[openstreetmap/openstreetmap-website] Bump better_errors from 2.7.1 to 2.8.0 (#2834)

dependabot[bot] notifications at github.com
Wed Sep 16 05:02:52 UTC 2020 

Bumps [better_errors](https://github.com/BetterErrors/better_errors) from 2.7.1 to 2.8.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/BetterErrors/better_errors/releases">better_errors's releases</a>.</em></p>
<blockquote>
<h2>v2.8.0</h2>
<ul>
<li>Support for Rails ActionableError <a href="https://github-redirect.dependabot.com/BetterErrors/better_errors/issues/465">#465</a></li>
<li>Allow editor links to work inside an iframe or with CSP that prohibits other protocols <a href="https://github-redirect.dependabot.com/BetterErrors/better_errors/issues/440">#440</a></li>
<li>Add CSRF protection to internal requests <a href="https://github-redirect.dependabot.com/BetterErrors/better_errors/issues/474">#474</a></li>
<li>Validate internal request method names <a href="https://github-redirect.dependabot.com/BetterErrors/better_errors/issues/475">#475</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/BetterErrors/better_errors/commit/39395368110c8fac4374c813f7f0d3cd3888f973"><code>3939536</code></a> Release 2.8.0</li>
<li><a href="https://github.com/BetterErrors/better_errors/commit/50b425769cc1426bea3d88026653f84da6ed70a5"><code>50b4257</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/BetterErrors/better_errors/issues/475">#475</a> from BetterErrors/feature/correct-xhr-mime-type</li>
<li><a href="https://github.com/BetterErrors/better_errors/commit/aa073f6f07ee05894a56e3cf79710e809051b0f3"><code>aa073f6</code></a> Validate internal call method names</li>
<li><a href="https://github.com/BetterErrors/better_errors/commit/446c192ac35d561372d2e862a6be63572f8e0e16"><code>446c192</code></a> Validate content-type of internal calls</li>
<li><a href="https://github.com/BetterErrors/better_errors/commit/8e8e796bfbde4aa088741823c8a3fc6df2089bb0"><code>8e8e796</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/BetterErrors/better_errors/issues/474">#474</a> from BetterErrors/feature/add-csrf-to-requests</li>
<li><a href="https://github.com/BetterErrors/better_errors/commit/4f05b45f23277872438689d14c22fab7f03ad0b7"><code>4f05b45</code></a> Middleware specs to cover more CSRF edge cases</li>
<li><a href="https://github.com/BetterErrors/better_errors/commit/ef064610db574506c6285a6daf2ab62ef406c5a8"><code>ef06461</code></a> Work around weirdness in older Rack::Response</li>
<li><a href="https://github.com/BetterErrors/better_errors/commit/764bf3b20bea70006575aa6fbd94bb18cf8080ec"><code>764bf3b</code></a> Fix incorrect mime type in JSON error responses</li>
<li><a href="https://github.com/BetterErrors/better_errors/commit/617e65eab750d266295e66d0c355a8ebaf6ce605"><code>617e65e</code></a> Add CSRF to error page and internal calls</li>
<li><a href="https://github.com/BetterErrors/better_errors/commit/86c19fcb607336fec78c18816ae663f8d8d492e8"><code>86c19fc</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/BetterErrors/better_errors/issues/440">#440</a> from lastobelus/add-target-to-editor-link</li>
<li>Additional commits viewable in <a href="https://github.com/BetterErrors/better_errors/compare/v2.7.1...v2.8.0">compare view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=better_errors&package-manager=bundler&previous-version=2.7.1&new-version=2.8.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/configuring-github-dependabot-security-updates)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)


</details>
You can view, comment on, or merge this pull request online at:

  https://github.com/openstreetmap/openstreetmap-website/pull/2834

-- Commit Summary --

  * Bump better_errors from 2.7.1 to 2.8.0

-- File Changes --

    M Gemfile.lock (2)

-- Patch Links --

https://github.com/openstreetmap/openstreetmap-website/pull/2834.patch
https://github.com/openstreetmap/openstreetmap-website/pull/2834.diff

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/pull/2834
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20200915/7023b50c/attachment-0001.htm>

More information about the rails-dev mailing list