Bump activerecord, actionview, actionpack, administrate, rails and rspec-rails #15

dependabot · 2023-09-25T21:33:20Z

Bumps activerecord, actionview, actionpack, administrate, rails and rspec-rails. These dependencies needed to be updated together.
Updates activerecord from 5.2.3 to 7.0.8

Release notes

Sourced from activerecord's releases.

7.0.8

Active Support

Fix TimeWithZone still using deprecated #to_s when ENV or config to disable it are set.

Hartley McGuire

Fix CacheStore#write_multi when using a distributed Redis cache with a connection pool.

Fixes #48938.

Jonathan del Strother

Active Model

No changes.

Active Record
Fix change_column not setting precision: 6 on datetime columns when using 7.0+ Migrations and SQLite.

Hartley McGuire
Fix unscope is not working in specific case

Before:
Post.where(id: 1...3).unscope(where: :id).to_sql # "SELECT `posts`.* FROM `posts` WHERE `posts`.`id` >= 1 AND `posts`.`id` < 3"
After:
Post.where(id: 1...3).unscope(where: :id).to_sql # "SELECT `posts`.* FROM `posts`"
Fixes #48094.

Kazuya Hatanaka
Fix associations to a STI model including a class_name parameter

... (truncated)

Changelog

Sourced from activerecord's changelog.

Rails 7.0.8 (September 09, 2023)
Fix change_column not setting precision: 6 on datetime columns when using 7.0+ Migrations and SQLite.

Hartley McGuire
Fix unscope is not working in specific case

Before:
Post.where(id: 1...3).unscope(where: :id).to_sql # "SELECT `posts`.* FROM `posts` WHERE `posts`.`id` >= 1 AND `posts`.`id` < 3"
After:
Post.where(id: 1...3).unscope(where: :id).to_sql # "SELECT `posts`.* FROM `posts`"
Fixes #48094.

Kazuya Hatanaka
Fix associations to a STI model including a class_name parameter
class Product < ApplicationRecord
  has_many :requests, as: :requestable, class_name: "ProductRequest", dependent: :destroy
end
STI tables
class Request < ApplicationRecord
belongs_to :requestable, polymorphic: true
validate :request_type, presence: true
end
class ProductRequest < Request
belongs_to :user
end
Accessing such association would lead to:
table_metadata.rb:22:in `has_column?': undefined method `key?' for nil:NilClass (NoMethodError)
Romain Filinto

... (truncated)

Commits

fc734f2 Preparing for 7.0.8 release
8db97a7 Fix change_column not setting precision for sqlite
ce75465 Merge pull request #48095 from ippachi/triple-dot-range-unscope
d1ac40c Merge pull request #48657 from alpaca-tc/fix-association-with-has-many-inversing
164fcfd Merge pull request #48653 from alpaca-tc/fix-association-pretty-print
cdb6d89 Fix Compatibility tests using @internal_metadata
c1150f4 Merge pull request #49101 from xfifix/fix/sti_class_name
729dfda Merge pull request #49089 from emilyqiu1005/emilyqiu/add-kill-to-mysql-read-q...
6155ad6 Fix 6.1 change_table setting datetime precision
d73c81e Do not log internal options when running migrations
Additional commits viewable in compare view

Updates actionview from 5.2.3 to 7.0.8

Release notes

Sourced from actionview's releases.

7.0.8

Active Support

Fix TimeWithZone still using deprecated #to_s when ENV or config to disable it are set.

Hartley McGuire

Fix CacheStore#write_multi when using a distributed Redis cache with a connection pool.

Fixes #48938.

Jonathan del Strother

Active Model

No changes.

Active Record
Fix change_column not setting precision: 6 on datetime columns when using 7.0+ Migrations and SQLite.

Hartley McGuire
Fix unscope is not working in specific case

Before:
Post.where(id: 1...3).unscope(where: :id).to_sql # "SELECT `posts`.* FROM `posts` WHERE `posts`.`id` >= 1 AND `posts`.`id` < 3"
After:
Post.where(id: 1...3).unscope(where: :id).to_sql # "SELECT `posts`.* FROM `posts`"
Fixes #48094.

Kazuya Hatanaka
Fix associations to a STI model including a class_name parameter

... (truncated)

Changelog

Sourced from actionview's changelog.

Rails 7.0.8 (September 09, 2023)

Fix form_for missing the hidden _method input for models with a namespaced route.

Hartley McGuire

Fix render collection: @records, cache: true inside jbuilder templates

The previous fix that shipped in 7.0.7 assumed template fragments are always strings, this isn't true with jbuilder.

Jean Boussier

Rails 7.0.7.2 (August 22, 2023)

No changes.

Rails 7.0.7.1 (August 22, 2023)

No changes.

Rails 7.0.7 (August 09, 2023)

Fix render collection: @records, cache: true to cache fragments as bare strings

Previously it would incorrectly cache them as Action View buffers.

Jean Boussier

Don't double-encode nested field_id and field_name index values

Pass index: @options as a default keyword argument to field_id and field_name view helper methods.

Sean Doyle

Rails 7.0.6 (June 29, 2023)

No changes.

Rails 7.0.5.1 (June 26, 2023)

No changes.

... (truncated)

Commits

fc734f2 Preparing for 7.0.8 release
7d31cea Fix no _method input in form_for namespaced model
ed9f292 Merge tag 'v7.0.7.2' into 7-0-stable
3668b4b Preparing for 7.0.7.2 release
2294b8b Bumping version
2766c93 Merge branch '7-0-sec' into 7-0-stable
c92caef Preparing for 7.0.7.1 release
936587d updating version / changelog
6db1133 Handle non-string partial body in ActionView::CollectionCaching
522c86f Preparing for 7.0.7 release
Additional commits viewable in compare view

Updates actionpack from 5.2.3 to 7.0.8

Release notes

Sourced from actionpack's releases.

7.0.8

Active Support

Fix TimeWithZone still using deprecated #to_s when ENV or config to disable it are set.

Hartley McGuire

Fix CacheStore#write_multi when using a distributed Redis cache with a connection pool.

Fixes #48938.

Jonathan del Strother

Active Model

No changes.

Active Record
Fix change_column not setting precision: 6 on datetime columns when using 7.0+ Migrations and SQLite.

Hartley McGuire
Fix unscope is not working in specific case

Before:
Post.where(id: 1...3).unscope(where: :id).to_sql # "SELECT `posts`.* FROM `posts` WHERE `posts`.`id` >= 1 AND `posts`.`id` < 3"
After:
Post.where(id: 1...3).unscope(where: :id).to_sql # "SELECT `posts`.* FROM `posts`"
Fixes #48094.

Kazuya Hatanaka
Fix associations to a STI model including a class_name parameter

... (truncated)

Changelog

Sourced from actionpack's changelog.

Rails 7.0.8 (September 09, 2023)

Fix HostAuthorization potentially displaying the value of the X_FORWARDED_HOST header when the HTTP_HOST header is being blocked.

Hartley McGuire, Daniel Schlosser

Rails 7.0.7.2 (August 22, 2023)

No changes.

Rails 7.0.7.1 (August 22, 2023)

No changes.

Rails 7.0.7 (August 09, 2023)

No changes.

Rails 7.0.6 (June 29, 2023)

No changes.

Rails 7.0.5.1 (June 26, 2023)

Raise an exception if illegal characters are provide to redirect_to [CVE-2023-28362]

Zack Deveau

Rails 7.0.5 (May 24, 2023)

Do not return CSP headers for 304 Not Modified responses.

Tobias Kraze

Fix EtagWithFlash when there is no Flash middleware available.

fatkodima

Fix content-type header with send_stream.

Elliot Crosby-McCullough

Address Selenium :capabilities deprecation warning.

... (truncated)

Commits

fc734f2 Preparing for 7.0.8 release
f9175db Fix webdrivers on 7-0-stable branch for issue #48973. (#48977)
ed9f292 Merge tag 'v7.0.7.2' into 7-0-stable
3668b4b Preparing for 7.0.7.2 release
2294b8b Bumping version
2766c93 Merge branch '7-0-sec' into 7-0-stable
c92caef Preparing for 7.0.7.1 release
936587d updating version / changelog
de649fe Merge pull request #48941 from skipkayhil/hm-show-correct-blocked-hosts
522c86f Preparing for 7.0.7 release
Additional commits viewable in compare view

Updates administrate from 0.14.0 to 0.19.0

Release notes

Sourced from administrate's releases.

0.19.0

Once again, a big catchup release with lots of miscellaneous compatibility improvements, bug fixes and some nice new feature improvements. Thanks to everyone who contributed the PRs below!

The following templates have changed since v0.18.0:
app/views/administrate/application/_collection.html.erb
app/views/administrate/application/_index_header.html.erb
app/views/administrate/application/_navigation.html.erb
app/views/administrate/application/_pagination.html.erb
app/views/administrate/application/edit.html.erb
app/views/administrate/application/new.html.erb
app/views/administrate/application/show.html.erb
app/views/fields/has_many/_show.html.erb
app/views/fields/select/_form.html.erb
app/views/layouts/administrate/application.html.erb
If your application overrides any of them, make sure to review your custom templates to ensure that they remain compatible.

[COMPAT] #2399 Fix Rails 6.0 load_server incompatibility

[DOC] #2377 Add a script to generate a draft CHANGELOG update

[COMPAT] #2395 Upgrade Rails from 7.0.4.3 to 7.0.5.1

[FEATURE] #2391 Field::Polymorphic accepts a call-able for the classes option

[BUGFIX] #2379 Use pundit policy_namespace in controllers

[DOC] #2390 Update documentation URL to correct Heroku URL

[BUGFIX] #2383 Fix backward compatible Pundit include

[FEATURE] #2375 Add order option to Field::HasOne documentation

[COMPAT] #2367 Update to Ruby 3.2.2

[COMPAT] #2371 Adapt to deprecations in the Faker API

[BUGFIX] #2348 Field::Select to handle ActiveRecord enums correctly

[COMPAT] #2324 Update to Rails 7

[FEATURE] #2356 make permitted_attributes support action

[FEATURE] #2325 Enable ordering by HasOne fields

[DOC] #2350 Fix link to demo app on customise_search.md

[BUGFIX] #2292 Use correct key in unconventional associations

[DOC] #2346 Better description for option

[COMPAT] #2341 Bump Rails dependencies to 6.1.7.3

[I18n] #2327 Make Japanese translations more natural

[COMPAT] #2323 Start testing Ruby 3.2 on CircleCI

[COMPAT] #2322 Switch from pry-rails to pry

[COMPAT] #2318 Bump Rails dependencies to 6.1.7.2

[COMPAT] #2319 Fix Selenium deprecation warnings on headless/opts

[COMPAT] #2321 Switch to testing against Postgres 15

[COMPAT] #2316 Checkout first to avoid failure due to ChromeDriver file in target dir

... (truncated)

Changelog

Sourced from administrate's changelog.

0.19.0 (July 18, 2023)

Once again, a big catchup release with lots of miscellaneous compatibility improvements, bug fixes and some nice new feature improvements. Thanks to everyone who contributed the PRs below!

The following templates have changed since v0.18.0:

app/views/administrate/application/_collection.html.erb app/views/administrate/application/_index_header.html.erb app/views/administrate/application/_navigation.html.erb app/views/administrate/application/_pagination.html.erb app/views/administrate/application/edit.html.erb app/views/administrate/application/new.html.erb app/views/administrate/application/show.html.erb app/views/fields/has_many/_show.html.erb app/views/fields/select/_form.html.erb app/views/layouts/administrate/application.html.erb

If your application overrides any of them, make sure to review your custom templates to ensure that they remain compatible.

[COMPAT] #2399 Fix Rails 6.0 load_server incompatibility

[DOC] #2377 Add a script to generate a draft CHANGELOG update

[COMPAT] #2395 Upgrade Rails from 7.0.4.3 to 7.0.5.1

[FEATURE] #2391 Field::Polymorphic accepts a call-able for the classes option

[BUGFIX] #2379 Use pundit policy_namespace in controllers

[DOC] #2390 Update documentation URL to correct Heroku URL

[BUGFIX] #2383 Fix backward compatible Pundit include

[FEATURE] #2375 Add order option to Field::HasOne documentation

[COMPAT] #2367 Update to Ruby 3.2.2

[COMPAT] #2371 Adapt to deprecations in the Faker API

[BUGFIX] #2348 Field::Select to handle ActiveRecord enums correctly

[COMPAT] #2324 Update to Rails 7

[FEATURE] #2356 make permitted_attributes support action

[FEATURE] #2325 Enable ordering by HasOne fields

[DOC] #2350 Fix link to demo app on customise_search.md

[BUGFIX] #2292 Use correct key in unconventional associations

[DOC] #2346 Better description for option

[COMPAT] #2341 Bump Rails dependencies to 6.1.7.3

[I18n] #2327 Make Japanese translations more natural

[COMPAT] #2323 Start testing Ruby 3.2 on CircleCI

[COMPAT] #2322 Switch from pry-rails to pry

[COMPAT] #2318 Bump Rails dependencies to 6.1.7.2

[COMPAT] #2319 Fix Selenium deprecation warnings on headless/opts

[COMPAT] #2321 Switch to testing against Postgres 15

[COMPAT] #2316 Checkout first to avoid failure due to ChromeDriver file in target dir

[FEATURE] #2308 Make overriding create resource easier

... (truncated)

Commits

cda8da9 Release v0.19.0
07bad5a Bump appraisal from 2.4.1 to 2.5.0 (#2400)
74d511d Fix Rails 6.0 load_server incompatibility (#2399)
7794c2f Bump jquery-rails from 4.5.1 to 4.6.0 (#2396)
8e5f6aa Add a script to generate a draft CHANGELOG update (#2377)
03226f1 Upgrade Rails from 7.0.4.3 to 7.0.5.1 (#2395)
f8a1101 Update Appraisals (#2394)
488baff Bump capybara from 3.39.0 to 3.39.2 (#2393)
44d4387 Field::Polymorphic accepts a call-able for the classes option (#2391)
b8bfeab Use pundit policy_namespace in controllers (#2379)
Additional commits viewable in compare view

Updates rails from 5.2.3 to 7.0.8

Release notes

Sourced from rails's releases.

7.0.8

Active Support

Fix TimeWithZone still using deprecated #to_s when ENV or config to disable it are set.

Hartley McGuire

Fix CacheStore#write_multi when using a distributed Redis cache with a connection pool.

Fixes #48938.

Jonathan del Strother

Active Model

No changes.

Active Record
Fix change_column not setting precision: 6 on datetime columns when using 7.0+ Migrations and SQLite.

Hartley McGuire
Fix unscope is not working in specific case

Before:
Post.where(id: 1...3).unscope(where: :id).to_sql # "SELECT `posts`.* FROM `posts` WHERE `posts`.`id` >= 1 AND `posts`.`id` < 3"
After:
Post.where(id: 1...3).unscope(where: :id).to_sql # "SELECT `posts`.* FROM `posts`"
Fixes #48094.

Kazuya Hatanaka
Fix associations to a STI model including a class_name parameter

... (truncated)

Commits

fc734f2 Preparing for 7.0.8 release
af486be Merge pull request #44370 from mohits/patch-1
72bad1a Upgrade stringio to 3.0.8 to make sure guides CI pass
d230670 Force upgrade bundler to invalidate Bundler cache on CI
d84000d Require job used in this test file
3c17dab We expect queue adapters to be objects, no classes
4bb599c Upgrade gemfile to invalidate docker cache
39eddbd Merge pull request #49121 from skipkayhil/hm-backport-49090
8db97a7 Fix change_column not setting precision for sqlite
ac44103 Merge pull request #47865 from bensheldon/enqueue-error-message
Additional commits viewable in compare view

Updates rspec-rails from 4.0.1 to 6.0.3

Release notes

Sourced from rspec-rails's releases.

4.0.2 / 2020-12-26

Full Changelog

Bug Fixes:

Indent all extra failure lines output from system specs. (Alex Robbin, #2321)

Generated request spec for update now uses the correct let. (Paul Hanyzewski, #2344)

Return true/false from predicate methods in config rather than raw values. (Phil Pirozhkov, Jon Rowe, #2353, #2354)

Remove old #fixture_path feature detection code which broke under newer Rails. (Koen Punt, Jon Rowe, #2370)

Changelog

Sourced from rspec-rails's changelog.

6.0.3 / 2023-05-31

Full Changelog

Bug Fixes:

Set ActiveStorage::FixtureSet.file_fixture_path when including file fixture support. (Jason Yates, #2671)

Allow broadcast_to matcher to take Symbols. (@Vagab, #2680)

6.0.2 / 2023-05-04

Full Changelog

Bug Fixes:

Fix ActionView::PathSet when render_views is off for Rails 7.1. (Eugene Kenny, Iliana, #2631)

Support Rails 7.1's #fixtures_paths in example groups (removes a deprecation warning). (Nicholas Simmons, #2664)

Fix have_enqueued_job to properly detect enqueued jobs when other jobs were performed inside the expectation block. (Slava Kardakov, Phil Pirozhkov, #2573)

6.0.1 / 2022-10-18

Full Changelog

Bug Fixes:

Prevent tagged logged support in Rails 7 calling #name. (Jon Rowe, #2625)

6.0.0 / 2022-10-10

Full Changelog

Enhancements:

Support Rails 7

Template tweaks to remove instance variables from generated specs. (Takuma Ishikawa, #2599)

Generators now respects default path configuration option. (@vivekmiyani, #2508)

Breaking Changes:

Drop support for Rails below 6.1

Drop support for Ruby below 2.5 (following supported versions of Rails 6.1)

Change the order of after_teardown from after to around in system specs to improve compatibility with extensions and Capybara. (Tim Diggins, #2596)

Deprecations:

Deprecates integration spec generator (rspec:integration) which was an alias of request spec generator (rspec:request) (Luka Lüdicke, #2374)

... (truncated)

Commits

ecc77ff v6.0.3
cca3499 Update Changelog.md for #2680
ec49d0e Merge pull request #2680 from Vagab/allow-using-symbol-in-broadcast-to-matcher
d21484b Changelog for #2671
4192990 Merge pull request #2671 from jaywhy/main
3e3e757 v6.0.2
9cfc3ea Fix a spec on Rails edge
f56d3c7 Fix Rails deprecation warning
8848e6a Merge pull request #2573 from ojab/fixup_have_enqueued_job_on_retries
98e3e39 Changelog for #2664
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

…pec-rails Bumps [activerecord](https://github.com/rails/rails), [actionview](https://github.com/rails/rails), [actionpack](https://github.com/rails/rails), [administrate](https://github.com/thoughtbot/administrate), [rails](https://github.com/rails/rails) and [rspec-rails](https://github.com/rspec/rspec-rails). These dependencies needed to be updated together. Updates `activerecord` from 5.2.3 to 7.0.8 - [Release notes](https://github.com/rails/rails/releases) - [Changelog](https://github.com/rails/rails/blob/v7.0.8/activerecord/CHANGELOG.md) - [Commits](rails/rails@v5.2.3...v7.0.8) Updates `actionview` from 5.2.3 to 7.0.8 - [Release notes](https://github.com/rails/rails/releases) - [Changelog](https://github.com/rails/rails/blob/v7.0.8/actionview/CHANGELOG.md) - [Commits](rails/rails@v5.2.3...v7.0.8) Updates `actionpack` from 5.2.3 to 7.0.8 - [Release notes](https://github.com/rails/rails/releases) - [Changelog](https://github.com/rails/rails/blob/v7.0.8/actionpack/CHANGELOG.md) - [Commits](rails/rails@v5.2.3...v7.0.8) Updates `administrate` from 0.14.0 to 0.19.0 - [Release notes](https://github.com/thoughtbot/administrate/releases) - [Changelog](https://github.com/thoughtbot/administrate/blob/main/CHANGELOG.md) - [Commits](thoughtbot/administrate@v0.14.0...v0.19.0) Updates `rails` from 5.2.3 to 7.0.8 - [Release notes](https://github.com/rails/rails/releases) - [Commits](rails/rails@v5.2.3...v7.0.8) Updates `rspec-rails` from 4.0.1 to 6.0.3 - [Release notes](https://github.com/rspec/rspec-rails/releases) - [Changelog](https://github.com/rspec/rspec-rails/blob/main/Changelog.md) - [Commits](rspec/rspec-rails@v4.0.1...v6.0.3) --- updated-dependencies: - dependency-name: activerecord dependency-type: direct:development - dependency-name: actionview dependency-type: direct:development - dependency-name: actionpack dependency-type: direct:development - dependency-name: administrate dependency-type: direct:production - dependency-name: rails dependency-type: direct:production - dependency-name: rspec-rails dependency-type: direct:development ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Sep 25, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump activerecord, actionview, actionpack, administrate, rails and rspec-rails #15

Bump activerecord, actionview, actionpack, administrate, rails and rspec-rails #15

dependabot bot commented on behalf of github Sep 25, 2023

Bump activerecord, actionview, actionpack, administrate, rails and rspec-rails #15

Are you sure you want to change the base?

Bump activerecord, actionview, actionpack, administrate, rails and rspec-rails #15

Conversation

dependabot bot commented on behalf of github Sep 25, 2023

7.0.8

Active Support

Active Model

Active Record

Rails 7.0.8 (September 09, 2023)

7.0.8

Active Support

Active Model

Active Record

Rails 7.0.8 (September 09, 2023)

Rails 7.0.7.2 (August 22, 2023)

Rails 7.0.7.1 (August 22, 2023)

Rails 7.0.7 (August 09, 2023)

Rails 7.0.6 (June 29, 2023)

Rails 7.0.5.1 (June 26, 2023)

7.0.8

Active Support

Active Model

Active Record

Rails 7.0.8 (September 09, 2023)

Rails 7.0.7.2 (August 22, 2023)

Rails 7.0.7.1 (August 22, 2023)

Rails 7.0.7 (August 09, 2023)

Rails 7.0.6 (June 29, 2023)

Rails 7.0.5.1 (June 26, 2023)

Rails 7.0.5 (May 24, 2023)

0.19.0

0.19.0 (July 18, 2023)

7.0.8

Active Support

Active Model

Active Record

4.0.2 / 2020-12-26

6.0.3 / 2023-05-31

6.0.2 / 2023-05-04

6.0.1 / 2022-10-18

6.0.0 / 2022-10-10