Bump the bundler group across 1 directory with 2 updates
Closed
Number: #323
Type: Pull Request
State: Closed
Type: Pull Request
State: Closed
Author:
![dependabot[bot]](https://github.com/dependabot.png)
dependabot[bot]
Association: Contributor
Comments: 0
dependabot[bot]Association: Contributor
Comments: 0
Created:
May 21, 2025 at 03:01 PM UTC
(about 1 year ago)
(about 1 year ago)
Updated:
May 28, 2025 at 05:03 PM UTC
(about 1 year ago)
(about 1 year ago)
Closed:
May 28, 2025 at 05:03 PM UTC
(about 1 year ago)
(about 1 year ago)
Time to Close:
7 days
Labels:
dependencies ruby
dependencies ruby
Description:
Bumps the bundler group with 2 updates in the /docs directory: commonmarker and rexml.
Updates commonmarker from 0.23.7 to 0.23.10
Release notes
Sourced from commonmarker's releases.
v0.23.10
What's Changed
- Update to 0.29.0.gfm.13 by
@anticomputerin gjtorikian/commonmarker#247Full Changelog: https://github.com/gjtorikian/commonmarker/compare/v0.23.9...v0.23.10
v0.23.9
What's Changed
- Update to 0.29.0.gfm.11 by
@anticomputerin gjtorikian/commonmarker#236Full Changelog: https://github.com/gjtorikian/commonmarker/compare/v0.23.8...v0.23.9
v0.23.8
What's Changed
- Update cmark-upstream to
0.29.0.gfm.9by@smocklein gjtorikian/commonmarker#227New Contributors
@smocklemade their first contribution in gjtorikian/commonmarker#227Full Changelog: https://github.com/gjtorikian/commonmarker/compare/v0.23.7...v0.23.8
Changelog
Sourced from commonmarker's changelog.
[v0.23.10] (2023-07-31)
- Update GFM release to
0.29.0.gfm.12and0.29.0.gfm.13, thereby fixing a polynomial time complexity security vulnerability.- Of note to users of this library, GFM releases
0.29.0.gfm.12and0.29.0.gfm.13also:v0.23.4 (2022-03-03)
Fixed bugs:
#render_htmlway slower than#render_doc.to_html#141Closed issues:
- allow keeping text content of unknown tags #169
- STRIKETHROUGH_DOUBLE_TILDE not working #168
- Allow disabling 4-space code blocks #167
- tables with escaped pipes are not recognized #166
Merged pull requests:
- CI: Drop a duplicate 'bundle install' #173 (olleolleolle)
- CI: Drop duplicate bundle install #172 (olleolleolle)
- Fixup benchmark and speedup a little, fixes #141 #171 (ojab)
v0.23.2 (2021-09-17)
Merged pull requests:
v0.23.1 (2021-09-03)
Closed issues:
- Incorrect processing of list and next block of code #146
Merged pull requests:
v0.23.0 (2021-08-30)
... (truncated)
Commits
db8cd37Merge pull request #247 from anticomputer/update-to-0.29.0.gfm.13e1e450c:gem: release 0.23.1008b7c4bUpdate cmark-upstream to https://github.com/github/cmark-gfm/commit/587a12bb5...d0e81e2I've used this version of the update_submodules script for several releases, ...42cfc90Merge pull request #236 from anticomputer/update-to-0.29.0.gfm.10d793fbfUpdate cmark-upstream to https://github.com/github/cmark-gfm/commit/1e230827a...4e4588fUpdate Makefile for export header consolidation2eb8ca8Update cmark-upstream to https://github.com/github/cmark-gfm/commit/c8dcdc71c...bbb49dbHtmlRenderer: don't nest <strong>f303e6b:gem: release 0.23.9- Additional commits viewable in compare view
Updates rexml from 3.2.5 to 3.3.9
Release notes
Sourced from rexml's releases.
REXML 3.3.9 - 2024-10-24
Improvements
- Improved performance.
- GH-210
- Patch by NAITOH Jun.
Fixes
Fixed a parse bug for text only invalid XML.
- GH-215
- Patch by NAITOH Jun.
Fixed a parse bug that
�x...;is accepted as a character reference.Thanks
- NAITOH Jun
REXML 3.3.8 - 2024-09-29
Improvements
- SAX2: Improve parse performance.
- GH-207
- Patch by NAITOH Jun.
Fixes
- Fixed a bug that unexpected attribute namespace conflict error for the predefined "xml" namespace is reported.
- GH-208
- Patch by KITAITI Makoto
Thanks
NAITOH Jun
KITAITI Makoto
REXML 3.3.7 - 2024-09-04
Improvements
... (truncated)
Changelog
Sourced from rexml's changelog.
3.3.9 - 2024-10-24 {#version-3-3-9}
Improvements
- Improved performance.
- GH-210
- Patch by NAITOH Jun.
Fixes
Fixed a parse bug for text only invalid XML.
- GH-215
- Patch by NAITOH Jun.
Fixed a parse bug that
�x...;is accepted as a character reference.Thanks
- NAITOH Jun
3.3.8 - 2024-09-29 {#version-3-3-8}
Improvements
- SAX2: Improve parse performance.
- GH-207
- Patch by NAITOH Jun.
Fixes
- Fixed a bug that unexpected attribute namespace conflict error for the predefined "xml" namespace is reported.
- GH-208
- Patch by KITAITI Makoto
Thanks
NAITOH Jun
KITAITI Makoto
3.3.7 - 2024-09-04 {#version-3-3-7}
Improvements
... (truncated)
Commits
38eaa86Add 3.3.9 entryce59f2eparser: fix a bug that �x...; is accepted as a character referencea09646dtest: fix indentcf0fb9cFixIOSource#readlinefor@pending_buffer(#215)1d0c362OptimizeIOSource#read_untilmethod (#210)622011fBump version036d508test: avoid using needless non ASCII characters4197054Add 3.3.8 entry78f8712Fix handling with "xml:" prefixed namespace (#208)2e1cd64Optimize SAX2Parser#get_namespace (#207)- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the Security Alerts page.
Pull Request Statistics
Commits:
1
1
Files Changed:
1
1
Additions:
+2
+2
Deletions:
-2
-2
Package Dependencies
Technical Details
| ID: | 561343 |
| UUID: | 2534682851 |
| Node ID: | PR_kwDODk9xUM6XFDDj |
| Host: | GitHub |
| Repository: | github/catalyst |
| Mergeable: | Yes |
| Merge State: | Unstable |