Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump omniauth-github from 1.1.2 to 1.4.0 in /src/supermarket #40

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump omniauth-github from 1.1.2 to 1.4.0 in /src/supermarket #40

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Aug 12, 2021
edited
Loading

Bumps omniauth-github from 1.1.2 to 1.4.0.

Release notes

Sourced from omniauth-github's releases.

v1.4.0

Includes changes in #84, #85, #79, #86

v1.3.0

Updates

  • Do not include query params in callback URLs (PR #73)

In order to be compatible with GitHub Integration's Oauth flow the callback URL must match the same one provided in the integration's settings page. This includes query parameters.

Confirmation from Github's team: https://platform.git.luolix.topmunity/t/oauth-flow-with-integration-406-not-acceptable/1775/8

Thanks to @​volmer for handling this!

v1.2.3

Updates

  • Loosen OmniAuth requirements (PR: #71)

v1.2.2

Fixes

  • Email without scope (PR: #69; Issue: #68)

v1.2.1

Dependencies

  • Bumps omniauth to ~>1.4.0 (Note: Drops support for Ruby 1.8)

Additions

  • Adds Rake to development dependencies

v1.2.0

This long-awaited version brings omniauth-github up-to-date in the following ways:

Security Updates

  • Uses https for the RubyGems URL to pass bundler audit

Dependencies

  • Bumps omniauth to ~>1.3.2
  • Bumps omniauth-oauth2 to ~> 1.4.0
  • Bumps rspec to ~> 3.5

Specs

  • Updates specs to RSpec 3+ syntax

Housekeeping

  • Ensure similar code formatting in specs
  • Bump gem version to 1.2.0

Associated Pull Request

... (truncated)

Commits
  • c1a5f28 release 1.4.0
  • 967d769 Update README.md
  • 6d33be6 Merge pull request #86 from omniauth/setup-github-action
  • 8f97d9c Setup GitHub Action
  • 6b497a8 Merge pull request #79 from davebrace/include-token-scope-in-extra
  • 4f3706a Merge pull request #85 from jasonschulte/patch-1
  • 4aca7b6 Merge pull request #84 from DazWorrall/query-auth-deprecated
  • 2c3ff79 Update README.md
  • f367321 Use header auth mode for user and email requests
  • 1b3a35c Include the received access token's scope in the 'extra' hash
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Aug 12, 2021
@dependabot
Bump omniauth-github from 1.1.2 to 1.4.0 in /src/supermarket
3d92aad 
Bumps [omniauth-github](https://github.com/intridea/omniauth-github) from 1.1.2 to 1.4.0.
- [Release notes](https://github.com/intridea/omniauth-github/releases)
- [Commits](omniauth/omniauth-github@v1.1.2...v1.4.0)

---
updated-dependencies:
- dependency-name: omniauth-github
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/bundler/src/supermarket/omniauth-github-1.4.0 branch from 3176139 to 3d92aad Compare August 13, 2021 07:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants