#replace
no longer defensively dups the node's next sibling\nif it is a Text node. This behavior was originally adopted to work\naround libxml2's memory management (see #283\nand #595)\nbut should not have included operations involving\nxmlAddChild()
. #2916- [JRuby] Fixed NPE when serializing an unparented HTML node. [#2559,\n#2895]\n(
\n@cbasguti
)1.15.2 / 2023-05-24
\nDependencies
\n\n
\n\n- [JRuby] Vendored org.nokogiri:nekodtd is updated to v0.1.11.noko2.\nThis is functionally equivalent to v0.1.11.noko1 but restores support\nfor Java 8.
\n
... (truncated)
\n7ab6310
\nversion bump to v1.15.6f8156b4
\ndep: update libxml to 2.11.7 (branch 1.15.x) (#3154)9827619
\nci: pin to a version of bundler that works across supported rubies83a2571
\ndep: bump libxml to v2.11.75745d4b
\nversion bump to v1.15.5da2d908
\nci: add ruby version to vendored libs cache key (backport) (#3029)0f56450
\nci: add ruby version to vendored libs cache key (#3028)32b2c35
\ndep: update libxml to 2.11.5 and libxslt to 1.1.39 (v1.15.x) (#3025)b8f7e16
\nci: skip the BSD builds for nowaa3208b
\ndep: update libxml to 2.11.5 and libxslt to 1.1.39Sourced from rack's\nreleases.
\n\n\nv2.2.8.1
\nWhat's Changed
\n\n
\n- Fixed ReDoS in Accept header parsing [CVE-2024-26146]
\n- Fixed ReDoS in Content Type header parsing [CVE-2024-25126]
\n- Reject Range headers which are too large [CVE-2024-26141]
\nFull Changelog: https://github.com/rack/rack/compare/v2.2.8...v2.2.8.1
\nv2.2.8
\nWhat's Changed
\n\n
\n- Limit file extension length of multipart tempfiles (2.2 backport) by\n
\n@dentarg
in rack/rack#2075- CHANGELOG: Add missing 2.2.7 by
\n@tisba
in rack/rack#2081- Update cookie.rb by
\n@dchandekstark
\nin rack/rack#2092- Prefer ubuntu-latest for testing. by
\n@ioquatix
in rack/rack#2095- Fix inefficient assert pattern in Rack::Lint [2-2-stable] by
\n@skipkayhil
in rack/rack#2101- Regenerate SPEC [2-2-stable] by
\n@skipkayhil
in rack/rack#2102New Contributors
\n\n
\n- \n
@tisba
made\ntheir first contribution in rack/rack#2081- \n
@dchandekstark
\nmade their first contribution in rack/rack#2092Full Changelog: https://github.com/rack/rack/compare/v2.2.7...v2.2.8
\nv2.2.7
\nWhat's Changed
\n\n
\n- Correct the year number in the changelog by
\n@kimulab
in rack/rack#2015- Support underscore in host names for Rack 2.2 (Fixes #2070) by\n
\n@jeremyevans
\nin rack/rack#2071New Contributors
\n\n
\n- \n
@kimulab
made\ntheir first contribution in rack/rack#2015Full Changelog: https://github.com/rack/rack/compare/v2.2.6.4...v2.2.7
\n
e830011
\nbump versiond9c163a
\nAvoid 2nd degree polynomial regexp in MediaType6245768
\nReturn an empty array when ranges are too largee4c1177
\nFixing ReDoS in header parsingf169ff7
\nBump patch version.0a46487
\nRegenerate SPEC (#2102)cee73b3
\nFix inefficient assert pattern in Rack::Lint (#2101)1fdcf1f
\nPrefer ubuntu-latest for testing. (#2095)287fe43
\nUpdate cookie.rb (#2092)e7f4869
\nadds missing 2.2.7 to CHANGELOG.md (#2081)Sourced from puma's\nchangelog.
\n\n\n5.6.8 / 2024-01-08
\n\n
\n- Security\n
\n\n
\n- Limit the size of chunk extensions. Without this limit, an attacker\ncould cause unbounded resource (CPU, network bandwidth) consumption. (GHSA-c2f4-cvqm-65w2)
\n
1293573
\n5.6.8bbb880f
\nMerge pull request from GHSA-c2f4-cvqm-65w2Sourced from browserify-sign's\nchangelog.
\n\n\nv4.2.2\n- 2023-10-25
\nFixed
\n\n
\n- [Tests] log when openssl doesn't support cipher
\n[#37](https://github.com/crypto-browserify/browserify-sign/issues/37)
Commits
\n\n
\n- Only apps should have lockfiles
\n09a8995
- [eslint] switch to eslint
\n83fe463
- [meta] add
\nnpmignore
andauto-changelog
4418183
- [meta] fix package.json indentation
\n9ac5a5e
- [Tests] migrate from travis to github actions
\nd845d85
- [Fix]
\nsign
: throw on unsupported padding scheme8767739
- [Fix] properly check the upper bound for DSA signatures
\n85994cd
- [Tests] handle openSSL not supporting a scheme
\nf5f17c2
- [Deps] update
\nbn.js
,browserify-rsa
,\nelliptic
,parse-asn1
,\nreadable-stream
,safe-buffer
a67d0eb
- [Dev Deps] update
\nnyc
,standard
,\ntape
cc5350b
- [Tests] always run coverage; downgrade
\nnyc
75ce1d5
- [meta] add
\nsafe-publish-latest
dcf49ce
- [Tests] add
\nnpm run posttest
75dd8fd
- [Dev Deps] update
\ntape
3aec038
- [Tests] skip unsupported schemes
\n703c83e
- [Tests] node < 6 lacks array
\nincludes
3aa43cf
- [Dev Deps] fix eslint range
\n98d4e0d
v4.2.1\n- 2020-08-04
\nMerged
\n\n
\n- bump elliptic
\n[#58](https://github.com/crypto-browserify/browserify-sign/issues/58)
v4.2.0\n- 2020-05-18
\nMerged
\n\n
\n- switch to safe buffer
\n[#53](https://github.com/crypto-browserify/browserify-sign/issues/53)
v4.1.0\n- 2020-05-05
\nMerged
\n\n
\n- update deps, modernise usage, use readable-stream
\n[#49](https://github.com/crypto-browserify/browserify-sign/issues/49)
4af5a90
\nv4.2.23aec038
\n[Dev Deps] update tape
85994cd
\n[Fix] properly check the upper bound for DSA signatures9ac5a5e
\n[meta] fix package.json indentationdcf49ce
\n[meta] add safe-publish-latest
4418183
\n[meta] add npmignore
and auto-changelog
8767739
\n[Fix] sign
: throw on unsupported padding scheme5f6fb17
\n[Tests] log when openssl doesn't support cipherf5f17c2
\n[Tests] handle openSSL not supporting a schemed845d85
\n[Tests] migrate from travis to github actionsThis version was pushed to npm by ljharb, a new releaser for\nbrowserify-sign since your current version.
\nSourced from @babel/traverse
's\nreleases.
\n\nv7.23.2 (2023-10-11)
\nNOTE: This release also re-publishes\n
\n@babel/core
, even if it does not appear in the linked\nrelease commit.Thanks
\n@jimmydief
for\nyour first PR!:bug: Bug Fix
\n\n
\n- \n
babel-traverse
\n\n
\n- #16033\nOnly evaluate own String/Number/Math methods (
\n@nicolo-ribaudo
)- \n
babel-preset-typescript
\n\n
\n- #16022\nRewrite
\n.tsx
extension when using\nrewriteImportExtensions
(@jimmydief
)- \n
babel-helpers
\n\n- \n
babel-helpers
,\nbabel-plugin-transform-modules-commonjs
,\nbabel-runtime-corejs2
,babel-runtime-corejs3
,\nbabel-runtime
\n\n
\n- #16025\nAvoid override mistake in namespace imports (
\n@nicolo-ribaudo
)Committers: 5
\n\n
\n- Babel Bot (
\n@babel-bot
)- Huáng Jùnliàng (
\n@JLHwung
)- James Diefenderfer (
\n@jimmydief
)- Nicolò Ribaudo (
\n@nicolo-ribaudo
)- \n
@liuxingbaoyu
v7.23.1 (2023-09-25)
\nRe-publishing
\n@babel/helpers
due to a publishing error\nin 7.23.0.v7.23.0 (2023-09-25)
\nThanks
\n@lorenzoferre
\nand@RajShukla1
for\nyour first PRs!:rocket: New Feature
\n\n
\n\n- \n
babel-plugin-proposal-import-wasm-source
,\nbabel-plugin-syntax-import-source
,\nbabel-plugin-transform-dynamic-import
\n\n
\n- #15870\nSupport transforming
\nimport source
for wasm (@nicolo-ribaudo
)- \n
babel-helper-module-transforms
,\nbabel-helpers
,\nbabel-plugin-proposal-import-defer
,\nbabel-plugin-syntax-import-defer
,\nbabel-plugin-transform-modules-commonjs
,\nbabel-runtime-corejs2
,babel-runtime-corejs3
,\nbabel-runtime
,babel-standalone
\n\n
\n- #15878\nImplement
\nimport defer
proposal transform support (@nicolo-ribaudo
)- \n
babel-generator
,babel-parser
,\nbabel-types
\n\n
\n- #15845\nImplement
\nimport defer
parsing support (@nicolo-ribaudo
)- #15829 Add\nparsing support for the "source phase imports" proposal (
\n@nicolo-ribaudo
)- \n
babel-generator
,\nbabel-helper-module-transforms
,babel-parser
,\nbabel-plugin-transform-dynamic-import
,\nbabel-plugin-transform-modules-amd
,\nbabel-plugin-transform-modules-commonjs
,\nbabel-plugin-transform-modules-systemjs
,\nbabel-traverse
,babel-types
\n\n- \n
babel-standalone
\n\n- \n
babel-helper-function-name
,\nbabel-helper-member-expression-to-functions
,\nbabel-helpers
,babel-parser
,\nbabel-plugin-proposal-destructuring-private
,\nbabel-plugin-proposal-optional-chaining-assign
,\nbabel-plugin-syntax-optional-chaining-assign
,\nbabel-plugin-transform-destructuring
,\nbabel-plugin-transform-optional-chaining
,\nbabel-runtime-corejs2
,babel-runtime-corejs3
,\nbabel-runtime
,babel-standalone
,\nbabel-types
\n\n
\n- #15751 Add\nsupport for optional chain in assignments (
\n@nicolo-ribaudo
)- \n
babel-helpers
,\nbabel-plugin-proposal-decorators
\n\n
\n- #15895\nImplement the "decorator metadata" proposal (
\n@nicolo-ribaudo
)- \n
babel-traverse
,babel-types
\n\n
\n- #15893 Add\n
\nt.buildUndefinedNode
(@liuxingbaoyu
)- \n
babel-preset-typescript
... (truncated)
\nSourced from @babel/traverse
's\nchangelog.
\n\nv7.23.2 (2023-10-11)
\n:bug: Bug Fix
\n\n
\n- \n
babel-traverse
\n\n
\n- #16033\nOnly evaluate own String/Number/Math methods (
\n@nicolo-ribaudo
)- \n
babel-preset-typescript
\n\n
\n- #16022\nRewrite
\n.tsx
extension when using\nrewriteImportExtensions
(@jimmydief
)- \n
babel-helpers
\n\n- \n
babel-helpers
,\nbabel-plugin-transform-modules-commonjs
,\nbabel-runtime-corejs2
,babel-runtime-corejs3
,\nbabel-runtime
\n\n
\n- #16025\nAvoid override mistake in namespace imports (
\n@nicolo-ribaudo
)v7.23.0 (2023-09-25)
\n:rocket: New Feature
\n\n
\n- \n
babel-plugin-proposal-import-wasm-source
,\nbabel-plugin-syntax-import-source
,\nbabel-plugin-transform-dynamic-import
\n\n
\n- #15870\nSupport transforming
\nimport source
for wasm (@nicolo-ribaudo
)- \n
babel-helper-module-transforms
,\nbabel-helpers
,\nbabel-plugin-proposal-import-defer
,\nbabel-plugin-syntax-import-defer
,\nbabel-plugin-transform-modules-commonjs
,\nbabel-runtime-corejs2
,babel-runtime-corejs3
,\nbabel-runtime
,babel-standalone
\n\n
\n- #15878\nImplement
\nimport defer
proposal transform support (@nicolo-ribaudo
)- \n
babel-generator
,babel-parser
,\nbabel-types
\n\n
\n- #15845\nImplement
\nimport defer
parsing support (@nicolo-ribaudo
)- #15829 Add\nparsing support for the "source phase imports" proposal (
\n@nicolo-ribaudo
)- \n
babel-generator
,\nbabel-helper-module-transforms
,babel-parser
,\nbabel-plugin-transform-dynamic-import
,\nbabel-plugin-transform-modules-amd
,\nbabel-plugin-transform-modules-commonjs
,\nbabel-plugin-transform-modules-systemjs
,\nbabel-traverse
,babel-types
\n\n- \n
babel-standalone
\n\n- \n
babel-helper-function-name
,\nbabel-helper-member-expression-to-functions
,\nbabel-helpers
,babel-parser
,\nbabel-plugin-proposal-destructuring-private
,\nbabel-plugin-proposal-optional-chaining-assign
,\nbabel-plugin-syntax-optional-chaining-assign
,\nbabel-plugin-transform-destructuring
,\nbabel-plugin-transform-optional-chaining
,\nbabel-runtime-corejs2
,babel-runtime-corejs3
,\nbabel-runtime
,babel-standalone
,\nbabel-types
\n\n
\n- #15751 Add\nsupport for optional chain in assignments (
\n@nicolo-ribaudo
)- \n
babel-helpers
,\nbabel-plugin-proposal-decorators
\n\n
\n- #15895\nImplement the "decorator metadata" proposal (
\n@nicolo-ribaudo
)- \n
babel-traverse
,babel-types
\n\n
\n- #15893 Add\n
\nt.buildUndefinedNode
(@liuxingbaoyu
)- \n
babel-preset-typescript
\n\n
\n- #15913 Add\n
\nrewriteImportExtensions
option to TS preset (@nicolo-ribaudo
)- \n
babel-parser
\n\n
\n- #15896\nAllow TS tuples to have both labeled and unlabeled elements (
\n@yukukotani
):bug: Bug Fix
\n\n
\n- \n
babel-plugin-transform-block-scoping
\n\n
\n- #15962\nfix:
\ntransform-block-scoping
captures the variables of the\nmethod in the loop (@liuxingbaoyu
):nail_care: Polish
\n\n
\n- \n
babel-traverse
\n\n
\n- #15797\nExpand evaluation of global built-ins in
\n@babel/traverse
\n(@lorenzoferre
)- \n
babel-plugin-proposal-explicit-resource-management
\n\n
\n- #15985\nImprove source maps for blocks with
\nusing
declarations (@nicolo-ribaudo
):microscope: Output optimization
\n\n
\n- \n
babel-core
,\nbabel-helper-module-transforms
,\nbabel-plugin-transform-async-to-generator
,\nbabel-plugin-transform-classes
,\nbabel-plugin-transform-dynamic-import
,\nbabel-plugin-transform-function-name
,\nbabel-plugin-transform-modules-amd
,\nbabel-plugin-transform-modules-commonjs
,\nbabel-plugin-transform-modules-umd
,\nbabel-plugin-transform-parameters
,\nbabel-plugin-transform-react-constant-elements
,\nbabel-plugin-transform-react-inline-elements
,\nbabel-plugin-transform-runtime
,\nbabel-plugin-transform-typescript
,\nbabel-preset-env
\n\n
\n- #15984\nInline
\nexports.XXX =
update in simple variable declarations\n(@nicolo-ribaudo
)v7.22.20 (2023-09-16)
\n\n
... (truncated)
\nb4b9942
\nv7.23.2b13376b
\nOnly evaluate own String/Number/Math methods (#16033)ca58ec1
\nv7.23.00f333da
\nAdd createImportExpressions
parser option (#15682)3744545
\nFix lintingc7e6806
\nAdd t.buildUndefinedNode
(#15893)38ee8b4
\nExpand evaluation of global built-ins in @babel/traverse
\n(#15797)9f3dfd9
\nv7.22.203ed28b2
\nFully support ||
and &&
in\npluginToggleBooleanFlag
(#15961)77b0d73
\nv7.22.19Sourced from sidekiq's\nchangelog.
\n\n\nSidekiq Changes
\nSidekiq\nChanges | Sidekiq\nPro Changes | Sidekiq\nEnterprise Changes
\nHEAD
\n\n
\n- Fix breakage with non-Proc error handlers #6065
\n7.1.5
\n\n
\n- FEATURE: Job filtering within the Web UI. This\nfeature has been open\nsourced from Sidekiq Pro. #6052
\n- API CHANGE Error handlers now take three arguments\n
\n->(ex, context, config)
.\nThe previous calling convention will work until Sidekiq 8.0 but will\nprint\nout a deprecation warning. #6051- Fix issue with the
\nbatch_size
andat
\noptions inS::Client.push_bulk
#6040- Fix inline testing firing batch callbacks early #6057
\n- Use new log broadcast API in Rails 7.1 #6054
\n- Crash if user tries to use RESP2
\nprotocol: 2
#60617.1.4
\n\n
\n- Fix empty
\nretry_for
logic #60357.1.3
\n\n
\n- Add
\nsidekiq_options retry_for: 48.hours
to allow\ntime-based retry windows #6029- Support sidekiq_retry_in and sidekiq_retries_exhausted_block in\nActiveJobs (#5994)
\n- Lowercase all Rack headers for Rack 3.0 #5951
\n- Validate Sidekiq::Web page refresh delay to avoid potential DoS,\nCVE-2023-26141, thanks for reporting Keegan!
\n7.1.2
\n\n
\n- Mark Web UI assets as private so CDNs won't cache them #5936
\n- Fix stackoverflow when using Oj and the JSON log formatter #5920
\n- Remove spurious
\nenqueued_at
from scheduled ActiveJobs\n#59377.1.1
\n\n\n
... (truncated)
\nf67a7ab
\nCherry pick:101435c
\nMerge 62c90d7022c059
\nbump, prepfa6723e
\nformatting, ensure environment is updated in Sidekiq.optionsad0f13c
\nprepare for release7ed013e
\nFail if bad scout_apm detected, fixes #56162ff4474
\nFix natural sorting for processes (#5587)0588caf
\nchanges7037533
\nSpeedup iterating over WorkSet
(#5559)d424e45
\nAdd pagination to "Busy" page (#5556)Sourced from puma's\nreleases.
\n\n\n5.6.7
\nSecurity\nAddress HTTP request smuggling vulnerabilities with zero-length Content\nLength header and trailer fields (GHSA-68xg-gqqm-vgj8)
\n5.6.5 / 2022-08-23
\n\n
\n- Bugfixes\n
\n\n
\n- NullIO#closed should return false (#2883)
\n- Puma::ControlCLI - allow refork command to be sent as a request (#2868, #2866)
\n- [jruby] Fix TLS verification hang (#2890, #2729)
\n- extconf.rb - don't use pkg_config('openssl') if '--with-openssl-dir'\nis used (#2885, #2839)
\n- MiniSSL - detect SSL_CTX_set_dh_auto (#2864, #2863)
\n- Fix rack.after_reply exceptions breaking connections (#2861, #2856)
\n- Escape SSL cert and filenames (#2855)
\n- Fail hard if SSL certs or keys are invalid (#2848)
\n- Fail hard if SSL certs or keys cannot be read by user (#2847)
\n- Fix build with Opaque DH in LibreSSL 3.5. (#2838)
\n- Pre-existing socket file removed when TERM is issued after USR2 (if\npuma is running in cluster mode) (#2817)
\n- Fix Puma::StateFile#load incompatibility (#2810)
\n
Sourced from puma's\nchangelog.
\n\n\n5.6.7 / 2023-08-18
\n\n
\n- Security\n
\n\n
\n- Address HTTP request smuggling vulnerabilities with zero-length\nContent Length header and trailer fields (GHSA-68xg-gqqm-vgj8)
\n5.6.6 / 2023-06-21
\n\n
\n- Bugfix\n
\n\n
\n- Prevent loading with rack 3 (#3166)
\n5.6.5 / 2022-08-23
\n\n
\n- \n
\nFeature
\n\n- \n
\nBugfixes
\n\n
\n- NullIO#closed should return false (#2883)
\n- [jruby] Fix TLS verification hang (#2890, #2729)
\n- extconf.rb - don't use pkg_config('openssl') if '--with-openssl-dir'\nis used (#2885, #2839)
\n- MiniSSL - detect SSL_CTX_set_dh_auto (#2864, #2863)
\n- Fix rack.after_reply exceptions breaking connections (#2861, #2856)
\n- Escape SSL cert and filenames (#2855)
\n- Fail hard if SSL certs or keys are invalid (#2848)
\n- Fail hard if SSL certs or keys cannot be read by user (#2847)
\n- Fix build with Opaque DH in LibreSSL 3.5. (#2838)
\n- Pre-existing socket file removed when TERM is issued after USR2 (if\npuma is running in cluster mode) (#2817)
\n- Fix Puma::StateFile#load incompatibility (#2810)
\n
78393bf
\n5.6.77405a21
\nMerge pull request from GHSA-68xg-gqqm-vgj8d33424b
\n5.6.7 release note [ci skip]f8c7b23
\n5.6.608af1b5
\n5.6.6 release note6dac5d9
\nPrevent loading with rack 3 (#3166)0892558
\nFix and update 5-6-stable CI, two backports (#3167)3a6ea4f
\nRelease note fix for 5.6.53bace01
\n5.6.53ce6668
\n5.6.5 release noteSourced from semver's\nreleases.
\n\n\nv5.7.2
\n5.7.2\n(2023-07-10)
\nBug Fixes
\n\n
\n- \n
2f8fd41
\n#585\nbetter handling of whitespace (#585)\n(@joaomoreno
,\n@lukekarrys
)
Sourced from semver's\nchangelog.
\n\n\n5.7.2\n(2023-07-10)
\nBug Fixes
\n\n
\n- \n
2f8fd41
\n#585\nbetter handling of whitespace (#585)\n(@joaomoreno
,\n@lukekarrys
)5.7
\n\n
\n- Add
\nminVersion
method5.6
\n\n
\n- Move boolean
\nloose
param to an options object, with\nbackwards-compatibility protection.- Add ability to opt out of special prerelease version handling with\nthe
\nincludePrerelease
option flag.5.5
\n\n
\n- Add version coercion capabilities
\n5.4
\n\n
\n- Add intersection checking
\n5.3
\n\n
\n- Add
\nminSatisfying
method5.2
\n\n
\n- Add
\nprerelease(v)
that returns prerelease\ncomponents5.1
\n\n
\n- Add Backus-Naur for ranges
\n- Remove excessively cute inspection methods
\n5.0
\n\n
\n- Remove AMD/Browserified build artifacts
\n- Fix ltr and gtr when using the
\n*
range- Fix for range
\n*
with a prerelease identifier
This version was pushed to npm by lukekarrys, a new releaser\nfor semver since your current version.
\n