chore(deps): update all non-major bundler dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
bootsnap	'~> 1.21.1' → '~> 1.23.0'
brakeman (source, changelog)	'~> 8.0.1' → '~> 8.0.2'
devise (changelog)	'~>5.0.0' → '~>5.0.1'
devise-i18n (changelog)	'~>1.15.0' → '~>1.16.0'
grover	'~> 1.2.6' → '~> 1.2.8'
mollie-api-ruby (changelog)	'~> 4.18.0' → '~> 4.19.0'
net-imap (changelog)	'~> 0.6.2' → '~> 0.6.3'
rubocop (source, changelog)	'~> 1.84.0' → '~> 1.84.2'
sentry-rails (source, changelog)	'~> 6.3' → '~> 6.3', '>= 6.3.1'
sentry-ruby (source, changelog)	'~> 6.3' → '~> 6.3', '>= 6.3.1'
sentry-sidekiq (source, changelog)	'~> 6.3' → '~> 6.3', '>= 6.3.1'
sidekiq (source, changelog)	'~> 8.0.10' → '~> 8.1.0'
spring (changelog)	'~> 4.4.0' → '~> 4.4.2'

---

Release Notes

presidentbeef/brakeman (brakeman)

v8.0.2

Compare Source

• Reline console control should use stderr
• Fix logger cleanup based method (Imran Iqbal)

heartcombo/devise (devise)

v5.0.1

Compare Source

• bug fixes
  • Fix translation issue with German E-Mail on invalid authentication messages caused by previous fix for incorrect grammar #​5822

devise-i18n/devise-i18n (devise-i18n)

v1.16.0

Compare Source

• Added Ruby 4.0 to test matrix.
• Added compatibility with Devise 5.0.
• Updated views for Devise 5.0. Any views generated into your app prior to this release of devise-i18n should continue to work. Changes from Devise are:
  • heartcombo/devise#5494
  • heartcombo/devise@d13ef89
• Updated one English string for Devise 5.0: heartcombo/devise@41003bf. Translations of this string are unaffected.
• Dropped compatibility for Devise < 5.0.

Studiosity/grover (grover)

v1.2.8

Compare Source

Added

• #​303 Allow overriding of browser launch timeout ([@​abrom][])

v1.2.7

Compare Source

Added

• #​302 Capture/expose Puppeteer DevTools debug output ([@​abrom][])

mollie/mollie-api-ruby (mollie-api-ruby)

v4.19.0

Compare Source

• (c61808e) Allow bigdecimal 4.x

ruby/net-imap (net-imap)

v0.6.3

Compare Source

What's Changed

Added

• 🥅 Add parser state and #detailed_message to ResponseParseError by @​nevans in #​599
  • 🥅💄 Support (monochrome) highlights in parse error details by @​nevans in #​603
  • 🥅💄 Auto-highlight parse error detailed_message using TERM and FORCE_COLOR by @​nevans in #​607
  • 🥅💄 Add color highlights to parse error details (default honors NO_COLOR) by @​nevans in #​609
• 🔧 Add Config#overrides? (opposite of #inherited?) by @​nevans in #​610
• 🔧 Add recursive Config#inherits_defaults? by @​nevans in #​611

Fixed

• 🐛 Parse resp-text with invalid resp-text-code by @​nevans in #​601
• 🐛 Config.version_defaults should be read only by @​nevans in #​594

Other Changes

• 🥅 Only print parser debug for unhandled errors by @​nevans in #​600
• ♻️ Don't hardcode parser deprecation warning uplevel by @​nevans in #​602
• ♻️ Simplify Config::AttrAccessors a little by @​nevans in #​606
• ♻️ Set Config[:default] as alias of Config[VERSION] by @​nevans in #​608

Fixes for unreleased code:

• 🐛 Return ResponseText from resp-text fallback by @​nevans in #​605
• 🐛 Fix parse error parser_backtrace (for ruby <= 3.3) by @​nevans in #​604

Miscellaneous

• Delete test/net/imap/test_data_lite.rb by @​nobu in #​593
• ⬆️ Bump step-security/harden-runner from 2.14.0 to 2.14.1 by @​dependabot[bot] in #​596
• Bump step-security/harden-runner from 2.14.1 to 2.14.2 by @​dependabot[bot] in #​598

Full Changelog: ruby/net-imap@v0.6.2...v0.6.3

rubocop/rubocop (rubocop)

v1.84.2

Compare Source

Bug fixes

• #​14854: Fix a clobbering error in Style/BlockDelimiters when autocorrecting nested multi-line blocks with adjacent curly braces. ([@​koic][])
• #​14837: Fix an error for Style/IfUnlessModifier when the first value uses a normal if and the others use modifier if. ([@​koic][])
• #​14858: Fix an infinite loop error in Layout/FirstArgumentIndentation when first arguments are over-indented in nested method calls. ([@​koic][])
• #​14843: Fix an error in Layout/MultilineMethodCallIndentation when a multiline method call follows a hash access. ([@​koic][])
• #​14859: Fix an error in Layout/MultilineMethodCallIndentation when a multiline method call includes a keyword argument whose value is a method call with a block. ([@​koic][])
• #​14839: Fix a false positive for Layout/EmptyLinesAfterModuleInclusion when include is nested inside an array. ([@​eugeneius][])
• #​7436: Fix Style/FormatStringToken to not autocorrect strings outside of format method context in aggressive mode. ([@​ydakuka][])
• #​14841: Fix false negatives in Style/HashAsLastArrayItem when an array contains only a single hash element. ([@​koic][])
• #​14865: Fix false negatives in Style/MethodDefParentheses when using splat or forwarding arguments without parentheses. ([@​koic][])
• #​14833: Fix false positive for Layout/MultilineMethodCallIndentation when a multi-dot method chain is inside a hash pair value. ([@​ydakuka][])
• #​14847: Fix false positive for Layout/MultilineMethodCallIndentation when a method is chained after a single-line block. ([@​ydakuka][])
• #​14867: Fix Offense#highlighted_area for PseudoSourceRange locations. ([@​rafaelfranca][])
• #​14861: Fix an error in Style/IfUnlessModifier when the first value uses a normal if and the others use ternary operator. ([@​koic][])
• #​14816: Use toplevel cache configs for remote configuration files. ([@​nekketsuuu][])

v1.84.1

Compare Source

Bug fixes

• #​14803: Fix an error for Layout/IndentationWidth cop. ([@​viralpraxis][])
• #​14806: Fix an error in Style/NegativeArrayIndex when using self as array with implicit self receiver. ([@​koic][])
• #​14813: Fix opt-in cop comments taking precedence over configuration file exclude patterns. ([@​afrase][])
• #​14819: Fix incorrect autocorrect for Style/GuardClause when using heredoc as an argument of method call in raise in else branch. ([@​koic][])
• #​14805: Bring back the original indentation from before version 1.84.0. ([@​Magikdidi24][])
• #​12754: Fix an infinite loop for Style/IfUnlessModifier when multiple if/unless statements share the same line in arrays, method arguments, or hash values. ([@​ydakuka][])
• #​14817: Fix an infinite loop between Layout/FirstArgumentIndentation and Layout/LineLength when correcting method chains. ([@​ydakuka][])
• #​11513: Fix Layout/MultilineMethodCallIndentation to properly handle method chains inside hash pair values. ([@​ydakuka][])
• #​14814: Fix push/pop directives to properly handle nested scopes and state restoration. ([@​Magikdidi24][])

Changes

• #​14823: Add the built-in infinite? method to the allowlists for Naming/PredicateMethod, Style/IfWithBooleanLiteralBranches, and Style/RedundantCondition, in addition to the existing nonzero?. ([@​koic][])
• #​14735: Remove deprecated InjectDefaults handling. ([@​afurm][])

getsentry/sentry-ruby (sentry-rails)

v6.3.1

Compare Source

Bug Fixes

• Use ActionDispatch::ExceptionWrapper for correct HTTP status code (#​2850)
• Add explicit dependency on logger gem to fix Ruby 4.0 warning (#​2837)

Internal

• Add external_propagation_context support (#​2841)

sidekiq/sidekiq (sidekiq)

v8.1.0

Compare Source

• retry_for and retry are now mutually exclusive [#​6878, Saidbek]
• perform_inline now enforces strict_args! [#​6718, Saidbek]
• Integrate Herb linting for ERB templates [#​6760, Saidbek]
• Remove CSRF code, use Sec-Fetch-Site header [#​6874, deve1212]
• Allow custom Web UI assets_path for CDN purposes [#​6865, stanhu]
• Upgrade to connection_pool 3.0
• Allow idle connection reaping after N seconds.
  You can activate this beta feature like below.
  Feedback requested: is this feature stable and useful for you in production?
  This feature may or may not be enabled by default in Sidekiq 9.0.

Sidekiq.configure_server do |cfg|
  cfg.reap_idle_redis_connections(60)
end

rails/spring (spring)

v4.4.2: 4.4.2

Compare Source

What's Changed

• Fix spawn_on_env vars leaking from server to app by @​hmcguire-shopify in #​749

New Contributors

• @​hmcguire-shopify made their first contribution in #​749

Full Changelog: rails/spring@v4.4.1...v4.4.2

v4.4.1: 4.4.1

Compare Source

What's Changed

• Uses subclasses instead of descendants to support Rails < 7.1
• Pass signaled exit code properly to the client by @​rafaelfranca in #​744

Full Changelog: rails/spring@v4.4.0...v4.4.1

---

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) in timezone Europe/Amsterdam, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

• 🔍 Trigger a full review

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 77.61%. Comparing base (b6a0b0e) to head (9710b97).

Additional details and impacted files

@@           Coverage Diff            @@
##           staging    #1226   +/-   ##
========================================
  Coverage    77.61%   77.61%           
========================================
  Files           54       54           
  Lines         1407     1407           
========================================
  Hits          1092     1092           
  Misses         315      315           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.