Bump the gems group across 1 directory with 23 updates

[dependabot]

Bumps the gems group with 22 updates in the / directory:

Package	From	To
mail	2.8.1	2.9.0
debug	1.11.0	1.11.1
json-schema	6.0.0	6.1.0
rspec-rails	8.0.2	8.0.3
brakeman	7.1.0	8.0.2
bundler-audit	0.9.2	0.9.3
hotwire-livereload	2.0.0	2.1.1
rubocop-factory_bot	2.27.1	2.28.0
rubocop-rails	2.33.3	2.34.3
rubocop-rspec	3.7.0	3.9.0
rubocop-rspec_rails	2.31.0	2.32.0
honeybadger	6.1.0	6.3.1
rack-attack	6.7.0	6.8.0
better_html	2.1.1	2.2.0
bootsnap	1.18.6	1.23.0
cloudflare-rails	6.2.0	7.0.0
data_migrate	11.3.0	11.3.1
importmap-rails	2.2.2	2.2.3
propshaft	1.2.1	1.3.1
puma	7.0.1	7.2.0
tailwindcss-rails	4.3.0	4.4.0
turbo-rails	2.0.16	2.0.23

Updates mail from 2.8.1 to 2.9.0

Release notes

Sourced from mail's releases.

v2.9.0

What's Changed

• Fix little typo by @​nbennke in mikel/mail#1462
• 2.8.0.rc1 Regression: Preserve message-level charset when adding parts (related to Rails ActionMailer) by @​johnnyshields in mikel/mail#1495
• Use Rake's default rakelib/ directory by @​olleolleolle in mikel/mail#1488
• refactor: Use Dir.glob only once in gemspec's "files" directive by @​olleolleolle in mikel/mail#1486
• Configure RSpec's zero-monkey patching mode by @​olleolleolle in mikel/mail#1485
• Remove unnecessary gemfile dependency on strscan by @​deivid-rodriguez in mikel/mail#1483
• README: sending multipart mail by @​kapfenho in mikel/mail#1479
• Add delivery_interceptors method to Mail class to fetch registered interceptors by @​ghousemohamed in mikel/mail#1475
• Update MIME-Version to have correct case per the RFC by @​mikel in mikel/mail#1503
• Adding explicit JRuby support by @​mikel in mikel/mail#1508
• refactor: Use Ruby 2's dir where possible by @​olleolleolle in mikel/mail#1487
• [Corrected] Layout/TrailingWhitespace: Trailing whitespace detected. by @​mikel in mikel/mail#1510
• Improve documentation by @​fwolfst in mikel/mail#1371
• Span => Spam by @​sebbASF in mikel/mail#1320
• use unpack1 by @​ahorek in mikel/mail#1513
• Lazy-load fields and elements by @​c960657 in mikel/mail#1491
• Install libyaml-dev for Psych by @​c960657 in mikel/mail#1522
• Feature/parse lf by @​sebbASF in mikel/mail#1520
• use match? by @​ahorek in mikel/mail#1514
• Bump actions/checkout to v3 by @​sebbASF in mikel/mail#1535
• Fix for #1527 by @​sebbASF in mikel/mail#1534
• Standardise on WARNING: prefix by @​sebbASF in mikel/mail#1533
• Checks are in the wrong place by @​sebbASF in mikel/mail#1531
• Allow manual trigger by @​sebbASF in mikel/mail#1524
• Handle parsing of LF-only body with separate parts by @​mikel in mikel/mail#1511
• Make activesupport gem optional by @​sebbASF in mikel/mail#1532
• SMTP: refactor and accept starttls :always and :auto by @​eval in mikel/mail#1536
• Adds Ruby 3.2 to the CI matrix by @​petergoldstein in mikel/mail#1552
• Layout conventions are not the same as syntax by @​sebbASF in mikel/mail#1558
• Don't shadow local variable by @​sebbASF in mikel/mail#1318
• Revert PR #1495 because it is a dupe of #1470 by @​johnnyshields in mikel/mail#1559
• Add Ruby 3.3 to CI matrix by @​m-nakamura145 in mikel/mail#1595
• TruffleRuby is flaky by @​sebbASF in mikel/mail#1599
• Use require_relative where possible by @​eval in mikel/mail#1598
• Test string is 1 char short of 78 by @​sebbASF in mikel/mail#1568
• Update documentation regarding errors array by @​mikehale in mikel/mail#1605
• Fix all 'assigned but unused variable' warnings by @​skipkayhil in mikel/mail#1551
• Fix IMAP search issues by @​nevans in mikel/mail#1611
• Document SMTP TLS/STARTTLS settings (cherry-picked from 2.8 stable branch) by @​nevans in mikel/mail#1613
• CI: Use checkout@v4 by @​olleolleolle in mikel/mail#1616
• Drop unused "ad hoc" GH Actions workflow by @​olleolleolle in mikel/mail#1615
• include rfc822 as attachments by @​ahorek in mikel/mail#1389
• Address warning: URI::RFC3986_PARSER warnings by @​yahonda in mikel/mail#1620
• Add logger as a dependency for Ruby 3.4 warnings by @​yahonda in mikel/mail#1619
• Fix regression in content_type for text part after converted to multipart by @​jeremyevans in mikel/mail#1330

New Contributors

• @​nbennke made their first contribution in mikel/mail#1462

... (truncated)

Changelog

Sourced from mail's changelog.

== Version 2.9.0 (unreleased)

Breaking changes:

• Mail::Field::FIELDS_MAP now contains class names, not Class instances (c960657)

Compatibility:

• Update MIME-Version to have correct case per RFC 2045 @​mikel

Features:

• Updated README to improve around sending multipart mail @​kapfenho
• Add delivery_interceptors method to Mail class to fetch registered interceptors @​ghousemohamed

Code Improvements:

• Use Rake's default rakelib/ directory @​olleolleolle
• refactor: Use Dir.glob only once in gemspec's "files" directive @​olleolleolle
• Configure RSpec's zero-monkey patching mode @​olleolleolle
• Added support for JRuby 9.4 @​mikel
• Prefer __dir__ @​olleolleolle

Bug Fixes:

• Regression: Preserve message-level charset when adding parts (related to Rails ActionMailer) @​shields
• Regression: Adding a part should not reset the mail's charset to nil @​railsbob

Performance:

• reduce object allocations by replacing =~ and Regexp#match by Regexp#match? @​ahorek
• reduce object allocations by replacing String#unpack[0] by String#unpack1 @​ahorek

Please check 2-8-stable for previous changes.

Commits

• 490fe21 Prepare for 2.9.0 release
• 717f220 Bump to beta2
• d1d65b3 Merge pull request #1330 from jeremyevans/content-type-regression-fix
• 30302c7 Merge pull request #1619 from yahonda/add_dependency_logger
• 182f2be Merge pull request #1620 from yahonda/address_uri_rfc_3986_parser_warnings
• 73db11a Merge pull request #1389 from ahorek/attachments
• 26f413e rfc822 attachments
• a2da80f Address warning: URI::RFC3986_PARSER warnings
• 98c835a Add logger as a dependency for Ruby 3.4 warnings
• 9a7e2bf Drop unused GH Ation workflow (#1615)
• Additional commits viewable in compare view

Updates debug from 1.11.0 to 1.11.1

Release notes

Sourced from debug's releases.

v1.11.1

What's Changed

• command
  • b path: path_pattern is accepted in ruby/debug@1139d78
• fix
  • catch any exception on singletonclass by @​ko1 in ruby/debug#1163
  • use Kernel.__callee__ by @​ko1 in ruby/debug#1164
  • FileUtils is needed by @​ko1 in ruby/debug#1168
• catch up Ruby 4.0
  • Update imemo_mask to match ruby's by @​byroot in ruby/debug#1151
  • backtrace changes ruby/debug@24f95d6
• remote
  • fix(DAP): Return unverified breakpoints instead of unsuccessful response by @​dmlambo in ruby/debug#1161
• misc
  • omit on older version by @​ko1 in ruby/debug#1167

New Contributors

• @​byroot made their first contribution in ruby/debug#1151
• @​dmlambo made their first contribution in ruby/debug#1161

Full Changelog: ruby/debug@v1.11.0...v1.11.1

Commits

• bad4d38 v1.11.1
• 88d762c FileUtils is needed
• 553373a omit on older version
• c1c1c8e use Kernel.__callee__
• 24f95d6 catch up 4.0.0 backtrace change
• bc97d33 add a test for b path: ...
• 1139d78 support b path: path_expr
• 06342cd catch any exception on singletonclass
• 2791573 fix(DAP): Return unverified breakpoints instead of unsuccessful response
• 14c8a54 Update imemo_mask to match ruby's
• See full diff in compare view

Updates json-schema from 6.0.0 to 6.1.0

Release notes

Sourced from json-schema's releases.

v6.1.0

What's Changed

New Features 🎉

• minitest: Allow 6.x by @​bastelfreak in voxpupuli/json-schema#558
• bigdecimal: Allow 4.x by @​bastelfreak in voxpupuli/json-schema#557
• voxpupuli-rubocop: Update 4.2.0->5.1.0 by @​bastelfreak in voxpupuli/json-schema#559

Full Changelog: voxpupuli/json-schema@v6.0.0...v6.1.0

Changelog

Sourced from json-schema's changelog.

v6.1.0 (2025-12-21)

Full Changelog

Implemented enhancements:

• voxpupuli-rubocop: Update 4.2.0->5.1.0 #559 (bastelfreak)
• minitest: Allow 6.x #558 (bastelfreak)
• bigdecimal: Allow 4.x #557 (bastelfreak)

Commits

• 233ce05 Merge pull request #560 from bastelfreak/rel610
• 5b83130 Release 6.1.0
• 54a97e9 Merge pull request #559 from bastelfreak/vpr
• ccf2507 Merge pull request #557 from bastelfreak/bigd
• 13a5e52 Merge pull request #558 from bastelfreak/minitest
• 659c4cf rubocop: autofix
• 82a393e voxpupuli-rubocop: Update 4.2.0->5.1.0
• 8d6257d minitest: Allow 6.x
• 9f52b34 bigdecimal: Allow 4.x
• 45b8856 Merge pull request #555 from voxpupuli/dependabot/github_actions/actions/uplo...
• Additional commits viewable in compare view

Updates rspec-rails from 8.0.2 to 8.0.3

Changelog

Sourced from rspec-rails's changelog.

8.0.3 / 2026-02-17

Full Changelog

Bug Fixes:

• Fix insertion order of controller prefix in the view lookup_context. (Stephen Nelson, #2749)
• Ensure rails stats looks for specs using application root rather than working directory. (Marvin Tangpos, #2879)

Commits

• 58d0380 Fix changelog link
• aa37b05 Drop main from maintenance branch
• 7ec5827 v8.0.3
• a7b0ad4 Merge pull request #2882 from tylerhunt/fix-error-typo
• 42d3a65 Add note about supported versions
• d547cb8 Bump actions/checkout from 5 to 6
• 8530dd4 Bump actions/checkout from 4 to 5
• 440b3c3 Switch to gem.coop in Gemfile
• 76cb716 Update Code of Conduct based on Contributor Covenant v3
• 577a301 Changelog for #2879
• Additional commits viewable in compare view

Updates brakeman from 7.1.0 to 8.0.2

Release notes

Sourced from brakeman's releases.

8.0.2

• Reline console control should use stderr
• Fix logger cleanup based method (Imran Iqbal)

8.0.1

• Fix for disappearing cursor when no warnings are reported

8.0.0

• Complete revamp of scan progress output and logging
• --skip-libs removed (#1839
• --index-libs removed
• Fix qualified constant lookup to respect module/class context (Mike Dalessio)
• Fix singleton method prefixes (viralpraxis)
• Faster file globbing for templates (Mikael Henriksson)
• No longer produce weak dynamic render path warnings
• Replace Erubis with Erubi (#1970)

7.1.2

This was released on December 25, 2025

• Update ruby_parser to remove max version restriction (Chedli Bourguiba)
• Increase minimum Ruby version to 3.2.0
• Reduce SQL injection false positives from count (and other) calls (#1936)
• Remove more XSS false positives related to Haml attribute builder
• Update Minitest version to 6.0

7.1.1

• Exclude directories before searching for files (#1925)
• Check for unsafe SQL when two arguments are passed to AR methods (Patrick Brinich-Langlois)
• Fix SQL injection check for calculate method (Rohan Sharma)
• Check each side of or SQL arguments (#1935)
• Consider Tempfile.create.path as safe input (Ali Ismayilov)
• Fix false positive when calling with_content on ViewComponents (Peer Allan)
• Add FilePath#to_path for Ruby 3.5 compatibility (S.H.)
• Ignore attribute builder in Haml 6 (#1952)
• Word wrap text report output in pager

Changelog

Sourced from brakeman's changelog.

8.0.2 - 2026-02-03

• Reline console control should use stderr
• Fix logger cleanup based method (Imran Iqbal)

8.0.1 - 2026-01-29

• Make sure to reset the cursor even when exit code is 0

8.0.0 - 2026-01-29

• No longer produce weak dynamic render path warnings
• --skip-libs removed
• --index-libs removed
• Revamp of scan progress output and logging
• Faster file globbing for templates (Mikael Henriksson)
• Fix singleton method prefixes (viralpraxis)
• Fix qualified constant lookup to respect module/class context (Mike Dalessio)
• Replace Erubis with Erubi

7.1.2 - 2025-12-25

• Update ruby_parser to remove version restriction (Chedli Bourguiba)
• Raise minimum required Ruby to 3.2.0
• Use Minitest 6.0
• Reduce SQL injection false positives from count calls
• Ignore more Haml attribute builder methods

7.1.1 - 2025-11-03

• Fix false positive when calling with_content on ViewComponents (Peer Allan)
• Word wrap text output in pager
• Consider Tempfile.create.path as safe input (Ali Ismayilov)
• Exclude directories before searching for files
• Check each side of or SQL arguments
• Ignore attribute builder in Haml 6
• Add FilePath#to_path for Ruby 3.5 compatibility (S-H-GAMELINKS)
• Fix SQL injection check for calculate method (Rohan Sharma)
• Fix missing td in HTML report (John Hawthorn)
• Check for unsafe SQL when two arguments are passed to AR methods (Patrick Brinich-Langlois)

Commits

• c072892 Bump to 8.0.2
• b3ad4c8 Merge pull request #2007 from presidentbeef/add_ruby_4_0_to_tests
• 0fb669a Add Ruby 4.0 to test matrix
• c531af9 Merge pull request #2006 from presidentbeef/set_reline_to_use_stderr
• 3028a07 Use correct output destination with Reline
• a0cbbc9 Merge pull request #2004 from imran-iq/imran/push-rpwxzowkpovk
• bfbc5c9 Fix argument error to logger.cleanup
• 406e8f1 Bump to 8.0.1
• 6d37b1c Merge pull request #2002 from presidentbeef/always_quit
• 192fcb9 Make sure to quit after running
• Additional commits viewable in compare view

Updates bundler-audit from 0.9.2 to 0.9.3

Release notes

Sourced from bundler-audit's releases.

0.9.3

• Officially support Ruby 3.4, 3.5, and 4.0.
• Added support for Bundler 4.x.
• Fixed typos in API documentation.

CLI

• Ensure that the bundler-audit check command honors the BUNDLER_AUDIT_DB environment variable.

Changelog

Sourced from bundler-audit's changelog.

0.9.3 / 2025-11-28

• Officially support Ruby 3.4, 3.5, and 4.0.
• Added support for Bundler 4.x.
• Fixed typos in API documentation.

CLI

• Ensure that the bundler-audit check command honors the BUNDLER_AUDIT_DB environment variable.

Commits

• f8b06eb Updated the ChangeLog for 0.9.3.
• e4fb10a Version bump to 0.9.3.
• 34cd522 Added Ruby 4.0 to the CI matrix.
• 22da9d7 Added Ruby 3.5 to the CI matrix.
• 0c2afaf Require rubygems-tasks ~> 0.3 for Ruby 3.5 and 4.0.
• 309d203 Allow using bundler 4.x
• d40dc75 Remove syntax highlighting from example output.
• 91a912f Be consistent and only use markdown code fences.
• fc1bc0a Fixed typo in @return tag.
• 276e065 Update RubyGems in GitHub Actions CI (#406)
• Additional commits viewable in compare view

Updates hotwire-livereload from 2.0.0 to 2.1.1

Release notes

Sourced from hotwire-livereload's releases.

v2.1.1

What's Changed

• Add support for Itsi server by @​qd3v in #75
• Add support for Falcon server by @​cannikin in #76

New Contributors

• @​qd3v made their first contribution in kirillplatonov/hotwire-livereload#75
• @​cannikin made their first contribution in kirillplatonov/hotwire-livereload#76

Full Changelog: kirillplatonov/hotwire-livereload@v2.0.0...v2.1.1

Commits

• 88f909b Bump version for 2.1.1
• 15ab38e Merge branch 'main' of github.com:kirillplatonov/hotwire-livereload
• ddbd5f1 Bump version for 2.1.0
• e7a2db2 Add support for Falcon server (#76)
• a5928aa Add Itsi server support (#75)
• 83c8abb Update installation guide in README
• See full diff in compare view

Updates rubocop-factory_bot from 2.27.1 to 2.28.0

Release notes

Sourced from rubocop-factory_bot's releases.

RuboCop FactoryBot v2.28.0

• Fix an error for FactoryBot/AssociationStyle cop when trait is not inside factory block. (@​viralpraxis)
• Fix an error for FactoryBot/ConsistentParenthesesStyle cop when using keyword splat argument. (@​viralpraxis)
• Fix a false negative for FactoryBot/SyntaxMethods when method is used inside a module. (@​lovro-bikic)
• Fix FactoryBot/AssociationStyle false positives on reserved methods. (@​r7kamura)

Changelog

Sourced from rubocop-factory_bot's changelog.

2.28.0 (2025-11-12)

• Fix an error for FactoryBot/AssociationStyle cop when trait is not inside factory block. ([@​viralpraxis])
• Fix an error for FactoryBot/ConsistentParenthesesStyle cop when using keyword splat argument. ([@​viralpraxis])
• Fix a false negative for FactoryBot/SyntaxMethods when method is used inside a module. ([@​lovro-bikic])
• Fix FactoryBot/AssociationStyle false positives on reserved methods. ([@​r7kamura])

Commits

• 0efba36 Merge pull request #161 from rubocop/bump
• cbcc7a3 Bump version to 2.28.0
• 8b9dda6 Merge pull request #160 from r7kamura/association-style-reserved-methods
• 817d4d1 Fix FactoryBot/AssociationStyle false positives on reserved methods
• 03775fe Merge pull request #156 from rubocop/dependabot/github_actions/actions/checko...
• 54ad63e Bump actions/checkout from 4 to 5
• cfa98ff Merge pull request #155 from lovro-bikic/syntax-methods-false-negative
• 75bed26 Fix false negative for SyntaxMethods cop when inside a namespace
• 50d4167 Merge pull request #152 from viralpraxis/fix-an-error-for-factory-bot-consist...
• 483180c Fix an error for FactoryBot/ConsistentParenthesesStyle cop
• Additional commits viewable in compare view

Updates rubocop-rails from 2.33.3 to 2.34.3

Release notes

Sourced from rubocop-rails's releases.

RuboCop Rails v2.34.3

Bug fixes

• #1473: Fix an error for Rails/SelectMap when select(:column_name).map(&:column_name) with parentheses. (@​koic)
• #1569: Fix an error in Rails/SelectMap when multiple select calls are present before map. (@​koic)

RuboCop Rails v2.34.2

Changes

• #1565: Make Rails/Presence allow index access methods. (@​koic)

RuboCop Rails v2.34.1

Bug fixes

• #1556: Fix an error for Rails/Env when assigning Rails.env. (@​koic)
• #1557: Fix false positives for Rails/Presence with comparison and assignment operators. (@​davidenglishmusic)
• #1558: This PR fixes incorrect autocorrect for Rails/RedirectBackOrTo when additional options as double splat are used. (@​koic)
• #1561: Fix incorrect autocorrect for Rails/RedirectBackOrTo when fallback_location argument is a hash and the call has no argument parentheses. (@​koic)

RuboCop Rails v2.34.0

New features

• #1520: New Rails/HttpStatusNameConsistency cop. (@​tuxagon)
• #1376: Add new Rails/Env cop. (@​cdudas17)
• #1541: Add new Rails/RedirectBackOrTo cop to suggest using redirect_back_or_to instead of redirect_back with fallback_location. (@​davidenglishmusic)

Bug fixes

• #1539: Fix an error in Rails/ActionControllerFlashBeforeRender when flash is used inside a block followed by method chaining. (@​koic)
• #1553: Fix false positives for Rails/OutputSafety when using non-interpolated multiline heredoc. (@​koic)
• #1532: Fix false positives for Rails/FindByOrAssignmentMemoization when assigning a memoization instance variable at initialize method. (@​koic)
• #1549: Fix Rails/InverseOf cop false positives when using dynamic association options. ([@​viralpraxis][])

Changes

• #1537: Add abort to the Rails/Exit cop. ([@​adamstegman][])
• #932: Add support for chained method calls in Rails/Presence. ([@​vlad-pisanov][])
• #1525: Change Rails::HelperInstanceVariable not to detect offenses for instance variables within classes. ([@​viralpraxis][])
• #1481: Recognize Rails.env.to_sym in Rails/EnvironmentComparison. ([@​lovro-bikic][])

... (truncated)

Changelog

Sourced from rubocop-rails's changelog.

2.34.3 (2026-01-03)

Bug fixes

• #1473: Fix an error for Rails/SelectMap when select(:column_name).map(&:column_name) with parentheses. ([@​koic][])
• #1569: Fix an error in Rails/SelectMap when multiple select calls are present before map. ([@​koic][])

2.34.2 (2025-11-29)

Changes

• #1565: Make Rails/Presence allow index access methods. ([@​koic][])

2.34.1 (2025-11-24)

Bug fixes

• #1556: Fix an error for Rails/Env when assigning Rails.env. ([@​koic][])
• #1557: Fix false positives for Rails/Presence with comparison and assignment operators. ([@​davidenglishmusic][])
• #1558: This PR fixes incorrect autocorrect for Rails/RedirectBackOrTo when additional options as double splat are used. ([@​koic][])
• #1561: Fix incorrect autocorrect for Rails/RedirectBackOrTo when fallback_location argument is a hash and the call has no argument parentheses. ([@​koic][])

2.34.0 (2025-11-16)

New features

• #1520: New Rails/HttpStatusNameConsistency cop. ([@​tuxagon][])
• #1376: Add new Rails/Env cop. ([@​cdudas17][])
• #1541: Add new Rails/RedirectBackOrTo cop to suggest using redirect_back_or_to instead of redirect_back with fallback_location. ([@​davidenglishmusic][])

Bug fixes

• #1539: Fix an error in Rails/ActionControllerFlashBeforeRender when flash is used inside a block followed by method chaining. ([@​koic][])
• #1553: Fix false positives for Rails/OutputSafety when using non-interpolated multiline heredoc. ([@​koic][])
• #1532: Fix false positives for Rails/FindByOrAssignmentMemoization when assigning a memoization instance variable at initialize method. ([@​koic][])
• #1549: Fix Rails/InverseOf cop false positives when using dynamic association options. ([@​viralpraxis][])

Changes

• #1537: Add abort to the Rails/Exit cop. ([@​adamstegman][])
• #932: Add support for chained method calls in Rails/Presence. ([@​vlad-pisanov][])
• #1525: Change Rails::HelperInstanceVariable not to detect offenses for instance variables within classes. ([@​viralpraxis][])
• #1481: Recognize Rails.env.to_sym in Rails/EnvironmentComparison. ([@​lovro-bikic][])

2.33.4 (2025-09-27)

Bug fixes

• #1530: Fix an incorrect autocorrect for Rails/FindByOrAssignmentMemoization when using endless method definition. ([@​koic][])
• #1522: Fix an error for Rails/FindBy when where takes a block. ([@​earlopain][])

... (truncated)

Commits

• 31e5404 Cut 2.34.3
• ef1a374 Update Changelog
• ab178ab Bump license years to 2026
• 6415859 Merge pull request #1575 from ydakuka/fix-typos-and-improve-naming-inclusive-...
• 54fcb88 Fix typos and improve Naming/InclusiveLanguage configuration
• 2923a13 CI against Ruby 4.0
• 9447337 Use RuboCop RSpec 3.8.0 for development
• 3e89a64 Reset the docs version
• 4df528f Merge pull request #1573 from koic/fix_an_error_for_rails_select_map
• 15c4c74 Fix an error for Rails/SelectMap
• Additional commits viewable in compare view

Updates rubocop-rspec from 3.7.0 to 3.9.0

Release notes

Sourced from rubocop-rspec's releases.

RuboCop RSpec v3.9.0

• Fix a false positive for RSpec/LeakyLocalVariable when variables are used only in example metadata (e.g., skip messages). (@​ydah)
• Fix a false positive for RSpec/ScatteredSetup when the hook is defined inside a class method. (@​d4rky-pl)
• Fix a false positive for RSpec/DescribedClass inside dynamically evaluated blocks (class_eval, module_eval, instance_eval, class_exec, module_exec, instance_exec). (@​sucicfilip)
• Add new cop RSpec/Output. (@​kevinrobell-st)

RuboCop RSpec v3.8.0

• Add new cop RSpec/LeakyLocalVariable. (@​lovro-bikic)
• Bump RuboCop requirement to +1.81. (@​ydah)
• Fix a false positive for RSpec/LetSetup when let! used in outer scope. (@​ydah)
• Fix a false positive for RSpec/ReceiveNever cop when allow(...).to receive(...).never. (@​ydah)
• Fix detection of nameless doubles with methods in RSpec/VerifiedDoubles. (@​ushi-as)
• Improve an offense message for RSpec/RepeatedExample cop. (@​ydah)
• Let RSpec/SpecFilePathFormat leverage ActiveSupport inflections when configured. (@​corsonknowles, @​bquorning)

Changelog

Sourced from rubocop-rspec's changelog.

3.9.0 (2026-01-07)

• Fix a false positive for RSpec/LeakyLocalVariable when variables are used only in example metadata (e.g., skip messages). ([@​ydah])
• Fix a false positive for RSpec/ScatteredSetup when the hook is defined inside a class method. ([@​d4rky-pl])
• Fix a false positive for RSpec/DescribedClass inside dynamically evaluated blocks (class_eval, module_eval, instance_eval, class_exec, module_exec, instance_exec). ([@​sucicfilip])
• Add new cop RSpec/Output. ([@​kevinrobell-st])

3.8.0 (2025-11-12)

• Add new cop RSpec/LeakyLocalVariable. ([@​lovro-bikic])
• Bump RuboCop requirement to +1.81. ([@​ydah])
• Fix a false positive for RSpec/LetSetup when let! used in outer scope. ([@​ydah])
• Fix a false positive for RSpec/ReceiveNever cop when allow(...).to receive(...).never. ([@​ydah])
• Fix detection of nameless doubles with methods in RSpec/VerifiedDoubles. ([@​ushi-as])
• Improve an offense message for RSpec/RepeatedExample cop. ([@​ydah])
• Let RSpec/SpecFilePathFormat leverage ActiveSupport inflections when configured. ([@​corsonknowles], [@​bquorning])

Commits

• f7aecf0 Merge pull request #2151 from rubocop/release
• 893a25b Bump version to 3.9.0
• 91ad43d Merge pull request #2150 from kevinrobell-st/patch-1
• 802b386 Fix CHANGELOG
• a03e0c7 Merge pull request #2149 from rubocop/ci-test-ruby-4.0
• 68f25d9 Temporarily add irb to Gemfile
• b9e50b8 CI: Test with Ruby 4.0
• b63bcd8 Merge pull request #2148 from sucicfilip/fix-described-class-inside-eval
• 278245a Fix RSpec/DescribedClass to ignore *_eval and *_exec blocks
• Description has been truncated