Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Config Migration Needed

• Select this checkbox to let Renovate create an automated Config Migration PR.

Rate-Limited

The following updates are currently rate-limited. To force their creation now, click on a checkbox below.

• chore(deps): update aws-actions/configure-aws-credentials action to v5
• chore(deps): update peter-evans/repository-dispatch action to v4
• 🔐 Create all rate-limited PRs at once 🔐

Pending Status Checks

The following updates await pending status checks. To force their creation now, click on a checkbox below.

• chore(deps): update dependency puma to '~> 7.2.0'

---

Warning

Renovate failed to look up the following dependencies: Failed to look up github-tags package cli/gh-action.

Files affected: .github/workflows/auto-approve-merge-bot.yml

---

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• chore(deps): update dependency rails to '~> 7.2.3'
• chore(deps): update dependency ruby
• chore(deps): update dependency i18n-tasks to '~> 1.1.0'
• chore(deps): update lewagon/wait-on-check-action action to v1.5.0
• chore(deps): update actions/checkout action to v6
• chore(deps): update actions/github-script action to v8
• chore(deps): update actions/upload-artifact action to v6
• chore(deps): update actions/upload-pages-artifact action to v4
• chore(deps): update dependency pagy to v43
• chore(deps): update dependency ruby to v4
• Click on this checkbox to rebase all open PRs at once

PR Closed (Blocked)

The following updates are blocked by an existing closed PR. To recreate the PR, click on a checkbox below.

• chore(deps): update dependency simplecov to v0.22.0
• chore(deps): update dependency rails to v8

Detected Dependencies

bundler (1)

Gemfile (53)

• ruby 3.4.5 → [Updates: 3.4.7, 4.0.1]
• rails '~> 7.2.2.0' → [Updates: '~> 7.2.3', '~> 8.1.1']
• pg '~> 1.1'
• puma '~> 7.1.0' → [Updates: '~> 7.2.0']
• redis '~> 5.0'
• bcrypt '~> 3.1.7'
• bootsnap '>= 1.4.4'
• rexml '~> 3.4.0'
• wkhtmltopdf-binary lock file @ 0.12.6.6
• pdfkit lock file @ 0.8.7.3
• money lock file @ 6.16.0
• countries lock file @ 5.7.0
• strong_migrations lock file @ 1.6.4
• figaro lock file @ 1.2.0
• capistrano lock file @ 3.19.1
• capistrano-rails lock file @ 1.6.3
• capistrano-passenger lock file @ 0.2.1
• capistrano-rbenv lock file @ 2.2.0
• jwt lock file @ 2.8.2
• hotwire-rails lock file @ 0.1.3
• importmap-rails lock file @ 2.0.1
• sprockets-rails lock file @ 3.5.1
• pg_search lock file @ 2.3.6
• pagy "~> 9.0" → [Updates: "~> 43.0"]
• simpleidn '0.2.3'
• faraday lock file @ 2.13.3
• dry-initializer '~> 3.2.0'
• dry-validation lock file @ 1.10.0
• net-smtp lock file @ 0.5.1
• net-imap lock file @ 0.5.9
• net-pop lock file @ 0.1.2
• apipie-rails "~> 1.5.0"
• omniauth '>=2.0.0'
• omniauth-rails_csrf_protection lock file @ 1.0.2
• i18n-tasks '~> 1.0.12' → [Updates: '~> 1.1.0']
• uri '>= 1.0.4'
• syslog lock file @ 0.3.0
• byebug lock file @ 11.1.3
• rspec-rails lock file @ 6.1.3
• factory_bot_rails lock file @ 6.4.3
• rubocop-rails lock file @ 2.25.1
• bundle-audit lock file @ 0.1.0
• brakeman lock file @ 6.0.1
• observer lock file @ 0.1.2
• abbrev lock file @ 0.1.2
• listen '~> 3.3'
• faker lock file @ 3.4.2
• selenium-webdriver lock file @ 4.10.0
• simplecov '0.17.1' → [Updates: '0.22.0']
• webdrivers lock file @ 5.3.1
• webmock lock file @ 3.23.1
• database_cleaner lock file @ 2.0.2
• database_cleaner-active_record lock file @ 2.2.0

github-actions (6)

.github/workflows/auto-approve-merge-bot.yml (5)

• actions/checkout v5 → [Updates: v6]
• cli/gh-action v3
• hmarr/auto-approve-action v3
• dependabot/fetch-metadata v2
• lewagon/wait-on-check-action v1.4.1 → [Updates: v1.5.0]

.github/workflows/deploy-complete.yml (1)

• actions/github-script v7 → [Updates: v8]

.github/workflows/deploy-docs.yml (8)

• actions/checkout v5 → [Updates: v6]
• ruby/setup-ruby v1
• actions/upload-pages-artifact v3 → [Updates: v4]
• actions/deploy-pages v4
• postgres 18
• ubuntu 24.04
• ruby 3.4.5 → [Updates: 3.4.8, 4.0.1]
• ubuntu 24.04

.github/workflows/deploy-pr-staging.yml (4)

• actions/checkout v4 → [Updates: v6]
• aws-actions/configure-aws-credentials v4 → [Updates: v5]
• actions/create-github-app-token v2
• peter-evans/repository-dispatch v3 → [Updates: v4]

.github/workflows/manual-destroy-staging.yml (2)

• actions/create-github-app-token v2
• peter-evans/repository-dispatch v3 → [Updates: v4]

.github/workflows/ruby.yml (13)

• actions/checkout v5 → [Updates: v6]
• ruby/setup-ruby v1
• actions/checkout v5 → [Updates: v6]
• ruby/setup-ruby v1
• actions/checkout v5 → [Updates: v6]
• ruby/setup-ruby v1
• qltysh/qlty-action v2
• actions/upload-artifact v5 → [Updates: v6]
• ubuntu 24.04
• ruby 3.4.5 → [Updates: 3.4.8, 4.0.1]
• ubuntu 24.04
• ruby 3.4.5 → [Updates: 3.4.8, 4.0.1]
• postgres 18

ruby-version (1)

.ruby-version (1)

• ruby 3.4.5 → [Updates: 3.4.7, 4.0.1]

---

• Check this box to trigger a request for Renovate to run again on this repository