Bump nokogiri from 1.10.8 to 1.14.2

[dependabot]

Bumps nokogiri from 1.10.8 to 1.14.2.

Release notes

Sourced from nokogiri's releases.

1.14.2 / 2023-02-13

Fixed

• Calling NodeSet#to_html on an empty node set no longer raises an encoding-related exception. This bug was introduced in v1.14.0 while fixing #2649. [#2784]

---

sha256 checksums:

966acf4f6c1fba10518f86498141cf44265564ac5a65dcc8496b65f8c354f776  nokogiri-1.14.2-aarch64-linux.gem
8a3a35cadae4a800ddc0b967394257343d62196d9d059b54e38cf067981db428  nokogiri-1.14.2-arm-linux.gem
81404cd014ecb597725c3847523c2ee365191a968d0b5f7d857e03f388c57631  nokogiri-1.14.2-arm64-darwin.gem
0a39222af14e75eb0243e8d969345e03b90c0e02b0f33c61f1ebb6ae53538bb5  nokogiri-1.14.2-java.gem
62a18f9213a0ceeaf563d1bc7ccfd93273323c4356ded58a5617c59bc4635bc5  nokogiri-1.14.2-x64-mingw-ucrt.gem
54f6ac2c15a7a88f431bb5e23f4616aa8fc97a92eb63336bcf65b7050f2d3be0  nokogiri-1.14.2-x64-mingw32.gem
c42fa0856f01f901954898e28c3c2b4dce0e843056b1b126f441d06e887e1b77  nokogiri-1.14.2-x86-linux.gem
f940d9c8e47b0f19875465376f2d1c8911bc9489ac9a48c124579819dc4a7f19  nokogiri-1.14.2-x86-mingw32.gem
2508978f5ca28944919973f6300f0a7355fbe72604ab6a6913f1630be1030265  nokogiri-1.14.2-x86_64-darwin.gem
bc6405e1f3ddac6e401f82d775f1c0c24c6e58c371b3fadaca0596d5d511e476  nokogiri-1.14.2-x86_64-linux.gem
c765a74aac6cf430a710bb0b6038b8ee11f177393cd6ae8dadc7a44a6e2658b6  nokogiri-1.14.2.gem

1.14.1 / 2023-01-30

Fixed

• Serializing documents now works again with pseudo-IO objects that don't support IO's encoding API (like rubyzip's Zip::OutputStream). This was a regression in v1.14.0 due to the fix for #752 in #2434, and was not completely fixed by #2753. [#2773]
• [CRuby] Address compiler warnings about void* casting and old-style C function definitions.

---

sha256 checksums:

99594e8b94f576644ac640a223d74c79e840218948e963aa635f0254927bff10  nokogiri-1.14.1-aarch64-linux.gem
1dc9b7821e1fa1f3fda40659662e51a4b3692acc4ee6342ee34a6a537fc1d5d8  nokogiri-1.14.1-arm-linux.gem
1a693df86da8c4c97b01d614470f9c3e10b9c755de8803fbfcfffe0f9dff522a  nokogiri-1.14.1-arm64-darwin.gem
c1f87a8f7bc56028deb2aecbb29e9b318405f7c468b29047aede78b41bc735a2  nokogiri-1.14.1-java.gem
2463a1ae0be5f06a10f3f3b374c2b743bff6280db993d488511a19bb7bc7cb7c  nokogiri-1.14.1-x64-mingw-ucrt.gem
f3a2b0ceedf51d776b39dc759ce191a4df842d7d4f5900c64f33d4753db39877  nokogiri-1.14.1-x64-mingw32.gem
f395d6c28c822b0877cfb0c71781f05243c034b4823359ab25b3288a73b9fc82  nokogiri-1.14.1-x86-linux.gem
be34b32fe74e82bffca5b1f3df8727c8fdc828762b6dddab53a11cd8f8515785  nokogiri-1.14.1-x86-mingw32.gem
9b14091f77086c4f0f09451ba3acd1b5f7e0076fb34fc536682170fa9f1a5074  nokogiri-1.14.1-x86_64-darwin.gem
21d234c51582b292e2e1e02e6c30eea9188894348985d6910aa8e993749c0aff  nokogiri-1.14.1-x86_64-linux.gem
b2db3af7769c29cd77d5f39cd3d0b65ab10975bdecf04be71d683f9c9abe2663  nokogiri-1.14.1.gem

... (truncated)

Changelog

Sourced from nokogiri's changelog.

1.14.2 / 2023-02-13

Fixed

• Calling NodeSet#to_html on an empty node set no longer raises an encoding-related exception. This bug was introduced in v1.14.0 while fixing #2649. [#2784]

1.14.1 / 2023-01-30

Fixed

• Serializing documents now works again with pseudo-IO objects that don't support IO's encoding API (like rubyzip's Zip::OutputStream). This was a regression in v1.14.0 due to the fix for #752 in #2434, and was not completely fixed by #2753. [#2773]
• [CRuby] Address compiler warnings about void* casting and old-style C function definitions.

1.14.0 / 2023-01-12

Notable Changes

Ruby

This release introduces native gem support for Ruby 3.2. (Also see "Technical note" under "Changed" below.)

This release ends support for:

• Ruby 2.6, for which upstream support ended 2022-04-12.
• JRuby 9.3, which is not fully compatible with Ruby 2.7+

Faster, more reliable installation: Native Gem for aarch64-linux (aka linux/arm64/v8)

This version of Nokogiri ships official native gem support for the aarch64-linux platform, which should support AWS Graviton and other ARM64 Linux platforms. Please note that glibc >= 2.29 is required for aarch64-linux systems, see Supported Platforms for more information.

Faster, more reliable installation: Native Gem for arm-linux (aka linux/arm/v7)

This version of Nokogiri ships experimental native gem support for the arm-linux platform. Please note that glibc >= 2.29 is required for arm-linux systems, see Supported Platforms for more information.

Pattern matching

This version introduces an experimental pattern matching API for XML::Attr, XML::Document, XML::DocumentFragment, XML::Namespace, XML::Node, and XML::NodeSet (and their subclasses).

Some documentation on what can be matched:

• XML::Attr#deconstruct_keys
• XML::Document#deconstruct_keys
• XML::Namespace#deconstruct_keys
• XML::Node#deconstruct_keys
• XML::DocumentFragment#deconstruct

... (truncated)

Commits

• 1580121 version bump to v1.14.2
• 5309477 Merge pull request #2791 from sparklemotion/2784-encoding-empty-strings-v1.14.x
• 975ae49 doc: update CHANGELOG
• f13cdb4 fix: empty node set serialization when document encoding is nil
• f6cecec version bump to v1.14.1
• 56e6118 Merge pull request #2782 from sparklemotion/dependabot/bundler/rubocop-1.44.1
• a8eb958 build(deps-dev): update rubocop requirement from 1.43.0 to 1.44.1
• 87b94c5 Merge pull request #2781 from sparklemotion/dependabot/bundler/rubocop-minite...
• c14cf6a build(deps-dev): update rubocop-minitest requirement
• c748078 Merge pull request #2775 from sparklemotion/2773-pseudo-io-serialization
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

[Realm808]

Review code 3rd time, all well,then post for merged

…

On Thu, 9 Mar 2023, 09:32 dependabot[bot], ***@***.***> wrote: This automated pull request fixes a security vulnerability <https://github.com/Realm808/github-slideshow/security/dependabot/19> (moderate severity). Learn more about Dependabot security updates <https://docs.github.com/github/managing-security-vulnerabilities/configuring-dependabot-security-updates>. ------------------------------ Bumps nokogiri <https://github.com/sparklemotion/nokogiri> from 1.10.8 to 1.14.2. Release notes *Sourced from nokogiri's releases <https://github.com/sparklemotion/nokogiri/releases>.* 1.14.2 / 2023-02-13 Fixed - Calling NodeSet#to_html on an empty node set no longer raises an encoding-related exception. This bug was introduced in v1.14.0 while fixing #2649 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2649>. [#2784 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2784> ] ------------------------------ sha256 checksums: 966acf4f6c1fba10518f86498141cf44265564ac5a65dcc8496b65f8c354f776 nokogiri-1.14.2-aarch64-linux.gem 8a3a35cadae4a800ddc0b967394257343d62196d9d059b54e38cf067981db428 nokogiri-1.14.2-arm-linux.gem 81404cd014ecb597725c3847523c2ee365191a968d0b5f7d857e03f388c57631 nokogiri-1.14.2-arm64-darwin.gem 0a39222af14e75eb0243e8d969345e03b90c0e02b0f33c61f1ebb6ae53538bb5 nokogiri-1.14.2-java.gem 62a18f9213a0ceeaf563d1bc7ccfd93273323c4356ded58a5617c59bc4635bc5 nokogiri-1.14.2-x64-mingw-ucrt.gem 54f6ac2c15a7a88f431bb5e23f4616aa8fc97a92eb63336bcf65b7050f2d3be0 nokogiri-1.14.2-x64-mingw32.gem c42fa0856f01f901954898e28c3c2b4dce0e843056b1b126f441d06e887e1b77 nokogiri-1.14.2-x86-linux.gem f940d9c8e47b0f19875465376f2d1c8911bc9489ac9a48c124579819dc4a7f19 nokogiri-1.14.2-x86-mingw32.gem 2508978f5ca28944919973f6300f0a7355fbe72604ab6a6913f1630be1030265 nokogiri-1.14.2-x86_64-darwin.gem bc6405e1f3ddac6e401f82d775f1c0c24c6e58c371b3fadaca0596d5d511e476 nokogiri-1.14.2-x86_64-linux.gem c765a74aac6cf430a710bb0b6038b8ee11f177393cd6ae8dadc7a44a6e2658b6 nokogiri-1.14.2.gem 1.14.1 / 2023-01-30 Fixed - Serializing documents now works again with pseudo-IO objects that don't support IO's encoding API (like rubyzip's Zip::OutputStream). This was a regression in v1.14.0 due to the fix for #752 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/752> in #2434 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2434>, and was not completely fixed by #2753 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2753>. [#2773 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2773> ] - [CRuby] Address compiler warnings about void* casting and old-style C function definitions. ------------------------------ sha256 checksums: 99594e8b94f576644ac640a223d74c79e840218948e963aa635f0254927bff10 nokogiri-1.14.1-aarch64-linux.gem 1dc9b7821e1fa1f3fda40659662e51a4b3692acc4ee6342ee34a6a537fc1d5d8 nokogiri-1.14.1-arm-linux.gem 1a693df86da8c4c97b01d614470f9c3e10b9c755de8803fbfcfffe0f9dff522a nokogiri-1.14.1-arm64-darwin.gem c1f87a8f7bc56028deb2aecbb29e9b318405f7c468b29047aede78b41bc735a2 nokogiri-1.14.1-java.gem 2463a1ae0be5f06a10f3f3b374c2b743bff6280db993d488511a19bb7bc7cb7c nokogiri-1.14.1-x64-mingw-ucrt.gem f3a2b0ceedf51d776b39dc759ce191a4df842d7d4f5900c64f33d4753db39877 nokogiri-1.14.1-x64-mingw32.gem f395d6c28c822b0877cfb0c71781f05243c034b4823359ab25b3288a73b9fc82 nokogiri-1.14.1-x86-linux.gem be34b32fe74e82bffca5b1f3df8727c8fdc828762b6dddab53a11cd8f8515785 nokogiri-1.14.1-x86-mingw32.gem 9b14091f77086c4f0f09451ba3acd1b5f7e0076fb34fc536682170fa9f1a5074 nokogiri-1.14.1-x86_64-darwin.gem 21d234c51582b292e2e1e02e6c30eea9188894348985d6910aa8e993749c0aff nokogiri-1.14.1-x86_64-linux.gem b2db3af7769c29cd77d5f39cd3d0b65ab10975bdecf04be71d683f9c9abe2663 nokogiri-1.14.1.gem ... (truncated) Changelog *Sourced from nokogiri's changelog <https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md>.* 1.14.2 / 2023-02-13 Fixed - Calling NodeSet#to_html on an empty node set no longer raises an encoding-related exception. This bug was introduced in v1.14.0 while fixing #2649 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2649>. [#2784 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2784> ] 1.14.1 / 2023-01-30 Fixed - Serializing documents now works again with pseudo-IO objects that don't support IO's encoding API (like rubyzip's Zip::OutputStream). This was a regression in v1.14.0 due to the fix for #752 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/752> in #2434 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2434>, and was not completely fixed by #2753 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2753>. [#2773 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2773> ] - [CRuby] Address compiler warnings about void* casting and old-style C function definitions. 1.14.0 / 2023-01-12 Notable Changes Ruby This release introduces native gem support for Ruby 3.2. (Also see "Technical note" under "Changed" below.) This release ends support for: - Ruby 2.6, for which upstream support ended 2022-04-12 <https://www.ruby-lang.org/en/downloads/branches/>. - JRuby 9.3, which is not fully compatible with Ruby 2.7+ Faster, more reliable installation: Native Gem for aarch64-linux (aka linux/arm64/v8) This version of Nokogiri ships *official* native gem support for the aarch64-linux platform, which should support AWS Graviton and other ARM64 Linux platforms. Please note that glibc >= 2.29 is required for aarch64-linux systems, see Supported Platforms <https://nokogiri.org/#supported-platforms> for more information. Faster, more reliable installation: Native Gem for arm-linux (aka linux/arm/v7) This version of Nokogiri ships *experimental* native gem support for the arm-linux platform. Please note that glibc >= 2.29 is required for arm-linux systems, see Supported Platforms <https://nokogiri.org/#supported-platforms> for more information. Pattern matching This version introduces an *experimental* pattern matching API for XML::Attr, XML::Document, XML::DocumentFragment, XML::Namespace, XML::Node, and XML::NodeSet (and their subclasses). Some documentation on what can be matched: - XML::Attr#deconstruct_keys <https://nokogiri.org/rdoc/Nokogiri/XML/Attr.html?h=deconstruct#method-i-deconstruct_keys> - XML::Document#deconstruct_keys <https://nokogiri.org/rdoc/Nokogiri/XML/Document.html?h=deconstruct#method-i-deconstruct_keys> - XML::Namespace#deconstruct_keys <https://nokogiri.org/rdoc/Nokogiri/XML/Namespace.html?h=deconstruct+namespace#method-i-deconstruct_keys> - XML::Node#deconstruct_keys <https://nokogiri.org/rdoc/Nokogiri/XML/Node.html?h=deconstruct#method-i-deconstruct_keys> - XML::DocumentFragment#deconstruct <https://nokogiri.org/rdoc/Nokogiri/XML/DocumentFragment.html?h=deconstruct#method-i-deconstruct> ... (truncated) Commits - 1580121 <sparklemotion/nokogiri@1580121> version bump to v1.14.2 - 5309477 <sparklemotion/nokogiri@5309477> Merge pull request #2791 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2791> from sparklemotion/2784-encoding-empty-strings-v1.14.x - 975ae49 <sparklemotion/nokogiri@975ae49> doc: update CHANGELOG - f13cdb4 <sparklemotion/nokogiri@f13cdb4> fix: empty node set serialization when document encoding is nil - f6cecec <sparklemotion/nokogiri@f6cecec> version bump to v1.14.1 - 56e6118 <sparklemotion/nokogiri@56e6118> Merge pull request #2782 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2782> from sparklemotion/dependabot/bundler/rubocop-1.44.1 - a8eb958 <sparklemotion/nokogiri@a8eb958> build(deps-dev): update rubocop requirement from 1.43.0 to 1.44.1 - 87b94c5 <sparklemotion/nokogiri@87b94c5> Merge pull request #2781 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2781> from sparklemotion/dependabot/bundler/rubocop-minite... - c14cf6a <sparklemotion/nokogiri@c14cf6a> build(deps-dev): update rubocop-minitest requirement - c748078 <sparklemotion/nokogiri@c748078> Merge pull request #2775 <https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2775> from sparklemotion/2773-pseudo-io-serialization - Additional commits viewable in compare view <sparklemotion/nokogiri@v1.10.8...v1.14.2> [image: Dependabot compatibility score] <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase. ------------------------------ Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - @dependabot rebase will rebase this PR - @dependabot recreate will recreate this PR, overwriting any edits that have been made to it - @dependabot merge will merge this PR after your CI passes on it - @dependabot squash and merge will squash and merge this PR after your CI passes on it - @dependabot cancel merge will cancel a previously requested merge and block automerging - @dependabot reopen will reopen this PR if it is closed - @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - @dependabot use these labels will set the current labels as the default for future PRs for this repo and language - @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language - @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language - @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the Security Alerts page <https://github.com/Realm808/github-slideshow/network/alerts>. ------------------------------ You can view, comment on, or merge this pull request online at: #10 Commit Summary - 8659794 <8659794> Bump nokogiri from 1.10.8 to 1.14.2 File Changes (1 file <https://github.com/Realm808/github-slideshow/pull/10/files>) - *M* Gemfile.lock <https://github.com/Realm808/github-slideshow/pull/10/files#diff-89cade48462044ee1b672dc5f4c3ec250fbd29effcd8932096a23c1283c6731f> (8) Patch Links: - https://github.com/Realm808/github-slideshow/pull/10.patch - https://github.com/Realm808/github-slideshow/pull/10.diff — Reply to this email directly, view it on GitHub <#10>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/APYZVREOTY3UXE3C4FC4S2TW3GPRXANCNFSM6AAAAAAVU3BJPM> . You are receiving this because you are subscribed to this thread.Message ID: ***@***.***>

[dependabot]

Superseded by #11.