Bump actionview from 4.1.6 to 6.0.0

[dependabot]

Bumps actionview from 4.1.6 to 6.0.0.

Release notes

Sourced from actionview's releases.

6.0.0.beta1

Active Support

• Remove deprecated Module#reachable? method.

  Rafael Mendonça França

• Remove deprecated #acronym_regex method from Inflections.

  Rafael Mendonça França

• Fix String#safe_constantize throwing a LoadError for incorrectly cased constant references.

  Keenan Brock

• Preserve key order passed to ActiveSupport::CacheStore#fetch_multi.

  fetch_multi(*names) now returns its results in the same order as the *names requested, rather than returning cache hits followed by cache misses.

  Gannon McGibbon

• If the same block is included multiple times for a Concern, an exception is no longer raised.

  Mark J. Titorenko, Vlad Bokov

• Fix bug where #to_options for ActiveSupport::HashWithIndifferentAccess
  would not act as alias for #symbolize_keys.

  Nick Weiland

• Improve the logic that detects non-autoloaded constants.

  Jan Habermann, Xavier Noria

• Deprecate ActiveSupport::Multibyte::Unicode#pack_graphemes(array) and ActiveSuppport::Multibyte::Unicode#unpack_graphemes(string)
  in favor of array.flatten.pack("U*") and string.scan(/\X/).map(&:codepoints), respectively.

  Francesco Rodríguez

• Deprecate ActiveSupport::Multibyte::Chars.consumes? in favor of String#is_utf8?.

  Francesco Rodríguez

• Fix duration being rounded to a full second.

    time = DateTime.parse("2018-1-1")
    time += 0.51.seconds
  

  Will now correctly add 0.51 second and not 1 full second.

... (truncated)

Changelog

Sourced from actionview's changelog.

Rails 6.0.0 (August 16, 2019)

• ActionView::Helpers::SanitizeHelper: support rails-html-sanitizer 1.1.0.

  Juanito Fatas

Rails 6.0.0.rc2 (July 22, 2019)

• Fix select_tag so that it doesn't change options when include_blank is present.

  Younes SERRAJ

Rails 6.0.0.rc1 (April 24, 2019)

• Fix partial caching skips same item issue

  If we render cached collection partials with repeated items, those repeated items
  will get skipped. For example, if you have 5 identical items in your collection, Rails
  only renders the first one when cached is set to true. But it should render all
  5 items instead.

  Fixes #35114.

  Stan Lo

• Only clear ActionView cache in development on file changes

  To speed up development mode, view caches are only cleared when files in
  the view paths have changed. Applications which have implemented custom
  ActionView::Resolver subclasses may need to add their own cache clearing.

  John Hawthorn

• Fix ActionView::FixtureResolver so that it handles template variants correctly.

  Edward Rudd

Rails 6.0.0.beta3 (March 11, 2019)

• Only accept formats from registered mime types

  A lack of filtering on mime types could allow an attacker to read
  arbitrary files on the target server or to perform a denial of service
  attack.

  Fixes CVE-2019-5418
  Fixes CVE-2019-5419

... (truncated)

Commits

• 66cabed Preparing for 6.0.0 release
• f4a5c76 Merge pull request #36906 from wjessop/fix_collection_rendering_docs
• 49718d1 Require and support rails-html-sanitzer 1.2.0
• 29f4538 Merge pull request #36860 from cpruitt/update-gemspec-rails-html-sanitizer-ve...
• 672c170 Also remove unused try require
• f7bbddd Remove unused require
• 21da204 Update sanitizer in ActionView::Helpers::SanitizeHelper
• 01da19c Suppress Ruby warning: ⚠️ non-nil $, will be deprecated
• 11665be Merge pull request #36178 from sshaw/fix_time_zone_options_priority
• 91d5e4f Merge pull request #36764 from willianveiga/feature/inputs-inside-disabled-fi...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

[dependabot]

Superseded by #43.