[openstreetmap/openstreetmap-website] Bump bootsnap from 1.4.6 to 1.4.7 (#2730)

dependabot[bot] notifications at github.com
Thu Jul 23 05:10:57 UTC 2020 

Bumps [bootsnap](https://github.com/Shopify/bootsnap) from 1.4.6 to 1.4.7.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/Shopify/bootsnap/blob/master/CHANGELOG.md">bootsnap's changelog</a>.</em></p>
<blockquote>
<h1>1.4.7</h1>
<ul>
<li>Various performance enhancements</li>
<li>Fix race condition in heavy concurrent load scenarios that would cause bootsnap to raise</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/Shopify/bootsnap/commit/530fdb1d0c9b2ebdd0942173ddd5bf2a0619cba6"><code>530fdb1</code></a> Bump version to 1.4.7</li>
<li><a href="https://github.com/Shopify/bootsnap/commit/993f45439839186dec5dcfcad15b16ff7fa3639b"><code>993f454</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/Shopify/bootsnap/issues/309">#309</a> from abicky/fix-vulnerability-of-atomic_write_cache_file</li>
<li><a href="https://github.com/Shopify/bootsnap/commit/cd507c3d34b62577e284085635c15d9724e067bc"><code>cd507c3</code></a> Handle non-existent load path entries</li>
<li><a href="https://github.com/Shopify/bootsnap/commit/56c61373000573112ee027dae4be19aecd50e46e"><code>56c6137</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/Shopify/bootsnap/issues/312">#312</a> from Shopify/path-scanner-refactor</li>
<li><a href="https://github.com/Shopify/bootsnap/commit/535e556aa83a0bb582b24e0905a2dfedefb24646"><code>535e556</code></a> Refactor PathScanner to avoid Dir.glob</li>
<li><a href="https://github.com/Shopify/bootsnap/commit/fc3acd59656ee5d0e75efcce7706779aed10c5e1"><code>fc3acd5</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/Shopify/bootsnap/issues/311">#311</a> from Shopify/file-allocs</li>
<li><a href="https://github.com/Shopify/bootsnap/commit/68faeab159af3b596d2a13ad2af3a0698900763b"><code>68faeab</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/Shopify/bootsnap/issues/310">#310</a> from Shopify/ruby-2.7</li>
<li><a href="https://github.com/Shopify/bootsnap/commit/17ad3cf27c3958a7611986247070a1de90439f89"><code>17ad3cf</code></a> Reduce allocations by freezing paths</li>
<li><a href="https://github.com/Shopify/bootsnap/commit/2cc49bbbb5eeb34e77b8ab2ac0188b49123ca493"><code>2cc49bb</code></a> Update CI to test Ruby 2.7</li>
<li><a href="https://github.com/Shopify/bootsnap/commit/cfd28c385ed58e2fbc361707d8c5ad17c54302ef"><code>cfd28c3</code></a> Ensure that temporary file is used only by one process</li>
<li>Additional commits viewable in <a href="https://github.com/Shopify/bootsnap/compare/v1.4.6...v1.4.7">compare view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=bootsnap&package-manager=bundler&previous-version=1.4.6&new-version=1.4.7)](https://help.github.com/articles/configuring-automated-security-fixes)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)


</details>
You can view, comment on, or merge this pull request online at:

  https://github.com/openstreetmap/openstreetmap-website/pull/2730

-- Commit Summary --

  * Bump bootsnap from 1.4.6 to 1.4.7

-- File Changes --

    M Gemfile.lock (2)

-- Patch Links --

https://github.com/openstreetmap/openstreetmap-website/pull/2730.patch
https://github.com/openstreetmap/openstreetmap-website/pull/2730.diff

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/pull/2730
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20200722/6f310371/attachment-0001.htm>

More information about the rails-dev mailing list