Skip to content

build(deps): bump the bundler group across 2 directories with 9 updates#22550

Open
dependabot[bot] wants to merge 4 commits into
mainfrom
dependabot/bundler/Library/Homebrew/bundler-7d66f2e8ae
Open

build(deps): bump the bundler group across 2 directories with 9 updates#22550
dependabot[bot] wants to merge 4 commits into
mainfrom
dependabot/bundler/Library/Homebrew/bundler-7d66f2e8ae

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Jun 5, 2026

Bumps the bundler group with 5 updates in the /Library/Homebrew directory:

Package From To
yard 0.9.43 0.9.44
sorbet-static-and-runtime 0.6.13244 0.6.13261
spoom 1.7.15 1.7.16
json 2.19.5 2.19.8
rubydex 0.2.3 0.2.5

Bumps the bundler group with 2 updates in the /docs directory: yard and io-event.

Updates yard from 0.9.43 to 0.9.44

Updates sorbet-static-and-runtime from 0.6.13244 to 0.6.13261

Release notes

Sourced from sorbet-static-and-runtime's releases.

sorbet 0.6.13260.20260528183631-c567212c0

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13260', :group => :development
gem 'sorbet-runtime', '0.6.13260'

sorbet 0.6.13259.20260528134202-44367fec6

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13259', :group => :development
gem 'sorbet-runtime', '0.6.13259'

sorbet 0.6.13258.20260528114137-6098f4268

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13258', :group => :development
gem 'sorbet-runtime', '0.6.13258'

sorbet 0.6.13257.20260528134150-6a5752f4b

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13257', :group => :development
gem 'sorbet-runtime', '0.6.13257'

sorbet 0.6.13256.20260527170214-864c39d6f

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13256', :group => :development
gem 'sorbet-runtime', '0.6.13256'

sorbet 0.6.13255.20260527144549-a390c35d6

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13255', :group => :development
gem 'sorbet-runtime', '0.6.13255'

sorbet 0.6.13254.20260527143236-02df77509

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13254', :group => :development
gem 'sorbet-runtime', '0.6.13254'

sorbet 0.6.13253.20260527102933-d9d4b57b3

... (truncated)

Commits

Updates spoom from 1.7.15 to 1.7.16

Release notes

Sourced from spoom's releases.

v1.7.16

What's Changed

🛠 Other Changes

Full Changelog: Shopify/spoom@v1.7.15...v1.7.16

Commits
  • 245e4b1 Bump version to v1.7.16
  • 38d3136 Merge pull request #921 from Shopify/at/overloads-strategy
  • bc64424 Merge pull request #927 from Shopify/dependabot/bundler/minor-and-patch-7f032...
  • ace323c Fix newfound linting error
  • 7446872 Merge pull request #926 from Shopify/dependabot/github_actions/ruby/setup-rub...
  • d72bf6d Bump the minor-and-patch group with 2 updates
  • f4fb559 Bump ruby/setup-ruby from 1.308.0 to 1.310.0
  • 9b456b1 Update exported RBI
  • 4fb6f2e Merge pull request #920 from Shopify/Alex/rubocop-minitest
  • 058f759 Add overloads_strategy option to RBSCommentsToSorbetSigs
  • Additional commits viewable in compare view

Updates sorbet-runtime from 0.6.13244 to 0.6.13261

Release notes

Sourced from sorbet-runtime's releases.

sorbet 0.6.13260.20260528183631-c567212c0

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13260', :group => :development
gem 'sorbet-runtime', '0.6.13260'

sorbet 0.6.13259.20260528134202-44367fec6

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13259', :group => :development
gem 'sorbet-runtime', '0.6.13259'

sorbet 0.6.13258.20260528114137-6098f4268

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13258', :group => :development
gem 'sorbet-runtime', '0.6.13258'

sorbet 0.6.13257.20260528134150-6a5752f4b

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13257', :group => :development
gem 'sorbet-runtime', '0.6.13257'

sorbet 0.6.13256.20260527170214-864c39d6f

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13256', :group => :development
gem 'sorbet-runtime', '0.6.13256'

sorbet 0.6.13255.20260527144549-a390c35d6

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13255', :group => :development
gem 'sorbet-runtime', '0.6.13255'

sorbet 0.6.13254.20260527143236-02df77509

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13254', :group => :development
gem 'sorbet-runtime', '0.6.13254'

sorbet 0.6.13253.20260527102933-d9d4b57b3

... (truncated)

Commits

Updates json from 2.19.5 to 2.19.8

Release notes

Sourced from json's releases.

v2.19.7

What's Changed

  • Fix some more edge cases with out of range floats.
  • Ensure the string provided to JSON.parse can't be mutated during parsing.
  • Add missing write barriers in State#dup.
  • Further validate generator depth config.

Full Changelog: ruby/json@v2.19.6...v2.19.7

v2.19.6

What's Changed

  • Cleanly handle overly large depth generator argument.
  • Add missing write barrier in ParserConfig.

Full Changelog: ruby/json@v2.19.5...v2.19.6

Changelog

Sourced from json's changelog.

2026-06-03 (2.19.8)

  • Fix 1-byte buffer overread on EOS errors.
  • Handle invalid types passed as max_nesting option.

2026-05-28 (2.19.7)

  • Fix some more edge cases with out of range floats.
  • Ensure the string provided to JSON.parse can't be mutated during parsing.
  • Add missing write barriers in State#dup.
  • Further validate generator depth config.

2026-05-28 (2.19.6)

  • Cleanly handle overly large depth generator argument.
  • Add missing write barrier in ParserConfig.
Commits
  • 5233dd9 Release 2.19.8
  • 3f44b26 Prevent buffer over-read when generating EOF error
  • be8d068 Handle invalid types passed as max_nesting option
  • 59501c0 Get rid of all_images gem
  • c7a7b2b Add a security note in README
  • ab6c8f2 Release 2.19.7
  • f033b9d Fix some more edge cases with out of range floats
  • 5ca8a67 parser.c: Ensure the user provided string can't be mutated
  • dba1d88 generator.c: trigger write barriers in cState_init_copy
  • e8800cb Further validate generator depth config
  • Additional commits viewable in compare view

Updates rubydex from 0.2.3 to 0.2.5

Release notes

Sourced from rubydex's releases.

v0.2.5

What's Changed

✨ Enhancements

🛠 Other Changes

Full Changelog: Shopify/rubydex@v0.2.4...v0.2.5

v0.2.4

What's Changed

🐛 Bug Fixes

🛠 Other Changes

Full Changelog: Shopify/rubydex@v0.2.3...v0.2.4

Commits
  • de40390 Bump version to v0.2.5
  • 04fd14b Merge pull request #833 from Shopify/dependabot/bundler/minor-and-patch-891d5...
  • 2a40086 Bump the minor-and-patch group with 2 updates
  • 88300f4 Merge pull request #829 from Shopify/namespace-has-any-ancestor
  • 2d07dcd Merge pull request #832 from Shopify/expose-definition-lexical-nesting
  • db75765 Expose definition lexical nesting
  • 664ca2b Allow checking multiple ancestors
  • a2c10d7 Package rubydex MCP executable in gem (#819)
  • 4e8fe3b Merge pull request #827 from Shopify/index-all-ruby-like-files
  • adb18d8 Merge pull request #798 from Shopify/at-index-operations
  • Additional commits viewable in compare view

Updates sorbet from 0.6.13244 to 0.6.13261

Release notes

Sourced from sorbet's releases.

sorbet 0.6.13260.20260528183631-c567212c0

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13260', :group => :development
gem 'sorbet-runtime', '0.6.13260'

sorbet 0.6.13259.20260528134202-44367fec6

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13259', :group => :development
gem 'sorbet-runtime', '0.6.13259'

sorbet 0.6.13258.20260528114137-6098f4268

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13258', :group => :development
gem 'sorbet-runtime', '0.6.13258'

sorbet 0.6.13257.20260528134150-6a5752f4b

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13257', :group => :development
gem 'sorbet-runtime', '0.6.13257'

sorbet 0.6.13256.20260527170214-864c39d6f

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13256', :group => :development
gem 'sorbet-runtime', '0.6.13256'

sorbet 0.6.13255.20260527144549-a390c35d6

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13255', :group => :development
gem 'sorbet-runtime', '0.6.13255'

sorbet 0.6.13254.20260527143236-02df77509

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13254', :group => :development
gem 'sorbet-runtime', '0.6.13254'

sorbet 0.6.13253.20260527102933-d9d4b57b3

... (truncated)

Commits

Updates sorbet-static from 0.6.13244 to 0.6.13261

Release notes

Sourced from sorbet-static's releases.

sorbet 0.6.13260.20260528183631-c567212c0

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13260', :group => :development
gem 'sorbet-runtime', '0.6.13260'

sorbet 0.6.13259.20260528134202-44367fec6

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13259', :group => :development
gem 'sorbet-runtime', '0.6.13259'

sorbet 0.6.13258.20260528114137-6098f4268

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13258', :group => :development
gem 'sorbet-runtime', '0.6.13258'

sorbet 0.6.13257.20260528134150-6a5752f4b

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13257', :group => :development
gem 'sorbet-runtime', '0.6.13257'

sorbet 0.6.13256.20260527170214-864c39d6f

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13256', :group => :development
gem 'sorbet-runtime', '0.6.13256'

sorbet 0.6.13255.20260527144549-a390c35d6

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13255', :group => :development
gem 'sorbet-runtime', '0.6.13255'

sorbet 0.6.13254.20260527143236-02df77509

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13254', :group => :development
gem 'sorbet-runtime', '0.6.13254'

sorbet 0.6.13253.20260527102933-d9d4b57b3

... (truncated)

Commits

Updates yard from 0.9.43 to 0.9.44

Updates json from 2.19.5 to 2.19.8

Release notes

Sourced from json's releases.

v2.19.7

What's Changed

  • Fix some more edge cases with out of range floats.
  • Ensure the string provided to JSON.parse can't be mutated during parsing.
  • Add missing write barriers in State#dup.
  • Further validate generator depth config.

Full Changelog: ruby/json@v2.19.6...v2.19.7

v2.19.6

What's Changed

  • Cleanly handle overly large depth generator argument.
  • Add missing write barrier in ParserConfig.

Full Changelog: ruby/json@v2.19.5...v2.19.6

Changelog

Sourced from json's changelog.

2026-06-03 (2.19.8)

  • Fix 1-byte buffer overread on EOS errors.
  • Handle invalid types passed as max_nesting option.

2026-05-28 (2.19.7)

  • Fix some more edge cases with out of range floats.
  • Ensure the string provided to JSON.parse can't be mutated during parsing.
  • Add missing write barriers in State#dup.
  • Further validate generator depth config.

2026-05-28 (2.19.6)

  • Cleanly handle overly large depth generator argument.
  • Add missing write barrier in ParserConfig.
Commits
  • 5233dd9 Release 2.19.8
  • 3f44b26 Prevent buffer over-read when generating EOF error
  • be8d068 Handle invalid types passed as max_nesting option
  • 59501c0 Get rid of all_images gem
  • c7a7b2b Add a security note in README
  • ab6c8f2 Release 2.19.7
  • f033b9d Fix some more edge cases with out of range floats
  • 5ca8a67 parser.c: Ensure the user provided string can't be mutated
  • dba1d88 generator.c: trigger write barriers in cState_init_copy
  • e8800cb Further validate generator depth config
  • Additional commits viewable in compare view

Updates sorbet-runtime from 0.6.13244 to 0.6.13261

Release notes

Sourced from sorbet-runtime's releases.

sorbet 0.6.13260.20260528183631-c567212c0

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13260', :group => :development
gem 'sorbet-runtime', '0.6.13260'

sorbet 0.6.13259.20260528134202-44367fec6

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13259', :group => :development
gem 'sorbet-runtime', '0.6.13259'

sorbet 0.6.13258.20260528114137-6098f4268

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13258', :group => :development
gem 'sorbet-runtime', '0.6.13258'

sorbet 0.6.13257.20260528134150-6a5752f4b

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13257', :group => :development
gem 'sorbet-runtime', '0.6.13257'

sorbet 0.6.13256.20260527170214-864c39d6f

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13256', :group => :development
gem 'sorbet-runtime', '0.6.13256'

sorbet 0.6.13255.20260527144549-a390c35d6

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13255', :group => :development
gem 'sorbet-runtime', '0.6.13255'

sorbet 0.6.13254.20260527143236-02df77509

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13254', :group => :development
gem 'sorbet-runtime', '0.6.13254'

sorbet 0.6.13253.20260527102933-d9d4b57b3

... (truncated)

Commits

Updates yard from 0.9.43 to 0.9.44

Updates yard from 0.9.43 to 0.9.44

Updates io-event from 1.16.0 to 1.16.1

Release notes

Sourced from io-event's releases.

v1.16.1

  • Ensure the pure Ruby Select selector returns false, not nil, when io_wait resumes without any ready events.
Changelog

Sourced from io-event's changelog.

v1.16.1

  • Ensure the pure Ruby Select selector returns false, not nil, when io_wait resumes without any ready events.
Commits
  • 4c84e3a Bump patch version.
  • a9ad1ce Clean up selector test sockets.
  • 60629c0 Fix pure Ruby selector io_wait nil return.
  • 725193e Use io_uring_sq_ready to count pending SQEs
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the bundler group across 2 directories with 9 updates
66869da 
Bumps the bundler group with 5 updates in the /Library/Homebrew directory:

| Package | From | To |
| --- | --- | --- |
| [yard](https://yardoc.org) | `0.9.43` | `0.9.44` |
| [sorbet-static-and-runtime](https://github.com/sorbet/sorbet) | `0.6.13244` | `0.6.13261` |
| [spoom](https://github.com/Shopify/spoom) | `1.7.15` | `1.7.16` |
| [json](https://github.com/ruby/json) | `2.19.5` | `2.19.8` |
| [rubydex](https://github.com/Shopify/rubydex) | `0.2.3` | `0.2.5` |

Bumps the bundler group with 2 updates in the /docs directory: [yard](https://yardoc.org) and [io-event](https://github.com/socketry/io-event).


Updates `yard` from 0.9.43 to 0.9.44

Updates `sorbet-static-and-runtime` from 0.6.13244 to 0.6.13261
- [Release notes](https://github.com/sorbet/sorbet/releases)
- [Commits](https://github.com/sorbet/sorbet/commits)

Updates `spoom` from 1.7.15 to 1.7.16
- [Release notes](https://github.com/Shopify/spoom/releases)
- [Commits](Shopify/spoom@v1.7.15...v1.7.16)

Updates `sorbet-runtime` from 0.6.13244 to 0.6.13261
- [Release notes](https://github.com/sorbet/sorbet/releases)
- [Commits](https://github.com/sorbet/sorbet/commits)

Updates `json` from 2.19.5 to 2.19.8
- [Release notes](https://github.com/ruby/json/releases)
- [Changelog](https://github.com/ruby/json/blob/master/CHANGES.md)
- [Commits](ruby/json@v2.19.5...v2.19.8)

Updates `rubydex` from 0.2.3 to 0.2.5
- [Release notes](https://github.com/Shopify/rubydex/releases)
- [Commits](Shopify/rubydex@v0.2.3...v0.2.5)

Updates `sorbet` from 0.6.13244 to 0.6.13261
- [Release notes](https://github.com/sorbet/sorbet/releases)
- [Commits](https://github.com/sorbet/sorbet/commits)

Updates `sorbet-static` from 0.6.13244 to 0.6.13261
- [Release notes](https://github.com/sorbet/sorbet/releases)
- [Commits](https://github.com/sorbet/sorbet/commits)

Updates `yard` from 0.9.43 to 0.9.44

Updates `json` from 2.19.5 to 2.19.8
- [Release notes](https://github.com/ruby/json/releases)
- [Changelog](https://github.com/ruby/json/blob/master/CHANGES.md)
- [Commits](ruby/json@v2.19.5...v2.19.8)

Updates `sorbet-runtime` from 0.6.13244 to 0.6.13261
- [Release notes](https://github.com/sorbet/sorbet/releases)
- [Commits](https://github.com/sorbet/sorbet/commits)

Updates `yard` from 0.9.43 to 0.9.44

Updates `yard` from 0.9.43 to 0.9.44

Updates `io-event` from 1.16.0 to 1.16.1
- [Release notes](https://github.com/socketry/io-event/releases)
- [Changelog](https://github.com/socketry/io-event/blob/main/releases.md)
- [Commits](socketry/io-event@v1.16.0...v1.16.1)

---
updated-dependencies:
- dependency-name: yard
  dependency-version: 0.9.44
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: sorbet-static-and-runtime
  dependency-version: 0.6.13261
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: spoom
  dependency-version: 1.7.16
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: sorbet-runtime
  dependency-version: 0.6.13261
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: json
  dependency-version: 2.19.8
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: rubydex
  dependency-version: 0.2.5
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: sorbet
  dependency-version: 0.6.13261
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: sorbet-static
  dependency-version: 0.6.13261
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: yard
  dependency-version: 0.9.44
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: json
  dependency-version: 2.19.8
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: sorbet-runtime
  dependency-version: 0.6.13261
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: yard
  dependency-version: 0.9.44
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: yard
  dependency-version: 0.9.44
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: bundler
- dependency-name: io-event
  dependency-version: 1.16.1
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: bundler
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Bumping Gemfile dependencies ruby Pull requests that update Ruby code labels Jun 5, 2026
@MikeMcQuaid MikeMcQuaid enabled auto-merge June 5, 2026 10:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@MikeMcQuaid MikeMcQuaid MikeMcQuaid approved these changes

Assignees

No one assigned

Labels

dependencies Bumping Gemfile dependencies ruby Pull requests that update Ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@MikeMcQuaid @BrewTestBot