Skip to content

Bump prism from 0.22.0 to 1.1.0#344

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bundler/prism-1.1.0
Closed

Bump prism from 0.22.0 to 1.1.0#344
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bundler/prism-1.1.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Oct 3, 2024

Bumps prism from 0.22.0 to 1.1.0.

Release notes

Sourced from prism's releases.

v1.1.0

Added

  • Explicitly type each child node field in the Ruby API.
  • Add the main_script option to the parse APIs, which controls whether or not shebangs are considered.
  • Add the partial_script options to the parse APIs, which controls whether or not jumps that would otherwise be considered invalid are allowed. This is useful for parsing things like ERB sources, where you know it will be evaluated in a different context. Note that this functionality is replacing the previous idiom of passing in a list of scopes to indicate an eval context, because that behavior has changed upstream in ruby/ruby.
  • Add ArgumentsNode#contains_multiple_splats?.
  • Add ArgumentsNode#contains_forwarding?.
  • Accept all valid Ruby versions for the version option on parse APIs.
  • Accept version shorthands like "3.3" and "3.4" for the version option on parse APIs.
  • Support a max depth to protect against malicious payloads without hitting the stack limit.

Changed

  • Fix some token incompatibilities in the parser translation.
  • Fix up parsing tempfiles on Windows.
  • Fix up handling UTF-8 characters in file paths on Windows.
  • Do not warn for a \r at the end of a shebang on Windows.
  • Properly handle erroring for parsing a directory on Windows.
  • When a numbered reference is out of range, warn instead of raise.
  • Allow returns in default parameter values.
  • Reject many more invalid syntax patterns.

v1.0.0

Added

  • Add Node#breadth_first_search.
  • Add Node#node_id.
  • Add ArgumentsNode#contains_splat?.
  • Passing the special value false for the encoding option tells Prism to ignore magic encoding comments.
  • Expose flags on every node type (allows checking static literal and newline).
  • Implement mismatched indentation warning.
  • Add C API for receiving a callback when parsing shebangs with additional flags.

Changed

  • BREAKING: Some fields are renamed that had illogical names. The previous names all now emit deprecation warnings.
    • CaseMatchNode#consequent was renamed to CaseMatchNode#else_clause
    • CaseNode#consequent was renamed to CaseNode#else_clause
    • IfNode#consequent was renamed to IfNode#subsequent
    • RescueNode#consequent was renamed to RescueNode#subsequent
    • UnlessNode#consequent was renamed to UnlessNode#else_clause
  • Block exits are now allowed in loop predicates (e.g., while _ && break do end).
  • Multi-writes are now disallowed when not at the statement level.
  • Ensure that range operators are non-associative.
  • (JavaScript) Correctly deserialize encoded strings.
  • Properly support parsing regular expressions in extended mode.
  • Use gmake on FreeBSD.
  • Parsing streams now handles NUL bytes in the middle of the stream.
  • Properly detect invalid returns.

... (truncated)

Changelog

Sourced from prism's changelog.

[1.1.0] - 2024-10-02

Added

  • Explicitly type each child node field in the Ruby API.
  • Add the main_script option to the parse APIs, which controls whether or not shebangs are considered.
  • Add the partial_script options to the parse APIs, which controls whether or not jumps that would otherwise be considered invalid are allowed. This is useful for parsing things like ERB sources, where you know it will be evaluated in a different context. Note that this functionality is replacing the previous idiom of passing in a list of scopes to indicate an eval context, because that behavior has changed upstream in ruby/ruby.
  • Add ArgumentsNode#contains_multiple_splats?.
  • Add ArgumentsNode#contains_forwarding?.
  • Accept all valid Ruby versions for the version option on parse APIs.
  • Accept version shorthands like "3.3" and "3.4" for the version option on parse APIs.
  • Support a max depth to protect against malicious payloads without hitting the stack limit.

Changed

  • Fix some token incompatibilities in the parser translation.
  • Fix up parsing tempfiles on Windows.
  • Fix up handling UTF-8 characters in file paths on Windows.
  • Do not warn for a \r at the end of a shebang on Windows.
  • Properly handle erroring for parsing a directory on Windows.
  • When a numbered reference is out of range, warn instead of raise.
  • Allow returns in default parameter values.
  • Reject many more invalid syntax patterns.

[1.0.0] - 2024-08-28

Added

  • Add Node#breadth_first_search.
  • Add Node#node_id.
  • Add ArgumentsNode#contains_splat?.
  • Passing the special value false for the encoding option tells Prism to ignore magic encoding comments.
  • Expose flags on every node type (allows checking static literal and newline).
  • Implement mismatched indentation warning.
  • Add C API for receiving a callback when parsing shebangs with additional flags.

Changed

  • BREAKING: Some fields are renamed that had illogical names. The previous names all now emit deprecation warnings.
    • CaseMatchNode#consequent was renamed to CaseMatchNode#else_clause
    • CaseNode#consequent was renamed to CaseNode#else_clause
    • IfNode#consequent was renamed to IfNode#subsequent
    • RescueNode#consequent was renamed to RescueNode#subsequent
    • UnlessNode#consequent was renamed to UnlessNode#else_clause
  • Block exits are now allowed in loop predicates (e.g., while _ && break do end).
  • Multi-writes are now disallowed when not at the statement level.
  • Ensure that range operators are non-associative.
  • (JavaScript) Correctly deserialize encoded strings.
  • Properly support parsing regular expressions in extended mode.
  • Use gmake on FreeBSD.

... (truncated)

Commits
  • 5bf1903 Merge pull request #3128 from ruby/bump-version
  • f800268 Bump to v1.1.0
  • 2744eb3 Merge pull request #3127 from ruby/fix-up-binding-power
  • f29ceae Fix up binding power for singleton method receiver
  • 7cc60a3 Merge pull request #3126 from ianks/cargo-leak-fix
  • f06ecf4 Disable leak sanitize step in Rust in CI for now
  • e6c0ede Merge pull request #3125 from ruby/double-range-in-arguments
  • aee2de9 Fix up doubled range in arguments
  • 7ea42f6 Merge pull request #3124 from ruby/beginless-ranges
  • ab9d809 Fix up beginless ranges in method definitions
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump prism from 0.22.0 to 1.1.0
fe269be 
Bumps [prism](https://github.com/ruby/prism) from 0.22.0 to 1.1.0.
- [Release notes](https://github.com/ruby/prism/releases)
- [Changelog](https://github.com/ruby/prism/blob/main/CHANGELOG.md)
- [Commits](ruby/prism@v0.22.0...v1.1.0)

---
updated-dependencies:
- dependency-name: prism
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Oct 3, 2024
@dependabot dependabot Bot mentioned this pull request Oct 3, 2024
Closed
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Oct 11, 2024

Superseded by #345.

@dependabot dependabot Bot closed this Oct 11, 2024
@dependabot dependabot Bot deleted the dependabot/bundler/prism-1.1.0 branch October 11, 2024 02:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants