chore(deps-dev): bump sprockets from 3.7.2 to 4.0.3

[dependabot]

Bumps sprockets from 3.7.2 to 4.0.3.

Release notes

Sourced from sprockets's releases.

v4.0.3

What's Changed

• Drop support for Ruby 2.3 by @​007lva in rails/sprockets#672
• Fix sprockets.gemspec to include MIT-LICENSE by @​compliance-bot in rails/sprockets#695
• Fix spelling in Ruby and Markdown files by @​jbampton in rails/sprockets#699
• Move to GitHub actions by @​hahmed in rails/sprockets#709
• chore: fix spelling by @​jbampton in rails/sprockets#704
• Recomend terser-ruby instead of uglifier by @​gnumarcelo in rails/sprockets#713
• Do not fingerprint if filename contains a valid digest by @​brenogazzola in rails/sprockets#714
• Improve serving of prehashed assets by @​theodorton in rails/sprockets#717
• Better ERB keyword argument check by @​casperisfine in rails/sprockets#719
• Return instead of yield from Concurrent::Promise (Ruby 3.1 compat) by @​casperisfine in rails/sprockets#720
• Improve detection of files already digested by @​brenogazzola in rails/sprockets#718
• Remove all references to MD5, for FIPS compliance by @​benny-burkhart in rails/sprockets#725
• Fix typo in Readme by @​SKoschnicke in rails/sprockets#722
• CI: Use continue-on-error w/ experimental: true [changelog skip] by @​olleolleolle in rails/sprockets#715
• add missing require delegate [changelog skip] by @​ahorek in rails/sprockets#716
• terser-ruby -> terser by @​radar in rails/sprockets#731

New Contributors

• @​007lva made their first contribution in rails/sprockets#672
• @​compliance-bot made their first contribution in rails/sprockets#695
• @​jbampton made their first contribution in rails/sprockets#699
• @​hahmed made their first contribution in rails/sprockets#709
• @​gnumarcelo made their first contribution in rails/sprockets#713
• @​brenogazzola made their first contribution in rails/sprockets#714
• @​theodorton made their first contribution in rails/sprockets#717
• @​casperisfine made their first contribution in rails/sprockets#719
• @​benny-burkhart made their first contribution in rails/sprockets#725
• @​SKoschnicke made their first contribution in rails/sprockets#722

Full Changelog: rails/sprockets@v4.0.2...v4.0.3

Changelog

Sourced from sprockets's changelog.

4.0.3

• Fix Manifest#find yielding from a Promise causing issue on Ruby 3.1.0-dev. #720
• Better detect the ERB version to avoid deprecation warnings. #719
• Allow assets already fingerprinted to be served through Sprockets::Server
• Do not fingerprint files that already contain a valid digest in their name
• Remove remaining support for Ruby < 2.4.#672

4.0.2

• Fix etag and digest path compilation that were generating string with invalid digest since 4.0.1.

4.0.1

• Fix for Ruby 2.7 keyword arguments warning in base.rb. #660
• Fix for when x_sprockets_linecount is missing from a source map.
• Fix subresource integrity to match the digest of the asset.

4.0.0

• Fixes for Ruby 2.7 keyword arguments warnings #625
• Manifest files are sorted alphabetically #626

4.0.0.beta10

• Fix YACB (Yet Another Caching Bug) Fix broken expansion of asset link paths

4.0.0.beta9

• Minimum Ruby version for Sprockets 4 is now 2.5+ which matches minimum ruby version of Rails #604
• Fix threading bug introduced in Sprockets 4 #603
• Warn when two potential manifest files exist. #560

4.0.0.beta8

• Security release for CVE-2018-3760

4.0.0.beta7

• Fix a year long bug that caused Sprockets::FileNotFound errors when the asset was present #547
• Raise an error when two assets such as foo.js and foo.js.erb would produce the same output artifact (foo.js) [📝 Updated cli documentation LivePersonInc/developer-center#549 #530]
• Process *.jst.eco.erb files with ERBProcessor

4.0.0.beta6

• Fix source map line offsets #515
• Return a 400 Bad Request when the path encoding is invalid. #514

4.0.0.beta5

... (truncated)

Commits

• 58cca17 Preparing for sprockets 4.0.3 release
• 4aa1c55 Merge pull request #731 from radar/patch-1
• 841758b terser-ruby -> terser
• 3a0fb4a Address actions/runner#849
• ba33661 Merge pull request #716 from ahorek/delegate
• 3c419a0 Merge pull request #715 from olleolleolle/ci-allow-failures
• 0ceb537 Update ci.yml
• c05051e Merge pull request #722 from SKoschnicke/patch-1
• a13a6f5 Merge pull request #725 from benny-burkhart/eliminiate-md5-enabling-fips
• 4580b98 Remove all references to MD5, for FIPS compliance
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)