Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the deps group with 5 updates #1819

Merged
merged 1 commit into from
Jan 21, 2025
Merged

Bump the deps group with 5 updates #1819

merged 1 commit into from
Jan 21, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 20, 2025

Bumps the deps group with 5 updates:

Package From To
aws-sdk-s3 1.177.0 1.178.0
omniauth-google-oauth2 1.2.0 1.2.1
appsignal 4.3.2 4.3.3
lefthook 1.10.3 1.10.8
twilio-ruby 7.4.1 7.4.2

Updates aws-sdk-s3 from 1.177.0 to 1.178.0

Changelog

Sourced from aws-sdk-s3's changelog.

1.178.0 (2025-01-15)

  • Feature - This change enhances integrity protections for new SDK requests to S3. S3 SDKs now support the CRC64NVME checksum algorithm, full object checksums for multipart S3 objects, and new default integrity protections for S3 requests.

  • Feature - Default to using CRC32 checksum validation for S3 uploads and downloads.

Commits

Updates omniauth-google-oauth2 from 1.2.0 to 1.2.1

Release notes

Sourced from omniauth-google-oauth2's releases.

Release v1.2.1

Added

Deprecated

  • Nothing.

Removed

  • Support for jwt < 2.9.2.

Fixed

  • Nothing.
Changelog

Sourced from omniauth-google-oauth2's changelog.

1.2.1 - 2025-01-18

Added

Deprecated

  • Nothing.

Removed

  • Support for jwt < 2.9.2.

Fixed

  • Nothing.
Commits
  • 3366dcb Unlock Sinatra version in example
  • a1ce612 Updated CHANGELOG.md for 1.2.1
  • f7b7a7d Bump version to 1.2.1
  • 8656538 Add examples/Gemfile.lock to .gitignore
  • 5298eb1 Use jwt v2.9.2's public claims verification API
  • 4dea8db Use local source for example code
  • 7086b82 Add FUNDING.yml
  • 719bd91 Clarify use for storing devise google data in callbacks controller
  • See full diff in compare view

Updates appsignal from 4.3.2 to 4.3.3

Changelog

Sourced from appsignal's changelog.

4.3.3

Published on 2025-01-17.

Added

  • Add support for the Ownership gem, which is used to mark different segments of the application as owned by specific teams.

    The AppSignal sample will be tagged with the given owner:

    class OrdersController < ApplicationController
  owner :logistics
  # Transactions for requests handled by this controller will be tagged
  # in AppSignal with the "owner" tag set to "logistics"
end

    If several owners are set within the same transaction, the last owner will take precedence. If an error is reported in the transaction, the owner tag will be set to the owner that was set when the error was raised.

    Set the ownership_set_namespace configuration option to true to also set the AppSignal sample's namespace to the owner. Note that doing so will cause existing performance and error incidents to be re-created with the new namespace.

    Set the instrument_ownership configuration option to false to disable the integration with the Ownership gem.

    (patch 865b348e)

Changed

  • Do not report SystemExit errors from our Rake integration. (patch ad4f1a25)
  • Do not report SignalException errors from our Rake integration. (patch 7c07a596)

Fixed

  • Fix deprecation warnings when building the AppSignal gem's native extension on Ruby 3.4, by porting the extension to use the TypedData API. (patch e2d186c9)
Commits
  • c181025 Publish package v4.3.3
  • c307d46 Merge pull request #1364 from appsignal/ownership-integration
  • 0f2a138 Merge pull request #1368 from appsignal/require-logger-rails-7-concurrent-ruby
  • 3233bfb Require logger before all other gems
  • 865b348 Instrument ownership gem
  • 6a23a28 Add before_complete transaction hook
  • a876b71 Add after_create transaction hook
  • d217cea Add ownership_set_namespace config option
  • ba55c63 Merge pull request #1365 from appsignal/ignore-rake-systemexit-error
  • 7c07a59 Do not report SignalException from Rake tasks
  • Additional commits viewable in compare view

Updates lefthook from 1.10.3 to 1.10.8

Release notes

Sourced from lefthook's releases.

v1.10.8

Changelog

  • dcbf0d4db2ba809eb5a569c15d1239ea964d07a7 feat: add custom plain templates (#930)
  • 4711444fd6532d17e8971d30c3e4d7e96d2b02fb fix: unique names for nested operations (#931)

v1.10.7

Changelog

v1.10.6

Changelog

  • 3d0f05df1d3b6c4c8c2d8f9a98faeacd56da84aa chore: cleanup dotfiles
  • 9873cee940a4b84e9fd288994769b273170b7ddc chore: remove .lefthook.toml
  • 6d6977f4f01e6da99e7a077838265f0d0f3ab280 feat: add schema.json to npm packages (#928)
  • 66219211c5b0ebd681438ff3cb8e28a46de1a652 fix: increase timeout for self-update to 2 mins
  • e8bf5945477cd2f2c609a8bc46a2b98cb92417bb fix: typo
  • ce2058dc0fd563dcd084e38c2127d869020b7e2a fix: use lefthook option in ghost hook too (#929)

v1.10.5

Changelog

  • ab93bf19f2414cb8a12eb064874aa89e0d14ecf8 chore: update config template with new jobs
  • 9e023651f1fae3cca553815e8c1ec9eecd76f1fe feat: add lefthook option for custom path or command (#927)

v1.10.4

Changelog

  • 29fb4251ab1f9968c074934e7c7b01d26569b072 deps: January 2025 (#926)
  • 59b9e4d082988d83de083244d3614719fc701eee fix: avoid skipping pre commit when deleted files staged (#925)
  • 834f17621f824915b7e408109437394b62846650 fix: use roots from jobs for possible npm package location (#924)
Changelog

Sourced from lefthook's changelog.

1.10.8 (2025-01-17)

1.10.7 (2025-01-15)

1.10.5 (2025-01-14)

  • feat: add lefthook option for custom path or command (#927) by @​mrexox
  • chore: update config template with new jobs by @​mrexox

1.10.4 (2025-01-13)

Commits
  • e33dae5 1.10.8: add replacable templates configuration
  • dcbf0d4 feat: add custom plain templates (#930)
  • 4711444 fix: unique names for nested operations (#931)
  • 82f1c78 1.10.7: fix for NPM add postinstall scripts
  • 1fcc785 1.10.6: use lefthook option in prepare-commit-msg hook too
  • ce2058d fix: use lefthook option in ghost hook too (#929)
  • e8bf594 fix: typo
  • 6d6977f feat: add schema.json to npm packages (#928)
  • 5319cf4 docs: fix typo
  • 3d0f05d chore: cleanup dotfiles
  • Additional commits viewable in compare view

Updates twilio-ruby from 7.4.1 to 7.4.2

Release notes

Sourced from twilio-ruby's releases.

7.4.2

Release Notes

Library - Chore

Messaging

  • Adds validity period Default value in service resource documentation

Docs

Changelog

Sourced from twilio-ruby's changelog.

[2025-01-13] Version 7.4.2

Library - Chore

Messaging

  • Adds validity period Default value in service resource documentation
Commits
  • 67e0625 Release 7.4.2
  • a19ae98 [Librarian] Regenerated @ d9b0f7b0297f064eec2f219b29fd4193559c54f3 405f363a58...
  • 6dde8ea chore: add ostruct and benchmark in gemfile (#739)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the deps group with 5 updates
aae9f04 
Bumps the deps group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) | `1.177.0` | `1.178.0` |
| [omniauth-google-oauth2](https://github.com/zquestz/omniauth-google-oauth2) | `1.2.0` | `1.2.1` |
| [appsignal](https://github.com/appsignal/appsignal-ruby) | `4.3.2` | `4.3.3` |
| [lefthook](https://github.com/evilmartians/lefthook) | `1.10.3` | `1.10.8` |
| [twilio-ruby](https://github.com/twilio/twilio-ruby) | `7.4.1` | `7.4.2` |


Updates `aws-sdk-s3` from 1.177.0 to 1.178.0
- [Release notes](https://github.com/aws/aws-sdk-ruby/releases)
- [Changelog](https://github.com/aws/aws-sdk-ruby/blob/version-3/gems/aws-sdk-s3/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-ruby/commits)

Updates `omniauth-google-oauth2` from 1.2.0 to 1.2.1
- [Release notes](https://github.com/zquestz/omniauth-google-oauth2/releases)
- [Changelog](https://github.com/zquestz/omniauth-google-oauth2/blob/master/CHANGELOG.md)
- [Commits](zquestz/omniauth-google-oauth2@v1.2.0...v1.2.1)

Updates `appsignal` from 4.3.2 to 4.3.3
- [Changelog](https://github.com/appsignal/appsignal-ruby/blob/main/CHANGELOG.md)
- [Commits](appsignal/appsignal-ruby@v4.3.2...v4.3.3)

Updates `lefthook` from 1.10.3 to 1.10.8
- [Release notes](https://github.com/evilmartians/lefthook/releases)
- [Changelog](https://github.com/evilmartians/lefthook/blob/master/CHANGELOG.md)
- [Commits](evilmartians/lefthook@v1.10.3...v1.10.8)

Updates `twilio-ruby` from 7.4.1 to 7.4.2
- [Release notes](https://github.com/twilio/twilio-ruby/releases)
- [Changelog](https://github.com/twilio/twilio-ruby/blob/main/CHANGES.md)
- [Commits](twilio/twilio-ruby@7.4.1...7.4.2)

---
updated-dependencies:
- dependency-name: aws-sdk-s3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: deps
- dependency-name: omniauth-google-oauth2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: deps
- dependency-name: appsignal
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: deps
- dependency-name: lefthook
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: deps
- dependency-name: twilio-ruby
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added ruby Pull requests that update Ruby code 📦 Dependency Update Updating one or more dependencies labels Jan 20, 2025
@jim
Copy link
Member

jim commented Jan 21, 2025

@dependabot merge

@dependabot dependabot bot merged commit 9a75c6e into main Jan 21, 2025
7 checks passed
@dependabot dependabot bot deleted the dependabot/bundler/deps-6475b34b16 branch January 21, 2025 02:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jim jim jim approved these changes

Assignees
No one assigned
Labels
📦 Dependency Update Updating one or more dependencies ruby Pull requests that update Ruby code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@jim