Skip to content

Bump the dependencies group across 1 directory with 10 updates#111

Merged
cbeer merged 1 commit into
masterfrom
dependabot/bundler/dependencies-a908c51d85
May 11, 2026
Merged

Bump the dependencies group across 1 directory with 10 updates#111
cbeer merged 1 commit into
masterfrom
dependabot/bundler/dependencies-a908c51d85

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 11, 2026

Bumps the dependencies group with 10 updates in the / directory:

Package From To
sqlite3 2.9.3 2.9.4
puma 8.0.0 8.0.1
bootsnap 1.23.0 1.24.3
tzinfo-data 1.2026.1 1.2026.2
devise 5.0.3 5.0.4
bootstrap_form 5.6.0 5.6.1
github-markup 5.0.1 6.0.0
friendly_id 5.6.0 5.7.0
honeybadger 6.5.5 6.6.0
sitemap_generator 6.3.0 7.0.1

Updates sqlite3 from 2.9.3 to 2.9.4

Release notes

Sourced from sqlite3's releases.

2.9.4 / 2026-05-05

ecabed721e6eaad54601d2685f09029d90025efc8d931040dc89cb3f8a2080ec  gems/sqlite3-2.9.4-aarch64-linux-gnu.gem
ffb4255947fb54c8c3eeca97460c9702b40de91ce390455ef7367ca6a3929a31  gems/sqlite3-2.9.4-aarch64-linux-musl.gem
9ee2008b9fbec984c3c165b0d7eedd2bd2a415100b761bfa3a4c6fbec9208bf6  gems/sqlite3-2.9.4-arm-linux-gnu.gem
8dc1fe4da6977992cd62decf4a93ccf6cc2e124a5e6a340160d52092f70e837a  gems/sqlite3-2.9.4-arm-linux-musl.gem
1d5aad413a815d236e96d43f05a1acc600b6cd086800770342a3f9c2877499ff  gems/sqlite3-2.9.4-arm64-darwin.gem
40997c549b19e2fdfcc5e271f6bdd4d502179742c0bfd678da23d0d09b929848  gems/sqlite3-2.9.4-x64-mingw-ucrt.gem
5cab40ea734796802853501bd23b6162eec391dc37f3bf04bc2ffbda9c8bf93d  gems/sqlite3-2.9.4-x86-linux-gnu.gem
936e2d4a428887fac15f55e26a18671fbb4e522bffaa43969fadf7b40ab25214  gems/sqlite3-2.9.4-x86-linux-musl.gem
f280c476e360b73e86165a5e59b72801385b4a6c3a47f8af5ecefb9d90bec17f  gems/sqlite3-2.9.4-x86_64-darwin.gem
537a3eda71b1df1336d0055cbebe55a7317c34870c192c7b6b9d8d0be6871847  gems/sqlite3-2.9.4-x86_64-linux-gnu.gem
3fc5e865b4be9a85d998203ef8d0c0fdcb92f20acf34a254346ff8a19088efec  gems/sqlite3-2.9.4-x86_64-linux-musl.gem
6161c5b9c17886b289558e6c8082b28a22a814736d2433c9a67f4c6bfcde5c97  gems/sqlite3-2.9.4.gem
Changelog

Sourced from sqlite3's changelog.

2.9.4 / 2026-05-05

Commits
  • ae58899 version bump to v2.9.4
  • e16df53 Merge pull request #704 from sparklemotion/dep-sqlite-3.53.1
  • 2dc95ff dep: update vendored sqlite to 3.53.1
  • 1b8241a build(deps): bump the actions group with 2 updates (#703)
  • fd6f3fb build(deps-dev): update minitest requirement from 6.0.5 to 6.0.6 (#702)
  • b0453d6 build(deps-dev): update minitest requirement from 6.0.4 to 6.0.5 (#700)
  • 134521c build(deps): bump ruby/setup-ruby in the actions group (#701)
  • a2fff52 build(deps): bump the actions group with 3 updates (#699)
  • af66843 build(deps-dev): update minitest requirement from 6.0.3 to 6.0.4 (#698)
  • 26d49d9 build(deps-dev): update rake-compiler-dock requirement (#697)
  • See full diff in compare view

Updates puma from 8.0.0 to 8.0.1

Release notes

Sourced from puma's releases.

v8.0.1

  • Bugfixes

    • Fix prune_bundler stripping user-configured BUNDLE_* env vars (e.g. BUNDLE_WITHOUT) on re-exec, which caused workers to crash on boot (#3929)

  • Performance

    • Use blocks for debug logging to avoid creating log messages when debug is disabled (#3920)

  • Docs

    • Fix incorrect hook names in gRPC docs (#3923)
    • Reword v8 upgrade guide IPv6 bullet for clarity (#3928)
Changelog

Sourced from puma's changelog.

8.0.1 / 2026-04-27

  • Bugfixes

    • Fix prune_bundler stripping user-configured BUNDLE_* env vars (e.g. BUNDLE_WITHOUT) on re-exec, which caused workers to crash on boot (#3929)

  • Performance

    • Use blocks for debug logging to avoid creating log messages when debug is disabled (#3920)

  • Docs

    • Fix incorrect hook names in gRPC docs (#3923)
    • Reword v8 upgrade guide IPv6 bullet for clarity (#3928)
Commits
  • cee7e61 Release v8.0.1 (#3932)
  • f955caf Fix prune_bundler stripping user-configured BUNDLE_* env vars on re-exec (#3929)
  • 97996aa ci: test_error_logger.rb - fix TruffleRuby error (#3930)
  • 03825bc Build(deps): Bump actions/github-script from 8 to 9 (#3925)
  • 053efae Reword v8 upgrade guide ipv6 bullet (#3928)
  • b19f35a Fix incorrect hook names in gRPC docs (#3923)
  • eeabe4b Use blocks for debug logging to avoid creating messages if debug disabled (#3...
  • See full diff in compare view

Updates bootsnap from 1.23.0 to 1.24.3

Release notes

Sourced from bootsnap's releases.

v1.24.3

  • Fix the 1.24.2 workaround to parse Ruby files with UTF-8 even when the LANG environment variable is unset or set to C.

Full Changelog: rails/bootsnap@v1.24.2...v1.24.3

v1.24.2

What's Changed

  • Workaround two Ruby bugs in RubyVM::InstructionSequence.compile_file, that were causing files to be loaded with the old Ruby parser instead of Prism, causing issues with some pattern matching syntax. Ref: https://bugs.ruby-lang.org/issues/22023

Full Changelog: rails/bootsnap@v1.24.1...v1.24.2

v1.24.1

What's Changed

  • Fix encoding of Ruby source files loaded when BOOTSNAP_READONLY is set. Files would incorectly be loaded in ASCII-8BIT causing literal strings outside the pure ASCII range to have ASCII-8BIT encoding instead of UTF-8. This bug was introduced in 1.24.0.

Full Changelog: rails/bootsnap@v1.24.0...v1.24.1

v1.24.0

What's Changed

  • Added a hook API to customize Ruby compilation.

Full Changelog: rails/bootsnap@v1.23.0...v1.24.0

Changelog

Sourced from bootsnap's changelog.

1.24.3

  • Fix the 1.24.2 workaround to parse Ruby files with UTF-8 even when the LANG environment variable is unset or set to C.

1.24.2

  • Workaround two Ruby bugs in RubyVM::InstructionSequence.compile_file, that were causing files to be loaded with the old Ruby parser instead of Prism, causing issues with some pattern matching syntax. Ref: https://bugs.ruby-lang.org/issues/22023

1.24.1

  • Fix encoding of Ruby source files loaded when BOOTSNAP_READONLY is set. Files would incorectly be loaded in ASCII-8BIT causing literal strings outside the pure ASCII range to have ASCII-8BIT encoding instead of UTF-8. This bug was introduced in 1.24.0.

1.24.0

  • Added a hook API to customize Ruby compilation.
Commits

Updates tzinfo-data from 1.2026.1 to 1.2026.2

Release notes

Sourced from tzinfo-data's releases.

v1.2026.2

Based on version 2026b of the IANA Time Zone Database (https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/message/VX2Z3CBO6KHTYZNBBKFFWM7ZCI6TVCXP/).

Commits

Updates devise from 5.0.3 to 5.0.4

Release notes

Sourced from devise's releases.

v5.0.4

https://github.com/heartcombo/devise/blob/v5.0.4/CHANGELOG.md#504---2026-05-08

Changelog

Sourced from devise's changelog.

5.0.4 - 2026-05-08

Commits
  • 9ea459d Release v5.0.4 with sec fix for timeoutable
  • 025fe21 Merge commit from fork
  • 7ca7ed9 Add GHSA link to the v5.0.3 sec fix changelog entry [ci skip]
  • 605de86 Update links to https [ci skip]
  • 5e3a8bf Bundle update
  • 5d20277 Cleanup old Rails.version check for db migration path
  • 4ffb0b7 Fix Gemfile for Rails 7.2, incorrectly testing against 7.1
  • See full diff in compare view

Updates bootstrap_form from 5.6.0 to 5.6.1

Release notes

Sourced from bootstrap_form's releases.

v5.6.1

New features

Bugfixes

Performance

Documentation

Development

Full Changelog: bootstrap-ruby/bootstrap_form@v5.6.0...v5.6.1

Commits
  • 4331f79 Preparing v5.6.1
  • b86e80f Merge pull request #794 from lcreid/792/remove-conditional-on-environment
  • 1630f48 Remove conditional on development environment
  • 5d5d9cb Merge pull request #793 from lcreid/yet-another-fix-to-rakefile
  • fbc1642 Yes, use bundle exec inside Rakefile
  • 8159a16 Merge pull request #791 from lcreid/update-to-capybara-screenshot-diff-breaks...
  • ae8cd5e Remove dependency on another gem's internals
  • 6302584 compose.yml and devcontainer.json for new Docker images
  • fdf05c5 Add branch reminder to Releasing
  • See full diff in compare view

Updates github-markup from 5.0.1 to 6.0.0

Release notes

Sourced from github-markup's releases.

v6.0.0

What's Changed

... (truncated)

Changelog

Sourced from github-markup's changelog.

6.0.0 - 2026-05-04

Breaking

  • Drop support for Ruby < 3.3 (Ruby 3.1 EOL March 2025, Ruby 3.2 EOL March 2026)

Security

  • Use HTTPS for cpanminus download in CI to prevent MITM attacks #2050
  • Bump nokogiri to >= 1.19.1 to fix GHSA-wx95-c6cv-8532
  • Harden CI pip install with --require-hashes --no-deps #2048
  • Use HTTPS for RubyGems source URL in Gemfile #1854
  • Add explicit contents: read permissions to CI workflow #1855
  • Bump rexml from 3.3.0 to 3.3.9 (multiple security fixes)

Bug Fixes

  • Fix RST section ID rendering to iterate all anchors instead of only the first 040f91d

Documentation

  • Fix spelling errors in codebase #1479
  • Fix broken Textile language link in README #1703

Infrastructure

  • Remove legacy Dockerfile and .dockerignore (Ubuntu Trusty, non-functional) #2048
  • Update CI test matrix: drop Ruby 3.2, add Ruby 4.0 (now testing 3.3, 3.4, 4.0)
  • Bump nokogiri to 1.19.2, activesupport to 7.2.3.1
  • Bump github-linguist from 7.30.0 to 9.1.0, then to 9.3.0
  • Pin all GitHub Actions to commit SHAs for supply chain hardening
  • Add Dependabot configuration for automated dependency updates
  • Various Dependabot bumps for CI actions (ruby/setup-ruby, actions/checkout, actions/cache, actions/setup-python, actions/stale)
Commits
  • 8c0a553 Merge pull request #2052 from github/release/6.0.0
  • 069a41b fix: complete changelog and pin actions/stale to SHA
  • 4b0c3a9 docs: update changelog date to 2026-05-04
  • 4007cd1 Fix changelog accuracy from multi-model review
  • 31e8db3 Update Gemfile.lock for version 6.0.0
  • ec1bab7 release: bump version to 6.0.0
  • 626fd4a Merge pull request #2055 from github/dependabot/github_actions/dependencies-4...
  • 51f281b chore(deps): bump ruby/setup-ruby in the dependencies group
  • 310db6d Merge pull request #2051 from github/chore/bump-ruby-requirement
  • 2a45d38 chore: bump minimum Ruby to 3.3 and add Ruby 4.0 to CI matrix
  • Additional commits viewable in compare view

Updates friendly_id from 5.6.0 to 5.7.0

Release notes

Sourced from friendly_id's releases.

v5.7.0

What's Changed

New Contributors

Full Changelog: norman/friendly_id@v5.6.0...v5.7.0

Changelog

Sourced from friendly_id's changelog.

FriendlyId Changelog

We would like to think our many contributors for suggestions, ideas and improvements to FriendlyId.

Commits

Updates honeybadger from 6.5.5 to 6.6.0

Release notes

Sourced from honeybadger's releases.

v6.6.0

6.6.0 (2026-05-08)

Features

v6.5.6

6.5.6 (2026-05-04)

Bug Fixes

  • attach environment and hostname to metric events (#815) (0762115)
Changelog

Sourced from honeybadger's changelog.

6.6.0 (2026-05-08)

Features

6.5.6 (2026-05-04)

Bug Fixes

  • attach environment and hostname to metric events (#815) (0762115)
Commits

Updates sitemap_generator from 6.3.0 to 7.0.1

Changelog

Sourced from sitemap_generator's changelog.

7.0.1

  • Breaking: Default search engines list is empty. rake sitemap:refresh and ping_search_engines perform no HTTP pings unless you configure engine URLs on search_engines or pass them into ping_search_engines (Google’s ping endpoint is deprecated upstream). #444
  • Breaking: LinkSet#create runs finalize! only when a block is given. Calling create without a block requires finalize! when you are done adding links (supported workflow for programmatic builds). #463
  • Breaking: Drop Ruby 2.5, Rails 5.2 #438
  • Migrate continuous integration from CircleCI to GitHub Actions with expanded Ruby × Rails CI matrix.
  • Support AWS temporary credentials (aws_session_token / AWS_SESSION_TOKEN) for S3 uploads in AWS Lambda #415
  • Add frozen_string_literal: true magic comments #430
  • Add support for Rails 8.0 #441
  • Fix uninitialized constant ActiveSupport::LoggerThreadSafeLevel::Logger #449
  • Add support for Ruby 3.4 #451
  • Add support for Rails 8.1 #461
  • Replace CGI-based escaping with URI.encode_www_form_component for ping URLs; remove reliance on cgi (Ruby 4 compatibility) #465
  • Add support for Ruby 4.0 #466
  • Add ActiveStorage adapter (ActiveStorage::Blob) #467
Commits
  • 3b352b1 Upgrade to 7.0.1
  • 032bc9e Require MFA when publishing
  • 3a1de86 Update the AwsSdkAdapter examples to not use the deprecated aws_* version of ...
  • b6b01cc Set VERSION to 7.0.0
  • 4703c0b Update CHANGES to better highlight breaking changes. Upgrade to 7.0.0
  • f40dd99 Update README; add instructions on calling create without block; clarify sear...
  • 164ccd4 Remove the Ruby 2.5 code branch (no longer supported)
  • 2b4fc4b Prepare release (#468)
  • 2f656f9 Update README (#470)
  • 73d7675 Rails 8.1 is out (#469)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the dependencies group across 1 directory with 10 updates
c57910f 
Bumps the dependencies group with 10 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [sqlite3](https://github.com/sparklemotion/sqlite3-ruby) | `2.9.3` | `2.9.4` |
| [puma](https://github.com/puma/puma) | `8.0.0` | `8.0.1` |
| [bootsnap](https://github.com/rails/bootsnap) | `1.23.0` | `1.24.3` |
| [tzinfo-data](https://github.com/tzinfo/tzinfo-data) | `1.2026.1` | `1.2026.2` |
| [devise](https://github.com/heartcombo/devise) | `5.0.3` | `5.0.4` |
| [bootstrap_form](https://github.com/bootstrap-ruby/bootstrap_form) | `5.6.0` | `5.6.1` |
| [github-markup](https://github.com/github/markup) | `5.0.1` | `6.0.0` |
| [friendly_id](https://github.com/norman/friendly_id) | `5.6.0` | `5.7.0` |
| [honeybadger](https://github.com/honeybadger-io/honeybadger-ruby) | `6.5.5` | `6.6.0` |
| [sitemap_generator](https://github.com/kjvarga/sitemap_generator) | `6.3.0` | `7.0.1` |



Updates `sqlite3` from 2.9.3 to 2.9.4
- [Release notes](https://github.com/sparklemotion/sqlite3-ruby/releases)
- [Changelog](https://github.com/sparklemotion/sqlite3-ruby/blob/main/CHANGELOG.md)
- [Commits](sparklemotion/sqlite3-ruby@v2.9.3...v2.9.4)

Updates `puma` from 8.0.0 to 8.0.1
- [Release notes](https://github.com/puma/puma/releases)
- [Changelog](https://github.com/puma/puma/blob/main/History.md)
- [Commits](puma/puma@v8.0.0...v8.0.1)

Updates `bootsnap` from 1.23.0 to 1.24.3
- [Release notes](https://github.com/rails/bootsnap/releases)
- [Changelog](https://github.com/rails/bootsnap/blob/main/CHANGELOG.md)
- [Commits](rails/bootsnap@v1.23.0...v1.24.3)

Updates `tzinfo-data` from 1.2026.1 to 1.2026.2
- [Release notes](https://github.com/tzinfo/tzinfo-data/releases)
- [Commits](tzinfo/tzinfo-data@v1.2026.1...v1.2026.2)

Updates `devise` from 5.0.3 to 5.0.4
- [Release notes](https://github.com/heartcombo/devise/releases)
- [Changelog](https://github.com/heartcombo/devise/blob/main/CHANGELOG.md)
- [Commits](heartcombo/devise@v5.0.3...v5.0.4)

Updates `bootstrap_form` from 5.6.0 to 5.6.1
- [Release notes](https://github.com/bootstrap-ruby/bootstrap_form/releases)
- [Changelog](https://github.com/bootstrap-ruby/bootstrap_form/blob/main/CHANGELOG.md)
- [Commits](bootstrap-ruby/bootstrap_form@v5.6.0...v5.6.1)

Updates `github-markup` from 5.0.1 to 6.0.0
- [Release notes](https://github.com/github/markup/releases)
- [Changelog](https://github.com/github/markup/blob/master/HISTORY.md)
- [Commits](github/markup@v5.0.1...v6.0.0)

Updates `friendly_id` from 5.6.0 to 5.7.0
- [Release notes](https://github.com/norman/friendly_id/releases)
- [Changelog](https://github.com/norman/friendly_id/blob/master/Changelog.md)
- [Commits](norman/friendly_id@v5.6.0...v5.7.0)

Updates `honeybadger` from 6.5.5 to 6.6.0
- [Release notes](https://github.com/honeybadger-io/honeybadger-ruby/releases)
- [Changelog](https://github.com/honeybadger-io/honeybadger-ruby/blob/master/CHANGELOG.md)
- [Commits](honeybadger-io/honeybadger-ruby@v6.5.5...v6.6.0)

Updates `sitemap_generator` from 6.3.0 to 7.0.1
- [Changelog](https://github.com/kjvarga/sitemap_generator/blob/master/CHANGES.md)
- [Commits](kjvarga/sitemap_generator@v6.3.0...v7.0.1)

---
updated-dependencies:
- dependency-name: sqlite3
  dependency-version: 2.9.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: puma
  dependency-version: 8.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: bootsnap
  dependency-version: 1.24.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: tzinfo-data
  dependency-version: 1.2026.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: devise
  dependency-version: 5.0.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: bootstrap_form
  dependency-version: 5.6.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: github-markup
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: friendly_id
  dependency-version: 5.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: honeybadger
  dependency-version: 6.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: sitemap_generator
  dependency-version: 7.0.1
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file ruby Pull requests that update ruby code labels May 11, 2026
@cbeer cbeer merged commit 5b6706a into master May 11, 2026
1 check failed
@dependabot dependabot Bot deleted the dependabot/bundler/dependencies-a908c51d85 branch May 11, 2026 15:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@cbeer