Skip to content

chore(deps): bump the dependencies group across 1 directory with 5 updates #1992

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

chore(deps): bump the dependencies group across 1 directory with 5 updates #1992

wants to merge 1 commit into from
+21 −18

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 15, 2025
edited
Loading

Updates the requirements on rdoc, rake, rexml, nokogiri and github-linguist to permit the latest version.
Updates rdoc from 6.13.1 to 6.14.2

Release notes

Sourced from rdoc's releases.

v6.14.2

What's Changed

🐛 Bug Fixes

🛠 Other Changes

Full Changelog: ruby/rdoc@v6.14.0...v6.14.2

v6.14.1

What's Changed

🛠 Other Changes

Full Changelog: ruby/rdoc@v6.14.0...v6.14.1

v6.14.0

What's Changed

✨ Enhancements

🐛 Bug Fixes

🛠 Other Changes

... (truncated)

Commits
  • e0e24f2 Bump version to 6.14.2 (#1387)
  • eaac67d Support markdown syntax in table cells (#1386)
  • 70301b8 Fix template files location
  • fcfab0f Bump step-security/harden-runner from 2.12.1 to 2.12.2 (#1385)
  • f3204b7 Pass PR info through artifacts to fork preview deploy
  • f4592db Use repository_dispatch for previewing instead (#1384)
  • 552d1c4 Refactor PR preview workflow for improved approval process (#1370)
  • 1d26a15 test/lib/helper.rb is only for ruby/rdoc repo
  • aa74823 Bump step-security/harden-runner from 2.12.0 to 2.12.1
  • e5162fe Use bot credential for preview page generated by dependabot
  • Additional commits viewable in compare view

Updates rake from 13.2.1 to 13.3.0

Commits
  • 0fdacef Bump rake to 13.3.0
  • fcc1f86 Merge pull request #515 from rgarner/task-arguments-deconstruct-keys
  • 8e917d9 Merge pull request #609 from pvdb/fix_rubyrunner_require
  • 0378c45 Merge pull request #627 from komagata/fix-rdoc-links
  • cff7664 Pattern matching support for arguments
  • a4454e6 Merge pull request #608 from pvdb/use_dir_home
  • 0b727e9 Remove superfluous dependency requires (in tests)
  • 5367e5c Move dependency requires to RubyRunner file
  • 6ba4601 Merge pull request #634 from ruby/trusted-publisher
  • 6b3daf8 Enabled trusted publisher for rubygems.org
  • Additional commits viewable in compare view

Updates rexml from 3.4.1 to 3.4.4

Release notes

Sourced from rexml's releases.

REXML 3.4.4 - 2025-09-10

Improvement

  • Accept REXML::Document.new("") for backward compatibility
    • GH-296
    • GH-295
    • Patch by NAITOH Jun
    • Reported by Joe Rafaniello

Thanks

  • NAITOH Jun

  • Joe Rafaniello

REXML 3.4.3 - 2025-09-07

Improvement

  • Reject no root element XML as an invalid XML
    • GH-289
    • GH-291
    • Patch by NAITOH Jun
    • Reported by Sutou Kouhei

Fixes

  • Fixed an issue with IOSource#read_until when reaching the end of a file
    • GH-287
    • GH-288
    • Patch by NAITOH Jun
    • Reported by Jason Thomas

Thanks

  • NAITOH Jun

  • Sutou Kouhei

  • Jason Thomas

REXML 3.4.2 - 2025-08-26

Improvement

... (truncated)

Changelog

Sourced from rexml's changelog.

3.4.4 - 2025-09-10 {#version-3-4-4}

Improvement

  • Accept REXML::Document.new("") for backward compatibility
    • GH-296
    • GH-295
    • Patch by NAITOH Jun
    • Reported by Joe Rafaniello

Thanks

  • NAITOH Jun

  • Joe Rafaniello

3.4.3 - 2025-09-07 {#version-3-4-3}

Improvement

  • Reject no root element XML as an invalid XML
    • GH-289
    • GH-291
    • Patch by NAITOH Jun
    • Reported by Sutou Kouhei

Fixes

  • Fixed an issue with IOSource#read_until when reaching the end of a file
    • GH-287
    • GH-288
    • Patch by NAITOH Jun
    • Reported by Jason Thomas

Thanks

  • NAITOH Jun

  • Sutou Kouhei

  • Jason Thomas

3.4.2 - 2025-08-26 {#version-3-4-2}

Improvement

... (truncated)

Commits
  • 4f32ea3 Add 3.4.4 entry (#297)
  • 37cde3f Accept REXML::Document.new("") for backward compatibility (#295)
  • 4ffe211 Bump version
  • 822530c Add 3.4.3 entry (#293)
  • 6ba286c Reject no root element XML as an invalid XML (#291)
  • b5b148e The Zlib::GzipReader in JRuby does not behave as expected with REXML, so the ...
  • 1531862 Fixed an issue with IOSource#read_until when reaching the end of a file (#288)
  • 185bdc7 Bump version
  • f36916f Add 3.4.2 entry (#284)
  • 5859bde Added XML declaration check & Source#skip_spaces method (#282)
  • Additional commits viewable in compare view

Updates nokogiri from 1.18.9 to 1.18.10

Release notes

Sourced from nokogiri's releases.

v1.18.10 / 2025-09-15

Dependencies

  • [CRuby] Vendored libxml2 is updated to v2.13.9. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.
  • [CRuby] [Windows and MacOS] Vendored libiconv is updated to v1.18
7fb87235d729c74a2be635376d82b1d459230cc17c50300f8e4fcaabc6195344  nokogiri-1.18.10-aarch64-linux-gnu.gem
7e74e58314297cc8a8f1b533f7212d1999dbe2639a9ee6d97b483ea2acc18944  nokogiri-1.18.10-aarch64-linux-musl.gem
51f4f25ab5d5ba1012d6b16aad96b840a10b067b93f35af6a55a2c104a7ee322  nokogiri-1.18.10-arm-linux-gnu.gem
1c6ea754e51cecc85c30ee8ab1e6aa4ce6b6e134d01717e9290e79374a9e00aa  nokogiri-1.18.10-arm-linux-musl.gem
c2b0de30770f50b92c9323fa34a4e1cf5a0af322afcacd239cd66ee1c1b22c85  nokogiri-1.18.10-arm64-darwin.gem
cd431a09c45d84a2f870ba0b7e8f571199b3727d530f2b4888a73639f76510b5  nokogiri-1.18.10-java.gem
64f40d4a41af9f7f83a4e236ad0cf8cca621b97e31f727b1bebdae565a653104  nokogiri-1.18.10-x64-mingw-ucrt.gem
536e74bed6db2b5076769cab5e5f5af0cd1dccbbd75f1b3e1fa69d1f5c2d79e2  nokogiri-1.18.10-x86_64-darwin.gem
ff5ba26ba2dbce5c04b9ea200777fd225061d7a3930548806f31db907e500f72  nokogiri-1.18.10-x86_64-linux-gnu.gem
0651fccf8c2ebbc2475c8b1dfd7ccac3a0a6d09f8a41b72db8c21808cb483385  nokogiri-1.18.10-x86_64-linux-musl.gem
d5cc0731008aa3b3a87b361203ea3d19b2069628cb55e46ac7d84a0445e69cc1  nokogiri-1.18.10.gem
Changelog

Sourced from nokogiri's changelog.

v1.18.10 / 2025-09-15

Dependencies

  • [CRuby] Vendored libxml2 is updated to v2.13.9. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.
  • [CRuby] [Windows and MacOS] Vendored libiconv is updated to v1.18
Commits
  • 6803740 version bump to v1.18.10
  • 93337de dep: bump vendored libxml2 to v2.13.9 (#3555)
  • 15dde17 ci: work around repeated bundler deadlocks
  • 9906071 dep: bump vendored libxml2 to v2.13.9
  • adf72e3 [v1.18.x] backport libiconv upgrade to v1.18 (#3550)
  • 92cab09 dep: update vendored libiconv to 1.18
  • f1c5ea8 Use mirror site to download libiconv
  • dcd2721 ci: stop testing Ruby 3.1 windows source builds
  • cf856e6 ci: fix the aarch64 segfault by using a more modern qemu
  • 6d77443 Fix errors building Ruby 3.1 on windows
  • Additional commits viewable in compare view

Updates github-linguist from 9.1.0 to 9.2.0

Release notes

Sourced from github-linguist's releases.

v9.2.0

What's Changed

New Contributors

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Sep 15, 2025
@dependabot
chore(deps): bump the dependencies group across 1 directory with 5 up…
77c1e9a 
…dates

Updates the requirements on [rdoc](https://github.com/ruby/rdoc), [rake](https://github.com/ruby/rake), [rexml](https://github.com/ruby/rexml), [nokogiri](https://github.com/sparklemotion/nokogiri) and [github-linguist](https://github.com/github-linguist/linguist) to permit the latest version.

Updates `rdoc` from 6.13.1 to 6.14.2
- [Release notes](https://github.com/ruby/rdoc/releases)
- [Changelog](https://github.com/ruby/rdoc/blob/master/History.rdoc)
- [Commits](ruby/rdoc@v6.13.1...v6.14.2)

Updates `rake` from 13.2.1 to 13.3.0
- [Release notes](https://github.com/ruby/rake/releases)
- [Changelog](https://github.com/ruby/rake/blob/master/History.rdoc)
- [Commits](ruby/rake@v13.2.1...v13.3.0)

Updates `rexml` from 3.4.1 to 3.4.4
- [Release notes](https://github.com/ruby/rexml/releases)
- [Changelog](https://github.com/ruby/rexml/blob/master/NEWS.md)
- [Commits](ruby/rexml@v3.4.1...v3.4.4)

Updates `nokogiri` from 1.18.9 to 1.18.10
- [Release notes](https://github.com/sparklemotion/nokogiri/releases)
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md)
- [Commits](sparklemotion/nokogiri@v1.18.9...v1.18.10)

Updates `github-linguist` from 9.1.0 to 9.2.0
- [Release notes](https://github.com/github-linguist/linguist/releases)
- [Commits](github-linguist/linguist@v9.1.0...v9.2.0)

---
updated-dependencies:
- dependency-name: rdoc
  dependency-version: 6.14.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: rake
  dependency-version: 13.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: rexml
  dependency-version: 3.4.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: nokogiri
  dependency-version: 1.18.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: github-linguist
  dependency-version: 9.2.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/bundler/dependencies-1cafeca95b branch from b54d56a to 77c1e9a Compare September 19, 2025 15:16
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 13, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Oct 13, 2025
@dependabot dependabot bot deleted the dependabot/bundler/dependencies-1cafeca95b branch October 13, 2025 10:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants