Bumps the dependencies group with 8 updates: | Package | From | To | | --- | --- | --- | | [jbuilder](https://github.com/rails/jbuilder) | `2.14.1` | `2.15.0` | | [strong_migrations](https://github.com/ankane/strong_migrations) | `2.7.0` | `2.8.0` | | [omniauth-microsoft_graph](https://github.com/synth/omniauth-microsoft_graph) | `2.1.0` | `2.2.0` | | [doorkeeper](https://github.com/doorkeeper-gem/doorkeeper) | `5.9.0` | `5.9.1` | | [dalli](https://github.com/petergoldstein/dalli) | `5.0.2` | `5.0.4` | | [marcel](https://github.com/rails/marcel) | `1.1.0` | `1.2.1` | | [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) | `1.222.0` | `1.223.0` | | [image_processing](https://github.com/janko/image_processing) | `1.14.0` | `2.0.0` |
Updates `jbuilder` from 2.14.1 to 2.15.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/rails/jbuilder/releases";>jbuilder's releases</a>.</em></p> <blockquote> <h2>v2.15.0</h2> <h2>What's Changed</h2> <ul> <li>Optimize <code>KeyFormatter</code> on cache hits by <a href="https://github.com/moberegger";><code>@moberegger</code></a> in <a href="https://redirect.github.com/rails/jbuilder/pull/607";>rails/jbuilder#607</a></li> <li>Make method_missing private by <a href="https://github.com/alexceder";><code>@alexceder</code></a> in <a href="https://redirect.github.com/rails/jbuilder/pull/614";>rails/jbuilder#614</a></li> <li>Optimize <code>array!</code> and <code>set!</code> by <a href="https://github.com/moberegger";><code>@moberegger</code></a> in <a href="https://redirect.github.com/rails/jbuilder/pull/604";>rails/jbuilder#604</a></li> <li>Use <code>:unprocessable_content</code> for scaffolds with Rack 3.1 or higher by <a href="https://github.com/taketo1113";><code>@taketo1113</code></a> in <a href="https://redirect.github.com/rails/jbuilder/pull/603";>rails/jbuilder#603</a></li> <li>Optimize <code>_map_collection</code> by <a href="https://github.com/moberegger";><code>@moberegger</code></a> in <a href="https://redirect.github.com/rails/jbuilder/pull/612";>rails/jbuilder#612</a></li> <li>fix: Preserve locals when rendering inline partial for object by <a href="https://github.com/moberegger";><code>@moberegger</code></a> in <a href="https://redirect.github.com/rails/jbuilder/pull/613";>rails/jbuilder#613</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/mayur-kambariya";><code>@mayur-kambariya</code></a> made their first contribution in <a href="https://redirect.github.com/rails/jbuilder/pull/609";>rails/jbuilder#609</a></li> <li><a href="https://github.com/alexceder";><code>@alexceder</code></a> made their first contribution in <a href="https://redirect.github.com/rails/jbuilder/pull/614";>rails/jbuilder#614</a></li> <li><a href="https://github.com/taketo1113";><code>@taketo1113</code></a> made their first contribution in <a href="https://redirect.github.com/rails/jbuilder/pull/603";>rails/jbuilder#603</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/rails/jbuilder/compare/v2.14.1...v2.15.0";>https://github.com/rails/jbuilder/compare/v2.14.1...v2.15.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rails/jbuilder/commit/018083d55f933c2a1d58929600799724462476e6";><code>018083d</code></a> Prepare for 2.15.0</li> <li><a href="https://github.com/rails/jbuilder/commit/72cf0673f5f8428dad00cf09c07e1aac0d6f3e17";><code>72cf067</code></a> Update devcontainer image to Ruby 4.0.4 and add devcontainer-lock.json</li> <li><a href="https://github.com/rails/jbuilder/commit/d35a962709bc0ccc157a9d42f3f428e7aeee687a";><code>d35a962</code></a> Merge pull request <a href="https://redirect.github.com/rails/jbuilder/issues/615";>#615</a> from taketo1113/ci-rails8.1-ruby4.0</li> <li><a href="https://github.com/rails/jbuilder/commit/cc42e7eb979116e37b63cb29ba5e86d4785f2153";><code>cc42e7e</code></a> CI: Add Rails 8.1 & Ruby 4.0 to CI Matrix</li> <li><a href="https://github.com/rails/jbuilder/commit/cd7482eebb69bc194587af056aef700291032570";><code>cd7482e</code></a> Merge pull request <a href="https://redirect.github.com/rails/jbuilder/issues/613";>#613</a> from affinity/moberegger/fix-inline-partial-locals-be</li> <li><a href="https://github.com/rails/jbuilder/commit/58283a0cbf73fc46753a39c09933b5adc5f9e011";><code>58283a0</code></a> Merge pull request <a href="https://redirect.github.com/rails/jbuilder/issues/612";>#612</a> from affinity/moberegger/optimize-_map_collection</li> <li><a href="https://github.com/rails/jbuilder/commit/09ca3e12cb603ea27af8c6057c2a38a76fde3ac7";><code>09ca3e1</code></a> Merge pull request <a href="https://redirect.github.com/rails/jbuilder/issues/603";>#603</a> from taketo1113/update-rack-unprocessable_content</li> <li><a href="https://github.com/rails/jbuilder/commit/9a921d3b816cd4d858c9aba05c5f30fa9db70e3d";><code>9a921d3</code></a> Merge pull request <a href="https://redirect.github.com/rails/jbuilder/issues/604";>#604</a> from affinity/moberegger/optimize-set-and-array-dsl</li> <li><a href="https://github.com/rails/jbuilder/commit/363c3c8d850ba8ff198c05131217fcfb026d0c0a";><code>363c3c8</code></a> Merge pull request <a href="https://redirect.github.com/rails/jbuilder/issues/614";>#614</a> from alexceder/make-method-missing-private</li> <li><a href="https://github.com/rails/jbuilder/commit/26c236c9353f28b1ac9a5438dea34fcd340c6b6f";><code>26c236c</code></a> Make method_missing private</li> <li>Additional commits viewable in <a href="https://github.com/rails/jbuilder/compare/v2.14.1...v2.15.0";>compare view</a></li> </ul> </details> <br /> Updates `strong_migrations` from 2.7.0 to 2.8.0 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/ankane/strong_migrations/blob/master/CHANGELOG.md";>strong_migrations's changelog</a>.</em></p> <blockquote> <h2>2.8.0 (2026-05-14)</h2> <ul> <li>Added check for <code>rename_enum_value</code></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/ankane/strong_migrations/commit/a0d89633e26867585f44c1e5c113ab0b98409995";><code>a0d8963</code></a> Version bump to 2.8.0 [skip ci]</li> <li><a href="https://github.com/ankane/strong_migrations/commit/49c0ba72620b6b63ab5b96cd3d3023c4bf3b9deb";><code>49c0ba7</code></a> Updated readme [skip ci]</li> <li><a href="https://github.com/ankane/strong_migrations/commit/b54aff7a6e30da4fa39472485bb0ed9e00a84762";><code>b54aff7</code></a> Updated readme [skip ci]</li> <li><a href="https://github.com/ankane/strong_migrations/commit/44ea6d55fbacfa0b7ae810b9f4b6ef7f63cd8d10";><code>44ea6d5</code></a> Added check for rename_enum_value</li> <li>See full diff in <a href="https://github.com/ankane/strong_migrations/compare/v2.7.0...v2.8.0";>compare view</a></li> </ul> </details> <br /> Updates `omniauth-microsoft_graph` from 2.1.0 to 2.2.0 <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/synth/omniauth-microsoft_graph/commit/30d84c462a15555c9789c1aef16cad54dca157ef";><code>30d84c4</code></a> bump version 2.2.0 as 2.1.0 already exists (<a href="https://redirect.github.com/synth/omniauth-microsoft_graph/issues/51";>#51</a>)</li> <li><a href="https://github.com/synth/omniauth-microsoft_graph/commit/8688404ac27edf7d151620155939659f53070c4a";><code>8688404</code></a> bump version 2.1.0 (<a href="https://redirect.github.com/synth/omniauth-microsoft_graph/issues/50";>#50</a>)</li> <li><a href="https://github.com/synth/omniauth-microsoft_graph/commit/c8d9639f93d9bf934cdd97fb043f1a536bbe6144";><code>c8d9639</code></a> Fix email domain up domain case sensitive comparison (<a href="https://redirect.github.com/synth/omniauth-microsoft_graph/issues/42";>#42</a>)</li> <li><a href="https://github.com/synth/omniauth-microsoft_graph/commit/ad4fd020b4c6a69d3363fc017492baa9de162cb6";><code>ad4fd02</code></a> Update sinatra requirement from ~> 2.2 to ~> 4.1 in the bundler group (<a href="https://redirect.github.com/synth/omniauth-microsoft_graph/issues/40";>#40</a>)</li> <li><a href="https://github.com/synth/omniauth-microsoft_graph/commit/764ebe79a9565ea5e2be9d905416b194bbc3c959";><code>764ebe7</code></a> Relax version constraint for jwt gem (<a href="https://redirect.github.com/synth/omniauth-microsoft_graph/issues/49";>#49</a>)</li> <li>See full diff in <a href="https://github.com/synth/omniauth-microsoft_graph/compare/2.1.0...2.2.0";>compare view</a></li> </ul> </details> <br /> Updates `doorkeeper` from 5.9.0 to 5.9.1 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/doorkeeper-gem/doorkeeper/releases";>doorkeeper's releases</a>.</em></p> <blockquote> <h2>v5.9.1</h2> <ul> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1781";>#1781</a> Honor <code>handle_auth_errors :raise</code> in <code>AuthorizationsController#authorize_response</code></p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1795";>#1795</a> Fix: detailed error 'insufficient_scope' in protected resources 403s</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1797";>#1797</a> Fix <code>doorkeeper:db:cleanup</code> rake task failure on PostgreSQL</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1800";>#1800</a> Set <code>@grant_type</code> in <code>ClientCredentialsRequest</code> and <code>RefreshTokenRequest</code> constructors so <code>request.grant_type</code> returns the correct value in hooks like <code>before_successful_strategy_response</code>.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1802";>#1802</a> Fix <code>filter_parameters</code> not applied when <code>Doorkeeper.configure</code> is called inside to_prepare.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1804";>#1804</a> Use <code>ActiveSupport.on_load(:active_record)</code> in ORM hooks to prevent loading ActiveRecord models too early</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1806";>#1806</a> Fix token revocation bypass for public clients (RFC 7009)</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1815";>#1815</a> Expose <code>current_resource_owner</code> as a view helper in <code>Doorkeeper::ApplicationController</code>.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1818";>#1818</a> Fix token introspection returning <code>exp: 0</code> for non-expiring tokens.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1784";>#1784</a> Remove hardcoded colons from view templates, move punctuation to i18n translation strings.</p> <p><strong>[IMPORTANT]</strong>: if you have customized Doorkeeper views (<code>authorizations/new</code>, <code>authorizations/show</code>, <code>applications/show</code>) or overridden the default <code>en.yml</code> translations, you may need to update them. Colons are no longer hardcoded in the views — they are now part of the translation strings. Update the <a href="https://github.com/doorkeeper-gem/doorkeeper-i18n";>doorkeeper-i18n</a> gem to get the updated translations for all locales.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1820";>#1820</a> Remove dead wildcard presence check in <code>Scopes#dynamic_scope_match?</code> (internal cleanup, no behavior change).</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1822";>#1822</a> Update Rubocop config, auto-corrections.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1823";>#1823</a> Update Rubocop config, part 2.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1825";>#1825</a> Update Rubocop config, part 3.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1821";>#1821</a> Fix noisy <code>Could not find command "no_previous_refresh_token_column?"</code> Thor output during the <code>PreviousRefreshTokenGenerator</code> spec by stubbing the underlying DB column check instead of the generator's private method (test-only change).</p> </li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/doorkeeper-gem/doorkeeper/blob/main/CHANGELOG.md";>doorkeeper's changelog</a>.</em></p> <blockquote> <h2>5.9.1</h2> <ul> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1781";>#1781</a> Honor <code>handle_auth_errors :raise</code> in <code>AuthorizationsController#authorize_response</code></p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1795";>#1795</a> Fix: detailed error 'insufficient_scope' in protected resources 403s</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1797";>#1797</a> Fix <code>doorkeeper:db:cleanup</code> rake task failure on PostgreSQL</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1800";>#1800</a> Set <code>@grant_type</code> in <code>ClientCredentialsRequest</code> and <code>RefreshTokenRequest</code> constructors so <code>request.grant_type</code> returns the correct value in hooks like <code>before_successful_strategy_response</code>.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1802";>#1802</a> Fix <code>filter_parameters</code> not applied when <code>Doorkeeper.configure</code> is called inside to_prepare.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1804";>#1804</a> Use <code>ActiveSupport.on_load(:active_record)</code> in ORM hooks to prevent loading ActiveRecord models too early</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1806";>#1806</a> Fix token revocation bypass for public clients (RFC 7009)</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1815";>#1815</a> Expose <code>current_resource_owner</code> as a view helper in <code>Doorkeeper::ApplicationController</code>.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1818";>#1818</a> Fix token introspection returning <code>exp: 0</code> for non-expiring tokens.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1784";>#1784</a> Remove hardcoded colons from view templates, move punctuation to i18n translation strings.</p> <p><strong>[IMPORTANT]</strong>: if you have customized Doorkeeper views (<code>authorizations/new</code>, <code>authorizations/show</code>, <code>applications/show</code>) or overridden the default <code>en.yml</code> translations, you may need to update them. Colons are no longer hardcoded in the views — they are now part of the translation strings. Update the <a href="https://github.com/doorkeeper-gem/doorkeeper-i18n";>doorkeeper-i18n</a> gem to get the updated translations for all locales.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1820";>#1820</a> Remove dead wildcard presence check in <code>Scopes#dynamic_scope_match?</code> (internal cleanup, no behavior change).</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1822";>#1822</a> Update Rubocop config, auto-corrections.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1823";>#1823</a> Update Rubocop config, part 2.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1825";>#1825</a> Update Rubocop config, part 3.</p> </li> <li> <p><a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1821";>#1821</a> Fix noisy <code>Could not find command "no_previous_refresh_token_column?"</code> Thor output during the <code>PreviousRefreshTokenGenerator</code> spec by stubbing the underlying DB column check instead of the generator's private method (test-only change).</p> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/doorkeeper-gem/doorkeeper/commit/3f5a58d01ac887113e9d6669d2262dedbd8c4991";><code>3f5a58d</code></a> Release 5.9.1 :tada:</li> <li><a href="https://github.com/doorkeeper-gem/doorkeeper/commit/04cf40f734eb35a21c6f141a27e1ecc75180ddc2";><code>04cf40f</code></a> Merge pull request <a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1821";>#1821</a> from 55728/55728/fix/generator-spec-thor-command-noise</li> <li><a href="https://github.com/doorkeeper-gem/doorkeeper/commit/2f3c315da6d4526a9da06b92b449b66319173603";><code>2f3c315</code></a> Merge pull request <a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1825";>#1825</a> from doorkeeper-gem/update-rubocop-part3</li> <li><a href="https://github.com/doorkeeper-gem/doorkeeper/commit/7856e0006a8c7543d24c962673e9f5751836c121";><code>7856e00</code></a> Update Rubocop, part 3</li> <li><a href="https://github.com/doorkeeper-gem/doorkeeper/commit/0b65e0be27dd952eff3092492b648eba9e8d5437";><code>0b65e0b</code></a> Merge pull request <a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1824";>#1824</a> from doorkeeper-gem/changelog-upgrade</li> <li><a href="https://github.com/doorkeeper-gem/doorkeeper/commit/94eb3570959fd26606802a54c241f7788fa928be";><code>94eb357</code></a> Update GitHub Workflows</li> <li><a href="https://github.com/doorkeeper-gem/doorkeeper/commit/b3a8812f249aff46c414b56a9d7cbd9d83fa4a66";><code>b3a8812</code></a> Merge pull request <a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1823";>#1823</a> from doorkeeper-gem/fix-rubocop-part2</li> <li><a href="https://github.com/doorkeeper-gem/doorkeeper/commit/d1e6d32547389ca0249d9a22e49ad1c313361f1d";><code>d1e6d32</code></a> Update Rubocop, part 2</li> <li><a href="https://github.com/doorkeeper-gem/doorkeeper/commit/c1d79612f0ff8cd8f9f46683bcf0ff653201daaa";><code>c1d7961</code></a> Merge pull request <a href="https://redirect.github.com/doorkeeper-gem/doorkeeper/issues/1822";>#1822</a> from doorkeeper-gem/rubocop-part1</li> <li><a href="https://github.com/doorkeeper-gem/doorkeeper/commit/ae9687337e65995f6eb52c2d23bc7e477c30d1ae";><code>ae96873</code></a> Update Rubocop, part 1</li> <li>Additional commits viewable in <a href="https://github.com/doorkeeper-gem/doorkeeper/compare/v.5.9.0...v5.9.1";>compare view</a></li> </ul> </details> <br /> Updates `dalli` from 5.0.2 to 5.0.4 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/petergoldstein/dalli/blob/main/CHANGELOG.md";>dalli's changelog</a>.</em></p> <blockquote> <h1>5.0.4</h1> <p>Bug fixes:</p> <ul> <li> <p>Fix <code>string_fastpath</code> flag collision with compression (<a href="https://redirect.github.com/petergoldstein/dalli/issues/1099";>#1099</a>)</p> <ul> <li><code>ValueSerializer::FLAG_UTF8</code> and <code>ValueCompressor::FLAG_COMPRESSED</code> were both <code>0x2</code>, causing <code>Dalli::UnmarshalError</code> on any UTF-8 string written with <code>string_fastpath: true</code> when compression is enabled, and silent encoding corruption for binary strings</li> <li>Introduces <code>Dalli::Flags</code> to centralise bit flag constants; UTF8 is reassigned to <code>0x4</code></li> <li>Adds regression test covering short/long UTF-8, binary, and cross-client read scenarios</li> <li>Thanks to Jean Boussier and Mikael Henriksson for the fix and regression test</li> </ul> </li> <li> <p>Fix client-level <code>string_fastpath: true</code> being silently ignored (<a href="https://redirect.github.com/petergoldstein/dalli/issues/1101";>#1101</a>)</p> <ul> <li><code>Dalli::Client.new(servers, string_fastpath: true)</code> had no effect; the fast path was only taken when <code>string_fastpath: true</code> was passed as a per-request option on each <code>set</code> call</li> <li>Per-request option continues to take precedence over the client-level setting in both directions</li> </ul> </li> </ul> <h1>5.0.3</h1> <p>Performance:</p> <ul> <li>Eliminate double array allocation in <code>Client#perform</code> (<a href="https://redirect.github.com/petergoldstein/dalli/issues/1093";>#1093</a>) <ul> <li>Changed method signature from <code>perform(*all_args)</code> with destructuring to <code>perform(op, key, *args)</code>, letting Ruby decompose arguments directly without intermediate array allocations</li> <li>Reduces benchmark time by ~39% across all Dalli operations (get, set, delete, etc.)</li> <li>Thanks to Sam Obeid for this contribution</li> </ul> </li> </ul> <p>Features:</p> <ul> <li> <p>Support <code>connect_timeout:</code> keyword argument with <code>resolv-replace</code> >= 0.2.0, which now correctly forwards keyword arguments through its <code>TCPSocket</code> patch (<a href="https://redirect.github.com/petergoldstein/dalli/issues/1096";>#1096</a>)</p> </li> <li> <p>Add <code>Dalli::Instrumentation.disable!</code> to allow disabling OpenTelemetry instrumentation at runtime (<a href="https://redirect.github.com/petergoldstein/dalli/issues/1088";>#1088</a>)</p> <ul> <li>Also exposes <code>Dalli::Instrumentation.tracer=</code> for setting a custom tracer</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/petergoldstein/dalli/commit/988f611399281bb7f448d5aa16eb9fbcd2cc1285";><code>988f611</code></a> Merge pull request <a href="https://redirect.github.com/petergoldstein/dalli/issues/1102";>#1102</a> from petergoldstein/release/5.0.4</li> <li><a href="https://github.com/petergoldstein/dalli/commit/c0c5aa6f193ce719328e9cac4f9064457afe7cfd";><code>c0c5aa6</code></a> Prepare 5.0.4 release</li> <li><a href="https://github.com/petergoldstein/dalli/commit/91e3756250da6a8786a152d9fc4ebafc2c3990b9";><code>91e3756</code></a> Merge pull request <a href="https://redirect.github.com/petergoldstein/dalli/issues/1101";>#1101</a> from petergoldstein/fix/client-level-string-fastpath</li> <li><a href="https://github.com/petergoldstein/dalli/commit/8ea68f4140689b82bce9b46f29e34c6d19434360";><code>8ea68f4</code></a> Add CHANGELOG entry for client-level string_fastpath fix</li> <li><a href="https://github.com/petergoldstein/dalli/commit/60c9dcabaa89d2683be879f0dc90cf12725b1836";><code>60c9dca</code></a> Fix client-level string_fastpath: true being silently ignored</li> <li><a href="https://github.com/petergoldstein/dalli/commit/5837ca22d437472deae9df85f0d6bdd40de87606";><code>5837ca2</code></a> Merge pull request <a href="https://redirect.github.com/petergoldstein/dalli/issues/1099";>#1099</a> from petergoldstein/fix/string-fastpath-flag-collision</li> <li><a href="https://github.com/petergoldstein/dalli/commit/a85c980eb45fc36cf6c85e591bf8c2c672abcb62";><code>a85c980</code></a> Add CHANGELOG entry for string_fastpath flag collision fix</li> <li><a href="https://github.com/petergoldstein/dalli/commit/6ae5a541dc07febd5971952faed132638d750879";><code>6ae5a54</code></a> Add regression test for string_fastpath/compression flag collision</li> <li><a href="https://github.com/petergoldstein/dalli/commit/3ef5b7bc6580ece62f860ef766abf648c338338b";><code>3ef5b7b</code></a> Fix the <code>string_fastpath</code> option to not comflict with compression</li> <li><a href="https://github.com/petergoldstein/dalli/commit/405cdda2f41c5a25854448439842eb50916fb121";><code>405cdda</code></a> Merge pull request <a href="https://redirect.github.com/petergoldstein/dalli/issues/1097";>#1097</a> from petergoldstein/release/5.0.3</li> <li>Additional commits viewable in <a href="https://github.com/petergoldstein/dalli/compare/v5.0.2...v5.0.4";>compare view</a></li> </ul> </details> <br /> Updates `marcel` from 1.1.0 to 1.2.1 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/rails/marcel/releases";>marcel's releases</a>.</em></p> <blockquote> <h2>v1.2.1</h2> <ul> <li>Revert BMP images type to just <code>image/bmp</code> instead of <code>image/bmp;format=compressed</code>. The later is more precise, but cause backward compatibility issues with Active Storage.</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/rails/marcel/compare/v1.2.0...v1.2.1";>https://github.com/rails/marcel/compare/v1.2.0...v1.2.1</a></p> <h2>v1.2.0</h2> <h2>What's Changed</h2> <ul> <li>Stop mutating source IO state during magic-byte detection by <a href="https://github.com/andreaslillebo";><code>@andreaslillebo</code></a> in <a href="https://redirect.github.com/rails/marcel/pull/143";>rails/marcel#143</a></li> <li>improve SVG detection by <a href="https://github.com/alexanderadam";><code>@alexanderadam</code></a> in <a href="https://redirect.github.com/rails/marcel/pull/129";>rails/marcel#129</a></li> <li>improve HTML detection by <a href="https://github.com/alexanderadam";><code>@alexanderadam</code></a> in <a href="https://redirect.github.com/rails/marcel/pull/130";>rails/marcel#130</a></li> <li>add fixture for BOM CSV by <a href="https://github.com/alexanderadam";><code>@alexanderadam</code></a> in <a href="https://redirect.github.com/rails/marcel/pull/134";>rails/marcel#134</a></li> <li>add unicode string support by <a href="https://github.com/alexanderadam";><code>@alexanderadam</code></a> in <a href="https://redirect.github.com/rails/marcel/pull/138";>rails/marcel#138</a></li> <li>Add support for Sony RAW image format magic detection by <a href="https://github.com/bogdan";><code>@bogdan</code></a> in <a href="https://redirect.github.com/rails/marcel/pull/142";>rails/marcel#142</a></li> <li>Add support for .gpx files by <a href="https://github.com/trekdemo";><code>@trekdemo</code></a> in <a href="https://redirect.github.com/rails/marcel/pull/113";>rails/marcel#113</a></li> <li>add <code>tika.xml</code> regex support by <a href="https://github.com/alexanderadam";><code>@alexanderadam</code></a> in <a href="https://redirect.github.com/rails/marcel/pull/132";>rails/marcel#132</a></li> <li>add pkcs8 detection by <a href="https://github.com/alexanderadam";><code>@alexanderadam</code></a> in <a href="https://redirect.github.com/rails/marcel/pull/133";>rails/marcel#133</a></li> <li>Add hprof fixture and fix trailing space bug by <a href="https://github.com/alexanderadam";><code>@alexanderadam</code></a> in <a href="https://redirect.github.com/rails/marcel/pull/136";>rails/marcel#136</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/andreaslillebo";><code>@andreaslillebo</code></a> made their first contribution in <a href="https://redirect.github.com/rails/marcel/pull/143";>rails/marcel#143</a></li> <li><a href="https://github.com/alexanderadam";><code>@alexanderadam</code></a> made their first contribution in <a href="https://redirect.github.com/rails/marcel/pull/129";>rails/marcel#129</a></li> <li><a href="https://github.com/bogdan";><code>@bogdan</code></a> made their first contribution in <a href="https://redirect.github.com/rails/marcel/pull/142";>rails/marcel#142</a></li> <li><a href="https://github.com/trekdemo";><code>@trekdemo</code></a> made their first contribution in <a href="https://redirect.github.com/rails/marcel/pull/113";>rails/marcel#113</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/rails/marcel/compare/v1.1.1...v1.2.0";>https://github.com/rails/marcel/compare/v1.1.1...v1.2.0</a></p> <h2>v1.1.1</h2> <h2>What's Changed</h2> <ul> <li>Fix Ruby 3.4 frozen string literal warnings with StringIO by <a href="https://github.com/andynu";><code>@andynu</code></a> in <a href="https://redirect.github.com/rails/marcel/pull/140";>rails/marcel#140</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/andynu";><code>@andynu</code></a> made their first contribution in <a href="https://redirect.github.com/rails/marcel/pull/140";>rails/marcel#140</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/rails/marcel/compare/v1.1.0...v1.1.1";>https://github.com/rails/marcel/compare/v1.1.0...v1.1.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rails/marcel/commit/b0625d3f0358deb3fb2cba20b26a1c39f09f62ea";><code>b0625d3</code></a> Release 1.2.1</li> <li><a href="https://github.com/rails/marcel/commit/65a6a56de6f4b19e641ca35e8f8d792de5f52445";><code>65a6a56</code></a> Merge pull request <a href="https://redirect.github.com/rails/marcel/issues/148";>#148</a> from rails/bmp-raw-type</li> <li><a href="https://github.com/rails/marcel/commit/f065e38c5b633c4a1dcbad5d957d5602d6a25387";><code>f065e38</code></a> Release 1.2.0</li> <li><a href="https://github.com/rails/marcel/commit/8bf7690671bf41c634ac0233e3d8f40ed689a611";><code>8bf7690</code></a> Prefer audio/ogg instead of audio/opus</li> <li><a href="https://github.com/rails/marcel/commit/5d740354c292b9d91460b5b3bde92080a96164cd";><code>5d74035</code></a> Merge pull request <a href="https://redirect.github.com/rails/marcel/issues/136";>#136</a> from alexanderadam/fix/remove_trailing_mime_type_spac...</li> <li><a href="https://github.com/rails/marcel/commit/17549db6c960674cccbe1bf697729d0d0a40daab";><code>17549db</code></a> Add hprof to allowed regexp types</li> <li><a href="https://github.com/rails/marcel/commit/5cab19b633b5665b78d12db43cbe44601fac72a3";><code>5cab19b</code></a> Always run generate_tables.rb</li> <li><a href="https://github.com/rails/marcel/commit/9f9833c32014c7a39f9434074bde5248ee805003";><code>9f9833c</code></a> Remove trailign type name in all tables</li> <li><a href="https://github.com/rails/marcel/commit/5a3fbac116d9d8cc7b1b0eb9200328ba882addeb";><code>5a3fbac</code></a> remove trailing mime type spaces & hprof fixture</li> <li><a href="https://github.com/rails/marcel/commit/9f11bea9c73cf0f9039da7c3ae4dc9d4c3dd6be4";><code>9f11bea</code></a> Merge pull request <a href="https://redirect.github.com/rails/marcel/issues/133";>#133</a> from alexanderadam/fix/p8_detection_issue_90</li> <li>Additional commits viewable in <a href="https://github.com/rails/marcel/compare/v1.1.0...v1.2.1";>compare view</a></li> </ul> </details> <br /> Updates `aws-sdk-s3` from 1.222.0 to 1.223.0 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/aws/aws-sdk-ruby/blob/version-3/gems/aws-sdk-s3/CHANGELOG.md";>aws-sdk-s3's changelog</a>.</em></p> <blockquote> <h2>1.223.0 (2026-05-19)</h2> <ul> <li>Feature - Code Generated Changes, see <code>./build_tools</code> or <code>aws-sdk-core</code>'s CHANGELOG.md for details.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/aws/aws-sdk-ruby/commits";>compare view</a></li> </ul> </details> <br /> Updates `image_processing` from 1.14.0 to 2.0.0 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/janko/image_processing/blob/master/CHANGELOG.md";>image_processing's changelog</a>.</em></p> <blockquote> <h2>2.0.0 (2026-05-20)</h2> <ul> <li> <p><code>mini_magick</code>/<code>ruby-vips</code> are now soft dependencies and need to be manually added to the Gemfile (<a href="https://github.com/janko";><code>@janko</code></a>)</p> </li> <li> <p>Avoid remote shell execution vulnerability in <code>#apply</code> when arguments are coming from user input (<a href="https://github.com/janko";><code>@janko</code></a>)</p> </li> <li> <p>[vips] Unfuzzed loaders are now blocked by default (<a href="https://github.com/janko";><code>@janko</code></a>)</p> </li> <li> <p>[vips] Sharpening after resize has been disabled by default (<a href="https://github.com/janko";><code>@janko</code></a>)</p> </li> <li> <p>[minimagick] Remove deprecated <code>:compose</code> and <code>:geometry</code> keyword arguments for <code>#composite</code> (<a href="https://github.com/janko";><code>@janko</code></a>)</p> </li> <li> <p>Ruby 3.0+ is now required (<a href="https://github.com/janko";><code>@janko</code></a>)</p> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/janko/image_processing/commit/cd1353d839ecf17eda56f858e9c93e80d0849db4";><code>cd1353d</code></a> Bump to 2.0.0</li> <li><a href="https://github.com/janko/image_processing/commit/fb1c0edbdc75fc5e163c88064726ce77a918b5e1";><code>fb1c0ed</code></a> Update documentation with recent changes</li> <li><a href="https://github.com/janko/image_processing/commit/f9a1379a458b11338dced145dd733de5fb0672b6";><code>f9a1379</code></a> Use double quotes</li> <li><a href="https://github.com/janko/image_processing/commit/ad46160d1f9ed43f1b58f205f9a84e3cabd771d7";><code>ad46160</code></a> Add IRB and Benchmark to Gemfile</li> <li><a href="https://github.com/janko/image_processing/commit/c06483372a03730624cffcaea9f6fa49f6fc61f4";><code>c064833</code></a> Remove deprecated <code>:compose</code> and <code>:geometry</code> in <code>MiniMagick#composite</code></li> <li><a href="https://github.com/janko/image_processing/commit/4a26fa835ba054868666ceb0bb3e92e5c8824330";><code>4a26fa8</code></a> Make ruby-vips and mini_magick soft dependencies</li> <li><a href="https://github.com/janko/image_processing/commit/201586c8bbdfd9e17b445d3ad8601cb3fdd732a9";><code>201586c</code></a> Block unfuzzed loaders by default on libvips 8.13+</li> <li><a href="https://github.com/janko/image_processing/commit/a71fcad482ce4f15c46c4c0a1b2e279d6fadf80b";><code>a71fcad</code></a> Remove libvips 8.6+ check</li> <li><a href="https://github.com/janko/image_processing/commit/91050fd74298287df018a786f9a8764520490528";><code>91050fd</code></a> Prevent remote shell execution in <code>#apply</code></li> <li><a href="https://github.com/janko/image_processing/commit/4c901bb6e6329331eef4fa2a24c4bbb6ac6a3002";><code>4c901bb</code></a> Try to make tests pass on JRuby</li> <li>Additional commits viewable in <a href="https://github.com/janko/image_processing/compare/v1.14.0...v2.0.0";>compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> You can view, comment on, or merge this pull request online at: https://github.com/openstreetmap/openstreetmap-website/pull/7102 -- Commit Summary -- * Bump the dependencies group with 8 updates -- File Changes -- M Gemfile.lock (48) -- Patch Links -- https://github.com/openstreetmap/openstreetmap-website/pull/7102.patch https://github.com/openstreetmap/openstreetmap-website/pull/7102.diff -- Reply to this email directly or view it on GitHub: https://github.com/openstreetmap/openstreetmap-website/pull/7102 You are receiving this because you are subscribed to this thread. Message ID: <openstreetmap/openstreetmap-website/pull/[email protected]>
_______________________________________________ rails-dev mailing list [email protected] https://lists.openstreetmap.org/listinfo/rails-dev
