chore(deps): update dependency sinatra to v2 (master)

[mend-for-github-com]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
sinatra (source, changelog)	1.4.6 -> 2.2.4

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

sinatra/sinatra (sinatra)

v2.2.4

Compare Source

v2.2.3

Compare Source

• Fix: Escape filename in the Content-Disposition header. #​1841 by Kunpei Sakai

• Fix: fixed ReDoS for Rack::Protection::IPSpoofing. #​1823 by @​ooooooo-q

v2.2.2

Compare Source

• Update mustermann dependency to version 2.

v2.2.1

Compare Source

• Fix JRuby regression by using ruby2_keywords for delegation. #​1750 by Patrik Ragnarsson

• Add JRuby to CI. #​1755 by Karol Bucek

v2.2.0

Compare Source

• Breaking change: Add #select, #reject and #compact methods to Sinatra::IndifferentHash. If hash keys need to be converted to symbols, call #to_h to get a Hash instance first. #​1711 by Olivier Bellone

• Handle EOFError raised by Rack and return Bad Request 400 status. #​1743 by tamazon

• Minor refactors in base.rb. #​1640 by ceclinux

• Add escaping to the static 404 page. #​1645 by Chris Gavin

• Remove detect_rack_handler method. #​1652 by ceclinux

• Respect content type set in superclass before filter. Fixes #​1647 #​1649 by Jordan Owens

• Revert "Use prepend instead of include for helpers. #​1662 by namusyaka

• Fix usage of inherited Sinatra::Base classes keyword arguments. Fixes #​1669 #​1670 by Cadu Ribeiro

• Reduce RDoc generation time by not including every README. Fixes #​1578 #​1671 by Eloy Pérez

• Add support for per form csrf tokens. Fixes #​1616 #​1653 by Jordan Owens

• Update MAINTENANCE.md with the stable branch status. #​1681 by Fredrik Rubensson

• Validate expanded path matches public_dir when serving static files. #​1683 by cji-stripe

• Fix Delegator to pass keyword arguments for Ruby 3.0. #​1684 by andrewtblake

• Fix use with keyword arguments for Ruby 3.0. #​1701 by Robin Wallin

• Fix memory leaks for proc template. Fixes #​1704 #​1719 by Slevin

• Remove unnecessary test_files from the gemspec. #​1712 by Masataka Pocke Kuwabara

• Docs: Spanish documentation: Update README.es.md with removal of Thin. #​1630 by Espartaco Palma

• Docs: German documentation: Fixed typos in German README.md. #​1648 by Juri

• Docs: Japanese documentation: Update README.ja.md with removal of Thin. #​1629 by Ryuichi KAWAMATA

• Docs: English documentation: Various minor fixes to README.md. #​1663 by Yanis Zafirópulos

• Docs: English documentation: Document when dump_errors is enabled. Fixes #​1664 #​1665 by Patrik Ragnarsson

• Docs: Brazilian Portuguese documentation: Update README.pt-br.md with translation fixes. #​1668 by Vitor Oliveira

CI

• Use latest JRuby 9.2.16.0 on CI. #​1682 by Olle Jonsson

• Switch CI from travis to GitHub Actions. #​1691 by namusyaka

• Skip the Slack action if secrets.SLACK_WEBHOOK is not set. #​1705 by Robin Wallin

• Small CI improvements. #​1703 by Robin Wallin

• Drop auto-generated boilerplate comments from CI configuration file. #​1728 by Olle Jonsson

sinatra-contrib

• Do not raise when key is an enumerable. #​1619 by Ulysse Buonomo

Rack protection

• Fix broken origin_whitelist option. Fixes #​1641 #​1642 by Takeshi YASHIRO

v2.1.0

Compare Source

• Fix additional Ruby 2.7 keyword warnings #​1586 by Stefan Sundin

• Drop Ruby 2.2 support #​1455 by Eloy Pérez

• Add Rack::Protection::ReferrerPolicy #​1291 by Stefan Sundin

• Add default_content_type setting. Fixes #​1238 #​1239 by Mike Pastore

• Allow set :<engine> in sinatra-namespace #​1255 by Christian Höppner

• Use prepend instead of include for helpers. Fixes #​1213 #​1214 by Mike Pastore

• Fix issue with passed routes and provides Fixes #​1095 #​1606 by Mike Pastore, Jordan Owens

• Add QuietLogger that excludes paths from Rack::CommonLogger 1250 by Christoph Wagner

• Sinatra::Contrib dependency updates. Fixes #​1207 #​1411 by Mike Pastore

• Allow CSP to fallback to default-src. Fixes #​1484 #​1490 by Jordan Owens

• Replace origin_whitelist with permitted_origins. Closes #​1620 #​1625 by rhymes

• Use Rainbows instead of thin for async/stream features. Closes #​1624 #​1627 by Ryuichi KAWAMATA

• Enable EscapedParams if passed via settings. Closes #​1615 #​1632 by Anders Bälter

• Support for parameters in mime types. Fixes #​1141 by John Hope

• Handle null byte when serving static files #​1574 by Kush Fanikiso

• Improve development support and documentation and source code by Olle Jonsson, Pierre-Adrien Buisson, Shota Iguchi

v2.0.8.1

Compare Source

• Allow multiple hashes to be passed in merge and merge! for Sinatra::IndifferentHash #​1572 by Shota Iguchi

v2.0.8

Compare Source

• Allow multiple hashes to be passed in merge and merge! for Sinatra::IndifferentHash #​1572 by Shota Iguchi

v2.0.7

Compare Source

• Fix a regression #​1560 by Kunpei Sakai

v2.0.6

Compare Source

• Fix an issue setting environment from command line option #​1547, #​1554 by Jordan Owens, Kunpei Sakai

• Support pandoc as a new markdown renderer #​1533 by Vasiliy

• Remove outdated code for tilt 1.x #​1532 by Vasiliy

• Remove an extra logic for force_encoding #​1527 by Jordan Owens

• Avoid multiple errors even if params contains special values #​1526 by Kunpei Sakai

• Support bundler/inline with require 'sinatra' integration #​1520 by Kunpei Sakai

• Avoid TypeError when params contain a key without a value on Ruby < 2.4 #​1516 by Samuel Giddins

• Improve development support and documentation and source code by Olle Jonsson, Basavanagowda Kanur, Yuki MINAMIYA

v2.0.5

Compare Source

• Avoid FrozenError when params contains frozen value #​1506 by Kunpei Sakai

• Add support for Erubi #​1494 by @​tkmru

• IndifferentHash monkeypatch warning improvements #​1477 by Mike Pastore

• Improve development support and documentation and source code by Anusree Prakash, Jordan Owens, @​ceclinux and @​krororo.

sinatra-contrib

• Add flush option to content_for #​1225 by Shota Iguchi

• Drop activesupport dependency from sinatra-contrib #​1448

• Update yield_content to append default to ERB template buffer #​1500 by Jordan Owens

rack-protection

• Don't track the Accept-Language header by default #​1504 by Artem Chistyakov

v2.0.4

Compare Source

• Don't blow up when passing frozen string to send_file disposition #​1137 by Andrew Selder

• Fix ubygems LoadError #​1436 by Pavel Rosický

• Unescape regex captures #​1446 by Jordan Owens

• Slight performance improvements for IndifferentHash #​1427 by Mike Pastore

• Improve development support and documentation and source code by Will Yang, Jake Craige, Grey Baker and Guilherme Goettems Schneider

v2.0.3

Compare Source

• Fix the backports gem regression #​1442 by Marc-André Lafortune

v2.0.2

Compare Source

• Escape invalid query parameters #​1432 by Kunpei Sakai

  • The patch fixes CVE-2018-11627.

• Fix undefined method error for Sinatra::RequiredParams with hash key #​1431 by Arpit Chauhan

• Add xml content-types to valid html_types for Rack::Protection #​1413 by Reenan Arbitrario

• Encode route parameters using :default_encoding setting #​1412 by Brian m. Carlson

• Fix unpredictable behaviour from Sinatra::ConfigFile #​1244 by John Hope

• Add Sinatra::IndifferentHash#slice #​1405 by Shota Iguchi

• Remove status code 205 from drop body response #​1398 by Shota Iguchi

• Ignore empty captures from params #​1390 by Shota Iguchi

• Improve development support and documentation and source code by Zp Yuan, Andreas Finger, Olle Jonsson, Shota Iguchi, Nikita Bulai and Joshua O'Brien

v2.0.1

Compare Source

• Repair nested namespaces, by avoiding prefix duplication #​1322. Fixes #​1310 by Kunpei Sakai

• Add pattern matches to values for Mustermann::Concat #​1333. Fixes #​1332 by Dawa Ometto

• Ship the VERSION file with the gem, to allow local unpacking #​1338 by Olle Jonsson

• Fix issue with custom error handler on bad request #​1351. Fixes #​1350 by Jordan Owens

• Override Rack::ShowExceptions#pretty to set custom template #​1377. Fixes #​1376 by Jordan Owens

• Enhanced path validation in Windows #​1379 by Orange Tsai from DEVCORE

  • The patch fixes CVE-2018-7212

• Improve development support and documentation by Faheel Ahmad, Shota Iguchi, Olle Jonsson, Manabu Niseki, John Hope, Horacio, Ice-Storm, GraniteRock, Raman Skaskevich, Carlos Azuaje, 284km, Dan Rice and Zachary Scott

v2.0.0

Compare Source

• Use Mustermann for patterns #​1086 by Konstantin Haase

• Server now provides -q flag for quiet mode, which disables start/stop messages #​1153 by Vasiliy.

• Session middleware can now be specified with :session_store setting #​1161 by Jordan Owens.

• APP_ENV is now preferred and recommended over RACK_ENV for setting environment #​984 by Damien Mathieu.

• Add Reel support #​793 by Patricio Mac Adden.

• Make route params available during error handling #​895 by Jeremy Evans.

• Unify not_found and error 404 behavior #​896 by Jeremy Evans.

• Enable Ruby 2.3 frozen_string_literal feature #​1076 by Vladimir Kochnev.

• Add Sinatra::ShowExceptions::TEMPLATE and patched Rack::ShowExceptions to prefer Sinatra template by Zachary Scott.

• Sinatra::Runner is used internally for integration tests #​840 by Nick Sutterer.

• Fix case-sensitivity issue in uri method #​889 by rennex.

• Use Rack::Utils.status_code to allow status helper to use symbol as well as numeric codes #​968 by Tobias H. Michaelsen.

• Improved error handling for invalid params through Rack #​1070 by Jordan Owens.

• Ensure template is cached only once #​1021 by Patrik Rak.

• Rack middleware is initialized at server runtime rather than after receiving first request #​1205 by Itamar Turner-Trauring.

• Improve Session Secret documentation to encourage better security practices #​1218 by Glenn Rempe

• Exposed global and per-route options for Mustermann route parsing #​1233 by Mike Pastore

• Use same session_secret for classic and modular apps in development #​1245 by Marcus Stollsteimer

• Make authenticity token length a fixed value of 32 #​1181 by Jordan Owens

• Modernize Rack::Protection::ContentSecurityPolicy with CSP Level 2 and 3 Directives #​1202 by Glenn Rempe

• Adds preload option to Rack:Protection:StrictTransport #​1209 by Ed Robinson

• Improve BadRequest logic. Raise and handle exceptions if status is 400 #​1212 by Mike Pastore

• Make Rack::Test a development dependency #​1232 by Mike Pastore

• Capture exception messages of raised NotFound and BadRequest #​1210 by Mike Pastore

• Add explicit set method to contrib/cookies to override cookie settings #​1240 by Andrew Allen

• Avoid executing filters even if prefix matches with other namespace #​1253 by namusyaka

• Make #has_key? also indifferent in access, can accept String or Symbol #​1262 by Stephen Paul Weber

• Add allow_if option to bypass json csrf protection #​1265 by Jordan Owens

• rack-protection: Bundle StrictTransport, CookieTossing, and CSP #​1267 by Mike Pastore

• Add :strict_paths option for managing trailing slashes #​1273 by namusyaka

• Add full IndifferentHash implementation to params #​1279 by Mike Pastore

v1.4.8

Compare Source

• Fix the deprecation warning from Ruby about Fixnum. #​1235 by Akira Matsuda

v1.4.7

Compare Source

• Add Ashley Williams, Trevor Bramble, and Kashyap Kondamudi to team Sinatra.

• Correctly handle encoded colons in routes. (Jeremy Evans)

• Rename CHANGES to CHANGELOG.md and update Rakefile. #​1043 (Eliza Sorensen)

• Improve documentation. #​941, #​1069, #​1075, #​1025, #​1052 (Many great folks)

• Introduce Sinatra::Ext to workaround Rack 1.6 bug to fix Ruby 1.8.7
  support. #​1080 (Zachary Scott)

• Add CONTRIBUTING guide. #​987 (Katrina Owen)

---

Configuration

📅 Schedule: Branch creation - "before 5am every weekday" in timezone UTC, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box