Bump the patch-and-minor-dependencies group with 5 updates

[dependabot]

Bumps the patch-and-minor-dependencies group with 5 updates:

Package	From	To
roda	3.76.0	3.77.0
htmlbeautifier	1.4.2	1.4.3
rubocop	1.60.2	1.62.0
yard	0.9.34	0.9.36
minitest	5.21.2	5.22.2

Updates roda from 3.76.0 to 3.77.0

Changelog

Sourced from roda's changelog.

= master

• Add permissions_policy plugin for setting Permissions-Policy header (jeremyevans)

= 3.77.0 (2024-02-12)

• Support formaction/formmethod attributes in forms in route_csrf plugin (jeremyevans)

= 3.76.0 (2024-01-12)

• Support :filter plugin option in error_mail and error_email for filtering parameters, environment variables, and session values (jeremyevans) (#346)

• Set temporary name on Ruby 3.3 in middleware plugin for middleware class created (janko) (#344)

• Add break plugin, for using break inside a routing block to return from the block and keep routing (jeremyevans)

= 3.75.0 (2023-12-14)

• Add cookie_flags plugin, for overriding, warning, or raising for incorrect cookie flags (jeremyevans)

= 3.74.0 (2023-11-13)

• Add redirect_http_to_https plugin, helping to ensure future requests from the browser are submitted via HTTPS (jeremyevans)

= 3.73.0 (2023-10-13)

• Support :next_if_not_found option for middleware plugin (jeremyevans) (#334)

• Remove dependency on base64 library from sessions and route_csrf plugin, as it will not be part of the standard library in Ruby 3.4+ (jeremyevans)

= 3.72.0 (2023-09-12)

• Add invalid_request_body plugin for custom handling of invalid request bodies (jeremyevans)

• Warn when defining method that expects 1 argument when block requires multiple arguments when :check_arity option is set to :warn (jeremyevans)

• Implement the match_hooks plugin using the match_hook_args plugin (jeremyevans)

= 3.71.0 (2023-08-14)

• Add match_hook_args plugin, similar to match_hooks but support matchers and block args as hook arguments (jeremyevans)

= 3.70.0 (2023-07-12)

• Add plain_hash_response_headers plugin, using a plain hash for response headers on Rack 3 for much better performance (jeremyevans)

• Use lower case response header keys by default on Rack 3, instead of relying on Rack::Headers conversion (jeremyevans)

= 3.69.0 (2023-06-13)

... (truncated)

Commits

• f726d50 Bump version to 3.77.0
• 1427d3c Document the route_csrf :formaction_field plugin option
• 3057b54 Support formaction/formmethod attributes in forms in route_csrf plugin
• See full diff in compare view

Updates htmlbeautifier from 1.4.2 to 1.4.3

Commits

• 9738604 Version 1.4.3
• 3d75d9b Make README input and output clearer
• d438227 Merge pull request #75 from tomclose/master
• 6055ecb Indent case statements
• 3a3cf72 Merge branch 'ruby-standard'
• ed056d0 Apply formatting rules from the Standard project
• 1a15089 Merge pull request #79 from andyw8/andyw8/fix-rubocop-failures
• 1c80785 Fix failures on latest RuboCop version
• See full diff in compare view

Updates rubocop from 1.60.2 to 1.62.0

Release notes

Sourced from rubocop's releases.

RuboCop 1.62

Note: This is the first RuboCop release that features (experimental) support for using Prism instead of the parser gem. Check out the docs for more details.

See also this article for additional context.

New features

• #12600: Support Prism as a Ruby parser (experimental). (@​koic)
• #12725: Support TargetRubyVersion 3.4 (experimental). (@​koic)

Bug fixes

• #12746: Fix a false positive for Lint/ToEnumArguments when enumerator is created for another method in no arguments method definition. (@​koic)
• #12726: Fix a false positive for Style/RedundantLineContinuation when using line concatenation and calling a method with keyword arguments without parentheses. (@​koic)
• #12738: Fix an error for Style/Encoding when magic encoding with mixed case present. (@​koic)
• #12732: Fix error determining target Ruby when gemspec required_ruby_version is read from another file. (@​davidrunger)
• #12736: Fix invalid autocorrect in Layout/SpaceInsideHashLiteralBraces. (@​bquorning)
• #12667: Don't load excluded configuration. (@​jonas054)

RuboCop 1.61

New features

• #12682: Add --editor-mode CLI option. (@​koic)
• #12657: Support AutoCorrect: contextual option for LSP. (@​koic)
• #12273: Make OffenseCountFormatter display autocorrection information. (@​koic)
• #12679: Publish RuboCop::LSP.enable API to enable LSP mode. (@​koic)
• #12699: Support searching for .rubocop.yml and rubocop/config.yml in compliance with dot-config. (@​koic)

Bug fixes

• #12720: Fix a false positive for Style/ArgumentsForwarding when using block arg forwarding to within block with Ruby 3.3.0. (@​koic)
• #12714: Fix an error for Gemspec/RequiredRubyVersion when required_ruby_version is specified with Gem::Requirement.new and is higher than TargetRubyVersion. (@​koic)
• #12690: Fix an error for Style/CaseLikeIf when using == with literal and using ternary operator. (@​koic)
• #12668: Fix an incorrect autocorrect for Lint/EmptyConditionalBody when missing if body with conditional else body. (@​koic)
• #12683: Fix an incorrect autocorrect for Style/MapCompactWithConditionalBlock when using guard clause with next implicitly nil. (@​koic)
• #12693: Fix an incorrect autocorrect for Style/ObjectThen when using yield_self without receiver. (@​koic)
• #12646: Fix --auto-gen-config bug for Layout/SpaceBeforeBlockBraces. (@​jonas054)
• #12717: Fix regexp for inline disable comments in Style/CommentedKeyword. (@​jonas054)
• #12695: Fix bug in Include from inherited file in a parent directory. (@​jonas054)
• #12656: Fix an error for Layout/RedundantLineBreak when using index access call chained on multiline hash literal. (@​koic)
• #12691: Fix an error for Style/MultilineTernaryOperator when nesting multiline ternary operators. (@​koic)
• #12707: Fix false negative for Style/RedundantAssignment when using pattern matching. (@​koic)
• #12674: Fix false negatives for Style/RedundantReturn when using pattern matching. (@​koic)
• #12673: Fix false negatives for Lint/RedundantSafeNavigation when using safe navigation operator for literal receiver. (@​koic)
• #12719: Fix false negatives for Style/ArgumentsForwarding when using forwardable block arguments with Ruby 3.2+. (@​koic)

... (truncated)

Changelog

Sourced from rubocop's changelog.

1.62.0 (2024-03-06)

New features

• #12600: Support Prism as a Ruby parser (experimental). ([@​koic][])
• #12725: Support TargetRubyVersion 3.4 (experimental). ([@​koic][])

Bug fixes

• #12746: Fix a false positive for Lint/ToEnumArguments when enumerator is created for another method in no arguments method definition. ([@​koic][])
• #12726: Fix a false positive for Style/RedundantLineContinuation when using line concatenation and calling a method with keyword arguments without parentheses. ([@​koic][])
• #12738: Fix an error for Style/Encoding when magic encoding with mixed case present. ([@​koic][])
• #12732: Fix error determining target Ruby when gemspec required_ruby_version is read from another file. ([@​davidrunger][])
• #12736: Fix invalid autocorrect in Layout/SpaceInsideHashLiteralBraces. ([@​bquorning][])
• #12667: Don't load excluded configuration. ([@​jonas054][])

1.61.0 (2024-02-29)

New features

• #12682: Add --editor-mode CLI option. ([@​koic][])
• #12657: Support AutoCorrect: contextual option for LSP. ([@​koic][])
• #12273: Make OffenseCountFormatter display autocorrection information. ([@​koic][])
• #12679: Publish RuboCop::LSP.enable API to enable LSP mode. ([@​koic][])
• #12699: Support searching for .rubocop.yml and rubocop/config.yml in compliance with dot-config. ([@​koic][])

Bug fixes

• #12720: Fix a false positive for Style/ArgumentsForwarding when using block arg forwarding to within block with Ruby 3.3.0. ([@​koic][])
• #12714: Fix an error for Gemspec/RequiredRubyVersion when required_ruby_version is specified with Gem::Requirement.new and is higher than TargetRubyVersion. ([@​koic][])
• #12690: Fix an error for Style/CaseLikeIf when using == with literal and using ternary operator. ([@​koic][])
• #12668: Fix an incorrect autocorrect for Lint/EmptyConditionalBody when missing if body with conditional else body. ([@​koic][])
• #12683: Fix an incorrect autocorrect for Style/MapCompactWithConditionalBlock when using guard clause with next implicitly nil. ([@​koic][])
• #12693: Fix an incorrect autocorrect for Style/ObjectThen when using yield_self without receiver. ([@​koic][])
• #12646: Fix --auto-gen-config bug for Layout/SpaceBeforeBlockBraces. ([@​jonas054][])
• #12717: Fix regexp for inline disable comments in Style/CommentedKeyword. ([@​jonas054][])
• #12695: Fix bug in Include from inherited file in a parent directory. ([@​jonas054][])
• #12656: Fix an error for Layout/RedundantLineBreak when using index access call chained on multiline hash literal. ([@​koic][])
• #12691: Fix an error for Style/MultilineTernaryOperator when nesting multiline ternary operators. ([@​koic][])
• #12707: Fix false negative for Style/RedundantAssignment when using pattern matching. ([@​koic][])
• #12674: Fix false negatives for Style/RedundantReturn when using pattern matching. ([@​koic][])
• #12673: Fix false negatives for Lint/RedundantSafeNavigation when using safe navigation operator for literal receiver. ([@​koic][])
• #12719: Fix false negatives for Style/ArgumentsForwarding when using forwardable block arguments with Ruby 3.2+. ([@​koic][])
• #12687: Fix a false positive for Lint/Void when each block with conditional expressions that has multiple statements. ([@​koic][])
• #12649: Fix false positives for Style/InverseMethods when using relational comparison operator with safe navigation. ([@​koic][])
• #12711: Handle implicit receivers in Style/InvertibleUnlessCondition. ([@​sambostock][])
• #12648: Fix numblock regressions in omit_parentheses Style/MethodCallWithArgsParentheses. ([@​gsamokovarov][])

Changes

... (truncated)

Commits

• 92785dd Cut 1.62
• 2d882c3 Update Changelog
• c0582a4 [Fix #12746] Fix a false positive for Lint/ToEnumArguments
• dea3b76 Bump rubocop-rspec from ~> 2.27.0 to ~> 2.27.1
• 5026393 Call .value to get gemspec required_ruby_version only if str_type?
• 07cad75 [Fix #12740] Tweak annotation pattern for expect_offense
• 859f6fd Fix missing assertions in RuboCop::TargetRuby specs
• 6674cc8 [Fix #12738] Fix an error for Style/Encoding
• 1a73d64 Refactor TargetFinder
• 664ba3d [Fix #12667] Avoid loading excluded configuration
• Additional commits viewable in compare view

Updates yard from 0.9.34 to 0.9.36

Release notes

Sourced from yard's releases.

Release v0.9.36

• Further XSS fixes for generated frameset pages (#1538)
• Improve tests for Ruby 3.3 compatibility (#1519, #1531)
• Documentation improvements (#1524)

Release v0.9.35

• Fix possible XSS on generated YARD frameset pages (thanks to @​RedYetiDev for finding and patching) (2069e2b).
• Fix errors when using @option on non-method objects (#1508)
• Support Ruby 3.3 changes in Ripper parser (#1510)

Changelog

Sourced from yard's changelog.

0.9.36 - February 29th, 2024

• Further XSS fixes for generated frameset pages (#1538)
• Improve tests for Ruby 3.3 compatibility (#1519, #1531)
• Documentation improvements (#1524)

0.9.35 - February 28th, 2024

• Fix possible XSS on generated YARD frameset pages (thanks to @​RedYetiDev for finding and patching) (2069e2b).
• Fix errors when using @option on non-method objects (#1508)
• Support Ruby 3.3 changes in Ripper parser (#1510)

Commits

• e833aac Tag release v0.9.36
• 1fcb2d8 Merge pull request #1538 from RedYetiDev/patch-2
• a831a59 Fix semicolon
• 2a0b999 assign url_for_main to a variable
• 3059017 Merge pull request #1519 from mtasaka/ruby33_test_fix
• c88406e Update frames.erb
• 7cb3fc5 Merge pull request #1524 from frsantos/fix_tuple_docs
• 04e4c9a Merge pull request #1531 from rafaelfranca/rm-ruby-3.3
• ebf5005 Tag release v0.9.35
• 62e18b4 Prepare changelog
• Additional commits viewable in compare view

Updates minitest from 5.21.2 to 5.22.2

Changelog

Sourced from minitest's changelog.

=== 5.22.2 / 2024-02-07

• 1 bug fix:

  • Third time's a charm? Remember: 'ensure' is almost always the wrong way to go (for results... it's great for cleaning up).

=== 5.22.1 / 2024-02-06

• 1 bug fix:

  • Don't exit non-zero if no tests ran and no filter (aka, the test file is empty). (I'm starting to think the exit 1 thing for @​tenderlove was a mistake...)

=== 5.22.0 / 2024-02-05

• 1 minor enhancement:

  • Added "did you mean" output if your --name filter matches nothing. (tenderlove)

• 2 bug fixes:

  • Big cleanup of test filtering. Much prettier / more functional.
  • Fix situation where Assertion#location can't find the location. (pftg)

Commits

• d00cc0d prepped for release
• 6cf8dce - Third time's a charm? Remember: 'ensure' is almost always the wrong way to go.
• 319036f prepped for release
• f92f48d - Don't exit non-zero if no tests ran and no filter (aka, the test file is em...
• 6138c39 prepped for release
• ebb468c + Added "did you mean" output if your --name filter matches nothing. (tenderl...
• ef83965 - Big cleanup of test filtering. Much prettier / more functional.
• 194a70a - Fix situation where Assertion#location can't find the location. (pftg)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #116.