Update sprockets version to address CVE-2014-7819

This reverts commit 17c666c8.

The fix is not needed anymore if sprockets 2.2.3 is used.

Commit also updates some other gems as well and
removes uber (bundle update was used).

Update README.md 

[release/3.0] Fix CVE-2014-7818 and CVE-2014-7819

changing feature and help links

Update ruby version to current stable 2.1.4

This release includes security fixes for the following vulnerabilities:

* CVE-2014-8080: Denial of Service XML Expansion
* Changed default settings of ext/openssl related to CVE-2014-3566

And there are some bug-fixes.

There is an information leak vulnerability in Sprockets. This
vulnerability
has been assigned the CVE identifier CVE-2014-7819.

see:
https://groups.google.com/forum/#!topic/rubyonrails-security/wQBeGXqGs3E

The patch given in
https://15028051456732132684.googlegroups.com/attach/7887e1a7070ca526/2-12-sec-static-files.patch?part=0.0.1&view=1&vt=ANaJVrGrEs8fNpWjOUFuf3p1rWA83Dw-kPMJ8qeYExCi_n6nnuHcw53a2rWDfBwsfeA06s9Okm3LkpBK1W_b0vsqlsNAHGW1g0Z0T8WcmWxvqJCshdVpLts

Was manually applied to the backport branch.

This commit can be reverted as soon as sprockets 2.12.X is used.

This is a security fix against a file existence exposure CVE-2014-7819

see:
http://weblog.rubyonrails.org/2014/10/30/Rails_3_2_20_4_0_11_4_1_7_and_4_2_0_beta3_have_been_released/

Conflicts:
	Gemfile.lock

dead code removal

Use new packager installer

rake task to backup and restore the database

When we clear both, the float of the project menu is also factored in.

hound config that matches `dev`

Postinstall for openproject is now in its own addon at https://github.com/pkgr/addon-openproject.

Conflicts:

	.pkgr.yml

Fixed double rendering of attachments and repository annotates

Merge pull request #1923 from netfighter/feature/15173-subprojects-are-not-copied-correctly-hierarchy-is-lost

Meets #15173: Subprojects are not copied correctly and the hierarchy is lost

API v2: Use true/false as rewire parents value