Skip to content

Bump the production-dependencies group across 1 directory with 11 updates#46

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bundler/production-dependencies-dfcb64927d
Open

Bump the production-dependencies group across 1 directory with 11 updates#46
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bundler/production-dependencies-dfcb64927d

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jan 26, 2026

Copy link
Copy Markdown
Contributor

Bumps the production-dependencies group with 10 updates in the / directory:

Package From To
rails 8.0.2 8.1.2
pg 1.5.9 1.6.3
puma 6.6.0 7.2.0
importmap-rails 2.1.0 2.2.3
turbo-rails 2.0.13 2.0.21
json_schemer 2.4.0 2.5.0
bootsnap 1.18.4 1.21.1
kamal 2.5.3 2.10.1
devise 4.9.4 5.0.0
bcrypt 3.1.20 3.1.21

Updates rails from 8.0.2 to 8.1.2

Release notes

Sourced from rails's releases.

8.1.2

Active Support

  • Make delegate and delegate_missing_to work in BasicObject subclasses.

    Rafael Mendonça França

  • Fix Inflectors when using a locale that fallbacks to :en.

    Said Kaldybaev

  • Fix ActiveSupport::TimeWithZone#as_json to consistently return UTF-8 strings.

    Previously the returned string would sometime be encoded in US-ASCII, which in some cases may be problematic.

    Now the method consistently always return UTF-8 strings.

    Jean Boussier

  • Fix TimeWithZone#xmlschema when wrapping a DateTime instance in local time.

    Previously it would return an invalid time.

    Dmytro Rymar

  • Implement LocalCache strategy on ActiveSupport::Cache::MemoryStore. The memory store needs to respond to the same interface as other cache stores (e.g. ActiveSupport::NullStore).

    Mikey Gough

  • Fix ActiveSupport::Inflector.humanize with international characters.

    ActiveSupport::Inflector.humanize("áÉÍÓÚ")  # => "Áéíóú"
    ActiveSupport::Inflector.humanize("аБВГДЕ") # => "Абвгде"

    Jose Luis Duran

Active Model

  • No changes.

Active Record

  • Fix counting cached queries in ActiveRecord::RuntimeRegistry.

... (truncated)

Commits
  • d7c8ae6 Preparing for 8.1.2 release
  • 695ac6d Update Gemfile.lock
  • 01263f1 Merge pull request #56512 from byroot/remove-minitest-ci
  • 3ea2701 CHANGELOG sync
  • d3fe83f Merge pull request #56541 from rails/remove-system-test-from-default-ci-template
  • 5283514 Merge pull request #56012 from jmalcic/restore-default-adc-for-gcs-iam-client
  • 53e82ef Merge pull request #56534 from khasinski/fix-sqlite3-schema-dump-default-nil
  • d2509f8 Allow backburner warning
  • 8c48fd1 Merge pull request #56535 from eglitobias/8-1-stable
  • adcface Fix PostgreSQL schema_search_path after reconnect and reset
  • Additional commits viewable in compare view

Updates pg from 1.5.9 to 1.6.3

Changelog

Sourced from pg's changelog.

v1.6.3 [2025-12-29] Lars Kanis lars@greiz-reinsdorf.de

Added:

  • Add binary gems for ruby-4.0, now providing ruby-3.0 to 4.0. #682
  • Update fat binary gem to OpenSSL-3.6.0 and PostgreSQL-18.1.
  • Improve documentation of PG::Result and README. #676
  • Update errorcodes to PostgreSQL-18.
  • Use rb_hash_new_capa on Ruby-3.2+ . #674
  • Deny any server communication on a frozen PG::Connection . #677
  • Fix possible race condition in PG::Result in Ractor context. #674

Removed:

  • Drop binary gem support for platform x86-mingw32. #682
  • Drop binary gems for ruby-2.7.

v1.6.2 [2025-09-02] Lars Kanis lars@greiz-reinsdorf.de

  • Remove several absolute paths from native binaries which pointed to build directories. #668
  • Fix bad fallback path to pg_service.conf. #666
  • Use rbpg_ prefix for base64_* functions to avoid name clashes with functions provided by other libraries like Heimdal on Macos. #667
  • Raise a more descriptive error message in case of pg_ext LoadError. #664
  • Freeze some constants to make them available in a Ractor context. #660
  • Several documentation improvements.
  • Update native binary gems to OpenSSL-3.5.2, krb5-1.22.1 and PostgreSQL-17.6.

v1.6.1 [2025-08-03] Lars Kanis lars@greiz-reinsdorf.de

  • Add binary gems for platforms aarch64-linux-musl and x86_64-linux-musl without the need to install package gcompat. #657.
  • Serialize CompositeCoder#dimensions only when set. #652 This fixes the compatibility to pg-1.5.9, when deserializing Marshal data from pg-1.6, as long as the new attribute isn't used.
  • Remove dependency to MSYS2 package "postgresql" from binary Windows gem #654

v1.6.0 [2025-07-27] Lars Kanis lars@greiz-reinsdorf.de

Added:

  • Add binary gems for Ruby 3.4.
  • Add fat binary gem for platform aarch64-mingw-ucrt aka Windows on ARM #626, for platform Macos on Intel and ARM #643, for platform aarch64-linux #646 and for platform x86_64-linux #551.
  • Update fat binary gem to OpenSSL-3.5.1 and PostgreSQL-17.5.
  • Add a patch to libpq to avoid starvation on bigger SSL records, which some database engines other than vanilla PostgreSQL use. This patch applies to platform specific binary gems only. #616
  • Add support for new query cancel functions of PostgreSQL-17. This adds the new class PG::CancelConnection which provides the ability to cancel a query per blocking or per non-blocking functions. If the new functions are available they are used and the older are no longer compiled in. This way we can get rid of reading out the internal PGcancel struct by Connection#backend_key. #614

... (truncated)

Commits
  • d4539c2 Bump VERSION to pg-1.6.3 and add release notes
  • 720900d Merge pull request #682 from larskanis/ruby-4.0
  • f605b59 Remove x86-mingw32 from binary builds
  • 5c69000 Update to ruby-4.0
  • 2acaf3d CI: workaround missing ruby-4.0 on Window
  • b500ded fix comment
  • bc3f2f8 CI: Macos-13 on Intel is deprecated
  • 77667eb Merge pull request #678 from larskanis/ci-update
  • 6e52ce5 CI: Update PostgreSQL on Macos
  • 6d40f50 CI: Print mkmf.log on failure on Macos
  • Additional commits viewable in compare view

Updates puma from 6.6.0 to 7.2.0

Release notes

Sourced from puma's releases.

v7.2.0

7.2.0 On The Corner

  • Features

    • Add workers :auto (#3827)
    • Make it possible to restrict control server commands to stats (#3787)
  • Bugfixes

    • Don't break if WEB_CONCURRENCY is set to a blank string (#3837)
    • Don't share server between worker 0 and descendants on refork (#3602)
    • Fix phase check race condition in Puma::Cluster#check_workers (#3690)
    • Fix advertising of CLI config before config files are loaded (#3823)
  • Performance

    • 17% faster HTTP parsing through pre-interning env keys (#3825)
    • Implement dsize and dcompact functions for Puma::HttpParser, which makes Puma's C-extension GC-compactible (#3828)
  • Refactor

    • Remove NoMethodError rescue in Reactor#select_loop (#3831)
    • Various cleanups in the C extension (#3814)
    • Monomorphize handle_request return (#3802)
  • Docs

    • Change link to docs/deployment.md in README.md (#3848)
    • Fix formatting for each signal description in signals.md (#3813)
    • Update deployment and Kubernetes docs with Puma configuration tips (#3807)
    • Rename master to main (#3809, #3808, #3800)
    • Fix some minor typos in the docs (#3804)
    • Add GOVERNANCE.md, MAINTAINERS (#3826)
    • Remove Code Climate badge (#3820)
    • Add @​joshuay03 to the maintainer list
  • CI

New Contributors

Full Changelog: puma/puma@v7.1.0...v7.2.0

v7.1.0

7.1.0 / 2025-10-16 - Neon Witch

neon_witch

... (truncated)

Changelog

Sourced from puma's changelog.

7.2.0 / 2026-01-20

  • Features

    • Add workers :auto (#3827)
    • Make it possible to restrict control server commands to stats (#3787)
  • Bugfixes

    • Don't break if WEB_CONCURRENCY is set to a blank string (#3837)
    • Don't share server between worker 0 and descendants on refork (#3602)
    • Fix phase check race condition in Puma::Cluster#check_workers (#3690)
    • Fix advertising of CLI config before config files are loaded (#3823)
  • Performance

    • 17% faster HTTP parsing through pre-interning env keys (#3825)
    • Implement dsize and dcompact functions for Puma::HttpParser, which makes Puma's C-extension GC-compactible (#3828)
  • Refactor

    • Remove NoMethodError rescue in Reactor#select_loop (#3831)
    • Various cleanups in the C extension (#3814)
    • Monomorphize handle_request return (#3802)
  • Docs

    • Change link to docs/deployment.md in README.md (#3848)
    • Fix formatting for each signal description in signals.md (#3813)
    • Update deployment and Kubernetes docs with Puma configuration tips (#3807)
    • Rename master to main (#3809, #3808, #3800)
    • Fix some minor typos in the docs (#3804)
    • Add GOVERNANCE.md, MAINTAINERS (#3826)
    • Remove Code Climate badge (#3820)
    • Add @​joshuay03 to the maintainer list
  • CI

7.1.0 / 2025-10-16

  • Features

    • Introduce after_worker_shutdown hook (#3707)
    • Reintroduce keepalive "fast inline" behavior. Provides faster (8x on JRuby & 1.4x on Ruby) pipeline processing (#3794)
  • Bugfixes

    • Skip reading zero bytes when request body is buffered (#3795)
    • Fix PUMA_LOG_CONFIG=1 logging twice with prune_bundler enabled (#3778)
    • Fix prune_bundler not showing in PUMA_LOG_CONFIG=1 output (#3779)
    • Guard ThreadPool method call, which may be nil during shutdown (#3791, #3790)
    • Set Thread.current.puma_server in Thread init code, not every request (#3774)
    • Fix race condition while deleting pidfile (#3657)

7.0.4 / 2025-09-23

... (truncated)

Commits

Updates importmap-rails from 2.1.0 to 2.2.3

Release notes

Sourced from importmap-rails's releases.

v2.2.3

What's Changed

Full Changelog: rails/importmap-rails@v2.2.2...v2.2.3

v2.2.2

What's Changed

Full Changelog: rails/importmap-rails@v2.2.1...v2.2.2

v2.2.1

What's Changed

Integrity is now generated by default using the assets pipeline if it is properly configured. pin and update commands don't download the integrity from the npm repository anymore.

Full Changelog: rails/importmap-rails@v2.2.0...v2.2.1

v2.2.0

What's Changed

New Contributors

Full Changelog: rails/importmap-rails@v2.1.0...v2.2.0

Commits
  • 6fb2bd5 Prepare for 2.2.3
  • 682e058 Merge pull request #322 from rails/rmf-fix-321
  • a04dd30 Handle package names with nested paths in import maps
  • 9b0a9e0 Merge pull request #323 from rails/rmf-test-ruby-4
  • e37bea6 Test with Ruby 4.0 and Rails 8.1
  • 51c1a53 Merge pull request #313 from rails/rm-fix-282
  • 3e94dfa Add some copilot prompts for this project
  • 7ffedcb Fix pin_all_from incorrectly removing "js" substring from filenames
  • dcdb5fe Bump version for 2.2.2
  • 40d0dc5 Fix update command adding extra new lines
  • Additional commits viewable in compare view

Updates turbo-rails from 2.0.13 to 2.0.21

Release notes

Sourced from turbo-rails's releases.

v2.0.21

What's Changed

New Contributors

Full Changelog: hotwired/turbo-rails@v2.0.20...v2.0.21

v2.0.20

Full Changelog: hotwired/turbo-rails@v2.0.19...v2.0.20

v2.0.19

Full Changelog: hotwired/turbo-rails@v2.0.17...v2.0.19

v2.0.17

What's Changed

See https://github.com/hotwired/turbo/releases/tag/v8.0.18

New Contributors

v2.0.14

What's Changed

... (truncated)

Commits
  • e511fb2 Bump version
  • 99dc9c5 @​hotwired/turbo-rails v8.0.20
  • c2cd99f v8.0.21
  • 31c78af Respect broadcast suppressions on before/after actions (#770)
  • 16f7613 Only return messages produced by block in capture_turbo_stream_broadcasts
  • dda27a8 Restrict tests to minitest<6
  • 0eb3c03 Fix debouncer tests to wait on correct debouncer (#767)
  • 89c363e Remove legacy workaround for Rails < 7 (#766)
  • d85f2f0 Add support for Model Class in Action and Frame helpers
  • a3336b4 [fix #762] Forward broadcast_refresh_to options to turbo_stream_refresh_tag
  • Additional commits viewable in compare view

Updates json_schemer from 2.4.0 to 2.5.0

Changelog

Sourced from json_schemer's changelog.

2.5.0 - 2025-12-08

Bug Fixes

Features

Commits
  • 7f1b816 Merge pull request #226 from davishmcclurg/2.5.0
  • 847b2d3 2.5.0
  • 70af1d4 Update fixtures for json-schema-test-suite pull
  • ef7e9fb Support all RFC 3490 label separators
  • 3e0157f Limit full hostname size
  • 88a8771 Disallow trailing dot in hostname format
  • 572d413 Update hostname character classes
  • 0aa5b7c Temporarily(?) add openssl as dev dependency
  • a86a975 Merge commit 'fcba99761dcab691a56fc4bba1e23a72df9f7c82'
  • fcba997 Squashed 'JSON-Schema-Test-Suite/' changes from 48461fc3..d69537ac
  • Additional commits viewable in compare view

Updates bootsnap from 1.18.4 to 1.21.1

Release notes

Sourced from bootsnap's releases.

v1.20.1

What's Changed

  • Handle broken symlinks in load path scanning code. Should fix Errno::ENOENT fstatat issues some users have encountered after upgrading to 1.20.0.

Full Changelog: rails/bootsnap@v1.20.0...v1.20.1

v1.20.0

What's Changed

  • Optimized load path scanning with a C extension. Should be about 2x faster on supported platforms.

Full Changelog: rails/bootsnap@v1.19.0...v1.20.0

Changelog

Sourced from bootsnap's changelog.

1.21.1

  • Prevent a Ruby crash while scanning load path if opendir fails without setting errno. According to the C spec this should not happen, but according to user reports, it did.

1.21.0

  • Fix the require decorator to handle Bootsnap.unload_cache! being called.
  • Minor optimization: Eagerly clear cache buffers to appease the GC.

1.20.1

  • Handle broken symlinks in load path scanning code. Should fix Errno::ENOENT fstatat issues some users have encountered after upgrading to 1.20.0.

1.20.0

  • Optimized load path scanning with a C extension. Should be about 2x faster on supported platforms.

1.19.0

  • Remove JSON parsing cache. Recent versions of the json gem are as fast as msgpack if not faster.

1.18.6

  • Fix cgroup CPU limits detection in CLI.

1.18.5

  • Attempt to detect a QEMU bug that can cause bootsnap precompile to hang forever when building ARM64 docker images from x86_64 machines. See #495.
  • Improve CLI to detect cgroup CPU limits and avoid spawning too many worker processes.
Commits
  • 182a809 Release 1.21.1
  • 1e59365 Merge pull request #522 from byroot/improve-scandir
  • a2ff4b8 Fallback to pure the pure ruby path scanner on unexpected error
  • 6003c14 Avoid crashing when opendir fails without setting errno
  • 92edbf7 Release 1.21.0
  • f490894 Merge pull request #520 from byroot/handle-unload
  • 4a559a0 Fix the require decorator to handle Bootsnap.unload_cache! being called
  • 417dd84 Merge pull request #518 from byroot/clear-buffers
  • 7d57a70 Eagerly clear cache buffers
  • 018fcb8 Add Ruby 4.0 to the CI matrix
  • Additional commits viewable in compare view

Updates kamal from 2.5.3 to 2.10.1

Release notes

Sourced from kamal's releases.

v2.10.1

What's Changed

Full Changelog: basecamp/kamal@v2.10.0...v2.10.1

v2.10.0

What's Changed

New Contributors

Full Changelog: basecamp/kamal@v2.9.0...v2.10.0

v2.9.0

What's Changed

New Contributors

Full Changelog: basecamp/kamal@v2.8.2...v2.9.0

v2.8.2

... (truncated)

Commits
  • 30f8aef Bump version for 2.10.1
  • e744e40 Merge pull request #1738 from basecamp/revert-accessory-volume-change
  • 849faf3 Pass accessory volume through as is
  • f5ec8cb Bump version for 2.10.0
  • 910729c Doc fixes for Kamal 2.10
  • e40731a Merge pull request #1731 from basecamp/boot-parallel-roles
  • 3682280 Boot in parallel for roles on the same host
  • 4ca210c Merge pull request #1730 from basecamp/check-roles-before-removing
  • f86156b Check roles before removing images and directories
  • 40d4d8f Merge pull request #1729 from basecamp/only-set-destination-env-if-there-is-one
  • Additional commits viewable in compare view

Updates devise from 4.9.4 to 5.0.0

Release notes

Sourced from devise's releases.

v5.0.0

https://github.com/heartcombo/devise/blob/v5.0.0/CHANGELOG.md#500---2026-01-23

v5.0.0.rc

https://github.com/heartcombo/devise/blob/v5.0.0.rc/CHANGELOG.md#500rc---2025-12-31

Changelog

Sourced from devise's changelog.

5.0.0 - 2026-01-23

no changes

5.0.0.rc - 2025-12-31

  • breaking changes

    • Drop support to Ruby < 2.7

    • Drop support to Rails < 7.0

    • Remove deprecated :bypass option from sign_in helper, use bypass_sign_in instead. #5803

    • Remove deprecated devise_error_messages! helper, use render "devise/shared/error_messages", resource: resource instead. #5803

    • Remove deprecated scope second argument from sign_in(resource, :admin) controller test helper, use sign_in(resource, scope: :admin) instead. #5803

    • Remove deprecated Devise::TestHelpers, use Devise::Test::ControllerHelpers instead. #5803

    • Remove deprecated Devise::Models::Authenticatable::BLACKLIST_FOR_SERIALIZATION #5598

    • Remove deprecated Devise.activerecord51? method.

    • Remove SecretKeyFinder and use app.secret_key_base as the default secret key for Devise.secret_key if a custom Devise.secret_key is not provided.

      This is potentially a breaking change because Devise previously used the following order to find a secret key:

      app.credentials.secret_key_base > app.secrets.secret_key_base > application.config.secret_key_base > application.secret_key_base
      

      Now, it always uses application.secret_key_base. Make sure you're using the same secret key after the upgrade; otherwise, previously generated tokens for recoverable, lockable, and confirmable will be invalid. #5645

    • Change password instructions button label on devise view from Send me reset password instructions to Send me password reset instructions #5515

    • Change <br> tags separating form elements to wrapping them in <p> tags #5494

    • Replace [data-turbo-cache=false] with [data-turbo-temporary] on devise/shared/error_messages partial. This has been deprecated by Turbo since v7.3.0 (released on Mar 1, 2023).

      If you are using an older version of Turbo and the default devise template, you'll need to copy it over to your app and change that back to [data-turbo-cache=false].

  • enhancements

    • Add Rails 8 support.

      • Routes are lazy-loaded by default in test and development environments now so Devise loads them before Devise.mappings call. #5728
    • New apps using Rack 3.1+ will be generated using config.responder.error_status = :unprocessable_content, since :unprocessable_entity has been deprecated by Rack.

      Latest versions of Rails transparently convert :unprocessable_entity -> :unprocessable_content, and Devise will use that in the failure app to avoid Rack deprecation warnings for apps that are configured with :unprocessable_entity. They can also simply change their error_status to :unprocessable_content in latest Rack versions to avoid the warning.

    • Add Ruby 3.4 and 4.0 support.

    • Reenable Mongoid test suite across all Rails 7+ versions, to ensure we continue supporting it. Changes to dirty tracking to support Mongoid 8.0+. #5568

    • Password length validator is changed from

      validates_length_of :password, within: password_length, allow_blank: true`
      

      to

      validates_length_of :password, minimum: proc { password_length.min }, maximum: proc { password_length.max }, allow_blank: true
      

... (truncated)

Commits
  • c51da69 Release v5, no changes since RC
  • e9c534d Fix "Test is missing assertions" warnings
  • 731074b Stop updating copyright every year [ci skip]
  • 35920d2 Exclude Rails main + Ruby 3.2
  • 00a9778 Release v5.0.0.rc
  • 119a40f Fix gemspec and readme, Devise v5 will support Rails >= 7, not 6
  • 1096b60 Remove deprecated Devise.activerecord51?...

    Description has been truncated

…ates

Bumps the production-dependencies group with 10 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [rails](https://github.com/rails/rails) | `8.0.2` | `8.1.2` |
| [pg](https://github.com/ged/ruby-pg) | `1.5.9` | `1.6.3` |
| [puma](https://github.com/puma/puma) | `6.6.0` | `7.2.0` |
| [importmap-rails](https://github.com/rails/importmap-rails) | `2.1.0` | `2.2.3` |
| [turbo-rails](https://github.com/hotwired/turbo-rails) | `2.0.13` | `2.0.21` |
| [json_schemer](https://github.com/davishmcclurg/json_schemer) | `2.4.0` | `2.5.0` |
| [bootsnap](https://github.com/rails/bootsnap) | `1.18.4` | `1.21.1` |
| [kamal](https://github.com/basecamp/kamal) | `2.5.3` | `2.10.1` |
| [devise](https://github.com/heartcombo/devise) | `4.9.4` | `5.0.0` |
| [bcrypt](https://github.com/bcrypt-ruby/bcrypt-ruby) | `3.1.20` | `3.1.21` |



Updates `rails` from 8.0.2 to 8.1.2
- [Release notes](https://github.com/rails/rails/releases)
- [Commits](rails/rails@v8.0.2...v8.1.2)

Updates `pg` from 1.5.9 to 1.6.3
- [Changelog](https://github.com/ged/ruby-pg/blob/master/CHANGELOG.md)
- [Commits](ged/ruby-pg@v1.5.9...v1.6.3)

Updates `puma` from 6.6.0 to 7.2.0
- [Release notes](https://github.com/puma/puma/releases)
- [Changelog](https://github.com/puma/puma/blob/main/History.md)
- [Commits](puma/puma@v6.6.0...v7.2.0)

Updates `importmap-rails` from 2.1.0 to 2.2.3
- [Release notes](https://github.com/rails/importmap-rails/releases)
- [Commits](rails/importmap-rails@v2.1.0...v2.2.3)

Updates `turbo-rails` from 2.0.13 to 2.0.21
- [Release notes](https://github.com/hotwired/turbo-rails/releases)
- [Commits](hotwired/turbo-rails@v2.0.13...v2.0.21)

Updates `json_schemer` from 2.4.0 to 2.5.0
- [Changelog](https://github.com/davishmcclurg/json_schemer/blob/main/CHANGELOG.md)
- [Commits](davishmcclurg/json_schemer@v2.4.0...v2.5.0)

Updates `bootsnap` from 1.18.4 to 1.21.1
- [Release notes](https://github.com/rails/bootsnap/releases)
- [Changelog](https://github.com/rails/bootsnap/blob/main/CHANGELOG.md)
- [Commits](rails/bootsnap@v1.18.4...v1.21.1)

Updates `kamal` from 2.5.3 to 2.10.1
- [Release notes](https://github.com/basecamp/kamal/releases)
- [Commits](basecamp/kamal@v2.5.3...v2.10.1)

Updates `devise` from 4.9.4 to 5.0.0
- [Release notes](https://github.com/heartcombo/devise/releases)
- [Changelog](https://github.com/heartcombo/devise/blob/main/CHANGELOG.md)
- [Commits](heartcombo/devise@v4.9.4...v5.0.0)

Updates `devise-jwt` from 0.12.1 to 0.13.0
- [Release notes](https://github.com/waiting-for-dev/devise-jwt/releases)
- [Changelog](https://github.com/waiting-for-dev/devise-jwt/blob/main/CHANGELOG.md)
- [Commits](https://github.com/waiting-for-dev/devise-jwt/commits)

Updates `bcrypt` from 3.1.20 to 3.1.21
- [Release notes](https://github.com/bcrypt-ruby/bcrypt-ruby/releases)
- [Changelog](https://github.com/bcrypt-ruby/bcrypt-ruby/blob/master/CHANGELOG)
- [Commits](bcrypt-ruby/bcrypt-ruby@v3.1.20...v3.1.21)

---
updated-dependencies:
- dependency-name: rails
  dependency-version: 8.1.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: pg
  dependency-version: 1.6.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: puma
  dependency-version: 7.2.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: importmap-rails
  dependency-version: 2.2.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: turbo-rails
  dependency-version: 2.0.21
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: json_schemer
  dependency-version: 2.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: bootsnap
  dependency-version: 1.21.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: kamal
  dependency-version: 2.10.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: devise
  dependency-version: 5.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: devise-jwt
  dependency-version: 0.13.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: bcrypt
  dependency-version: 3.1.21
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github

dependabot Bot commented on behalf of github Jan 26, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: dependencies, ruby. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot Bot requested a review from nickhart as a code owner January 26, 2026 14:39
@github-actions

Copy link
Copy Markdown

📦 Dependency Status Check

Checking for outdated dependencies...

✅ All dependencies are up to date!

Note: This is for information only and does not block merging. Updates are handled automatically by Dependabot.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants