Skip to content

Bump the "infrastructure" group with 2 updates across multiple ecosystems#34

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/infrastructure-2a30aa94f1
Open

Bump the "infrastructure" group with 2 updates across multiple ecosystems#34
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/infrastructure-2a30aa94f1

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Nov 11, 2025
edited
Loading

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps the infrastructure group with 4 updates: bootstrap, coffee-rails, sidekiq and twitter-typeahead-rails.

Updates bootstrap from 4.6.2.1 to 5.3.5

Release notes

Sourced from bootstrap's releases.

v5.3.3

Adds support for other Sass engines: dartsass-sprockets, dartsass-rails, and cssbundling-rails.

v5.0.0

No release notes provided.

Changelog

Sourced from bootstrap's changelog.

Changelog

The changelog is tracked here but also in the Releases section of the GitHub project. The changelog only includes changes specific to the RubyGem.

The Bootstrap framework changes can be found in the Releases section of twbs/bootstrap. Release announcement posts on the official Bootstrap blog contain summaries of the most noteworthy changes made in each release of Bootstrap.

5.3.4

  • Autoprefixer is now optional. #283

5.3.3

  • Adds support for other Sass engines: dartsass-sprockets, dartsass-rails, and cssbundling-rails.

4.2.1

  • Bootstrap rubygem now depends on SassC instead of Sass.

4.0.0.beta2.1

Fixes an extraneous sourceMappingURL in bootstrap.js. #124

4.0.0.beta2

Compass is no longer supported. Minimum required Sass version is now v3.5.2. #122

4.0.0.alpha3.1

This release corresponds to the upstream Bootstrap 4 Alpha 3.

Commits

Updates coffee-rails from 4.2.2 to 5.0.0

Changelog

Sourced from coffee-rails's changelog.

5.0.0 (Apr 23, 2019)

  • Remove support to Rails < 5.2.
  • Support Rails 6.
Commits
  • 32a2939 Prepare to 5.0.0
  • 6507f0a Set the javascripts generator option as true in the railtie
  • 5f0e005 Point to rails repository
  • 74214e8 Merge pull request #114 from larouxn/rails_6_support
  • eff9c00 Revert folder structure changes, remove --javascripts flag
  • e7ce694 Fix for exclusively Rails 6
  • 69e6782 TESTING, use my fork of Rails
  • fc8c48c Conditionally use Rails 6 folder stucture
  • 5df5816 Merge pull request #111 from larouxn/stop_testing_below_ruby_2.2
  • 9bead93 Merge pull request #112 from larouxn/update_travis_jruby_version
  • Additional commits viewable in compare view

Updates sidekiq from 6.5.12 to 7.3.9

Changelog

Sourced from sidekiq's changelog.

7.3.9

  • Only require activejob if necessary #6584 You might get uninitialized constant Sidekiq::ActiveJob if you require 'sidekiq' before require 'rails'.
  • Fix iterable job cancellation #6589
  • Web UI accessibility improvements #6604

7.3.8

  • Fix dead tag links #6554
  • Massive Web UI performance improvement, some pages up to 15x faster #6555

7.3.7

  • Backport Sidekiq::Web.configure for compatibility with 8.0 #6532
  • Backport url_params(key) and route_params(key) for compatibility with 8.0 #6532
  • Various fixes for UI filtering #6508
  • Tune inspect for internal S::Components to keep size managable #6553

7.3.6

  • Forward compatibility fixes for Ruby 3.4
  • Filtering in the Web UI now works via GET so you can bookmark a filtered view. #6497

7.3.5

  • Reimplement retry_all and kill_all API methods to use ZPOPMIN, approximately 30-60% faster. #6481
  • Add preload testing binary at examples/testing/sidekiq_boot to verify your Rails app boots correctly with Sidekiq Enterprise's app preloading.
  • Fix circular require with ActiveJob adapter #6477
  • Fix potential race condition leading to incorrect serialized values for CurrentAttributes #6475
  • Restore missing elapsed time when default job logging is disabled

7.3.4

  • Fix FrozenError when starting Sidekiq #6470

7.3.3

  • Freeze global configuration once boot is complete, to avoid configuration race conditions [#6466, #6465]
  • Sidekiq now warns if a job iteration takes longer than the -t timeout setting (defaults to 25 seconds)
  • Iteration callbacks now have easy access to job arguments via the arguments method:

... (truncated)

Commits

Updates twitter-typeahead-rails from 0.11.1.pre.corejavascript to 0.11.1

Commits

Updates the requirements on hashicorp/aws to permit the latest version.
Updates hashicorp/aws to 6.20.0

Release notes

Sourced from hashicorp/aws's releases.

v6.20.0

6.20.0 (November 6, 2025)

FEATURES:

  • New Resource: aws_ec2_allowed_images_settings (#44800)
  • New Resource: aws_fis_target_account_configuration (#44875)
  • New Resource: aws_invoicing_invoice_unit (#44892)

ENHANCEMENTS:

  • data-source/aws_connect_routing_profile: Add media_concurrencies.cross_channel_behavior attribute (#44934)
  • data-source/aws_elasticache_replication_group: Add node_group_configuration attribute to expose node group details including availability zones, replica counts, and slot ranges (#44879)
  • data-source/aws_kinesis_stream: Add max_record_size_in_kib attribute (#44915)
  • data-source/aws_opensearch_domain: Add identity_center_options attribute (#44626)
  • provider: Support us-isob-west-1 as a valid AWS Region (#44944)
  • resource/aws_cloudfront_distribution: Add logging_v1_enabled attribute (#44838)
  • resource/aws_connect_routing_profile: Add media_concurrencies.cross_channel_behavior argument (#44934)
  • resource/aws_ec2_client_vpn_route: Allow IPv6 address ranges for destination_cidr_block (#44926)
  • resource/aws_ec2_instance_connect_endpoint: Add ip_address_type argument (#44616)
  • resource/aws_eks_node_group: Add max_parallel_nodes_repaired_count, max_parallel_nodes_repaired_percentage, max_unhealthy_node_threshold_count, max_unhealthy_node_threshold_percentage, and node_repair_config_overrides to the node_repair_config schema (#44894)
  • resource/aws_elasticache_replication_group: Add node_group_configuration block to support availability zone specification and snapshot restoration for cluster mode enabled replication groups (#44879)
  • resource/aws_glue_job: Ensure that timeout is unconfigured for Ray jobs (#35012)
  • resource/aws_kinesis_stream: Add max_record_size_in_kib argument to support for Kinesis 10MiB payloads. This functionality requires the kinesis:UpdateMaxRecordSize IAM permission (#44915)
  • resource/aws_opensearch_domain: Add identity_center_options configuration block (#44626)
  • resource/aws_transfer_server: Add support for TransferSecurityPolicy-AS2Restricted-2025-07 security_policy_name value (#44865)
  • resource/aws_transfer_server: Support TransferSecurityPolicy-AS2Restricted-2025-07 as a valid value for security_policy_name (#44652)

BUG FIXES:

  • resource/aws_cloudfront_continuous_deployment_policy: Fix Source type "...cloudfront.stagingDistributionDNSNamesModel" does not implement attr.Value error. This fixes a regression introduced in v6.17.0 (#44972)
  • resource/aws_cloudfront_distribution: Change logging_config.bucket argument from Required to Optional (#44838)
  • resource/aws_cloudfront_distribution: Fix inability to configure logging_config.include_cookies argument while keeping V1 logging disabled (#44838)
  • resource/aws_cloudfront_vpc_origin: Fix Source type "...cloudfront.originSSLProtocolsModel" does not implement attr.Value and missing required field, CreateVpcOriginInput.VpcOriginEndpointConfig errors. This fixes a regression introduced in v6.17.0 (#44861)
  • resource/aws_glue_job: Allow Ray jobs to be updated (#35012)
  • resource/aws_glue_job: Allow a zero (0) value for timeout for Apache Spark streaming ETL jobs. This allows the job to be configured with no timeout (#44920)
  • resource/aws_lakeformation_lf_tags: Remove incorrect validation from catalog_id, database.catalog_id, table.catalog_id, and table_with_columns.catalog_id arguments (#44890)
  • resource/aws_launch_template: Allow an empty ("") value for block_device_mappings.ebs.kms_key_id. This fixes a regression introduced in v6.16.0 (#44708)
Changelog

Sourced from hashicorp/aws's changelog.

6.20.0 (November 6, 2025)

FEATURES:

  • New Resource: aws_ec2_allowed_images_settings (#44800)
  • New Resource: aws_fis_target_account_configuration (#44875)
  • New Resource: aws_invoicing_invoice_unit (#44892)

ENHANCEMENTS:

  • data-source/aws_connect_routing_profile: Add media_concurrencies.cross_channel_behavior attribute (#44934)
  • data-source/aws_elasticache_replication_group: Add node_group_configuration attribute to expose node group details including availability zones, replica counts, and slot ranges (#44879)
  • data-source/aws_kinesis_stream: Add max_record_size_in_kib attribute (#44915)
  • data-source/aws_opensearch_domain: Add identity_center_options attribute (#44626)
  • provider: Support us-isob-west-1 as a valid AWS Region (#44944)
  • resource/aws_cloudfront_distribution: Add logging_v1_enabled attribute (#44838)
  • resource/aws_connect_routing_profile: Add media_concurrencies.cross_channel_behavior argument (#44934)
  • resource/aws_ec2_client_vpn_route: Allow IPv6 address ranges for destination_cidr_block (#44926)
  • resource/aws_ec2_instance_connect_endpoint: Add ip_address_type argument (#44616)
  • resource/aws_eks_node_group: Add max_parallel_nodes_repaired_count, max_parallel_nodes_repaired_percentage, max_unhealthy_node_threshold_count, max_unhealthy_node_threshold_percentage, and node_repair_config_overrides to the node_repair_config schema (#44894)
  • resource/aws_elasticache_replication_group: Add node_group_configuration block to support availability zone specification and snapshot restoration for cluster mode enabled replication groups (#44879)
  • resource/aws_glue_job: Ensure that timeout is unconfigured for Ray jobs (#35012)
  • resource/aws_kinesis_stream: Add max_record_size_in_kib argument to support for Kinesis 10MiB payloads. This functionality requires the kinesis:UpdateMaxRecordSize IAM permission (#44915)
  • resource/aws_opensearch_domain: Add identity_center_options configuration block (#44626)
  • resource/aws_transfer_server: Add support for TransferSecurityPolicy-AS2Restricted-2025-07 security_policy_name value (#44865)
  • resource/aws_transfer_server: Support TransferSecurityPolicy-AS2Restricted-2025-07 as a valid value for security_policy_name (#44652)

BUG FIXES:

  • resource/aws_cloudfront_continuous_deployment_policy: Fix Source type "...cloudfront.stagingDistributionDNSNamesModel" does not implement attr.Value error. This fixes a regression introduced in v6.17.0 (#44972)
  • resource/aws_cloudfront_distribution: Change logging_config.bucket argument from Required to Optional (#44838)
  • resource/aws_cloudfront_distribution: Fix inability to configure logging_config.include_cookies argument while keeping V1 logging disabled (#44838)
  • resource/aws_cloudfront_vpc_origin: Fix Source type "...cloudfront.originSSLProtocolsModel" does not implement attr.Value and missing required field, CreateVpcOriginInput.VpcOriginEndpointConfig errors. This fixes a regression introduced in v6.17.0 (#44861)
  • resource/aws_glue_job: Allow Ray jobs to be updated (#35012)
  • resource/aws_glue_job: Allow a zero (0) value for timeout for Apache Spark streaming ETL jobs. This allows the job to be configured with no timeout (#44920)
  • resource/aws_lakeformation_lf_tags: Remove incorrect validation from catalog_id, database.catalog_id, table.catalog_id, and table_with_columns.catalog_id arguments (#44890)
  • resource/aws_launch_template: Allow an empty ("") value for block_device_mappings.ebs.kms_key_id. This fixes a regression introduced in v6.16.0 (#44708)

6.19.0 (October 30, 2025)

FEATURES:

  • New Data Source: aws_ecrpublic_images (#44795)
  • New Resource: aws_lakeformation_identity_center_configuration (#44867)

ENHANCEMENTS:

  • action/aws_lambda_invoke: Output logs in a progress message when log_type is Tail (#44843)
  • data-source/aws_imagebuilder_image_recipe: Add ami_tags attribute (#44731)
  • data-source/aws_lb_listener_rule: Add regex_values attribute to condition.host_header, condition.http_header and condition.path_pattern blocks (#44741)

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the infrastructure group with 4 updates
46cdc35 
Bumps the infrastructure group with 4 updates: [bootstrap](https://github.com/twbs/bootstrap-rubygem), [coffee-rails](https://github.com/rails/coffee-rails), [sidekiq](https://github.com/sidekiq/sidekiq) and [twitter-typeahead-rails](https://github.com/yourabi/twitter-typeahead-rails).


Updates `bootstrap` from 4.6.2.1 to 5.3.5
- [Release notes](https://github.com/twbs/bootstrap-rubygem/releases)
- [Changelog](https://github.com/twbs/bootstrap-rubygem/blob/main/CHANGELOG.md)
- [Commits](twbs/bootstrap-rubygem@v4.6.2.1...v5.3.5)

Updates `coffee-rails` from 4.2.2 to 5.0.0
- [Changelog](https://github.com/rails/coffee-rails/blob/master/CHANGELOG.md)
- [Commits](rails/coffee-rails@v4.2.2...v5.0.0)

Updates `sidekiq` from 6.5.12 to 7.3.9
- [Changelog](https://github.com/sidekiq/sidekiq/blob/main/Changes.md)
- [Commits](sidekiq/sidekiq@v6.5.12...v7.3.9)

Updates `twitter-typeahead-rails` from 0.11.1.pre.corejavascript to 0.11.1
- [Commits](yourabi/twitter-typeahead-rails@v0.11.1.pre.corejavascript...v0.11.1)
Update hashicorp/aws requirement from ~> 4.16 to ~> 6.20

Updates the requirements on [hashicorp/aws](https://github.com/hashicorp/terraform-provider-aws) to permit the latest version.

Updates `hashicorp/aws` to 6.20.0
- [Release notes](https://github.com/hashicorp/terraform-provider-aws/releases)
- [Changelog](https://github.com/hashicorp/terraform-provider-aws/blob/main/CHANGELOG.md)
- [Commits](hashicorp/terraform-provider-aws@v4.16.0...v6.20.0)

---
updated-dependencies:
- dependency-name: bootstrap
  dependency-version: 5.3.5
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: infrastructure
- dependency-name: coffee-rails
  dependency-version: 5.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: infrastructure
- dependency-name: sidekiq
  dependency-version: 7.3.9
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: infrastructure
- dependency-name: twitter-typeahead-rails
  dependency-version: 0.11.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: infrastructure
- dependency-name: hashicorp/aws
  dependency-version: 6.20.0
  dependency-type: direct:production
  dependency-group: infrastructure
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update ruby code labels Nov 11, 2025
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Nov 17, 2025

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot recreate.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants