Skip to content

Bump bcrypt from 3.1.18 to 3.1.19

James Nutt requested to merge dependabot-bundler-bcrypt-3.1.19 into main

Bumps bcrypt from 3.1.18 to 3.1.19.

Changelog

Sourced from bcrypt's changelog.

3.1.19 June 22 2023

  • Deprecate passing the third argument to BCrypt::Engine.hash_secret [GH #207 by @​sergey-alekseev]
  • Add GC guards so the C compiler won't optimize out references [GH #270]
Commits
  • 863cfbd bumping Java version rake-compiler/rake-compiler#172
  • 31458e7 bumping version / updating changelog
  • d4e4813 Merge pull request #270 from itarato/bugfix/PA-missing-gc-guard
  • 53ec1e1 Fixing a rare bug when calling BCrypt::Engine#hash_secret - which produces ni...
  • e402d69 Merge pull request #168 from bcrypt-ruby/no-null-bytes
  • 477f290 Add a test for passwords with null bytes
  • 4268ac8 Merge pull request #207 from sergey-alekseev/deprecate-passing-the-third-argu...
  • df27ee5 deprecate passing the third argument to BCrypt::Engine.hash_secret
  • See full diff in compare view

Dependabot commands
You can trigger Dependabot actions by commenting on this MR
  • @dependabot-bot rebase will rebase this MR. Deprecated, use GitLab's native /rebase instead
  • @dependabot-bot recreate will recreate this MR rewriting all the manual changes and resolving conflicts

Merge request reports