Created by: dependabot-preview[bot]
Bumps actionpack from 6.0.3.4 to 6.1.1.
Release notes
Sourced from actionpack's releases.
6.1.1
Active Support
Change
IPAddr#to_json
to match the behavior of the json gem returning the string representation instead of the instance variables of the object.Before:
IPAddr.new("127.0.0.1").to_json # => "{\"addr\":2130706433,\"family\":2,\"mask_addr\":4294967295}"
After:
IPAddr.new("127.0.0.1").to_json # => "\"127.0.0.1\""
Active Model
- No changes.
Active Record
Fix fixtures loading when strict loading is enabled for the association.
Alex Ghiculescu
Fix
where
with custom primary key for belongs_to association.Ryuta Kamizono
Fix
where
with aliased associations.Ryuta Kamizono
Fix
composed_of
with symbol mapping.Ryuta Kamizono
Don't skip money's type cast for pluck and calculations.
Ryuta Kamizono
Changelog
Sourced from actionpack's changelog.
Rails 6.1.1 (January 07, 2021)
Fix nil translation key lookup in controllers/
Jan Klimo
Quietly handle unknown HTTP methods in Action Dispatch SSL middleware.
Alex Robbin
Change the request method to a
GET
when passing failed requests down toconfig.exceptions_app
.Alex Robbin
Rails 6.1.0 (December 09, 2020)
Support for the HTTP header
Feature-Policy
has been revised to reflect its rename toPermissions-Policy
.Rails.application.config.permissions_policy do |p| p.camera :none p.gyroscope :none p.microphone :none p.usb :none p.fullscreen :self p.payment :self, "https://secure-example.com" end
Julien Grillot
Allow
ActionDispatch::HostAuthorization
to exclude specific requests.Host Authorization checks can be skipped for specific requests. This allows for health check requests to be permitted for requests with missing or non-matching host headers.
Chris Bisnett
Add
config.action_dispatch.request_id_header
to allow changing the name of the unique X-Request-Id headerArlston Fernandes
Deprecate
config.action_dispatch.return_only_media_type_on_content_type
.Rafael Mendonça França
Change
ActionDispatch::Response#content_type
to return the full Content-Type header.
Commits
-
5f3ff60
Preparing for 6.1.1 release -
8923083
Merge pull request #40960 from abhaynikam/40956-route-table-dark-mode -
cf993a3
Merge pull request #40910 from janklimo/fix_nil_translation_key_lookup_in_con... -
3dbef44
Support selenium-webdriver 4 -
87b7cda
No need to freeze constants -
90ce1fd
Merge pull request #40930 from agrobbin/action-dispatch-ssl-raw-request-method -
06c9481
Merge pull request #40834 from agrobbin/unknown-http-method-middleware -
8f4ed3c
Merge pull request #40850 from tjschuck/small-doc-formatting-fixes -
914caca
Preparing for 6.1.0 release -
b38eb45
Preparing for 6.1.0.rc2 release - Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebase
will rebase this PR -
@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it -
@dependabot merge
will merge this PR after your CI passes on it -
@dependabot squash and merge
will squash and merge this PR after your CI passes on it -
@dependabot cancel merge
will cancel a previously requested merge and block automerging -
@dependabot reopen
will reopen this PR if it is closed -
@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -
@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language -
@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language -
@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language -
@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and language -
@dependabot badge me
will comment on this PR with code to add a "Dependabot enabled" badge to your readme
Additionally, you can set the following in your Dependabot dashboard:
- Update frequency (including time of day and day of week)
- Pull request limits (per update run and/or open at any time)
- Automerge options (never/patch/minor, and dev/runtime dependencies)
- Out-of-range updates (receive only lockfile updates, if desired)
- Security updates (receive only security updates, if desired)