Bump the minor-and-patch group with 13 updates

[dependabot]

Bumps the minor-and-patch group with 13 updates:

Package	From	To
debug	1.8.0	1.9.0
rubocop-sorbet	0.7.4	0.7.6
rubocop-rspec	2.24.1	2.25.0
rake	13.0.6	13.1.0
json_api_client	1.21.1	1.22.0
identity_cache	1.4.1	1.5.1
google-protobuf	3.24.4	3.25.1
graphql	2.1.5	2.1.7
sidekiq	7.1.6	7.2.0
nokogiri	1.15.4	1.15.5
bcrypt	3.1.19	3.1.20
rbi	0.1.4	0.1.5
sorbet-static-and-runtime	0.5.11089	0.5.11150

Updates debug from 1.8.0 to 1.9.0

Release notes

Sourced from debug's releases.

v1.9.0

This release fixes many issues reported after v1.8.0, introduce IRB integrated console and more.

What's Changed

• Configuration
  • session_name config by @​ko1 in ruby/debug#1036
  • Support IRB console by @​st0012 in ruby/debug#1024
• CLI
  • Require Reline 0.3.8+ to avoid frozen issue by @​st0012 in ruby/debug#1020
  • Fix prompt list size and colorized code line size to match input line size passed to Reline by @​tompng in ruby/debug#1010
  • Fix broken command history when executing debugger on irb by @​takatea in ruby/debug#997
  • Drop patch for Reline 0.2.7 by @​st0012 in ruby/debug#1022
  • Support IRB console by @​st0012 in ruby/debug#1024
• Remote
  • Allow TracePoint reentry during DAP's evaluation by @​st0012 in ruby/debug#1026
  • CDP: Add debuggerId field in the RETURN OBJECT of "Debugger.enable" by @​ono-max in ruby/debug#1028
  • CDP: disable JavaScript engine based autocompletion by @​ono-max in ruby/debug#1029
  • Do not use HEAD request if 1 port by @​ko1 in ruby/debug#1035
  • Show session_name on connection by @​ko1 in ruby/debug#1037
• Internal
  • Stop assuming Integer#times is written in C by @​k0kubun in ruby/debug#1015
  • Disable cloned breakpoints trace point events by @​vinistock in ruby/debug#1008
  • Unfreeze threads for some object-evaluating commands by @​st0012 in ruby/debug#1030
  • Prevent backtrace from hanging if objects in the backtrace use Thread in inspect by @​vinistock in ruby/debug#1038
  • Compile iseq_collector.c logic only on CRuby by @​eregon in ruby/debug#1039
  • Fix compatibility with Fiber Scheduler. by @​ioquatix in ruby/debug#987
  • Do not make a Fiber for commands by @​ko1 in ruby/debug#1044
  • support Ruby 3.3 by @​ko1 in ruby/debug#1045
• Misc/Doc
  • Fix ruby warnings by @​y-yagi in ruby/debug#993
  • Fix a typo by @​makenowjust in ruby/debug#988
  • Update TrapInterceptor to avoid assigning to an unused variable by @​DavidZivk in ruby/debug#985
  • remove debug print by @​ko1 in ruby/debug#1043
  • Minor punctuation and grammar fixes by @​ahangarha in ruby/debug#1041
• Tests
  • Bump actions/checkout from 3 to 4 by @​dependabot in ruby/debug#1014

New Contributors

• @​dependabot made their first contribution in ruby/debug#1014
• @​tompng made their first contribution in ruby/debug#1010
• @​takatea made their first contribution in ruby/debug#997
• @​y-yagi made their first contribution in ruby/debug#993
• @​DavidZivk made their first contribution in ruby/debug#985
• @​eregon made their first contribution in ruby/debug#1039
• @​ahangarha made their first contribution in ruby/debug#1041
• @​ioquatix made their first contribution in ruby/debug#987

Full Changelog: ruby/debug@v1.8.0...v1.9.0

Commits

• 65519e4 v1.9.0
• c855148 check 3.2 on protocol.yml
• acd5fc5 support Ruby 3.3
• 04c22c5 Do not make a Fiber for commands
• 3d44584 fix indentation
• 9c3b8c4 Revert "Increase timeout to 30 seconds."
• 0b32043 Support Ruby 3.1+.
• bfe9568 Use actual per-thread variable.
• 6716762 Increase timeout to 30 seconds.
• 17345bf Don't let @q_cmd.pop enter the fiber scheduler.
• Additional commits viewable in compare view

Updates rubocop-sorbet from 0.7.4 to 0.7.6

Release notes

Sourced from rubocop-sorbet's releases.

v0.7.6

What's Changed

🛠 Other Changes

• Forbid usage of type aliased shapes by @​KaanOzkan in Shopify/rubocop-sorbet#181

Full Changelog: Shopify/rubocop-sorbet@v0.7.5...v0.7.6

v0.7.5

What's Changed

🐛 Bug Fixes

• ForbidTStruct handles nilable properties by @​Morriar in Shopify/rubocop-sorbet#180
• Make incompatible override rule not fail on incomplete signatures by @​vinistock in Shopify/rubocop-sorbet#191

🛠 Other Changes

• Disable InternalAffairs/UndefinedConfig for now by @​sambostock in Shopify/rubocop-sorbet#184
• Refactor ForbidIncludeConstLiteral by @​sambostock in Shopify/rubocop-sorbet#153
• Extract lint & docs CI job by @​sambostock in Shopify/rubocop-sorbet#187
• Document SignatureBuildOrder cop by @​sambostock in Shopify/rubocop-sorbet#186
• Use mixin instead of superclass for signature cops by @​sambostock in Shopify/rubocop-sorbet#183
• Refactor & Optimize EmptyLineAfterSig by @​sambostock in Shopify/rubocop-sorbet#185
• Enable EmptyLineAfterSig in RBI config by @​sambostock in Shopify/rubocop-sorbet#188

Full Changelog: Shopify/rubocop-sorbet@v0.7.4...v0.7.5

Commits

• a414cb7 Bump version to v0.7.6
• 6613f8e Merge pull request #181 from Shopify/ko/aliased-shapes
• 5bb7bfe Increment VersionAdded metadata
• 139ca55 Use descendant search
• 8f3126a Bump version to v0.7.5
• 8d87472 Merge pull request #191 from Shopify/vs/fix_incompatible_override_breaking
• 602e946 Make incompatible override rule not fail on incomplete signatures
• d94f631 Merge pull request #188 from Shopify/empty-lines-in-rbis
• 5183f23 Enable EmptyLineAfterSig in RBI config
• 065ac0c Detect empty lines between multiple signatures
• Additional commits viewable in compare view

Updates rubocop-rspec from 2.24.1 to 2.25.0

Release notes

Sourced from rubocop-rspec's releases.

RuboCop RSpec v2.25.0

• Add support single quoted string and percent string and heredoc for RSpec/Rails/HttpStatus. (@​ydah)
• Change to be inline disable for RSpec/SpecFilePathFormat like RSpec/FilePath. (@​ydah)
• Fix a false positive for RSpec/MetadataStyle with example groups having multiple string arguments. (@​franzliedke)

Changelog

Sourced from rubocop-rspec's changelog.

2.25.0 (2023-10-27)

• Add support single quoted string and percent string and heredoc for RSpec/Rails/HttpStatus. ([@​ydah])
• Change to be inline disable for RSpec/SpecFilePathFormat like RSpec/FilePath. ([@​ydah])
• Fix a false positive for RSpec/MetadataStyle with example groups having multiple string arguments. ([@​franzliedke])

Commits

• d556de0 Merge pull request #1736 from rubocop/release
• aa89292 Bump version to v2.25.0
• 860719e Merge pull request #1731 from franzliedke/1714-metadata-style-autocorrect-str...
• 950a5b4 RSpec/MetadataStyle: Support multiple string arguments before metadata
• a39b57b Fix typo in method name
• 1c42da1 Merge pull request #1726 from rubocop/1720
• e609b2a Merge pull request #1729 from rubocop/fix/1728
• 725c2b4 Merge pull request #1730 from rubocop/followup
• 7cf365f Follow up rubocop/rubocop-rspec#1692...
• 11e9bc6 Add documentation for RSpec/ExampleLength configuration option `CountAsOne:...
• Additional commits viewable in compare view

Updates rake from 13.0.6 to 13.1.0

Commits

• 5476cda Bump up v13.1.0
• 1b6afad Merge pull request #521 from ruby/dependabot/github_actions/ruby/setup-ruby-1...
• 8b2a01c Bump ruby/setup-ruby from 1.156.0 to 1.157.0
• 1607fbf Merge pull request #520 from ruby/dependabot/github_actions/actions/checkout-...
• 6594585 Bump actions/checkout from 4.1.0 to 4.1.1
• 6717ce8 Merge pull request #519 from ruby/dependabot/github_actions/ruby/setup-ruby-1...
• 4b4b211 Bump ruby/setup-ruby from 1.155.0 to 1.156.0
• 5e76ef6 Merge pull request #518 from ruby/dependabot/github_actions/ruby/setup-ruby-1...
• 8d39c6b Bump ruby/setup-ruby from 1.154.0 to 1.155.0
• 191a9d7 Merge pull request #517 from ruby/dependabot/github_actions/ruby/setup-ruby-1...
• Additional commits viewable in compare view

Updates json_api_client from 1.21.1 to 1.22.0

Changelog

Sourced from json_api_client's changelog.

1.22.0

• #403 - Feature: Use the association options to lookup relationship class
• #406 - Deep-merge nested additional_params

Commits

• afeb8f8 version bump: v1.22.0
• 17f1399 Merge pull request #403 from sebasjimenez10/inspect-associations-for-computin...
• fcb5fbd Merge branch 'master' into inspect-associations-for-computing-type
• b3f6bda Merge pull request #411 from gaorlov/gaorlov/actions-ruby-setup-update
• aee59dd updating Minitest namespace
• a2a8dad caching bunder
• b528ec2 uncaching bunder
• 0a0503b bumping checkout action
• e436178 adding explicit minitest dependency
• 367fbbe adding explicit minitest dependency
• Additional commits viewable in compare view

Updates identity_cache from 1.4.1 to 1.5.1

Changelog

Sourced from identity_cache's changelog.

1.5.1

• Fix parent cache invalidation for custom foreign key associations

1.5.0

• Require Active Record 7+
• Require Ruby 3+
• Improve compatibility with Active Record 7.1.

Commits

• 78d5bf4 Merge pull request #549 from Shopify/version_1_5_1
• d4928cd update version
• b391146 Merge pull request #548 from Shopify/fix-association-foreign-key-reference
• 26a4bcf use foreign_key to reference parent association
• d52de88 Release 1.5.0
• 7072861 Merge pull request #547 from Shopify/more-deprecations
• c4663e9 Fix another Active Record deprecation
• 76b1a7a Merge pull request #544 from eiskrenkov/fix-connection-pool-list-deprecation-...
• ca99f7b Fix Active Record's connection_pool_list deprecation warning
• 7486994 Merge pull request #546 from Shopify/fix-ci
• Additional commits viewable in compare view

Updates google-protobuf from 3.24.4 to 3.25.1

Commits

• 7f94235 Updating version.json and repo version numbers to: 25.1
• e4b00c7 Add support for extensions in CRuby, JRuby, and FFI Ruby (#14703) (#14756)
• 2495d4f Add support for options in CRuby, JRuby and FFI (#14594) (#14739)
• 6b5d8db Updating version.json and repo version numbers to: 25.0
• 0a5d6d4 Check that ffi-compiler loads before using it to define tasks. (#14538) (#14560)
• ba1aab2 Updating version.json and repo version numbers to: 25.0-rc2
• 896f3d8 Updating version.json and repo version numbers to: 25.0-rc1
• 4b301ad Auto-generate files after cl/573375994
• b8654c2 Auto-generate files after cl/573338934
• 2b7a816 Auto-generate files after cl/572041162
• Additional commits viewable in compare view

Updates graphql from 2.1.5 to 2.1.7

Changelog

Sourced from graphql's changelog.

2.1.7

New features

• Make NullContext inherit from Context, to make typechecking easier #4709
• Accept a custom Schema.query_class to use for executing queries #4679

Bug fixes

• Default reauthorize_scoped_objects to false #4720
• Fix subscriptions.trigger with custom enum values #4713
• Fix backtrace: true with GraphQL-Pro @defer #4708
• Omit to_h from Input Object validation error message #4701
• When trimming whitespace from block strings, remove first and last lines that contain only whitespace #4704

2.1.6 (2 Nov 2023)

Breaking Changes

• The parser cache is now opt-in. Add config.graphql.parser_cache = true to your Rails environment setup to enable it. #4648

New features

• New ISO8601Duration scalar #4688

Bug fixes

• Trace: fix custom trace mode inheritance #4693

Commits

• f852790 2.1.7
• 1b157b2 Merge pull request #4720 from rmosolgo/fix-scoped-default
• ee45c19 Default to re-authorizing scoped items (as documented), fix skipping for conn...
• 7265bd6 Merge pull request #4716 from rmosolgo/fix-subscription-trigger-enums
• 8300420 Merge pull request #4714 from rmosolgo/null-context-context
• 1ba5e3d Fix triggering with custom enum value, fixes #4713
• 9fad5c3 Make NullContext inherit from Context; fixes #4709
• 109c26c Merge pull request #4704 from fpacanowski/master
• e3fe8a6 Fix BlockString.trim_whitespace to conform to spec.
• 565b62f Merge pull request #4679 from rmosolgo/custom-query-class
• Additional commits viewable in compare view

Updates sidekiq from 7.1.6 to 7.2.0

Changelog

Sourced from sidekiq's changelog.

7.2.0

• sidekiq_retries_exhausted can return :discard to avoid the deadset and all death handlers #6091
• Metrics filtering by job class in Web UI #5974
• Better readability and formatting for numbers within the Web UI #6080
• Add explicit error if user code tries to nest test modes #6078

Sidekiq::Testing.inline! # global setting
Sidekiq::Testing.fake! do # override within block
  # ok
  Sidekiq::Testing.inline! do # can't override the override
    # not ok, nested
  end
end

• SECURITY Forbid inline JavaScript execution in Web UI #6074
• Adjust redis-client adapter to avoid method_missing #6083 This can result in app code breaking if your app's Redis API usage was depending on Sidekiq's adapter to correct invalid redis-client API usage. One example:

# bad, not redis-client native
# Unsupported command argument type: TrueClass (TypeError)
Sidekiq.redis { |c| c.set("key", "value", nx: true, ex: 15) }
# good
Sidekiq.redis { |c| c.set("key", "value", "nx", "ex", 15) }

Commits

• 4ec059d changes
• cc4ea58 Support :discard return value in sidekiq_retries_exhausted block (#6091)
• ff0753f changes
• 23bcc24 changes
• 1b9f7db Metrics filtering by class
• a713b69 move out of the root folder
• 3b8a3c3 Avoid using method_missing, fixes #6083
• dad5627 CSP fix for metric period. (#6082)
• 7f83b2a Metrics formatting. (#6080)
• d855240 pro changes
• Additional commits viewable in compare view

Updates nokogiri from 1.15.4 to 1.15.5

Release notes

Sourced from nokogiri's releases.

1.15.5 / 2023-11-17

Dependencies

• [CRuby] Vendored libxml2 is updated to v2.11.6 from v2.11.5. For details please see https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.6
• [CRuby] Vendored libxslt is updated to v1.1.39 from v1.1.38. For details please see https://gitlab.gnome.org/GNOME/libxslt/-/releases/v1.1.39

---

sha256 checksums:

6dfa1d9837ddb233e234d56e244560ab1bc545d3d1744478060e18691f44ded7  nokogiri-1.15.5-aarch64-linux.gem
e3ac6608c6e1714bc11ff04e29a43fedf4cac2aea1bd88256cc3b927c06f347f  nokogiri-1.15.5-arm-linux.gem
4d7b15d53c0397d131376a19875aa97dd1c8b404c2c03bd2171f9b77e9592d40  nokogiri-1.15.5-arm64-darwin.gem
5f87e71aaeb4f7479b94698737a0aacea77836b4805c7433b655e9565bd56cfe  nokogiri-1.15.5-java.gem
7612be800909ae51e0a7cfbe1f768757857a9ff0339686814ca67d9bae271ca2  nokogiri-1.15.5-x64-mingw-ucrt.gem
28fd78d98e12005fe017db5ceccb74b2497f30582e6e26a3344200625fe46aae  nokogiri-1.15.5-x64-mingw32.gem
0d1b564d7f148a6766380966bb48b23afa72c72c992c69c71d21acd4a7f5c0e4  nokogiri-1.15.5-x86-linux.gem
d27dbf44c19b83e570e65b660a8a921441d1e8b6063ab1b985b516f78e0a2854  nokogiri-1.15.5-x86-mingw32.gem
10bafa54935f68aebd23235cb0fc7dfb8f6f5e52131379484771247eb3a0cc70  nokogiri-1.15.5-x86_64-darwin.gem
c5d9453cc155dc15f08ac699cc1293fd994ec6cfacec48e67653aa95ee946adf  nokogiri-1.15.5-x86_64-linux.gem
22448ca35dbcbdcec60dbe25ccf452b685a5436c28f21b2fec2e20917aba9100  nokogiri-1.15.5.gem

Changelog

Sourced from nokogiri's changelog.

1.15.5 / 2023-11-17

Dependencies

• [CRuby] Vendored libxml2 is updated to v2.11.6 from v2.11.5. For details please see https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.6
• [CRuby] Vendored libxslt is updated to v1.1.39 from v1.1.38. For details please see https://gitlab.gnome.org/GNOME/libxslt/-/releases/v1.1.39

Commits

• 5745d4b version bump to v1.15.5
• da2d908 ci: add ruby version to vendored libs cache key (backport) (#3029)
• 0f56450 ci: add ruby version to vendored libs cache key (#3028)
• 32b2c35 dep: update libxml to 2.11.5 and libxslt to 1.1.39 (v1.15.x) (#3025)
• b8f7e16 ci: skip the BSD builds for now
• aa3208b dep: update libxml to 2.11.5 and libxslt to 1.1.39
• 141c2ac doc(fix): correct :nodoc:
• See full diff in compare view

Updates bcrypt from 3.1.19 to 3.1.20

Changelog

Sourced from bcrypt's changelog.

3.1.20 Nov 17 2023

• Limit packaged files -- decrease gem filesize by ~28% [GH #272 by @​pusewicz]

Commits

• 58f8afd Bump version/changelog
• 107f476 Merge pull request #273 from bcrypt-ruby/ci-updates
• b23e4bd Run old rubies on Ubuntu 20.04
• b8dbc85 Add 3.2 to the test matrix
• 7210681 Merge pull request #272 from pusewicz/patch-1
• d9ed4e2 Limit packaged files
• See full diff in compare view

Updates rbi from 0.1.4 to 0.1.5

Release notes

Sourced from rbi's releases.

v0.1.5

What's Changed

🛠 Other Changes

• Update to prism v0.18.0 by @​andyw8 in Shopify/rbi#251

Full Changelog: Shopify/rbi@v0.1.4...v0.1.5

Commits

• bc8ed31 Merge pull request #251 from Shopify/andyw8/update-to-prism-v0.18.0
• 4284dee Update to prism v0.18.0
• 4934de6 Update automerge workflow
• 21a0b0d Merge pull request #250 from Shopify/dependabot/github_actions/actions/github...
• fc6bfc8 Bump actions/github-script from 6 to 7
• See full diff in compare view

Updates sorbet-static-and-runtime from 0.5.11089 to 0.5.11150

Release notes

Sourced from sorbet-static-and-runtime's releases.

sorbet 0.5.11149.20231208112425-aa9837ad9

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.5.11149', :group => :development
gem 'sorbet-runtime', '0.5.11149'

sorbet 0.5.11148.20231207102341-a5fbbcffe

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.5.11148', :group => :development
gem 'sorbet-runtime', '0.5.11148'

sorbet 0.5.11147.20231206125031-444c98fd1

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.5.11147', :group => :development
gem 'sorbet-runtime', '0.5.11147'

sorbet 0.5.11146.20231205161344-f80fb3306

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.5.11146', :group => :development
gem 'sorbet-runtime', '0.5.11146'

sorbet 0.5.11145.20231204103501-406a8c4f5

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.5.11145', :group => :development
gem 'sorbet-runtime', '0.5.11145'

sorbet 0.5.11144.20231130132756-d0c07b35c

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.5.11144', :group => :development
gem 'sorbet-runtime', '0.5.11144'

sorbet 0.5.11143.20231129164529-e6c7d518d

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.5.11143', :group => :development
gem 'sorbet-runtime', '0.5.11143'

sorbet 0.5.11142.20231122111018-b1ec9d25f

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions