Skip to content

Bump linzer from 0.7.7 to 0.7.9 in /debug_fasp#178

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bundler/debug_fasp/linzer-0.7.9
Open

Bump linzer from 0.7.7 to 0.7.9 in /debug_fasp#178
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bundler/debug_fasp/linzer-0.7.9

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 23, 2026

Copy link
Copy Markdown
Contributor

Bumps linzer from 0.7.7 to 0.7.9.

Release notes

Sourced from linzer's releases.

v0.7.9

What's Changed

New features ✨

  • Add Faraday support for HTTP message signatures.

Fixes 🐞

  • Enforce expires signature parameter validation in Verifier.

  • Add support for multiple signatures on a single HTTP message.

  • Fix multi-signature header overwrite when calling sign! multiple times.

Misc/Docs 📄

  • Support http gem 5.x and 6.x.

  • Improve README clarity and reflect current library state.

Full Changelog: nomadium/linzer@v0.7.8...v0.7.9

Changelog

Sourced from linzer's changelog.

[0.7.9] - 2026-04-30

(No changes since the last beta release, this new stable release just bundles all the features/changes introduced during 0.7.9 beta releases)

  • Add support for http gem 6.x while maintaining compatibility with 5.x. Handles API differences introduced in 6.0.

  • Improve README clarity and align it with current behavior and production usage.

  • Enforce expires signature parameter validation in Verifier.

  • Add Faraday middleware and adapters for HTTP message signatures.

  • Add support for multiple signatures on a single HTTP message This fixes a bug on multi-signature header overwrite when calling sign! multiple times.

[0.7.9.beta3] - 2026-04-27

  • Enforce expires signature parameter validation in Verifier.

  • Add Faraday middleware and adapters for HTTP message signatures.

[0.7.9.beta2] - 2026-04-19

  • Add support for http gem 6.x while maintaining compatibility with 5.x. Handles API differences introduced in 6.0.
  • Improve README clarity and align it with current behavior and production usage.

[0.7.9.beta1] - 2026-03-03

(Beta release to test gem release automation; no functional changes)

[0.7.8] - 2026-03-03

  • Security fix: HMAC signature verification now uses constant-time comparison to prevent timing attacks.
Commits
  • 39d368c Release 0.7.9
  • e258d5b Migrate integration tests to server hosted at linzer.lol
  • 3725441 Remove runtime dependency on stringio gem
  • 2cf3efb Revert "Disable signature verification on responses integration tests"
  • 7d06209 Exclude legacy Ruby conditional specs from coverage checks
  • 61fe0aa Fix multi-signature header overwrite when calling sign! multiple times
  • aaa2746 Add support for multiple signatures on a single HTTP message
  • 64b4124 Release 0.7.9.beta3
  • 1b274ae Do not disable signature verification on responses integration tests in Nix CI
  • ae8ad34 Disable signature verification on responses integration tests
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Jun 23, 2026
Bumps [linzer](https://github.com/nomadium/linzer) from 0.7.7 to 0.7.9.
- [Release notes](https://github.com/nomadium/linzer/releases)
- [Changelog](https://github.com/nomadium/linzer/blob/master/CHANGELOG.md)
- [Commits](nomadium/linzer@v0.7.7...v0.7.9)

---
updated-dependencies:
- dependency-name: linzer
  dependency-version: 0.7.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/bundler/debug_fasp/linzer-0.7.9 branch from bd3adc1 to c910b19 Compare June 29, 2026 13:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants