Bump carrierwave and carrierwave_backgrounder

[dependabot]

Bumps carrierwave and carrierwave_backgrounder. These dependencies needed to be updated together.
Updates carrierwave from 2.1.1 to 3.1.1

Release notes

Sourced from carrierwave's releases.

3.1.0

Added

• Support for AWS S3 FIPS endpoints (@​matt-domsch-sp #2763, 04bfab3, #2762)
• Add CarrierWave::Storage::Fog::File#empty? (@​mshibuya 2d1af56, #1926)
• Add support for the crop processing method (@​clickworkorange #2721)
• Add global skip_ssrf_protection configuration (@​rajyan #2696, #2695)

Changed

• Show warning when conditionals are used with :convert (@​mshibuya fb287f3, #2723)
• Rename #version_exists? to #version_active?, to reduce confusion (@​mshibuya 21ca90a, #1926)
• Show warning if #filename is safeguarded as in the pre-3.x style (@​mshibuya #2718, #2708)

Fixed

• Fix incompatibility with MiniMagick >= 5.0 (@​mshibuya a60d8d8, #2761)
• Fix incompatibility with uri gem >= 1.0 (@​ollym #2760, #2759)
• Clear download errors on reassigning remote urls (@​mshibuya bb8c6e1, #2725)
• Fix version names starting with a non-alphabet character lead to NameError (@​r7kamura #2748, #2722)
• Fix Rails 7.2 incompatibility due to incorrect use of ActiveSupport::Deprecation (@​mshibuya b25477d, 8761240, #2751)
• Fix assigning a file with the same name not marking the column as changed (@​mshibuya 47f1737, #2719)
• Fix content type magic detection for files packaged in .zip (@​dzhikvas #2705, #2704)

3.1.0.rc

Added

• Support for AWS S3 FIPS endpoints (@​matt-domsch-sp #2763, 04bfab3, #2762)
• Add CarrierWave::Storage::Fog::File#empty? (@​mshibuya 2d1af56, #1926)

Changed

• Show warning when conditionals are used with :convert (@​mshibuya fb287f3, #2723)
• Rename #version_exists? to #version_active?, to reduce confusion (@​mshibuya 21ca90a, #1926)

Fixed

• Fix incompatibility with MiniMagick >= 5.0 (@​mshibuya a60d8d8, #2761)
• Fix incompatibility with uri gem >= 1.0 (@​ollym #2760, #2759)
• Clear download errors on reassigning remote urls (@​mshibuya bb8c6e1, #2725)

3.1.0.beta

Added

• Add support for the crop processing method (@​clickworkorange #2721)
• Add global skip_ssrf_protection configuration (@​rajyan #2696, #2695)

Changed

• Show warning if #filename is safeguarded as in the pre-3.x style (@​mshibuya #2718, #2708)

Fixed

• Fix version names starting with a non-alphabet character lead to NameError (@​r7kamura #2748, #2722)
• Fix Rails 7.2 incompatibility due to incorrect use of ActiveSupport::Deprecation (@​mshibuya b25477d, 8761240, #2751)
• Fix assigning a file with the same name not marking the column as changed (@​mshibuya 47f1737, #2719)
• Fix content type magic detection for files packaged in .zip (@​dzhikvas #2705, #2704)

3.0.7

... (truncated)

Changelog

Sourced from carrierwave's changelog.

3.1.1 - 2025-01-12

Fixed

• Stop calling #mb_chars, as it is no longer necessary (@​chaadow #2773)
• Fix to raise error when imagemagick is missing on Alpine >= 3.19 (@​danwilliams-fl #2772)
• Fix #dup with custom serialisation (@​nassim-platogo #2771)
• Fix SanitizedFile#read to behave in the same way with IO#read with arguments (@​mshibuya 9eace1c, #2770)

3.1.0 - 2024-12-14

No changes.

3.1.0.rc - 2024-12-07

Added

• Support for AWS S3 FIPS endpoints (@​matt-domsch-sp #2763, 04bfab3, #2762)
• Add CarrierWave::Storage::Fog::File#empty? (@​mshibuya 2d1af56, #1926)

Changed

• Show warning when conditionals are used with :convert (@​mshibuya fb287f3, #2723)
• Rename #version_exists? to #version_active?, to reduce confusion (@​mshibuya 21ca90a, #1926)

Fixed

• Fix incompatibility with MiniMagick >= 5.0 (@​mshibuya a60d8d8, #2761)
• Fix incompatibility with uri gem >= 1.0 (@​ollym #2760, #2759)
• Clear download errors on reassigning remote urls (@​mshibuya bb8c6e1, #2725)

3.1.0.beta - 2024-09-01

Added

• Add support for the crop processing method (@​clickworkorange #2721)
• Add global skip_ssrf_protection configuration (@​rajyan #2696, #2695)

Changed

• Show warning if #filename is safeguarded as in the pre-3.x style (@​mshibuya #2718, #2708)

Fixed

• Fix version names starting with a non-alphabet character lead to NameError (@​r7kamura #2748, #2722)
• Fix Rails 7.2 incompatibility due to incorrect use of ActiveSupport::Deprecation (@​mshibuya b25477d, 8761240, #2751)
• Fix assigning a file with the same name not marking the column as changed (@​mshibuya 47f1737, #2719)
• Fix content type magic detection for files packaged in .zip (@​dzhikvas #2705, #2704)

3.0.7 - 2024-03-23

Security

• Fix Content-Type allowlist bypass vulnerability remained (@​mshibuya 00676e2, GHSA-vfmv-jfc5-pjjw)

3.0.6 - 2024-03-09

Fixed

... (truncated)

Commits

• 550e423 Version 3.1.1
• 23bfc39 Update build matrix
• ee24133 Bump cucumber gem
• 08a3698 Merge pull request #2773 from chaadow/patch-1
• b4d43c3 Merge pull request #2772 from futurelearn/dw-am-explicit-errors-for-missing-j...
• 97bd98b Merge pull request #2771 from nassim-platogo/bugfix/use-write-uploader-on-dup
• 3139628 Update sanitized_file.rb
• f993eb7 Remove use of deprecated mb_chars method
• 01ebc84 Raise MiniMagick::Error if ImageMagick is missing delegates
• 7cda4e4 Fix #dup with custom serialisation
• Additional commits viewable in compare view

Updates carrierwave_backgrounder from 0.4.3 to 1.0.2

Changelog

Sourced from carrierwave_backgrounder's changelog.

1.0.2

bugfixes

• #317 Fixed an issue where #process_in_backfground would copy files but not create versions [Qqwy]

1.0.1

bugfixes

• #315 Fix an issue where the expectation was a string key for config [fero46]

1.0.0

• No Changes

1.0.0-beta.2

enhancements

• Now fully testing using different queue_adapters in CI

bugfixes

• Fix issue loading active_job

1.0.0-beta

enhancements

• Add native support for ActiveJob [lardawge]
• Add support for multi-upload [lardawge]
• Add rails app for testing so we can replicate real world conditions [lardawge]

bugfixes

• Fix issue where a new job would be queued when a upload was removed

breaking changes

• Remove support for after_save in favor of after_commit
• Remove support for queueing systems other than ActiveJob and Sidekiq.

Commits

• ef97398 Prepare version 1.0.2
• 81612fe Merge pull request #317 from Qqwy/316-process_in_background_bug
• 0b917ee Delete spec/support/dummy_app/tmp/local_secret.txt
• 13b330c Delete spec/support/dummy_app/log/test.log
• 9219812 Improves the other 'it creates the versions' specs in the same way
• 9cf2286 Making the mock-based tests stronger by...
• 352dd66 The fix: calling process_#{column}_upload= in the background task.
• 6b081f3 Modifies process_in_background_spec#'it creates the versions'
• 7b718eb Update changelog and version
• 8396be2 Merge pull request #315 from fero46/master
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.