[openstreetmap/openstreetmap-website] Bump puma from 4.3.6 to 5.0.2 (#2859)

dependabot[bot] notifications at github.com
Tue Sep 29 05:01:36 UTC 2020 

Bumps [puma](https://github.com/puma/puma) from 4.3.6 to 5.0.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/puma/puma/releases">puma's releases</a>.</em></p>
<blockquote>
<h2>5.0.1</h2>
<p>This release fixed a critical error for CentOS users, and quieted some unnecessary error logging for Heroku users.</p>
<ul>
<li>
<p>Bugfixes</p>
<ul>
<li>Fix LoadError in CentOS 8 (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2381">#2381</a>)</li>
<li>Better error handling during force shutdown (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2271">#2271</a>)</li>
<li>Prevent connections from entering Reactor after shutdown begins (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2377">#2377</a>)</li>
<li>Fix error backtrace debug logging &amp;&amp; Do not log request dump if it is not parsed (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2376">#2376</a>)</li>
<li>Split TCP_CORK and TCP_INFO (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2372">#2372</a>)</li>
<li>Do not log EOFError when a client connection is closed without write (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2384">#2384</a>)</li>
</ul>
</li>
<li>
<p>Refactor</p>
<ul>
<li>Change Events#ssl_error signature from (error, peeraddr, peercert) to (error, ssl_socket) (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2375">#2375</a>)</li>
<li>Consolidate option handling in Server, Server small refactors, doc chang (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2373">#2373</a>)</li>
</ul>
</li>
</ul>
<h2>5.0 - Spoony Bard</h2>
<h2>5.0.0</h2>
<p><img src="https://user-images.githubusercontent.com/845662/93504076-3428cb80-f8d6-11ea-8026-619316b89165.jpg" alt="Spoony_Bard" /></p>
<ul>
<li>
<p>Features</p>
<ul>
<li>Allow compiling without OpenSSL and dynamically load files needed for SSL, add 'no ssl' CI (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2305">#2305</a>)</li>
<li>EXPERIMENTAL: Add <code>fork_worker</code> option and <code>refork</code> command for reduced memory usage by forking from a worker process instead of the master process. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2099">#2099</a>)</li>
<li>EXPERIMENTAL: Added <code>wait_for_less_busy_worker</code> config. This may reduce latency on MRI through inserting a small delay before re-listening on the socket if worker is busy (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2079">#2079</a>).</li>
<li>EXPERIMENTAL: Added <code>nakayoshi_fork</code> option. Reduce memory usage in preloaded cluster-mode apps by GCing before fork and compacting, where available. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2093">#2093</a>, <a href="https://github-redirect.dependabot.com/puma/puma/issues/2256">#2256</a>)</li>
<li>Added pumactl <code>thread-backtraces</code> command to print thread backtraces (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2054">#2054</a>)</li>
<li>Added incrementing <code>requests_count</code> to <code>Puma.stats</code>. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2106">#2106</a>)</li>
<li>Increased maximum URI path length from 2048 to 8192 bytes (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2167">#2167</a>, <a href="https://github-redirect.dependabot.com/puma/puma/issues/2344">#2344</a>)</li>
<li><code>lowlevel_error_handler</code> is now called during a forced threadpool shutdown, and if a callable with 3 arguments is set, we now also pass the status code (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2203">#2203</a>)</li>
<li>Faster phased restart and worker timeout (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2220">#2220</a>)</li>
<li>Added <code>state_permission</code> to config DSL to set state file permissions (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2238">#2238</a>)</li>
<li>Added <code>Puma.stats_hash</code>, which returns a stats in Hash instead of a JSON string (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2086">#2086</a>, <a href="https://github-redirect.dependabot.com/puma/puma/issues/2253">#2253</a>)</li>
<li><code>rack.multithread</code> and <code>rack.multiprocess</code> now dynamically resolved by <code>max_thread</code> and <code>workers</code> respectively (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2288">#2288</a>)</li>
</ul>
</li>
<li>
<p>Deprecations, Removals and Breaking API Changes</p>
<ul>
<li><code>--control</code> has been removed. Use <code>--control-url</code> (<a href="https://github-redirect.dependabot.com/puma/puma/issues/1487">#1487</a>)</li>
<li><code>worker_directory</code> has been removed. Use <code>directory</code>.</li>
<li>min_threads now set by environment variables PUMA_MIN_THREADS and MIN_THREADS. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2143">#2143</a>)</li>
<li>max_threads now set by environment variables PUMA_MAX_THREADS and MAX_THREADS. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2143">#2143</a>)</li>
<li>max_threads default to 5 in MRI or 16 for all other interpreters. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2143">#2143</a>)</li>
<li>preload by default if workers &gt; 1 (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2143">#2143</a>)</li>
<li>Puma::Plugin.workers_supported? has been removed. Use Puma.forkable? instead. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2143">#2143</a>)</li>
<li><code>tcp_mode</code> has been removed without replacement. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2169">#2169</a>)</li>
<li>Daemonization has been removed without replacement. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2170">#2170</a>)</li>
<li>Changed #connected_port to #connected_ports (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2076">#2076</a>)</li>
<li>Configuration: <code>environment</code> is read from <code>RAILS_ENV</code>, if <code>RACK_ENV</code> can't be found (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2022">#2022</a>)</li>
<li>Log binding on http:// for TCP bindings to make it clickable</li>
</ul>
</li>
<li>
<p>Bugfixes</p>
<ul>
<li>Fix JSON loading issues on phased-restarts (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2269">#2269</a>)</li>
</ul>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/puma/puma/blob/master/History.md">puma's changelog</a>.</em></p>
<blockquote>
<h2>5.0.2 / 2020-09-28</h2>
<ul>
<li>Bugfixes
<ul>
<li>Reverted API changes to Server.</li>
</ul>
</li>
</ul>
<h2>5.0.1 / 2020-09-28</h2>
<ul>
<li>
<p>Bugfixes</p>
<ul>
<li>Fix LoadError in CentOS 8 (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2381">#2381</a>)</li>
<li>Better error handling during force shutdown (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2271">#2271</a>)</li>
<li>Prevent connections from entering Reactor after shutdown begins (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2377">#2377</a>)</li>
<li>Fix error backtrace debug logging &amp;&amp; Do not log request dump if it is not parsed (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2376">#2376</a>)</li>
<li>Split TCP_CORK and TCP_INFO (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2372">#2372</a>)</li>
<li>Do not log EOFError when a client connection is closed without write (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2384">#2384</a>)</li>
</ul>
</li>
<li>
<p>Refactor</p>
<ul>
<li>Change Events#ssl_error signature from (error, peeraddr, peercert) to (error, ssl_socket) (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2375">#2375</a>)</li>
<li>Consolidate option handling in Server, Server small refactors, doc chang (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2373">#2373</a>)</li>
</ul>
</li>
</ul>
<h2>5.0.0 / 2020-09-17</h2>
<ul>
<li>
<p>Features</p>
<ul>
<li>Allow compiling without OpenSSL and dynamically load files needed for SSL, add 'no ssl' CI (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2305">#2305</a>)</li>
<li>EXPERIMENTAL: Add <code>fork_worker</code> option and <code>refork</code> command for reduced memory usage by forking from a worker process instead of the master process. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2099">#2099</a>)</li>
<li>EXPERIMENTAL: Added <code>wait_for_less_busy_worker</code> config. This may reduce latency on MRI through inserting a small delay before re-listening on the socket if worker is busy (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2079">#2079</a>).</li>
<li>EXPERIMENTAL: Added <code>nakayoshi_fork</code> option. Reduce memory usage in preloaded cluster-mode apps by GCing before fork and compacting, where available. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2093">#2093</a>, <a href="https://github-redirect.dependabot.com/puma/puma/issues/2256">#2256</a>)</li>
<li>Added pumactl <code>thread-backtraces</code> command to print thread backtraces (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2054">#2054</a>)</li>
<li>Added incrementing <code>requests_count</code> to <code>Puma.stats</code>. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2106">#2106</a>)</li>
<li>Increased maximum URI path length from 2048 to 8192 bytes (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2167">#2167</a>, <a href="https://github-redirect.dependabot.com/puma/puma/issues/2344">#2344</a>)</li>
<li><code>lowlevel_error_handler</code> is now called during a forced threadpool shutdown, and if a callable with 3 arguments is set, we now also pass the status code (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2203">#2203</a>)</li>
<li>Faster phased restart and worker timeout (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2220">#2220</a>)</li>
<li>Added <code>state_permission</code> to config DSL to set state file permissions (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2238">#2238</a>)</li>
<li>Added <code>Puma.stats_hash</code>, which returns a stats in Hash instead of a JSON string (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2086">#2086</a>, <a href="https://github-redirect.dependabot.com/puma/puma/issues/2253">#2253</a>)</li>
<li><code>rack.multithread</code> and <code>rack.multiprocess</code> now dynamically resolved by <code>max_thread</code> and <code>workers</code> respectively (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2288">#2288</a>)</li>
</ul>
</li>
<li>
<p>Deprecations, Removals and Breaking API Changes</p>
<ul>
<li><code>--control</code> has been removed. Use <code>--control-url</code> (<a href="https://github-redirect.dependabot.com/puma/puma/issues/1487">#1487</a>)</li>
<li><code>worker_directory</code> has been removed. Use <code>directory</code>.</li>
<li>min_threads now set by environment variables PUMA_MIN_THREADS and MIN_THREADS. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2143">#2143</a>)</li>
<li>max_threads now set by environment variables PUMA_MAX_THREADS and MAX_THREADS. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2143">#2143</a>)</li>
<li>max_threads default to 5 in MRI or 16 for all other interpreters. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2143">#2143</a>)</li>
<li>preload by default if workers &gt; 1 (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2143">#2143</a>)</li>
<li>Puma::Plugin.workers_supported? has been removed. Use Puma.forkable? instead. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2143">#2143</a>)</li>
<li><code>tcp_mode</code> has been removed without replacement. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2169">#2169</a>)</li>
<li>Daemonization has been removed without replacement. (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2170">#2170</a>)</li>
<li>Changed #connected_port to #connected_ports (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2076">#2076</a>)</li>
<li>Configuration: <code>environment</code> is read from <code>RAILS_ENV</code>, if <code>RACK_ENV</code> can't be found (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2022">#2022</a>)</li>
<li>Log binding on http:// for TCP bindings to make it clickable</li>
</ul>
</li>
<li>
<p>Bugfixes</p>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/puma/puma/commit/f9def0b3c90ea0fba471aabdf56281ca636f31d9"><code>f9def0b</code></a> 5.0.2</li>
<li><a href="https://github.com/puma/puma/commit/78b3ca735239bb51196d44d7bdebbc66a8f6c7a6"><code>78b3ca7</code></a> Revert &quot;Consolidate option handling in Server, Server small refactors, doc ch...</li>
<li><a href="https://github.com/puma/puma/commit/3212427f1e6fddb467d37624e7df8aa28820f862"><code>3212427</code></a> 5.0.1</li>
<li><a href="https://github.com/puma/puma/commit/7ee4e93d31813f77469977f070ae2a5f5f729c6b"><code>7ee4e93</code></a> CI timeout to 20 mins to prevent JRuby/Truffle timeouts</li>
<li><a href="https://github.com/puma/puma/commit/f282c22d34298f4c421a6f70593d5445b1dbfd6b"><code>f282c22</code></a> [close <a href="https://github-redirect.dependabot.com/puma/puma/issues/2371">#2371</a>] Do not log EOFError (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2384">#2384</a>)</li>
<li><a href="https://github.com/puma/puma/commit/ae21600c65a345c99b7fc4493b6dddc232085b98"><code>ae21600</code></a> Clean up tests (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2387">#2387</a>)</li>
<li><a href="https://github.com/puma/puma/commit/1a9849cdffe872aecf32f54979bad1d70bbe95e7"><code>1a9849c</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/puma/puma/issues/2386">#2386</a> from bradleyprice/restore-missing-test</li>
<li><a href="https://github.com/puma/puma/commit/290c95f463060e183c3d0476eb9ec1bfd4f6296a"><code>290c95f</code></a> Restore test that was previously removed</li>
<li><a href="https://github.com/puma/puma/commit/4e78060385849ccaf8144ebf2850786a50618ba4"><code>4e78060</code></a> Add more @!attribute tags [skip ci] (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2385">#2385</a>)</li>
<li><a href="https://github.com/puma/puma/commit/d557c0a70f1ff2c51ea8cb8dc279af0bfd20e5c4"><code>d557c0a</code></a> History.md - add links [skip ci] (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2383">#2383</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/puma/puma/compare/v4.3.6...v5.0.2">compare view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=puma&package-manager=bundler&previous-version=4.3.6&new-version=5.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/configuring-github-dependabot-security-updates)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)


</details>
You can view, comment on, or merge this pull request online at:

  https://github.com/openstreetmap/openstreetmap-website/pull/2859

-- Commit Summary --

  * Bump puma from 4.3.6 to 5.0.2

-- File Changes --

    M Gemfile (2)
    M Gemfile.lock (6)

-- Patch Links --

https://github.com/openstreetmap/openstreetmap-website/pull/2859.patch
https://github.com/openstreetmap/openstreetmap-website/pull/2859.diff

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/pull/2859
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20200928/468e6aa3/attachment-0001.htm>

More information about the rails-dev mailing list