[Snyk] Upgrade @rails/actioncable from 6.1.6 to 7.1.1

[Z2Flow]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade @rails/actioncable from 6.1.6 to 7.1.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

Warning: This is a major version upgrade, and may be a breaking change.

• The recommended version is 37 versions ahead of your current version.
• The recommended version was released 2 months ago, on 2023-10-11.

Release notes

Package name: @rails/actioncable

• 7.1.1 - 2023-10-11
  

  Active Support

  • Add support for keyword arguments when delegating calls to custom loggers from ActiveSupport::BroadcastLogger.

    Jenny Shen

  • NumberHelper: handle objects responding to_d.

    fatkodima

  • Fix RedisCacheStore to properly set the TTL when incrementing or decrementing.

    This bug was only impacting Redis server older than 7.0.

    Thomas Countz

  • Fix MemoryStore to prevent race conditions when incrementing or decrementing.

    Pierre Jambet

  Active Model

  • No changes.

  Active Record

  • Fix auto populating IDENTITY columns for PostgreSQL.

    fatkodima

  • Fix "ArgumentError: wrong number of arguments (given 3, expected 2)" when
    down migrating rename_table in older migrations.

    fatkodima

  • Do not require the Action Text, Active Storage and Action Mailbox tables
    to be present when running when running test on CI.

    Rafael Mendonça França

  Action View

  • Updated @ rails/ujs files to ignore certain data-* attributes when element is contenteditable.

    This fix was already landed in >= 7.0.4.3, < 7.1.0.
    [CVE-2023-23913]

    Ryunosuke Sato

  Action Pack

  • No changes.

  Active Job

  • Don't log enqueuing details when the job wasn't enqueued.

    Dustin Brown

  Action Mailer

  • No changes.

  Action Cable

  • No changes.

  Active Storage

  • No changes.

  Action Mailbox

  • No changes.

  Action Text

  • No changes.

  Railties

  • Ensures the Rails generated Dockerfile uses correct ruby version and matches Gemfile.

    Abhay Nikam

• 7.1.0 - 2023-10-05
  Read more
• 7.1.0-rc2 - 2023-10-01
• 7.1.0-rc1 - 2023-09-27
• 7.1.0-beta1 - 2023-09-13
• 7.0.8 - 2023-09-09
  

  Active Support

  • Fix TimeWithZone still using deprecated #to_s when ENV or config to
    disable it are set.

    Hartley McGuire

  • Fix CacheStore#write_multi when using a distributed Redis cache with a connection pool.

    Fixes #48938.

    Jonathan del Strother

  Active Model

  • No changes.

  Active Record

  • Fix change_column not setting precision: 6 on datetime columns when
    using 7.0+ Migrations and SQLite.

    Hartley McGuire

  • Fix unscope is not working in specific case

    Before:

    Post.where(id: 1...3).unscope(where: :id).to_sql # "SELECT `posts`.* FROM `posts` WHERE `posts`.`id` >= 1 AND `posts`.`id` < 3"

    After:

    Post.where(id: 1...3).unscope(where: :id).to_sql # "SELECT `posts`.* FROM `posts`"

    Fixes #48094.

    Kazuya Hatanaka

  • Fix associations to a STI model including a class_name parameter

    class Product < ApplicationRecord
    has_many :requests, as: :requestable, class_name: "ProductRequest", dependent: :destroy
    end

    # STI tables
    class Request < ApplicationRecord
    belongs_to :requestable, polymorphic: true

    validate :request_type, presence: true
    end

    class ProductRequest < Request
    belongs_to :user
    end

    Accessing such association would lead to:

    table_metadata.rb:22:in `has_column?': undefined method `key?' for nil:NilClass (NoMethodError)
    

    Romain Filinto

  • Fix change_table setting datetime precision for 6.1 Migrations

    Hartley McGuire

  • Fix change_column setting datetime precision for 6.1 Migrations

    Hartley McGuire

  Action View

  • Fix form_for missing the hidden _method input for models with a
    namespaced route.

    Hartley McGuire

  • Fix render collection: @ records, cache: true inside jbuilder templates

    The previous fix that shipped in 7.0.7 assumed template fragments are always strings,
    this isn't true with jbuilder.

    Jean Boussier

  Action Pack

  • Fix HostAuthorization potentially displaying the value of the
    X_FORWARDED_HOST header when the HTTP_HOST header is being blocked.

    Hartley McGuire, Daniel Schlosser

  Active Job

  • Fix Active Job log message to correctly report a job failed to enqueue
    when the adapter raises an ActiveJob::EnqueueError.

    Ben Sheldon

  Action Mailer

  • No changes.

  Action Cable

  • No changes.

  Active Storage

  • No changes.

  Action Mailbox

  • No changes.

  Action Text

  • No changes.

  Railties

  • Omit webdrivers gem dependency from Gemfile template

    Sean Doyle

• 7.0.7 - 2023-08-09
• 7.0.7-2 - 2023-08-22
• 7.0.7-1 - 2023-08-22
• 7.0.6 - 2023-06-29
• 7.0.5 - 2023-05-24
• 7.0.5-1 - 2023-06-26
• 7.0.4 - 2022-09-09
• 7.0.4-3 - 2023-03-13
• 7.0.4-2 - 2023-01-25
• 7.0.4-1 - 2023-01-17
• 7.0.3 - 2022-05-09
• 7.0.3-1 - 2022-07-12
• 7.0.2 - 2022-02-08
• 7.0.2-4 - 2022-04-26
• 7.0.2-3 - 2022-03-08
• 7.0.2-2 - 2022-02-11
• 7.0.2-1 - 2022-02-11
• 7.0.1 - 2022-01-06
• 7.0.0 - 2021-12-15
• 7.0.0-rc3 - 2021-12-14
• 7.0.0-rc2 - 2021-12-14
• 7.0.0-rc1 - 2021-12-06
• 7.0.0-alpha2 - 2021-09-15
• 7.0.0-alpha1 - 2021-09-15
• 6.1.7 - 2022-09-09
• 6.1.7-6 - 2023-08-22
• 6.1.7-5 - 2023-08-22
• 6.1.7-4 - 2023-06-26
• 6.1.7-3 - 2023-03-13
• 6.1.7-2 - 2023-01-25
• 6.1.7-1 - 2023-01-17
• 6.1.6 - 2022-05-09

from @rails/actioncable GitHub release notes

Commit messages

Package name: @rails/actioncable

• 2393805 Preparing for 7.1.1 release
• b280d7f Sync CHANGELOG
• 314220e Merge pull request #49525 from abhaynikam/fix-app-generated-dockerfile-to-use-correct-ruby-version
• 1f1710d Merge pull request #49589 from fatkodima/fix-flaky-fixtures-test
• 4921df0 Merge pull request #49565 from hachi8833/add_missing_doc_43487
• 57d626e Merge pull request #49562 from akhilgkrishnan/update-postgres-naming-to-postgresql
• 63f204d Merge pull request #49553 from tricknotes/update-rails-ujs-build
• 8a6118a Use released version of Sdoc
• 3199a45 Merge pull request #49581 from hachi8833/update_doc_npm
• a5534b9 Merge pull request #49515 from dustinbrownman/main
• ddd44f6 Merge pull request #49580 from p8/guides/format-html-attributes
• 5abcfd4 Merge pull request #49538 from akhilgkrishnan/capitalize-framework-names
• 773e4a6 Merge pull request #49518 from Edouard-chin/ec-logger-doc
• af02522 Merge pull request #49539 from akhilgkrishnan/docs-update-7-0-to-7-1
• e2ded10 Merge pull request #49571 from jenshenny/kwargs-broadcast-logger
• dfebc16 Merge pull request #49576 from fatkodima/fix-number-helper-to_d
• fee8ffe Merge pull request #49556 from mguan2020/my_new_branch
• c2e148d Merge pull request #49575 from jbampton/fix-case-of-javascript
• c3117b5 Merge pull request #49554 from Thomascountz/fix-redis-lt7-ttl-not-set-on-first-incr-decr
• 57f88f4 Merge pull request #49573 from jbampton/fix-spelling
• 27029a3 Merge pull request #49544 from hieuk09/bug/fix-sqlite3-table-name-quote
• b7837f9 Merge pull request #49504 from fatkodima/fix-pg-retrieving-identity-columns
• 36a3c68 Merge pull request #49551 from haines/fix-internal-metadata-disabled
• a43aa74 Fix example in Active Storage guide

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs