Skip to content

Bump activesupport and raap#2910

Closed
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/bundler/multi-267e9aeb95
Closed

Bump activesupport and raap#2910
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/bundler/multi-267e9aeb95

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 1, 2026

Bumps activesupport and raap. These dependencies needed to be updated together.
Updates activesupport from 7.2.3 to 8.1.3

Release notes

Sourced from activesupport's releases.

8.1.3

Active Support

  • Fix JSONGemCoderEncoder to correctly serialize custom object hash keys.

    When hash keys are custom objects whose as_json returns a Hash, the encoder now calls to_s on the original key object instead of on the as_json result.

    Before: hash = {CustomKey.new(123) => "value"} hash.to_json # => {"{:id=>123}":"value"}

    After: hash.to_json # => {"custom_123":"value"}

    Dan Sharp

  • Fix inflections to better handle overlapping acronyms.

    ActiveSupport::Inflector.inflections(:en) do |inflect|
  inflect.acronym "USD"
  inflect.acronym "USDC"
end
"USDC".underscore # => "usdc"

    Said Kaldybaev

  • Silence Dalli 4.0+ warning when using ActiveSupport::Cache::MemCacheStore.

    zzak

Active Model

  • Fix Ruby 4.0 delegator warning when calling inspect on attributes.

    Hammad Khan

  • Fix NoMethodError when deserialising Type::Integer objects marshalled under Rails 8.0.

    The performance optimisation that replaced @range with @max/@min broke Marshal compatibility. Objects serialised under 8.0 (with @range) and deserialised under 8.1 (expecting @max/@min) would crash with undefined method '<=' for nil because Marshal.load restores instance variables without calling initialize.

... (truncated)

Changelog

Sourced from activesupport's changelog.

Rails 8.1.3 (March 24, 2026)

  • Fix JSONGemCoderEncoder to correctly serialize custom object hash keys.

    When hash keys are custom objects whose as_json returns a Hash, the encoder now calls to_s on the original key object instead of on the as_json result.

    Before: hash = {CustomKey.new(123) => "value"} hash.to_json # => {"{:id=>123}":"value"}

    After: hash.to_json # => {"custom_123":"value"}

    Dan Sharp

  • Fix inflections to better handle overlapping acronyms.

    ActiveSupport::Inflector.inflections(:en) do |inflect|
  inflect.acronym "USD"
  inflect.acronym "USDC"
end
"USDC".underscore # => "usdc"

    Said Kaldybaev

  • Silence Dalli 4.0+ warning when using ActiveSupport::Cache::MemCacheStore.

    zzak

Rails 8.1.2.1 (March 23, 2026)

  • Reject scientific notation in NumberConverter

    [CVE-2026-33176]

    Jean Boussier

  • Fix SafeBuffer#% to preserve unsafe status

    [CVE-2026-33170]

    Jean Boussier

  • Improve performance of NumberToDelimitedConverter

... (truncated)

Commits
  • fa8f081 Preparing for 8.1.3 release
  • 63cef3d Merge branch '8-1-sec' into 8-1-stable
  • 1db4b89 Preparing for 8.1.2.1 release
  • 1c7d1cf Update changelog
  • ec1a0e2 Improve performance of NumberToDelimitedConverter
  • 50d732a Fix SafeBuffer#% to preserve unsafe status
  • 19dbab5 NumberConverter: reject scientific notation
  • c315744 Merge pull request #56889 from alpaca-tc/support-spring-on-test-environment
  • 2ac86a8 Revert benchmark.rb to a silent shim (#56832)
  • 8e8c955 Merge pull request #56785 from drsharp/dan/fix-json-encoder-bug
  • Additional commits viewable in compare view

Updates raap from 1.3.0 to 2.0.0

Release notes

Sourced from raap's releases.

v2.0.0

v2.0.0.dev

What's Changed

Support rbs v4.

Full Changelog: ksss/raap@v1.3.0...v2.0.0.dev

Changelog

Sourced from raap's changelog.

[2.0.0] - 2026-03-31

[1.2.0] - 2025-01-29

[1.1.0] - 2025-01-13

[1.0.0] - 2024-08-23

[0.10.0] - 2024-06-25

[0.9.0] - 2024-06-11

[0.8.0] - 2024-06-09

[0.1.0] - 2024-03-20

  • Initial release

... (truncated)

Commits
  • d98c322 Merge pull request #96 from ksss/release-v2.0.0
  • 3042bbf Version 2.0.0
  • 5cb6f14 Merge pull request #94 from ksss/logger
  • 47d8598 Add logger to dependency
  • f8c852a Merge pull request #93 from ksss/update-rbs-v4
  • 8bfaad9 Update rbs v4
  • e86ac6e Merge pull request #92 from ksss/update-dependencies-2026-03-01
  • affc643 chore: update dependencies
  • 623bc02 Merge pull request #88 from ksss/update-dependencies-2026-02-01
  • b127d7d Merge pull request #90 from ksss/dependabot/github_actions/peter-evans/create...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump activesupport and raap
641c90e 
Bumps [activesupport](https://github.com/rails/rails) and [raap](https://github.com/ksss/raap). These dependencies needed to be updated together.

Updates `activesupport` from 7.2.3 to 8.1.3
- [Release notes](https://github.com/rails/rails/releases)
- [Changelog](https://github.com/rails/rails/blob/v8.1.3/activesupport/CHANGELOG.md)
- [Commits](rails/rails@v7.2.3...v8.1.3)

Updates `raap` from 1.3.0 to 2.0.0
- [Release notes](https://github.com/ksss/raap/releases)
- [Changelog](https://github.com/ksss/raap/blob/main/CHANGELOG.md)
- [Commits](ksss/raap@v1.3.0...v2.0.0)

---
updated-dependencies:
- dependency-name: activesupport
  dependency-version: 8.1.3
  dependency-type: direct:production
- dependency-name: raap
  dependency-version: 2.0.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Apr 1, 2026
@soutaro
Copy link
Copy Markdown
Member

soutaro commented Apr 1, 2026

@dependabot rebase

@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot bot commented on behalf of github Apr 1, 2026

The dependabot.yml entry that created this PR has been deleted so this PR can't be rebased. Please close the PR so Dependabot can create a new one with the current dependabot.yml.

@soutaro soutaro closed this Apr 1, 2026
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot bot commented on behalf of github Apr 1, 2026

OK, I won't notify you again about this release, but will get in touch when a new version is available. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot bot deleted the dependabot/bundler/multi-267e9aeb95 branch April 1, 2026 03:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@soutaro