v2.1.1 - security updates

What's Changed

• Bump rack from 3.0.6.1 to 3.0.9.1 in /test by @dependabot in #43
• Bump rexml from 3.2.5 to 3.2.8 in /test by @dependabot in #44
• Bump rexml from 3.2.8 to 3.3.3 in /test by @dependabot in #45
• Bump rexml from 3.3.3 to 3.3.6 in /test by @dependabot in #46

Full Changelog: v2.1.0...v2.1.1

v2.1.0 - node20

What's Changed

• Bump activesupport from 7.0.4.3 to 7.0.7.2 in /test by @dependabot in #41
• chore: Update action to node20 by @sheck in #42

Full Changelog: v2...v2.1.0

v2.0.1 - fix multiple source error

Fixed

• fix for multiple source error error by @dobrite in #39

Included PRs

• docs(Readme): Remove token config by @sheck in #36
• Bump activesupport from 7.0.4.1 to 7.0.4.3 in /test by @dependabot in #38
• Bump rack from 3.0.0 to 3.0.6.1 in /test by @dependabot in #37
• fix(source): fix for multiple source error error by @dobrite in #39

New Contributors

• @dobrite made their first contribution in #39

Full Changelog: v2...v2.0.1

v2.0.0 - fix incorrect action association

BREAKING

• conclusionLevel of "neutral" will now show as a successful action run even if annotations are created.
  • This is not ideal and was a trade-off we made in order to fix an annoying bug. Github claims they will be adding support for this (neutral conclusions for how we're now doing check runs) in the future. More details can be found in this commit message and this PR #32.
• Annotations will show their source as the name of the job that ran balto-rubocop (previously it would always say Rubocop). (#32)
  • You may want to consider renaming those workflows/jobs to rubocop now.

Fixed

• Check runs should not be associated with an incorrect action run anymore (@sheck in #32)

Changed

• Token (and custom permission workaround for dependabot) is no longer required configuration (#32)

Full Changelog: v1...v2.0.0

v1.0.3 - improved error logging

What's Changed

• fix: Improve error logging for push events without a before sha (like tag pushes) by @sheck in #30
• chore: Setup automated moving semantic version tags by @sheck in #34

Full Changelog: v1.0.2...v1.0.3

v1.0.2 - output method deprecation fix

What's Changed

• Bump activesupport from 7.0.3.1 to 7.0.4.1 in /test by @dependabot in #28
• fix: Update deprecated output method by @sheck in #31

Full Changelog: v1.0.1...v1.0.2

v1.0.1 - Wider Bundler version support

What's Changed

• Bump rack from 2.2.3 to 3.0.0 in /test by @dependabot in #22
• fix(CreateMinimalGemfile): Support more bundler versions by @molawson in #24
• chore(ThemeWeeks): Create codeowners by @kawikathomas in #27
• Bump tzinfo from 1.2.7 to 2.0.5 in /test by @dependabot in #17

New Contributors

• @kawikathomas made their first contribution in #27

Full Changelog: v1.0.0...v1.0.1

v1.0.0 - additionalGems, rootDirectory

This release was made on 2022-09-13, but now has a Github release as well.

What's Changed

• Bump better_errors from 2.5.1 to 2.8.0 in /test by @dependabot in #16
• Update readme, including permissions information by @molawson in #20
• Support a wider variety of Ruby projects and setups (additionalGems, rootDirectory) by @molawson in #19

Full Changelog: v0.8...v1.0.0

High Severity Offenses

• New: always report high severity offenses (#14)
• New: fail the check for high severity offenses (#14)

v0.6

• Handle action run failures better #9
• Setup local testing #8
• Use bundle inline for more accurate dependency resolution #6