Skip to content

Bump the ruby-minor-patch group across 1 directory with 10 updates#3582

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bundler/ruby-minor-patch-a3abc83b65
Open

Bump the ruby-minor-patch group across 1 directory with 10 updates#3582
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bundler/ruby-minor-patch-a3abc83b65

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 3, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps the ruby-minor-patch group with 9 updates in the / directory:

Package From To
bootsnap 1.23.0 1.24.5
thruster 0.1.20 0.1.21
view_component 4.7.0 4.11.0
devise 5.0.3 5.0.4
nokogiri 1.19.2 1.19.3
sentry-ruby 6.5.0 6.6.0
twilio-ruby 7.10.5 7.10.7
bullet 8.1.0 8.1.3
selenium-webdriver 4.43.0 4.44.0

Updates bootsnap from 1.23.0 to 1.24.5

Release notes

Sourced from bootsnap's releases.

v1.24.4

What's Changed

  • Fix several compatibility issues with Ruby 4.0.4, particularly the should not compile with coverage error. See #547.
  • Fix Bootsnap.enable_frozen_string_literal to work even when coverage is enabled. Unfortunately only possible on Ruby 4.0.4+. On older rubies if coverage is enabled a warning will be issued and the feature won't work.
  • Reduced cache files header size from 64 to 32 bytes, and got rid of the random padding element.
  • Avoid leaking a private method in Object when testing for Parse.y bugs.

Full Changelog: rails/bootsnap@v1.24.3...v1.24.4

v1.24.3

  • Fix the 1.24.2 workaround to parse Ruby files with UTF-8 even when the LANG environment variable is unset or set to C.

Full Changelog: rails/bootsnap@v1.24.2...v1.24.3

v1.24.2

What's Changed

  • Workaround two Ruby bugs in RubyVM::InstructionSequence.compile_file, that were causing files to be loaded with the old Ruby parser instead of Prism, causing issues with some pattern matching syntax. Ref: https://bugs.ruby-lang.org/issues/22023

Full Changelog: rails/bootsnap@v1.24.1...v1.24.2

v1.24.1

What's Changed

  • Fix encoding of Ruby source files loaded when BOOTSNAP_READONLY is set. Files would incorectly be loaded in ASCII-8BIT causing literal strings outside the pure ASCII range to have ASCII-8BIT encoding instead of UTF-8. This bug was introduced in 1.24.0.

Full Changelog: rails/bootsnap@v1.24.0...v1.24.1

v1.24.0

What's Changed

  • Added a hook API to customize Ruby compilation.

Full Changelog: rails/bootsnap@v1.23.0...v1.24.0

Changelog

Sourced from bootsnap's changelog.

1.24.5

  • No longer load the config file by default when setup is done manually. This is so cli applications like homebrew don't mistakenly load another app's boostnap config.

1.24.4

  • Fix several compatibility issues with Ruby 4.0.4, particularly the should not compile with coverage error. See #547.
  • Fix Bootsnap.enable_frozen_string_literal to work even when coverage is enabled. Unfortunately only possible on Ruby 4.0.4+. On older rubies if coverage is enabled a warning will be issued and the feature won't work.
  • Reduced cache files header size from 64 to 32 bytes, and got rid of the random padding element.
  • Avoid leaking a private method in Object when testing for Parse.y bugs.

1.24.3

  • Fix the 1.24.2 workaround to parse Ruby files with UTF-8 even when the LANG environment variable is unset or set to C.

1.24.2

  • Workaround two Ruby bugs in RubyVM::InstructionSequence.compile_file, that were causing files to be loaded with the old Ruby parser instead of Prism, causing issues with some pattern matching syntax. Ref: https://bugs.ruby-lang.org/issues/22023

1.24.1

  • Fix encoding of Ruby source files loaded when BOOTSNAP_READONLY is set. Files would incorectly be loaded in ASCII-8BIT causing literal strings outside the pure ASCII range to have ASCII-8BIT encoding instead of UTF-8. This bug was introduced in 1.24.0.

1.24.0

  • Added a hook API to customize Ruby compilation.
Commits
  • d6ca050 Release 1.24.5
  • 579aa0e Merge pull request #552 from byroot/fix-bootsnap-config
  • 2884e89 Only load config file is directed to by .setup
  • 103a92b Merge pull request #551 from byroot/enable-fstr-global
  • 33c927d Update compiler options when global options change
  • 122db7f Simplify enable_frozen_string_literal(app_only: false)
  • 0d8a0a6 Release 1.24.4
  • 6ccc5eb Merge pull request #550 from byroot/fstr-and-coverage
  • 86e9586 Make Bootsnap.enable_frozen_string_literal work even with coverage on
  • 36c2224 Merge pull request #549 from byroot/integration-tests
  • Additional commits viewable in compare view

Updates thruster from 0.1.20 to 0.1.21

Changelog

Sourced from thruster's changelog.

v0.1.21 / 2026-05-17

  • Build with Go 1.26.3
Commits

Updates view_component from 4.7.0 to 4.11.0

Release notes

Sourced from view_component's releases.

4.11.0

  • Update render_in signature to accept **_ for compatibility with Rails #50623.

    Joel Hawksley

  • Fix translation scope resolution in nested lambda-backed slots. Relative t(".key") calls inside lambda-backed slots were resolving against an intermediate component's scope instead of the original partial's scope where the block was defined.

    Artin Boghosian

4.10.0

  • Fix NameError: uninitialized constant ViewComponent::SystemTestControllerNefariousPathError when booting in the test environment with eager_load = true.

    Joel Hawksley

  • Fix yielded content rendered at wrong location when using form helpers.

    Joel Hawksley, Markus

4.9.0

  • Fix path traversal vulnerability in ViewComponentsSystemTestController where sibling directories sharing a string prefix with the allowed temp directory could bypass the path containment check. The start_with? check has been replaced with a separator-aware prefix check, and nefarious path errors now return a 404 instead of an unhandled exception.

    Joel Hawksley

  • Fix preview route vulnerability where inherited methods on ViewComponent::Preview (such as render_with_template) could be invoked via the preview URL, allowing arbitrary internal Rails templates to be rendered with attacker-controlled locals and request parameters. render_args now raises AbstractController::ActionNotFound for any example not explicitly declared on the preview subclass.

    Joel Hawksley

  • Add yard-lint to CI.

    Joel Hawksley

4.8.0

  • Add compile.view_component ActiveSupport::Notifications event for eager compilation at boot time.

    Joel Hawksley, GitHub Copilot

Changelog

Sourced from view_component's changelog.

4.11.0

  • Update render_in signature to accept **_ for compatibility with Rails #50623.

    Joel Hawksley

  • Fix translation scope resolution in nested lambda-backed slots. Relative t(".key") calls inside lambda-backed slots were resolving against an intermediate component's scope instead of the original partial's scope where the block was defined.

    Artin Boghosian

4.10.0

  • Fix NameError: uninitialized constant ViewComponent::SystemTestControllerNefariousPathError when booting in the test environment with eager_load = true.

    Joel Hawksley

  • Fix yielded content rendered at wrong location when using form helpers.

    Joel Hawksley, Markus

4.9.0

  • Fix path traversal vulnerability in ViewComponentsSystemTestController where sibling directories sharing a string prefix with the allowed temp directory could bypass the path containment check. The start_with? check has been replaced with a separator-aware prefix check, and nefarious path errors now return a 404 instead of an unhandled exception.

    Joel Hawksley

  • Fix preview route vulnerability where inherited methods on ViewComponent::Preview (such as render_with_template) could be invoked via the preview URL, allowing arbitrary internal Rails templates to be rendered with attacker-controlled locals and request parameters. render_args now raises AbstractController::ActionNotFound for any example not explicitly declared on the preview subclass.

    Joel Hawksley

  • Add yard-lint to CI.

    Joel Hawksley

4.8.0

  • Add compile.view_component ActiveSupport::Notifications event for eager compilation at boot time.

    Joel Hawksley, GitHub Copilot

Commits
  • b1f6917 Merge pull request #2640 from ViewComponent/release-4-11-0
  • f54b15a bump allocations
  • 49b6685 release 4.11.0
  • e94672a Merge pull request #2636 from ViewComponent/render_in_api
  • 9360f6a Fix appraisal naming consistency: use underscores throughout
  • 5b6e732 whitespace
  • 8a8e8c0 Merge pull request #2634 from ViewComponent/dependabot/bundler/selenium-webdr...
  • 3469377 Rename rails_main-head gemfile to use underscore for appraisal compatibility
  • da30a8f Fix Rails main compatibility issues
  • 635645d fix
  • Additional commits viewable in compare view

Updates devise from 5.0.3 to 5.0.4

Release notes

Sourced from devise's releases.

v5.0.4

https://github.com/heartcombo/devise/blob/v5.0.4/CHANGELOG.md#504---2026-05-08

Changelog

Sourced from devise's changelog.

5.0.4 - 2026-05-08

Commits
  • 9ea459d Release v5.0.4 with sec fix for timeoutable
  • 025fe21 Merge commit from fork
  • 7ca7ed9 Add GHSA link to the v5.0.3 sec fix changelog entry [ci skip]
  • 605de86 Update links to https [ci skip]
  • 5e3a8bf Bundle update
  • 5d20277 Cleanup old Rails.version check for db migration path
  • 4ffb0b7 Fix Gemfile for Rails 7.2, incorrectly testing against 7.1
  • See full diff in compare view

Updates nokogiri from 1.19.2 to 1.19.3

Release notes

Sourced from nokogiri's releases.

v1.19.3 / 2026-04-27

Fixed / Security

  • Address exponential regex backtracking in CSS selector tokenizer. See GHSA-c4rq-3m3g-8wgx for more information.
  • [CRuby] Address memory leak in XSLT::Stylesheet#transform. See GHSA-v2fc-qm4h-8hqv for more information.
46b89e5d7b9e844c2ee360794240c6ea2a4e6fa0c5892a4ed487db621224b639  nokogiri-1.19.3-aarch64-linux-gnu.gem
8392dfdcd21be7a94dbbe9ccc138dea01b97b24cb2dc02a114ca98bfb1d9a0b7  nokogiri-1.19.3-aarch64-linux-musl.gem
3919d5ffc334ad778a4a9eb88fda7dcb8b1fb58c8a52ac640c6dcd2f038e774f  nokogiri-1.19.3-arm-linux-gnu.gem
9ce1cb6346bb9c67b1550eb537aa183ead91e4b6eadb2f36ade02d8dd2a79fb6  nokogiri-1.19.3-arm-linux-musl.gem
71b9bd424b1b7abc18b05052a1a3cfd3627abdca62be280854cc411791357e42  nokogiri-1.19.3-arm64-darwin.gem
40ea6ebf5cf2005dae1dee26dd557d3afb41fb6de6c9764aca8cf06fdb841db1  nokogiri-1.19.3-java.gem
8bb7132cad356c879a1286eaabcb5e68326cb2490317984280fbc62f456d506a  nokogiri-1.19.3-x64-mingw-ucrt.gem
77f3fba57d46c53ab31e62fc6c28f705109d1bf6264356c76f132b2be5728d4d  nokogiri-1.19.3-x86_64-darwin.gem
2f5078620fe12e83669b5b17311b32532a8153d02eee7ad06948b926d6080976  nokogiri-1.19.3-x86_64-linux-gnu.gem
248c906d2166eca5efb56d52fdee5f9a1f51d69a72e2b64fdac647b4ce39ea3f  nokogiri-1.19.3-x86_64-linux-musl.gem
78312cbac32a40c812780d9678221b79d51288eec00054c1a8d15f7ce05960e8  nokogiri-1.19.3.gem
Changelog

Sourced from nokogiri's changelog.

v1.19.3 / 2026-04-27

Fixed / Security

  • Address exponential regex backtracking in CSS selector tokenizer. See GHSA-c4rq-3m3g-8wgx for more information.
  • [CRuby] Address memory leak in XSLT::Stylesheet#transform. See GHSA-v2fc-qm4h-8hqv for more information.
Commits
  • c139a3d version bump to v1.19.3
  • 7501a63 fix: backtracking in CSS tokenizer rules (v1.19.x backport) (#3627)
  • 03e7968 test: skip CSS tokenizer benchmarks on JRuby
  • b984b7e fix: ReDoS in CSS tokenizer ident rule
  • 0092623 fix: ReDoS in CSS tokenizer STRING rule
  • ee17d33 fix: memory leak in XSLT transform (backport to v1.19.x) (#3624)
  • ce188a3 doc: update CHANGELOG
  • caeaac4 fix: memory leak in XSLT transform
  • 25220bf dep(test): test against libxml-ruby v6 (#3618)
  • 0caeb21 doc: add security warnings for untrusted XSLT stylesheets
  • See full diff in compare view

Updates sentry-ruby from 6.5.0 to 6.6.0

Changelog

Sourced from sentry-ruby's changelog.

6.6.0

New Features ✨

  • (yabeda) Add sentry-yabeda adapter gem by @​dingsdax in #2925

    There's a new sentry-yabeda gem that integrates Sentry Metrics with Yabeda. Add the new gem to your Gemfile:

    gem "sentry-yabeda"

    Initialize Sentry with metrics enabled. The Yabeda adapter registers itself automatically when sentry-yabeda is required — there's no extra setup:

    Sentry.init do |config|
  config.dsn = ENV["SENTRY_DSN"]
  config.enable_metrics = true
end

  • Add release detection from Kamal deployment by @​t27duck in #2895

Bug Fixes 🐛

Internal Changes 🔧

We made some memory performance and caching improvements with the help of pi-autoresearch. Enjoy the lower overhead!

Commits
  • 1754a7f release: 6.6.0
  • af610cd fix(stacktrace): stop leaking internal frame state into event payload (#2962)
  • 427612b fix(tests): proper dummy transport clean up for hub cloning (#2957)
  • 3b64cc2 feat(yabeda): Add sentry-yabeda adapter gem (#2925)
  • f6e0ad1 perf: Use FilenameCache in profilers (#2919)
  • e2a073a perf: Add FilenameCache to cache compute_filename results (#2904)
  • 0dd3f05 test: Fix flaky concurrent test in telemetry buffer (#2920)
  • 688bd62 Add release detection from Kamal deployment (#2895)
  • aaa5a9a perf: optimize LineCache to reduce allocations (#2903)
  • 949bc6b perf: avoid unnecessary allocations in hot paths (#2902)
  • Additional commits viewable in compare view

Updates sentry-rails from 6.5.0 to 6.6.0

Changelog

Sourced from sentry-rails's changelog.

6.6.0

New Features ✨

  • (yabeda) Add sentry-yabeda adapter gem by @​dingsdax in #2925

    There's a new sentry-yabeda gem that integrates Sentry Metrics with Yabeda. Add the new gem to your Gemfile:

    gem "sentry-yabeda"

    Initialize Sentry with metrics enabled. The Yabeda adapter registers itself automatically when sentry-yabeda is required — there's no extra setup:

    Sentry.init do |config|
  config.dsn = ENV["SENTRY_DSN"]
  config.enable_metrics = true
end

  • Add release detection from Kamal deployment by @​t27duck in #2895

Bug Fixes 🐛

Internal Changes 🔧

We made some memory performance and caching improvements with the help of pi-autoresearch. Enjoy the lower overhead!

Commits

Updates twilio-ruby from 7.10.5 to 7.10.7

Release notes

Sourced from twilio-ruby's releases.

7.10.7

Release Notes

Conversations

  • update actions api visibility

Memory

  • 2026-05-07

  • Content updates:
  • include store api

Docs

7.10.6

Release Notes

Library - Chore

Twiml

  • Set recording_configuration_id attribute to public visibility in <Conference>, <Dial>, <Record> verbs and <Recording> noun

Api

  • Add RecordingConfigurationId parameter for CreateCall, CreateCallRecording, CreateConferenceRecording, and CreateParticipant endpoints

Authy

  • Changelog

  • v1

  • Added Authy API v1 under /v1 — initial onboarding of Public API (/v1/protected/*), Device API (/v1/json/*), and Dashboard API (/v1/dashboard/*) behind REST Proxy using transparent proxy mode.

Data-ingress

  • 2026-04-21

  • Content updates:
  • Updated description for CreateDataSync
  • Updated description for DeleteCloudAppDataset
  • Updated description for DeleteWarehouseDataset

  • 2026-04-20

  • Minor updates (formatting, metadata)

  • 2026-04-17

  • updated operationId for dataplane APIs,Minor updates (formatting, metadata)

  • 2026-04-15

  • libraryVisibility to private

  • 2026-04-14

  • Added 1 new path(s):
  • /v1/DataSyncs/Latest (GetLatestDataSyncs)

Memory

  • 2026-04-21

  • Content updates:

... (truncated)

Changelog

Sourced from twilio-ruby's changelog.

[2026-05-07] Version 7.10.7

Conversations

  • update actions api visibility

Memory

  • 2026-05-07

  • Content updates:
  • include store api

[2026-05-06] Version 7.10.6

Library - Chore

Twiml

  • Set recording_configuration_id attribute to public visibility in <Conference>, <Dial>, <Record> verbs and <Recording> noun

Api

  • Add RecordingConfigurationId parameter for CreateCall, CreateCallRecording, CreateConferenceRecording, and CreateParticipant endpoints

Authy

  • Changelog

  • v1

  • Added Authy API v1 under /v1 — initial onboarding of Public API (/v1/protected/*), Device API (/v1/json/*), and Dashboard API (/v1/dashboard/*) behind REST Proxy using transparent proxy mode.

Data-ingress

  • 2026-04-21

  • Content updates:
  • Updated description for CreateDataSync
  • Updated description for DeleteCloudAppDataset
  • Updated description for DeleteWarehouseDataset

  • 2026-04-20

  • Minor updates (formatting, metadata)

  • 2026-04-17

  • updated operationId for dataplane APIs,Minor updates (formatting, metadata)

  • 2026-04-15

  • libraryVisibility to private

  • 2026-04-14

  • Added 1 new path(s):
  • /v1/DataSyncs/Latest (GetLatestDataSyncs)

Memory

  • 2026-04-21

  • Content updates:
  • Remove Prefer/Async-Operation headers

  • 2026-04-21

  • Content updates:
  • Added 301 response for ListIdentifiers and GetIdentifier

... (truncated)

Commits
  • c58e213 Release 7.10.7
  • 17490e7 [Librarian] Regenerated @ d39d243cf0f072a87b06d80cfd5d04f77cde8481 18d7938080...
  • 15d5924 Release 7.10.6
  • 8b24233 [Librarian] Regenerated @ d39d243cf0f072a87b06d80cfd5d04f77cde8481 e2fda0239d...
  • b61833f chore: Update faraday dependency version range (#786)
  • See full diff in compare view

Updates bullet from 8.1.0 to 8.1.3

Changelog

Sourced from bullet's changelog.

8.1.3 (06/02/2026)

  • Handle inversed polymorphic belongs_to false positives

8.1.2 (05/25/2026)

  • Skip N+1 detection for optional polymorphic belongs_to whose *_type column is nil. ActiveRecord short-circuits the reader to nil without issuing SQL, so the access cannot represent an N+1 query and preloading would be a no-op.
  • Fix Set#<< corruption in UnusedEagerLoading#add_eager_loadings split branch

8.1.1 (04/23/2026)

  • Fix ActiveRecord 8.1 patch-level method signature compatibility; test against Rails 8.1.3.
  • Handle string associations in safelist for Action Text
  • Enhance N+1 query detection by including caller stack in association calls
  • Update external links in README.md
Commits
  • bc55c03 Bumping version to 8.1.3
  • bf01943 Merge pull request #774 from sloane/sloane/shorten-it-block-comment
  • f30f124 Fixup ActiveRecord versions
  • 899c97f Green
  • 68ad149 Red
  • 02b71fd Bumping version to 8.1.2
  • b92d8d4 Merge pull request #773 from sloane/sloane/bullet-nil-polymorphic-false-positive
  • 5f416e7 Skip N+1 detection for polymorphic belongs_to with nil _type
  • 225aacb 📝 docs: clarify test wrapping requirements for Bullet
  • 8667044 Merge pull request #771 from martingjaldbaek/fix-add-eager-loadings-set-merge
  • Additional commits viewable in compare view

Updates selenium-webdriver from 4.43.0 to 4.44.0

Release notes

Sourced from selenium-webdriver's releases.

Selenium 4.44.0

Detailed Changelogs by Component

Java     |     Python     |     DotNet     |     Ruby     |     JavaScript

What's Changed

... (truncated)

Changelog

Sourced from selenium-webdriver's changelog.

4.44.0 (2026-05-12)

  • Support CDP versions: v146, v147, v148
  • Modern Firefox does not like both the -v and --log flags at the same time (#17412)
  • Fix credential issue with private key (#17188)
Commits
  • da2039b [build] Prepare for release of selenium-4.44.0 (#17444)
  • 6b85c4a [rb] Fix credential issue with private key (#17188)
  • 4885286 [dotnet][java][js][py][rb] Standardize README files across bindings (#17245)
  • 2042c23 [rb] Modern Firefox does not like both the -v and --log flags at the same...
  • 31ee122 [Agents] Update agents to make sure do linting. (#17366)
  • c95fe73 Bumping versions to nightly
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the ruby-minor-patch group across 1 directory with 10 updates
16ab2a8 
Bumps the ruby-minor-patch group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [bootsnap](https://github.com/rails/bootsnap) | `1.23.0` | `1.24.5` |
| [thruster](https://github.com/basecamp/thruster) | `0.1.20` | `0.1.21` |
| [view_component](https://github.com/viewcomponent/view_component) | `4.7.0` | `4.11.0` |
| [devise](https://github.com/heartcombo/devise) | `5.0.3` | `5.0.4` |
| [nokogiri](https://github.com/sparklemotion/nokogiri) | `1.19.2` | `1.19.3` |
| [sentry-ruby](https://github.com/getsentry/sentry-ruby) | `6.5.0` | `6.6.0` |
| [twilio-ruby](https://github.com/twilio/twilio-ruby) | `7.10.5` | `7.10.7` |
| [bullet](https://github.com/flyerhzm/bullet) | `8.1.0` | `8.1.3` |
| [selenium-webdriver](https://github.com/SeleniumHQ/selenium) | `4.43.0` | `4.44.0` |



Updates `bootsnap` from 1.23.0 to 1.24.5
- [Release notes](https://github.com/rails/bootsnap/releases)
- [Changelog](https://github.com/rails/bootsnap/blob/main/CHANGELOG.md)
- [Commits](rails/bootsnap@v1.23.0...v1.24.5)

Updates `thruster` from 0.1.20 to 0.1.21
- [Changelog](https://github.com/basecamp/thruster/blob/main/CHANGELOG.md)
- [Commits](basecamp/thruster@v0.1.20...v0.1.21)

Updates `view_component` from 4.7.0 to 4.11.0
- [Release notes](https://github.com/viewcomponent/view_component/releases)
- [Changelog](https://github.com/ViewComponent/view_component/blob/main/docs/CHANGELOG.md)
- [Commits](ViewComponent/view_component@v4.7.0...v4.11.0)

Updates `devise` from 5.0.3 to 5.0.4
- [Release notes](https://github.com/heartcombo/devise/releases)
- [Changelog](https://github.com/heartcombo/devise/blob/main/CHANGELOG.md)
- [Commits](heartcombo/devise@v5.0.3...v5.0.4)

Updates `nokogiri` from 1.19.2 to 1.19.3
- [Release notes](https://github.com/sparklemotion/nokogiri/releases)
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md)
- [Commits](sparklemotion/nokogiri@v1.19.2...v1.19.3)

Updates `sentry-ruby` from 6.5.0 to 6.6.0
- [Release notes](https://github.com/getsentry/sentry-ruby/releases)
- [Changelog](https://github.com/getsentry/sentry-ruby/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-ruby@6.5.0...6.6.0)

Updates `sentry-rails` from 6.5.0 to 6.6.0
- [Release notes](https://github.com/getsentry/sentry-ruby/releases)
- [Changelog](https://github.com/getsentry/sentry-ruby/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-ruby@6.5.0...6.6.0)

Updates `twilio-ruby` from 7.10.5 to 7.10.7
- [Release notes](https://github.com/twilio/twilio-ruby/releases)
- [Changelog](https://github.com/twilio/twilio-ruby/blob/main/CHANGES.md)
- [Commits](twilio/twilio-ruby@7.10.5...7.10.7)

Updates `bullet` from 8.1.0 to 8.1.3
- [Changelog](https://github.com/flyerhzm/bullet/blob/main/CHANGELOG.md)
- [Commits](flyerhzm/bullet@8.1.0...8.1.3)

Updates `selenium-webdriver` from 4.43.0 to 4.44.0
- [Release notes](https://github.com/SeleniumHQ/selenium/releases)
- [Changelog](https://github.com/SeleniumHQ/selenium/blob/trunk/rb/CHANGES)
- [Commits](SeleniumHQ/selenium@selenium-4.43.0...selenium-4.44.0)

---
updated-dependencies:
- dependency-name: bootsnap
  dependency-version: 1.24.5
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ruby-minor-patch
- dependency-name: thruster
  dependency-version: 0.1.21
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ruby-minor-patch
- dependency-name: view_component
  dependency-version: 4.11.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ruby-minor-patch
- dependency-name: devise
  dependency-version: 5.0.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ruby-minor-patch
- dependency-name: nokogiri
  dependency-version: 1.19.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ruby-minor-patch
- dependency-name: sentry-ruby
  dependency-version: 6.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ruby-minor-patch
- dependency-name: sentry-rails
  dependency-version: 6.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ruby-minor-patch
- dependency-name: twilio-ruby
  dependency-version: 7.10.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ruby-minor-patch
- dependency-name: bullet
  dependency-version: 8.1.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: ruby-minor-patch
- dependency-name: selenium-webdriver
  dependency-version: 4.44.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: ruby-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jun 3, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants