Bump the bundler group with 4 updates

[dependabot]

Bumps the bundler group with 4 updates: rails, pg, sidekiq and factory_bot_rails.

Updates rails from 7.2.1.1 to 7.2.1.2

Release notes

Sourced from rails's releases.

7.2.1.2

Active Support

• No changes.

Active Model

• No changes.

Active Record

• No changes.

Action View

• No changes.

Action Pack

• No changes.

Active Job

• No changes.

Action Mailer

• Fix NoMethodError in block_format helper

  Michael Leimstaedtner

Action Cable

• No changes.

Active Storage

• No changes.

Action Mailbox

... (truncated)

Commits

• 7750d64 Preparing for 7.2.1.2 release
• c8ff417 Improvements to releaser
• 7ffd7bd Fix NoMethodError in ActionMailer block_format
• See full diff in compare view

Updates pg from 1.5.8 to 1.5.9

Changelog

Sourced from pg's changelog.

v1.5.9 [2024-10-24] Lars Kanis [email protected]

• Enable thread safety in static OpenSSL build for Windows. #595
• Remove raising conect_timeout from 1 to 2 seconds. #590
• Fix binary copy_data in Ractor context. #594
• Exclude CI files and hidden files from built gem. #591 This is to simplify security inspection.
• Update error classes to PostgreSQL-17.
• Update Windows fat binary gem to OpenSSL-3.4.0 and PostgreSQL-17.0.

Commits

• afe2f20 Bump VERSION to 1.5.9
• 9f8a6c6 Add History entry for pg-1.5.9
• 342bdbb Merge pull request #599 from larskanis/update-postgres
• ca8e69c Remove skip on Windows since the issue is fixed
• 70c02ea Work around missing dependency to errorcodes.h in PostgreSQL-17.0
• 4a52437 CI: Update jobs to postgresql-1.7.0
• d8c3753 Update to postgresql-17.0 and openssl-3.4.0 for Windows binary gems
• 86367c6 Update error codes by rake update_error_codes
• 94f1d7f Merge pull request #598 from larskanis/osl-threads
• 716221a Enable thread safety in static OpenSSL build
• Additional commits viewable in compare view

Updates sidekiq from 7.3.2 to 7.3.4

Changelog

Sourced from sidekiq's changelog.

7.3.4

• Fix FrozenError when starting Sidekiq #6470

7.3.3

• Freeze global configuration once boot is complete, to avoid configuration race conditions [#6466, #6465]
• Sidekiq now warns if a job iteration takes longer than the -t timeout setting (defaults to 25 seconds)
• Iteration callbacks now have easy access to job arguments via the arguments method:

def on_stop
  p arguments # => `[123, "string", {"key" => "value"}]`
  id, str, hash = arguments
end

• Iterable jobs can be cancelled via Sidekiq::Client#cancel!:

c = Sidekiq::Client.new
jid = c.push("class" => SomeJob, "args" => [123])
c.cancel!(jid) # => true

• Take over support for ActiveJob's :sidekiq adapter [#6430, fatkodima]
• Ensure CurrentAttributes are in scope when creating batch callbacks #6455
• Add Sidekiq.gem_version API.
• Update Ukranian translations

Commits

• See full diff in compare view

Updates factory_bot_rails from 6.4.3 to 6.4.4

Release notes

Sourced from factory_bot_rails's releases.

6.4.4

What's Changed

• Update CI to run Ruby 3.3 by @​aberkakis in thoughtbot/factory_bot_rails#464
• Ignore Standard Style/ArgumentsForwarding violations temporarily by @​sarahraqueld in thoughtbot/factory_bot_rails#489
• Bump standard from 1.32.1 to 1.40.0 by @​dependabot in thoughtbot/factory_bot_rails#487
• Bump rspec-rails from 6.1.0 to 6.1.4 by @​dependabot in thoughtbot/factory_bot_rails#490
• Bump factory_bot from 6.4.0 to 6.5.0 by @​dependabot in thoughtbot/factory_bot_rails#492
• Bump rake from 13.1.0 to 13.2.1 by @​dependabot in thoughtbot/factory_bot_rails#491
• Update Bundler to v2.5.21 by @​smaboshe in thoughtbot/factory_bot_rails#499
• Update Bundler to v2.5.22 by @​smaboshe in thoughtbot/factory_bot_rails#500

New Contributors

• @​stefannibrasil made their first contribution in thoughtbot/factory_bot_rails#463
• @​aberkakis made their first contribution in thoughtbot/factory_bot_rails#464
• @​smaboshe made their first contribution in thoughtbot/factory_bot_rails#469
• @​sarahraqueld made their first contribution in thoughtbot/factory_bot_rails#481

Full Changelog: thoughtbot/factory_bot_rails@v6.4.3...v6.4.4

Changelog

Sourced from factory_bot_rails's changelog.

6.4.4 (October 25, 2024)

• Changed: Bump Factory Bot 6.5.0

Commits

• b00d3c3 Release 6.4.4 [ci skip]
• b5f45b9 Update Bundler to v2.5.22
• f877249 Update Bundler to v2.5.21
• f5aabdd Bump rake from 13.1.0 to 13.2.1 (#491)
• 01e3bdb Bump factory_bot from 6.4.0 to 6.5.0 (#492)
• 26d0e9e Bump rspec-rails from 6.1.0 to 6.1.4
• c681900 Bump standard from 1.32.1 to 1.40.0 (#487)
• 3db6bd6 Ignore Standard Style/ArgumentsForwarding violations temporarily (#489)
• 62f4319 Add a dynamic security workflow and a SECURITY.md file (#481)
• 1c24be0 Add a CODEOWNERS file (#468)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud