Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the ruby group across 1 directory with 3 updates #417

Merged
merged 1 commit into from
Aug 2, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 1, 2024

Bumps the ruby group with 3 updates in the / directory: dartsass-rails, sprockets-rails and rubocop.

Updates dartsass-rails from 0.5.0 to 0.5.1

Release notes

Sourced from dartsass-rails's releases.

v0.5.1

What's Changed

New Contributors

Full Changelog: rails/dartsass-rails@v0.5.0...v0.5.1

Commits
  • 5c88f1b Bump version for 0.5.1
  • e87daac Bump dependencies
  • 51637ca Merge pull request #47 from ennova/topic/constants-module
  • 569af9c Merge pull request #51 from natsuokawai/nk-skip-css-build-enhance
  • 132494b Merge pull request #61 from jeromedalbert/overwrite-bin-dev
  • 37ac9e5 Force bin/dev overwrite to deal with new default bin/dev file
  • 4f41944 Skip CSS build if environment variable SKIP_CSS_BUILD is set.
  • ba38934 Define constants in separate module
  • d227ae6 Merge pull request #46 from tagCincy/tagCincy/clobber-all-files
  • 1f31ec4 Merge pull request #45 from ntkme/exec-array
  • Additional commits viewable in compare view

Updates sprockets-rails from 3.5.1 to 3.5.2

Release notes

Sourced from sprockets-rails's releases.

3.5.2

What's Changed

New Contributors

Full Changelog: rails/sprockets-rails@v3.5.1...v3.5.2

Commits
  • 2c04236 Prepare for 3.5.2
  • 550bce4 Merge pull request #535 from rails/rm-fix-deprecations
  • 6245157 Remove deprecations in Rails applications
  • eaba64d Fix deprecation warning in Rails 8.0
  • aa0cf7c Add devcontainer configuration
  • 5b0c81d Merge pull request #527 from etiennebarrie/prevent-regression-for-sprockets-r...
  • 90daf9c Merge pull request #528 from etiennebarrie/remove-warnings
  • e152b64 Merge pull request #530 from fynsta/patch-1
  • 600b6e5 Add changelog_uri to gemspec
  • 1d44fdc Prevent regressions with requiring sprockets/railtie
  • Additional commits viewable in compare view

Updates rubocop from 1.65.0 to 1.65.1

Release notes

Sourced from rubocop's releases.

RuboCop 1.65.1

New features

  • #13068: Add config validation to Naming/PredicateName to check that all ForbiddenPrefixes are being checked. (@​maxjacobson)

Bug fixes

  • #13051: Fix an error for Lint/FloatComparison when comparing with rational literal. (@​koic)
  • #13065: Fix an error for Lint/UselessAssignment when same name variables are assigned using chained assignment. (@​koic)
  • #13062: Fix an error for Style/InvertibleUnlessCondition when using empty parenthesis as condition. (@​earlopain)
  • #11438: Explicitly load fileutils before calculating before_us. (@​r7kamura)
  • #13044: Fix false negatives for Lint/ImplicitStringConcatenation when using adjacent string interpolation literals on the same line. (@​koic)
  • #13083: Fix a false positive for Style/GlobalStdStream when using namespaced constants like Foo::STDOUT. (@​earlopain)
  • #13081: Fix a false positive for Style/ZeroLengthPredicate when using safe navigation and non-zero comparison. (@​fatkodima)
  • #13041: Fix false positives for Lint/UselessAssignment when pattern match variable is assigned and used in a block. (@​koic)
  • #13076: Fix an incorrect autocorrect for Naming/RescuedExceptionsVariableName when using hash value omission. (@​koic)
Changelog

Sourced from rubocop's changelog.

1.65.1 (2024-08-01)

New features

  • #13068: Add config validation to Naming/PredicateName to check that all ForbiddenPrefixes are being checked. ([@​maxjacobson][])

Bug fixes

  • #13051: Fix an error for Lint/FloatComparison when comparing with rational literal. ([@​koic][])
  • #13065: Fix an error for Lint/UselessAssignment when same name variables are assigned using chained assignment. ([@​koic][])
  • #13062: Fix an error for Style/InvertibleUnlessCondition when using empty parenthesis as condition. ([@​earlopain][])
  • #11438: Explicitly load fileutils before calculating before_us. ([@​r7kamura][])
  • #13044: Fix false negatives for Lint/ImplicitStringConcatenation when using adjacent string interpolation literals on the same line. ([@​koic][])
  • #13083: Fix a false positive for Style/GlobalStdStream when using namespaced constants like Foo::STDOUT. ([@​earlopain][])
  • #13081: Fix a false positive for Style/ZeroLengthPredicate when using safe navigation and non-zero comparison. ([@​fatkodima][])
  • #13041: Fix false positives for Lint/UselessAssignment when pattern match variable is assigned and used in a block. ([@​koic][])
  • #13076: Fix an incorrect autocorrect for Naming/RescuedExceptionsVariableName when using hash value omission. ([@​koic][])
Commits
  • b073d7a Cut 1.65.1
  • 8c4c144 Update Changelog
  • 19b3d9d Merge pull request #13083 from Earlopain/false-positive-global-std-stream
  • 761b917 Fix false positive for Style/GlobalStdStream for namespaced constants
  • 58eeb7a Clarify docs in Naming/PredicateName
  • 2443641 Add a validate_config for Naming/PredicateName
  • 68bd9da Merge pull request #13079 from koic/fix_incorrect_autocorrect_for_naming_resc...
  • 748a568 Merge pull request #13081 from fatkodima/zero_length_predicate-false-positive
  • 70d8e88 Fix a false positive for Style/ZeroLengthPredicate when using safe navigati...
  • ea309c2 [Fix #13076] Fix an incorrect autocorrect for `Naming/RescuedExceptionsVariab...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot requested a review from a team as a code owner August 1, 2024 13:28
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Aug 1, 2024
@github-actions github-actions bot enabled auto-merge August 1, 2024 13:30
@rwaffen
Copy link
Member

rwaffen commented Aug 2, 2024

@oneiros is this safe to update? just asking because google-protobuf is doing a major upgrade from 3.x to 4.x

Bumps the ruby group with 3 updates in the / directory: [dartsass-rails](https://github.com/rails/dartsass-rails), [sprockets-rails](https://github.com/rails/sprockets-rails) and [rubocop](https://github.com/rubocop/rubocop).


Updates `dartsass-rails` from 0.5.0 to 0.5.1
- [Release notes](https://github.com/rails/dartsass-rails/releases)
- [Commits](rails/dartsass-rails@v0.5.0...v0.5.1)

Updates `sprockets-rails` from 3.5.1 to 3.5.2
- [Release notes](https://github.com/rails/sprockets-rails/releases)
- [Commits](rails/sprockets-rails@v3.5.1...v3.5.2)

Updates `rubocop` from 1.65.0 to 1.65.1
- [Release notes](https://github.com/rubocop/rubocop/releases)
- [Changelog](https://github.com/rubocop/rubocop/blob/master/CHANGELOG.md)
- [Commits](rubocop/rubocop@v1.65.0...v1.65.1)

---
updated-dependencies:
- dependency-name: dartsass-rails
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ruby
- dependency-name: sprockets-rails
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ruby
- dependency-name: rubocop
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: ruby
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/bundler/ruby-b9d92153ae branch from 4bdacc9 to 32c4e73 Compare August 2, 2024 08:08
@oneiros
Copy link
Collaborator

oneiros commented Aug 2, 2024

Since this is just a dependency of a dependency and said dependency explicitly calls for that update, I would say it is pretty safe, yes.

@github-actions github-actions bot merged commit 7a1d667 into main Aug 2, 2024
14 checks passed
@github-actions github-actions bot deleted the dependabot/bundler/ruby-b9d92153ae branch August 2, 2024 08:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants