Skip to content

chore(deps-dev): bump rubocop-rails from 2.35.0 to 2.35.2#179

Merged
mjc-gh merged 1 commit into
mainfrom
dependabot/bundler/rubocop-rails-2.35.2
May 25, 2026
Merged

chore(deps-dev): bump rubocop-rails from 2.35.0 to 2.35.2#179
mjc-gh merged 1 commit into
mainfrom
dependabot/bundler/rubocop-rails-2.35.2

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 20, 2026

Bumps rubocop-rails from 2.35.0 to 2.35.2.

Release notes

Sourced from rubocop-rails's releases.

RuboCop Rails v2.35.2

Bug fixes

  • #1625: Fix false positives in Rails/StrongParametersExpect when using collection methods (such as delete, keys, merge, slice, dig, fetch, or transform_values) on params[:key], as well as block-style calls such as params[:key].each { ... } or params[:key].map(&:to_s). (@​koic)
  • #1627: Fix false positives in Rails/StrongParametersExpect for usages like params[:key].try(:method) and params[:key].try!(:method). (@​nicholasdower)

RuboCop Rails v2.35.1

Bug fixes

  • #1616: Fix false positives in Rails/StrongParametersExpect when using nil-safe conversion methods such as to_i, to_s, to_a, to_f, and to_h on params[:key]. (@​koic)
  • #1622: Fix false positives in Rails/StrongParametersExpect when using key-check methods such as key?, has_key?, include?, and member? on params[:key]. (@​koic)
  • #1620: Fix false positives in Rails/StrongParametersExpect when using type-check methods such as is_a?, kind_of?, and instance_of? on params[:key]. (@​koic)
Changelog

Sourced from rubocop-rails's changelog.

2.35.2 (2026-05-19)

Bug fixes

  • #1625: Fix false positives in Rails/StrongParametersExpect when using collection methods (such as delete, keys, merge, slice, dig, fetch, or transform_values) on params[:key], as well as block-style calls such as params[:key].each { ... } or params[:key].map(&:to_s). ([@​koic][])
  • #1627: Fix false positives in Rails/StrongParametersExpect for usages like params[:key].try(:method) and params[:key].try!(:method). ([@​nicholasdower][])

2.35.1 (2026-05-17)

Bug fixes

  • #1616: Fix false positives in Rails/StrongParametersExpect when using nil-safe conversion methods such as to_i, to_s, to_a, to_f, and to_h on params[:key]. ([@​koic][])
  • #1622: Fix false positives in Rails/StrongParametersExpect when using key-check methods such as key?, has_key?, include?, and member? on params[:key]. ([@​koic][])
  • #1620: Fix false positives in Rails/StrongParametersExpect when using type-check methods such as is_a?, kind_of?, and instance_of? on params[:key]. ([@​koic][])
Commits
  • 26f1034 Cut 2.35.2
  • 65841f0 Update Changelog
  • e89ab8e Merge pull request #1626 from koic/fix_false_positives_for_rails_strong_param...
  • e977fb9 [Fix #1625] Fix false positives in Rails/StrongParametersExpect
  • d56c5d7 Merge pull request #1627 from nicholasdower/try
  • 9bb461b Fix false positives for try and try! in Rails/StrongParametersExpect
  • 9585950 Reset the docs version
  • 8bfc91e Cut 2.35.1
  • 90f8242 Update Changelog
  • 1346310 Merge pull request #1624 from koic/fix_false_positives_for_rails_strong_param...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps-dev): bump rubocop-rails from 2.35.0 to 2.35.2
540b0ac 
Bumps [rubocop-rails](https://github.com/rubocop/rubocop-rails) from 2.35.0 to 2.35.2.
- [Release notes](https://github.com/rubocop/rubocop-rails/releases)
- [Changelog](https://github.com/rubocop/rubocop-rails/blob/master/CHANGELOG.md)
- [Commits](rubocop/rubocop-rails@v2.35.0...v2.35.2)

---
updated-dependencies:
- dependency-name: rubocop-rails
  dependency-version: 2.35.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels May 20, 2026
@dependabot dependabot Bot mentioned this pull request May 20, 2026
Closed
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels May 20, 2026
@mjc-gh mjc-gh merged commit 960a649 into main May 25, 2026
5 checks passed
@dependabot dependabot Bot deleted the dependabot/bundler/rubocop-rails-2.35.2 branch May 25, 2026 19:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mjc-gh