Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: sparklemotion/nokogiri
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: v1.18.1
Choose a base ref
...
head repository: sparklemotion/nokogiri
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: v1.18.4
Choose a head ref
  • 15 commits
  • 10 files changed
  • 1 contributor

Commits on Jan 19, 2025

  1. prefactor: restructure css-to-xpath tests

    @flavorjones
    flavorjones committed Jan 19, 2025
    Configuration menu
    Copy the full SHA
    b112e18 View commit details
    Browse the repository at this point in the history

  2. fix(css-selector): default XML namespace is not applied to wildcard 

    When performing a CSS selector query, an XML document's root namespace
declarations are injected into the XPathVisitor, and the default
namespace is applied to any non-namespaced element in the resulting
xpath query.

However, the wildcard selector "*" should not have this namespace
applied. This regressed in v1.17.0 with 179d74d.

Fixes #3411
    @flavorjones
    flavorjones committed Jan 19, 2025
    Configuration menu
    Copy the full SHA
    8378749 View commit details
    Browse the repository at this point in the history

  3. dev: so tired of psych not building on various things 

    this time, it's the ruby:alpine images that removed all the -dev
libraries. JFC i'm just trying to stay green here.
    @flavorjones
    flavorjones committed Jan 19, 2025
    Configuration menu
    Copy the full SHA
    c10fd7a View commit details
    Browse the repository at this point in the history

  4. ci: bump windows test images from "head" to "3.4" 

    now that rubyinstaller has been released
    @flavorjones
    flavorjones committed Jan 19, 2025
    Configuration menu
    Copy the full SHA
    8ef2e91 View commit details
    Browse the repository at this point in the history

  5. backport: fix(css-selector): default XML namespace should not be appl… 

    …ied to wildcard (#3414)

Backport of #3413 to
v1.18.x
    @flavorjones
    flavorjones authored Jan 19, 2025
    Configuration menu
    Copy the full SHA
    0fb5541 View commit details
    Browse the repository at this point in the history

  6. version bump to v1.18.2

    @flavorjones
    flavorjones committed Jan 19, 2025
    Configuration menu
    Copy the full SHA
    aa54fa5 View commit details
    Browse the repository at this point in the history

Commits on Feb 18, 2025

  1. dep: update libxml2 to v2.13.6 

    https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.6
    @flavorjones
    flavorjones committed Feb 18, 2025
    Configuration menu
    Copy the full SHA
    11945c8 View commit details
    Browse the repository at this point in the history

  2. ci: tired of waiting for gnome mirrors

    @flavorjones
    flavorjones committed Feb 18, 2025
    Configuration menu
    Copy the full SHA
    0847cf8 View commit details
    Browse the repository at this point in the history

  3. dep: update libxml2 to v2.13.6 (#3437) 

    **What problem is this PR intended to solve?**

Update vendored libxml2 to v2.13.6

https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.6

Security note: the changelog mentions CVE-2025-24928 and CVE-2024-56171,
but it's not obvious that those vulnerabilities affect Nokogiri users.
    @flavorjones
    flavorjones authored Feb 18, 2025
    Configuration menu
    Copy the full SHA
    a8c526a View commit details
    Browse the repository at this point in the history

  4. version bump to v1.18.3

    @flavorjones
    flavorjones committed Feb 18, 2025
    Configuration menu
    Copy the full SHA
    fd3ca2e View commit details
    Browse the repository at this point in the history

  5. doc: update CHANGELOG with GHSA

    @flavorjones
    flavorjones committed Feb 18, 2025
    Configuration menu
    Copy the full SHA
    35faaa3 View commit details
    Browse the repository at this point in the history

Commits on Mar 12, 2025

  1. ci: tired of waiting for gnome mirrors

    @flavorjones
    flavorjones committed Mar 12, 2025
    Configuration menu
    Copy the full SHA
    4125715 View commit details
    Browse the repository at this point in the history

  2. dep: update libxslt to 1.1.43 

    https://gitlab.gnome.org/GNOME/libxslt/-/releases/v1.1.43
    @flavorjones
    flavorjones committed Mar 12, 2025
    Configuration menu
    Copy the full SHA
    395c085 View commit details
    Browse the repository at this point in the history

Commits on Mar 14, 2025

  1. dep: update libxslt to 1.1.43 (v1.18.x branch) (#3467) 

    **What problem is this PR intended to solve?**

https://gitlab.gnome.org/GNOME/libxslt/-/releases/v1.1.43

Note that this release is documented as fixing:

* CVE-2025-24855: Fix use-after-free of XPath context node
* CVE-2024-55549: Fix UAF related to excluded namespaces

so this will be a security release.
    @flavorjones
    flavorjones authored Mar 14, 2025
    Configuration menu
    Copy the full SHA
    3c12e35 View commit details
    Browse the repository at this point in the history

  2. version bump to v1.18.4

    @flavorjones
    flavorjones committed Mar 14, 2025
    Configuration menu
    Copy the full SHA
    80edf1c View commit details
    Browse the repository at this point in the history
Loading