chore(deps): bump the ruby-deps group across 1 directory with 9 updates

[dependabot]

Bumps the ruby-deps group with 9 updates in the / directory:

Package	From	To
benchmark	0.4.1	0.5.0
jquery-rails	4.6.0	4.6.1
simple_form	5.3.1	5.4.0
icalendar	2.12.0	2.12.1
commonmarker	2.4.1	2.5.0
rubocop	1.81.1	1.81.6
rubocop-performance	1.26.0	1.26.1
bullet	8.0.8	8.1.0
selenium-webdriver	4.36.0	4.38.0

Updates benchmark from 0.4.1 to 0.5.0

Release notes

Sourced from benchmark's releases.

v0.5.0

What's Changed

• Add Benchmark.ms method and enhance realtime with unit parameter by @​nvasilevski in ruby/benchmark#38

New Contributors

• @​nvasilevski made their first contribution in ruby/benchmark#38

Full Changelog: ruby/benchmark@v0.4.1...v0.5.0

Commits

• efa6e61 v0.5.0
• 7ba0632 Merge pull request #39 from ruby/dependabot/github_actions/step-security/hard...
• 837ba3c Bump step-security/harden-runner from 2.13.0 to 2.13.1
• 3857561 Update ruby/setup-ruby
• fc27ad1 Merge pull request #38 from Shopify/add-ms-function-and-pass-unit-arg-to-real...
• 6a3fe1f Add Benchmark.ms method and enhance realtime with unit parameter
• 4e39de6 Merge pull request #37 from ruby/dependabot/github_actions/actions/checkout-5
• 15a756a Bump actions/checkout from 4 to 5
• 9e80d1b Merge pull request #36 from ruby/dependabot/github_actions/step-security/hard...
• ef259f4 Bump step-security/harden-runner from 2.12.2 to 2.13.0
• Additional commits viewable in compare view

Updates jquery-rails from 4.6.0 to 4.6.1

Changelog

Sourced from jquery-rails's changelog.

4.6.1

• update jquery to 3.7.1

Commits

• 0342960 Release v4.6.1 with jQuery v3.7.1
• 039b12e Update jquery to v3.7.1 (#305)
• See full diff in compare view

Updates simple_form from 5.3.1 to 5.4.0

Release notes

Sourced from simple_form's releases.

v5.4.0

https://github.com/heartcombo/simple_form/blob/v5.4.0/CHANGELOG.md

Changelog

Sourced from simple_form's changelog.

5.4.0

• Add support for Ruby 3.4 and Rails 7.2/8.0/8.1. (no changes required)
• Drop support for Rails < 7 and Ruby < 2.7.
• Add weekday input. #1846
• Remove redundant aria-required attribute for required fields. #1823
• Integrate :rich_text_area with placeholders #1842
• Fix encrypted attributes improperly casted (later fixed in Rails) #1836
• Pass base object to human_attribute_name in labels #1812

Commits

• 9e7c934 Release v5.4.0
• c497d2f Expand changelog [ci skip]
• 8b3e5cc Update to test with Rails v8.1.0 final
• b930f9d Update to test with Rails v8.1.0.rc1
• 2f5d481 Expand collection select input test with multiple disabled options
• a12f4b7 Merge pull request #1849 from tagliala/chore/fix-typos
• 74b9c68 Merge pull request #1845 from heartcombo/drop-old-rubies
• fee331e Make country_select a development dependency on the gemspec
• 6f866e0 Fix country_select tests looking for separator option
• 651f119 Remove more extraneous version checks
• Additional commits viewable in compare view

Updates icalendar from 2.12.0 to 2.12.1

Changelog

Sourced from icalendar's changelog.

2.12.1 - 2025-10-19

• Fix a problem with invalid ics generation for calendars with custom properties that include a tzid parameter.

Commits

• 0aa950a Bump version to 2.12.1
• f9778d3 Merge pull request #318 from icalendar/fix-tz-store
• 21379f4 Prevent surprises by not delegating all DowncasedHash methods to Hash
• c8c08f4 Pass timezone_store in the context instead of params
• a515e4d Add context to Icalendar::Value for information that should not be output dir...
• 5844e0a Create parser test for issue #317
• See full diff in compare view

Updates commonmarker from 2.4.1 to 2.5.0

Release notes

Sourced from commonmarker's releases.

v2.5.0

What's Changed

• Bump syntect from 5.2.0 to 5.3.0 by @​dependabot[bot] in gjtorikian/commonmarker#399
• Bump magnus from 0.8.1 to 0.8.2 by @​dependabot[bot] in gjtorikian/commonmarker#400
• Bump Comrak to 0.44.0, add inline_footnotes support. by @​kivikakk in gjtorikian/commonmarker#401
• 💎 2.5.0 by @​kivikakk in gjtorikian/commonmarker#402
• [skip test] Release v2.5.0 by @​github-actions[bot] in gjtorikian/commonmarker#403

Full Changelog: gjtorikian/commonmarker@v2.4.1...v2.5.0

Changelog

Sourced from commonmarker's changelog.

[v2.5.0] - 14-10-2025

What's Changed

• Bump syntect from 5.2.0 to 5.3.0 by @​dependabot[bot] in gjtorikian/commonmarker#399
• Bump magnus from 0.8.1 to 0.8.2 by @​dependabot[bot] in gjtorikian/commonmarker#400
• Bump Comrak to 0.44.0, add inline_footnotes support. by @​kivikakk in gjtorikian/commonmarker#401
• 💎 2.5.0 by @​kivikakk in gjtorikian/commonmarker#402

Full Changelog: gjtorikian/commonmarker@v2.4.1...v2.5.0

Commits

• 389b872 Merge pull request #403 from gjtorikian/release/v2.5.0
• d8cb6b6 [skip test] update changelog
• 88f07e2 Merge pull request #402 from gjtorikian/push-soykspqvskku
• 6c1829a 💎 2.5.0
• e2964c7 Merge pull request #401 from gjtorikian/push-tlqslwlzokxt
• 076afd2 Add inline_footnotes support
• 569f901 Bump comrak from 0.43.0 to 0.44.0
• c9edb62 Merge pull request #400 from gjtorikian/dependabot/cargo/magnus-0.8.2
• abe2613 Bump magnus from 0.8.1 to 0.8.2
• e32e283 Merge pull request #399 from gjtorikian/dependabot/cargo/syntect-5.3.0
• Additional commits viewable in compare view

Updates rubocop from 1.81.1 to 1.81.6

Release notes

Sourced from rubocop's releases.

RuboCop v1.81.6

Bug fixes

• #14587: Fix an error for Lint/SelfAssignment when using []= assignment with no arguments. (@​koic)
• #14572: Fix an error for Style/ArrayIntersect when intersection(other).any? is called without a receiver. (@​koic)
• #14599: Fix a crash when Style/ConditionalAssignment is configured with assign_inside_conditional and the conditional contains a multi-line regex. (@​martinemde)
• #14574: Fix false positives for Style/RedundantInterpolation when using a one-line => pattern matching. (@​koic)
• #14602: Fix false positives for Style/EndlessMethod when heredoc is used in method body. (@​koic)
• #14594: Fix false positives for Style/EndlessMethod when the endless method would exceed the maximum line length. (@​koic)
• #14605: Fix false positive for Lint/EmptyInterpolation when interpolation is inside a %W literal. (@​dvandersluis)
• #14604: Fix Style/RedundantFormat false positive when a interpolated value is given to a specifier with a width or precision. (@​dvandersluis)
• #14607: Fix Style/RedundantFormat handling control characters like \n. (@​dvandersluis)
• #14577: Fix an incorrect autocorrect for Style/Semicolon when a method call using hash value omission without parentheses is terminated with a semicolon. (@​koic)
• #14552: Fix a false positive for Security/JSONLoad when create_additions is explicitly specified. (@​earlopain)

Changes

• #14566: Enhance Lint::ConstantOverwrittenInRescue cop to detect offenses within fully qualified constants. (@​viralpraxis)
• #14575: Enhance Lint/ConstantOverwrittenInRescue cop to detect offenses within nested constants. (@​viralpraxis)
• #14596: Change Lint/ConstantOverwrittenInRescue to detect any constant assignment. (@​viralpraxis)
• #14568: Make Style/LambdaCall autocorrection contextual. (@​koic)

Changelog

Sourced from rubocop's changelog.

1.81.6 (2025-10-21)

Bug fixes

• #14587: Fix an error for Lint/SelfAssignment when using []= assignment with no arguments. ([@​koic][])
• #14572: Fix an error for Style/ArrayIntersect when intersection(other).any? is called without a receiver. ([@​koic][])
• #14599: Fix a crash when Style/ConditionalAssignment is configured with assign_inside_conditional and the conditional contains a multi-line regex. ([@​martinemde][])
• #14574: Fix false positives for Style/RedundantInterpolation when using a one-line => pattern matching. ([@​koic][])
• #14602: Fix false positives for Style/EndlessMethod when heredoc is used in method body. ([@​koic][])
• #14594: Fix false positives for Style/EndlessMethod when the endless method would exceed the maximum line length. ([@​koic][])
• #14605: Fix false positive for Lint/EmptyInterpolation when interpolation is inside a %W literal. ([@​dvandersluis][])
• #14604: Fix Style/RedundantFormat false positive when a interpolated value is given to a specifier with a width or precision. ([@​dvandersluis][])
• #14607: Fix Style/RedundantFormat handling control characters like \n. ([@​dvandersluis][])
• #14577: Fix an incorrect autocorrect for Style/Semicolon when a method call using hash value omission without parentheses is terminated with a semicolon. ([@​koic][])
• #14552: Fix a false positive for Security/JSONLoad when create_additions is explicitly specified. ([@​earlopain][])

Changes

• #14566: Enhance Lint::ConstantOverwrittenInRescue cop to detect offenses within fully qualified constants. ([@​viralpraxis][])
• #14575: Enhance Lint/ConstantOverwrittenInRescue cop to detect offenses within nested constants. ([@​viralpraxis][])
• #14596: Change Lint/ConstantOverwrittenInRescue to detect any constant assignment. ([@​viralpraxis][])
• #14568: Make Style/LambdaCall autocorrection contextual. ([@​koic][])

Commits

• 8c98655 Cut 1.81.6
• f5431f5 Update broken link
• 3d76fb0 Update Changelog
• fe019a8 Merge pull request #14611 from r7kamura/CopDirectiveSyntax-comment-improve
• df813a3 Improve Lint/CopDirectiveSyntax cop documentation examples
• 905c991 Merge pull request #14606 from dvandersluis/issue/14605
• f7f653f Merge pull request #14608 from dvandersluis/issue/14604
• 91ed4aa [Fix #14604] Fix Style/RedundantFormat false positive when a interpolated v...
• bb5d1a3 [Fix #14605] Fix false positive for Lint/EmptyInterpolation when interpolat...
• 783a4bf Merge pull request #14607 from dvandersluis/redundant-format-control-chars
• Additional commits viewable in compare view

Updates rubocop-performance from 1.26.0 to 1.26.1

Release notes

Sourced from rubocop-performance's releases.

RuboCop Performance v1.26.1

Bug fixes

• #517: Fix false positives for Performance/RedundantStringChars when using str.chars[0, 2]. (@​koic)

Changes

• #520: Disable Performance/BigDecimalWithNumericArgument by default. (@​earlopain)

Changelog

Sourced from rubocop-performance's changelog.

1.26.1 (2025-10-18)

Bug fixes

• #517: Fix false positives for Performance/RedundantStringChars when using str.chars[0, 2]. ([@​koic][])

Changes

• #520: Disable Performance/BigDecimalWithNumericArgument by default. ([@​earlopain][])

Commits

• 4783c90 Cut 1.26.1
• d3f1806 Update Changelog
• a63df04 Merge pull request #521 from Earlopain/disable-bigdecimal
• 7a5499f [Fix #520] Disable Performance/BigDecimalWithNumericArgument by default
• 03a6071 Merge pull request #518 from koic/fix_false_positives_for_performance_redunda...
• a1ef194 [Fix #517] Fix false positives for Performance/RedundantStringChars
• 6e1afeb Tweak bug report template
• 60ff474 Suppress RuboCop's offense
• 955429a Switch back docs version to master
• See full diff in compare view

Updates bullet from 8.0.8 to 8.1.0

Changelog

Sourced from bullet's changelog.

8.1.0 (10/23/2025)

• Make get_relation private
• Support Rails 8.1

Commits

• 5f41732 Bumping version to 8.1.0
• 83b6de8 Bumping version to 8.1.0.beta1
• 1d8e90e Merge pull request #758 from saiqulhaq/feat/support-rails81
• 379be32 feat(bullet): add support for ActiveRecord 8.1 to enhance compatibility with ...
• c565be9 Merge pull request #756 from hamajyotan/get_relation-visibility-to-private
• 0b2604a Make get_relation private
• 1dba7aa Merge pull request #755 from flyerhzm/dependabot/github_actions/actions/stale-10
• 6bba5e9 Bump actions/stale from 9 to 10
• 9c8122f Merge pull request #753 from flyerhzm/dependabot/github_actions/actions/check...
• 7b8f54c Bump actions/checkout from 4 to 5
• Additional commits viewable in compare view

Updates selenium-webdriver from 4.36.0 to 4.38.0

Release notes

Sourced from selenium-webdriver's releases.

Selenium 4.38.0

Detailed Changelogs by Component

Java     |     Python     |     DotNet     |     Ruby     |     JavaScript

What's Changed

• [dotnet] [bidi] Avoid using JsonInclude attribute to include optional property for DTO by @​nvborisenko in SeleniumHQ/selenium#16413
• [rb] Bump prism to 1.6.0 by @​Earlopain in SeleniumHQ/selenium#16450
• [java] JSpecify annotations for ExecuteMethod by @​mk868 in SeleniumHQ/selenium#16464
• [rb] Fix Network issue by removing nil values on network requests by @​aguspe in SeleniumHQ/selenium#16442
• [py] Replaced :param: and :args: from docstrings by @​iampopovich in SeleniumHQ/selenium#16469
• [java] JSpecify annotations for `org.openqa.selenium.federatedcredent… by @​mk868 in SeleniumHQ/selenium#16461
• [java] JSpecify annotations for org.openqa.selenium.interactions by @​mk868 in SeleniumHQ/selenium#16462
• [java][rb] Remove cruft from old Travis CI environment by @​cgoldberg in SeleniumHQ/selenium#16473
• [java] JSpecify annotations for org.openqa.selenium.net by @​mk868 in SeleniumHQ/selenium#16463
• [rb] remove deprecated classes for previous implementation of log han… by @​titusfortner in SeleniumHQ/selenium#16474
• [build] minimize number of ruby targets run with bidi by @​titusfortner in SeleniumHQ/selenium#16477
• [java] JSpecify annotations for Credential and MBean by @​mk868 in SeleniumHQ/selenium#16481
• [java] JSpecify annotations for ScriptKey and UnpinnedScriptKey by @​mk868 in SeleniumHQ/selenium#16483
• [java] JSpecify annotations for FileDetector by @​mk868 in SeleniumHQ/selenium#16482
• [java] JSpecify annotations for ExpectedCondition by @​mk868 in SeleniumHQ/selenium#16489
• [java] JSpecify annotations for Response SessionId HttpSessionId by @​mk868 in SeleniumHQ/selenium#16490
• [rb][build] improve ruby local_dev generation by @​titusfortner in SeleniumHQ/selenium#16495
• [build] removing test_tag_filter tag that isn't being used anywhere by @​titusfortner in SeleniumHQ/selenium#16496
• [rb][build] disable dev shm for Chrome and Edge on RBE by @​titusfortner in SeleniumHQ/selenium#16497
• [rb] update syntax with rspec linter by @​titusfortner in SeleniumHQ/selenium#16498
• [java][bidi]: add test for onHistoryUpdated event by @​navin772 in SeleniumHQ/selenium#16293
• [py] Bump version of ruff formatter/linter by @​cgoldberg in SeleniumHQ/selenium#16502
• [rust] Fixe Edge version test by @​bonigarcia in SeleniumHQ/selenium#16501
• [py][bidi]: add set_timezone_override command in emulation by @​navin772 in SeleniumHQ/selenium#16500
• [py] Cleanup and convert more doctrings to google-style by @​iampopovich in SeleniumHQ/selenium#16503
• [build] fix update-documentation workflow by @​titusfortner in SeleniumHQ/selenium#16505
• fix workflows for updating documentation from stage release by @​titusfortner in SeleniumHQ/selenium#16506

Full Changelog: SeleniumHQ/selenium@selenium-4.37.0...selenium-4.38.0

Selenium 4.37.0

Detailed Changelogs by Component

Java     |     Python     |     DotNet     |     Ruby     |     JavaScript

... (truncated)

Changelog

Sourced from selenium-webdriver's changelog.

4.38.0 (2025-10-24)

• Fix BiDi Network issue by removing nil values on network requests (#16442)
• Remove cruft from old CI environment (#16473)
• [bidi] remove deprecated classes for log inspector (#16474)
• update devtools versions

4.37.0 (2025-10-16)

• Add CDP for Chrome 141 and remove 138
• Update Chrome/Edge args for test environment (#16376)
• Remove prism dependency (#16437)
• Remove json version constraint (#16436)

Commits

• 281a200 [build] Prepare for release of Selenium 4.38.0 (#16499)
• 0ecbd47 [rb] update syntax with rspec linter (#16498)
• 229e299 [rb][build] disable dev shm for Chrome and Edge on RBE (#16497)
• b3b23f5 [build] minimize number of ruby targets run with bidi (#16477)
• 0606401 [rb][bidi] remove deprecated classes for log inspector (#16474)
• 1300833 [java][rb] Remove cruft from old CI environment (#16473)
• 76c303b [rb] Fix Network issue by removing nil values on network requests (#16442)
• 83f5f77 [rb] Bump prism to 1.6.0 (#16450)
• 6c01a81 Bumping version for Nightly
• 3c1da1e [build] Prepare for release of Selenium 4.37.0 (#16451)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions