dependency: bump puma from 5.5.0 to 5.5.1 (!1065) · Merge requests · multiple-projects / imported-project-acde40d48b76f2fa · GitLab

Do not update/delete: Banner broadcast message test data

Do not update/delete: Notification broadcast message test data

George Koltsov requested to merge dependabot-bundler-puma-5.5.1 into master Oct 12, 2021

Bumps puma from 5.5.0 to 5.5.1.

Release notes

Sourced from puma's releases.

5.5.1

https://github.com/puma/puma/security/advisories/GHSA-48w2-rm65-62xx

Changelog

Sourced from puma's changelog.

5.5.1 / 2021-10-12

Security

Do not allow LF as a line ending in a header (CVE-2021-41136)

Commits

acdc3ae Merge pull request from GHSA-48w2-rm65-62xx
61dd7f4 CI: Improve "set SSL" step name
20dc923 Extract calls to purge_interrupt_queue (#2716)
cf991f6 Update instructions for GitHub actions [ci skip] (#2717)
520dc92 Clean up some duplicated code (#2715)
21e9a4a Clean up and format markdown documentation (#2714)
f0d73a7 Improve localhost SSL integration docs (#2712)
e2815b6 Reimplement delete environment tests (#2710)
e3acca8 Update contributing.md [ci skip] (#2705)
a6cdca8 Delete env tests that dont test anything
Additional commits viewable in compare view

Dependabot commands

You can trigger Dependabot actions by commenting on this MR

@dependabot-bot rebase will rebase this MR
@dependabot-bot recreate will recreate this MR rewriting all the manual changes and resolving conflicts