Skip to content
This repository was archived by the owner on Aug 31, 2025. It is now read-only.

Bump carrierwave, carrierwave_backgrounder and rqrcode #2140

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump carrierwave, carrierwave_backgrounder and rqrcode #2140

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 27, 2025
edited
Loading

Bumps carrierwave, carrierwave_backgrounder and rqrcode. These dependencies needed to be updated together.
Updates carrierwave from 2.1.1 to 3.1.2

Release notes

Sourced from carrierwave's releases.

3.1.2

Fixed

  • Fix failing to remove existing files on updating by #remove_#{column}=, ##{column}_cache=, and #remote_#{column}_url= (@​mshibuya 7b2ce50, #2778, #2779)

3.1.1

Fixed

3.1.0

Added

Changed

Fixed

3.1.0.rc

Added

Changed

Fixed

3.1.0.beta

Added

... (truncated)

Changelog

Sourced from carrierwave's changelog.

3.1.2 - 2025-04-13

Fixed

  • Fix failing to remove existing files on updating by #remove_#{column}=, ##{column}_cache=, and #remote_#{column}_url= (@​mshibuya 7b2ce50, #2778, #2779)

3.1.1 - 2025-01-12

Fixed

3.1.0 - 2024-12-14

No changes.

3.1.0.rc - 2024-12-07

Added

Changed

Fixed

3.1.0.beta - 2024-09-01

Added

Changed

Fixed

3.0.7 - 2024-03-23

Security

... (truncated)

Commits
  • 8e5db8c Version 3.1.2
  • 7b2ce50 Fix failing to remove existing files on updating by #remove_#{column}=, `##...
  • 9001ab7 Fix specs breaking with MiniMagick 5.x
  • 550e423 Version 3.1.1
  • 23bfc39 Update build matrix
  • ee24133 Bump cucumber gem
  • 08a3698 Merge pull request #2773 from chaadow/patch-1
  • b4d43c3 Merge pull request #2772 from futurelearn/dw-am-explicit-errors-for-missing-j...
  • 97bd98b Merge pull request #2771 from nassim-platogo/bugfix/use-write-uploader-on-dup
  • 3139628 Update sanitized_file.rb
  • Additional commits viewable in compare view

Updates carrierwave_backgrounder from 0.4.3 to 1.0.2

Changelog

Sourced from carrierwave_backgrounder's changelog.

1.0.2

bugfixes

  • #317 Fixed an issue where #process_in_backfground would copy files but not create versions [Qqwy]

1.0.1

bugfixes

  • #315 Fix an issue where the expectation was a string key for config [fero46]

1.0.0

  • No Changes

1.0.0-beta.2

enhancements

  • Now fully testing using different queue_adapters in CI

bugfixes

  • Fix issue loading active_job

1.0.0-beta

enhancements

  • Add native support for ActiveJob [lardawge]
  • Add support for multi-upload [lardawge]
  • Add rails app for testing so we can replicate real world conditions [lardawge]

bugfixes

  • Fix issue where a new job would be queued when a upload was removed

breaking changes

  • Remove support for after_save in favor of after_commit
  • Remove support for queueing systems other than ActiveJob and Sidekiq.
Commits
  • ef97398 Prepare version 1.0.2
  • 81612fe Merge pull request #317 from Qqwy/316-process_in_background_bug
  • 0b917ee Delete spec/support/dummy_app/tmp/local_secret.txt
  • 13b330c Delete spec/support/dummy_app/log/test.log
  • 9219812 Improves the other 'it creates the versions' specs in the same way
  • 9cf2286 Making the mock-based tests stronger by...
  • 352dd66 The fix: calling process_#{column}_upload= in the background task.
  • 6b081f3 Modifies process_in_background_spec#'it creates the versions'
  • 7b718eb Update changelog and version
  • 8396be2 Merge pull request #315 from fero46/master
  • Additional commits viewable in compare view

Updates rqrcode from 2.2.0 to 3.1.0

Release notes

Sourced from rqrcode's releases.

v3.1.0

What's Changed

New Contributors

Full Changelog: whomwah/rqrcode@v3.0.0...v3.1.0

v3.0.0

What's Changed

Full Changelog: whomwah/rqrcode@v2.2.0...v3.0.0

Changelog

Sourced from rqrcode's changelog.

[3.1.0] - 2025-04-28

  • Added support for offset_x and offset_y options in the as_svg method for independent x and y padding around QR codes #153

[3.0.0] - 2025-04-24

  • Drop support for Ruby <3.0 in order to keep up with dev dependencies.
  • Breaking Change: The rqrcode_core gem has been updated to version 2.0.0, which includes breaking changes. Please refer to the rqrcode_core changelog
Commits
  • b0dbb67 Merge pull request #157 from whomwah/releases/v3.1.0
  • 515cbfa chore: Bump version to 3.1.0 and update changelog for new features
  • 953cf5f fix: Correct changelog link for version 3.0.0
  • 44baeea chore: Update changelog links for version 3.0.0 release
  • f181cd8 Merge pull request #155 from whomwah/feat/typos
  • bd48bcc docs: Update README.md for version 3.0 and add offset_y option for SVG rendering
  • b488a7e Merge pull request #153 from whomwah/feat/offset-150
  • 34bae67 feat: Enhance SVG export with offset_x and offset_y options for better positi...
  • 780a268 Merge pull request #154 from prognostikos/patch-1
  • 67d2222 Correct link and version of rqrcode_core in CHANGELOG.md
  • Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Jun 27, 2025
@dependabot dependabot bot requested review from nilsding and pixeldesu as code owners June 27, 2025 07:36
@dependabot dependabot bot force-pushed the dependabot/bundler/multi-215d804761 branch from e38b843 to 06dc24e Compare June 29, 2025 19:45
@dependabot
Bump carrierwave, carrierwave_backgrounder and rqrcode
e908a51 
Bumps [carrierwave](https://github.com/carrierwaveuploader/carrierwave), [carrierwave_backgrounder](https://github.com/lardawge/carrierwave_backgrounder) and [rqrcode](https://github.com/whomwah/rqrcode). These dependencies needed to be updated together.

Updates `carrierwave` from 2.1.1 to 3.1.2
- [Release notes](https://github.com/carrierwaveuploader/carrierwave/releases)
- [Changelog](https://github.com/carrierwaveuploader/carrierwave/blob/master/CHANGELOG.md)
- [Commits](carrierwaveuploader/carrierwave@v2.1.1...v3.1.2)

Updates `carrierwave_backgrounder` from 0.4.3 to 1.0.2
- [Changelog](https://github.com/lardawge/carrierwave_backgrounder/blob/master/CHANGELOG.md)
- [Commits](lardawge/carrierwave_backgrounder@v0.4.3...v1.0.2)

Updates `rqrcode` from 2.2.0 to 3.1.0
- [Release notes](https://github.com/whomwah/rqrcode/releases)
- [Changelog](https://github.com/whomwah/rqrcode/blob/main/CHANGELOG.md)
- [Commits](whomwah/rqrcode@v2.2.0...v3.1.0)

---
updated-dependencies:
- dependency-name: carrierwave
  dependency-version: 3.1.2
  dependency-type: direct:production
- dependency-name: carrierwave_backgrounder
  dependency-version: 1.0.2
  dependency-type: direct:production
- dependency-name: rqrcode
  dependency-version: 3.1.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/bundler/multi-215d804761 branch from 06dc24e to e908a51 Compare June 30, 2025 01:05
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@nilsding nilsding Awaiting requested review from nilsding nilsding is a code owner

@pixeldesu pixeldesu Awaiting requested review from pixeldesu pixeldesu is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants