Skip to content

bundle(deps-dev): bump the ruby-deps group with 3 updates #609

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Dec 9, 2024
Merged

bundle(deps-dev): bump the ruby-deps group with 3 updates #609

merged 1 commit into from
Dec 9, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 7, 2024

Bumps the ruby-deps group with 3 updates: json, minitest and nokogiri.

Updates json from 2.8.2 to 2.9.0

Release notes

Sourced from json's releases.

v2.9.0

What's Changed

  • Fix C implementation of script_safe escaping to not confuse some other 3 wide characters with \u2028 and \u2029. e.g. JSON.generate(["倩", "瀨"], script_safe: true) would generate the wrong JSON.
  • JSON.dump(object, some_io) now write into the IO in chunks while previously it would buffer the entire JSON before writing.
  • JSON::GeneratorError now has a #invalid_object attribute, making it easier to understand why an object tree cannot be serialized.
  • Numerous improvements to the JRuby extension.

Full Changelog: ruby/json@v2.8.2...v2.9.0

Changelog

Sourced from json's changelog.

2024-12-03 (2.9.0)

  • Fix C implementation of script_safe escaping to not confuse some other 3 wide characters with \u2028 and \u2029. e.g. JSON.generate(["倩", "瀨"], script_safe: true) would generate the wrong JSON.
  • JSON.dump(object, some_io) now write into the IO in chunks while previously it would buffer the entire JSON before writing.
  • JSON::GeneratorError now has a #invalid_object attribute, making it easier to understand why an object tree cannot be serialized.
  • Numerous improvements to the JRuby extension.
Commits
  • 20b501a Merge pull request #716 from byroot/fix-script-safe-kanji
  • 93a7f87 Fix generate(script_safe: true) to not confuse unrelated characters
  • d0c38f2 Add missing entry in changelog
  • 686dcb1 Merge pull request #713 from mame/prevent-printf-format-warning
  • b8c1490 Prevent a warning of "a candidate for gnu_printf format attribute"
  • dbd5042 Merge pull request #712 from byroot/generation-error
  • 03d7414 JSON::GeneratorError expose invalid object
  • 55015fa Merge pull request #708 from headius/jruby_optz
  • ee6bd85 Merge pull request #709 from byroot/stop-mark-locations
  • e10d0bf Stop using rb_gc_mark_locations
  • Additional commits viewable in compare view

Updates minitest from 5.25.2 to 5.25.4

Changelog

Sourced from minitest's changelog.

=== 5.25.4 / 2024-12-03

  • 1 bug fix:

    • Fix for must_verify definition if only requiring minitest/mock (but why?).

=== 5.25.3 / 2024-12-03

  • 5 bug fixes:

    • Fixed assert_mock to fail instead of raise on unmet mock expectations.
    • Fixed assert_mock to take an optional message argument.
    • Fixed formatting of unmet mock expectation messages.
    • Fixed missing must_verify expectation to match assert_mock.
    • minitest/pride: Fixed to use true colors with *-direct terminals (bk2204)
Commits
  • d84437f prepped for release
  • 51cfac5 - Fix for must_verify definition if only requiring minitest/mock (but why?).
  • 704d310 prepped for release
  • 2d542ff - Fixed formatting of unmet mock expectation messages.
  • 212de90 - minitest/pride: Fixed to use true colors with *-direct terminals (bk2204)
  • See full diff in compare view

Updates nokogiri from 1.16.7 to 1.16.8

Release notes

Sourced from nokogiri's releases.

v1.16.8 / 2024-12-02

Fixed

  • [CRuby] When serializing HTML5 documents, properly escape foreign content "style" elements. Normally, a "style" tag contains raw text that does not need entity-escaping, but when it appears in either SVG or MathML foreign content, the "style" tag is now correctly escaped when serialized. @​flavorjones

sha256 checksums:

b1d41cd9abf4180adef496cc8c9fcb5b2e38d39f5e23c8a2445362226a5df6b8  nokogiri-1.16.8-aarch64-linux.gem
b7aa4e8533a720e432d09b52a2ec089b55cf3ee66c916b44a0d9b6608df7bf8c  nokogiri-1.16.8-arm64-darwin.gem
8cbd2971624fc073b9430d86475da031903494dcb83c2339e13f7f22a4de6fad  nokogiri-1.16.8-arm-linux.gem
dece4bf9a663b2d6b6e874716297ad414c95be694656972d54049bd088f752a1  nokogiri-1.16.8.gem
8652028e72a38f2221c810550d03c91682b414e06f6271149139a9042cf727e6  nokogiri-1.16.8-java.gem
861e2d7f24b0c7f5ea2a26e6d99af7e727d7641f0eab27b9b6c51b8a0666c805  nokogiri-1.16.8-x64-mingw32.gem
23c9a8ae47afa2973cbca9e3d38c16f40ff336919f961802c4a3a5e39c767138  nokogiri-1.16.8-x64-mingw-ucrt.gem
6c40d7dc444f752634bf6ee8b53a55c3cfca3f9df52be46b8abcc559ccd49e47  nokogiri-1.16.8-x86_64-darwin.gem
ed7b1f80713ac968dd93fe2b96fc3df6e448b73bd02dd77d5fc89ba92a1ed6d9  nokogiri-1.16.8-x86_64-linux.gem
f97760e6320166d48234029bed9e999521a888376bd2b7e04f4c054537154f16  nokogiri-1.16.8-x86-linux.gem
ea48d7415b89f5dd3ff5a8f82bb2ec56fdc3431444381143fe90bb418eb9ea35  nokogiri-1.16.8-x86-mingw32.gem
Changelog

Sourced from nokogiri's changelog.

v1.16.8 / 2024-12-02

Fixed

  • [CRuby] When serializing HTML5 documents, properly escape foreign content "style" elements. Normally, a "style" tag contains raw text that does not need entity-escaping, but when it appears in either SVG or MathML foreign content, the "style" tag is now correctly escaped when serialized. @​flavorjones
Commits
  • 7aaf1aa version bump to v1.16.8
  • 973ea98 fix: escape foreign style tag content when serializing HTML5 (v1.16.x) (#3349)
  • 573a087 doc: update CHANGELOG
  • 02572e8 fix: escape foreign style tag content when serializing HTML5
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
bundle(deps-dev): bump the ruby-deps group with 3 updates
0966b19 
Bumps the ruby-deps group with 3 updates: [json](https://github.com/ruby/json), [minitest](https://github.com/minitest/minitest) and [nokogiri](https://github.com/sparklemotion/nokogiri).


Updates `json` from 2.8.2 to 2.9.0
- [Release notes](https://github.com/ruby/json/releases)
- [Changelog](https://github.com/ruby/json/blob/master/CHANGES.md)
- [Commits](ruby/json@v2.8.2...v2.9.0)

Updates `minitest` from 5.25.2 to 5.25.4
- [Changelog](https://github.com/minitest/minitest/blob/master/History.rdoc)
- [Commits](minitest/minitest@v5.25.2...v5.25.4)

Updates `nokogiri` from 1.16.7 to 1.16.8
- [Release notes](https://github.com/sparklemotion/nokogiri/releases)
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md)
- [Commits](sparklemotion/nokogiri@v1.16.7...v1.16.8)

---
updated-dependencies:
- dependency-name: json
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: ruby-deps
- dependency-name: minitest
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: ruby-deps
- dependency-name: nokogiri
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: ruby-deps
...

Signed-off-by: dependabot[bot] <[email protected]>
@kjaymiller kjaymiller merged commit a64fb60 into gh-pages Dec 9, 2024
5 checks passed
@dependabot dependabot bot deleted the dependabot/bundler/ruby-deps-3d0cabc67a branch December 9, 2024 12:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kjaymiller kjaymiller kjaymiller approved these changes

Assignees
No one assigned
Labels
dependencies ruby
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@kjaymiller