chore(deps-dev): bump bundler-audit from 0.9.2 to 0.9.3 (#1163)

rsmithlal · web-flow · commit e781b805b172 · 2025-12-03T09:28:10.000-03:30
Bumps [bundler-audit](https://github.com/rubysec/bundler-audit) from 0.9.2 to 0.9.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/rubysec/bundler-audit/releases">bundler-audit's releases</a>.</em></p> <blockquote> <h2>0.9.3</h2> <ul> <li>Officially support Ruby 3.4, 3.5, and 4.0.</li> <li>Added support for Bundler 4.x.</li> <li>Fixed typos in API documentation.</li> </ul> <h4>CLI</h4> <ul> <li>Ensure that the <code>bundler-audit check</code> command honors the <code>BUNDLER_AUDIT_DB</code> environment variable.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rubysec/bundler-audit/blob/master/ChangeLog.md">bundler-audit's changelog</a>.</em></p> <blockquote> <h3>0.9.3 / 2025-11-28</h3> <ul> <li>Officially support Ruby 3.4, 3.5, and 4.0.</li> <li>Added support for Bundler 4.x.</li> <li>Fixed typos in API documentation.</li> </ul> <h4>CLI</h4> <ul> <li>Ensure that the <code>bundler-audit check</code> command honors the <code>BUNDLER_AUDIT_DB</code> environment variable.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rubysec/bundler-audit/commit/f8b06ebbefdd223e6eb21b9b258d75e6cfa9442a"><code>f8b06eb</code></a> Updated the ChangeLog for 0.9.3.</li> <li><a href="https://github.com/rubysec/bundler-audit/commit/e4fb10a23229445b55fd0cbd2357b7e688519b1d"><code>e4fb10a</code></a> Version bump to 0.9.3.</li> <li><a href="https://github.com/rubysec/bundler-audit/commit/34cd522d0a6c2e1957604d6f6c7239a9726b1b64"><code>34cd522</code></a> Added Ruby 4.0 to the CI matrix.</li> <li><a href="https://github.com/rubysec/bundler-audit/commit/22da9d769d3d98e7fa401764d2689e60dcf71efa"><code>22da9d7</code></a> Added Ruby 3.5 to the CI matrix.</li> <li><a href="https://github.com/rubysec/bundler-audit/commit/0c2afaf48aea1b852bce5a877c1d6ec866a6c1d4"><code>0c2afaf</code></a> Require rubygems-tasks ~&gt; 0.3 for Ruby 3.5 and 4.0.</li> <li><a href="https://github.com/rubysec/bundler-audit/commit/309d20356a7ea435d0f92982b6fcb2a4bd57db66"><code>309d203</code></a> Allow using bundler 4.x</li> <li><a href="https://github.com/rubysec/bundler-audit/commit/d40dc751d0e789791751d6b62a1006daf8c150c4"><code>d40dc75</code></a> Remove syntax highlighting from example output.</li> <li><a href="https://github.com/rubysec/bundler-audit/commit/91a912f69ce7df580731bc79aea64c7699b470b7"><code>91a912f</code></a> Be consistent and only use markdown code fences.</li> <li><a href="https://github.com/rubysec/bundler-audit/commit/fc1bc0aa2cb0ea6a075daf39dd6cc02a3234266d"><code>fc1bc0a</code></a> Fixed typo in <code>@return</code> tag.</li> <li><a href="https://github.com/rubysec/bundler-audit/commit/276e0652d075686d66ca626705d4d475be697242"><code>276e065</code></a> Update RubyGems in GitHub Actions CI (<a href="https://redirect.github.com/rubysec/bundler-audit/issues/406">#406</a>)</li> <li>Additional commits viewable in <a href="https://github.com/rubysec/bundler-audit/compare/v0.9.2...v0.9.3">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=bundler-audit&package-manager=bundler&previous-version=0.9.2&new-version=0.9.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
diff --git a/Gemfile.lock b/Gemfile.lock
@@ -203,8 +203,8 @@ GEM
     brakeman (7.1.1)
       racc
     builder (3.3.0)
-    bundler-audit (0.9.2)
-      bundler (>= 1.2.0, < 3)
+    bundler-audit (0.9.3)
+      bundler (>= 1.2.0)
       thor (~> 1.0)
     byebug (12.0.0)
     capybara (3.40.0)
