Skip to content

Bump rack-session from 2.0.0 to 2.1.1 in /examples/cognition#31

Merged
jeremy merged 1 commit intomainfrom
dependabot/bundler/examples/cognition/rack-session-2.1.1
Apr 7, 2026
Merged

Bump rack-session from 2.0.0 to 2.1.1 in /examples/cognition#31
jeremy merged 1 commit intomainfrom
dependabot/bundler/examples/cognition/rack-session-2.1.1

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Feb 18, 2026
edited
Loading

Bumps rack-session from 2.0.0 to 2.1.1.

Release notes

Sourced from rack-session's releases.

v2.1.1

Full Changelog: rack/rack-session@v2.1.0...v2.1.1

v2.1.0

Full Changelog: rack/rack-session@v2.0.0...v2.1.0

Changelog

Sourced from rack-session's changelog.

v2.1.1

  • Prevent Rack::Session::Pool from recreating deleted sessions CVE-2025-46336.

v2.1.0

  • Improved compatibility with Ruby 3.3+ and Rack 3+.
  • Add support for cookie option partitioned.
  • Introduce assume_ssl option to allow secure session cookies through insecure proxy.
Commits
  • 96663ec Bump patch version.
  • c58ad79 Don't allow session to be recreated accidentally.
  • 8a02143 Bump minor version.
  • 67c1237 Add release notes.
  • 77c56db Rack 3 compatibility.
  • 1a10ce8 Test on Ruby v3.4.
  • 06b63f5 Bump actions/checkout from 3 to 4 (#47)
  • 9818179 Opt-in for MFA requirement (#45)
  • 9ad38c0 Test and set Ruby v2.5 as minimum. (#46)
  • 4af6114 Add cookie option "partitioned" to DEFAULT_OPTIONS and documentation of class...
  • Additional commits viewable in compare view

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update ruby code labels Feb 18, 2026
@jeremy
Copy link
Copy Markdown
Member

jeremy commented Apr 7, 2026

@dependabot rebase

@dependabot
Bump rack-session from 2.0.0 to 2.1.1 in /examples/cognition
36562b5 
Bumps [rack-session](https://github.com/rack/rack-session) from 2.0.0 to 2.1.1.
- [Release notes](https://github.com/rack/rack-session/releases)
- [Changelog](https://github.com/rack/rack-session/blob/main/releases.md)
- [Commits](rack/rack-session@v2.0.0...v2.1.1)

---
updated-dependencies:
- dependency-name: rack-session
  dependency-version: 2.1.1
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/bundler/examples/cognition/rack-session-2.1.1 branch from 3bb7e0b to 36562b5 Compare April 7, 2026 18:51
@dependabot dependabot bot requested review from Copilot and removed request for Copilot April 7, 2026 18:51
@jeremy jeremy merged commit 840699f into main Apr 7, 2026
1 check passed
@jeremy jeremy deleted the dependabot/bundler/examples/cognition/rack-session-2.1.1 branch April 7, 2026 18:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@jeremy