From 8a42f0a50a4701e2381123386e100770d86ecc6f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 1 Apr 2024 16:04:19 +0000
Subject: [PATCH 1/3] Bump faker from 3.2.3 to 3.3.0 (#25)

Bumps [faker](https://github.com/faker-ruby/faker) from 3.2.3 to 3.3.0.
- [Release notes](https://github.com/faker-ruby/faker/releases)
- [Changelog](https://github.com/faker-ruby/faker/blob/main/CHANGELOG.md)
- [Commits](https://github.com/faker-ruby/faker/compare/v3.2.3...v3.3.0)

---
updated-dependencies:
- dependency-name: faker
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 Gemfile.lock | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Gemfile.lock b/Gemfile.lock
index c5d4a63..6db3213 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -26,9 +26,9 @@ GEM
     docile (1.4.0)
     drb (2.2.0)
       ruby2_keywords
-    faker (3.2.3)
+    faker (3.3.0)
       i18n (>= 1.8.11, < 2)
-    i18n (1.14.1)
+    i18n (1.14.4)
       concurrent-ruby (~> 1.0)
     minitest (5.22.2)
     mutex_m (0.2.0)

From 3ccb87957b1f1645fe1c333aa5e3a97a5f23d6e2 Mon Sep 17 00:00:00 2001
From: Daniel Pepper <pepper.daniel@gmail.com>
Date: Sun, 7 Apr 2024 16:30:42 -0700
Subject: [PATCH 2/3] Revert "Bump codecov/codecov-action from 3 to 4 (#22)"
 (#26)

This reverts commit 0f3ed7fb9999c54d69edb9dfd74c36468ca6fb3d.
---
 .github/workflows/ruby.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ruby.yml b/.github/workflows/ruby.yml
index 035b892..2e07041 100644
--- a/.github/workflows/ruby.yml
+++ b/.github/workflows/ruby.yml
@@ -28,4 +28,4 @@ jobs:
       - name: run tests
         run: bundle exec rspec
       - name: upload code coverage
-        uses: codecov/codecov-action@v4
+        uses: codecov/codecov-action@v3

From 4eae9182a1ff5f2e30beed1362860b8b77c7c8a5 Mon Sep 17 00:00:00 2001
From: Daniel Pepper <pepper.daniel@gmail.com>
Date: Sun, 7 Apr 2024 16:28:46 -0700
Subject: [PATCH 3/3] dependabot upgrades

---
 .github/workflows/dependabot.yml | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/dependabot.yml b/.github/workflows/dependabot.yml
index f1bbb5e..088552d 100644
--- a/.github/workflows/dependabot.yml
+++ b/.github/workflows/dependabot.yml
@@ -4,7 +4,7 @@ on: pull_request
 jobs:
   dependabot:
     runs-on: ubuntu-latest
-    if: github.event.pull_request.user.login == 'dependabot[bot]'
+    if: startsWith(github.event.pull_request.user.login, 'dependabot')
     env:
       GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
     steps:
@@ -14,9 +14,8 @@ jobs:
         run: gh pr checkout ${{github.event.pull_request.number}}
       - name: Fetch PR metadata
         id: metadata
-        uses: dependabot/fetch-metadata@v1
+        uses: dependabot/fetch-metadata@v2
       - name: Approve PR
-        if: steps.metadata.outputs.update-type == 'version-update:semver-minor' || steps.metadata.outputs.update-type == 'version-update:semver-patch'
         run: |
           if [ "$(gh pr status --json reviewDecision -q .currentBranch.reviewDecision)" != "APPROVED" ]; then
             gh pr review --approve