build(deps): bump the most-gems group with 10 updates #843

dependabot · 2025-09-15T20:47:45Z

Bumps the most-gems group with 10 updates:

Package	From	To
nokogiri	`1.18.9`	`1.18.10`
aws-sdk-cloudwatch	`1.120.0`	`1.121.0`
async	`2.31.0`	`2.32.0`
aws-partitions	`1.1156.0`	`1.1160.0`
google-protobuf	`4.32.0`	`4.32.1`
metrics	`0.14.0`	`0.15.0`
prism	`1.4.0`	`1.5.1`
regexp_parser	`2.11.2`	`2.11.3`
rexml	`3.4.3`	`3.4.4`
traces	`0.18.1`	`0.18.2`

Updates nokogiri from 1.18.9 to 1.18.10

Release notes

Sourced from nokogiri's releases.

v1.18.10 / 2025-09-15

Dependencies

[CRuby] Vendored libxml2 is updated to v2.13.9. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.
[CRuby] [Windows and MacOS] Vendored libiconv is updated to v1.18

7fb87235d729c74a2be635376d82b1d459230cc17c50300f8e4fcaabc6195344  nokogiri-1.18.10-aarch64-linux-gnu.gem
7e74e58314297cc8a8f1b533f7212d1999dbe2639a9ee6d97b483ea2acc18944  nokogiri-1.18.10-aarch64-linux-musl.gem
51f4f25ab5d5ba1012d6b16aad96b840a10b067b93f35af6a55a2c104a7ee322  nokogiri-1.18.10-arm-linux-gnu.gem
1c6ea754e51cecc85c30ee8ab1e6aa4ce6b6e134d01717e9290e79374a9e00aa  nokogiri-1.18.10-arm-linux-musl.gem
c2b0de30770f50b92c9323fa34a4e1cf5a0af322afcacd239cd66ee1c1b22c85  nokogiri-1.18.10-arm64-darwin.gem
cd431a09c45d84a2f870ba0b7e8f571199b3727d530f2b4888a73639f76510b5  nokogiri-1.18.10-java.gem
64f40d4a41af9f7f83a4e236ad0cf8cca621b97e31f727b1bebdae565a653104  nokogiri-1.18.10-x64-mingw-ucrt.gem
536e74bed6db2b5076769cab5e5f5af0cd1dccbbd75f1b3e1fa69d1f5c2d79e2  nokogiri-1.18.10-x86_64-darwin.gem
ff5ba26ba2dbce5c04b9ea200777fd225061d7a3930548806f31db907e500f72  nokogiri-1.18.10-x86_64-linux-gnu.gem
0651fccf8c2ebbc2475c8b1dfd7ccac3a0a6d09f8a41b72db8c21808cb483385  nokogiri-1.18.10-x86_64-linux-musl.gem
d5cc0731008aa3b3a87b361203ea3d19b2069628cb55e46ac7d84a0445e69cc1  nokogiri-1.18.10.gem

Changelog

Sourced from nokogiri's changelog.

v1.18.10 / 2025-09-15

Dependencies

[CRuby] Vendored libxml2 is updated to v2.13.9. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.

[CRuby] [Windows and MacOS] Vendored libiconv is updated to v1.18

Commits

6803740 version bump to v1.18.10
93337de dep: bump vendored libxml2 to v2.13.9 (#3555)
15dde17 ci: work around repeated bundler deadlocks
9906071 dep: bump vendored libxml2 to v2.13.9
adf72e3 [v1.18.x] backport libiconv upgrade to v1.18 (#3550)
92cab09 dep: update vendored libiconv to 1.18
f1c5ea8 Use mirror site to download libiconv
dcd2721 ci: stop testing Ruby 3.1 windows source builds
cf856e6 ci: fix the aarch64 segfault by using a more modern qemu
6d77443 Fix errors building Ruby 3.1 on windows
Additional commits viewable in compare view

Updates aws-sdk-cloudwatch from 1.120.0 to 1.121.0

Changelog

Sourced from aws-sdk-cloudwatch's changelog.

1.121.0 (2025-09-09)

Feature - Added a new API - DescribeAlarmContributors API, to retrieve alarm contributors in ALARM state. Added support in DescribeAlarmHistory API to query alarm contributor history

Commits

See full diff in compare view

Updates async from 2.31.0 to 2.32.0

Changelog

Sourced from async's changelog.

v2.32.0

Introduce Queue#waiting_count and PriorityQueue#waiting_count. Generally for statistics/testing purposes only.

Commits

f9f49c2 Bump minor version.
b0491bf Introduce Queue#waiting_count and PriorityQueue#waiting_count.
See full diff in compare view

Updates aws-partitions from 1.1156.0 to 1.1160.0

Changelog

Sourced from aws-partitions's changelog.

1.1160.0 (2025-09-15)

Feature - Updated the partitions source data the determines the AWS service regions and endpoints.

1.1159.0 (2025-09-11)

Feature - Updated the partitions source data the determines the AWS service regions and endpoints.

1.1158.0 (2025-09-10)

Feature - Updated the partitions source data the determines the AWS service regions and endpoints.

1.1157.0 (2025-09-09)

Feature - Updated the partitions source data the determines the AWS service regions and endpoints.

Commits

See full diff in compare view

Updates google-protobuf from 4.32.0 to 4.32.1

Commits

See full diff in compare view

Updates metrics from 0.14.0 to 0.15.0

Changelog

Sourced from metrics's changelog.

v0.15.0

Add into = nil parameter to Metrics::Tags.normalize(tags, into = nil) to allow reusing an existing array.

Commits

2883b0a Bump minor version.
c99f671 Improved Metrics::Tags.normalize(tags, into = nil).
f6a92cb Bump patch version.
915d1a3 Modernize code.
See full diff in compare view

Updates prism from 1.4.0 to 1.5.1

Release notes

Sourced from prism's releases.

v1.5.1

Changed

Revert of a bug introduced with static literal flags on interpolated strings.

v1.5.0

Added

Add Prism::Translation::ParserCurrent.

Add Integer::to_u32_digits for the Rust API.

Add pm_comment_type_t field for the Rust API.

Support leading logical operators for CRuby 3.5+.

Changed

Mark Prism as ractor-safe.

Enforce a minimum version for the parser translation layer.

Many fixes to the parser translation layer.

Accept a newline after the defined? keyword.

Reject true && not true.

Make it = it assign nil to match parse.y behavior [Bug #21139].

Some fixes to the ruby parser translation layer.

Ensure call nodes have the correct ending location.

Reject foo && return bar.

Changelog

Sourced from prism's changelog.

[1.5.1] - 2025-09-13

Changed

Revert of a bug introduced with static literal flags on interpolated strings.

[1.5.0] - 2025-09-12

Added

Add Prism::Translation::ParserCurrent.

Add Integer::to_u32_digits for the Rust API.

Add pm_comment_type_t field for the Rust API.

Support leading logical operators for CRuby 3.5+.

Changed

Mark Prism as ractor-safe.

Enforce a minimum version for the parser translation layer.

Many fixes to the parser translation layer.

Accept a newline after the defined? keyword.

Reject true && not true.

Make it = it assign nil to match parse.y behavior [Bug #21139].

Some fixes to the ruby parser translation layer.

Ensure call nodes have the correct ending location.

Reject foo && return bar.

Commits

914883a Merge pull request #3644 from ruby/bump-version
cac5118 Bump to v1.5.1
405d579 Merge pull request #3643 from k0kubun/reverse-sync
f117ec6 Revert "Merge pull request #3606 from tenderlove/clear-flags"
b4865f9 Merge pull request #3642 from ruby/bump-version
194edab Bump to v1.5.0
c6ddd5d Merge pull request #3641 from ruby/memberof
acdfd41 Merge pull request #3639 from ruby/emm
d1d2161 Add \memberof annotations
53ea199 Merge pull request #3640 from ruby/linkify-docs
Additional commits viewable in compare view

Updates regexp_parser from 2.11.2 to 2.11.3

Changelog

Sourced from regexp_parser's changelog.

[2.11.3] - 2025-09-15 - Janosch Müller

Fixed

correctly emit backslash-escaped UTF8 characters in character classes as one token (#104)

thanks to Earlopain for the report and fix

Commits

c5094a8 Release v2.11.3
f3c3a79 Clean up ragel out put some more
6993fab Deduplicate transition
a611c88 Merge pull request #106 from Earlopain/fix-utf8-escapes-in-sets
1500106 Merge pull request #105 from Earlopain/ragel-rake-buildin-command
2efa904 Fix UTF8 escapes in character classes
fe4c477 Fix bundle exec rake install when command is buildin
See full diff in compare view

Updates rexml from 3.4.3 to 3.4.4

Release notes

Sourced from rexml's releases.

REXML 3.4.4 - 2025-09-10

Improvement

Accept REXML::Document.new("") for backward compatibility

GH-296

GH-295

Patch by NAITOH Jun

Reported by Joe Rafaniello

Thanks

NAITOH Jun

Joe Rafaniello

Changelog

Sourced from rexml's changelog.

3.4.4 - 2025-09-10 {#version-3-4-4}

Improvement

Accept REXML::Document.new("") for backward compatibility

GH-296

GH-295

Patch by NAITOH Jun

Reported by Joe Rafaniello

Thanks

NAITOH Jun

Joe Rafaniello

Commits

4f32ea3 Add 3.4.4 entry (#297)
37cde3f Accept REXML::Document.new("") for backward compatibility (#295)
4ffe211 Bump version
See full diff in compare view

Updates traces from 0.18.1 to 0.18.2

Changelog

Sourced from traces's changelog.

Releases

Commits

b171847 Bump patch version.
d940196 Modernize code.
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

myronmarston · 2025-09-15T20:55:30Z

@dependabot recreate

dependabot · 2025-09-15T21:06:11Z