Skip to content
This repository was archived by the owner on Jan 5, 2026. It is now read-only.

Bump the ruby-dependencies group across 1 directory with 8 updates#67

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/bundler/ruby-dependencies-363898e2d1
Closed

Bump the ruby-dependencies group across 1 directory with 8 updates#67
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/bundler/ruby-dependencies-363898e2d1

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 22, 2025
edited
Loading

Bumps the ruby-dependencies group with 8 updates in the / directory:

Package From To
thruster 0.1.16 0.1.17
kamal 2.9.0 2.10.1
debug 1.11.0 1.11.1
standard-rails 1.5.0 1.6.0
mocha 2.8.2 3.0.1
aws-sdk-s3 1.206.0 1.208.0
pagy 43.2.0 43.2.2
scout_apm 6.0.0 6.0.2

Updates thruster from 0.1.16 to 0.1.17

Changelog

Sourced from thruster's changelog.

v0.1.17 / 2025-12-16

  • Mitigate BREACH attacks with random jitter and optional compression guard (#102)
Commits
  • 97dd28d Bump version
  • 5a11890 Merge pull request #107 from basecamp/workflow-fix
  • 0f43f3e Restrict workflow permission
  • ef864ed Merge pull request #106 from basecamp/update-deps
  • 3ea6321 Update Go version & deps
  • 704a825 Merge pull request #105 from basecamp/handler-refactor
  • 6b05f45 Move compression logic into its own middleware
  • b77cccb Refactor middleware naming
  • cccdad8 Merge pull request #102 from basecamp/breach
  • b1e717d Mitigate BREACH attacks with random jitter and optional compression guard
  • Additional commits viewable in compare view

Updates kamal from 2.9.0 to 2.10.1

Release notes

Sourced from kamal's releases.

v2.10.1

What's Changed

Full Changelog: basecamp/kamal@v2.10.0...v2.10.1

v2.10.0

What's Changed

New Contributors

Full Changelog: basecamp/kamal@v2.9.0...v2.10.0

Commits
  • 30f8aef Bump version for 2.10.1
  • e744e40 Merge pull request #1738 from basecamp/revert-accessory-volume-change
  • 849faf3 Pass accessory volume through as is
  • f5ec8cb Bump version for 2.10.0
  • 910729c Doc fixes for Kamal 2.10
  • e40731a Merge pull request #1731 from basecamp/boot-parallel-roles
  • 3682280 Boot in parallel for roles on the same host
  • 4ca210c Merge pull request #1730 from basecamp/check-roles-before-removing
  • f86156b Check roles before removing images and directories
  • 40d4d8f Merge pull request #1729 from basecamp/only-set-destination-env-if-there-is-one
  • Additional commits viewable in compare view

Updates debug from 1.11.0 to 1.11.1

Release notes

Sourced from debug's releases.

v1.11.1

What's Changed

New Contributors

Full Changelog: ruby/debug@v1.11.0...v1.11.1

Commits
  • bad4d38 v1.11.1
  • 88d762c FileUtils is needed
  • 553373a omit on older version
  • c1c1c8e use Kernel.__callee__
  • 24f95d6 catch up 4.0.0 backtrace change
  • bc97d33 add a test for b path: ...
  • 1139d78 support b path: path_expr
  • 06342cd catch any exception on singletonclass
  • 2791573 fix(DAP): Return unverified breakpoints instead of unsuccessful response
  • 14c8a54 Update imemo_mask to match ruby's
  • See full diff in compare view

Updates standard-rails from 1.5.0 to 1.6.0

Changelog

Sourced from standard-rails's changelog.

[1.6.0]

  • Update Rubocop Rails to v2.34
Commits
  • 8ab43b5 🥐 v1.6.0
  • 2ceb491 Merge pull request #119 from standardrb/dependabot/bundler/rubocop-rails-2.34.2
  • 9408826 Configures three new cops
  • f6b1854 Merge pull request #121 from standardrb/dependabot/github_actions/ruby/setup-...
  • 096d2a7 Bump ruby/setup-ruby from 1.268.0 to 1.269.0
  • 0d50d24 Merge pull request #120 from standardrb/dependabot/github_actions/actions/che...
  • 836c9ce Bump actions/checkout from 6.0.0 to 6.0.1
  • de23389 Merge pull request #122 from standardrb/dependabot/github_actions/step-securi...
  • bc0bb45 Bump step-security/harden-runner from 2.13.2 to 2.13.3
  • fd2cc95 Update rubocop-rails requirement from ~> 2.33.4 to >= 2.33.4, < 2.35.0
  • Additional commits viewable in compare view

Updates mocha from 2.8.2 to 3.0.1

Changelog

Sourced from mocha's changelog.

3.0.1

External changes

  • Fix Mocha/RSpec integration by reinstating argument default value for Hooks#mocha_setup (#768 & #769) - thanks to @​mackuba for reporting.

3.0.0

External changes

  • Improvements to docs for cardinality-related methods (#700)
  • Drop support for Ruby v2.1 (#628 & #695)
  • Improve gemspec description (#692 & #696)
  • Remove docs for use_test_unit_gem option (eaf03493)
  • Correct docs for MOCHA_OPTIONS "debug" value (69ef41c0)
  • Use built-in Ruby debug option vs custom module (#714 & #715)
  • Enable strict keyword argument matching by default in Ruby >= v3 (#697 & #718)
  • Use Ruby v1.9 Hash syntax in Hash#mocha_inspect used in failure messages (#651 & #719)
  • Improve #mocha_inspect for empty keyword argument Hash (#588 & #720) - thanks to @​herwinw for reporting
  • Improve error if Mockery.teardown called before Mockery.setup (#611, #646 & #721) - thanks to @​riniculous for reporting
  • Freeze string literals (#722)
  • Allow keyword arguments to match an expectation expecting only positional arguments (#593 & #732) - thanks to @​seandilda for reporting
  • Fix compatibility with Ruby 3.5 (#755) - thanks to @​Earlopain
  • Add missing quotes to docs for Mocha::ParameterMatchers::Methods#equivalent_uri (#757) - thanks to @​bensherman
  • Increment assertion count on never expected invocation (#763 & #764)
  • Remove deprecated ParameterMatchers::Base class; include ParameterMatchers::BaseMethods module instead (415ae768)
  • Remove deprecated ParameterMatcher methods now available in ParameterMatcher::Methods (8de49979)
  • Removed deprecated access to ParameterMatcher classes (6ea9e3f5)

Internal changes

  • Add Expectation#thrice (#701) - thanks to @​andrewn617
  • Add base64 to Gemfile for Ruby >= v3.3.0 to avoid warning (8c49314c & a76330d6)
  • Include custom Gemfiles in Rubocop linting (04063f0d)
  • Use ruby:3.4.0-rc1 vs ruby:3.4.0-preview2 in CI in preparation for the Ruby v3.4 release (b2127407)
  • Add ostruct to Gemfile for Ruby >= v3.4.0 to avoid warning (2b05e09e)
  • Add Ruby v3.4 to CI build matrix (#708)
  • Fix Ruby v3.4 warnings in ObjectInspectTest (#709 & #710)
  • Rubocop-related improvements (#702 & #705)
  • Consistently use development group in Gemfiles (#706 & #716)
  • Add missing requires for 'mocha/ruby_version' (7f99db69)
  • Convert ParameterMatchers::Base class -> module (#712 & #723)
  • Enable ExpectMatchingDefinition option on Naming/FileName cop (#726)
  • Remove duplicate DefaultReceiverTest (39d99954)
  • Improvements to keyword argument matching tests (#730)
  • Improvements to keyword argument matcher unit test (#731)
  • Remove support for running tests with Minitest < v5 (#727)
  • Remove workaround for JRuby jar-dependencies issue (#737)
  • Add benchmark to Gemfile to fix warning (#733 & #740) - thanks to @​nitishr

... (truncated)

Commits
  • 99d8784 [skip ci] Update documentation for v3.0.1
  • 156d57d Bump version to 3.0.1 & prepare for release
  • 7ceec53 Reinstate arg default in Hooks#mocha_setup
  • 25130b1 [skip ci] Fix docs for the release process
  • cc089be [skip ci] Add release notes for v2.8.2
  • 7cd8f85 Backport release notes for v2.8.2
  • 16a380b [skip ci] Update documentation for v3.0.0
  • b035b36 Bump version to 3.0.0 & prepare for release
  • b4310b8 [skip ci] Update documentation for v3.0.0-rc.2
  • 31e433a Bump version to 3.0.0-rc.2 & prepare for release
  • Additional commits viewable in compare view

Updates aws-sdk-s3 from 1.206.0 to 1.208.0

Changelog

Sourced from aws-sdk-s3's changelog.

1.208.0 (2025-12-16)

  • Feature - Updates to the S3 Encryption Client. The V3 S3 Encryption Client now requires key committing algorithm suites by default.

1.207.0 (2025-12-15)

  • Feature - This release adds support for the new optional field 'LifecycleExpirationDate' in S3 Inventory configurations.
Commits

Updates pagy from 43.2.0 to 43.2.2

Release notes

Sourced from pagy's releases.

Version 43.2.2

Changes in 43.2.2

  • Refactor bin/pagy to use the Pagy::CLI class
  • Replace optimist with the optparse standard lib
  • Simplify apps by using SQLite :memory:

CHANGELOG

Version 43

We needed a leap version to unequivocally signaling that it's not just a major version: it's a complete redesign of the legacy code at all levels, usage and API included.

Why 43? Because it's exactly one step beyond "The answer to the ultimate question of life, the Universe, and everything." 😉

Improvements

This version introduces several enhancements, such as new :countish and :keynav_js paginators and improved automation and configuration processes, reducing setup requirements by 99%. The update also includes a simpler API and new interactive development tools, making it a comprehensive upgrade from previous versions.

  • New :countish Paginator
    • Faster than OFFSET and supporting the full UI
  • New Keynav Pagination
    • The pagy-exclusive technique using the fastest keysetpagination alongside all frontend helpers.
  • New interactive dev-tools
    • New PagyWand to integrate the pagy CSS with your app themes.
    • New Pagy AI available right inside your own app.
  • Intelligent automation
  • Simpler API
    • You solely need the pagy method and the @​pagy instance to paginate any collection and use any navigation tag and helper.
    • Methods are autoloaded only if used, and consume no memory otherwise.
    • Methods have narrower scopes and can be overridden without deep knowledge.
  • New documentation
    • Very concise, straightforward, and easy to navigate and understand.

Upgrade to 43

See the Upgrade Guide

... (truncated)

Changelog

Sourced from pagy's changelog.

Version 43.2.2

  • Refactor bin/pagy to use the Pagy::CLI class
  • Replace optimist with the optparse standard lib
  • Simplify apps by using SQLite :memory:

Version 43.2.1

  • Fix the shallow cloning of root_key params. Close #851.
  • Implements support for easy overriding
  • Add :current_url alias to :page_url
  • Fix limit_tag_js not respecting the passed :client_max_limit option
  • Fix data_hash returning keys with nil values, or URLs without page; add :current_url alias to :page_url
  • Remove warning when fit_time
  • Fix respond_to_missing definition arguments in Search::Arguments
Commits
  • 75182a8 Merge branch 'dev'
  • b4ae662 Version 43.2.2
  • 46601cc Fix script/bump.rb missing to update pagy in Gemfile.lock
  • b09c910 Cleanup test
  • 95e56cf 💎 Refactor bin/pagy to use the Pagy::CLI class
  • c461379 💎 Replace optimist with the optparse standard lib
  • e0eec57 💎 Simplify apps by using SQLite :memory:
  • 33e1d13 Improve URLs docs
  • a6a1da1 Bump actions/cache from 4 to 5 (#852)
  • 5492130 Improve docs
  • Additional commits viewable in compare view

Updates scout_apm from 6.0.0 to 6.0.2

Changelog

Sourced from scout_apm's changelog.

6.0.2

  • Fix endpoint_sample_rate and job_sample_rate to support float values

6.0.1

  • Fix capturing of job params for non ActiveJob
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the ruby-dependencies group across 1 directory with 8 updates
1b87820 
Bumps the ruby-dependencies group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [thruster](https://github.com/basecamp/thruster) | `0.1.16` | `0.1.17` |
| [kamal](https://github.com/basecamp/kamal) | `2.9.0` | `2.10.1` |
| [debug](https://github.com/ruby/debug) | `1.11.0` | `1.11.1` |
| [standard-rails](https://github.com/testdouble/standard-rails) | `1.5.0` | `1.6.0` |
| [mocha](https://github.com/freerange/mocha) | `2.8.2` | `3.0.1` |
| [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) | `1.206.0` | `1.208.0` |
| [pagy](https://github.com/ddnexus/pagy) | `43.2.0` | `43.2.2` |
| [scout_apm](https://github.com/scoutapp/scout_apm_ruby) | `6.0.0` | `6.0.2` |



Updates `thruster` from 0.1.16 to 0.1.17
- [Changelog](https://github.com/basecamp/thruster/blob/main/CHANGELOG.md)
- [Commits](basecamp/thruster@v0.1.16...v0.1.17)

Updates `kamal` from 2.9.0 to 2.10.1
- [Release notes](https://github.com/basecamp/kamal/releases)
- [Commits](basecamp/kamal@v2.9.0...v2.10.1)

Updates `debug` from 1.11.0 to 1.11.1
- [Release notes](https://github.com/ruby/debug/releases)
- [Commits](ruby/debug@v1.11.0...v1.11.1)

Updates `standard-rails` from 1.5.0 to 1.6.0
- [Changelog](https://github.com/standardrb/standard-rails/blob/main/CHANGELOG.md)
- [Commits](standardrb/standard-rails@v1.5.0...v1.6.0)

Updates `mocha` from 2.8.2 to 3.0.1
- [Changelog](https://github.com/freerange/mocha/blob/main/RELEASE.md)
- [Commits](freerange/mocha@v2.8.2...v3.0.1)

Updates `aws-sdk-s3` from 1.206.0 to 1.208.0
- [Release notes](https://github.com/aws/aws-sdk-ruby/releases)
- [Changelog](https://github.com/aws/aws-sdk-ruby/blob/version-3/gems/aws-sdk-s3/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-ruby/commits)

Updates `pagy` from 43.2.0 to 43.2.2
- [Release notes](https://github.com/ddnexus/pagy/releases)
- [Changelog](https://github.com/ddnexus/pagy/blob/master/docs/CHANGELOG.md)
- [Commits](ddnexus/pagy@43.2.0...43.2.2)

Updates `scout_apm` from 6.0.0 to 6.0.2
- [Changelog](https://github.com/scoutapp/scout_apm_ruby/blob/master/CHANGELOG.markdown)
- [Commits](scoutapp/scout_apm_ruby@v6.0.0...v6.0.2)

---
updated-dependencies:
- dependency-name: thruster
  dependency-version: 0.1.17
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ruby-dependencies
- dependency-name: kamal
  dependency-version: 2.10.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: ruby-dependencies
- dependency-name: debug
  dependency-version: 1.11.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: ruby-dependencies
- dependency-name: standard-rails
  dependency-version: 1.6.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: ruby-dependencies
- dependency-name: mocha
  dependency-version: 3.0.1
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: ruby-dependencies
- dependency-name: aws-sdk-s3
  dependency-version: 1.208.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ruby-dependencies
- dependency-name: pagy
  dependency-version: 43.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ruby-dependencies
- dependency-name: scout_apm
  dependency-version: 6.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ruby-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update ruby code labels Dec 22, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 29, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Dec 29, 2025
@dependabot dependabot bot deleted the dependabot/bundler/ruby-dependencies-363898e2d1 branch December 29, 2025 07:14
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants