pkgsrc-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/trunk]: pkgsrc/devel/ruby-redmine devel/ruby-redmine: update to 4.0.8



details:   https://anonhg.NetBSD.org/pkgsrc/rev/406b3ce09111
branches:  trunk
changeset: 450119:406b3ce09111
user:      taca <taca%pkgsrc.org@localhost>
date:      Sun Apr 11 15:02:11 2021 +0000

description:
devel/ruby-redmine: update to 4.0.8

Security release includes several security fixes, including a fix for a
permission bypass in Issues API and a fix for private project name that can
be leaked in issue journal details, so upgrading as soon as possible is
recommended.  You can get more details in Security Advisories:
<https://redmine.org/projects/redmine/wiki/Security_Advisories>


4.0.8 (2021-03-21)

[Accounts / authentication]
* Defect #33926: Rake tasks "db:encrypt" and "db:decrypt" may fail due to
  validation error

[Administration]
* Defect #33310: Warnings while running redmine:load_default_data rake task
* Patch #32341: Show tooltip when hovering on repeat-value link in Field
  permission tab

[Attachments]
* Defect #33459: The order of thumbnails in journals does not match the
  order of file name list
* Defect #33769: When creating more than two identical attachments in a
  single db transaction, the first one always ends up unreadable

[Custom fields]
* Defect #33275: Possible values field in list format custom field form is
  not marked as required

[Documentation]
* Defect #33939: Unnecessary translation of {{toc}} macros in Russian Wiki
  formatting help

[Filters]
* Defect #34375: "is not" operator for Subproject filter incorrectly
  excludes closed subprojects

[Gantt]
* Defect #33140: Gantt bar is not displayed if the due date is the leftmost
  date or the start date is the rightmost date
* Defect #33175: Starting or ending marker is not displayed if they are on
  the leftmost or rightmost boundary of the gantt

[Gems support]
* Patch #34461: Update Redcarpet to 3.5.1

[Issues]
* Defect #33576: Done ratio of a parent issue may be shown as 99% even
  though all subtasks are completed

[Issues list]
* Defect #33548: Column header is clickable even when the column is not
  actually sortable
* Defect #34297: Subprojects issues are not displayed on main project when
  all subprojects are closed

[Projects]
* Defect #33889: Do not show list for custom fields without list entry on
  project overview

[REST API]
* Defect #34615: 'Search' falsy parameters are not respected

[SEO]
* Defect #6734: robots.txt: disallow crawling issues list with a query string

[Security]
* Defect #33360: Names of private projects are leaked by issue journal
  details that contain project_id changes
* Defect #33689: Issues API bypasses add_issue_notes permission
* Feature #33906: Upgrade Rails to 5.2.4.5

[Themes]
* Defect #8251: Classic Theme: Missed base line

[Translations]
* Defect #34447: Typo in translation string
  'setting_issue_list_default_columns': s//Isuses/Issues

[UI]
* Patch #33958: Jump to end of line in editor when starting list or quote

diffstat:

 devel/ruby-redmine/Makefile                            |   8 +-
 devel/ruby-redmine/PLIST                               |  68 +++++++++---------
 devel/ruby-redmine/distinfo                            |  19 ++--
 devel/ruby-redmine/patches/patch-redmine-4.0.7_Gemfile |  34 ---------
 4 files changed, 47 insertions(+), 82 deletions(-)

diffs (230 lines):

diff -r b1498b002f5f -r 406b3ce09111 devel/ruby-redmine/Makefile
--- a/devel/ruby-redmine/Makefile       Sun Apr 11 14:09:08 2021 +0000
+++ b/devel/ruby-redmine/Makefile       Sun Apr 11 15:02:11 2021 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: Makefile,v 1.60 2021/04/01 14:23:20 taca Exp $
+# $NetBSD: Makefile,v 1.61 2021/04/11 15:02:11 taca Exp $
 
 DISTNAME=      redmine-${RM_VERSION}
 PKGNAME=       ${RUBY_PKGPREFIX}-${DISTNAME:S/redmine/redmine${RM_VER}/}
@@ -11,7 +11,7 @@
 COMMENT=       Flexible project management web application
 LICENSE=       gnu-gpl-v2 # and so on.
 
-RM_VERSION=    4.0.7
+RM_VERSION=    4.0.8
 
 GEMS_DISTFILES+=       actioncable-5.2.4.5.gem actionmailer-5.2.4.5.gem
 GEMS_DISTFILES+=       actionpack-5.2.4.5.gem actionpack-xml_parser-2.0.1.gem
@@ -35,7 +35,7 @@
 GEMS_DISTFILES+=       rails-5.2.4.5.gem rails-dom-testing-2.0.3.gem
 GEMS_DISTFILES+=       rails-html-sanitizer-1.2.0.gem railties-5.2.4.5.gem
 GEMS_DISTFILES+=       rake-12.3.3.gem rbpdf-1.19.8.gem
-GEMS_DISTFILES+=       rbpdf-font-1.19.1.gem redcarpet-3.4.0.gem
+GEMS_DISTFILES+=       rbpdf-font-1.19.1.gem redcarpet-3.5.1.gem
 GEMS_DISTFILES+=       request_store-1.0.5.gem rmagick-2.16.0.gem
 GEMS_DISTFILES+=       roadie-3.5.0.gem roadie-rails-1.3.0.gem rouge-3.3.0.gem
 GEMS_DISTFILES+=       ruby-openid-2.9.2.gem rubyzip-1.2.3.gem
@@ -83,7 +83,7 @@
 REPLACE_RUBY+= rake-12.3.3/bin/rubocop rake-12.3.3/exe/rake
 REPLACE_RUBY+= rbpdf-1.19.8/test/test_helper.rb
 REPLACE_RUBY+= rbpdf-font-1.19.1/test/test_helper.rb
-REPLACE_RUBY+= redcarpet-3.4.0/bin/redcarpet ${DISTNAME}/bin/*
+REPLACE_RUBY+= redcarpet-3.5.1/bin/redcarpet ${DISTNAME}/bin/*
 REPLACE_RUBY+= ${DISTNAME}/extra/mail_handler/rdm-mailhandler.rb
 REPLACE_RUBY+= ${DISTNAME}/extra/svn/reposman.rb
 REPLACE_RUBY+= ${DISTNAME}/public/dispatch.fcgi.example
diff -r b1498b002f5f -r 406b3ce09111 devel/ruby-redmine/PLIST
--- a/devel/ruby-redmine/PLIST  Sun Apr 11 14:09:08 2021 +0000
+++ b/devel/ruby-redmine/PLIST  Sun Apr 11 15:02:11 2021 +0000
@@ -1,12 +1,12 @@
-@comment $NetBSD: PLIST,v 1.13 2021/02/28 16:01:05 taca Exp $
+@comment $NetBSD: PLIST,v 1.14 2021/04/11 15:02:11 taca Exp $
 bin/redmine_generate_secret${RUBY_SUFFIX}.sh
 bin/redmine_migrate_db${RUBY_SUFFIX}.sh
 bin/redmine_migrate_plugins${RUBY_SUFFIX}.sh
+${RUBY_EG}-redmine/Gemfile.lock
 ${RUBY_EG}-redmine/additional_environment.rb.example
 ${RUBY_EG}-redmine/configuration.yml.example
 ${RUBY_EG}-redmine/database.yml.example
 ${RUBY_EG}-redmine/secrets.yml.example
-${RUBY_EG}-redmine/Gemfile.lock
 ${RUBY_EG}-redmine/test/default.yml.example
 ${RUBY_EG}-redmine/test/empty.yml.example
 ${RUBY_EG}-redmine/test/no_default.yml.example
@@ -1556,7 +1556,7 @@
 ${RM_DIR}/app/public/javascripts/i18n/datepicker-vi.js
 ${RM_DIR}/app/public/javascripts/i18n/datepicker-zh-CN.js
 ${RM_DIR}/app/public/javascripts/i18n/datepicker-zh-TW.js
-${RM_DIR}/app/public/javascripts/jquery-1.11.1-ui-1.11.0-ujs-4.3.1.js
+${RM_DIR}/app/public/javascripts/jquery-1.11.1-ui-1.11.0-ujs-5.2.4.5.js
 ${RM_DIR}/app/public/javascripts/jstoolbar/jstoolbar.js
 ${RM_DIR}/app/public/javascripts/jstoolbar/lang/jstoolbar-ar.js
 ${RM_DIR}/app/public/javascripts/jstoolbar/lang/jstoolbar-az.js
@@ -2167,7 +2167,7 @@
 ${GEM_HOME}/cache/rake-12.3.3.gem
 ${GEM_HOME}/cache/rbpdf-1.19.8.gem
 ${GEM_HOME}/cache/rbpdf-font-1.19.1.gem
-${GEM_HOME}/cache/redcarpet-3.4.0.gem
+${GEM_HOME}/cache/redcarpet-3.5.1.gem
 ${GEM_HOME}/cache/request_store-1.0.5.gem
 ${GEM_HOME}/cache/rmagick-2.16.0.gem
 ${GEM_HOME}/cache/roadie-3.5.0.gem
@@ -2204,8 +2204,8 @@
 ${GEM_EXTSDIR}/puma-3.12.1/puma/puma_http11.${RUBY_DLEXT}
 ${PLIST.unicorn}${GEM_EXTSDIR}/raindrops-0.19.1/gem.build_complete
 ${PLIST.unicorn}${GEM_EXTSDIR}/raindrops-0.19.1/raindrops_ext.${RUBY_DLEXT}
-${GEM_EXTSDIR}/redcarpet-3.4.0/gem.build_complete
-${GEM_EXTSDIR}/redcarpet-3.4.0/redcarpet.${RUBY_DLEXT}
+${GEM_EXTSDIR}/redcarpet-3.5.1/gem.build_complete
+${GEM_EXTSDIR}/redcarpet-3.5.1/redcarpet.${RUBY_DLEXT}
 ${GEM_EXTSDIR}/rmagick-2.16.0/RMagick2.${RUBY_DLEXT}
 ${GEM_EXTSDIR}/rmagick-2.16.0/gem.build_complete
 ${PLIST.sqlite3}${GEM_EXTSDIR}/sqlite3-1.3.13/sqlite3/sqlite3_native.${RUBY_DLEXT}
@@ -6279,33 +6279,33 @@
 ${GEM_HOME}/gems/rbpdf-font-1.19.1/rbpdf-font.gemspec
 ${GEM_HOME}/gems/rbpdf-font-1.19.1/test/rbpdf_font_file_test.rb
 ${GEM_HOME}/gems/rbpdf-font-1.19.1/test/test_helper.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/COPYING
-${GEM_HOME}/gems/redcarpet-3.4.0/Gemfile
-${GEM_HOME}/gems/redcarpet-3.4.0/README.markdown
-${GEM_HOME}/gems/redcarpet-3.4.0/Rakefile
-${GEM_HOME}/gems/redcarpet-3.4.0/bin/redcarpet
-${GEM_HOME}/gems/redcarpet-3.4.0/lib/redcarpet.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/lib/redcarpet.${RUBY_DLEXT}
-${GEM_HOME}/gems/redcarpet-3.4.0/lib/redcarpet/cli.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/lib/redcarpet/compat.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/lib/redcarpet/render_man.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/lib/redcarpet/render_strip.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/redcarpet.gemspec
-${GEM_HOME}/gems/redcarpet-3.4.0/test/benchmark.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/test/custom_render_test.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/test/fixtures/benchmark.md
-${GEM_HOME}/gems/redcarpet-3.4.0/test/html5_test.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/test/html_render_test.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/test/html_toc_render_test.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/test/markdown_test.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/test/pathological_inputs_test.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/test/redcarpet_bin_test.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/test/redcarpet_compat_test.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/test/safe_render_test.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/test/smarty_html_test.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/test/smarty_pants_test.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/test/stripdown_render_test.rb
-${GEM_HOME}/gems/redcarpet-3.4.0/test/test_helper.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/COPYING
+${GEM_HOME}/gems/redcarpet-3.5.1/Gemfile
+${GEM_HOME}/gems/redcarpet-3.5.1/README.markdown
+${GEM_HOME}/gems/redcarpet-3.5.1/Rakefile
+${GEM_HOME}/gems/redcarpet-3.5.1/bin/redcarpet
+${GEM_HOME}/gems/redcarpet-3.5.1/lib/redcarpet.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/lib/redcarpet.${RUBY_DLEXT}
+${GEM_HOME}/gems/redcarpet-3.5.1/lib/redcarpet/cli.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/lib/redcarpet/compat.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/lib/redcarpet/render_man.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/lib/redcarpet/render_strip.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/redcarpet.gemspec
+${GEM_HOME}/gems/redcarpet-3.5.1/test/benchmark.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/test/custom_render_test.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/test/fixtures/benchmark.md
+${GEM_HOME}/gems/redcarpet-3.5.1/test/html5_test.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/test/html_render_test.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/test/html_toc_render_test.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/test/markdown_test.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/test/pathological_inputs_test.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/test/redcarpet_bin_test.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/test/redcarpet_compat_test.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/test/safe_render_test.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/test/smarty_html_test.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/test/smarty_pants_test.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/test/stripdown_render_test.rb
+${GEM_HOME}/gems/redcarpet-3.5.1/test/test_helper.rb
 ${GEM_HOME}/gems/request_store-1.0.5/.travis.yml
 ${GEM_HOME}/gems/request_store-1.0.5/Gemfile
 ${GEM_HOME}/gems/request_store-1.0.5/LICENSE.txt
@@ -8939,7 +8939,7 @@
 ${GEM_HOME}/specifications/rake-12.3.3.gemspec
 ${GEM_HOME}/specifications/rbpdf-1.19.8.gemspec
 ${GEM_HOME}/specifications/rbpdf-font-1.19.1.gemspec
-${GEM_HOME}/specifications/redcarpet-3.4.0.gemspec
+${GEM_HOME}/specifications/redcarpet-3.5.1.gemspec
 ${GEM_HOME}/specifications/request_store-1.0.5.gemspec
 ${GEM_HOME}/specifications/rmagick-2.16.0.gemspec
 ${GEM_HOME}/specifications/roadie-3.5.0.gemspec
diff -r b1498b002f5f -r 406b3ce09111 devel/ruby-redmine/distinfo
--- a/devel/ruby-redmine/distinfo       Sun Apr 11 14:09:08 2021 +0000
+++ b/devel/ruby-redmine/distinfo       Sun Apr 11 15:02:11 2021 +0000
@@ -1,4 +1,4 @@
-$NetBSD: distinfo,v 1.12 2021/02/28 16:01:05 taca Exp $
+$NetBSD: distinfo,v 1.13 2021/04/11 15:02:11 taca Exp $
 
 SHA1 (actioncable-5.2.4.5.gem) = 002f264c320368bc85cb0329e3e7ad1c6f0fa5d2
 RMD160 (actioncable-5.2.4.5.gem) = 680a62c5c1e92c9fc0ec42bfd1cc58c0decb0c14
@@ -224,14 +224,14 @@
 RMD160 (rbpdf-font-1.19.1.gem) = 8c8b00f49ded70c1f62848f5c45a7a7b59dd56a6
 SHA512 (rbpdf-font-1.19.1.gem) = e678df3b58f32f6670bd79e8ebed0856a5fdbab766c32c8667c80358f899625445e9f6829652f13b64d4c79c5af15dd3dde9849dfe86c4f14e45b8750e71e3b7
 Size (rbpdf-font-1.19.1.gem) = 9571840 bytes
-SHA1 (redcarpet-3.4.0.gem) = 5b75e3d781c66e52dbc16c99eddaa1eff067458f
-RMD160 (redcarpet-3.4.0.gem) = b5a087b4bcd6550a9a96d94b19a2471be2e705fd
-SHA512 (redcarpet-3.4.0.gem) = 7cd68a7d6c2dc4d94683e8738e4867b99a98ee135a59041cddb6d4f42a67ba137e56852e7a1701b35fae7b3b825008194f2a7ed818c5a9fe2bab8e904328529f
-Size (redcarpet-3.4.0.gem) = 61440 bytes
-SHA1 (redmine-4.0.7.tar.gz) = eeb26e765313981937677973a6b546dedb22e986
-RMD160 (redmine-4.0.7.tar.gz) = 83a990177a56f84131d48f4021b79b90d12fcd09
-SHA512 (redmine-4.0.7.tar.gz) = 30a3fbb51685463f1ca1a5230752838f08a7536a1c113a69938ff4429ef48f89a138fdab8a3e7c3d4533697d3b84e902a523b9beb7a530d95f50310e5cd5ef5c
-Size (redmine-4.0.7.tar.gz) = 2521740 bytes
+SHA1 (redcarpet-3.5.1.gem) = dd66b993277117ade9e9732748da9a1c839c2664
+RMD160 (redcarpet-3.5.1.gem) = 209c80a704890d2731490536fe448ab6dd19c8ad
+SHA512 (redcarpet-3.5.1.gem) = afab45ca91f85b3aa23c1ac651d6881bd19c93109239466de9aba8472173537b4f6e21335cdbdf21fc462c7beea1b8f0434c47207d82d26fc5534780a522532c
+Size (redcarpet-3.5.1.gem) = 62464 bytes
+SHA1 (redmine-4.0.8.tar.gz) = a443afbcb355af44bdcad00696671639c0dc62cb
+RMD160 (redmine-4.0.8.tar.gz) = 96b3829aeabe5aad055ebe3f592259b883d8098e
+SHA512 (redmine-4.0.8.tar.gz) = 12505e0b8719614c7504377c44c840461492d50e7bcba6b121afa641f783a78b0a19a4dc0b1150a04c7decc90d601093695606ea23968db3e7e206e11523314d
+Size (redmine-4.0.8.tar.gz) = 2526091 bytes
 SHA1 (request_store-1.0.5.gem) = e59267666144a927900c8b46e596c2a9b182d0a9
 RMD160 (request_store-1.0.5.gem) = 0c9fe6f35e889c834a7ef3e62f7a54f7f07d38c0
 SHA512 (request_store-1.0.5.gem) = 0d69ebdb8d3f6df11f89780c250b5fcc702258e19d7fbf8e2273614ecc220ee25e059a596a8a7e39bcc426f8d834cab38c161c0c1a800cc7ebdba3daa810e727
@@ -316,6 +316,5 @@
 RMD160 (yard-0.9.20.gem) = fa7f80200c7aa66a642de137b26c227f836297c1
 SHA512 (yard-0.9.20.gem) = 4269037ba61185c999df9f1195825ec92a76b32ccb18fc2b86b54e34ff2e5efd22a536c3e207304ef47a52905215103a2094634d1bb8d8ab722b11488cf04e13
 Size (yard-0.9.20.gem) = 640512 bytes
-SHA1 (patch-redmine-4.0.7_Gemfile) = 40543c2ed4fcbb40e832fc89e5790460266de7c9
 SHA1 (patch-rmagick-2.16.0_ext_RMagick_extconf.rb) = 227e2f02855019fb8750130af6cb8b10baee5bbf
 SHA1 (patch-rmagick-2.16.0_ext_RMagick_rmpixel.c) = ef9243b90961bdb2435176e70facc4eb89d66b9a
diff -r b1498b002f5f -r 406b3ce09111 devel/ruby-redmine/patches/patch-redmine-4.0.7_Gemfile
--- a/devel/ruby-redmine/patches/patch-redmine-4.0.7_Gemfile    Sun Apr 11 14:09:08 2021 +0000
+++ /dev/null   Thu Jan 01 00:00:00 1970 +0000
@@ -1,34 +0,0 @@
-$NetBSD: patch-redmine-4.0.7_Gemfile,v 1.1 2021/02/28 16:01:06 taca Exp $
-
-* Update gem versions.
-* Do not include tzinfo-data.
-
---- redmine-4.0.7/Gemfile.orig 2020-04-06 17:00:03.000000000 +0000
-+++ redmine-4.0.7/Gemfile
-@@ -3,7 +3,7 @@ source 'https://rubygems.org'
- ruby '>= 2.3.0', '< 2.7.0' if Bundler::VERSION >= '1.12.0'
- gem "bundler", ">= 1.5.0"
- 
--gem 'rails', '5.2.4.2'
-+gem 'rails', '5.2.4.5'
- gem "rouge", "~> 3.3.0"
- gem "request_store", "1.0.5"
- gem "mini_mime", "~> 1.0.1"
-@@ -13,7 +13,7 @@ gem "mimemagic"
- gem "mail", "~> 2.7.1"
- gem "csv", "~> 3.0.1" if RUBY_VERSION >= "2.3" && RUBY_VERSION < "2.6"
- 
--gem "nokogiri", (RUBY_VERSION >= "2.3" ? "~> 1.10.0" : "~> 1.9.1")
-+gem "nokogiri", "~> 1.10.0"
- gem "i18n", "~> 0.7.0"
- gem "xpath", "< 3.2.0" if RUBY_VERSION < "2.3"
- 
-@@ -21,7 +21,7 @@ gem "xpath", "< 3.2.0" if RUBY_VERSION <
- gem "sprockets", "~> 3.7.2"
- 
- # Windows does not include zoneinfo files, so bundle the tzinfo-data gem
--gem 'tzinfo-data', platforms: [:mingw, :x64_mingw, :mswin]
-+# gem 'tzinfo-data', platforms: [:mingw, :x64_mingw, :mswin]
- gem "rbpdf", "~> 1.19.6"
- 
- # Optional gem for LDAP authentication



Home | Main Index | Thread Index | Old Index