Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): bump sinatra, rack-protection, rails, sprockets, rails-html-sanitizer, sidekiq, govuk-components, prawn, rubocop-performance, standard, dotenv-rails and factory_bot_rails #3146

Closed
wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 18, 2024

Bumps sinatra, rack-protection, rails, sprockets, rails-html-sanitizer, sidekiq, govuk-components, prawn, rubocop-performance, standard, dotenv-rails and factory_bot_rails. These dependencies needed to be updated together.
Updates sinatra from 3.0.5 to 4.1.0

Changelog

Sourced from sinatra's changelog.

4.1.0 / 2024-11-18

  • New: Add host_authorization setting (#2053)
    • Defaults to .localhost, .test and any IP address in development mode.
    • Security: addresses CVE-2024-21510.
  • Fix: Return an instance of Sinatra::IndifferentHash when calling #except (#2044)
  • Fix: Address warning from URI for Ruby 3.4 (#2060)
  • Fix: rackup no longer depends on WEBrick, recommend Puma instead (4a558503)
  • Fix: Zeitwerk 2.7.0+ compatibility (#2050)
  • Fix: Address warning about Hash construction for Ruby 3.4 (#2028)
  • Fix: Declare missing dependencies for Ruby 3.5 (#2032)
  • Fix: Compatibility with --enable-frozen-string-literal (#2033)
  • Fix: Rack 3.1 compatibility (#2035)
    • Don't depend on Rack::Logger
    • Don't delete content-length header when Rack::Files is used

4.0.0. / 2024-01-19

  • New: Add support for Rack 3 (#1857)

    • Note: you may want to read the [Rack 3 Upgrade Guide]
  • Require Ruby 2.7.8 as minimum Ruby version (#1993)

  • Breaking change: Drop support for Rack 2 (#1857)

    • Note: when using Sinatra to start the web server, you now need the rackup gem installed
  • Breaking change: Remove the IndifferentHash initializer (#1982)

  • Breaking change: Disable session_hijacking protection by default (#1984)

  • Breaking change: Remove Rack::Protection::EncryptedCookie (#1989)

    • Note: cookies are still encrypted (by [Rack::Session::Cookie])

#1857: sinatra/sinatra#1857 #1993: sinatra/sinatra#1993 #1982: sinatra/sinatra#1982 #1984: sinatra/sinatra#1984 #1989: sinatra/sinatra#1989 [Rack::Session::Cookie]: https://github.com/rack/rack-session [Rack 3 Upgrade Guide]: https://github.com/rack/rack/blob/main/UPGRADE-GUIDE.md

3.2.0 / 2023-12-29

  • New: Add #except method to Sinatra::IndifferentHash (#1940)

  • New: Use Exception#detailed_message to show backtrace (#1952)

  • New: Add Sinatra::HamlHelpers to sinatra-contrib (#1960)

  • Fix: Add base64 to rack-protection runtime dependencies (#1946)

... (truncated)

Commits

Updates rack-protection from 3.0.5 to 4.1.0

Changelog

Sourced from rack-protection's changelog.

4.1.0 / 2024-11-18

  • New: Add host_authorization setting (#2053)
    • Defaults to .localhost, .test and any IP address in development mode.
    • Security: addresses CVE-2024-21510.
  • Fix: Return an instance of Sinatra::IndifferentHash when calling #except (#2044)
  • Fix: Address warning from URI for Ruby 3.4 (#2060)
  • Fix: rackup no longer depends on WEBrick, recommend Puma instead (4a558503)
  • Fix: Zeitwerk 2.7.0+ compatibility (#2050)
  • Fix: Address warning about Hash construction for Ruby 3.4 (#2028)
  • Fix: Declare missing dependencies for Ruby 3.5 (#2032)
  • Fix: Compatibility with --enable-frozen-string-literal (#2033)
  • Fix: Rack 3.1 compatibility (#2035)
    • Don't depend on Rack::Logger
    • Don't delete content-length header when Rack::Files is used

4.0.0. / 2024-01-19

  • New: Add support for Rack 3 (#1857)

    • Note: you may want to read the [Rack 3 Upgrade Guide]
  • Require Ruby 2.7.8 as minimum Ruby version (#1993)

  • Breaking change: Drop support for Rack 2 (#1857)

    • Note: when using Sinatra to start the web server, you now need the rackup gem installed
  • Breaking change: Remove the IndifferentHash initializer (#1982)

  • Breaking change: Disable session_hijacking protection by default (#1984)

  • Breaking change: Remove Rack::Protection::EncryptedCookie (#1989)

    • Note: cookies are still encrypted (by [Rack::Session::Cookie])

#1857: sinatra/sinatra#1857 #1993: sinatra/sinatra#1993 #1982: sinatra/sinatra#1982 #1984: sinatra/sinatra#1984 #1989: sinatra/sinatra#1989 [Rack::Session::Cookie]: https://github.com/rack/rack-session [Rack 3 Upgrade Guide]: https://github.com/rack/rack/blob/main/UPGRADE-GUIDE.md

3.2.0 / 2023-12-29

  • New: Add #except method to Sinatra::IndifferentHash (#1940)

  • New: Use Exception#detailed_message to show backtrace (#1952)

  • New: Add Sinatra::HamlHelpers to sinatra-contrib (#1960)

  • Fix: Add base64 to rack-protection runtime dependencies (#1946)

... (truncated)

Commits

Updates rails from 7.0.8.4 to 7.2.2

Release notes

Sourced from rails's releases.

7.2.2

Active Support

  • Include options when instrumenting ActiveSupport::Cache::Store#delete and ActiveSupport::Cache::Store#delete_multi.

    Adam Renberg Tamm

  • Print test names when running rails test -v for parallel tests.

    John Hawthorn, Abeid Ahmed

Active Model

  • Fix regression in alias_attribute to work with user defined methods.

    alias_attribute would wrongly assume the attribute accessor was generated by Active Model.

    class Person
      include ActiveModel::AttributeMethods
    define_attribute_methods :name
    attr_accessor :name
    alias_attribute :full_name, :name
    end
    person.full_name # => NoMethodError: undefined method `attribute' for an instance of Person

    Jean Boussier

Active Record

  • Fix support for query_cache: false in database.yml.

    query_cache: false would no longer entirely disable the Active Record query cache.

    zzak

  • Set .attributes_for_inspect to :all by default.

    For new applications it is set to [:id] in config/environment/production.rb.

    In the console all the attributes are always shown.

    Andrew Novoselac

... (truncated)

Commits
  • d0dcb8f Preparing for 7.2.2 release
  • 9f24f75 Add yarn.lock allowed dirty files
  • ad485aa Merge pull request #52951 from Ridhwana/Ridhwana/active-record-validations [c...
  • f6916e7 Merge pull request #53494 from zzak/re-53492
  • a7858b5 Merge pull request #53472 from p8/activerecord/improve-attributes-for-inspect...
  • e6a8acd Merge pull request #53475 from p8/activerecord/show-all-attributes-in-console
  • 91aac4a Merge pull request #53484 from zzak/query_cache-config-disable
  • fe5f624 Better wording for config.action_dispatch.show_exceptions [ci-skip] (#53483)
  • 15872b4 Merge pull request #53473 from p8/activerecord/update-attributes-for-inspect-...
  • e1cccdc Add CHANGELOG entry for 170e6c178b7358a87a7304bdf80273e0b153f6fd
  • Additional commits viewable in compare view

Updates sprockets from 3.7.2 to 4.2.1

Release notes

Sourced from sprockets's releases.

4.2.1

What's Changed

New Contributors

Full Changelog: rails/sprockets@v4.2.0...v4.2.1

4.2.0

What's Changed

New Contributors

Full Changelog: rails/sprockets@v4.1.1...v4.2.0

v4.1.1

  • Fix Sprockets::Server to return response headers to compatible with with Rack::Lint 2.0.

Full Changelog: rails/sprockets@v4.1.0...v4.1.1

v4.1.0

What's Changed

... (truncated)

Changelog

Sourced from sprockets's changelog.

4.2.1

  • Fix for precompile issues when multiple extensions map to the same MIME type (eg. .jpeg / .jpg). #781
  • Fix application/css-sourcemap+json charset #764
  • Fix compatibility with Rack 2 applications. #790

4.2.0

  • Rack 3 compatibility. #758
  • Fix thread safety of Sprockets::CachedEnvironment and Sprockets::Cache::MemoryStore. #771
  • Add support for Rack 3.0. Headers set by sprockets will now be lower case. #758
  • Make Sprockets::Utils.module_include thread safe on JRuby. #759
  • Fix typo in asset.rb file. #768

4.1.1

  • Fix Sprockets::Server to return response headers to be compatible with Rack::Lint 2.0.

4.1.0

  • Allow age to be altered in asset:clean rake task.
  • Fix Sprockets::Server to return lower-cased response headers to comply with Rack::Lint 3.0. #744
  • Adding new directive depend_on_directory #668
  • Fix application/js-sourcemap+json charset #669
  • Fix CachedEnvironment caching nil values #723
  • Process *.jst.ejs.erb files with ERBProcessor #674
  • Fix cache key for coffee script processor to be dependent on the filename #670

4.0.3

  • Fix Manifest#find yielding from a Promise causing issue on Ruby 3.1.0-dev. #720
  • Better detect the ERB version to avoid deprecation warnings. #719
  • Allow assets already fingerprinted to be served through Sprockets::Server
  • Do not fingerprint files that already contain a valid digest in their name
  • Remove remaining support for Ruby < 2.4.#672

4.0.2

  • Fix etag and digest path compilation that were generating string with invalid digest since 4.0.1.

4.0.1

  • Fix for Ruby 2.7 keyword arguments warning in base.rb. #660
  • Fix for when x_sprockets_linecount is missing from a source map.
  • Fix subresource integrity to match the digest of the asset.

4.0.0

  • Fixes for Ruby 2.7 keyword arguments warnings #625
  • Manifest files are sorted alphabetically #626

... (truncated)

Commits
  • 5b040f3 Prepare for 4.2.1
  • 0a5879d Remove check CHANGELOG action
  • 8ee21cf Use Ruby LSP instead of rebornix.Ruby
  • 5d26375 Merge pull request #764 from chadlwilson/fix-css-sourcemap-default-charset
  • 572235a Merge branch 'main' into fix-css-sourcemap-default-charset
  • 42f7d5e Merge pull request #790 from skipkayhil/hm-fix-rails-7-compat
  • d0de178 Merge pull request #768 from jpbalarini/patch-1
  • 5d795a7 Fix header casing compatibility with Rails 7
  • 6554b6d Merge pull request #791 from skipkayhil/hm-fix-minitest-casing
  • 4be779f Fix Minitest constant name in tests
  • Additional commits viewable in compare view

Updates rails-html-sanitizer from 1.4.4 to 1.6.0

Release notes

Sourced from rails-html-sanitizer's releases.

1.6.0 / 2023-05-26

  • Dependencies have been updated:

    • Loofah ~>2.21 and Nokogiri ~>1.14 for HTML5 parser support
    • As a result, required Ruby version is now >= 2.7.0

    Security updates will continue to be made on the 1.5.x release branch as long as Rails 6.1 (which supports Ruby 2.5) is still in security support.

    Mike Dalessio

  • HTML5 standards-compliant sanitizers are now available on platforms supported by Nokogiri::HTML5. These are available as:

    • Rails::HTML5::FullSanitizer
    • Rails::HTML5::LinkSanitizer
    • Rails::HTML5::SafeListSanitizer

    And a new "vendor" is provided at Rails::HTML5::Sanitizer that can be used in a future version of Rails.

    Note that for symmetry Rails::HTML4::Sanitizer is also added, though its behavior is identical to the vendor class methods on Rails::HTML::Sanitizer.

    Users may call Rails::HTML::Sanitizer.best_supported_vendor to get back the HTML5 vendor if it's supported, else the legacy HTML4 vendor.

    Mike Dalessio

  • Module namespaces have changed, but backwards compatibility is provided by aliases.

    The library defines three additional modules:

    • Rails::HTML for general functionality (replacing Rails::Html)
    • Rails::HTML4 containing sanitizers that parse content as HTML4
    • Rails::HTML5 containing sanitizers that parse content as HTML5

    The following aliases are maintained for backwards compatibility:

    • Rails::Html points to Rails::HTML
    • Rails::HTML::FullSanitizer points to Rails::HTML4::FullSanitizer
    • Rails::HTML::LinkSanitizer points to Rails::HTML4::LinkSanitizer
    • Rails::HTML::SafeListSanitizer points to Rails::HTML4::SafeListSanitizer

    Mike Dalessio

  • LinkSanitizer always returns UTF-8 encoded strings. SafeListSanitizer and FullSanitizer already ensured this encoding.

... (truncated)

Changelog

Sourced from rails-html-sanitizer's changelog.

1.6.0 / 2023-05-26

  • Dependencies have been updated:

    • Loofah ~>2.21 and Nokogiri ~>1.14 for HTML5 parser support
    • As a result, required Ruby version is now >= 2.7.0

    Security updates will continue to be made on the 1.5.x release branch as long as Rails 6.1 (which supports Ruby 2.5) is still in security support.

    Mike Dalessio

  • HTML5 standards-compliant sanitizers are now available on platforms supported by Nokogiri::HTML5. These are available as:

    • Rails::HTML5::FullSanitizer
    • Rails::HTML5::LinkSanitizer
    • Rails::HTML5::SafeListSanitizer

    And a new "vendor" is provided at Rails::HTML5::Sanitizer that can be used in a future version of Rails.

    Note that for symmetry Rails::HTML4::Sanitizer is also added, though its behavior is identical to the vendor class methods on Rails::HTML::Sanitizer.

    Users may call Rails::HTML::Sanitizer.best_supported_vendor to get back the HTML5 vendor if it's supported, else the legacy HTML4 vendor.

    Mike Dalessio

  • Module namespaces have changed, but backwards compatibility is provided by aliases.

    The library defines three additional modules:

    • Rails::HTML for general functionality (replacing Rails::Html)
    • Rails::HTML4 containing sanitizers that parse content as HTML4
    • Rails::HTML5 containing sanitizers that parse content as HTML5

    The following aliases are maintained for backwards compatibility:

    • Rails::Html points to Rails::HTML
    • Rails::HTML::FullSanitizer points to Rails::HTML4::FullSanitizer
    • Rails::HTML::LinkSanitizer points to Rails::HTML4::LinkSanitizer
    • Rails::HTML::SafeListSanitizer points to Rails::HTML4::SafeListSanitizer

    Mike Dalessio

  • LinkSanitizer always returns UTF-8 encoded strings. SafeListSanitizer and FullSanitizer already ensured this encoding.

... (truncated)

Commits
  • 19fd6cd version bump to v1.6.0
  • a9b2f1e doc: update CHANGELOG and README with supported branch info
  • ca29c20 doc: update README moving verbose notes after usage
  • 3b31be5 version bump to v1.6.0.rc2
  • b98af6c Merge pull request #167 from rails/flavorjones-best-supported-vendor-method
  • e953444 feat: introduce Rails::HTML::Sanitizer.best_supported_vendor
  • 5419017 version bump to v1.6.0.rc1
  • 669dcd0 doc: update CONTRIBUTING with release process
  • cd77210 Merge pull request #166 from rails/flavorjones-update-deps-for-html5-variation2
  • 7cc07bb dep: update loofah and nokogiri to versions fully supporting HTML5
  • Additional commits viewable in compare view

Updates sidekiq from 6.5.12 to 7.3.5

Changelog

Sourced from sidekiq's changelog.

7.3.5

  • Reimplement retry_all and kill_all API methods to use ZPOPMIN, approximately 30-60% faster. #6481
  • Add preload testing binary at examples/testing/sidekiq_boot to verify your Rails app boots correctly with Sidekiq Enterprise's app preloading.
  • Fix circular require with ActiveJob adapter #6477
  • Fix potential race condition leading to incorrect serialized values for CurrentAttributes #6475
  • Restore missing elapsed time when default job logging is disabled

7.3.4

  • Fix FrozenError when starting Sidekiq #6470

7.3.3

  • Freeze global configuration once boot is complete, to avoid configuration race conditions [#6466, #6465]
  • Sidekiq now warns if a job iteration takes longer than the -t timeout setting (defaults to 25 seconds)
  • Iteration callbacks now have easy access to job arguments via the arguments method:
def on_stop
  p arguments # => `[123, "string", {"key" => "value"}]`
  id, str, hash = arguments
end
  • Iterable jobs can be cancelled via Sidekiq::Client#cancel!:
c = Sidekiq::Client.new
jid = c.push("class" => SomeJob, "args" => [123])
c.cancel!(jid) # => true
  • Take over support for ActiveJob's :sidekiq adapter [#6430, fatkodima]
  • Ensure CurrentAttributes are in scope when creating batch callbacks #6455
  • Add Sidekiq.gem_version API.
  • Update Ukranian translations

7.3.2

  • Adjust ActiveRecord batch iteration to restart an interrupted batch from the beginning. Each batch should be processed as a single transaction in order to be idempotent. #6405
  • Fix typo in Sidekiq::DeadSet#kill #6397
  • Fix CSS issue with bottom bar in Web UI #6414

7.3.1

  • Don't count job interruptions as failures in metrics #6386

... (truncated)

Commits

Updates govuk-components from 5.3.1 to 5.7.1

Release notes

Sourced from govuk-components's releases.

Version 5.7.1

  • Support govuk-frontend 5.7.1 (a minor bugfix release)
  • Bump Ruby and Rails versions to Ruby 3.1.6-3.3.6 and Rails 7.1.5-8.0.0 #571
  • Increase required version of ViewComponent to 3.17 #570

Version 5.7.0

Version 5.6.1

  • Fix a typo in govuk-width-container in the new service navigation component, and add some extra tests to ensure it's right 0a492c5aee5c6

Version 5.6.0

  • Add new service navigation component #556
  • Add support for component-specific branding which allows for the mixing and matching of design systems so this library can be integrated with the NHS design system more easily #552
  • Add an extra argument to govuk_header called full_width_border. When true it will set the govuk-header--full-width-border class which is suggested in the service navigation guidance
  • Support govuk-frontend 5.6.0

Version 5.5.0

Version 5.4.1

  • Allow default fallback summary list value text to be set. It defaults to "" so the library's behaviour won't change but it can be overridden to something more informative if necessary #540
  • Support govuk-frontend version 5.4.1
  • Bump the supported Ruby and Rails versions

Version 5.4.0

  • Support govuk-frontend 5.4.0 #538

Release version 5.3.2

  • Support govuk-frontend 5.3.1
  • Allow tab ids to be manually overridden. Thanks @​misaka for this. #532
  • Add custom tag support to notification banner headings. This change also fixes the default HTML tag to <p> as suggested in the design system documentation rather than <div>. Thanks @​DavidBiddle for contributing this fix. #533
Commits
  • e073123 Support govuk-frontend 5.7.1
  • e2fcaec Upgrade to latest 3 versions of Ruby and Rails (#571)
  • 5ccb717 Upgrade to latest 3 versions of Ruby and Rails
  • 0f14640 Upgrade minimum version of ViewComponent to 3.17
  • 2ec2551 Update view_component requirement from >= 3.9, < 3.17 to >= 3.9, < 3.21 (#570)
  • e799cd4 Update view_component requirement from >= 3.9, < 3.17 to >= 3.9, < 3.21
  • 5b2a66d Update webrick requirement from ~> 1.8.1 to ~> 1.9.0 (#569)
  • 2dbfa43 Update webrick requirement from ~> 1.8.1 to ~> 1.9.0
  • 50b1ca8 Release version 5.7.0
  • 8896444 Upgrade to govuk-frontend 5.7.0 (#568)
  • Additional commits viewable in compare view

Updates prawn from 2.4.0 to 2.5.0

Changelog

Sourced from prawn's changelog.

PrawnPDF 2.5.0

Full font embedding

Fonts can be embedded in their original form without subsetting or any other modification.

(Alexander Mankuta, #1322)

Fixed keyword arguments in Prawn::View

(Kim Burgestrand, 1284)

Look for glyph in correct font

Take the font style into account when looking for a glyph and fallback fonts are enabled.

(Dan Allen, #1147)

Fixed font caching

It's a subtle bug that could result in use of incorrect fonts.

(maerch, #924, Alexander Mankuta)

Fixed line spacing in text boxes with indentation

(Jakub Stasiak, #1079)

Commits

Updates rubocop-performance from 1.20.2 to 1.22.1

Release notes

Sourced from rubocop-performance's releases.

RuboCop Performance 1.22.1

Bug fixes

  • #468: Fix false positives for Performance/BigDecimalWithNumericArgument when using float argument for BigDecimal. (@​koic)

RuboCop Performance 1.22.0

Bug fixes

  • #454: Fix false positives for Performance/BigDecimalWithNumericArgument when using BigDecimal 3.1+. (@​koic)

Changes

RuboCop Performance 1.21.1

Bug fixes

  • #452: Fix an error for Performance/RedundantEqualityComparisonBlock when the block is empty. (@​earlopain)

RuboCop Performance 1.21.0

New features

  • #446: Support Prism as a Ruby parser (experimental). (@​koic)

Bug fixes

  • #437: Fix a false positive for Performance/ChainArrayAllocation when using select with block argument after select. (@​koic)
  • #448: Fix a false positive for Performance/RedundantBlockCall when using block.call with block argument. (@​koic)

Changes

Changelog

Sourced from rubocop-performance's changelog.

1.22.1 (2024-09-17)

Bug fixes

  • #468: Fix false positives for Performance/BigDecimalWithNumericArgument when using float argument for BigDecimal. ([@​koic][])

1.22.0 (2024-09-16)

Bug fixes

  • #454: Fix false positives for Performance/BigDecimalWithNumericArgument when using BigDecimal 3.1+. ([@​koic][])

Changes

  • #385: Disable Performance/BlockGivenWithExplicitBlock by default. ([@​earlopain][])
  • #407: Make Performance/DoubleStartEndWith aware of safe navigation. ([@​earlopain][])

1.21.1 (2024-06-16)

Bug fixes

  • #452: Fix an error for Performance/RedundantEqualityComparisonBlock when the block is empty. ([@​earlopain][])

1.21.0 (2024-03-30)

New features

  • #446: Support Prism as a Ruby parser (experimental). ([@​koic][])

Bug fixes

  • #437: Fix a false positive for Performance/ChainArrayAllocation when using select with block argument after select. ([@​koic][])
  • #448: Fix a false positive for Performance/RedundantBlockCall when using block.call with block argument. ([@​koic][])

Changes

Commits
  • 69c5abc Cut 1.22.1
  • 3188974 Update Changelog
  • 100cdfe Merge pull request #469 from koic/fix_false_positives_for_performance_big_dec...
  • 6bb06b2 [Fix #468] Fix false positives for Performance/BigDecimalWithNumericArgument
  • f74a890 Switch back docs version to master
  • bf5f64f Cut 1.22.0
  • d26b441 Update Changelog
  • 7233005 Merge pull request #465 from Earlopain/start-end-safe-navigation
  • 767f2c9 [Fix #407] Make Performance/DoubleStartEndWith aware of safe navigation
  • f28d18d Merge pull request #466 from Earlopain/block-given-disable
  • Additional commits viewable in compare view

Updates standard from 1.35.0.1 to 1.36.0

Changelog

Sourced from standard's changelog.

1.36.0

  • Updates rubocop to 1.63.5
  • Updates standard-performance to 1.4.0

1.35.1

  • Corrects rubocop constraint to the patch version, not minor version.

1.35.0

  • Updates rubocop to 1.62

1.34.0

1.33.0

  • Updates rubocop to 1.59.0
  • Updates standard-performance to 1.3.0

1.32.1

  • Fixes regeneration of TODO files ot avoid missing already-ignored rules #587

1.32.0

1.31.2

  • Updates rubocop to 1.52.4
  • Updates standard-performance to v1.2.1

1.31.1

1.31.0

  • Updates standard-performance to

…tml-sanitizer, sidekiq, govuk-components, prawn, rubocop-performance, standard, dotenv-rails and factory_bot_rails

Bumps [sinatra](https://github.com/sinatra/sinatra), [rack-protection](https://github.com/sinatra/sinatra), [rails](https://github.com/rails/rails), [sprockets](https://github.com/rails/sprockets), [rails-html-sanitizer](https://github.com/rails/rails-html-sanitizer), [sidekiq](https://github.com/sidekiq/sidekiq), [govuk-components](https://github.com/x-govuk/govuk-components), [prawn](https://github.com/prawnpdf/prawn), [rubocop-performance](https://github.com/rubocop/rubocop-performance), [standard](https://github.com/standardrb/standard), [dotenv-rails](https://github.com/bkeepers/dotenv) and [factory_bot_rails](https://github.com/thoughtbot/factory_bot_rails). These dependencies needed to be updated together.

Updates `sinatra` from 3.0.5 to 4.1.0
- [Changelog](https://github.com/sinatra/sinatra/blob/main/CHANGELOG.md)
- [Commits](sinatra/sinatra@v3.0.5...v4.1.0)

Updates `rack-protection` from 3.0.5 to 4.1.0
- [Changelog](https://github.com/sinatra/sinatra/blob/main/CHANGELOG.md)
- [Commits](sinatra/sinatra@v3.0.5...v4.1.0)

Updates `rails` from 7.0.8.4 to 7.2.2
- [Release notes](https://github.com/rails/rails/releases)
- [Commits](rails/rails@v7.0.8.4...v7.2.2)

Updates `sprockets` from 3.7.2 to 4.2.1
- [Release notes](https://github.com/rails/sprockets/releases)
- [Changelog](https://github.com/rails/sprockets/blob/main/CHANGELOG.md)
- [Commits](rails/sprockets@v3.7.2...v4.2.1)

Updates `rails-html-sanitizer` from 1.4.4 to 1.6.0
- [Release notes](https://github.com/rails/rails-html-sanitizer/releases)
- [Changelog](https://github.com/rails/rails-html-sanitizer/blob/main/CHANGELOG.md)
- [Commits](rails/rails-html-sanitizer@v1.4.4...v1.6.0)

Updates `sidekiq` from 6.5.12 to 7.3.5
- [Changelog](https://github.com/sidekiq/sidekiq/blob/main/Changes.md)
- [Commits](sidekiq/sidekiq@v6.5.12...v7.3.5)

Updates `govuk-components` from 5.3.1 to 5.7.1
- [Release notes](https://github.com/x-govuk/govuk-components/releases)
- [Commits](x-govuk/govuk-components@v5.3.1...v5.7.1)

Updates `prawn` from 2.4.0 to 2.5.0
- [Release notes](https://github.com/prawnpdf/prawn/releases)
- [Changelog](https://github.com/prawnpdf/prawn/blob/master/CHANGELOG.md)
- [Commits](prawnpdf/prawn@2.4.0...2.5.0)

Updates `rubocop-performance` from 1.20.2 to 1.22.1
- [Release notes](https://github.com/rubocop/rubocop-performance/releases)
- [Changelog](https://github.com/rubocop/rubocop-performance/blob/master/CHANGELOG.md)
- [Commits](rubocop/rubocop-performance@v1.20.2...v1.22.1)

Updates `standard` from 1.35.0.1 to 1.36.0
- [Release notes](https://github.com/standardrb/standard/releases)
- [Changelog](https://github.com/standardrb/standard/blob/main/CHANGELOG.md)
- [Commits](standardrb/standard@v1.35.0.1...v1.36.0)

Updates `dotenv-rails` from 2.8.1 to 3.1.4
- [Release notes](https://github.com/bkeepers/dotenv/releases)
- [Changelog](https://github.com/bkeepers/dotenv/blob/main/Changelog.md)
- [Commits](bkeepers/dotenv@v2.8.1...v3.1.4)

Updates `factory_bot_rails` from 6.2.0 to 6.4.4
- [Release notes](https://github.com/thoughtbot/factory_bot_rails/releases)
- [Changelog](https://github.com/thoughtbot/factory_bot_rails/blob/main/NEWS.md)
- [Commits](thoughtbot/factory_bot_rails@v6.2.0...v6.4.4)

---
updated-dependencies:
- dependency-name: sinatra
  dependency-type: direct:production
- dependency-name: rack-protection
  dependency-type: direct:production
- dependency-name: rails
  dependency-type: direct:production
- dependency-name: sprockets
  dependency-type: direct:production
- dependency-name: rails-html-sanitizer
  dependency-type: direct:production
- dependency-name: sidekiq
  dependency-type: direct:production
- dependency-name: govuk-components
  dependency-type: direct:production
- dependency-name: prawn
  dependency-type: direct:production
- dependency-name: rubocop-performance
  dependency-type: direct:development
- dependency-name: standard
  dependency-type: direct:development
- dependency-name: dotenv-rails
  dependency-type: direct:development
- dependency-name: factory_bot_rails
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Nov 18, 2024
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 17, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Dec 17, 2024
@dependabot dependabot bot deleted the dependabot/bundler/multi-db68001d1a branch December 17, 2024 16:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants