Bump govuk-components from 2.0.1 to 3.0.4

[dependabot]

Bumps govuk-components from 2.0.1 to 3.0.4.

Release notes

Sourced from govuk-components's releases.

Version 3.0.4

• Support GOV.UK Design System 4.1.0 #317
• Update supported Rails version to 7.0.2 #310
• Update supported Ruby version to 3.1.2 #310
• Various minor dependency updates

Version 3.0.3

• Upgrade to view_component 2.49.1 which fixes a XSS vulnerability - thanks @​tvararu #306
• Various other non-critical version updates #301 #302 #303 #304 #305

Release version 3.0.2

• Add section to the guide on the common gotcha of trying to render non-strings in Rails #292
• Remove lookbook #297
• Update to GOV.UK frontend version 4.0.1 #298
• Update to Rails 7.0.2 #300

v3.0.1

• Allow summary lists to be generated directly using data #289
• Add a Publish GitHub action so builds are done in a clean way - 3.0.0 was built on my machine and unintentionally pinned to Rails 6.1.4.4 because I had RAILS_ENV set in my environment 🤦🏽‍♂️

Version 3.0.0

• Support GOV.UK Design System version 4.0.0
  • Breaking change: modify the behaviour of Summary Lists. If you're rendering any summary lists that don't have actions you need to pass in actions: false. This is required because now the design system expects a class on the summary list row, but as we're building the list item-by-item we don't know if any of the siblings have no action. #283 will introduce a more Nunjucks-like syntax in the next release. See #282 for more details
  • ensure data-module="govuk-skip-link" is present on the skip link helper output b6a0f47e
  • ensure data-nosnippet is present on the cookie banner component output bc3a2bb80
  • update the header navigation structure 426b29c
• Create a guide. It works in a similar way to the form builder by using the components library to render itself, meaning it should never be out of date. Again, massive thanks to @​paulrobertlloyd for his work on this and to @​gemmadallmandfe for helping with the copy. #279 - see it here
• Drop support for Ruby 2.6.X and Rails 6.0.X
• Add support for Ruby 3.1.0 and Rails 7.0.0
• Add a matrix build step for testing all supported versions of Ruby and Rails
• Change the default branch from master to main #265

Support for older versions

As the upgrade to GOV.UK Design System 4.0.0 will take some time, the 2.1 series of the components library will continue to receive critical bug fixes but all new features will be for version 3.0.0 and above

Version 2.1.6

• Upgrade ViewComponent to 2.49.1 to mitigate a recent XSS security vulnerability

Version 2.1.5

• Fix a rendering bug of the copyright symbol in the footer. Thanks @​alexbowen #266

Version 2.1.4

What's Changed

• Add footer navigation block by @​elliotcm in DFE-Digital/govuk-components#260
• Tidy up Gemfile.lock by @​cpjmcquillan in DFE-Digital/govuk-components#263
• Hide the cookie banner by default when printing by @​cpjmcquillan in DFE-Digital/govuk-components#262
• Use class_names helper method to conditionally set classes by @​cpjmcquillan in DFE-Digital/govuk-components#264

New Contributors

... (truncated)

Commits

• 505aa8c Release version 3.0.4
• 98743d9 Various gem updates
• 48104b6 Merge pull request #319 from DFE-Digital/dependabot/bundler/nokogiri-1.13.6
• a33c2bd Bump nokogiri from 1.13.4 to 1.13.6
• 13c3f4e Merge pull request #318 from DFE-Digital/rails-7.0.3
• bae4b40 Update supported Rails version to 7.0.3
• f508fa9 Merge pull request #317 from DFE-Digital/govuk-design-system-4.1.0
• 2cec8d6 Update to GOV.UK Design System 4.1.0
• f977d6b Merge pull request #315 from DFE-Digital/fix-some-broken-links-in-readme
• 8a5e769 Add guide page for back to top link
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)