Bump rack-cors from 0.4.1 to 2.0.2

[dependabot]

Bumps rack-cors from 0.4.1 to 2.0.2.

Changelog

Sourced from rack-cors's changelog.

2.0.2 - 2024-03-04

Changed

• Fix file permission issues with 2.0.1 release
  • Security: Fixes CVE-2024-27456, GHSA-785g-282q-pwvx

2.0.1 - 2023-02-17

Changed

• Use Rack::Utils::HeaderHash when Rack 2.x is detected

2.0.0 - 2023-02-14

Changed

• Refactored codebase
• Support declaring custom protocols in origin
• Lowercased header names as defined by Rack spec
• Fix issue with duplicate headers because of header name case

1.1.1 - 2019-12-29

Changed

• Allow //* to match // and / paths

1.1.0 - 2019-11-19

Changed

• Use Rack::Utils.escape_path instead of Rack::Utils.escape
• Require Rack 2.0 for escape_path method
• Don't try to clean path if invalid.
• Return 400 (Bad Request) on preflights with invalid path

1.0.6 - 2019-11-14

Changed

• Use Rack::Utils.escape to make compat with Rack 1.6.0

1.0.5 - 2019-11-14

Changed

• Update Gem spec to require rack >= 1.6.0

1.0.4 - 2019-11-13

Security

• Escape and resolve path before evaluating resource rules (thanks to Colby Morgan)

1.0.3 - 2019-03-24

Changed

• Don't send 'Content-Type' header with pre-flight requests
• Allow ruby array for vary header config

1.0.2 - 2017-10-22

Fixed

• Automatically allow simple headers when headers are set

1.0.1 - 2017-07-18

Fixed

... (truncated)

Commits

• 8780639 Update changelog
• 7231de7 Bump rack-cors to 2.0.2
• b30b86d Fix rubocop
• e823594 Fix typo in README.md (#267)
• 8f50607 Escape $ in ressource paths compile (#270)
• 555ac46 Mocha 2.0+ / Minitest 5.19+ compatibility (#266)
• 202b85d Exclude test in gem
• b0e06a0 Move Host matching note into troubleshooting
• 507894e Fix test (#262)
• 484eb92 Update version, changelog
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)