Skip to content

Bump the minor-and-patch group with 3 updates#798

Merged
github-actions[bot] merged 1 commit into
mainfrom
dependabot/bundler/minor-and-patch-5f79a7de9e
Sep 15, 2025
Merged

Bump the minor-and-patch group with 3 updates#798
github-actions[bot] merged 1 commit into
mainfrom
dependabot/bundler/minor-and-patch-5f79a7de9e

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Sep 15, 2025

Copy link
Copy Markdown
Contributor

Bumps the minor-and-patch group with 3 updates: prism, rexml and sorbet-static-and-runtime.

Updates prism from 1.4.0 to 1.5.1

Release notes

Sourced from prism's releases.

v1.5.1

Changed

  • Revert of a bug introduced with static literal flags on interpolated strings.

v1.5.0

Added

  • Add Prism::Translation::ParserCurrent.
  • Add Integer::to_u32_digits for the Rust API.
  • Add pm_comment_type_t field for the Rust API.
  • Support leading logical operators for CRuby 3.5+.

Changed

  • Mark Prism as ractor-safe.
  • Enforce a minimum version for the parser translation layer.
  • Many fixes to the parser translation layer.
  • Accept a newline after the defined? keyword.
  • Reject true && not true.
  • Make it = it assign nil to match parse.y behavior [Bug #21139].
  • Some fixes to the ruby parser translation layer.
  • Ensure call nodes have the correct ending location.
  • Reject foo && return bar.
Changelog

Sourced from prism's changelog.

[1.5.1] - 2025-09-13

Changed

  • Revert of a bug introduced with static literal flags on interpolated strings.

[1.5.0] - 2025-09-12

Added

  • Add Prism::Translation::ParserCurrent.
  • Add Integer::to_u32_digits for the Rust API.
  • Add pm_comment_type_t field for the Rust API.
  • Support leading logical operators for CRuby 3.5+.

Changed

  • Mark Prism as ractor-safe.
  • Enforce a minimum version for the parser translation layer.
  • Many fixes to the parser translation layer.
  • Accept a newline after the defined? keyword.
  • Reject true && not true.
  • Make it = it assign nil to match parse.y behavior [Bug #21139].
  • Some fixes to the ruby parser translation layer.
  • Ensure call nodes have the correct ending location.
  • Reject foo && return bar.
Commits

Updates rexml from 3.4.3 to 3.4.4

Release notes

Sourced from rexml's releases.

REXML 3.4.4 - 2025-09-10

Improvement

  • Accept REXML::Document.new("") for backward compatibility
    • GH-296
    • GH-295
    • Patch by NAITOH Jun
    • Reported by Joe Rafaniello

Thanks

  • NAITOH Jun

  • Joe Rafaniello

Changelog

Sourced from rexml's changelog.

3.4.4 - 2025-09-10 {#version-3-4-4}

Improvement

  • Accept REXML::Document.new("") for backward compatibility
    • GH-296
    • GH-295
    • Patch by NAITOH Jun
    • Reported by Joe Rafaniello

Thanks

  • NAITOH Jun

  • Joe Rafaniello

Commits

Updates sorbet-static-and-runtime from 0.6.12495 to 0.6.12527

Release notes

Sourced from sorbet-static-and-runtime's releases.

sorbet 0.6.12526.20250912195750-91daf2d2f

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12526', :group => :development
gem 'sorbet-runtime', '0.6.12526'

sorbet 0.6.12525.20250912170426-0cfd0406c

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12525', :group => :development
gem 'sorbet-runtime', '0.6.12525'

sorbet 0.6.12524.20250912164158-fa24403e6

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12524', :group => :development
gem 'sorbet-runtime', '0.6.12524'

sorbet 0.6.12523.20250912162803-be8b6e3fd

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12523', :group => :development
gem 'sorbet-runtime', '0.6.12523'

sorbet 0.6.12522.20250912123141-ac83d0746

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12522', :group => :development
gem 'sorbet-runtime', '0.6.12522'

sorbet 0.6.12521.20250911173745-eab5f0aea

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12521', :group => :development
gem 'sorbet-runtime', '0.6.12521'

sorbet 0.6.12520.20250911164710-0d4b17896

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12520', :group => :development
gem 'sorbet-runtime', '0.6.12520'

sorbet 0.6.12519.20250911164217-cb1153a27

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the minor-and-patch group with 3 updates: [prism](https://github.com/ruby/prism), [rexml](https://github.com/ruby/rexml) and [sorbet-static-and-runtime](https://github.com/sorbet/sorbet).


Updates `prism` from 1.4.0 to 1.5.1
- [Release notes](https://github.com/ruby/prism/releases)
- [Changelog](https://github.com/ruby/prism/blob/main/CHANGELOG.md)
- [Commits](ruby/prism@v1.4.0...v1.5.1)

Updates `rexml` from 3.4.3 to 3.4.4
- [Release notes](https://github.com/ruby/rexml/releases)
- [Changelog](https://github.com/ruby/rexml/blob/master/NEWS.md)
- [Commits](ruby/rexml@v3.4.3...v3.4.4)

Updates `sorbet-static-and-runtime` from 0.6.12495 to 0.6.12527
- [Release notes](https://github.com/sorbet/sorbet/releases)
- [Commits](https://github.com/sorbet/sorbet/commits)

---
updated-dependencies:
- dependency-name: prism
  dependency-version: 1.5.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: rexml
  dependency-version: 3.4.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: sorbet-static-and-runtime
  dependency-version: 0.6.12527
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Sep 15, 2025
@dependabot dependabot Bot requested a review from a team as a code owner September 15, 2025 21:01
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Sep 15, 2025
@github-actions github-actions Bot enabled auto-merge September 15, 2025 21:02
@github-actions github-actions Bot merged commit 6b66d05 into main Sep 15, 2025
8 checks passed
@github-actions github-actions Bot deleted the dependabot/bundler/minor-and-patch-5f79a7de9e branch September 15, 2025 21:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants