Prepare for 0.2.0 (#217)

- **Use correct hash style in test**
- **Disregard AbcSize for Local::decrypt**
- **Include tapioca in the rbnacl appraisal**
- **Update RBI files**
- **README lint pass, remove extra closing parens**
- **Update development dependencies**
- **Update appraisal to 2.5.0**
- **Update OpenSSL to ~> 3.3**
- **Generate RBIs again**
- **Remove defunct shims**
- **Add shim for multi_json ParseError**
- **Update changelog**

Author: bannable

.circleci/config.yml

@@ -34,7 +34,7 @@ commands:
           appraisal: << parameters.appraisal >>
       - restore_cache:
           keys:
-            - gem-cache-v15-<< parameters.version >>-{{ arch }}-{{ checksum "Gemfile.lock" }}-{{ checksum "gemfiles/standalone.gemfile.lock" }}-{{ checksum "gemfiles/rbnacl.gemfile.lock" }}
+            - gem-cache-v16-<< parameters.version >>-{{ arch }}-{{ checksum "Gemfile.lock" }}-{{ checksum "gemfiles/standalone.gemfile.lock" }}-{{ checksum "gemfiles/rbnacl.gemfile.lock" }}
       - run:
           name: "Configure Bundler"
           command : |
@@ -91,7 +91,7 @@ jobs:
       - checkout
       - restore_cache:
           keys:
-            - &gem-cache gem-cache-v15-<< parameters.version >>-{{ arch }}-{{ checksum "Gemfile.lock" }}-{{ checksum "gemfiles/standalone.gemfile.lock" }}-{{ checksum "gemfiles/rbnacl.gemfile.lock" }}
+            - &gem-cache gem-cache-v16-<< parameters.version >>-{{ arch }}-{{ checksum "Gemfile.lock" }}-{{ checksum "gemfiles/standalone.gemfile.lock" }}-{{ checksum "gemfiles/rbnacl.gemfile.lock" }}
       - install-bundler:
           appraisal: rbnacl
       - run:

.rubocop.yml

@@ -1,7 +1,7 @@
-require:
-  - rubocop-performance
-  - rubocop-rspec
+plugins:
   - rubocop-sorbet
+  - rubocop-rspec
+  - rubocop-performance
 
 AllCops:
   TargetRubyVersion: 3.1

CHANGELOG.md

@@ -5,6 +5,7 @@
 - Remove support for ruby/openssl 3.0.x
 - Refactor how version protocols are implemented to greatly improve sorbet coverage
 - `Paseto.rbnacl?` is replaced by `Paseto::HAS_RBNACL`
+- Fix decoding of multibyte characters in payloads, #216 thanks to @pelted @levicole
 
 ## [0.1.2]
 

Gemfile

@@ -5,14 +5,12 @@ source 'https://rubygems.org'
 gemspec
 
 group :development do
-  # https://github.com/thoughtbot/appraisal/pull/205
-  # Move back into the gemspec after Thoughtbot releases a fixed version
-  gem 'appraisal', '~> 2', github: 'thoughtbot/appraisal', ref: 'b200e636903700098bef25f4f51dbc4c46e4c04c'
+  gem 'appraisal', '~> 2.5'
 
   gem 'bundler', '~> 2'
   gem 'debug', '>= 1.0'
   gem 'parlour'
-  gem 'tapioca', '~> 0.12.0'
+  gem 'tapioca', '~> 0.16.11'
 end
 
 gem 'oj'
@@ -21,10 +19,10 @@ gem 'rake', '~> 13'
 gem 'reek'
 gem 'rspec', '~> 3'
 gem 'rspec_junit_formatter'
-gem 'rubocop', '~> 1.59'
-gem 'rubocop-performance', '~> 1.20'
-gem 'rubocop-rspec', '~> 2.29'
-gem 'rubocop-sorbet', '~> 0.8'
+gem 'rubocop', '~> 1.75', require: false
+gem 'rubocop-performance', '~> 1.25', require: false
+gem 'rubocop-rspec', '~> 3.5', require: false
+gem 'rubocop-sorbet', '~> 0.10', require: false
 gem 'simplecov', '~> 0'
 gem 'simplecov_json_formatter'
 gem 'sorbet', '~> 0'

Gemfile.lock

@@ -1,26 +1,21 @@
-GIT
-  remote: https://github.com/thoughtbot/appraisal.git
-  revision: b200e636903700098bef25f4f51dbc4c46e4c04c
-  ref: b200e636903700098bef25f4f51dbc4c46e4c04c
-  specs:
-    appraisal (2.4.1)
-      bundler
-      rake
-      thor (>= 0.14.0)
-
 PATH
   remote: .
   specs:
     ruby-paseto (0.1.2)
       multi_json (~> 1.15.0)
-      openssl (~> 3.1)
+      openssl (~> 3.3)
       sorbet-runtime
       zeitwerk
 
 GEM
   remote: https://rubygems.org/
   specs:
+    appraisal (2.5.0)
+      bundler
+      rake
+      thor (>= 0.14.0)
     ast (2.4.2)
+    benchmark (0.4.0)
     bigdecimal (3.1.7)
     commander (4.6.0)
       highline (~> 2.0.0)
@@ -57,19 +52,21 @@ GEM
       dry-inflector (~> 1.0)
       dry-logic (~> 1.4)
       zeitwerk (~> 2.6)
-    erubi (1.12.0)
+    erubi (1.13.1)
     highline (2.0.3)
     io-console (0.7.2)
     irb (1.12.0)
       rdoc
       reline (>= 0.4.2)
-    json (2.7.2)
-    language_server-protocol (3.17.0.3)
+    json (2.10.2)
+    language_server-protocol (3.17.0.4)
+    lint_roller (1.1.0)
+    logger (1.7.0)
     multi_json (1.15.0)
     netrc (0.11.0)
     oj (3.16.3)
       bigdecimal (>= 3.0)
-    openssl (3.2.0)
+    openssl (3.3.0)
     parallel (1.24.0)
     parallel_tests (4.5.2)
       parallel
@@ -78,27 +75,29 @@ GEM
       parser
       rainbow (~> 3.0)
       sorbet-runtime (>= 0.5)
-    parser (3.3.0.5)
+    parser (3.3.8.0)
       ast (~> 2.4.1)
       racc
-    prettier_print (1.2.1)
-    prism (0.24.0)
+    prism (1.4.0)
     psych (5.1.2)
       stringio
     racc (1.7.3)
     rainbow (3.1.1)
     rake (13.1.0)
-    rbi (0.1.9)
-      prism (>= 0.18.0, < 0.25)
+    rbi (0.3.2)
+      prism (~> 1.0)
+      rbs (>= 3.4.4)
       sorbet-runtime (>= 0.5.9204)
+    rbs (3.9.2)
+      logger
     rdoc (6.6.3.1)
       psych (>= 4.0.0)
     reek (6.3.0)
       dry-schema (~> 1.13.0)
       parser (~> 3.3.0)
       rainbow (>= 2.0, < 4.0)
       rexml (~> 3.1)
-    regexp_parser (2.9.0)
+    regexp_parser (2.10.0)
     reline (0.5.0)
       io-console (~> 0.5)
     rexml (3.2.6)
@@ -117,35 +116,29 @@ GEM
     rspec-support (3.13.1)
     rspec_junit_formatter (0.6.0)
       rspec-core (>= 2, < 4, != 2.12.0)
-    rubocop (1.59.0)
+    rubocop (1.75.2)
       json (~> 2.3)
-      language_server-protocol (>= 3.17.0)
+      language_server-protocol (~> 3.17.0.2)
+      lint_roller (~> 1.1.0)
       parallel (~> 1.10)
-      parser (>= 3.2.2.4)
+      parser (>= 3.3.0.2)
       rainbow (>= 2.2.2, < 4.0)
-      regexp_parser (>= 1.8, < 3.0)
-      rexml (>= 3.2.5, < 4.0)
-      rubocop-ast (>= 1.30.0, < 2.0)
+      regexp_parser (>= 2.9.3, < 3.0)
+      rubocop-ast (>= 1.44.0, < 2.0)
       ruby-progressbar (~> 1.7)
-      unicode-display_width (>= 2.4.0, < 3.0)
-    rubocop-ast (1.30.0)
-      parser (>= 3.2.1.0)
-    rubocop-capybara (2.20.0)
-      rubocop (~> 1.41)
-    rubocop-factory_bot (2.25.1)
-      rubocop (~> 1.41)
-    rubocop-performance (1.20.2)
-      rubocop (>= 1.48.1, < 2.0)
-      rubocop-ast (>= 1.30.0, < 2.0)
-    rubocop-rspec (2.29.1)
-      rubocop (~> 1.40)
-      rubocop-capybara (~> 2.17)
-      rubocop-factory_bot (~> 2.22)
-      rubocop-rspec_rails (~> 2.28)
-    rubocop-rspec_rails (2.28.2)
-      rubocop (~> 1.40)
-    rubocop-sorbet (0.8.0)
-      rubocop (>= 0.90.0)
+      unicode-display_width (>= 2.4.0, < 4.0)
+    rubocop-ast (1.44.1)
+      parser (>= 3.3.7.2)
+      prism (~> 1.4)
+    rubocop-performance (1.25.0)
+      lint_roller (~> 1.1)
+      rubocop (>= 1.75.0, < 2.0)
+      rubocop-ast (>= 1.38.0, < 2.0)
+    rubocop-rspec (3.5.0)
+      lint_roller (~> 1.1)
+      rubocop (~> 1.72, >= 1.72.1)
+    rubocop-sorbet (0.10.0)
+      rubocop (>= 1)
     ruby-progressbar (1.13.0)
     simplecov (0.22.0)
       docile (~> 1.1)
@@ -160,37 +153,39 @@ GEM
     sorbet-static-and-runtime (0.5.11332)
       sorbet (= 0.5.11332)
       sorbet-runtime (= 0.5.11332)
-    spoom (1.2.4)
+    spoom (1.6.1)
       erubi (>= 1.10.0)
+      prism (>= 0.28.0)
+      rbi (>= 0.2.3)
       sorbet-static-and-runtime (>= 0.5.10187)
-      syntax_tree (>= 6.1.1)
       thor (>= 0.19.2)
     stringio (3.1.0)
-    syntax_tree (6.2.0)
-      prettier_print (>= 1.2.0)
-    tapioca (0.12.0)
+    tapioca (0.16.11)
+      benchmark
       bundler (>= 2.2.25)
       netrc (>= 0.11.0)
       parallel (>= 1.21.0)
-      rbi (>= 0.1.4, < 0.2)
-      sorbet-static-and-runtime (>= 0.5.10820)
-      spoom (~> 1.2.0, >= 1.2.0)
+      rbi (~> 0.2)
+      sorbet-static-and-runtime (>= 0.5.11087)
+      spoom (>= 1.2.0)
       thor (>= 1.2.0)
       yard-sorbet
     thor (1.3.1)
     timecop (0.9.8)
-    unicode-display_width (2.5.0)
-    yard (0.9.36)
-    yard-sorbet (0.8.1)
-      sorbet-runtime (>= 0.5)
-      yard (>= 0.9)
+    unicode-display_width (3.1.4)
+      unicode-emoji (~> 4.0, >= 4.0.4)
+    unicode-emoji (4.0.4)
+    yard (0.9.37)
+    yard-sorbet (0.9.0)
+      sorbet-runtime
+      yard
     zeitwerk (2.6.13)
 
 PLATFORMS
   x86_64-linux
 
 DEPENDENCIES
-  appraisal (~> 2)!
+  appraisal (~> 2.5)
   bundler (~> 2)
   debug (>= 1.0)
   oj
@@ -200,15 +195,15 @@ DEPENDENCIES
   reek
   rspec (~> 3)
   rspec_junit_formatter
-  rubocop (~> 1.59)
-  rubocop-performance (~> 1.20)
-  rubocop-rspec (~> 2.29)
-  rubocop-sorbet (~> 0.8)
+  rubocop (~> 1.75)
+  rubocop-performance (~> 1.25)
+  rubocop-rspec (~> 3.5)
+  rubocop-sorbet (~> 0.10)
   ruby-paseto!
   simplecov (~> 0)
   simplecov_json_formatter
   sorbet (~> 0)
-  tapioca (~> 0.12.0)
+  tapioca (~> 0.16.11)
   timecop (~> 0)
 
 BUNDLED WITH

README.md

@@ -31,26 +31,26 @@ Then, run `bundle install` and `require 'paseto'`.
 ## Supported PASETO versions
 
 `paseto` supports these PASETO versions and purposes:
-| purpose | v4 | v3 |
-| ---------| ---- | ---- |
-| `local` | ✅ | ✅ |
-| `public` | ✅ | ✅ |
+| purpose  | v4  | v3  |
+| -------- | --- | --- |
+| `local`  | ✅   | ✅   |
+| `public` | ✅   | ✅   |
 
 ## Support for PASERK types
 
 |                                                                                                                               | v4  | v3  |
 | ----------------------------------------------------------------------------------------------------------------------------- | --- | --- |
-| [`lid`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/lid.md)                 | ✅  | ✅  |
-| [`sid`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/sid.md)                 | ✅  | ✅  |
-| [`pid`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/pid.md)                 | ✅  | ✅  |
-| [`local`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/local.md)             | ✅  | ✅  |
-| [`secret`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/secret.md)           | ✅  | ✅  |
-| [`public`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/public.md)           | ✅  | ✅  |
-| [`seal`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/seal.md)               | ✅  | ✅  |
-| [`local-wrap`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/local-wrap.md)   | ✅  | ✅  |
-| [`secret-wrap`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/secret-wrap.md) | ✅  | ✅  |
-| [`local-pw`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/local-pw.md)       | ✅  | ✅  |
-| [`secret-pw`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/secret-pw.md)     | ✅  | ✅  |
+| [`lid`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/lid.md)                 | ✅   | ✅   |
+| [`sid`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/sid.md)                 | ✅   | ✅   |
+| [`pid`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/pid.md)                 | ✅   | ✅   |
+| [`local`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/local.md)             | ✅   | ✅   |
+| [`secret`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/secret.md)           | ✅   | ✅   |
+| [`public`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/public.md)           | ✅   | ✅   |
+| [`seal`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/seal.md)               | ✅   | ✅   |
+| [`local-wrap`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/local-wrap.md)   | ✅   | ✅   |
+| [`secret-wrap`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/secret-wrap.md) | ✅   | ✅   |
+| [`local-pw`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/local-pw.md)       | ✅   | ✅   |
+| [`secret-pw`](https://github.com/paseto-standard/paserk/blob/8cc4934687a3c9235387d005fb79eec33f43166d/types/secret-pw.md)     | ✅   | ✅   |
 
 ## Implementation Guideline compliance
 
@@ -482,17 +482,17 @@ hash = { data: 'data' }
 payload = crypt.encode(hash)
 
 # Require presence
-crypt.decode(payload, verify_jti: true)) # => Paseto::InvalidTokenIdentifier
+crypt.decode(payload, verify_jti: true) # => Paseto::InvalidTokenIdentifier
 
 # Require exact value
 hash[:jti] = 'foo'
 payload = crypt.encode(payload: hash)
-crypt.decode(payload, verify_jti: 'foo')) # { 'data' => ... }
-crypt.decode(payload, verify_jti: 'bar')) # Paseto::InvalidTokenIdentifier
+crypt.decode(payload, verify_jti: 'foo') # { 'data' => ... }
+crypt.decode(payload, verify_jti: 'bar') # Paseto::InvalidTokenIdentifier
 
 # Or something more complex
 jti_proc = ->(jti) { jti == 'bar'}
-crypt.decode(payload, verify_jti: jti_proc)) # Paseto::InvalidTokenIdentifier
+crypt.decode(payload, verify_jti: jti_proc) # Paseto::InvalidTokenIdentifier
 ```
 
 ## Development

gemfiles/rbnacl.gemfile

@@ -8,10 +8,10 @@ gem "rake", "~> 13"
 gem "reek"
 gem "rspec", "~> 3"
 gem "rspec_junit_formatter"
-gem "rubocop", "~> 1.59"
-gem "rubocop-performance", "~> 1.20"
-gem "rubocop-rspec", "~> 2.29"
-gem "rubocop-sorbet", "~> 0.8"
+gem "rubocop", "~> 1.75", require: false
+gem "rubocop-performance", "~> 1.25", require: false
+gem "rubocop-rspec", "~> 3.5", require: false
+gem "rubocop-sorbet", "~> 0.10", require: false
 gem "simplecov", "~> 0"
 gem "simplecov_json_formatter"
 gem "sorbet", "~> 0"