Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the bundler group with 5 updates #815

Merged
merged 1 commit into from
Oct 16, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 16, 2024

Bumps the bundler group with 5 updates:

Package From To
govuk-components 5.6.1 5.7.0
govuk_design_system_formbuilder 5.6.0 5.7.0
rails 7.1.4 7.1.4.1
turbo-rails 2.0.10 2.0.11
rubocop 1.66.1 1.67.0

Updates govuk-components from 5.6.1 to 5.7.0

Release notes

Sourced from govuk-components's releases.

Version 5.7.0

Commits
  • 50b1ca8 Release version 5.7.0
  • 8896444 Upgrade to govuk-frontend 5.7.0 (#568)
  • f46b7ba Upgrade to govuk-frontend 5.7.0
  • b3eb89f Update view_component requirement from >= 3.9, < 3.15 to >= 3.9, < 3.17 (#561)
  • f397bdd Update ViewComponent version in readme
  • 4d4bdfb Update view_component requirement from >= 3.9, < 3.15 to >= 3.9, < 3.17
  • 91e83e2 Bump cookie and @​x-govuk/govuk-prototype-components in /guide (#564)
  • 1c4ce4d Bump cookie and @​x-govuk/govuk-prototype-components in /guide
  • f863eb8 Update slim_lint requirement from ~> 0.28.0 to ~> 0.31.0 (#567)
  • 3f154d6 Update slim_lint requirement from ~> 0.28.0 to ~> 0.31.0
  • Additional commits viewable in compare view

Updates govuk_design_system_formbuilder from 5.6.0 to 5.7.0

Release notes

Sourced from govuk_design_system_formbuilder's releases.

Version 5.7.0

  • support govuk-frontend 5.7.0 #532
  • some minor dependency bumps #522, #528
Commits
  • 0800cf3 Release version 5.7.0
  • 01e90b9 Merge pull request #532 from x-govuk/govuk-frontend-5.7.0
  • 9c89877 Upgrade to govuk-frontend 5.7.0
  • 51f944c Merge pull request #528 from x-govuk/dependabot/npm_and_yarn/guide/multi-9a8c...
  • 7367cf3 Bump cookie, socket.io, cookie-parser, express and express-session
  • 51620eb Merge pull request #522 from x-govuk/dependabot/npm_and_yarn/guide/multi-9423...
  • 7cefd01 Bump body-parser and express in /guide
  • See full diff in compare view

Updates rails from 7.1.4 to 7.1.4.1

Release notes

Sourced from rails's releases.

7.1.4.1

Active Support

  • No changes.

Active Model

  • No changes.

Active Record

  • No changes.

Action View

  • No changes.

Action Pack

  • Avoid regex backtracking in HTTP Token authentication

    [CVE-2024-47887]

  • Avoid regex backtracking in query parameter filtering

    [CVE-2024-41128]

Active Job

  • No changes.

Action Mailer

Action Cable

  • No changes.

Active Storage

  • No changes.

... (truncated)

Commits
  • 5b5f0da Preparing for 7.1.4.1 release
  • 76ae935 Update CHANGELOGs
  • 3612e3e Avoid backtracking in ActionMailer block_format
  • de0df7c Avoid backtracing in plain_text_for_blockquote_node
  • b0fe99f Avoid backtracking in filtered_query_string
  • 7c13988 Avoid backtracking in Token#raw_params
  • 8373fbf Remove required Ruby version from releaser
  • 53a91fb Merge pull request #53053 from gabriel-amaral/gabriel-amaral/fix-devcontainer...
  • 1f56fd6 Merge pull request #52962 from rails/rm-releser
  • c0d8c4b Address Rails::Command::HelpIntegrationTest failure against ruby 3.4.0dev
  • Additional commits viewable in compare view

Updates turbo-rails from 2.0.10 to 2.0.11

Release notes

Sourced from turbo-rails's releases.

v2.0.11

What's Changed

New Contributors

Full Changelog: hotwired/turbo-rails@v2.0.10...v2.0.11

Commits
  • 52727cb Update to turbo 8.0.12
  • 8c681dd Bump turbo version
  • b775fe4 Update readme - incorrect URL for source file (#692)
  • 567520f Migrate Turbo Native helpers to Hotwire Native (#691)
  • 4bbe142 Merge pull request #689 from yahonda/address_splat_warning
  • fad15fa Address warning: *' interpreted as argument prefix`
  • See full diff in compare view

Updates rubocop from 1.66.1 to 1.67.0

Release notes

Sourced from rubocop's releases.

RuboCop 1.67

New features

  • #13259: Add new Lint/DuplicateSetElement cop. ([@​koic][])
  • #13223: Add AllowRBSInlineAnnotation config option to Layout/LeadingCommentSpace to support RBS::Inline style annotation comments. ([@​tk0miya][])
  • #13310: Display analysis Ruby version in rubocop -V. ([@​koic][])

Bug fixes

  • #13314: Fix a false negative for Style/Semicolon when using a semicolon between a closing parenthesis after a line break and a consequent expression. ([@​koic][])
  • #13217: Fix a false positive in Lint/ParenthesesAsGroupedExpression with compound ranges. ([@​gsamokovarov][])
  • #13268: Fix a false positive for Style/BlockDelimiters when a single line do-end block with an inline rescue with a semicolon before rescue. ([@​koic][])
  • #13298: Fix an error for Layout/AccessModifierIndentation when the access modifier is on the same line as the class definition. ([@​koic][])
  • #13198: Fix an error for Style/OneLineConditional when using nested if/then/else/end. ([@​koic][])
  • #13316: Fix an incorrect autocorrect for Lint/ImplicitStringConcatenation with Lint/TripleQuotes when string literals with triple quotes are used. ([@​koic][])
  • #13220: Fix an incorrect autocorrect for Style/ArgumentsForwarding when using only forwarded arguments in brackets. ([@​koic][])
  • #13202: Fix an incorrect autocorrect for Style/CombinableLoops when looping over the same data with different block variable names. ([@​koic][])
  • #13291: Fix an incorrect autocorrect for Style/RescueModifier when using modifier rescue for method call with heredoc argument. ([@​koic][])
  • #13226: Fix --auto-gen-config when passing an absolute config path. ([@​earlopain][])
  • #13225: Avoid syntax error when correcting Style/OperatorMethodCall with / operations followed by a parenthesized argument. ([@​dvandersluis][])
  • #13235: Fix an error for Style/IfUnlessModifier when multiline if that fits on one line and using implicit method call with hash value omission syntax. ([@​koic][])
  • #13219: Fix a false positive for Style/ArgumentsForwarding with Ruby 3.0 and optional position arguments. ([@​earlopain][])
  • #13271: Fix a false positive for Lint/AmbiguousRange when using rational literals. ([@​koic][])
  • #13260: Fix a false positive for Lint/RedundantSafeNavigation with namespaced constants. ([@​earlopain][])
  • #13224: Fix false positives for Style/OperatorMethodCall with named forwarding. ([@​earlopain][])
  • #13213: Fix false positives for Style/AccessModifierDeclarations when AllowModifiersOnAttrs: true and using splat with a percent symbol array, or with a constant. ([@​koic][])
  • #13145: Fix false positives for Style/RedundantLineContinuation when line continuations with comparison operator and the LHS is wrapped in parentheses. ([@​koic][])
  • #12875: Fix false positive for Style/ArgumentsForwarding when argument is used inside a block. ([@​dvandersluis][])
  • #13239: Fix false positive for Style/CollectionCompact when using delete_if. ([@​masato-bkn][])
  • #13210: Fix omit_parentheses style for pattern match with value omission in single-line branch. ([@​gsamokovarov][])
  • #13149: Handle crashes in custom Ruby extractors more gracefully. ([@​earlopain][])
  • #13319: Handle literal forward slashes inside a regexp in Lint/LiteralInInterpolation. ([@​dvandersluis][])
  • #13208: Fix an incorrect autocorrect for Style/IfWithSemicolon when single-line if/;/end when the then body contains a method call with [] or []=. ([@​koic][])
  • #13318: Prevent modifying blocks with Style/HashEachMethods if the hash is modified within the block. ([@​dvandersluis][])
  • #13293: Fix TargetRubyVersion from a gemspec when the gemspec is not named like the folder it is located in. ([@​earlopain][])
  • #13211: Fix wrong autocorrect for Style/GuardClause when using heredoc without else branch. ([@​earlopain][])
  • #13215: Fix wrong autocorrect for Lint/BigDecimalNew when using ::BigDecimal.new. ([@​earlopain][])
  • #13215: Fix wrong autocorrect for Style/MethodCallWithArgsParentheses with EnforcedStyle: omit_parentheses and whitespace. ([@​earlopain][])
  • #13302: Fix incompatible autocorrect between Style/RedundantBegin and Style/BlockDelimiters with EnforcedStyle: braces_for_chaining. ([@​earlopain][])

Changes

  • #13221: Do not group accessors having RBS::Inline annotation comments in Style/AccessorGrouping. ([@​tk0miya][])
  • #13286: Add AllowedMethods configuration to Layout/FirstMethodArgumentLineBreak. ([@​dvandersluis][])
  • #13110: Add support in Style/ArgumentsForwarding for detecting forwarding of all anonymous arguments. ([@​dvandersluis][])
  • #13222: Allow to write RBS::Inline annotation comments after method definition in Style/CommentedKeyword. ([@​tk0miya][])
  • #13253: Emit a deprecation when custom cops inherit from RuboCop::Cop::Cop. ([@​earlopain][])
  • #13300: Set EnforcedShorthandSyntax: either by default for Style/HashSyntax. ([@​koic][])
  • #13254: Enhance the autocorrect for Naming/InclusiveLanguage when a sole suggestion is set. ([@​koic][])
  • #13232: Make server mode aware of auto-restart for local config update. ([@​koic][])

... (truncated)

Changelog

Sourced from rubocop's changelog.

1.67.0 (2024-10-15)

New features

  • #13259: Add new Lint/DuplicateSetElement cop. ([@​koic][])
  • #13223: Add AllowRBSInlineAnnotation config option to Layout/LeadingCommentSpace to support RBS::Inline style annotation comments. ([@​tk0miya][])
  • #13310: Display analysis Ruby version in rubocop -V. ([@​koic][])

Bug fixes

  • #13314: Fix a false negative for Style/Semicolon when using a semicolon between a closing parenthesis after a line break and a consequent expression. ([@​koic][])
  • #13217: Fix a false positive in Lint/ParenthesesAsGroupedExpression with compound ranges. ([@​gsamokovarov][])
  • #13268: Fix a false positive for Style/BlockDelimiters when a single line do-end block with an inline rescue with a semicolon before rescue. ([@​koic][])
  • #13298: Fix an error for Layout/AccessModifierIndentation when the access modifier is on the same line as the class definition. ([@​koic][])
  • #13198: Fix an error for Style/OneLineConditional when using nested if/then/else/end. ([@​koic][])
  • #13316: Fix an incorrect autocorrect for Lint/ImplicitStringConcatenation with Lint/TripleQuotes when string literals with triple quotes are used. ([@​koic][])
  • #13220: Fix an incorrect autocorrect for Style/ArgumentsForwarding when using only forwarded arguments in brackets. ([@​koic][])
  • #13202: Fix an incorrect autocorrect for Style/CombinableLoops when looping over the same data with different block variable names. ([@​koic][])
  • #13291: Fix an incorrect autocorrect for Style/RescueModifier when using modifier rescue for method call with heredoc argument. ([@​koic][])
  • #13226: Fix --auto-gen-config when passing an absolute config path. ([@​earlopain][])
  • #13225: Avoid syntax error when correcting Style/OperatorMethodCall with / operations followed by a parenthesized argument. ([@​dvandersluis][])
  • #13235: Fix an error for Style/IfUnlessModifier when multiline if that fits on one line and using implicit method call with hash value omission syntax. ([@​koic][])
  • #13219: Fix a false positive for Style/ArgumentsForwarding with Ruby 3.0 and optional position arguments. ([@​earlopain][])
  • #13271: Fix a false positive for Lint/AmbiguousRange when using rational literals. ([@​koic][])
  • #13260: Fix a false positive for Lint/RedundantSafeNavigation with namespaced constants. ([@​earlopain][])
  • #13224: Fix false positives for Style/OperatorMethodCall with named forwarding. ([@​earlopain][])
  • #13213: Fix false positives for Style/AccessModifierDeclarations when AllowModifiersOnAttrs: true and using splat with a percent symbol array, or with a constant. ([@​koic][])
  • #13145: Fix false positives for Style/RedundantLineContinuation when line continuations with comparison operator and the LHS is wrapped in parentheses. ([@​koic][])
  • #12875: Fix false positive for Style/ArgumentsForwarding when argument is used inside a block. ([@​dvandersluis][])
  • #13239: Fix false positive for Style/CollectionCompact when using delete_if. ([@​masato-bkn][])
  • #13210: Fix omit_parentheses style for pattern match with value omission in single-line branch. ([@​gsamokovarov][])
  • #13149: Handle crashes in custom Ruby extractors more gracefully. ([@​earlopain][])
  • #13319: Handle literal forward slashes inside a regexp in Lint/LiteralInInterpolation. ([@​dvandersluis][])
  • #13208: Fix an incorrect autocorrect for Style/IfWithSemicolon when single-line if/;/end when the then body contains a method call with [] or []=. ([@​koic][])
  • #13318: Prevent modifying blocks with Style/HashEachMethods if the hash is modified within the block. ([@​dvandersluis][])
  • #13293: Fix TargetRubyVersion from a gemspec when the gemspec is not named like the folder it is located in. ([@​earlopain][])
  • #13211: Fix wrong autocorrect for Style/GuardClause when using heredoc without else branch. ([@​earlopain][])
  • #13215: Fix wrong autocorrect for Lint/BigDecimalNew when using ::BigDecimal.new. ([@​earlopain][])
  • #13215: Fix wrong autocorrect for Style/MethodCallWithArgsParentheses with EnforcedStyle: omit_parentheses and whitespace. ([@​earlopain][])
  • #13302: Fix incompatible autocorrect between Style/RedundantBegin and Style/BlockDelimiters with EnforcedStyle: braces_for_chaining. ([@​earlopain][])

Changes

  • #13221: Do not group accessors having RBS::Inline annotation comments in Style/AccessorGrouping. ([@​tk0miya][])
  • #13286: Add AllowedMethods configuration to Layout/FirstMethodArgumentLineBreak. ([@​dvandersluis][])
  • #13110: Add support in Style/ArgumentsForwarding for detecting forwarding of all anonymous arguments. ([@​dvandersluis][])
  • #13222: Allow to write RBS::Inline annotation comments after method definition in Style/CommentedKeyword. ([@​tk0miya][])
  • #13253: Emit a deprecation when custom cops inherit from RuboCop::Cop::Cop. ([@​earlopain][])
  • #13300: Set EnforcedShorthandSyntax: either by default for Style/HashSyntax. ([@​koic][])
  • #13254: Enhance the autocorrect for Naming/InclusiveLanguage when a sole suggestion is set. ([@​koic][])

... (truncated)

Commits
  • c108ac0 Cut 1.67
  • 74ddd9b Update Changelog
  • b5c12ae Update Changelog
  • c936160 [Fix #13331] Fix an error when using release task
  • 60ecb00 [Fix #13328] Declare Enabled as a common config key
  • 99022d9 Merge pull request #13327 from koic/make_server_mode_aware_of_auto_restart_fo...
  • 60432f5 Apply RESTRICT_ON_SEND to Bundler/GemVersion
  • 6b31c39 Make server mode aware of auto-restart for .rubocop_todo.yml update
  • adb7cee [Fix #9816] Refine Lint/SafeNavigationConsistency
  • 7d6797c [Fix #13286] Add AllowedMethods and AllowedPatterns configuration to `Lay...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the bundler group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [govuk-components](https://github.com/x-govuk/govuk-components) | `5.6.1` | `5.7.0` |
| [govuk_design_system_formbuilder](https://github.com/x-govuk/govuk-form-builder) | `5.6.0` | `5.7.0` |
| [rails](https://github.com/rails/rails) | `7.1.4` | `7.1.4.1` |
| [turbo-rails](https://github.com/hotwired/turbo-rails) | `2.0.10` | `2.0.11` |
| [rubocop](https://github.com/rubocop/rubocop) | `1.66.1` | `1.67.0` |


Updates `govuk-components` from 5.6.1 to 5.7.0
- [Release notes](https://github.com/x-govuk/govuk-components/releases)
- [Commits](x-govuk/govuk-components@v5.6.1...v5.7.0)

Updates `govuk_design_system_formbuilder` from 5.6.0 to 5.7.0
- [Release notes](https://github.com/x-govuk/govuk-form-builder/releases)
- [Commits](x-govuk/govuk-form-builder@v5.6.0...v5.7.0)

Updates `rails` from 7.1.4 to 7.1.4.1
- [Release notes](https://github.com/rails/rails/releases)
- [Commits](rails/rails@v7.1.4...v7.1.4.1)

Updates `turbo-rails` from 2.0.10 to 2.0.11
- [Release notes](https://github.com/hotwired/turbo-rails/releases)
- [Commits](hotwired/turbo-rails@v2.0.10...v2.0.11)

Updates `rubocop` from 1.66.1 to 1.67.0
- [Release notes](https://github.com/rubocop/rubocop/releases)
- [Changelog](https://github.com/rubocop/rubocop/blob/master/CHANGELOG.md)
- [Commits](rubocop/rubocop@v1.66.1...v1.67.0)

---
updated-dependencies:
- dependency-name: govuk-components
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: bundler
- dependency-name: govuk_design_system_formbuilder
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: bundler
- dependency-name: rails
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: turbo-rails
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: rubocop
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: bundler
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from a team as a code owner October 16, 2024 02:49
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Oct 16, 2024
Copy link

sonarcloud bot commented Oct 16, 2024

@patrick-laa patrick-laa merged commit 86f0f8e into main Oct 16, 2024
11 checks passed
@patrick-laa patrick-laa deleted the dependabot/bundler/bundler-ee0ea33f8d branch October 16, 2024 08:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant