Skip to content

Bump the ruby-deps group with 9 updates #1114

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
chadlwilson merged 1 commit into from
Jan 1, 2026
Merged

Bump the ruby-deps group with 9 updates #1114

chadlwilson merged 1 commit into from
Jan 1, 2026

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 1, 2026

Bumps the ruby-deps group with 9 updates:

Package From To
nokogiri 1.18.10 1.19.0
aws-sdk-s3 1.208.0 1.209.0
aws-sdk-s3control 1.121.0 1.122.0
async 2.34.0 2.35.0
aws-partitions 1.1196.0 1.1200.0
ffi 1.17.2 1.17.3
json 2.16.0 2.18.0
pdf-reader 2.15.0 2.15.1
zeitwerk 2.7.3 2.7.4

Updates nokogiri from 1.18.10 to 1.19.0

Release notes

Sourced from nokogiri's releases.

v1.19.0 / 2025-12-28

Ruby

This release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.

11a97ecc3c0e7e5edcf395720b10860ef493b768f6aa80c539573530bc933767  nokogiri-1.19.0-aarch64-linux-gnu.gem
eb70507f5e01bc23dad9b8dbec2b36ad0e61d227b42d292835020ff754fb7ba9  nokogiri-1.19.0-aarch64-linux-musl.gem
572a259026b2c8b7c161fdb6469fa2d0edd2b61cd599db4bbda93289abefbfe5  nokogiri-1.19.0-arm-linux-gnu.gem
23ed90922f1a38aed555d3de4d058e90850c731c5b756d191b3dc8055948e73c  nokogiri-1.19.0-arm-linux-musl.gem
0811dfd936d5f6dd3f6d32ef790568bf29b2b7bead9ba68866847b33c9cf5810  nokogiri-1.19.0-arm64-darwin.gem
5f3a70e252be641d8a4099f7fb4cc25c81c632cb594eec9b4b8f2ca8be4374f3  nokogiri-1.19.0-java.gem
05d7ed2d95731edc9bef2811522dc396df3e476ef0d9c76793a9fca81cab056b  nokogiri-1.19.0-x64-mingw-ucrt.gem
1dad56220b603a8edb9750cd95798bffa2b8dd9dd9aa47f664009ee5b43e3067  nokogiri-1.19.0-x86_64-darwin.gem
f482b95c713d60031d48c44ce14562f8d2ce31e3a9e8dd0ccb131e9e5a68b58c  nokogiri-1.19.0-x86_64-linux-gnu.gem
1c4ca6b381622420073ce6043443af1d321e8ed93cc18b08e2666e5bd02ffae4  nokogiri-1.19.0-x86_64-linux-musl.gem
e304d21865f62518e04f2bf59f93bd3a97ca7b07e7f03952946d8e1c05f45695  nokogiri-1.19.0.gem
Changelog

Sourced from nokogiri's changelog.

v1.19.0 / 2025-12-28

Ruby

This release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.

Commits
  • d77bfb6 version bump to v1.19.0
  • 1eb5c2c dev: convert scripts/test-gem-set to use mise
  • 88a120f dep: Add native Ruby 4 support, drop Ruby 3.1 support (v1.19.x) (#3592)
  • f8c8f74 Skip the parser compression test for Windows system libs
  • e91c0fc ci: temporarily pin to setup-ruby with windows ruby 4
  • 1b08acc dep: update to minitest 6
  • 404487d dep: require JRuby >= 10.0
  • 19b22ea dep: add support for native Ruby 4.0 gem
  • ec57d11 ci: bump versions in CI images
  • f7b640f ci: avoid bundler collisions in downstream tests
  • Additional commits viewable in compare view

Updates aws-sdk-s3 from 1.208.0 to 1.209.0

Changelog

Sourced from aws-sdk-s3's changelog.

1.209.0 (2025-12-23)

  • Feature - Add additional validation to Outpost bucket names.
Commits

Updates aws-sdk-s3control from 1.121.0 to 1.122.0

Changelog

Sourced from aws-sdk-s3control's changelog.

1.122.0 (2025-12-02)

  • Feature - Add support for S3 Storage Lens Advanced Performance Metrics, Expanded Prefixes metrics report, and export to S3 Tables.
Commits

Updates async from 2.34.0 to 2.35.0

Changelog

Sourced from async's changelog.

v2.35.0

  • Process.fork is now properly handled by the Async fiber scheduler, ensuring that the scheduler state is correctly reset in the child process after a fork. This prevents issues where the child process inherits the scheduler state from the parent, which could lead to unexpected behavior.
Commits

Updates aws-partitions from 1.1196.0 to 1.1200.0

Changelog

Sourced from aws-partitions's changelog.

1.1200.0 (2025-12-30)

  • Feature - Updated the partitions source data the determines the AWS service regions and endpoints.

1.1199.0 (2025-12-26)

  • Feature - Updated the partitions source data the determines the AWS service regions and endpoints.

1.1198.0 (2025-12-19)

  • Feature - Added support for enumerating regions for Aws::Wickr.

1.1197.0 (2025-12-18)

  • Feature - Updated the partitions source data the determines the AWS service regions and endpoints.
Commits

Updates ffi from 1.17.2 to 1.17.3

Changelog

Sourced from ffi's changelog.

1.17.3 / 2025-12-29

Fixed:

  • Opt-in for MFA requirement explicitly. #1159
  • Fix type signature for FFI::AutoPointer#initialize, FFI::StructByReference#native_type and FFI::Struct#auto_ptr . #1158
  • Fix function signature of function_call in FFI trampoline. #1154 It failed on aarch64-mingw-ucrt.
  • Add workaround for segmentation faults on aarch64-mingw-ucrt. #1154
  • Call super in Library#freeze . #1154
  • Deny duplication of AutoPointer per #dup and #clone . #1173 They led to double free before.

Added:

  • Add binary gems for Ruby-4.0, now providing binary gems for Ruby-3.0 to 4.0.
  • Add msys2_mingw_dependencies for Windows Mingw for automatic installation of libffi. #1143
  • Mark callback dispatcher thread as fork safe for Puma. #1156
  • Add missing FFI::Platform module and LastError signatures. #1169

Removed:

  • Drop fat binary gems for Ruby < 3.0
  • Remove FFI::TypesGenerator from distributed gems. #1164
  • Remove libffi build dir after install, safing some install space. #1157
Commits
  • 68f4d3b Bump VERSION to ffi-1.17.3 and add release notes
  • 38d298e Update libffi to latest master branch
  • 77f9033 Merge pull request #1108 from lloeki/add-steep
  • 9cce647 Add ffi.gemspec to Gemfile
  • 42b2382 Fix newly introduced rbs signatures for FFI::Platform
  • 6e76f7f Add CI check for RBS files
  • b1fdbe1 Add Steep to check RBS files
  • 6076fab Merge pull request #1173 from ffi/fix-1155
  • 195f9e9 Merge pull request #1143 from johnnyshields/patch-2
  • 0ff4cb3 Binary gems don't need libffi header+lib files
  • Additional commits viewable in compare view

Updates json from 2.16.0 to 2.18.0

Release notes

Sourced from json's releases.

v2.18.0

What's Changed

  • Add :allow_control_characters parser options, to allow JSON strings containing unescaped ASCII control characters (e.g. newlines).

Full Changelog: ruby/json@v2.17.1...v2.18.0

v2.17.1

What's Changed

  • Fix a regression in parsing of unicode surogate pairs (\uXX\uXX) that could cause an invalid string to be returned.

Full Changelog: ruby/json@v2.17.0...v2.17.1

v2.17.0

What's Changed

  • Improve JSON.load and JSON.unsafe_load to allow passing options as second argument.
  • Fix the parser to no longer ignore invalid escapes in strings. Only \", \\, \b, \f, \n, \r, \t and \u are valid JSON escapes.
  • Fixed JSON::Coder to use the depth it was initialized with.
  • On TruffleRuby, fix the generator to not call to_json on the return value of as_json for Float::NAN.
  • Fixed handling of state.depth: when to_json changes state.depth but does not restore it, it is reset automatically to its initial value. In particular, when a NestingError is raised, depth is no longer equal to max_nesting after the call to generate, and is reset to its initial value. Similarly when to_json raises an exception.

Full Changelog: ruby/json@v2.16.0...v2.17.0

Changelog

Sourced from json's changelog.

2025-12-11 (2.18.0)

  • Add :allow_control_characters parser options, to allow JSON strings containing unescaped ASCII control characters (e.g. newlines).

2025-12-04 (2.17.1)

  • Fix a regression in parsing of unicode surogate pairs (\uXX\uXX) that could cause an invalid string to be returned.

2025-12-03 (2.17.0)

  • Improve JSON.load and JSON.unsafe_load to allow passing options as second argument.
  • Fix the parser to no longer ignore invalid escapes in strings. Only \", \\, \b, \f, \n, \r, \t and \u are valid JSON escapes.
  • Fixed JSON::Coder to use the depth it was initialized with.
  • On TruffleRuby, fix the generator to not call to_json on the return value of as_json for Float::NAN.
  • Fixed handling of state.depth: when to_json changes state.depth but does not restore it, it is reset automatically to its initial value. In particular, when a NestingError is raised, depth is no longer equal to max_nesting after the call to generate, and is reset to its initial value. Similarly when to_json raises an exception.
Commits
  • 1cdd212 Release 2.18.0
  • 3459499 Add allow_control_characters parsing option
  • 1da3fd9 Add a specific error for unescaped newlines
  • cf3993c Remove dead code from JSON::TruffleRuby::Generator
  • 4218a42 Remove dead code in benchmark/encoder.rb
  • e5e4fd5 Release 2.17.1
  • 0fce370 Fix a regression in parsing of unicode surogate pairs
  • 4bdb2d1 Release 2.17.0
  • ccca602 Fix handling of depth
  • 7b62fac Fix duplicated test_unsafe_load_with_options test case
  • Additional commits viewable in compare view

Updates pdf-reader from 2.15.0 to 2.15.1

Changelog

Sourced from pdf-reader's changelog.

v2.15.1 (28th December 2025)

Commits
  • 544a01c Update tapioca to the latest version
  • 03ad935 prepare for release
  • 14e7215 Merge pull request #576 from yob/gem.coop
  • fa87d75 Have another go at using gem.coop
  • a9bfe1b Merge pull request #575 from yob/ruby-4-ci
  • ae59321 Add ruby 4.0 to the CI matrix
  • 3bc2510 Merge pull request #574 from yob/invalid-cmap-surrogate
  • f0f1a61 Skip invalid UTF-16 surrogate pairs in CMaps
  • 42988a5 Merge pull request #573 from yob/tounicode-fix
  • 25f5642 Solve non-stream ToUnicode in a slightly different way
  • Additional commits viewable in compare view

Updates zeitwerk from 2.7.3 to 2.7.4

Changelog

Sourced from zeitwerk's changelog.

2.7.4 (16 Dec 2025)

  • Loaders have to manage disjoint source trees. Therefore, when a root directory is configured Zeitwerk ensures it is not already managed by some other loader. The performance of this validation has been improved.

    Thanks to @​ngan for sharing some benchmarks that led to revise this logic.

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the ruby-deps group with 9 updates
12faaf7 
Bumps the ruby-deps group with 9 updates:

| Package | From | To |
| --- | --- | --- |
| [nokogiri](https://github.com/sparklemotion/nokogiri) | `1.18.10` | `1.19.0` |
| [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) | `1.208.0` | `1.209.0` |
| [aws-sdk-s3control](https://github.com/aws/aws-sdk-ruby) | `1.121.0` | `1.122.0` |
| [async](https://github.com/socketry/async) | `2.34.0` | `2.35.0` |
| [aws-partitions](https://github.com/aws/aws-sdk-ruby) | `1.1196.0` | `1.1200.0` |
| [ffi](https://github.com/ffi/ffi) | `1.17.2` | `1.17.3` |
| [json](https://github.com/ruby/json) | `2.16.0` | `2.18.0` |
| [pdf-reader](https://github.com/yob/pdf-reader) | `2.15.0` | `2.15.1` |
| [zeitwerk](https://github.com/fxn/zeitwerk) | `2.7.3` | `2.7.4` |


Updates `nokogiri` from 1.18.10 to 1.19.0
- [Release notes](https://github.com/sparklemotion/nokogiri/releases)
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md)
- [Commits](sparklemotion/nokogiri@v1.18.10...v1.19.0)

Updates `aws-sdk-s3` from 1.208.0 to 1.209.0
- [Release notes](https://github.com/aws/aws-sdk-ruby/releases)
- [Changelog](https://github.com/aws/aws-sdk-ruby/blob/version-3/gems/aws-sdk-s3/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-ruby/commits)

Updates `aws-sdk-s3control` from 1.121.0 to 1.122.0
- [Release notes](https://github.com/aws/aws-sdk-ruby/releases)
- [Changelog](https://github.com/aws/aws-sdk-ruby/blob/version-3/gems/aws-sdk-s3control/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-ruby/commits)

Updates `async` from 2.34.0 to 2.35.0
- [Release notes](https://github.com/socketry/async/releases)
- [Changelog](https://github.com/socketry/async/blob/main/releases.md)
- [Commits](socketry/async@v2.34.0...v2.35.0)

Updates `aws-partitions` from 1.1196.0 to 1.1200.0
- [Release notes](https://github.com/aws/aws-sdk-ruby/releases)
- [Changelog](https://github.com/aws/aws-sdk-ruby/blob/version-3/gems/aws-partitions/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-ruby/commits)

Updates `ffi` from 1.17.2 to 1.17.3
- [Changelog](https://github.com/ffi/ffi/blob/master/CHANGELOG.md)
- [Commits](ffi/ffi@v1.17.2...v1.17.3)

Updates `json` from 2.16.0 to 2.18.0
- [Release notes](https://github.com/ruby/json/releases)
- [Changelog](https://github.com/ruby/json/blob/master/CHANGES.md)
- [Commits](ruby/json@v2.16.0...v2.18.0)

Updates `pdf-reader` from 2.15.0 to 2.15.1
- [Changelog](https://github.com/yob/pdf-reader/blob/main/CHANGELOG)
- [Commits](yob/pdf-reader@v2.15.0...v2.15.1)

Updates `zeitwerk` from 2.7.3 to 2.7.4
- [Changelog](https://github.com/fxn/zeitwerk/blob/main/CHANGELOG.md)
- [Commits](https://github.com/fxn/zeitwerk/commits)

---
updated-dependencies:
- dependency-name: nokogiri
  dependency-version: 1.19.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ruby-deps
- dependency-name: aws-sdk-s3
  dependency-version: 1.209.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ruby-deps
- dependency-name: aws-sdk-s3control
  dependency-version: 1.122.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ruby-deps
- dependency-name: async
  dependency-version: 2.35.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: ruby-deps
- dependency-name: aws-partitions
  dependency-version: 1.1200.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: ruby-deps
- dependency-name: ffi
  dependency-version: 1.17.3
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: ruby-deps
- dependency-name: json
  dependency-version: 2.18.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: ruby-deps
- dependency-name: pdf-reader
  dependency-version: 2.15.1
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: ruby-deps
- dependency-name: zeitwerk
  dependency-version: 2.7.4
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: ruby-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Jan 1, 2026
@chadlwilson chadlwilson merged commit 182e2e0 into master Jan 1, 2026
1 check passed
@dependabot dependabot bot deleted the dependabot/bundler/ruby-deps-2c57e42c63 branch January 1, 2026 06:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@chadlwilson