Skip to content

Build(deps): Bump oauth from 0.5.7 to 1.0.0 #59

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Build(deps): Bump oauth from 0.5.7 to 1.0.0 #59

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Aug 23, 2022

Bumps oauth from 0.5.7 to 1.0.0.

Release notes

Sourced from oauth's releases.

Stable Release v1

The first "Stable Release" in terms of Semantic Versioning.

The oldest supported Ruby, currently 2.7, will be dropped no later than April 2025, and a new major version of this gem will be released to drop Ruby 2.7 support (and possibly other stuff).

0.6.x is EOL April 2024

Non-commercial support for 0.6.x will end no later than April 2024.

Full Changelog: ruby-oauth/oauth@v0.5.13...v0.6.1

0.5.x is EOL April 2023

Non-commercial support for 0.5.x will end no later than April 2023.

Full Changelog: ruby-oauth/oauth@v0.5.10...v0.5.13

v0.5.10

0.5.10 2022-05-04

The "Can it be the end of the line for 0.5.x?" Release

Added

  • Major updates to Documentation
  • More CI Hardening
  • Align CI builds with official Ruby Compatibility Matrix
  • Project tooling in preparation for final release of 0.5.x series
    • diffend

Commits: ruby-oauth/oauth@v0.5.9...v0.5.10

v0.5.9

0.5.9 2022-05-03

Added

  • Documentation related to Ruby compatibility
  • Updated CHANGELOG.md formatting
  • Corrected CHANGELOG.md typos
  • Hardened the CI build for the next few years(?!)
  • Require MFA to push new version to Rubygems
  • Replace Hash Rocket syntax with JSON-style symbols where possible
  • Project tooling in preparation for final release of 0.5.x series
    • rubocop-ruby2_0
    • overcommit

Commits: ruby-oauth/oauth@v0.5.8...v0.5.9

v0.5.8

[0.5.8] 2021-11-10

Added

... (truncated)

Changelog

Sourced from oauth's changelog.

[1.0.0] 2022-08-23

Changed

  • Dropped support for Ruby < 2.7
  • Dropped support for Rails < 6

Added

  • New EOL Policy
    • Non-commercial support for the oldest version of Ruby (which itself is going EOL) will be dropped each year in April

[0.6.1] 2022-08-23

Changed

  • Fixed documentation in SECURITY.md
  • Change references to master => main

Added

  • Post install note about v0.6.x EOL approaching in April, 2024

[0.6.0] 2022-08-23

Added

  • New option body_hash_enabled which defaults to true to maintain backward compatibility with prior releases. Setting to false disables generation of a oauth_body_hash component as part of the signature computation.
  • Improved documentation of support policy via Tidelift
  • Stop testing against active_support v2

Changed

  • Utilize version_gem extracted from oauth2 gem for VERSION
    • Added new OAuth::Version namespace
    • VERSION constant now at OAuth::Version::VERSION

Removed

  • Ruby 2.0, 2.1, 2.2, and 2.3 are no longer valid install targets

[0.5.13] 2022-08-23

The "I think I caught 'em all!" Release

Fixed

  • Typo oauth2 => oauth as gem name in one more place.

[0.5.12] 2022-08-23

The "Typoes are just the worst!" Release

Fixed

  • Typo oauth2 => oauth as gem name in a couple places.

[0.5.11] 2022-08-23

The "Is this the last release with a silly name?" Release

Added

  • Post install note about v0.5.x EOL approaching in April, 2023

Changed

... (truncated)

Commits
  • df56183 ✨ Contrib Rocks link
  • aa09e1d 🔧 Minimum Ruby is now 2.7
  • 6574ac4 🔧 Minimum Ruby is now 2.7
  • 1f43fd4 🔥 Remove hacks for old Rails
  • aa91801 Merge pull request #263 from oauth-xx/dependabot/bundler/webmock-lte-3.19.0
  • f39d700 Update webmock requirement from <= 3.14.0 to <= 3.19.0
  • 62d3f3e ⬆️ rubocop-lts
  • 56566b9 📝 Go 1.0
  • 719ea8f 🔥 Drop old Rubies
  • af23372 ➖ Remove diffend
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Build(deps): Bump oauth from 0.5.7 to 1.0.0
73ab95e 
Bumps [oauth](https://github.com/oauth-xx/oauth-ruby) from 0.5.7 to 1.0.0.
- [Release notes](https://github.com/oauth-xx/oauth-ruby/releases)
- [Changelog](https://github.com/oauth-xx/oauth-ruby/blob/main/CHANGELOG.md)
- [Commits](ruby-oauth/oauth@v0.5.7...v1.0.0)

---
updated-dependencies:
- dependency-name: oauth
  dependency-type: indirect
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Aug 23, 2022
@dependabot dependabot bot mentioned this pull request Aug 23, 2022
Closed
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Aug 31, 2022

Superseded by #61.

@dependabot dependabot bot closed this Aug 31, 2022
@dependabot dependabot bot deleted the dependabot/bundler/oauth-1.0.0 branch August 31, 2022 22:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants