Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the bundler group across 1 directory with 8 updates #873

Merged
merged 2 commits into from
Dec 11, 2024
Merged

Bump the bundler group across 1 directory with 8 updates #873

merged 2 commits into from
Dec 11, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 11, 2024

Bumps the bundler group with 7 updates in the / directory:

Package From To
aws-sdk-s3 1.174.0 1.176.0
laa_crime_forms_common a43e690 46b0373
prometheus_exporter 2.1.1 2.2.0
rails 7.2.2 7.2.2.1
pagy 9.3.1 9.3.3
sentry-rails 5.21.0 5.22.0
rubocop 1.69.0 1.69.1

Updates aws-sdk-s3 from 1.174.0 to 1.176.0

Changelog

Sourced from aws-sdk-s3's changelog.

1.176.0 (2024-12-03)

  • Feature - Amazon S3 Metadata stores object metadata in read-only, fully managed Apache Iceberg metadata tables that you can query. You can create metadata table configurations for S3 general purpose buckets.

1.175.0 (2024-12-02)

  • Feature - Amazon S3 introduces support for AWS Dedicated Local Zones
Commits

Updates laa_crime_forms_common from a43e690 to 46b0373

Commits
  • 46b0373 Merge pull request #25 from ministryofjustice/crm457-2298-cost-summary
  • f042c69 Update version
  • 00d84fd Remove unrequired fields from cost_summary part of payload
  • f098542 Merge pull request #24 from ministryofjustice/CRM457-2322-anonymiser
  • f3bc876 Handle dates
  • 15c2c8c Cope with undocumented fields
  • 1189d52 Add anonymiser utility
  • 63c35e2 Merge pull request #23 from ministryofjustice/dependabot/bundler/bundler-9139...
  • 7c7a8bd Bump the bundler group with 2 updates
  • See full diff in compare view

Updates prometheus_exporter from 2.1.1 to 2.2.0

Changelog

Sourced from prometheus_exporter's changelog.

2.2.0 - 2024-12-05

  • FIX: Ensure socket is closed when error is raised while opening socket
  • Feature: Add Dalli::Client memcache metrics for web_collector
Commits
  • 46e88af Version bump to 2.2.0
  • 45df3dc FIX: Ensure socket is closed when error is raised while opening socket
  • cf7bf84 DEV: Introduce syntax_tree for formatting (#329)
  • 4e21b4c Fix the build (#330)
  • cbb669b Feature: Add Dalli::Client memcache metrics for web_collector (#307)
  • See full diff in compare view

Updates rails from 7.2.2 to 7.2.2.1

Release notes

Sourced from rails's releases.

7.2.2.1

Active Support

  • No changes.

Active Model

  • No changes.

Active Record

  • No changes.

Action View

  • No changes.

Action Pack

  • Add validation to content security policies to disallow spaces and semicolons. Developers should use multiple arguments, and different directive methods instead.

    [CVE-2024-54133]

    Gannon McGibbon

Active Job

  • No changes.

Action Mailer

  • No changes.

Action Cable

  • No changes.

Active Storage

  • No changes.

... (truncated)

Commits

Updates pagy from 9.3.1 to 9.3.3

Release notes

Sourced from pagy's releases.

Version 9.3.3

✴ What's new in 9.0+ ✴

  • Wicked-fast Keyset Pagination for big data! It works with ActiveRecord::Relation and Sequel::Dataset sets.
  • More Playground Apps to showcase, clone and develop pagy APPs without any setup on your side
  • Lots of refactorings and optimizations
  • See the Changelog for possible breaking changes

Changes in 9.3.3

  • Add test for locales - to find problematic keys (#752)
  • Update locales: zh-CN, zh-HK, zh-TW (#751) (fix #608, fix #609, fix #610)
    • Remove :other from :aria_label key and code comment
    • Change :item_name which had :one_other keys to default to the :other key
    • Fix comment

CHANGELOG

Version 9.3.2

✴ What's new in 9.0+ ✴

  • Wicked-fast Keyset Pagination for big data! It works with ActiveRecord::Relation and Sequel::Dataset sets.
  • More Playground Apps to showcase, clone and develop pagy APPs without any setup on your side
  • Lots of refactorings and optimizations
  • See the Changelog for possible breaking changes

Changes in 9.3.2

  • Improve gapped series computation by a few milliseconds

CHANGELOG

Changelog

Sourced from pagy's changelog.

Version 9.3.3

  • Add test for locales - to find problematic keys (#752)
  • Update locales: zh-CN, zh-HK, zh-TW (#751) (fix #608, fix #609, fix #610)
    • Remove :other from :aria_label key and code comment
    • Change :item_name which had :one_other keys to default to the :other key
    • Fix comment

Version 9.3.2

  • Improve gapped series computation by a few milliseconds
Commits

Updates sentry-rails from 5.21.0 to 5.22.0

Changelog

Sourced from sentry-rails's changelog.

5.22.0

Features

  • Add include_sentry_event matcher for RSpec #2424

  • Add support for Sentry Cache instrumentation, when using Rails.cache #2380

  • Add support for Queue Instrumentation for Sidekiq. #2403

  • Add support for string errors in error reporter (#2464)

  • Reset trace_id and add root transaction for sidekiq-cron #2446

  • Add support for Excon HTTP client instrumentation (#2383)

    Note: MemoryStore and FileStore require Rails 8.0+

Bug Fixes

  • Fix Vernier profiler not stopping when already stopped #2429
  • Fix send_default_pii handling in rails controller spans #2443
  • Fix RescuedExceptionInterceptor to handle an empty configuration #2428
  • Add mutex sync to SessionFlusher aggregates #2469
  • Fix sentry-rails' backtrace cleaner issues (#2475)
Commits

Updates sentry-ruby from 5.21.0 to 5.22.0

Changelog

Sourced from sentry-ruby's changelog.

5.22.0

Features

  • Add include_sentry_event matcher for RSpec #2424

  • Add support for Sentry Cache instrumentation, when using Rails.cache #2380

  • Add support for Queue Instrumentation for Sidekiq. #2403

  • Add support for string errors in error reporter (#2464)

  • Reset trace_id and add root transaction for sidekiq-cron #2446

  • Add support for Excon HTTP client instrumentation (#2383)

    Note: MemoryStore and FileStore require Rails 8.0+

Bug Fixes

  • Fix Vernier profiler not stopping when already stopped #2429
  • Fix send_default_pii handling in rails controller spans #2443
  • Fix RescuedExceptionInterceptor to handle an empty configuration #2428
  • Add mutex sync to SessionFlusher aggregates #2469
  • Fix sentry-rails' backtrace cleaner issues (#2475)
Commits

Updates rubocop from 1.69.0 to 1.69.1

Release notes

Sourced from rubocop's releases.

RuboCop 1.69.1

Bug fixes

  • #13502: Fix an incorrect autocorrect for Style/DigChain when using safe navigation method chain with dig method. (@​koic)
  • #13505: Fix an error for Style/ParallelAssignment when using the anonymous splat operator. (@​earlopain)
  • #13184: Fix some false positives in Lint/UnreachableCode. (@​isuckatcs)
  • #13494: Fix false positives for Style/HashExcept cop when using reject/!include?, reject/!in? or select/!exclude? combinations. (@​lovro-bikic)
  • #13522: Fix Lint/UnescapedBracketInRegexp cop failure with invalid regular expression. (@​viralpraxis)
  • #13523: Fix Style::AccessModifierDeclarations cop failure in case of if node without else. (@​viralpraxis)
  • #13524: Fix Style/RedundantArgument cop failure while inspecting string literal with invalid encoding. (@​viralpraxis)
  • #13528: Fix Style/RedundantParentheses cop failure in case of splatted case node without condition. (@​viralpraxis)
  • #13521: Fix Style/RedundantSelf cop failure with kwnilarg argument node. (@​viralpraxis)
  • #13526: Fix Style/StringConcatenation cop failure when there are mixed implicit and explicit concatenations. (@​viralpraxis)
  • #13511: Fix false positive in Lint/UnescapedBracketInRegexp when using regexp_parser 2.9.2 and earlier. (@​dvandersluis)
  • #13096: Update Style/BlockDelimiters to not change braces when they are required for syntax. (@​dvandersluis)
  • #13512: Update Style/LambdaCall to be aware of safe navigation. (@​dvandersluis)
Changelog

Sourced from rubocop's changelog.

1.69.1 (2024-12-03)

Bug fixes

  • #13502: Fix an incorrect autocorrect for Style/DigChain when using safe navigation method chain with dig method. ([@​koic][])
  • #13505: Fix an error for Style/ParallelAssignment when using the anonymous splat operator. ([@​earlopain][])
  • #13184: Fix some false positives in Lint/UnreachableCode. ([@​isuckatcs][])
  • #13494: Fix false positives for Style/HashExcept cop when using reject/!include?, reject/!in? or select/!exclude? combinations. ([@​lovro-bikic][])
  • #13522: Fix Lint/UnescapedBracketInRegexp cop failure with invalid regular expression. ([@​viralpraxis][])
  • #13523: Fix Style::AccessModifierDeclarations cop failure in case of if node without else. ([@​viralpraxis][])
  • #13524: Fix Style/RedundantArgument cop failure while inspecting string literal with invalid encoding. ([@​viralpraxis][])
  • #13528: Fix Style/RedundantParentheses cop failure in case of splatted case node without condition. ([@​viralpraxis][])
  • #13521: Fix Style/RedundantSelf cop failure with kwnilarg argument node. ([@​viralpraxis][])
  • #13526: Fix Style/StringConcatenation cop failure when there are mixed implicit and explicit concatenations. ([@​viralpraxis][])
  • #13511: Fix false positive in Lint/UnescapedBracketInRegexp when using regexp_parser 2.9.2 and earlier. ([@​dvandersluis][])
  • #13096: Update Style/BlockDelimiters to not change braces when they are required for syntax. ([@​dvandersluis][])
  • #13512: Update Style/LambdaCall to be aware of safe navigation. ([@​dvandersluis][])
Commits
  • 3d95b38 Cut 1.69.1
  • c60ffa5 Update Changelog
  • 4f2ac18 Lint/BinaryOperatorWithIdenticalOperands: Remove MATH_OPERATORS as they will ...
  • ea4aa48 Merge pull request #13529 from dvandersluis/generator-internal-affairs
  • 12e1ea2 Update rake new_cop to handle InternalAffairs cops
  • 84f3d43 Specify maximum_target_ruby_version for a handful of cops, document it
  • ef8009c Merge pull request #13531 from rubocop/dependabot/github_actions/karancode/ya...
  • 7715ed7 Bump karancode/yamllint-github-action from 2.1.1 to 3.0.0
  • cc43be0 Merge pull request #13528 from viralpraxis/fix-style-redundant-parentheses-co...
  • bd8b674 Fix Style/RedundantParentheses cop failure in case of splatted case node ...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the bundler group across 1 directory with 8 updates
cc16ec4 
Bumps the bundler group with 7 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) | `1.174.0` | `1.176.0` |
| [laa_crime_forms_common](https://github.com/ministryofjustice/laa-crime-forms-common) | ``a43e690`` | ``46b0373`` |
| [prometheus_exporter](https://github.com/discourse/prometheus_exporter) | `2.1.1` | `2.2.0` |
| [rails](https://github.com/rails/rails) | `7.2.2` | `7.2.2.1` |
| [pagy](https://github.com/ddnexus/pagy) | `9.3.1` | `9.3.3` |
| [sentry-rails](https://github.com/getsentry/sentry-ruby) | `5.21.0` | `5.22.0` |
| [rubocop](https://github.com/rubocop/rubocop) | `1.69.0` | `1.69.1` |



Updates `aws-sdk-s3` from 1.174.0 to 1.176.0
- [Release notes](https://github.com/aws/aws-sdk-ruby/releases)
- [Changelog](https://github.com/aws/aws-sdk-ruby/blob/version-3/gems/aws-sdk-s3/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-ruby/commits)

Updates `laa_crime_forms_common` from `a43e690` to `46b0373`
- [Commits](ministryofjustice/laa-crime-forms-common@a43e690...46b0373)

Updates `prometheus_exporter` from 2.1.1 to 2.2.0
- [Release notes](https://github.com/discourse/prometheus_exporter/releases)
- [Changelog](https://github.com/discourse/prometheus_exporter/blob/main/CHANGELOG)
- [Commits](discourse/prometheus_exporter@v2.1.1...v2.2.0)

Updates `rails` from 7.2.2 to 7.2.2.1
- [Release notes](https://github.com/rails/rails/releases)
- [Commits](rails/rails@v7.2.2...v7.2.2.1)

Updates `pagy` from 9.3.1 to 9.3.3
- [Release notes](https://github.com/ddnexus/pagy/releases)
- [Changelog](https://github.com/ddnexus/pagy/blob/master/CHANGELOG.md)
- [Commits](ddnexus/pagy@9.3.1...9.3.3)

Updates `sentry-rails` from 5.21.0 to 5.22.0
- [Release notes](https://github.com/getsentry/sentry-ruby/releases)
- [Changelog](https://github.com/getsentry/sentry-ruby/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-ruby@5.21.0...5.22.0)

Updates `sentry-ruby` from 5.21.0 to 5.22.0
- [Release notes](https://github.com/getsentry/sentry-ruby/releases)
- [Changelog](https://github.com/getsentry/sentry-ruby/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-ruby@5.21.0...5.22.0)

Updates `rubocop` from 1.69.0 to 1.69.1
- [Release notes](https://github.com/rubocop/rubocop/releases)
- [Changelog](https://github.com/rubocop/rubocop/blob/master/CHANGELOG.md)
- [Commits](rubocop/rubocop@v1.69.0...v1.69.1)

---
updated-dependencies:
- dependency-name: aws-sdk-s3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: bundler
- dependency-name: laa_crime_forms_common
  dependency-type: direct:production
  dependency-group: bundler
- dependency-name: prometheus_exporter
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: bundler
- dependency-name: rails
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: pagy
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: sentry-rails
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: bundler
- dependency-name: sentry-ruby
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: bundler
- dependency-name: rubocop
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: bundler
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from a team as a code owner December 11, 2024 03:26
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Dec 11, 2024
@sonarcloud SonarCloud
Copy link

sonarcloud bot commented Dec 11, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@patrick-laa patrick-laa merged commit 132b19f into main Dec 11, 2024
12 checks passed
@patrick-laa patrick-laa deleted the dependabot/bundler/bundler-27f2ed086c branch December 11, 2024 15:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@patrick-laa patrick-laa patrick-laa approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@patrick-laa