Skip to content

chore(deps): bump the ruby-deps group with 6 updates#2599

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/bundler/ruby-deps-2bd40aec39
Open

chore(deps): bump the ruby-deps group with 6 updates#2599
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/bundler/ruby-deps-2bd40aec39

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 27, 2026

Bumps the ruby-deps group with 6 updates:

Package From To
pagy 43.5.1 43.5.3
tzinfo-data 1.2026.1 1.2026.2
puma 8.0.0 8.0.1
view_component 4.7.0 4.8.0
irb 1.17.0 1.18.0
bullet 8.1.0 8.1.1

Updates pagy from 43.5.1 to 43.5.3

Release notes

Sourced from pagy's releases.

Version 43.5.3

Changes in 43.5.3

  • Autoload series, a_lambda and page_label
  • Add Hungarian localization file for Pagy (#896)

CHANGELOG

Version 43

We needed a leap version to unequivocally signal that it's not just a major version: it's a complete redesign of the legacy code at all levels, usage and API included.

Why 43? Because it's exactly one step beyond "The answer to the ultimate question of life, the Universe, and everything." 😉

Improvements

This version introduces several enhancements, such as new :countish and :keynav_js paginators and improved automation and configuration processes, reducing setup requirements by 99%. The update also includes a simpler API and new interactive development tools, making it a comprehensive upgrade from previous versions.

  • New :countish Paginator
    • Faster than OFFSET and supporting the full UI
  • New Keynav Pagination
    • The pagy-exclusive technique using the fastest keyset pagination alongside all frontend helpers.
  • New interactive dev-tools
    • New PagyWand to integrate the pagy CSS with your app themes.
    • New Pagy AI available right inside your own app.
  • Intelligent automation
  • Simpler API
    • You solely need the pagy method and the @​pagy instance to paginate any collection and use any navigation tag and helper.
    • Methods are autoloaded only if used, and consume no memory otherwise.
    • Methods have narrower scopes and can be overridden without deep knowledge.
  • New documentation
    • Very concise, straightforward, and easy to navigate and understand.

Upgrade to 43

See the Upgrade Guide

... (truncated)

Changelog

Sourced from pagy's changelog.

Version 43.5.3

  • Autoload series, a_lambda and page_label
  • Add Hungarian localization file for Pagy (#896)

Version 43.5.2

  • Add type validation for page and limit keys type (close #895)
  • Simplify series_nav_js removing "pagy-rjs" CSS class (Fix #894)
Commits

Updates tzinfo-data from 1.2026.1 to 1.2026.2

Release notes

Sourced from tzinfo-data's releases.

v1.2026.2

Based on version 2026b of the IANA Time Zone Database (https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/message/VX2Z3CBO6KHTYZNBBKFFWM7ZCI6TVCXP/).

Commits

Updates puma from 8.0.0 to 8.0.1

Release notes

Sourced from puma's releases.

v8.0.1

  • Bugfixes

    • Fix prune_bundler stripping user-configured BUNDLE_* env vars (e.g. BUNDLE_WITHOUT) on re-exec, which caused workers to crash on boot (#3929)

  • Performance

    • Use blocks for debug logging to avoid creating log messages when debug is disabled (#3920)

  • Docs

    • Fix incorrect hook names in gRPC docs (#3923)
    • Reword v8 upgrade guide IPv6 bullet for clarity (#3928)
Changelog

Sourced from puma's changelog.

8.0.1 / 2026-04-27

  • Bugfixes

    • Fix prune_bundler stripping user-configured BUNDLE_* env vars (e.g. BUNDLE_WITHOUT) on re-exec, which caused workers to crash on boot (#3929)

  • Performance

    • Use blocks for debug logging to avoid creating log messages when debug is disabled (#3920)

  • Docs

    • Fix incorrect hook names in gRPC docs (#3923)
    • Reword v8 upgrade guide IPv6 bullet for clarity (#3928)
Commits
  • cee7e61 Release v8.0.1 (#3932)
  • f955caf Fix prune_bundler stripping user-configured BUNDLE_* env vars on re-exec (#3929)
  • 97996aa ci: test_error_logger.rb - fix TruffleRuby error (#3930)
  • 03825bc Build(deps): Bump actions/github-script from 8 to 9 (#3925)
  • 053efae Reword v8 upgrade guide ipv6 bullet (#3928)
  • b19f35a Fix incorrect hook names in gRPC docs (#3923)
  • eeabe4b Use blocks for debug logging to avoid creating messages if debug disabled (#3...
  • See full diff in compare view

Updates view_component from 4.7.0 to 4.8.0

Release notes

Sourced from view_component's releases.

4.8.0

  • Add compile.view_component ActiveSupport::Notifications event for eager compilation at boot time.

    Joel Hawksley, GitHub Copilot

Changelog

Sourced from view_component's changelog.

4.8.0

  • Add compile.view_component ActiveSupport::Notifications event for eager compilation at boot time.

    Joel Hawksley, GitHub Copilot

Commits
  • d7e8cb4 Merge pull request #2615 from ViewComponent/release-4-8-0
  • 091e30a fix flaky tesT
  • 9e0dae4 release 4.8.0
  • ef90407 Merge pull request #2613 from ViewComponent/instrument-compilation
  • d920918 clean up test
  • 3cc6d61 simplify test
  • d7947fc Add compile.view_component ActiveSupport::Notifications event for eager compi...
  • 5d84af8 Merge pull request #2612 from ViewComponent/dependabot/bundler/propshaft-1.3.2
  • 8f4ef89 Bump propshaft from 1.3.1 to 1.3.2
  • 9ae4d79 Merge pull request #2611 from ViewComponent/dependabot/bundler/yard-0.9.43
  • Additional commits viewable in compare view

Updates irb from 1.17.0 to 1.18.0

Release notes

Sourced from irb's releases.

v1.18.0

What's Changed

✨ Enhancements

🐛 Bug Fixes

🛠 Other Changes

New Contributors

Full Changelog: ruby/irb@v1.17.0...v1.18.0

Commits
  • 31e068a Bump version to 1.18.0 (#1208)
  • f49d6b5 Colorize KEYWORD_DO_BLOCK (added in head Prism) (#1207)
  • 96342e7 Fix incorrect dash in startup message (#1206)
  • 9b930c8 Add --nobanner option to suppress startup banner (#1200)
  • 9dc2a85 Bump rubygems/release-gem from 1.1.4 to 1.2.0
  • 454964c Bump actions/upload-pages-artifact from 4 to 5
  • b9719d1 Bump step-security/harden-runner from 2.16.0 to 2.17.0
  • ee2af9f Highlight the method name in method calls (#1189)
  • 75ad68d Bump actions/configure-pages from 5 to 6
  • 6f757b9 Bump actions/deploy-pages from 4 to 5
  • Additional commits viewable in compare view

Updates bullet from 8.1.0 to 8.1.1

Changelog

Sourced from bullet's changelog.

8.1.1 (04/23/2026)

  • Fix ActiveRecord 8.1 patch-level method signature compatibility; test against Rails 8.1.3.
  • Handle string associations in safelist for Action Text
  • Enhance N+1 query detection by including caller stack in association calls
  • Update external links in README.md
Commits
  • 4a6d5cf 🔧 chore(release): bump version to 8.1.1
  • 78fa0f4 Merge pull request #769 from PhilippeBo/rails_compatibility
  • e758042 Fix ActiveRecord 8.1 patch-level method signature compatibility; test against...
  • ec551da 🐛 fix: handle string associations in safelist for Action Text
  • d01d0ae Merge pull request #767 from kazuki-hanai/patch-1
  • f5027a6 Update external links in README.md
  • 260791d Merge pull request #765 from Abdelrhman-Yasser/improve-nplus1-stacktrace
  • d5c7d6c Enhance N+1 query detection by including caller stack in association calls
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the ruby-deps group with 6 updates
c78d778 
Bumps the ruby-deps group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [pagy](https://github.com/ddnexus/pagy) | `43.5.1` | `43.5.3` |
| [tzinfo-data](https://github.com/tzinfo/tzinfo-data) | `1.2026.1` | `1.2026.2` |
| [puma](https://github.com/puma/puma) | `8.0.0` | `8.0.1` |
| [view_component](https://github.com/viewcomponent/view_component) | `4.7.0` | `4.8.0` |
| [irb](https://github.com/ruby/irb) | `1.17.0` | `1.18.0` |
| [bullet](https://github.com/flyerhzm/bullet) | `8.1.0` | `8.1.1` |


Updates `pagy` from 43.5.1 to 43.5.3
- [Release notes](https://github.com/ddnexus/pagy/releases)
- [Changelog](https://github.com/ddnexus/pagy/blob/master/docs/CHANGELOG.md)
- [Commits](ddnexus/pagy@43.5.1...43.5.3)

Updates `tzinfo-data` from 1.2026.1 to 1.2026.2
- [Release notes](https://github.com/tzinfo/tzinfo-data/releases)
- [Commits](tzinfo/tzinfo-data@v1.2026.1...v1.2026.2)

Updates `puma` from 8.0.0 to 8.0.1
- [Release notes](https://github.com/puma/puma/releases)
- [Changelog](https://github.com/puma/puma/blob/main/History.md)
- [Commits](puma/puma@v8.0.0...v8.0.1)

Updates `view_component` from 4.7.0 to 4.8.0
- [Release notes](https://github.com/viewcomponent/view_component/releases)
- [Changelog](https://github.com/ViewComponent/view_component/blob/main/docs/CHANGELOG.md)
- [Commits](ViewComponent/view_component@v4.7.0...v4.8.0)

Updates `irb` from 1.17.0 to 1.18.0
- [Release notes](https://github.com/ruby/irb/releases)
- [Commits](ruby/irb@v1.17.0...v1.18.0)

Updates `bullet` from 8.1.0 to 8.1.1
- [Changelog](https://github.com/flyerhzm/bullet/blob/main/CHANGELOG.md)
- [Commits](flyerhzm/bullet@8.1.0...8.1.1)

---
updated-dependencies:
- dependency-name: pagy
  dependency-version: 43.5.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ruby-deps
- dependency-name: tzinfo-data
  dependency-version: 1.2026.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ruby-deps
- dependency-name: puma
  dependency-version: 8.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ruby-deps
- dependency-name: view_component
  dependency-version: 4.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ruby-deps
- dependency-name: irb
  dependency-version: 1.18.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: ruby-deps
- dependency-name: bullet
  dependency-version: 8.1.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: ruby-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies ruby Pull requests that update Ruby code labels Apr 27, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies ruby Pull requests that update Ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants