[dependabot:bundler] Bump the regular-updates group across 1 directory with 5 updates

[dependabot]

Bumps the regular-updates group with 5 updates in the / directory:

Package	From	To
view_component	3.17.0	3.19.0
factory_bot_rails	6.4.3	6.4.4
rspec-its	1.3.0	1.3.1
rubocop-rails	2.26.2	2.27.0
brakeman	6.2.1	6.2.2

Updates view_component from 3.17.0 to 3.19.0

Release notes

Sourced from view_component's releases.

v3.19.0

• Relax Active Support version constraint in gemspec.

  Simon Fish

v3.18.0

• Enable components to use @request and request methods/ivars.

  Blake Williams

• Fix bug where implicit locales in component filenames threw a NameError.

  Chloe Fons

• Register ViewComponent tests directory for rails stats.

  Javier Aranda

• Wrap entire compile step in a mutex to make it more resilient to race conditions.

  Blake Williams

• Add Niva to companies who use ViewComponent.

  Daniel Vu Dao

• Fix preview_paths in docs.

  Javier Aranda

Changelog

Sourced from view_component's changelog.

3.19.0

• Relax Active Support version constraint in gemspec.

  Simon Fish

3.18.0

• Enable components to use @request and request methods/ivars.

  Blake Williams

• Fix bug where implicit locales in component filenames threw a NameError.

  Chloe Fons

• Register ViewComponent tests directory for rails stats.

  Javier Aranda

• Wrap entire compile step in a mutex to make it more resilient to race conditions.

  Blake Williams

• Add Niva to companies who use ViewComponent.

  Daniel Vu Dao

• Fix preview_paths in docs.

  Javier Aranda

Commits

• 070f0dd release 3.19.0 (#2143)
• 3521959 Relax ActiveSupport version now that Rails 8 beta is available (#2140)
• 14446d8 release 3.18.0 (#2138)
• 23ef08b bundle update (#2136)
• d0576c1 Enable components to use @request and request methods/ivars (#2135)
• 1176505 chore: Remove .DS_Store file (#2134)
• 21b94a7 Allow implicit locale in component file names (#2118)
• 212d159 Register tests directory for rails stats (#2129)
• 1fd89a4 Wrap entire compile step with mutex (#2132)
• 587a9ed 📝 Add Niva to companies who use ViewComponent (#2131)
• Additional commits viewable in compare view

Updates factory_bot_rails from 6.4.3 to 6.4.4

Release notes

Sourced from factory_bot_rails's releases.

6.4.4

What's Changed

• Update CI to run Ruby 3.3 by @​aberkakis in thoughtbot/factory_bot_rails#464
• Ignore Standard Style/ArgumentsForwarding violations temporarily by @​sarahraqueld in thoughtbot/factory_bot_rails#489
• Bump standard from 1.32.1 to 1.40.0 by @​dependabot in thoughtbot/factory_bot_rails#487
• Bump rspec-rails from 6.1.0 to 6.1.4 by @​dependabot in thoughtbot/factory_bot_rails#490
• Bump factory_bot from 6.4.0 to 6.5.0 by @​dependabot in thoughtbot/factory_bot_rails#492
• Bump rake from 13.1.0 to 13.2.1 by @​dependabot in thoughtbot/factory_bot_rails#491
• Update Bundler to v2.5.21 by @​smaboshe in thoughtbot/factory_bot_rails#499
• Update Bundler to v2.5.22 by @​smaboshe in thoughtbot/factory_bot_rails#500

New Contributors

• @​stefannibrasil made their first contribution in thoughtbot/factory_bot_rails#463
• @​aberkakis made their first contribution in thoughtbot/factory_bot_rails#464
• @​smaboshe made their first contribution in thoughtbot/factory_bot_rails#469
• @​sarahraqueld made their first contribution in thoughtbot/factory_bot_rails#481

Full Changelog: thoughtbot/factory_bot_rails@v6.4.3...v6.4.4

Changelog

Sourced from factory_bot_rails's changelog.

6.4.4 (October 25, 2024)

• Changed: Bump Factory Bot 6.5.0

Commits

• b00d3c3 Release 6.4.4 [ci skip]
• b5f45b9 Update Bundler to v2.5.22
• f877249 Update Bundler to v2.5.21
• f5aabdd Bump rake from 13.1.0 to 13.2.1 (#491)
• 01e3bdb Bump factory_bot from 6.4.0 to 6.5.0 (#492)
• 26d0e9e Bump rspec-rails from 6.1.0 to 6.1.4
• c681900 Bump standard from 1.32.1 to 1.40.0 (#487)
• 3db6bd6 Ignore Standard Style/ArgumentsForwarding violations temporarily (#489)
• 62f4319 Add a dynamic security workflow and a SECURITY.md file (#481)
• 1c24be0 Add a CODEOWNERS file (#468)
• Additional commits viewable in compare view

Updates rspec-its from 1.3.0 to 1.3.1

Changelog

Sourced from rspec-its's changelog.

1.3.1 / 2024-10-23

full changelog

Bug fixes:

• Prevent overridden example methods causing issues by creating our own Example Group creation alias __its_example. (Jon Rowe, #95)

Commits

• 6dec295 v1.3.1
• f3727a3 Changelog for #95
• 096736d Merge pull request #95 from rspec/fix-example-usage
• 0fd24f5 Move JRUby 9.1.17 to legacy setup
• d25c18f Modernise legacy ruby setup
• 0020fd3 allow insecure node version on legacy ci
• 4c5ce67 Fix rspec-metagem
• 1c245c4 Remove deprecated raise_error
• 692db5f Fix usage of example for when its redefined
• 14297a7 Merge pull request #89 from rspec/dependabot/github_actions/actions/checkout-3
• Additional commits viewable in compare view

Updates rubocop-rails from 2.26.2 to 2.27.0

Release notes

Sourced from rubocop-rails's releases.

RuboCop Rails 2.27.0

Bug fixes

• #1377: Fix an error for Rails/EnumSyntax when positional arguments are used and options are not passed as keyword arguments. (@​koic)
• #1367: Fix Rails/TimeZone should not report offense on String#to_time with timezone specifier. (@​armandmgt)

Changes

• #727: Disable Rails/TransactionExitStatement on Rails >= 7.2. (@​earlopain)
• #1374: Change Rails/EnvLocal to handle negated conditions. (@​fatkodima)
• #1195: Change Rails/SelectMap to handle safe navigation operators. (@​fatkodima)

Changelog

Sourced from rubocop-rails's changelog.

2.27.0 (2024-10-26)

Bug fixes

• #1377: Fix an error for Rails/EnumSyntax when positional arguments are used and options are not passed as keyword arguments. ([@​koic][])
• #1367: Fix Rails/TimeZone should not report offense on String#to_time with timezone specifier. ([@​armandmgt][])

Changes

• #727: Disable Rails/TransactionExitStatement on Rails >= 7.2. ([@​earlopain][])
• #1374: Change Rails/EnvLocal to handle negated conditions. ([@​fatkodima][])
• #1195: Change Rails/SelectMap to handle safe navigation operators. ([@​fatkodima][])

Commits

• 9165c10 Cut 2.27.0
• f052a89 Update Changelog
• f66b8f7 Merge pull request #1378 from koic/fix_an_error_for_rails_enum_syntax
• 94a8370 [Fix #1377] Fix an error for Rails/EnumSyntax
• ec31d1b Merge pull request #1367 from armandmgt/feature/allow-to_time-with-specifier
• a413fe6 Suppress new RuboCop offenses
• 5bc926f Fix Rails/TimeZone should not report offense on String#to_time with timez...
• 209cc09 Use RuboCop Performance 1.22
• 2e619f3 [Docs] Add TargetRailsVersion to config documentation
• 083e24c Merge pull request #1374 from fatkodima/env_local-handle-negations
• Additional commits viewable in compare view

Updates brakeman from 6.2.1 to 6.2.2

Release notes

Sourced from brakeman's releases.

6.2.2

• New end-of-support dates for Rails
• Revamp command injection detection in pipeline* calls (#1862)
• Exclude more native gems from vendored gems in brakeman gem (#1869)

Changelog

Sourced from brakeman's changelog.

6.2.2 - 2024-10-15

• Ignore more native gems when building gem
• Revamp command injection in pipeline* calls
• New end-of-support dates for Rails

Commits

• 0aeceda Bump to 6.2.2
• 43612a6 Merge pull request #1872 from presidentbeef/more_native_gems_to_ignore
• 2ece3b4 Update CHANGES
• 72df013 Ignore more native gems when building gem
• e4f49f6 Merge pull request #1868 from presidentbeef/revamp_pipeline_check
• 9e8cd79 Revamp command injection in pipeline* calls
• f99539b Merge pull request #1865 from presidentbeef/update_eol_dates_for_rails
• 1713d5f Remove Gitter link from README
• c25fcae Merge pull request #1864 from presidentbeef/fix_docker_once_more
• 8da2a28 New end-of-support dates for Rails
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.