Skip to content

build(deps): bump the all-dependencies group with 3 updates #193

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
smockle merged 1 commit into from
Oct 27, 2025
Merged

build(deps): bump the all-dependencies group with 3 updates #193

smockle merged 1 commit into from
Oct 27, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 27, 2025

Bumps the all-dependencies group with 3 updates: rubocop, actionview and rspec.

Updates rubocop from 1.81.1 to 1.81.6

Release notes

Sourced from rubocop's releases.

RuboCop v1.81.6

Bug fixes

  • #14587: Fix an error for Lint/SelfAssignment when using []= assignment with no arguments. (@​koic)
  • #14572: Fix an error for Style/ArrayIntersect when intersection(other).any? is called without a receiver. (@​koic)
  • #14599: Fix a crash when Style/ConditionalAssignment is configured with assign_inside_conditional and the conditional contains a multi-line regex. (@​martinemde)
  • #14574: Fix false positives for Style/RedundantInterpolation when using a one-line => pattern matching. (@​koic)
  • #14602: Fix false positives for Style/EndlessMethod when heredoc is used in method body. (@​koic)
  • #14594: Fix false positives for Style/EndlessMethod when the endless method would exceed the maximum line length. (@​koic)
  • #14605: Fix false positive for Lint/EmptyInterpolation when interpolation is inside a %W literal. (@​dvandersluis)
  • #14604: Fix Style/RedundantFormat false positive when a interpolated value is given to a specifier with a width or precision. (@​dvandersluis)
  • #14607: Fix Style/RedundantFormat handling control characters like \n. (@​dvandersluis)
  • #14577: Fix an incorrect autocorrect for Style/Semicolon when a method call using hash value omission without parentheses is terminated with a semicolon. (@​koic)
  • #14552: Fix a false positive for Security/JSONLoad when create_additions is explicitly specified. (@​earlopain)

Changes

  • #14566: Enhance Lint::ConstantOverwrittenInRescue cop to detect offenses within fully qualified constants. (@​viralpraxis)
  • #14575: Enhance Lint/ConstantOverwrittenInRescue cop to detect offenses within nested constants. (@​viralpraxis)
  • #14596: Change Lint/ConstantOverwrittenInRescue to detect any constant assignment. (@​viralpraxis)
  • #14568: Make Style/LambdaCall autocorrection contextual. (@​koic)
Changelog

Sourced from rubocop's changelog.

1.81.6 (2025-10-21)

Bug fixes

  • #14587: Fix an error for Lint/SelfAssignment when using []= assignment with no arguments. ([@​koic][])
  • #14572: Fix an error for Style/ArrayIntersect when intersection(other).any? is called without a receiver. ([@​koic][])
  • #14599: Fix a crash when Style/ConditionalAssignment is configured with assign_inside_conditional and the conditional contains a multi-line regex. ([@​martinemde][])
  • #14574: Fix false positives for Style/RedundantInterpolation when using a one-line => pattern matching. ([@​koic][])
  • #14602: Fix false positives for Style/EndlessMethod when heredoc is used in method body. ([@​koic][])
  • #14594: Fix false positives for Style/EndlessMethod when the endless method would exceed the maximum line length. ([@​koic][])
  • #14605: Fix false positive for Lint/EmptyInterpolation when interpolation is inside a %W literal. ([@​dvandersluis][])
  • #14604: Fix Style/RedundantFormat false positive when a interpolated value is given to a specifier with a width or precision. ([@​dvandersluis][])
  • #14607: Fix Style/RedundantFormat handling control characters like \n. ([@​dvandersluis][])
  • #14577: Fix an incorrect autocorrect for Style/Semicolon when a method call using hash value omission without parentheses is terminated with a semicolon. ([@​koic][])
  • #14552: Fix a false positive for Security/JSONLoad when create_additions is explicitly specified. ([@​earlopain][])

Changes

  • #14566: Enhance Lint::ConstantOverwrittenInRescue cop to detect offenses within fully qualified constants. ([@​viralpraxis][])
  • #14575: Enhance Lint/ConstantOverwrittenInRescue cop to detect offenses within nested constants. ([@​viralpraxis][])
  • #14596: Change Lint/ConstantOverwrittenInRescue to detect any constant assignment. ([@​viralpraxis][])
  • #14568: Make Style/LambdaCall autocorrection contextual. ([@​koic][])
Commits
  • 8c98655 Cut 1.81.6
  • f5431f5 Update broken link
  • 3d76fb0 Update Changelog
  • fe019a8 Merge pull request #14611 from r7kamura/CopDirectiveSyntax-comment-improve
  • df813a3 Improve Lint/CopDirectiveSyntax cop documentation examples
  • 905c991 Merge pull request #14606 from dvandersluis/issue/14605
  • f7f653f Merge pull request #14608 from dvandersluis/issue/14604
  • 91ed4aa [Fix #14604] Fix Style/RedundantFormat false positive when a interpolated v...
  • bb5d1a3 [Fix #14605] Fix false positive for Lint/EmptyInterpolation when interpolat...
  • 783a4bf Merge pull request #14607 from dvandersluis/redundant-format-control-chars
  • Additional commits viewable in compare view

Updates actionview from 8.0.3 to 8.1.0

Release notes

Sourced from actionview's releases.

8.1.0

Active Support

  • Remove deprecated passing a Time object to Time#since.

    Rafael Mendonça França

  • Remove deprecated Benchmark.ms method. It is now defined in the benchmark gem.

    Rafael Mendonça França

  • Remove deprecated addition for Time instances with ActiveSupport::TimeWithZone.

    Rafael Mendonça França

  • Remove deprecated support for to_time to preserve the system local time. It will now always preserve the receiver timezone.

    Rafael Mendonça França

  • Deprecate config.active_support.to_time_preserves_timezone.

    Rafael Mendonça França

  • Standardize event name formatting in assert_event_reported error messages.

    The event name in failure messages now uses .inspect (e.g., name: "user.created") to match assert_events_reported and provide type clarity between strings and symbols. This only affects tests that assert on the failure message format itself.

    George Ma

  • Fix Enumerable#sole to return the full tuple instead of just the first element of the tuple.

    Olivier Bellone

  • Fix parallel tests hanging when worker processes die abruptly.

    Previously, if a worker process was killed (e.g., OOM killed, kill -9) during parallel test execution, the test suite would hang forever waiting for the dead worker.

    Joshua Young

  • Add config.active_support.escape_js_separators_in_json.

    Introduce a new framework default to skip escaping LINE SEPARATOR (U+2028) and PARAGRAPH SEPARATOR (U+2029) in JSON.

    Historically these characters were not valid inside JavaScript literal strings but that changed in ECMAScript 2019. As such it's no longer a concern in modern browsers: https://caniuse.com/mdn-javascript_builtins_json_json_superset.

... (truncated)

Changelog

Sourced from actionview's changelog.

Rails 8.1.0 (October 22, 2025)

  • The BEGIN template annotation/comment was previously printed on the same line as the following element. We now insert a newline inside the comment so it spans two lines without adding visible whitespace to the HTML output to enhance readability.

    Before:

    <!-- BEGIN /Users/siaw23/Desktop/rails/actionview/test/fixtures/actionpack/test/greeting.html.erb --><p>This is grand!</p>

    After:

    <!-- BEGIN /Users/siaw23/Desktop/rails/actionview/test/fixtures/actionpack/test/greeting.html.erb
--><p>This is grand!</p>

    Emmanuel Hayford

  • Add structured events for Action View:

    • action_view.render_template
    • action_view.render_partial
    • action_view.render_layout
    • action_view.render_collection
    • action_view.render_start

    Gannon McGibbon

  • Fix label with for option not getting prefixed by form namespace value

    Abeid Ahmed, Hartley McGuire

  • Add fetchpriority to Link headers to match HTML generated by preload_link_tag.

    Guillermo Iguaran

  • Add CSP nonce to Link headers generated by preload_link_tag.

    Alexander Gitter

  • Allow current_page? to match against specific HTTP method(s) with a method: option.

    Ben Sheldon

  • Remove autocomplete="off" on hidden inputs generated by the following tags:

    • form_tag, token_tag, method_tag

    As well as the hidden parameter fields included in button_to, check_box, select (with multiple) and file_field forms.

    nkulway

... (truncated)

Commits
  • 1cdd190 Preparing for 8.1.0 release
  • 1ace683 Preparing for 8.1.0.rc1 release
  • d6f9f62 Make the Structured Event Subscriber emit events in format that are useful fo...
  • 4ae5bfc Place template annotation on a separate line
  • 7d12071 Micro optimize ActiveRecord::RuntimeRegistry
  • d2518fa Merge pull request #55748 from Shopify/event_with_debug_helper
  • 1e77699 Make all framework log subscribers API private
  • 78857a3 Introduce with_debug_event_reporting to enable event reporter debug mode
  • ebb01c5 Emit only one structured event per notification event
  • b8d8b55 Merge pull request #55738 from skipkayhil/hm-nkxzsnnrqqlyrotw
  • Additional commits viewable in compare view

Updates rspec from 3.13.1 to 3.13.2

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the all-dependencies group with 3 updates
439048d 
Bumps the all-dependencies group with 3 updates: [rubocop](https://github.com/rubocop/rubocop), [actionview](https://github.com/rails/rails) and [rspec](https://github.com/rspec/rspec).


Updates `rubocop` from 1.81.1 to 1.81.6
- [Release notes](https://github.com/rubocop/rubocop/releases)
- [Changelog](https://github.com/rubocop/rubocop/blob/master/CHANGELOG.md)
- [Commits](rubocop/rubocop@v1.81.1...v1.81.6)

Updates `actionview` from 8.0.3 to 8.1.0
- [Release notes](https://github.com/rails/rails/releases)
- [Changelog](https://github.com/rails/rails/blob/v8.1.0/actionview/CHANGELOG.md)
- [Commits](rails/rails@v8.0.3...v8.1.0)

Updates `rspec` from 3.13.1 to 3.13.2
- [Commits](rspec/rspec@rspec-v3.13.1...rspec-v3.13.2)

---
updated-dependencies:
- dependency-name: rubocop
  dependency-version: 1.81.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: actionview
  dependency-version: 8.1.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: rspec
  dependency-version: 3.13.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Oct 27, 2025
@dependabot dependabot bot requested a review from a team as a code owner October 27, 2025 16:18
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Oct 27, 2025
@smockle smockle merged commit 7ad1986 into main Oct 27, 2025
2 checks passed
@smockle smockle deleted the dependabot/bundler/all-dependencies-a706823170 branch October 27, 2025 18:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@smockle smockle smockle approved these changes

@accessibility-bot accessibility-bot Awaiting requested review from accessibility-bot accessibility-bot is a code owner automatically assigned from github/accessibility-reviewers

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@smockle