Bump puma from 3.10.0 to 5.6.2
Bumps puma from 3.10.0 to 5.6.2.
Release notes
Sourced from puma's releases.
5.6.2 / 2022-02-11
- Bugfix/Security
- Response body will always be
close
d. (GHSA-rmj8-8hhh-gv5h, related to #2809)5.6.1
Bugfixes
- Reverted a commit which appeared to be causing occasional blank header values (see issue #2808) (#2809)
Full Changelog: https://github.com/puma/puma/compare/v5.6.0...v5.6.1
5.6.0 - Birdie's Version
Maintainer @nateberkopec had a daughter, nicknamed Birdie:
5.6.0 / 2022-01-25
Features
- Support
localhost
integration inssl_bind
(#2764, #2708)- Allow backlog parameter to be set with ssl_bind DSL (#2780)
- Remove yaml (psych) requirement in StateFile (#2784)
- Allow culling of oldest workers, previously was only youngest (#2773, #2794)
- Add worker_check_interval configuration option (#2759)
- Always send lowlevel_error response to client (#2731, #2341)
- Support for cert_pem and key_pem with ssl_bind DSL (#2728)
Bugfixes
- Keep thread names under 15 characters, prevents breakage on some OSes (#2733)
- Fix two 'old-style-definition' compile warning (#2807, #2806)
- Log environment correctly using option value (#2799)
- Fix warning from Ruby master (will be 3.2.0) (#2785)
- extconf.rb - fix openssl with old Windows builds (#2757)
- server.rb - rescue handling (
Errno::EBADF
) for@notify.close
(#2745)Refactor
5.5.2
Re-allows UTF-8 in HTTP header values
5.5.1
https://github.com/puma/puma/security/advisories/GHSA-48w2-rm65-62xx
5.5.0 - Zawgyi
5.5.0 / 2021-09-19
... (truncated)
Changelog
Sourced from puma's changelog.
5.6.2 / 2022-02-11
- Bugfix/Security
- Response body will always be
close
d. (GHSA-rmj8-8hhh-gv5h, related to #2809)5.6.1 / 2022-01-26
- Bugfixes
- Reverted a commit which appeared to be causing occasional blank header values (#2809)
5.6.0 / 2022-01-25
Features
- Support
localhost
integration inssl_bind
(#2764, #2708)- Allow backlog parameter to be set with ssl_bind DSL (#2780)
- Remove yaml (psych) requirement in StateFile (#2784)
- Allow culling of oldest workers, previously was only youngest (#2773, #2794)
- Add worker_check_interval configuration option (#2759)
- Always send lowlevel_error response to client (#2731, #2341)
- Support for cert_pem and key_pem with ssl_bind DSL (#2728)
Bugfixes
- Keep thread names under 15 characters, prevents breakage on some OSes (#2733)
- Fix two 'old-style-definition' compile warning (#2807, #2806)
- Log environment correctly using option value (#2799)
- Fix warning from Ruby master (will be 3.2.0) (#2785)
- extconf.rb - fix openssl with old Windows builds (#2757)
- server.rb - rescue handling (
Errno::EBADF
) for@notify.close
(#2745)Refactor
5.5.2 / 2021-10-12
- Bugfixes
- Allow UTF-8 in HTTP header values
5.5.1 / 2021-10-12
Feature (added as mistake - we don't normally do this on bugfix releases, sorry!)
- Allow setting APP_ENV in preference to RACK_ENV or RAILS_ENV (#2702)
Security
- Do not allow LF as a line ending in a header (CVE-2021-41136)
5.5.0 / 2021-09-19
... (truncated)
Commits
-
c6340d1
5.6.2 (#2821) -
e0753de
2.6.1 -
7008a61
Revert "Always send lowlevel_error response to client (#2731)" (#2809) -
61ebbbe
5.6.0 -
d20915d
Fix two 'old-style-definition' compile warning (#2807) -
930e5b4
Fix typo in CONTRIBUTING (#2805) -
c38d61c
CONTRIBUTING: file limits -
aa732fd
Updates for OpenSSL 3 (#2800) -
ca2128f
Log environment using option value (#2799) -
3f3c2f6
Adds a --silent option to the CLI (#2803) - Additional commits viewable in compare view