Bump the patch-and-minor-dependencies group with 6 updates

[dependabot]

Bumps the patch-and-minor-dependencies group with 6 updates:

Package	From	To
bigdecimal	3.1.6	3.1.7
money	6.16.0	6.19.0
roda	3.76.0	3.78.0
htmlbeautifier	1.4.2	1.4.3
rubocop	1.60.2	1.62.1
rubocop-performance	1.20.2	1.21.0

Updates bigdecimal from 3.1.6 to 3.1.7

Release notes

Sourced from bigdecimal's releases.

v3.1.7

What's Changed

• Use macos-arm-oss and latest versions for test and benchmark CI by @​hsbt in ruby/bigdecimal#285
• Support Ruby 3.4's new error message format by @​mame in ruby/bigdecimal#286
• Rename rake spec with rake test in documentation by @​rhannequin in ruby/bigdecimal#287

New Contributors

• @​mame made their first contribution in ruby/bigdecimal#286
• @​rhannequin made their first contribution in ruby/bigdecimal#287

Full Changelog: ruby/bigdecimal@v3.1.6...v3.1.7

Changelog

Sourced from bigdecimal's changelog.

CHANGES

Commits

• cbb5369 Bump up 3.1.7
• 036f929 Merge pull request #287 from rhannequin/rake-test-and-not-rake-spec
• c9aa2a5 Rename rake spec with rake test in documentation
• 741fb93 Merge pull request #286 from mame/no-backtick-in-error-messages
• b2a9480 Support Ruby 3.4's new error message format
• d14039c Merge pull request #285 from ruby/use-latest-version-of-macos
• 26bc499 Exclude Ruby 2.5 with Apple Silicon
• 310cb15 Use macos-arm-oss and latest versions for test and benchmark CI
• See full diff in compare view

Updates money from 6.16.0 to 6.19.0

Changelog

Sourced from money's changelog.

6.19.0

• Change Peruvian Sol (PEN) decimal mark and thousands separator.
• Fix deprecation warning for BigDecimal being moved out from stdlib.
• Improves Precision and Simplifies Allocation Logic
• explicit declaration of i18n locales
• Add space to CHF format
• Update deprecation message to suggest correct formatting.

6.18.0

• Add second dobra (STN) from São Tomé and Príncipe
• Add Sierra Leonean (new) leone (SLE) from Sierra Leone
• Correct South African Rand (ZAR) to use comma decimal mark, and space thousands separator
• Use euro symbol as html_entity for euro currency
• Update Georgian Lari symbol
• Add Ruby 3.1 and 3.2 to the CI matrix
• Add Money.from_dollars alias as a more explicit initializer, it's the same as Money.from_amount
• Mark Croatian Kuna (HRK) as obsolete by moving its definition to the backwards compatibility data source

6.17.0

• Allow true for thousands_separator

Commits

• faec0fb feat: Add release notes for version 6.19.0
• d7e7f45 Merge pull request #1082 from tirosh/increased_precision
• 4dfce9e Fixes spec due to regression in df6525f3
• d3c8f19 Adds author
• f956028 Improves Precision and Simplifies Allocation Logic
• 092ecc7 chore: Update copyright year to 2024
• ccddfdc Merge pull request #1056 from nicholalexander/bug.fix-format-deprecation-warn...
• 85184d8 Merge branch 'main' into bug.fix-format-deprecation-warning-message
• 2e4748a Merge pull request #1055 from kholbekj/patch-1
• d510acf Update deprecation message to suggest correct formatting.
• Additional commits viewable in compare view

Updates roda from 3.76.0 to 3.78.0

Changelog

Sourced from roda's changelog.

= master

• Add hmac_paths plugin for preventing path enumeration and supporting access control (jeremyevans)

= 3.78.0 (2024-03-13)

• Add permissions_policy plugin for setting Permissions-Policy header (jeremyevans)

= 3.77.0 (2024-02-12)

• Support formaction/formmethod attributes in forms in route_csrf plugin (jeremyevans)

= 3.76.0 (2024-01-12)

• Support :filter plugin option in error_mail and error_email for filtering parameters, environment variables, and session values (jeremyevans) (#346)

• Set temporary name on Ruby 3.3 in middleware plugin for middleware class created (janko) (#344)

• Add break plugin, for using break inside a routing block to return from the block and keep routing (jeremyevans)

= 3.75.0 (2023-12-14)

• Add cookie_flags plugin, for overriding, warning, or raising for incorrect cookie flags (jeremyevans)

= 3.74.0 (2023-11-13)

• Add redirect_http_to_https plugin, helping to ensure future requests from the browser are submitted via HTTPS (jeremyevans)

= 3.73.0 (2023-10-13)

• Support :next_if_not_found option for middleware plugin (jeremyevans) (#334)

• Remove dependency on base64 library from sessions and route_csrf plugin, as it will not be part of the standard library in Ruby 3.4+ (jeremyevans)

= 3.72.0 (2023-09-12)

• Add invalid_request_body plugin for custom handling of invalid request bodies (jeremyevans)

• Warn when defining method that expects 1 argument when block requires multiple arguments when :check_arity option is set to :warn (jeremyevans)

• Implement the match_hooks plugin using the match_hook_args plugin (jeremyevans)

= 3.71.0 (2023-08-14)

• Add match_hook_args plugin, similar to match_hooks but support matchers and block args as hook arguments (jeremyevans)

= 3.70.0 (2023-07-12)

• Add plain_hash_response_headers plugin, using a plain hash for response headers on Rack 3 for much better performance (jeremyevans)

... (truncated)

Commits

• e4c736b Bump version to 3.78.0
• f812deb Add link to permissions_policy plugin to documentation page
• 3a76f9f Update permissions_policy documentation and code examples
• bdebe4a Add permissions_policy plugin for setting Permissions-Policy header
• 8f8082a Fix bad example code in content_security_policy plugin documentation
• f726d50 Bump version to 3.77.0
• 1427d3c Document the route_csrf :formaction_field plugin option
• 3057b54 Support formaction/formmethod attributes in forms in route_csrf plugin
• See full diff in compare view

Updates htmlbeautifier from 1.4.2 to 1.4.3

Commits

• 9738604 Version 1.4.3
• 3d75d9b Make README input and output clearer
• d438227 Merge pull request #75 from tomclose/master
• 6055ecb Indent case statements
• 3a3cf72 Merge branch 'ruby-standard'
• ed056d0 Apply formatting rules from the Standard project
• 1a15089 Merge pull request #79 from andyw8/andyw8/fix-rubocop-failures
• 1c80785 Fix failures on latest RuboCop version
• See full diff in compare view

Updates rubocop from 1.60.2 to 1.62.1

Release notes

Sourced from rubocop's releases.

RuboCop 1.62.1

Bug fixes

• #12761: Fix a false positive for Style/HashEachMethods when the key block argument of Enumerable#each method is unused after chunk. (@​koic)
• #12768: Fix a false positive for Style/NilComparison without receiver and EnforcedStyle: comparison. (@​earlopain)
• #12752: Fix an error for Gemspec/RequiredRubyVersion when the file is empty. (@​earlopain)
• #12770: Fix an error for Lint/RedundantWithIndex when the method has no receiver. (@​earlopain)
• #12775: Fix an error for Lint/UselessTimes when no block is present. (@​earlopain)
• #12772: Fix an error for Style/ClassVars when calling class_variable_set without arguments. (@​earlopain)
• #12773: Fix an error for Style/For with EnforcedStyle: for when no receiver. (@​earlopain)
• #12765: Fix an error for Layout/MultilineMethodCallIndentation with safe navigation and assignment method. (@​earlopain)
• #12703: Fix an error for Lint/MixedCaseRange with invalid byte sequence in UTF-8. (@​earlopain)
• #12755: Fix an exception for RedundantCurrentDirectoryInPath in case of require_relative without arguments. (@​viralpraxis)
• #12710: Fix a false negative for Layout/EmptyLineAfterMagicComment when the file is comments only. (@​earlopain)
• #12758: Fix false positives for Layout/RedundantLineBreak when using && or || after a backslash newline. (@​koic)
• #12763: Fix an infinite loop for Style/MultilineMethodSignature when there is a newline directly after the def keyword. (@​earlopain)
• #12774: Fix an infinite loop for Style/RaiseArgs with EnforcedStyle: compact when passing more than 2 arguments to raise. (@​earlopain)
• #12663: Fix Lint/Syntax getting disabled by rubocop:disable Lint/Syntax. (@​earlopain)
• #12756: Only parse target Ruby from gemspec if array elements are strings. (@​davidrunger)

Changes

• #12730: Skip LineLength phase on --auto-gen-only-exclude. (@​sambostock)

RuboCop 1.62

Note: This is the first RuboCop release that features (experimental) support for using Prism instead of the parser gem. Check out the docs for more details.

See also this article for additional context.

New features

• #12600: Support Prism as a Ruby parser (experimental). (@​koic)
• #12725: Support TargetRubyVersion 3.4 (experimental). (@​koic)

Bug fixes

• #12746: Fix a false positive for Lint/ToEnumArguments when enumerator is created for another method in no arguments method definition. (@​koic)
• #12726: Fix a false positive for Style/RedundantLineContinuation when using line concatenation and calling a method with keyword arguments without parentheses. (@​koic)
• #12738: Fix an error for Style/Encoding when magic encoding with mixed case present. (@​koic)
• #12732: Fix error determining target Ruby when gemspec required_ruby_version is read from another file. (@​davidrunger)
• #12736: Fix invalid autocorrect in Layout/SpaceInsideHashLiteralBraces. ([@​bquorning][])
• #12667: Don't load excluded configuration. ([@​jonas054][])

... (truncated)

Changelog

Sourced from rubocop's changelog.

1.62.1 (2024-03-11)

Bug fixes

• #12761: Fix a false positive for Style/HashEachMethods when the key block argument of Enumerable#each method is unused after chunk. ([@​koic][])
• #12768: Fix a false positive for Style/NilComparison without receiver and EnforcedStyle: comparison. ([@​earlopain][])
• #12752: Fix an error for Gemspec/RequiredRubyVersion when the file is empty. ([@​earlopain][])
• #12770: Fix an error for Lint/RedundantWithIndex when the method has no receiver. ([@​earlopain][])
• #12775: Fix an error for Lint/UselessTimes when no block is present. ([@​earlopain][])
• #12772: Fix an error for Style/ClassVars when calling class_variable_set without arguments. ([@​earlopain][])
• #12773: Fix an error for Style/For with EnforcedStyle: for when no receiver. ([@​earlopain][])
• #12765: Fix an error for Layout/MultilineMethodCallIndentation with safe navigation and assignment method. ([@​earlopain][])
• #12703: Fix an error for Lint/MixedCaseRange with invalid byte sequence in UTF-8. ([@​earlopain][])
• #12755: Fix an exception for RedundantCurrentDirectoryInPath in case of require_relative without arguments. ([@​viralpraxis][])
• #12710: Fix a false negative for Layout/EmptyLineAfterMagicComment when the file is comments only. ([@​earlopain][])
• #12758: Fix false positives for Layout/RedundantLineBreak when using && or || after a backslash newline. ([@​koic][])
• #12763: Fix an infinite loop for Style/MultilineMethodSignature when there is a newline directly after the def keyword. ([@​earlopain][])
• #12774: Fix an infinite loop for Style/RaiseArgs with EnforcedStyle: compact when passing more than 2 arguments to raise. ([@​earlopain][])
• #12663: Fix Lint/Syntax getting disabled by rubocop:disable Lint/Syntax. ([@​earlopain][])
• #12756: Only parse target Ruby from gemspec if array elements are strings. ([@​davidrunger][])

Changes

• #12730: Skip LineLength phase on --auto-gen-only-exclude. ([@​sambostock][])

1.62.0 (2024-03-06)

New features

• #12600: Support Prism as a Ruby parser (experimental). ([@​koic][])
• #12725: Support TargetRubyVersion 3.4 (experimental). ([@​koic][])

Bug fixes

• #12746: Fix a false positive for Lint/ToEnumArguments when enumerator is created for another method in no arguments method definition. ([@​koic][])
• #12726: Fix a false positive for Style/RedundantLineContinuation when using line concatenation and calling a method with keyword arguments without parentheses. ([@​koic][])
• #12738: Fix an error for Style/Encoding when magic encoding with mixed case present. ([@​koic][])
• #12732: Fix error determining target Ruby when gemspec required_ruby_version is read from another file. ([@​davidrunger][])
• #12736: Fix invalid autocorrect in Layout/SpaceInsideHashLiteralBraces. ([@​bquorning][])
• #12667: Don't load excluded configuration. ([@​jonas054][])

1.61.0 (2024-02-29)

New features

• #12682: Add --editor-mode CLI option. ([@​koic][])
• #12657: Support AutoCorrect: contextual option for LSP. ([@​koic][])
• #12273: Make OffenseCountFormatter display autocorrection information. ([@​koic][])
• #12679: Publish RuboCop::LSP.enable API to enable LSP mode. ([@​koic][])
• #12699: Support searching for .rubocop.yml and rubocop/config.yml in compliance with dot-config. ([@​koic][])

... (truncated)

Commits

• ed9b69e Cut 1.62.1
• a99fe78 Update Changelog
• eceedb7 Fix an error for Lint/UselessTimes when no block is present
• 8d2ef48 Fix an infinite loop for Style/RaiseArgs with EnforcedStyle: compact when...
• bb0dd97 Merge pull request #12771 from Earlopain/node-matcher-directive-followup
• 9b39a55 Merge pull request #12773 from Earlopain/fix-error-for-style-for
• 409c5a0 Merge pull request #12772 from Earlopain/fix-error-for-style-class-vars
• 54dbee1 Fix an error for Style/For with EnforcedStyle: for when no receiver
• 94c17b8 Fix an error for Style/ClassVars when calling class_variable_set without ...
• 5ee786d Merge pull request #12770 from Earlopain/fix-an-error-for-lint-redundant-with...
• Additional commits viewable in compare view

Updates rubocop-performance from 1.20.2 to 1.21.0

Release notes

Sourced from rubocop-performance's releases.

RuboCop Performance 1.21.0

New features

• #446: Support Prism as a Ruby parser (experimental). (@​koic)

Bug fixes

• #437: Fix a false positive for Performance/ChainArrayAllocation when using select with block argument after select. (@​koic)
• #448: Fix a false positive for Performance/RedundantBlockCall when using block.call with block argument. (@​koic)

Changes

• #240: Disable Performance/Casecmp cop by default. (@​parkerfinch)

Changelog

Sourced from rubocop-performance's changelog.

1.21.0 (2024-03-30)

New features

• #446: Support Prism as a Ruby parser (experimental). ([@​koic][])

Bug fixes

• #437: Fix a false positive for Performance/ChainArrayAllocation when using select with block argument after select. ([@​koic][])
• #448: Fix a false positive for Performance/RedundantBlockCall when using block.call with block argument. ([@​koic][])

Changes

• #240: Disable Performance/Casecmp cop by default. ([@​parkerfinch][])

Commits

• 30f6669 Cut 1.21.0
• 067c641 Update Changelog
• 9d28120 Merge pull request #449 from koic/fix_false_positive_for_performance_redundan...
• 0d98285 [Fix #448] Fix a false positive for Performance/RedundantBlockCall
• d4d1875 Merge pull request #446 from koic/support_prism
• 2059d28 Support Prism as a Ruby parser
• 13aa3d1 Tweak specs for Performance/UnfreezeString
• 9ba15dd Use RuboCop RSpec 2.27
• 08ac312 Merge pull request #443 from koic/disalbe_performance_casecmp_by_default
• 4dc1e5c [Fix #240] Disable Performance/Casecmp cop
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.