Bump the ruby-dependencies group with 4 updates

[dependabot]

Bumps the ruby-dependencies group with 4 updates: puma, collectionspace-mapper, pagy and rails_icons.

Updates puma from 7.1.0 to 7.2.0

Release notes

Sourced from puma's releases.

v7.2.0

7.2.0 On The Corner

• Features

  • Add workers :auto (#3827)
  • Make it possible to restrict control server commands to stats (#3787)

• Bugfixes

  • Don't break if WEB_CONCURRENCY is set to a blank string (#3837)
  • Don't share server between worker 0 and descendants on refork (#3602)
  • Fix phase check race condition in Puma::Cluster#check_workers (#3690)
  • Fix advertising of CLI config before config files are loaded (#3823)

• Performance

  • 17% faster HTTP parsing through pre-interning env keys (#3825)
  • Implement dsize and dcompact functions for Puma::HttpParser, which makes Puma's C-extension GC-compactible (#3828)

• Refactor

  • Remove NoMethodError rescue in Reactor#select_loop (#3831)
  • Various cleanups in the C extension (#3814)
  • Monomorphize handle_request return (#3802)

• Docs

  • Change link to docs/deployment.md in README.md (#3848)
  • Fix formatting for each signal description in signals.md (#3813)
  • Update deployment and Kubernetes docs with Puma configuration tips (#3807)
  • Rename master to main (#3809, #3808, #3800)
  • Fix some minor typos in the docs (#3804)
  • Add GOVERNANCE.md, MAINTAINERS (#3826)
  • Remove Code Climate badge (#3820)
  • Add @​joshuay03 to the maintainer list

• CI

  • Use Minitest 6 where applicable (#3859)
  • Many test suite improvements and flake fixes (#3861, #3863, #3860, #3852, #3857, #3856, #3845, #3843, #3842, #3841, #3822, #3817, #3764)

New Contributors

• @​moozzi made their first contribution in puma/puma#3848
• @​ybiquitous made their first contribution in puma/puma#3813
• @​jrafanie made their first contribution in puma/puma#3804

Full Changelog: puma/puma@v7.1.0...v7.2.0

Changelog

Sourced from puma's changelog.

7.2.0 / 2026-01-20

• Features

  • Add workers :auto (#3827)
  • Make it possible to restrict control server commands to stats (#3787)

• Bugfixes

  • Don't break if WEB_CONCURRENCY is set to a blank string (#3837)
  • Don't share server between worker 0 and descendants on refork (#3602)
  • Fix phase check race condition in Puma::Cluster#check_workers (#3690)
  • Fix advertising of CLI config before config files are loaded (#3823)

• Performance

  • 17% faster HTTP parsing through pre-interning env keys (#3825)
  • Implement dsize and dcompact functions for Puma::HttpParser, which makes Puma's C-extension GC-compactible (#3828)

• Refactor

  • Remove NoMethodError rescue in Reactor#select_loop (#3831)
  • Various cleanups in the C extension (#3814)
  • Monomorphize handle_request return (#3802)

• Docs

  • Change link to docs/deployment.md in README.md (#3848)
  • Fix formatting for each signal description in signals.md (#3813)
  • Update deployment and Kubernetes docs with Puma configuration tips (#3807)
  • Rename master to main (#3809, #3808, #3800)
  • Fix some minor typos in the docs (#3804)
  • Add GOVERNANCE.md, MAINTAINERS (#3826)
  • Remove Code Climate badge (#3820)
  • Add @​joshuay03 to the maintainer list

• CI

  • Use Minitest 6 where applicable (#3859)
  • Many test suite improvements and flake fixes (#3861, #3863, #3860, #3852, #3857, #3856, #3845, #3843, #3842, #3841, #3822, #3817, #3764)

Commits

• 96b5aa6 v7.2.0 (#3864)
• 5d7d1dd Add workers :auto (#3827)
• b8c4783 ci: fix ci - remove append_as_bytes logic, misc changes (#3861)
• 44a3ac4 Fix PR label manager when maintainer comments [ci skip] (#3863)
• 43f5d89 Add GOVERNANCE.md, MAINTAINERS (#3826)
• 21afa66 Use Minitest 6 where applicable (#3859)
• ec7dd61 ci: Update test_http11.rb for TruffleRuby - string size (#3860)
• fa89dbe ci: add ruby 4.0 and rails 8.1 (#3852)
• 98ff11d Fix flaky test test_horrible_queries (#3857)
• da162d7 ci: fix tests.yml (#3856)
• Additional commits viewable in compare view

Updates collectionspace-mapper from 1b7b205 to 4f2f782

Commits

• 4f2f782 build: Update dependencies
• fbfed90 Use data-toolkit branch of collectionspace-refcache
• 05155c9 Use Ruby 3.4.1; Update dependencies
• 879ed15 refactor: Do not require all of active_support
• 2604d94 build: Bump to 6.3.1
• e8eaf4d build: Bundle on new computer
• bce081b bugfix: Allow + and - at beginning of integer and float data types
• See full diff in compare view

Updates pagy from 43.2.6 to 43.2.8

Release notes

Sourced from pagy's releases.

Version 43.2.8

Changes in 43.2.8

• Add fallback to 'en' for unknown locale. Implement #868.
• Fix resolve_page with empty page in classes with non-integer page. Close #863
• Simplify keyset syntax

CHANGELOG

Version 43

We needed a leap version to unequivocally signal that it's not just a major version: it's a complete redesign of the legacy code at all levels, usage and API included.

Why 43? Because it's exactly one step beyond "The answer to the ultimate question of life, the Universe, and everything." 😉

Improvements

This version introduces several enhancements, such as new :countish and :keynav_js paginators and improved automation and configuration processes, reducing setup requirements by 99%. The update also includes a simpler API and new interactive development tools, making it a comprehensive upgrade from previous versions.

• New :countish Paginator
  • Faster than OFFSET and supporting the full UI
• New Keynav Pagination
  • The pagy-exclusive technique using the fastest keyset pagination alongside all frontend helpers.
• New interactive dev-tools
  • New PagyWand to integrate the pagy CSS with your app themes.
  • New Pagy AI available right inside your own app.
• Intelligent automation
  • Configuration requirements reduced by 99%.
  • Simplified JavaScript setup.
  • Automatic I18n loading.
• Simpler API
  • You solely need the pagy method and the @​pagy instance to paginate any collection and use any navigation tag and helper.
  • Methods are autoloaded only if used, and consume no memory otherwise.
  • Methods have narrower scopes and can be overridden without deep knowledge.
• New documentation
  • Very concise, straightforward, and easy to navigate and understand.

Upgrade to 43

See the Upgrade Guide

... (truncated)

Changelog

Sourced from pagy's changelog.

Version 43.2.8

• Add fallback to 'en' for unknown locale. Implement #868.
• Fix resolve_page with empty page in classes with non-integer page. Close #863
• Simplify keyset syntax

Version 43.2.7

• Add a hint predicate for DB optimizers, to multi-column keysets
• Improve code readability and style
• Refactor anchor tag helpers

Commits

• 53f6bbb Merge branch 'dev'
• 11473ac Version 43.2.8
• 344b319 💎 Add fallback to 'en' for unknown locale. Implement #868.
• e32bd01 💎 Fix resolve_page with empty page in classes with non-integer page.
• 48b6cc9 💎 Simplify keyset syntax
• 4b12b01 Fix typos in documentation (#865)
• 68c88af Merge branch 'dev'
• 3ce9b7b Version 43.2.7
• 283ad4d 💎 Add a hint predicate for DB optimizers, to multi-column keysets
• eb7607d 💎 Improve code readability and style
• Additional commits viewable in compare view

Updates rails_icons from 1.5.1 to 1.6.0

Release notes

Sourced from rails_icons's releases.

v1.6.0

What's Changed

• Add --library option as singular alias for --libraries by @​eelcoj in Rails-Designer/rails_icons#91
• Improved bin/release by @​eelcoj in Rails-Designer/rails_icons#95

Full Changelog: Rails-Designer/rails_icons@v1.5.1...v1.6.0

Commits

• 52eaa77 Bump version for 1.6.0
• 5e3dd4e Improved bin/release (#95)
• 2263182 Add --library option as singular alias for --libraries (#91)
• 5697522 Removed commented line
• eeb7bf3 Regenerate lockfiles with latest Bundler
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions