Skip to content

chore(deps): update all non-major bundler dependencies #573

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 3 commits into
base: staging
Choose a base branch
from
Open

chore(deps): update all non-major bundler dependencies #573

wants to merge 3 commits into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jul 6, 2025
edited
Loading

This PR contains the following updates:

Package Change Age Confidence
brakeman (source, changelog) '~> 7.0', '>= 7.0.2' -> '~> 7.1' age confidence
counter_culture '~> 3.10', '>= 3.10.1' -> '~> 3.11', '>= 3.11.2' age confidence
factory_bot_rails (changelog) '~> 6.4', '>= 6.4.4' -> '~> 6.5' age confidence
faker (changelog) '~> 3.5', '>= 3.5.1' -> '~> 3.5', '>= 3.5.2' age confidence
http (changelog) '~> 5.2' -> '~> 5.3', '>= 5.3.1' age confidence
icalendar (changelog) '~> 2.11' -> '~> 2.11', '>= 2.11.2' age confidence
jsonapi-resources '~> 0.9.1' -> '~> 0.10.7' age confidence
mini_magick (changelog) '~> 5.2' -> '~> 5.3' age confidence
pg '~> 1.5', '>= 1.5.9' -> '~> 1.6', '>= 1.6.1' age confidence
phonelib (changelog) '~> 0.10', '>= 0.10.9' -> '~> 0.10', '>= 0.10.11' age confidence
puma '~> 6.6' -> '~> 6.6', '>= 6.6.1' age confidence
redis (changelog) '~> 5.4' -> '~> 5.4', '>= 5.4.1' age confidence
rspec-rails (changelog) '~> 8.0' -> '~> 8.0', '>= 8.0.2' age confidence
rubocop (source, changelog) '~> 1.75', '>= 1.75.8' -> '~> 1.79', '>= 1.79.2' age confidence
rubocop-rails (source, changelog) '~> 2.32' -> '~> 2.33', '>= 2.33.3' age confidence
sentry-rails (source, changelog) '~> 5.24' -> '~> 5.26' age confidence
sentry-ruby (source, changelog) '~> 5.24' -> '~> 5.26' age confidence
sentry-sidekiq (source, changelog) '~> 5.24' -> '~> 5.26' age confidence
spring (changelog) '~> 4.3' -> '~> 4.4' age confidence

Release Notes

presidentbeef/brakeman (brakeman)

v7.1.0

Compare Source

  • Add EOL dates for Rails 8.0 and Ruby 3.4
  • Support render model shortcut
  • Use lazy file lists for AppTree
  • Add Haml 6.x support
  • Improve ignored warnings layout in HTML report (Sebastien Savater)
  • Update JUnit report for CircleCI (Philippe Bernery)
  • Only load escape functionality from cgi library (Earlopain)
  • Add --ensure-no-obsolete-config-entries option (viralpraxis)
magnusvk/counter_culture (counter_culture)

v3.11.2

Compare Source

Bugfixes:

  • Fix regression for foreign_key_values by adding support for composite primary keys (#​417)

v3.11.1

Compare Source

Bugfixes:

  • Don't attempt to modify frozen association object (#​416)

v3.11.0

Compare Source

New features:

  • Support for composite primary keys in Rails v7.2+ (#​413)

v3.10.2

Compare Source

Bugfixes:

  • Fix incorrect in-memory counter updates on belongs_to association (#​415)
thoughtbot/factory_bot_rails (factory_bot_rails)

v6.5.0: 6.5.0

Compare Source

What's Changed

New Contributors

Full Changelog: https://github.com/thoughtbot/factory\_bot\_rails/compare/v6.4.4...v6.5.0

faker-ruby/faker (faker)

v3.5.2

Compare Source

Happy Canada Day! 🍁

This version adds and improves some locales and fixes some bugs.

Thanks to all contributors!

Improvements & Bug fixes
Chore
Update local dependencies
New Contributors

Full Changelog: faker-ruby/faker@v3.5.1...v3.5.2

httprb/http (http)

v5.3.1

Compare Source

v5.3.0

Compare Source

icalendar/icalendar (icalendar)

v2.11.2

Compare Source

  • Deal with more bad value parameter values by falling back to the property default type

v2.11.1

Compare Source

  • Gracefully deal with malformed ics files that use spaces in the value parameter instead of hyphens
cerebris/jsonapi-resources (jsonapi-resources)

v0.10.7

Compare Source

v0.10.6: Use related records for joined resources

Compare Source

Features:

Adds an option to merge in the related resource's records when joining. This allows permission checks from the related resource to be applied for includes.

Bug fixes

Fixes issue where a relationship's data is cached, resulting in the presence of the data in a response where it's not expected.

Commits:

v0.10.5: - Fix polymorphic support for multiword resources

Compare Source

Fix polymorphic support for multiword resources
Also fixes some testing issues resulting in flappy tests

v0.10.4: - Rails 6.1 and Ruby 3.0 support

Compare Source

Brings in support for Rails 6.1 and Ruby 3.0

v0.10.3: - Fixes Included resources being limited with pagination

Compare Source

This is primarily a bug fix release. Fixes:

  • issue with included resources be limited when pagination is enabled
  • default_processor_klass deprecated. Use default_processor_klass_name to avoid warnings

v0.10.2: - Return 404 for show request when resource is not found

Compare Source

A 404 is now returned for a show request for a record that can not be found.

v0.10.1: - Fix for PostgreSQL SQL generation error

Compare Source

This is a bug fix for this error in PostgreSQL: ERROR: for SELECT DISTINCT, ORDER BY expressions must appear in select list

This is accomplished by ensuring fields used in sorting are also selected. This should be a transparent change.

v0.10.0: - Rework of internals

Compare Source

This large release contains a substantial re-architecture of the internals, especially the process of finding resources and their included resources, and caching.

Please see https://jsonapi-resources.com/v0.10/guide/whats\_new.html for more details.

An upgrade guide has been added at https://jsonapi-resources.com/v0.10/guide/upgrade\_guide.html

minimagick/minimagick (mini_magick)

v5.3.0

Compare Source

  • Actually require Ruby 2.5+ in the gemspec.
  • Fix Ruby 2.5 compatibility when using MiniMagick.restricted_env configuration.
  • Drop benchmark dependency.
  • Fix keyword argument forwarding when trying to call MiniMagick.compare(errors: false)
daddyz/phonelib (phonelib)

v0.10.11

Compare Source

  • updated data

v0.10.10

Compare Source

redis/redis-rb (redis)

v5.4.1

Compare Source

  • Properly handle NOSCRIPT errors.
rspec/rspec-rails (rspec-rails)

v8.0.2

Compare Source

Full Changelog

Bug Fixes:

  • Fix scaffold generator producing deprecated Rack http statuses.
    (Taketo Takashima, #​2860)

v8.0.1

Compare Source

Full Changelog

Bug Fixes:

  • Fix scaffold generator producing deprecated Rack http statuses.
    (Taketo Takashima, #​2860)
rubocop/rubocop (rubocop)

v1.79.2

Compare Source

Bug fixes
  • #​11664: Cache wasn't getting used when using parallelization. ([@​jvlara][])
  • #​14411: Fix false negatives for Layout/EmptyLinesAroundClassBody when a class body starts with a blank line and defines a multiline superclass. ([@​koic][])
  • #​14413: Fix a false positive for Layout/EmptyLinesAroundArguments with multiline strings that contain only whitespace. ([@​earlopain][])
  • #​14408: Fix false-positive for Layout/EmptyLinesAfterModuleInclusion when inclusion is called with modifier. ([@​r7kamura][])
  • #​14402: Fix false positives for Lint/UselessAssignment when duplicate assignments appear in if branch inside a loop and the variable is used outside while loop. ([@​koic][])
  • #​14416: Fix false positives for Style/MapToHash when using to_h with block argument. ([@​koic][])
  • #​14418: Fix false positives for Style/MapToSet when using to_set with block argument. ([@​koic][])
  • #​14420: Fix false positives for Style/SafeNavigation when ternary expression with operator method call with method chain. ([@​koic][])
Changes
  • #​14407: Register offense for parentheses around method calls with blocks in Style/RedundantParentheses. ([@​lovro-bikic][])

v1.79.1

Compare Source

Bug fixes
  • #​14390: Fix wrong autocorrect for Style/ArgumentsForwarding when the method arguments contain *, ** or &, and the method call contains self as the first argument. ([@​earlopain][])
  • #​14399: Fix false positives for Layout/EmptyLinesAfterModuleInclusion when prepend is used with block methods. ([@​koic][])
  • #​14396: Fix a false positive for Style/RedundantParentheses when parentheses are used around a one-line rescue expression inside a ternary operator. ([@​koic][])
  • #​14383: Fix false positives for Lint/UselessAssignment when duplicate assignments in if branch inside a loop. ([@​koic][])
  • #​14394: Fix false positive for Lint/UselessAssignment with retry in rescue branch. ([@​earlopain][])
  • #​14386: Fix false positives for Style/RedundantParentheses when parentheses are used around a one-line rescue expression inside array or hash literals. ([@​koic][])
  • #​14395: Fix LSP handling of URI-encoded paths with spaces. ([@​hakanensari][])
Changes

v1.79.0

Compare Source

New features
Bug fixes
  • #​14373: Fix an error for Style/ParallelAssignment when a lambda with parallel assignment is used on the RHS. ([@​koic][])
  • #​14370: Fix comment duplication bug in Style/AccessorGrouping separated autocorrect. ([@​r7kamura][])
  • #​14377: Fix a false positive for Lint/UselessAssignment when the assignment is inside a loop body. ([@​5hun-s][])
  • #​14355: Fix a false negative for Style/RedundantParentheses when using parentheses around a rescue expression on a one-line. ([@​koic][])
  • #​14354: Fix incorrect autocorrect for Style/AccessModifierDeclarations when using a grouped access modifier declaration. ([@​girasquid][])
  • #​14367: Fix an incorrect autocorrect for Style/SingleLineMethods when defining a single-line singleton method. ([@​koic][])
  • #​14344: Fix incorrect autocorrect for Style/SingleLineMethods when a single-line method definition contains a modifier. ([@​koic][])
  • #​14350: Fix Naming/MethodName cop false positives with define_method and operator names. ([@​viralpraxis][])
  • #​14333: Fix Naming/PredicateMethod ignoring the implicit nil from missing else branches. ([@​earlopain][])
  • #​14356: Fix Style/ItBlockParameter cop error on always style and missing block body. ([@​viralpraxis][])
  • #​14362: Update Lint/RequireRangeParentheses to not register false positives when range elements span multiple lines. ([@​dvandersluis][])
  • #​14309: Update Style/SoleNestedConditional to properly correct assignments within and. ([@​dvandersluis][])
Changes
  • #​14358: Add tsort gem to runtime dependency for Ruby 3.5-dev. ([@​koic][])
  • #​14322: Expand the scope of Style/ItAssignment to consider all local variable and method parameter names. ([@​dvandersluis][])
  • #​14378: Change Layout/SpaceAroundKeyword to offend for missing whitespace between return and opening parenthesis. ([@​lovro-bikic][])
  • #​14360: Make Layout/SpaceAroundOperators aware of alternative and as pattern matchings. ([@​koic][])
  • #​14375: Make Lint/RedundantSafeNavigation aware of builtin convert methods to_s, to_i, to_f, to_a, and to_h. ([@​koic][])
  • #​13835: Add InferNonNilReceiver config to Lint/RedundantSafeNavigation to check previous code paths if the receiver is non-nil. ([@​fatkodima][])
  • #​14381: Offend array1.any? { |elem| array2.member?(elem) } and array1.none? { |elem| array2.member?(elem) } in Style/ArrayIntersect. ([@​lovro-bikic][])

v1.78.0

Compare Source

New features
Bug fixes
  • #​14343: Fix autocorrect code for Style/HashConversion to avoid syntax error. ([@​koic][])
  • #​14346: Avoid requiring parentheses for Style/SingleLineMethods. ([@​koic][])
  • #​14339: Fix bug where specifying --format disables parallelization. ([@​r7kamura][])
  • #​14300: Fix false positives for Lint/DuplicateMethods cop when self-alias trick is used. ([@​viralpraxis][])
  • #​14329: Fix false positives for Lint/LiteralAsCondition when a literal is used inside || in case condition. ([@​koic][])
  • #​14326: Fix additional autocorrection errors in Style/HashConversion for nested Hash[] calls. ([@​dvandersluis][])
  • #​14031: Honor --config options on server mode. ([@​steiley][])
  • #​14319: Fix the following incorrect autocorrect for Lint/RedundantTypeConversion when using parentheses with no arguments or any arguments. ([@​koic][])
  • #​14336: Fix incorrect autocorrect for Style/ItBlockParameter when using a single numbered parameter after multiple numbered parameters in a method chain. ([@​koic][])
  • #​11782: Move pending cops warning out of ConfigLoader. ([@​nobuyo][])
Changes
  • #​14318: Add WaywardPredicates config to Naming/PredicateMethod to handle methods that look like predicates but aren't. ([@​dvandersluis][])

v1.77.0

Compare Source

New features
Bug fixes
  • #​14306: Fix an error for Style/HashConversion when using nested Hash[]. ([@​koic][])
  • #​14298: Fix an error for Style/SoleNestedConditional when autocorrecting nested if/unless/if. ([@​ssagara00][])
  • #​14313: Fix a false positive for Layout/SpaceBeforeBrackets when call desugared Hash#[] to lvar receiver with a space around the dot. ([@​koic][])
  • #​14292: Fix false positives for Style/RedundantParentheses when assigning a parenthesized one-line in pattern matching. ([@​koic][])
  • #​14296: Fix false positives for Style/RedundantSelf when receiver and lvalue have the same name in or-assignment. ([@​koic][])
  • #​14303: Fix Lint/SelfAssignment to allow inline RBS comments. ([@​Morriar][])
  • #​14307: Fix Style/MethodCallWithArgsParentheses false positive on forwarded keyword argument with additional arguments. ([@​viralpraxis][])
  • #​14301: Fix autocorrection syntax error for multiline expressions in Style/RedundantParentheses. ([@​lovro-bikic][])
Changes

v1.76.2

Compare Source

Bug fixes
  • #​14273: Fix an error for Lint/EmptyInterpolation when using a boolean literal inside interpolation. ([@​koic][])
  • #​14260: Fix an error for Lint/UselessDefaultValueArgument when fetch call without a receiver. ([@​koic][])
  • #​14267: Fix an error for Style/ConditionalAssignment cop when using one-line branches. ([@​viralpraxis][])
  • #​14275: Fix false positives for Style/RedundantParentheses when using parenthesized one-line pattern matching in endless method definition. ([@​koic][])
  • #​14269: Fix false positives for Style/RedundantSelf when local variable assignment name is used in nested if. ([@​koic][])
  • #​14286: Fix incorrect autocorrect for Lint/SafeNavigationChain when a safe navigation is used on the left-hand side of a - operator when inside an array. ([@​koic][])
Changes

v1.76.1

Compare Source

Bug fixes
  • #​14245: Fix an error for Lint/EmptyInterpolation when using primitives in interpolation. ([@​ka8725][])
  • #​14233: Fix an error for Style/SafeNavigation when using ternary expression with index access call. ([@​koic][])
  • #​14236: Fix an error for Style/SafeNavigation when using ternary expression with operator method call. ([@​koic][])
  • #​14249: Fix false positives for Style/RedundantArrayFlatten when Array#join is used with an argument other than the default nil. ([@​koic][])
  • #​14239: Fix false positives for Style/RedundantParentheses when using one-line in pattern matching in operator. ([@​koic][])
  • #​14240: Fix Naming/PredicateMethod cop error on empty parentheses method body. ([@​viralpraxis][])
  • #​14235: Fix Style/SafeNavigation cop error on indexed assignment in ternary expression. ([@​viralpraxis][])
  • #​14247: Fix Style/SafeNavigation invalid autocorrection on double colon method call. ([@​viralpraxis][])

v1.76.0

Compare Source

New features
Bug fixes
  • #​14228: Fix a false positive for Style/RedundantParentheses when using a one-line rescue expression as a method argument. ([@​koic][])
  • #​14224: Fix false negatives for Style/RedundantParentheses when using one-line pattern matching. ([@​koic][])
  • #​14205: False negatives in Style/SafeNavigation when a ternary expression is used in a method argument. ([@​steiley][])
  • #​14226: Fix Lint/LiteralAsCondition autocorrect when branches of a condition have comments. ([@​zopolis4][])
Changes
rubocop/rubocop-rails (rubocop-rails)

v2.33.3

[Compare Source](https://redirec

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) in timezone Europe/Amsterdam, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate Renovate
Copy link
Contributor Author

renovate bot commented Jul 6, 2025

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: Gemfile.lock
Writing lockfile to /tmp/renovate/repos/github/csvalpha/amber-api/Gemfile.lock
Fetching gem metadata from https://rubygems.org/........
Resolving dependencies...

Could not find compatible versions

Because jsonapi-authorization >= 3.0.2 depends on jsonapi-resources ~> 0.9.0
  and Gemfile depends on jsonapi-authorization >= 3.0.2, < 4.A,
  jsonapi-resources ~> 0.9.0 is required.
So, because Gemfile depends on jsonapi-resources ~> 0.10.7,
  version solving has failed.

@renovate renovate bot added the dependencies Pull requests that update a dependency file label Jul 6, 2025
@renovate renovate bot force-pushed the renovate/all-minor-patch-bundler branch 3 times, most recently from a8698ec to 9efb451 Compare July 11, 2025 13:09
@renovate renovate bot force-pushed the renovate/all-minor-patch-bundler branch 2 times, most recently from 724d9e8 to ef41ed5 Compare July 18, 2025 21:55
@renovate renovate bot force-pushed the renovate/all-minor-patch-bundler branch 2 times, most recently from 4d2c693 to 976cb28 Compare July 27, 2025 22:27
@renovate renovate bot force-pushed the renovate/all-minor-patch-bundler branch 4 times, most recently from 25a6e9d to a13aeaa Compare August 10, 2025 05:22
@renovate renovate bot force-pushed the renovate/all-minor-patch-bundler branch 3 times, most recently from ad7781d to 3f3d7d1 Compare August 13, 2025 09:09
@renovate renovate bot force-pushed the renovate/all-minor-patch-bundler branch from 3f3d7d1 to a4a19ce Compare August 13, 2025 18:41
@renovate Renovate
Copy link
Contributor Author

renovate bot commented Aug 13, 2025

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@lodewiges