Bump the bundler group with 8 updates

[dependabot]

Bumps the bundler group with 8 updates:

Package	From	To
laa_crime_forms_common	75a3590	04cfd9a
pg	1.5.8	1.5.9
rails	7.1.4.1	7.1.4.2
sidekiq	7.3.2	7.3.4
pagy	9.1.0	9.1.1
factory_bot_rails	6.4.3	6.4.4
rubocop-rails	2.26.2	2.27.0
rubocop-rspec	3.1.0	3.2.0

Updates laa_crime_forms_common from 75a3590 to 04cfd9a

Commits

• 04cfd9a Merge pull request #12 from ministryofjustice/dependabot/bundler/bundler-4415...
• ff18106 Bump rexml from 3.3.7 to 3.3.9 in the bundler group
• 0599c4d Merge pull request #10 from ministryofjustice/CRM457-2061-licence
• efefa6a Add licence information
• See full diff in compare view

Updates pg from 1.5.8 to 1.5.9

Changelog

Sourced from pg's changelog.

v1.5.9 [2024-10-24] Lars Kanis lars@greiz-reinsdorf.de

• Enable thread safety in static OpenSSL build for Windows. #595
• Remove raising conect_timeout from 1 to 2 seconds. #590
• Fix binary copy_data in Ractor context. #594
• Exclude CI files and hidden files from built gem. #591 This is to simplify security inspection.
• Update error classes to PostgreSQL-17.
• Update Windows fat binary gem to OpenSSL-3.4.0 and PostgreSQL-17.0.

Commits

• afe2f20 Bump VERSION to 1.5.9
• 9f8a6c6 Add History entry for pg-1.5.9
• 342bdbb Merge pull request #599 from larskanis/update-postgres
• ca8e69c Remove skip on Windows since the issue is fixed
• 70c02ea Work around missing dependency to errorcodes.h in PostgreSQL-17.0
• 4a52437 CI: Update jobs to postgresql-1.7.0
• d8c3753 Update to postgresql-17.0 and openssl-3.4.0 for Windows binary gems
• 86367c6 Update error codes by rake update_error_codes
• 94f1d7f Merge pull request #598 from larskanis/osl-threads
• 716221a Enable thread safety in static OpenSSL build
• Additional commits viewable in compare view

Updates rails from 7.1.4.1 to 7.1.4.2

Release notes

Sourced from rails's releases.

7.1.4.2

Active Support

• No changes.

Active Model

• No changes.

Active Record

• No changes.

Action View

• No changes.

Action Pack

• No changes.

Active Job

• No changes.

Action Mailer

• Fix NoMethodError in block_format helper

  Michael Leimstaedtner

Action Cable

• No changes.

Active Storage

• No changes.

Action Mailbox

... (truncated)

Commits

• e52d670 Preparing for 7.1.4.2 release
• 294d082 Improvements to releaser
• 75f0ae9 Fix NoMethodError in ActionMailer block_format
• See full diff in compare view

Updates sidekiq from 7.3.2 to 7.3.4

Changelog

Sourced from sidekiq's changelog.

7.3.4

• Fix FrozenError when starting Sidekiq #6470

7.3.3

• Freeze global configuration once boot is complete, to avoid configuration race conditions [#6466, #6465]
• Sidekiq now warns if a job iteration takes longer than the -t timeout setting (defaults to 25 seconds)
• Iteration callbacks now have easy access to job arguments via the arguments method:

def on_stop
  p arguments # => `[123, "string", {"key" => "value"}]`
  id, str, hash = arguments
end

• Iterable jobs can be cancelled via Sidekiq::Client#cancel!:

c = Sidekiq::Client.new
jid = c.push("class" => SomeJob, "args" => [123])
c.cancel!(jid) # => true

• Take over support for ActiveJob's :sidekiq adapter [#6430, fatkodima]
• Ensure CurrentAttributes are in scope when creating batch callbacks #6455
• Add Sidekiq.gem_version API.
• Update Ukranian translations

Commits

• See full diff in compare view

Updates pagy from 9.1.0 to 9.1.1

Release notes

Sourced from pagy's releases.

Version 9.1.1

✴ What's new in 9.0+ ✴

• Wicked-fast Keyset Pagination for big data! It works with ActiveRecord::Relation and Sequel::Dataset sets.
• More Playground Apps to showcase, clone and develop pagy APPs without any setup on your side
• Lots of refactorings and optimizations
• See the Changelog for possible breaking changes

Changes in 9.1.1

• Simplify calendar code

CHANGELOG

Changelog

Sourced from pagy's changelog.

Version 9.1.1

• Simplify calendar code

Commits

• 5f3f971 Merge branch 'dev'
• d8de120 Version 9.1.1
• 47b9fe3 Simplify calendar code
• e7d46fa Update gems and javascript modules
• 2d41469 Reorder the API Docs entries
• 098356a Remove ruby 3.1 CI (see comments in workflow)
• 86a9a7c Update gems and javascript modules
• 6f7690a Fix typo in code comment [skip-log]
• 2acf44d Update gems and js packages
• 20754be Docs: add link to unicode pluralization rules (#743)
• See full diff in compare view

Updates factory_bot_rails from 6.4.3 to 6.4.4

Release notes

Sourced from factory_bot_rails's releases.

6.4.4

What's Changed

• Update CI to run Ruby 3.3 by @​aberkakis in thoughtbot/factory_bot_rails#464
• Ignore Standard Style/ArgumentsForwarding violations temporarily by @​sarahraqueld in thoughtbot/factory_bot_rails#489
• Bump standard from 1.32.1 to 1.40.0 by @​dependabot in thoughtbot/factory_bot_rails#487
• Bump rspec-rails from 6.1.0 to 6.1.4 by @​dependabot in thoughtbot/factory_bot_rails#490
• Bump factory_bot from 6.4.0 to 6.5.0 by @​dependabot in thoughtbot/factory_bot_rails#492
• Bump rake from 13.1.0 to 13.2.1 by @​dependabot in thoughtbot/factory_bot_rails#491
• Update Bundler to v2.5.21 by @​smaboshe in thoughtbot/factory_bot_rails#499
• Update Bundler to v2.5.22 by @​smaboshe in thoughtbot/factory_bot_rails#500

New Contributors

• @​stefannibrasil made their first contribution in thoughtbot/factory_bot_rails#463
• @​aberkakis made their first contribution in thoughtbot/factory_bot_rails#464
• @​smaboshe made their first contribution in thoughtbot/factory_bot_rails#469
• @​sarahraqueld made their first contribution in thoughtbot/factory_bot_rails#481

Full Changelog: thoughtbot/factory_bot_rails@v6.4.3...v6.4.4

Changelog

Sourced from factory_bot_rails's changelog.

6.4.4 (October 25, 2024)

• Changed: Bump Factory Bot 6.5.0

Commits

• b00d3c3 Release 6.4.4 [ci skip]
• b5f45b9 Update Bundler to v2.5.22
• f877249 Update Bundler to v2.5.21
• f5aabdd Bump rake from 13.1.0 to 13.2.1 (#491)
• 01e3bdb Bump factory_bot from 6.4.0 to 6.5.0 (#492)
• 26d0e9e Bump rspec-rails from 6.1.0 to 6.1.4
• c681900 Bump standard from 1.32.1 to 1.40.0 (#487)
• 3db6bd6 Ignore Standard Style/ArgumentsForwarding violations temporarily (#489)
• 62f4319 Add a dynamic security workflow and a SECURITY.md file (#481)
• 1c24be0 Add a CODEOWNERS file (#468)
• Additional commits viewable in compare view

Updates rubocop-rails from 2.26.2 to 2.27.0

Release notes

Sourced from rubocop-rails's releases.

RuboCop Rails 2.27.0

Bug fixes

• #1377: Fix an error for Rails/EnumSyntax when positional arguments are used and options are not passed as keyword arguments. (@​koic)
• #1367: Fix Rails/TimeZone should not report offense on String#to_time with timezone specifier. (@​armandmgt)

Changes

• #727: Disable Rails/TransactionExitStatement on Rails >= 7.2. (@​earlopain)
• #1374: Change Rails/EnvLocal to handle negated conditions. (@​fatkodima)
• #1195: Change Rails/SelectMap to handle safe navigation operators. (@​fatkodima)

Changelog

Sourced from rubocop-rails's changelog.

2.27.0 (2024-10-26)

Bug fixes

• #1377: Fix an error for Rails/EnumSyntax when positional arguments are used and options are not passed as keyword arguments. ([@​koic][])
• #1367: Fix Rails/TimeZone should not report offense on String#to_time with timezone specifier. ([@​armandmgt][])

Changes

• #727: Disable Rails/TransactionExitStatement on Rails >= 7.2. ([@​earlopain][])
• #1374: Change Rails/EnvLocal to handle negated conditions. ([@​fatkodima][])
• #1195: Change Rails/SelectMap to handle safe navigation operators. ([@​fatkodima][])

Commits

• 9165c10 Cut 2.27.0
• f052a89 Update Changelog
• f66b8f7 Merge pull request #1378 from koic/fix_an_error_for_rails_enum_syntax
• 94a8370 [Fix #1377] Fix an error for Rails/EnumSyntax
• ec31d1b Merge pull request #1367 from armandmgt/feature/allow-to_time-with-specifier
• a413fe6 Suppress new RuboCop offenses
• 5bc926f Fix Rails/TimeZone should not report offense on String#to_time with timez...
• 209cc09 Use RuboCop Performance 1.22
• 2e619f3 [Docs] Add TargetRailsVersion to config documentation
• 083e24c Merge pull request #1374 from fatkodima/env_local-handle-negations
• Additional commits viewable in compare view

Updates rubocop-rspec from 3.1.0 to 3.2.0

Release notes

Sourced from rubocop-rspec's releases.

RuboCop RSpec v3.2.0

• Fix RSpec/VoidExpect to only operate inside an example block. (@​corsonknowles)
• Change RSpec/ContextWording cop to always report an offense when both Prefixes and AllowedPatterns are empty. (@​ydah)
• Add support for and and or compound matchers to RSpec/ChangeByZero cop. (@​ydah)

Changelog

Sourced from rubocop-rspec's changelog.

3.2.0 (2024-10-26)

• Fix RSpec/VoidExpect to only operate inside an example block. ([@​corsonknowles])
• Change RSpec/ContextWording cop to always report an offense when both Prefixes and AllowedPatterns are empty. ([@​ydah])
• Add support for and and or compound matchers to RSpec/ChangeByZero cop. ([@​ydah])

Commits

• 50ac5ab Merge pull request #1987 from rubocop/release
• 39b0d3f Release v3.2.0
• 6584b4a Merge pull request #1985 from rubocop/revert-unwanted-change
• 530af44 Merge pull request #1975 from corsonknowles/require_void_expect_acts_inside_a...
• 6cbe423 Update CHANGELOG.md
• eb61748 Revert an change that would conceal unintentional RSpec syntax
• 427d19d Merge branch 'master' into require_void_expect_acts_inside_an_example_block
• 954a45f Merge pull request #1984 from rubocop/fixcbz
• 130c564 Fix an error for RSpec/ChangeByZero when change (...) .by (0) and `change...
• ff444c2 Merge pull request #1982 from rubocop/improve-cwc
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud