{"id":303,"name":"rexml","ecosystem":"rubygems","repository_url":"https://github.com/ruby/rexml","issues_count":6717,"created_at":"2025-06-06T15:01:33.664Z","updated_at":"2025-06-06T15:01:33.664Z","purl":"pkg:gem/rexml","metadata":{"id":287751,"name":"rexml","ecosystem":"rubygems","description":"An XML toolkit for Ruby","homepage":"https://github.com/ruby/rexml","licenses":"BSD-2-Clause","normalized_licenses":["BSD-2-Clause"],"repository_url":"https://github.com/ruby/rexml","keywords_array":[],"namespace":null,"versions_count":26,"first_release_published_at":"2018-12-04T13:14:36.945Z","latest_release_published_at":"2025-02-16T07:44:46.623Z","latest_release_number":"3.4.1","last_synced_at":"2025-06-06T01:04:21.676Z","created_at":"2022-04-06T09:13:52.812Z","updated_at":"2025-06-06T01:08:46.464Z","registry_url":"https://rubygems.org/gems/rexml","install_command":"gem install rexml -s https://rubygems.org","documentation_url":"http://www.rubydoc.info/gems/rexml/","metadata":{"funding":null},"repo_metadata":{"id":33649592,"uuid":"135525225","full_name":"ruby/rexml","owner":"ruby","description":"REXML is an XML toolkit for Ruby","archived":false,"fork":false,"pushed_at":"2025-05-29T01:15:01.000Z","size":4682,"stargazers_count":150,"open_issues_count":18,"forks_count":76,"subscribers_count":43,"default_branch":"master","last_synced_at":"2025-05-31T21:26:08.146Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"Ruby","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-2-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/ruby.png","metadata":{"files":{"readme":"README.md","changelog":"NEWS.md","contributing":null,"funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2018-05-31T03:11:12.000Z","updated_at":"2025-05-29T01:14:36.000Z","dependencies_parsed_at":"2024-01-20T22:25:43.871Z","dependency_job_id":"af123a6e-3596-4347-98a8-5d15fdb23b28","html_url":"https://github.com/ruby/rexml","commit_stats":{"total_commits":654,"total_committers":64,"mean_commits":10.21875,"dds":0.7186544342507646,"last_synced_commit":"519ae6c0f3c0b08101e7251fddcc941308d9be87"},"previous_names":[],"tags_count":25,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/ruby","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":258020921,"owners_count":22637720,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"ruby","name":"The Ruby Programming Language","uuid":"210414","kind":"organization","description":"Repositories related to the Ruby Programming language","email":"info@ruby-lang.org","website":"https://www.ruby-lang.org/","location":"Matsue, Japan","twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/210414?v=4","repositories_count":171,"last_synced_at":"2023-04-09T03:40:20.875Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/ruby","funding_links":[],"total_stars":41804,"followers":null,"following":null,"created_at":"2022-11-02T16:17:15.462Z","updated_at":"2023-04-09T03:40:20.938Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/ruby","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/ruby/repositories"},"tags":[{"name":"v3.4.1","sha":"bfb37e9ca4cb974c9bb2dc2f06e1202719d1bc4d","kind":"tag","published_at":"2025-02-16T07:44:27.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.4.1","html_url":"https://github.com/ruby/rexml/releases/tag/v3.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.4.1/manifests"},{"name":"v3.4.0","sha":"19d8ebfbcfb3816fdad050baa74da40d6f04ffac","kind":"tag","published_at":"2024-12-15T02:19:11.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.4.0","html_url":"https://github.com/ruby/rexml/releases/tag/v3.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.4.0/manifests"},{"name":"v3.3.9","sha":"38eaa86ac7abe0d31cf49d8df57ad239fdeb80e9","kind":"tag","published_at":"2024-10-24T05:56:13.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.3.9","html_url":"https://github.com/ruby/rexml/releases/tag/v3.3.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.9/manifests"},{"name":"v3.3.8","sha":"036d50851ce091c797db0b9ba3ed8e5a39c3918c","kind":"tag","published_at":"2024-09-29T07:05:16.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.3.8","html_url":"https://github.com/ruby/rexml/releases/tag/v3.3.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.8/manifests"},{"name":"v3.3.7","sha":"86a11c05f53dbb3dfbe504a365f1412f2e691c25","kind":"tag","published_at":"2024-09-04T05:13:35.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.3.7","html_url":"https://github.com/ruby/rexml/releases/tag/v3.3.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.7/manifests"},{"name":"v3.3.6","sha":"95871f399eda642a022b03550479b7994895c742","kind":"tag","published_at":"2024-08-22T01:05:39.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.3.6","html_url":"https://github.com/ruby/rexml/releases/tag/v3.3.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.6/manifests"},{"name":"v3.3.5","sha":"21d90cbba9a029f85146acbd66c3ce8630b1a608","kind":"tag","published_at":"2024-08-12T01:03:03.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.3.5","html_url":"https://github.com/ruby/rexml/releases/tag/v3.3.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.5/manifests"},{"name":"v3.3.4","sha":"911dca43f2a645bffbfcfb07d57f2aaf52d19733","kind":"tag","published_at":"2024-08-01T07:19:49.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.3.4","html_url":"https://github.com/ruby/rexml/releases/tag/v3.3.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.4/manifests"},{"name":"v3.3.3","sha":"e4a067e11235a2ec7a00616d41350485e384ec05","kind":"tag","published_at":"2024-08-01T02:53:44.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.3.3","html_url":"https://github.com/ruby/rexml/releases/tag/v3.3.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.3/manifests"},{"name":"v3.3.2","sha":"2b285ac0804f2918de642f7ed4646dc6d645a7fc","kind":"tag","published_at":"2024-07-16T02:43:05.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.3.2","html_url":"https://github.com/ruby/rexml/releases/tag/v3.3.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.2/manifests"},{"name":"v3.3.1","sha":"20017eea807e8fa386aa5c79ae779004d8b366dd","kind":"tag","published_at":"2024-06-25T02:26:43.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.3.1","html_url":"https://github.com/ruby/rexml/releases/tag/v3.3.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.1/manifests"},{"name":"v3.3.0","sha":"8247bdc55c85073e953fd27687f42e427b6f071b","kind":"tag","published_at":"2024-06-11T06:10:35.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.3.0","html_url":"https://github.com/ruby/rexml/releases/tag/v3.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.3.0/manifests"},{"name":"v3.2.9","sha":"964c9dc7896e9a0b8ba012702fb06d6538b6acf1","kind":"tag","published_at":"2024-06-09T02:31:40.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.2.9","html_url":"https://github.com/ruby/rexml/releases/tag/v3.2.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.9/manifests"},{"name":"v3.2.8","sha":"1cf37bab79d61d6183bbda8bf525ed587012b718","kind":"tag","published_at":"2024-05-16T05:34:53.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.2.8","html_url":"https://github.com/ruby/rexml/releases/tag/v3.2.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.8/manifests"},{"name":"v3.2.7","sha":"085def07425561862d8329001168d8bc9c75ae8f","kind":"tag","published_at":"2024-05-16T02:34:57.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.2.7","html_url":"https://github.com/ruby/rexml/releases/tag/v3.2.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.7/manifests"},{"name":"v3.2.6","sha":"13aedf2c74c871e8c4ceba549971e16a66df1171","kind":"tag","published_at":"2023-07-27T08:11:19.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.2.6","html_url":"https://github.com/ruby/rexml/releases/tag/v3.2.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.6/manifests"},{"name":"v3.1.9.1","sha":"19225e58f4d343fd70f038bdf8b86fc077f40a99","kind":"tag","published_at":"2021-09-02T00:04:35.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.1.9.1","html_url":"https://github.com/ruby/rexml/releases/tag/v3.1.9.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.1.9.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.1.9.1/manifests"},{"name":"v3.2.5","sha":"a622645e980ea5b91ad7b4d6fec32d113f15df88","kind":"tag","published_at":"2021-04-05T11:44:22.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.2.5","html_url":"https://github.com/ruby/rexml/releases/tag/v3.2.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.5/manifests"},{"name":"v3.2.4","sha":"a1e6c19c621b7e47076ae33a0f8137d7ef48dac2","kind":"tag","published_at":"2020-01-31T05:15:27.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.2.4","html_url":"https://github.com/ruby/rexml/releases/tag/v3.2.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.4/manifests"},{"name":"v3.2.3","sha":"6efd510c012daa9095feb3d9e3f8d12a2621e4e2","kind":"tag","published_at":"2019-10-11T23:00:56.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.2.3","html_url":"https://github.com/ruby/rexml/releases/tag/v3.2.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.3/manifests"},{"name":"v3.2.2","sha":"ef3ed68085fe3004775ac0c27ae43eb4efcbb462","kind":"tag","published_at":"2019-06-02T20:52:25.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.2.2","html_url":"https://github.com/ruby/rexml/releases/tag/v3.2.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.2/manifests"},{"name":"v3.2.1","sha":"1d5244dc23f22fcc6f8be903cb6782b2088144e1","kind":"tag","published_at":"2019-05-04T05:02:05.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.2.1","html_url":"https://github.com/ruby/rexml/releases/tag/v3.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.1/manifests"},{"name":"v3.2.0","sha":"a3eebf38df0e7644b1f0ed08d1f554f1433e78ba","kind":"tag","published_at":"2018-12-31T21:51:56.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.2.0","html_url":"https://github.com/ruby/rexml/releases/tag/v3.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.2.0/manifests"},{"name":"v3.1.9","sha":"d082764a4407d8badef1cb54bac3daec7ae589bf","kind":"tag","published_at":"2018-12-25T02:19:23.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.1.9","html_url":"https://github.com/ruby/rexml/releases/tag/v3.1.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.1.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.1.9/manifests"},{"name":"v3.1.8","sha":"8aeb3a768228b873a7188eb3c7f61cf7c5b0a3f1","kind":"tag","published_at":"2018-12-20T01:26:18.000Z","download_url":"https://codeload.github.com/ruby/rexml/tar.gz/v3.1.8","html_url":"https://github.com/ruby/rexml/releases/tag/v3.1.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.1.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ruby%2Frexml/tags/v3.1.8/manifests"}]},"repo_metadata_updated_at":"2025-06-06T01:08:46.464Z","dependent_packages_count":269,"downloads":568458861,"downloads_period":"total","dependent_repos_count":268429,"rankings":{"downloads":0.04404500395847504,"dependent_repos_count":0.08864753961262697,"dependent_packages_count":0.16056912835494697,"stargazers_count":5.2179391398401,"forks_count":3.683611913337273,"docker_downloads_count":0.012265697304891783,"average":1.5345130704013856},"purl":"pkg:gem/rexml","advisories":[{"uuid":"GSA_kwCzR0hTQS1yNTVjLTU5cW0tdmp3Ns4AA-U_","url":"https://github.com/advisories/GHSA-r55c-59qm-vjw6","title":"REXML DoS vulnerability","description":"### Impact\n\nThe REXML gem before 3.3.2 has some DoS vulnerabilities when it parses an XML that has many specific characters such as whitespace character, `\u003e]` and `]\u003e`.\n\nIf you need to parse untrusted XMLs, you may be impacted to these vulnerabilities.\n\n### Patches\n\nThe REXML gem 3.3.3 or later include the patches to fix these vulnerabilities.\n\n### Workarounds\n\nDon't parse untrusted XMLs.\n\n### References\n\n* https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh : This is a similar vulnerability\n* https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8 : This is a similar vulnerability\n* https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41123/: An announce on www.ruby-lang.org","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2024-08-01T22:05:10.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":6.9,"cvss_vector":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N","references":["https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8","https://github.com/ruby/rexml/security/advisories/GHSA-r55c-59qm-vjw6","https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh","https://nvd.nist.gov/vuln/detail/CVE-2024-41123","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2024-41123.yml","https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41123","https://security.netapp.com/advisory/ntap-20241227-0005","https://github.com/advisories/GHSA-r55c-59qm-vjw6"],"source_kind":"github","identifiers":["GHSA-r55c-59qm-vjw6","CVE-2024-41123"],"repository_url":"https://github.com/ruby/rexml","blast_radius":37.45892309099579,"packages":[{"versions":[{"first_patched_version":"3.3.3","vulnerable_version_range":"\u003c 3.3.3"}],"ecosystem":"rubygems","package_name":"rexml"}],"created_at":"2024-08-01T23:05:20.449Z","updated_at":"2024-12-27T18:31:27.000Z","epss_percentage":0.00357,"epss_percentile":0.57174},{"uuid":"GSA_kwCzR0hTQS12bXdyLW1jN3gtNXZjM84AA-4Z","url":"https://github.com/advisories/GHSA-vmwr-mc7x-5vc3","title":"REXML denial of service vulnerability","description":"### Impact\n\nThe REXML gem before 3.3.6 has a DoS vulnerability when it parses an XML that has many deep elements that have same local name attributes.\n\nIf you need to parse untrusted XMLs with tree parser API like `REXML::Document.new`, you may be impacted to this vulnerability. If you use other parser APIs such as stream parser API and SAX2 parser API, this vulnerability is not affected.\n\n### Patches\n\nThe REXML gem 3.3.6 or later include the patch to fix the vulnerability.\n\n### Workarounds\n\nDon't parse untrusted XMLs with tree parser API.\n\n### References\n\n* https://www.ruby-lang.org/en/news/2024/08/22/dos-rexml-cve-2024-43398/ : An announce on www.ruby-lang.org\n","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2024-08-22T16:40:46.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":8.2,"cvss_vector":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N","references":["https://github.com/ruby/rexml/security/advisories/GHSA-vmwr-mc7x-5vc3","https://nvd.nist.gov/vuln/detail/CVE-2024-43398","https://github.com/ruby/rexml/commit/7cb5eaeb221c322b9912f724183294d8ce96bae3","https://github.com/ruby/rexml/releases/tag/v3.3.6","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2024-43398.yml","https://www.ruby-lang.org/en/news/2024/08/22/dos-rexml-cve-2024-43398","https://security.netapp.com/advisory/ntap-20250103-0006","https://github.com/advisories/GHSA-vmwr-mc7x-5vc3"],"source_kind":"github","identifiers":["GHSA-vmwr-mc7x-5vc3","CVE-2024-43398"],"repository_url":"https://github.com/ruby/rexml","blast_radius":44.51640135451673,"packages":[{"versions":[{"first_patched_version":"3.3.6","vulnerable_version_range":"\u003c 3.3.6"}],"ecosystem":"rubygems","package_name":"rexml"}],"created_at":"2024-08-22T17:05:31.617Z","updated_at":"2025-01-03T12:31:33.000Z","epss_percentage":0.00123,"epss_percentile":0.32774},{"uuid":"GSA_kwCzR0hTQS01ODY2LTQ5Z3ItMjJ2NM4AA-WF","url":"https://github.com/advisories/GHSA-5866-49gr-22v4","title":"REXML DoS vulnerability","description":"### Impact\n\nThe REXML gem before 3.3.2 has a DoS vulnerability when it parses an XML that has many entity expansions with SAX2 or pull parser API.\n\nIf you need to parse untrusted XMLs with SAX2 or pull parser API, you may be impacted to this vulnerability.\n\n### Patches\n\nThe REXML gem 3.3.3 or later include the patch to fix the vulnerability.\n\n### Workarounds\n\nDon't parse untrusted XMLs with SAX2 or pull parser API.\n\n### References\n\n* https://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml/ : This is a similar vulnerability\n* https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41946/: An announce on www.ruby-lang.org","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2024-08-02T12:33:15.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":6.9,"cvss_vector":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N","references":["https://github.com/ruby/rexml/security/advisories/GHSA-5866-49gr-22v4","https://nvd.nist.gov/vuln/detail/CVE-2024-41946","https://github.com/ruby/rexml/commit/033d1909a8f259d5a7c53681bcaf14f13bcf0368","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2024-41946.yml","https://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml","https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41946","https://security.netapp.com/advisory/ntap-20250117-0007","https://github.com/advisories/GHSA-5866-49gr-22v4"],"source_kind":"github","identifiers":["GHSA-5866-49gr-22v4","CVE-2024-41946"],"repository_url":"https://github.com/ruby/rexml","blast_radius":37.45892309099579,"packages":[{"versions":[{"first_patched_version":"3.3.3","vulnerable_version_range":"\u003c 3.3.3"}],"ecosystem":"rubygems","package_name":"rexml"}],"created_at":"2024-08-02T13:05:39.708Z","updated_at":"2025-01-17T21:32:42.000Z","epss_percentage":0.01684,"epss_percentile":0.8126},{"uuid":"GSA_kwCzR0hTQS0ycnhwLXY2cHctY2g2bc4ABAtZ","url":"https://github.com/advisories/GHSA-2rxp-v6pw-ch6m","title":"REXML ReDoS vulnerability","description":"### Impact\n\nThe REXML gem before 3.3.9 has a ReDoS vulnerability when it parses an XML that has many digits between `\u0026#` and `x...;` in a hex numeric character reference (`\u0026#x...;`).\n\nThis does not happen with Ruby 3.2 or later. Ruby 3.1 is the only affected maintained Ruby. Note that Ruby 3.1 will reach EOL on 2025-03.\n\n### Patches\n\nThe REXML gem 3.3.9 or later include the patch to fix the vulnerability.\n\n### Workarounds\n\nUse Ruby 3.2 or later instead of Ruby 3.1.\n\n### References\n\n* https://www.ruby-lang.org/en/news/2024/10/28/redos-rexml-cve-2024-49761/: An announce on www.ruby-lang.org\n","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2024-10-28T14:10:18.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":6.6,"cvss_vector":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U","references":["https://github.com/ruby/rexml/security/advisories/GHSA-2rxp-v6pw-ch6m","https://github.com/ruby/rexml/commit/ce59f2eb1aeb371fe1643414f06618dbe031979f","https://www.ruby-lang.org/en/news/2024/10/28/redos-rexml-cve-2024-49761","https://nvd.nist.gov/vuln/detail/CVE-2024-49761","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2024-49761.yml","https://security.netapp.com/advisory/ntap-20241227-0004","https://github.com/advisories/GHSA-2rxp-v6pw-ch6m"],"source_kind":"github","identifiers":["GHSA-2rxp-v6pw-ch6m","CVE-2024-49761"],"repository_url":"https://github.com/ruby/rexml","blast_radius":35.83027426095249,"packages":[{"versions":[{"first_patched_version":"3.3.9","vulnerable_version_range":"\u003c 3.3.9"}],"ecosystem":"rubygems","package_name":"rexml"}],"created_at":"2024-10-28T15:07:11.696Z","updated_at":"2024-12-27T18:30:26.000Z","epss_percentage":0.00241,"epss_percentile":0.47502},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThjcjgtNHZmdy1tcjdo","url":"https://github.com/advisories/GHSA-8cr8-4vfw-mr7h","title":"REXML round-trip instability","description":"The REXML gem before 3.2.5 in Ruby before 2.6.7, 2.7.x before 2.7.3, and 3.x before 3.0.1 does not properly address XML round-trip issues. An incorrect document can be produced after parsing and serializing. ","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2021-04-30T17:30:37.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2021-28965","https://github.com/ruby/rexml/commit/2fe62e29094d95921d7e19abbd2e26b23d78dc5b","https://github.com/ruby/rexml/commit/3c137eb119550874b2b3e27d12b733ca67033377","https://github.com/ruby/rexml/commit/6a250d2cd1194c2be72becbdd9c3e770aa16e752","https://github.com/ruby/rexml/commit/9b311e59ae05749e082eb6bbefa1cb620d1a786e","https://github.com/ruby/rexml/commit/a659c63e37414506dfb0d4655e031bb7a2e73fc8","https://github.com/ruby/rexml/commit/f7bab8937513b1403cea5aff874cbf32fd5e8551","https://github.com/ruby/rexml/commit/f9d88e4948b4a43294c25dc0edb16815bd9d8618","https://hackerone.com/reports/1104077","https://rubygems.org/gems/rexml","https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/","https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WTVFTLFVCSUE5CXHINJEUCKSHU4SWDMT/","https://security.netapp.com/advisory/ntap-20210528-0003/","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2021-28965.yml","https://github.com/advisories/GHSA-8cr8-4vfw-mr7h"],"source_kind":"github","identifiers":["GHSA-8cr8-4vfw-mr7h","CVE-2021-28965"],"repository_url":"https://github.com/ruby/rexml","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.2.5","vulnerable_version_range":"\u003c 3.2.5"}],"ecosystem":"rubygems","package_name":"rexml"}],"created_at":"2022-12-21T16:13:06.496Z","updated_at":"2023-02-03T05:04:43.000Z","epss_percentage":0.0028,"epss_percentile":0.51089},{"uuid":"GSA_kwCzR0hTQS12ZzNyLXJtN3ctMnhnaM4AA8Kv","url":"https://github.com/advisories/GHSA-vg3r-rm7w-2xgh","title":"REXML contains a denial of service vulnerability","description":"### Impact\n\nThe REXML gem before 3.2.6 has a DoS vulnerability when it parses an XML that has many `\u003c`s in an attribute value.\n\nIf you need to parse untrusted XMLs, you may be impacted to this vulnerability.\n\n### Patches\n\nThe REXML gem 3.2.7 or later include the patch to fix this vulnerability.\n\n### Workarounds\n\nDon't parse untrusted XMLs.\n\n### References\n\n* https://www.ruby-lang.org/en/news/2024/05/16/dos-rexml-cve-2024-35176/","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2024-05-16T17:44:04.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh","https://github.com/ruby/rexml/commit/4325835f92f3f142ebd91a3fdba4e1f1ab7f1cfb","https://www.ruby-lang.org/en/news/2024/05/16/dos-rexml-cve-2024-35176","https://nvd.nist.gov/vuln/detail/CVE-2024-35176","https://security.netapp.com/advisory/ntap-20250306-0001","https://github.com/advisories/GHSA-vg3r-rm7w-2xgh"],"source_kind":"github","identifiers":["GHSA-vg3r-rm7w-2xgh","CVE-2024-35176"],"repository_url":"https://github.com/ruby/rexml","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.2.7","vulnerable_version_range":"\u003c 3.2.7"}],"ecosystem":"rubygems","package_name":"rexml"}],"created_at":"2024-05-16T18:05:20.481Z","updated_at":"2025-03-07T13:49:46.000Z","epss_percentage":0.07344,"epss_percentile":0.91177},{"uuid":"GSA_kwCzR0hTQS00eHFxLW0yaHgtMjV2OM4AA98F","url":"https://github.com/advisories/GHSA-4xqq-m2hx-25v8","title":"REXML denial of service vulnerability","description":"### Impact\n\nThe REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as `\u003c`, `0` and `%\u003e`.\n\nIf you need to parse untrusted XMLs, you may be impacted to these vulnerabilities.\n\n### Patches\n\nThe REXML gem 3.3.2 or later include the patches to fix these vulnerabilities.\n\n### Workarounds\n\nDon't parse untrusted XMLs.\n\n### References\n\n* https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh : This is a similar vulnerability\n* https://www.ruby-lang.org/en/news/2024/07/16/dos-rexml-cve-2024-39908/","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2024-07-16T19:49:15.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":6.9,"cvss_vector":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N","references":["https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8","https://nvd.nist.gov/vuln/detail/CVE-2024-39908","https://github.com/ruby/rexml/releases/tag/v3.3.2","https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2024-39908.yml","https://www.ruby-lang.org/en/news/2024/07/16/dos-rexml-cve-2024-39908","https://security.netapp.com/advisory/ntap-20250117-0008","https://github.com/advisories/GHSA-4xqq-m2hx-25v8"],"source_kind":"github","identifiers":["GHSA-4xqq-m2hx-25v8","CVE-2024-39908"],"repository_url":"https://github.com/ruby/rexml","blast_radius":37.45892309099579,"packages":[{"versions":[{"first_patched_version":"3.3.2","vulnerable_version_range":"\u003c 3.3.2"}],"ecosystem":"rubygems","package_name":"rexml"}],"created_at":"2024-07-16T20:05:39.690Z","updated_at":"2025-01-17T21:32:42.000Z","epss_percentage":0.03251,"epss_percentile":0.86488}],"docker_usage_url":"https://docker.ecosyste.ms/usage/rubygems/rexml","docker_dependents_count":4139,"docker_downloads_count":4272588206,"usage_url":"https://repos.ecosyste.ms/usage/rubygems/rexml","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/rubygems/rexml/dependencies","status":null,"funding_links":[],"critical":true,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/packages/rexml/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/packages/rexml/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/packages/rexml/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/packages/rexml/related_packages","maintainers":[{"uuid":"36956","login":"hsbt","name":null,"email":null,"url":null,"packages_count":176,"html_url":"https://rubygems.org/profiles/hsbt","role":null,"created_at":"2022-11-09T09:48:15.775Z","updated_at":"2022-11-09T09:48:15.775Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/hsbt/packages"},{"uuid":"2615","login":"mame","name":null,"email":null,"url":null,"packages_count":23,"html_url":"https://rubygems.org/profiles/mame","role":null,"created_at":"2022-11-09T09:48:15.764Z","updated_at":"2022-11-09T09:48:15.764Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/mame/packages"},{"uuid":"27848","login":"naruse","name":null,"email":null,"url":null,"packages_count":81,"html_url":"https://rubygems.org/profiles/naruse","role":null,"created_at":"2022-11-09T09:48:15.809Z","updated_at":"2022-11-09T09:48:15.809Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/naruse/packages"},{"uuid":"42822","login":"kou","name":null,"email":null,"url":null,"packages_count":330,"html_url":"https://rubygems.org/profiles/kou","role":null,"created_at":"2022-11-09T09:48:15.799Z","updated_at":"2022-11-09T09:48:15.799Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers/kou/packages"}],"registry":{"name":"rubygems.org","url":"https://rubygems.org","ecosystem":"rubygems","default":true,"packages_count":198115,"maintainers_count":66429,"namespaces_count":0,"keywords_count":17799,"github":"rubygems","metadata":{"funded_packages_count":7045},"icon_url":"https://github.com/rubygems.png","created_at":"2022-04-04T15:19:23.446Z","updated_at":"2025-06-06T05:59:27.395Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/rubygems.org/namespaces"}},"unique_repositories_count":5816,"unique_repositories_count_past_30_days":4,"recent_issues":[{"uuid":"4559613809","node_id":"PR_kwDOFt1Lb87hL2Wk","number":208,"state":"open","title":"Bump rexml from 3.3.7 to 3.4.2","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-01T01:01:55.000Z","updated_at":"2026-06-01T01:02:21.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"rexml","old_version":"3.3.7","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [rexml](https://github.com/ruby/rexml) from 3.3.7 to 3.4.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.3.7...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rexml\u0026package-manager=bundler\u0026previous-version=3.3.7\u0026new-version=3.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Automattic/a8c-ci-toolkit-buildkite-plugin/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Automattic/a8c-ci-toolkit-buildkite-plugin/pull/208","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Automattic%2Fa8c-ci-toolkit-buildkite-plugin/issues/208","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/208/packages"},{"uuid":"4458911143","node_id":"PR_kwDOCSVaMM7cKhYW","number":7367,"state":"closed","title":"build(deps): bump the minor-and-patch group across 1 directory with 67 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-19T03:21:24.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-16T06:23:56.000Z","updated_at":"2026-05-19T03:21:26.000Z","time_to_close":248248,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"minor-and-patch","update_count":67,"packages":[{"name":"aws-actionmailer-ses","old_version":"1.0.0","new_version":"1.1.0","repository_url":"https://github.com/aws/aws-actionmailer-ses-ruby"},{"name":"dotenv-rails","old_version":"3.1.8","new_version":"3.2.0","repository_url":"https://github.com/bkeepers/dotenv"},{"name":"kt-paperclip","old_version":"7.2.2","new_version":"7.3.0","repository_url":"https://github.com/kreeti/kt-paperclip"},{"name":"omniauth","old_version":"2.1.3","new_version":"2.1.4","repository_url":"https://github.com/omniauth/omniauth"},{"name":"omniauth-google-oauth2","old_version":"1.2.1","new_version":"1.2.2","repository_url":"https://github.com/zquestz/omniauth-google-oauth2"},{"name":"rails","old_version":"8.0.5","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"},{"name":"terser","old_version":"1.2.6","new_version":"1.2.7","repository_url":"https://github.com/ahorek/terser-ruby"},{"name":"jbuilder","old_version":"2.14.1","new_version":"2.15.0","repository_url":"https://github.com/rails/jbuilder"},{"name":"devise","old_version":"5.0.3","new_version":"5.0.4","repository_url":"https://github.com/heartcombo/devise"},{"name":"jquery-rails","old_version":"4.6.0","new_version":"4.6.1","repository_url":"https://github.com/rails/jquery-rails"},{"name":"sidekiq","old_version":"8.0.7","new_version":"8.1.5","repository_url":"https://github.com/sidekiq/sidekiq"},{"name":"geocoder","old_version":"1.8.5","new_version":"1.8.6","repository_url":"https://github.com/alexreisner/geocoder"},{"name":"pundit","old_version":"2.5.0","new_version":"2.5.2","repository_url":"https://github.com/varvet/pundit"},{"name":"ahoy_matey","old_version":"5.4.0","new_version":"5.5.0","repository_url":"https://github.com/ankane/ahoy"},{"name":"i18n-js","old_version":"4.2.3","new_version":"4.2.4","repository_url":"https://github.com/fnando/i18n-js"},{"name":"pg","old_version":"1.6.1","new_version":"1.6.3","repository_url":"https://github.com/ged/ruby-pg"},{"name":"bootsnap","old_version":"1.18.6","new_version":"1.24.4","repository_url":"https://github.com/rails/bootsnap"},{"name":"rexml","old_version":"3.4.2","new_version":"3.4.4","repository_url":"https://github.com/ruby/rexml"},{"name":"flipper-redis","old_version":"1.3.6","new_version":"1.4.2","repository_url":"https://github.com/flippercloud/flipper"},{"name":"friendly_id","old_version":"5.5.1","new_version":"5.7.0","repository_url":"https://github.com/norman/friendly_id"},{"name":"rails-i18n","old_version":"8.0.2","new_version":"8.1.0","repository_url":"https://github.com/svenfuchs/rails-i18n"},{"name":"recaptcha","old_version":"5.20.1","new_version":"5.21.2","repository_url":"https://github.com/ambethia/recaptcha"},{"name":"strong_migrations","old_version":"2.5.0","new_version":"2.8.0","repository_url":"https://github.com/ankane/strong_migrations"},{"name":"debug","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/ruby/debug"},{"name":"factory_bot_rails","old_version":"6.5.0","new_version":"6.5.1","repository_url":"https://github.com/thoughtbot/factory_bot_rails"},{"name":"faker","old_version":"3.5.2","new_version":"3.8.0","repository_url":"https://github.com/faker-ruby/faker"},{"name":"rspec-rails","old_version":"8.0.2","new_version":"8.0.4","repository_url":"https://github.com/rspec/rspec-rails"},{"name":"rubocop-performance","old_version":"1.25.0","new_version":"1.26.1","repository_url":"https://github.com/rubocop/rubocop-performance"},{"name":"rubocop-rails","old_version":"2.33.3","new_version":"2.35.0","repository_url":"https://github.com/rubocop/rubocop-rails"},{"name":"rubocop-rspec","old_version":"3.6.0","new_version":"3.9.0","repository_url":"https://github.com/rubocop/rubocop-rspec"},{"name":"rbs_rails","old_version":"0.12.1","new_version":"0.13.1","repository_url":"https://github.com/pocke/rbs_rails"},{"name":"json-schema","old_version":"6.0.0","new_version":"6.2.0","repository_url":"https://github.com/voxpupuli/json-schema"},{"name":"webmock","old_version":"3.25.1","new_version":"3.26.2","repository_url":"https://github.com/bblimke/webmock"},{"name":"undercover","old_version":"0.8.0","new_version":"0.8.5","repository_url":"https://github.com/grodowski/undercover"},{"name":"capybara-playwright-driver","old_version":"0.5.7","new_version":"0.5.9","repository_url":"https://github.com/YusukeIwaki/capybara-playwright-driver"},{"name":"listen","old_version":"3.9.0","new_version":"3.10.0","repository_url":"https://github.com/guard/listen"},{"name":"web-console","old_version":"4.2.1","new_version":"4.3.0","repository_url":"https://github.com/rails/web-console"},{"name":"lookbook","old_version":"2.3.13","new_version":"2.3.14","repository_url":"https://github.com/lookbook-hq/lookbook"},{"name":"oj","old_version":"3.16.11","new_version":"3.17.1","repository_url":"https://github.com/ohler55/oj"},{"name":"rack-attack","old_version":"6.7.0","new_version":"6.8.0","repository_url":"https://github.com/rack/rack-attack"},{"name":"aws-sdk-s3","old_version":"1.208.0","new_version":"1.222.0","repository_url":"https://github.com/aws/aws-sdk-ruby"},{"name":"opentelemetry-sdk","old_version":"1.8.1","new_version":"1.12.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby"},{"name":"opentelemetry-exporter-otlp","old_version":"0.30.0","new_version":"0.34.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby"},{"name":"opentelemetry-instrumentation-active_job","old_version":"0.8.0","new_version":"0.12.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby-contrib"},{"name":"maintenance_tasks","old_version":"2.12.0","new_version":"2.16.0","repository_url":"https://github.com/Shopify/maintenance_tasks"},{"name":"stackprof","old_version":"0.2.27","new_version":"0.2.28","repository_url":"https://github.com/tmm1/stackprof"},{"name":"concurrent-ruby","old_version":"1.3.5","new_version":"1.3.6","repository_url":"https://github.com/ruby-concurrency/concurrent-ruby"},{"name":"avo","old_version":"3.31.0","new_version":"3.31.2","repository_url":"https://github.com/avo-hq/avo"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the minor-and-patch group with 48 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-actionmailer-ses](https://github.com/aws/aws-actionmailer-ses-ruby) | `1.0.0` | `1.1.0` |\n| [dotenv-rails](https://github.com/bkeepers/dotenv) | `3.1.8` | `3.2.0` |\n| [kt-paperclip](https://github.com/kreeti/kt-paperclip) | `7.2.2` | `7.3.0` |\n| [omniauth](https://github.com/omniauth/omniauth) | `2.1.3` | `2.1.4` |\n| [omniauth-google-oauth2](https://github.com/zquestz/omniauth-google-oauth2) | `1.2.1` | `1.2.2` |\n| [rails](https://github.com/rails/rails) | `8.0.5` | `8.1.3` |\n| [terser](https://github.com/ahorek/terser-ruby) | `1.2.6` | `1.2.7` |\n| [jbuilder](https://github.com/rails/jbuilder) | `2.14.1` | `2.15.0` |\n| [devise](https://github.com/heartcombo/devise) | `5.0.3` | `5.0.4` |\n| [jquery-rails](https://github.com/rails/jquery-rails) | `4.6.0` | `4.6.1` |\n| [sidekiq](https://github.com/sidekiq/sidekiq) | `8.0.7` | `8.1.5` |\n| [geocoder](https://github.com/alexreisner/geocoder) | `1.8.5` | `1.8.6` |\n| [pundit](https://github.com/varvet/pundit) | `2.5.0` | `2.5.2` |\n| [ahoy_matey](https://github.com/ankane/ahoy) | `5.4.0` | `5.5.0` |\n| [i18n-js](https://github.com/fnando/i18n-js) | `4.2.3` | `4.2.4` |\n| [pg](https://github.com/ged/ruby-pg) | `1.6.1` | `1.6.3` |\n| [bootsnap](https://github.com/rails/bootsnap) | `1.18.6` | `1.24.4` |\n| [rexml](https://github.com/ruby/rexml) | `3.4.2` | `3.4.4` |\n| [flipper-redis](https://github.com/flippercloud/flipper) | `1.3.6` | `1.4.2` |\n| [friendly_id](https://github.com/norman/friendly_id) | `5.5.1` | `5.7.0` |\n| [rails-i18n](https://github.com/svenfuchs/rails-i18n) | `8.0.2` | `8.1.0` |\n| [recaptcha](https://github.com/ambethia/recaptcha) | `5.20.1` | `5.21.2` |\n| [strong_migrations](https://github.com/ankane/strong_migrations) | `2.5.0` | `2.8.0` |\n| [debug](https://github.com/ruby/debug) | `1.11.0` | `1.11.1` |\n| [factory_bot_rails](https://github.com/thoughtbot/factory_bot_rails) | `6.5.0` | `6.5.1` |\n| [faker](https://github.com/faker-ruby/faker) | `3.5.2` | `3.8.0` |\n| [rspec-rails](https://github.com/rspec/rspec-rails) | `8.0.2` | `8.0.4` |\n| [rubocop-performance](https://github.com/rubocop/rubocop-performance) | `1.25.0` | `1.26.1` |\n| [rubocop-rails](https://github.com/rubocop/rubocop-rails) | `2.33.3` | `2.35.0` |\n| [rubocop-rspec](https://github.com/rubocop/rubocop-rspec) | `3.6.0` | `3.9.0` |\n| [rbs_rails](https://github.com/pocke/rbs_rails) | `0.12.1` | `0.13.1` |\n| [json-schema](https://github.com/voxpupuli/json-schema) | `6.0.0` | `6.2.0` |\n| [webmock](https://github.com/bblimke/webmock) | `3.25.1` | `3.26.2` |\n| [undercover](https://github.com/grodowski/undercover) | `0.8.0` | `0.8.5` |\n| [capybara-playwright-driver](https://github.com/YusukeIwaki/capybara-playwright-driver) | `0.5.7` | `0.5.9` |\n| [listen](https://github.com/guard/listen) | `3.9.0` | `3.10.0` |\n| [web-console](https://github.com/rails/web-console) | `4.2.1` | `4.3.0` |\n| [lookbook](https://github.com/lookbook-hq/lookbook) | `2.3.13` | `2.3.14` |\n| [oj](https://github.com/ohler55/oj) | `3.16.11` | `3.17.1` |\n| [rack-attack](https://github.com/rack/rack-attack) | `6.7.0` | `6.8.0` |\n| [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) | `1.208.0` | `1.222.0` |\n| [opentelemetry-sdk](https://github.com/open-telemetry/opentelemetry-ruby) | `1.8.1` | `1.12.0` |\n| [opentelemetry-exporter-otlp](https://github.com/open-telemetry/opentelemetry-ruby) | `0.30.0` | `0.34.0` |\n| [opentelemetry-instrumentation-active_job](https://github.com/open-telemetry/opentelemetry-ruby-contrib) | `0.8.0` | `0.12.0` |\n| [maintenance_tasks](https://github.com/Shopify/maintenance_tasks) | `2.12.0` | `2.16.0` |\n| [stackprof](https://github.com/tmm1/stackprof) | `0.2.27` | `0.2.28` |\n| [concurrent-ruby](https://github.com/ruby-concurrency/concurrent-ruby) | `1.3.5` | `1.3.6` |\n| [avo](https://github.com/avo-hq/avo) | `3.31.0` | `3.31.2` |\n\n\nUpdates `aws-actionmailer-ses` from 1.0.0 to 1.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/releases\"\u003eaws-actionmailer-ses's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v1.1.0 - 2026-03-31\u003c/h2\u003e\n\u003cp\u003eTag release v1.1.0\u003c/p\u003e\n\u003cp\u003eReferences: \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/14\"\u003e#14\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/6\"\u003e#6\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/7\"\u003e#7\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/9\"\u003e#9\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFeature - Support injecting a preconstructed client via \u003ccode\u003e:ses_client\u003c/code\u003e and \u003ccode\u003e:sesv2_client\u003c/code\u003e options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/blob/main/CHANGELOG.md\"\u003eaws-actionmailer-ses's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.1.0 (2026-03-31)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFeature - Support injecting a preconstructed client via \u003ccode\u003e:ses_client\u003c/code\u003e and \u003ccode\u003e:sesv2_client\u003c/code\u003e options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/87d57bae1d2da68729c639da957c89b4f14eef02\"\u003e\u003ccode\u003e87d57ba\u003c/code\u003e\u003c/a\u003e Bumped version to v1.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/55de5a801bc2f819acda6521fa7efab8e72829bb\"\u003e\u003ccode\u003e55de5a8\u003c/code\u003e\u003c/a\u003e Allow precreated SESv2 client (issue \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/7\"\u003e#7\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/14\"\u003e#14\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/0e7a21034d43615e7765bb96c84f09f43fe80e1f\"\u003e\u003ccode\u003e0e7a210\u003c/code\u003e\u003c/a\u003e Scope down GitHub token permissions for ci.yml (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/9\"\u003e#9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/c2b91df4f58ed7da035c953ecfd4f9847da46ebb\"\u003e\u003ccode\u003ec2b91df\u003c/code\u003e\u003c/a\u003e Update CI to include 3.4 (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/6\"\u003e#6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/aab2974887db3c4d525f9e18c3f1ae7c6513d230\"\u003e\u003ccode\u003eaab2974\u003c/code\u003e\u003c/a\u003e Update README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/ce6af36916d5ab9224bf193690d98f539585f208\"\u003e\u003ccode\u003ece6af36\u003c/code\u003e\u003c/a\u003e Added next release section to the changelog. [ci skip]\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/compare/v1.0.0...v1.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv-rails` from 3.1.8 to 3.2.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bkeepers/dotenv/releases\"\u003edotenv-rails's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBoost app startup time by removing to_sentence usage by \u003ca href=\"https://github.com/ThomasCrambert\"\u003e\u003ccode\u003e@​ThomasCrambert\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/534\"\u003ebkeepers/dotenv#534\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHandle parentheses in variables in commands by \u003ca href=\"https://github.com/i7an\"\u003e\u003ccode\u003e@​i7an\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/540\"\u003ebkeepers/dotenv#540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eallow warning when a env var was not overwritten by \u003ca href=\"https://github.com/grosser\"\u003e\u003ccode\u003e@​grosser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/531\"\u003ebkeepers/dotenv#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix a few small issues by \u003ca href=\"https://github.com/grosser\"\u003e\u003ccode\u003e@​grosser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/532\"\u003ebkeepers/dotenv#532\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ThomasCrambert\"\u003e\u003ccode\u003e@​ThomasCrambert\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/534\"\u003ebkeepers/dotenv#534\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i7an\"\u003e\u003ccode\u003e@​i7an\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/540\"\u003ebkeepers/dotenv#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\"\u003ehttps://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/34156bf400cd67387fa6ed9f146778f6a2f5f743\"\u003e\u003ccode\u003e34156bf\u003c/code\u003e\u003c/a\u003e Prepare for 3.2.0 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/ab478201bdb487bfebd9e89875fd4edcf19dc064\"\u003e\u003ccode\u003eab47820\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/531\"\u003e#531\u003c/a\u003e from grosser/grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/fae61202e432f39742e2592817cc7bb38f559852\"\u003e\u003ccode\u003efae6120\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/4f510f41073cabb9786e3a5ea57263933497e696\"\u003e\u003ccode\u003e4f510f4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/532\"\u003e#532\u003c/a\u003e from grosser/grosser/fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/959e1dac9d933a7ffe6a2ab17081f8235b7822a9\"\u003e\u003ccode\u003e959e1da\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/539\"\u003e#539\u003c/a\u003e from bkeepers/dependabot/github_actions/actions/check...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/041451e4ef7fd3a4ea604fcabef0cfb6fb5e79a3\"\u003e\u003ccode\u003e041451e\u003c/code\u003e\u003c/a\u003e Update spec message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/b300f262bdf1cfd6ac5215fd44baa771753702b9\"\u003e\u003ccode\u003eb300f26\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/5f4ca012b03c82343ad3f926e2fd281aa30a434b\"\u003e\u003ccode\u003e5f4ca01\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/209dca47e453f7288aac9f31330e67e3f0b83e78\"\u003e\u003ccode\u003e209dca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/540\"\u003e#540\u003c/a\u003e from i7an/handle-parentheses\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/48c495683008c5dd1816a89329e59f8386324bb2\"\u003e\u003ccode\u003e48c4956\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into handle-parentheses\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `kt-paperclip` from 7.2.2 to 7.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kreeti/kt-paperclip/releases\"\u003ekt-paperclip's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v7.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix BOM for gd locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/158\"\u003e#158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport versions of aws-sdk-s3 \u0026gt;= 1.197 by conditionally using \u003ccode\u003eAws::S3::TransferManager\u003c/code\u003e if available (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/155\"\u003e#155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix frozen string literal warning in geometry.rb (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFeature - add option to return attachment attributes on destroy (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/91\"\u003e#91\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRuby 3.1 - Fix loading of Fog (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/135\"\u003e#135\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/139\"\u003e#139\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFrench Locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/134\"\u003e#134\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oz-tal\"\u003e\u003ccode\u003e@​oz-tal\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/134\"\u003ekreeti/kt-paperclip#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zz9pzza\"\u003e\u003ccode\u003e@​zz9pzza\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/135\"\u003ekreeti/kt-paperclip#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unijewski\"\u003e\u003ccode\u003e@​unijewski\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/91\"\u003ekreeti/kt-paperclip#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lorennorman\"\u003e\u003ccode\u003e@​lorennorman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/146\"\u003ekreeti/kt-paperclip#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cgunther\"\u003e\u003ccode\u003e@​cgunther\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/151\"\u003ekreeti/kt-paperclip#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jukra\"\u003e\u003ccode\u003e@​jukra\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/155\"\u003ekreeti/kt-paperclip#155\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\"\u003ehttps://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kreeti/kt-paperclip/blob/master/CHANGELOG.md\"\u003ekt-paperclip's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e7.3.0 (2026-01-31)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix BOM for gd locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/158\"\u003ekreeti/kt-paperclip#158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport versions of aws-sdk-s3 \u0026gt;= 1.197 by conditionally using Aws::S3::TransferManager if available (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/155\"\u003ekreeti/kt-paperclip#155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix frozen string literal warning in geometry.rb (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/151\"\u003ekreeti/kt-paperclip#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFeature: Add option to return attachment attributes on destroy (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/91\"\u003ekreeti/kt-paperclip#91\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRuby 3.1: Fix loading of Fog (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/135\"\u003ekreeti/kt-paperclip#135\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/139\"\u003ekreeti/kt-paperclip#139\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFrench Locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/134\"\u003ekreeti/kt-paperclip#134\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/818f236aa6f2323bd0055bea664b33187d926377\"\u003e\u003ccode\u003e818f236\u003c/code\u003e\u003c/a\u003e Deperecate NEWS to OLD-NEWS, see release notes for correct and accurate list ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/a38ed66b5d08210a4326b0d78e2116d0946fa3c2\"\u003e\u003ccode\u003ea38ed66\u003c/code\u003e\u003c/a\u003e prepare for new release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/8820cb221210bf04ca2de278dab594adfa46efe5\"\u003e\u003ccode\u003e8820cb2\u003c/code\u003e\u003c/a\u003e [Fix \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/154\"\u003e#154\u003c/a\u003e] remove BOM from gd locale\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/cd5c4496d12894eafa218cb631c592b67c9c10a2\"\u003e\u003ccode\u003ecd5c449\u003c/code\u003e\u003c/a\u003e Fix S3 TransferManager to use configured client\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/f017c401218da5a1e106ed3dd964b51d601bac5b\"\u003e\u003ccode\u003ef017c40\u003c/code\u003e\u003c/a\u003e Make usage of Aws::S3::TransferManager conditional based on availability\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/233b4756745c2610988796a0059408a50d322b92\"\u003e\u003ccode\u003e233b475\u003c/code\u003e\u003c/a\u003e Support aws-sdk-s3 \u0026gt;= 1.196.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/e20e848c80ce16f18dae2162d5e00be0d9b51421\"\u003e\u003ccode\u003ee20e848\u003c/code\u003e\u003c/a\u003e Fix the use of deprecated methods from \u003ccode\u003eaws-sdk-s3\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/5078ca1c33c8cb66865e6127152ac1e240b2bb0a\"\u003e\u003ccode\u003e5078ca1\u003c/code\u003e\u003c/a\u003e Fix frozen string literal warning in geometry.rb (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/153e7dbe462de4f7f3ef42c67f95390e98e6cba7\"\u003e\u003ccode\u003e153e7db\u003c/code\u003e\u003c/a\u003e fix frozen string literal deprecation warning (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/146\"\u003e#146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/83dc8d92e63e4c360bb9f45af1cf3b63d99bed54\"\u003e\u003ccode\u003e83dc8d9\u003c/code\u003e\u003c/a\u003e Update LICENSE\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `omniauth` from 2.1.3 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/omniauth/omniauth/releases\"\u003eomniauth's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ruby 3.4 to CI by \u003ca href=\"https://github.com/tejasbubane\"\u003e\u003ccode\u003e@​tejasbubane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/omniauth/omniauth/pull/1142\"\u003eomniauth/omniauth#1142\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd after_request_phase callback hook by \u003ca href=\"https://github.com/gerardo-navarro\"\u003e\u003ccode\u003e@​gerardo-navarro\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/omniauth/omniauth/pull/1147\"\u003eomniauth/omniauth#1147\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\"\u003ehttps://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eYou may now configure an after_request_phase callback on your omniauth builder instance. This callback will be run after the request phase before returning the request result.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/20ac5e05a39d58d18aca6419599f7176208f985d\"\u003e\u003ccode\u003e20ac5e0\u003c/code\u003e\u003c/a\u003e 3.1.4 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/3a249afad83e4522bd4761404cbdc89fd56a1079\"\u003e\u003ccode\u003e3a249af\u003c/code\u003e\u003c/a\u003e Add after_request_phase callback hook (\u003ca href=\"https://redirect.github.com/omniauth/omniauth/issues/1147\"\u003e#1147\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/0bcfd5b25bf946422cd4d9c40c4f514121ac04d6\"\u003e\u003ccode\u003e0bcfd5b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/omniauth/omniauth/issues/1142\"\u003e#1142\u003c/a\u003e from tejasbubane/ruby-3.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/09ee92e658878f31ab51f29e02d41296cfe36111\"\u003e\u003ccode\u003e09ee92e\u003c/code\u003e\u003c/a\u003e include cgi in test group due to removal of cookie\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/abfde9072cef0e4d89463daf6185ac68520087f7\"\u003e\u003ccode\u003eabfde90\u003c/code\u003e\u003c/a\u003e add dependency on logger\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/844548c8641d1a3b65c9062e67e073fa8bf39936\"\u003e\u003ccode\u003e844548c\u003c/code\u003e\u003c/a\u003e Add Ruby 3.4 to CI\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `omniauth-google-oauth2` from 1.2.1 to 1.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/releases\"\u003eomniauth-google-oauth2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.2.2\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRuby 4.0 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNothing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUnused \u003ccode\u003eIMAGE_SIZE_REGEXP\u003c/code\u003e constant.\u003c/li\u003e\n\u003cli\u003eDead \u003ccode\u003eskip_friends\u003c/code\u003e and \u003ccode\u003eskip_image_info\u003c/code\u003e options (Google+ was shut down in 2019).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplaced \u003ccode\u003eCGI.parse\u003c/code\u003e with \u003ccode\u003eURI.decode_www_form\u003c/code\u003e for Ruby 4.0 compatibility.\u003c/li\u003e\n\u003cli\u003eUpdated gemspec description to reference OmniAuth instead of OmniAuth 1.x.\u003c/li\u003e\n\u003cli\u003eModernized CI: bumped actions/checkout to v6, rake to 13.3, and rubocop to latest.\u003c/li\u003e\n\u003cli\u003eAdded edge case tests for \u003ccode\u003euid\u003c/code\u003e, \u003ccode\u003estrip_unnecessary_query_parameters\u003c/code\u003e, \u003ccode\u003everify_token\u003c/code\u003e, \u003ccode\u003everify_hd\u003c/code\u003e wildcard, and malformed JSON handling.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/blob/master/CHANGELOG.md\"\u003eomniauth-google-oauth2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.2.2 - 2026-02-23\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRuby 4.0 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNothing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUnused \u003ccode\u003eIMAGE_SIZE_REGEXP\u003c/code\u003e constant.\u003c/li\u003e\n\u003cli\u003eDead \u003ccode\u003eskip_friends\u003c/code\u003e and \u003ccode\u003eskip_image_info\u003c/code\u003e options (Google+ was shut down in 2019).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplaced \u003ccode\u003eCGI.parse\u003c/code\u003e with \u003ccode\u003eURI.decode_www_form\u003c/code\u003e for Ruby 4.0 compatibility.\u003c/li\u003e\n\u003cli\u003eUpdated gemspec description to reference OmniAuth instead of OmniAuth 1.x.\u003c/li\u003e\n\u003cli\u003eModernized CI: bumped actions/checkout to v6, rake to 13.3, and rubocop to latest.\u003c/li\u003e\n\u003cli\u003eAdded edge case tests for \u003ccode\u003euid\u003c/code\u003e, \u003ccode\u003estrip_unnecessary_query_parameters\u003c/code\u003e, \u003ccode\u003everify_token\u003c/code\u003e, \u003ccode\u003everify_hd\u003c/code\u003e wildcard, and malformed JSON handling.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/5158faa94a620d8ec4d9ce400aabfef3a3844dd9\"\u003e\u003ccode\u003e5158faa\u003c/code\u003e\u003c/a\u003e Add release date to CHANGELOG.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/c5f46005e0207d2e436cf0db37c85170cca04da7\"\u003e\u003ccode\u003ec5f4600\u003c/code\u003e\u003c/a\u003e Update docs and examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/4c14af8e1e6dc2615da908c50e4b0b757972922e\"\u003e\u003ccode\u003e4c14af8\u003c/code\u003e\u003c/a\u003e Backfill missing tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/e66d0bbe6ad91f9f5a60056dae2ebf850373f249\"\u003e\u003ccode\u003ee66d0bb\u003c/code\u003e\u003c/a\u003e Clean up dead code, modernize CI, and prep 1.2.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/b902e8e7585e8e3610040d9c770f2d4e90b6f132\"\u003e\u003ccode\u003eb902e8e\u003c/code\u003e\u003c/a\u003e Modernize CI: bump rubocop, checkout action, and tooling defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/ac9a979db8ee097971d5d70c12142070c539d8ab\"\u003e\u003ccode\u003eac9a979\u003c/code\u003e\u003c/a\u003e Add Ruby 4.0 to CI (\u003ca href=\"https://redirect.github.com/zquestz/omniauth-google-oauth2/issues/474\"\u003e#474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/d3f1c912e438ccf6aba577c66772bf2e37373d73\"\u003e\u003ccode\u003ed3f1c91\u003c/code\u003e\u003c/a\u003e Add GitHub pages config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/253f023cdd8a5d5e05b3fed9aa00ae478a6c2997\"\u003e\u003ccode\u003e253f023\u003c/code\u003e\u003c/a\u003e Remove calendar scope on example app\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/baaf3b755ea1a02c9f811fd513b0fe90fdd2defb\"\u003e\u003ccode\u003ebaaf3b7\u003c/code\u003e\u003c/a\u003e chore(doc): update JavaScript example in README (\u003ca href=\"https://redirect.github.com/zquestz/omniauth-google-oauth2/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/dcea9d208416b53af0956d95ce54daa424d36490\"\u003e\u003ccode\u003edcea9d2\u003c/code\u003e\u003c/a\u003e Add Ruby 3.3 and 3.4 to CI matrix\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/compare/v1.2.1...v1.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rails` from 8.0.5 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003erails's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/e91694b1f0e176eb01bfcc480a008bffc70f7602\"\u003e\u003ccode\u003ee91694b\u003c/code\u003e\u003c/a\u003e Update CHANGELOG (8.1 only)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63f5ad83edaa0b976f82d46988d745426aa4a42d\"\u003e\u003ccode\u003e63f5ad8\u003c/code\u003e\u003c/a\u003e Skip blank attribute names in Action View tag helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8c9676b803820110548cdb7523800db43bc6874c\"\u003e\u003ccode\u003e8c9676b\u003c/code\u003e\u003c/a\u003e Prevent glob injection in ActiveStorage DiskService#delete_prefixed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/9b06fbc0f504b8afe333f33d19548f3b85fbe655\"\u003e\u003ccode\u003e9b06fbc\u003c/code\u003e\u003c/a\u003e Prevent path traversal in ActiveStorage DiskService\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ec1a0e215efd27a3b3911aae6df978a80f456a49\"\u003e\u003ccode\u003eec1a0e2\u003c/code\u003e\u003c/a\u003e Improve performance of NumberToDelimitedConverter\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v8.0.5...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `terser` from 1.2.6 to 1.2.7\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ahorek/terser-ruby/blob/master/CHANGELOG.md\"\u003eterser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.2.7 (23 March 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadded a new module option to enable minification of ES6 modules (default is false)\u003c/li\u003e\n\u003cli\u003eupdate TerserJS to [5.46.1]\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/14243401aadac062e738fde86525f261c37b1782\"\u003e\u003ccode\u003e1424340\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ahorek/terser-ruby/issues/67\"\u003e#67\u003c/a\u003e from ahorek/terser5461\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/ae1669dba36b571932a25685765932103db89189\"\u003e\u003ccode\u003eae1669d\u003c/code\u003e\u003c/a\u003e terser 5.46.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/c8b1c3213847dfeb85e1769958ecf9753651e697\"\u003e\u003ccode\u003ec8b1c32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ahorek/terser-ruby/issues/64\"\u003e#64\u003c/a\u003e from ahorek/module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/3a614841138d5c1dcf79d6362e22ad5b0a0b19f3\"\u003e\u003ccode\u003e3a61484\u003c/code\u003e\u003c/a\u003e add a module option\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ahorek/terser-ruby/compare/1.2.6...1.2.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jbuilder` from 2.14.1 to 2.15.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/jbuilder/releases\"\u003ejbuilder's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.15.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize \u003ccode\u003eKeyFormatter\u003c/code\u003e on cache hits by \u003ca href=\"https://github.com/moberegger\"\u003e\u003ccode\u003e@​moberegger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/607\"\u003erails/jbuilder#607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake method_missing private by \u003ca href=\"https://github.com/alexceder\"\u003e\u003ccode\u003e@​alexceder\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/614\"\u003erails/jbuilder#614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOptimize \u003ccode\u003earray!\u003c/code\u003e and \u003ccode\u003eset!\u003c/code\u003e by \u003ca href=\"https://github.com/moberegger\"\u003e\u003ccode\u003e@​moberegger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/604\"\u003erails/jbuilder#604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003e:unprocessable_content\u003c/code\u003e for scaffolds with Rack 3.1 or higher by \u003ca href=\"https://github.com/taketo1113\"\u003e\u003ccode\u003e@​taketo1113\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/603\"\u003erails/jbuilder#603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOptimize \u003ccode\u003e_map_collection\u003c/code\u003e by \u003ca href=\"https://github.com/moberegger\"\u003e\u003ccode\u003e@​moberegger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/612\"\u003erails/jbuilder#612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Preserve locals when rendering inline partial for object by \u003ca href=\"https://github.com/moberegger\"\u003e\u003ccode\u003e@​moberegger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/613\"\u003erails/jbuilder#613\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mayur-kambariya\"\u003e\u003ccode\u003e@​mayur-kambariya\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/609\"\u003erails/jbuilder#609\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexceder\"\u003e\u003ccode\u003e@​alexceder\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/614\"\u003erails/jbuilder#614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/taketo1113\"\u003e\u003ccode\u003e@​taketo1113\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/603\"\u003erails/jbuilder#603\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/jbuilder/compare/v2.14.1...v2.15.0\"\u003ehttps://github.com/rails/jbuilder/compare/v2.14.1...v2.15.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/018083d55f933c2a1d58929600799724462476e6\"\u003e\u003ccode\u003e018083d\u003c/code\u003e\u003c/a\u003e Prepare for 2.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/72cf0673f5f8428dad00cf09c07e1aac0d6f3e17\"\u003e\u003ccode\u003e72cf067\u003c/code\u003e\u003c/a\u003e Update devcontainer image to Ruby 4.0.4 and add devcontainer-lock.json\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/d35a962709bc0ccc157a9d42f3f428e7aeee687a\"\u003e\u003ccode\u003ed35a962\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jbuilder/issues/615\"\u003e#615\u003c/a\u003e from taketo1113/ci-rails8.1-ruby4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/cc42e7eb979116e37b63cb29ba5e86d4785f2153\"\u003e\u003ccode\u003ecc42e7e\u003c/code\u003e\u003c/a\u003e CI: Add Rails 8.1 \u0026amp; Ruby 4.0 to CI Matrix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/cd7482eebb69bc194587af056aef700291032570\"\u003e\u003ccode\u003ecd7482e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jbuilder/issues/613\"\u003e#613\u003c/a\u003e from affinity/moberegger/fix-inline-partial-locals-be\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/58283a0cbf73fc46753a39c09933b5adc5f9e011\"\u003e\u003ccode\u003e58283a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jbuilder/issues/612\"\u003e#612\u003c/a\u003e from affinity/moberegger/optimize-_map_collection\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/09ca3e12cb603ea27af8c6057c2a38a76fde3ac7\"\u003e\u003ccode\u003e09ca3e1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jbuilder/issues/603\"\u003e#603\u003c/a\u003e from taketo1113/update-rack-unprocessable_content\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/9a921d3b816cd4d858c9aba05c5f30fa9db70e3d\"\u003e\u003ccode\u003e9a921d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jbuilder/issues/604\"\u003e#604\u003c/a\u003e from affinity/moberegger/optimize-set-and-array-dsl\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/363c3c8d850ba8ff198c05131217fcfb026d0c0a\"\u003e\u003ccode\u003e363c3c8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jbuilder/issues/614\"\u003e#614\u003c/a\u003e from alexceder/make-method-missing-private\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/26c236c9353f28b1ac9a5438dea34fcd340c6b6f\"\u003e\u003ccode\u003e26c236c\u003c/code\u003e\u003c/a\u003e Make method_missing private\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/jbuilder/compare/v2.14.1...v2.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `devise` from 5.0.3 to 5.0.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/heartcombo/devise/releases\"\u003edevise's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.0.4\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/heartcombo/devise/blob/v5.0.4/CHANGELOG.md#504---2026-05-08\"\u003ehttps://github.com/heartcombo/devise/blob/v5.0.4/CHANGELOG.md#504---2026-05-08\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/heartcombo/devise/blob/main/CHANGELOG.md\"\u003edevise's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e5.0.4 - 2026-05-08\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esecurity fixes\n\u003cul\u003e\n\u003cli\u003eFix open redirect in \u003ccode\u003eFailureApp\u003c/code\u003e via unvalidated \u003ccode\u003eReferer\u003c/code\u003e header on non-GET session timeout. CVE-2026-40295 \u003ca href=\"https://github.com/heartcombo/devise/security/advisories/GHSA-jp94-3292-c3xv\"\u003eGHSA-jp94-3292-c3xv\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heartcombo/devise/commit/9ea459de9aec5f1217ad738c58e0d23fb9f5beaa\"\u003e\u003ccode\u003e9ea459d\u003c/code\u003e\u003c/a\u003e Release v5.0.4 with sec fix for timeoutable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heartcombo/devise/commit/025fe2124f9928766fc46520e999633b598d0360\"\u003e\u003ccode\u003e025fe21\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heartcombo/devise/commit/7ca7ed9c174525a4d36167441b35af4a0991b6af\"\u003e\u003ccode\u003e7ca7ed9\u003c/code\u003e\u003c/a\u003e Add GHSA link to the v5.0.3 sec fix changelog entry [ci skip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heartcombo/devise/commit/605de86174c26b9f5b2618470249db2c225327d4\"\u003e\u003ccode\u003e605de86\u003c/code\u003e\u003c/a\u003e Update links to https [ci skip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heartcombo/devise/commit/5e3a8bf3a01cc556185dbde47ecf3bb20c41b150\"\u003e\u003ccode\u003e5e3a8bf\u003c/code\u003e\u003c/a\u003e Bundle update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heartcombo/devise/commit/5d202775d75ccee8c36a9ed72062f627202e29e2\"\u003e\u003ccode\u003e5d20277\u003c/code\u003e\u003c/a\u003e Cleanup old Rails.version check for db migration path\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heartcombo/devise/commit/4ffb0b7e88b627ac0575e475b279e0cc474b4ded\"\u003e\u003ccode\u003e4ffb0b7\u003c/code\u003e\u003c/a\u003e Fix Gemfile for Rails 7.2, incorrectly testing against 7.1\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/heartcombo/devise/compare/v5.0.3...v5.0.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jquery-rails` from 4.6.0 to 4.6.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md\"\u003ejquery-rails's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.7.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/034296045427fa54ad095f392fccd9ff5708e110\"\u003e\u003ccode\u003e0342960\u003c/code\u003e\u003c/a\u003e Release v4.6.1 with jQuery v3.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/039b12e91c148d65789030308653545943db43a4\"\u003e\u003ccode\u003e039b12e\u003c/code\u003e\u003c/a\u003e Update jquery to v3.7.1 (\u003ca href=\"https://redirect.github.com/rails/jquery-rails/issues/305\"\u003e#305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/jquery-rails/compare/v4.6.0...v4.6.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sidekiq` from 8.0.7 to 8.1.5\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sidekiq/sidekiq/blob/main/Changes.md\"\u003esidekiq's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eIdentify Sidekiq connnections in Redis with \u003ccode\u003eCLIENT SETINFO\u003c/code\u003e \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6986\"\u003e#6986\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix edge case where Web UI could show an empty Batch set \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6987\"\u003e#6987\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe TTIN signal is undeprecated as the INFO signal is not supported on Linux\u003c/li\u003e\n\u003cli\u003eShow iteration job state on Busy page \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6978\"\u003e#6978\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix edge case leading to duplicate, concurrent execution \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6379\"\u003e#6379\u003c/a\u003e\nIf 2 Capsules process jobs from the same queue, long-running\njobs could run in parallel during process shutdown.\u003c/li\u003e\n\u003cli\u003e[SECURITY] Remove as much YAML usage as possible. \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6950\"\u003e#6950\u003c/a\u003e\nLocalization files in \u003ccode\u003eweb/locales\u003c/code\u003e are now manually parsed.\nSidekiq::CLI will now only require YAML if you use a \u003ccode\u003e-C\u003c/code\u003e .yml file.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eInitial release for \u003ccode\u003ekiq\u003c/code\u003e, Sidekiq's official terminal UI:\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003ebundle exec kiq\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eUse REDIS_URL or REDIS_PROVIDER to point \u003ccode\u003ekiq\u003c/code\u003e to Redis.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eMutation during iteration in \u003ccode\u003eSortedSet#each\u003c/code\u003e caused it to miss half of the jobs \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6936\"\u003e#6936\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix edge case resulting in nil crash on /busy page \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6954\"\u003e#6954\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDEPRECATION\u003c/strong\u003e \u003ccode\u003erequire 'sidekiq/testing'\u003c/code\u003e and\n\u003ccode\u003erequire 'sidekiq/testing/inline'\u003c/code\u003e.\nAdd new \u003ccode\u003eSidekiq.testing!(mode)\u003c/code\u003e API \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6931\"\u003e#6931\u003c/a\u003e\nRequiring code should not enable process-wide changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003e# Old, implicit\nrequire \u0026quot;sidekiq/testing\u0026quot;\nrequire \u0026quot;sidekiq/testing/inline\u0026quot;\n# New, more explicit\nSidekiq.testing!(:fake)\nSidekiq.testing!(:inline)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eFix race condition with Stop button in UI \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6935\"\u003e#6935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix javascript error handler \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6893\"\u003e#6893\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/5c049c585a2eb4c91b1a163589d72465e99aad7e\"\u003e\u003ccode\u003e5c049c5\u003c/code\u003e\u003c/a\u003e changes [ciskip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/0bafeb1084b9c7a5edcf0bc507108b4603682597\"\u003e\u003ccode\u003e0bafeb1\u003c/code\u003e\u003c/a\u003e bump, release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/2a4eec2dd323adb32f333b4416ca167bf4b83a92\"\u003e\u003ccode\u003e2a4eec2\u003c/code\u003e\u003c/a\u003e Identify Sidekiq connections via CLIENT SETINFO (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6986\"\u003e#6986\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/6bdf6903e93eeaf9b96fcbbe66f503fe758ee4b2\"\u003e\u003ccode\u003e6bdf690\u003c/code\u003e\u003c/a\u003e Fix: don't cache \u0026quot;none\u0026quot; type in Paginator::TYPE_CACHE (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6987\"\u003e#6987\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/28b37b722c58d89593620c3733d3dcd87f6e6e08\"\u003e\u003ccode\u003e28b37b7\u003c/code\u003e\u003c/a\u003e release [ciskip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/4d0adda70769168a675bb260d2790d76f6849188\"\u003e\u003ccode\u003e4d0adda\u003c/code\u003e\u003c/a\u003e fmt, bump\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/906fb6837a2b42a5330b3748bdb4007ec06666ff\"\u003e\u003ccode\u003e906fb68\u003c/code\u003e\u003c/a\u003e sidekiq changes [ciskip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/92924ab48a80cf31148fd7ab4cd2e561d5bf823a\"\u003e\u003ccode\u003e92924ab\u003c/code\u003e\u003c/a\u003e ent changes [ciskip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/c6bd7b89e9bb825bc9c4969712828ef88b6d84bc\"\u003e\u003ccode\u003ec6bd7b8\u003c/code\u003e\u003c/a\u003e Add new keys to gd translation (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6984\"\u003e#6984\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/29542380a69b23453f7e6e429ef96fe5fd62e3c9\"\u003e\u003ccode\u003e2954238\u003c/code\u003e\u003c/a\u003e tui: implement locale-aware number_with_delimiter (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6983\"\u003e#6983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sidekiq/sidekiq/compare/v8.0.7...v8.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `geocoder` from 1.8.5 to 1.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alexreisner/geocoder/blob/master/CHANGELOG.md\"\u003egeocoder's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.8.6 (2025 Sep 21)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for IPInfo Lite lookup (thanks github.com/iltempo).\u003c/li\u003e\n\u003cli\u003eVarious minor fixes and improvements.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/d3515db46c5785db8cd48dbf94af123a2c99b8a9\"\u003e\u003ccode\u003ed3515db\u003c/code\u003e\u003c/a\u003e Prepare for release of gem version 1.8.6.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/737d16f277f81aabe73e2dfe466e2ba84fef188a\"\u003e\u003ccode\u003e737d16f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1694\"\u003e#1694\u003c/a\u003e from Intrepidd/update-data-gouv-fr-domain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/4b50c085eea4de4f453eab2e8dc6faf7b3824420\"\u003e\u003ccode\u003e4b50c08\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1695\"\u003e#1695\u003c/a\u003e from cprodhomme/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/31545ee756f1230a063e86458b3dadbac9b7e7b4\"\u003e\u003ccode\u003e31545ee\u003c/code\u003e\u003c/a\u003e Update README_API_GUIDE.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/3a90b5aa6c708945cf181f16a182ca232f668c4d\"\u003e\u003ccode\u003e3a90b5a\u003c/code\u003e\u003c/a\u003e Update BAN domain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/b2c0aa5526f90209883e3ca64b73d9559d21f729\"\u003e\u003ccode\u003eb2c0aa5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1691\"\u003e#1691\u003c/a\u003e from TheRusskiy/radius-column-arel\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/cd58cab7fd167d641927fe4a083963fcf5cd08df\"\u003e\u003ccode\u003ecd58cab\u003c/code\u003e\u003c/a\u003e add \u0026quot;arel\u0026quot; to near_test spec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/63ca4702ccffe776b146c28d289f7449d25946ee\"\u003e\u003ccode\u003e63ca470\u003c/code\u003e\u003c/a\u003e radius column can be an instance of Arel.sql\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/eaf85fe4de045c2ad3e035f560d6755e82646bee\"\u003e\u003ccode\u003eeaf85fe\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1688\"\u003e#1688\u003c/a\u003e from skillstopractice/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/00369bb35a29a86f54e6fea516ecf9842e5f855f\"\u003e\u003ccode\u003e00369bb\u003c/code\u003e\u003c/a\u003e Update tests to use data['place_name'] for Mapbox\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexreisner/geocoder/compare/v1.8.5...v1.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `pundit` from 2.5.0 to 2.5.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/varvet/pundit/blob/main/CHANGELOG.md\"\u003epundit's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.5.2 (2025-09-24)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003econfig/rubocop-rspec.yml\u003c/code\u003e back from accidentally being excluded \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/866\"\u003e#866\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.5.1 (2025-09-12)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRequiring only \u003ccode\u003epundit/rspec\u003c/code\u003e no longer raises an error in Active Support \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/857\"\u003e#857\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/2d665d67a26f794987df926e49676948fe115289\"\u003e\u003ccode\u003e2d665d6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/867\"\u003e#867\u003c/a\u003e from varvet/kbs/release-v2.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/7ff48a83790aef27bd89fa4da6a0a238599bca2d\"\u003e\u003ccode\u003e7ff48a8\u003c/code\u003e\u003c/a\u003e Bump to v2.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/674abac197c7ecc000fd25a4542344d38c998535\"\u003e\u003ccode\u003e674abac\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/866\"\u003e#866\u003c/a\u003e from varvet/kbs/add-rubocop-back\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/923eebf39ccd6f8095a5c4270953e7a19d6d16a6\"\u003e\u003ccode\u003e923eebf\u003c/code\u003e\u003c/a\u003e Point changelog to PR\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/47668502881e3abed7dd004ca19fa11d66b23b6f\"\u003e\u003ccode\u003e4766850\u003c/code\u003e\u003c/a\u003e Add rubocop config file back to gem release files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/27a840bedadf0ef3d66f1857edd966c2e01cc18e\"\u003e\u003ccode\u003e27a840b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/863\"\u003e#863\u003c/a\u003e from varvet/kbs/fix-build-pipeline\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/381b202dd2e11c5eb0ea1134d29f85331a01d643\"\u003e\u003ccode\u003e381b202\u003c/code\u003e\u003c/a\u003e +3.4 -3.1 (EOL)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/4bb6a67819572bd9431d30048fbab4c9685cfbf2\"\u003e\u003ccode\u003e4bb6a67\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/862\"\u003e#862\u003c/a\u003e from varvet/kbs/fix-build-pipeline\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/6ceca0d2ab84d2240e6422e7b14d208ad10e3304\"\u003e\u003ccode\u003e6ceca0d\u003c/code\u003e\u003c/a\u003e Attempt code quality upload to qlty.sh instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/82d918a4c4c4ab393f662a32e94028d6b086285d\"\u003e\u003ccode\u003e82d918a\u003c/code\u003e\u003c/a\u003e Bump to v2.5.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/varvet/pundit/compare/v2.5.0...v2.5.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ahoy_matey` from 5.4.0 to 5.5.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ankane/ahoy/blob/master/CHANGELOG.md\"\u003eahoy_matey's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.5.0 (2026-04-08)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed error with \u003ccode\u003eAhoy::Tracker\u003c/code\u003e outside of requests\u003c/li\u003e\n\u003cli\u003eDropped support for Ruby \u0026lt; 3.3 and Rails \u0026lt; 7.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.4.2 (2026-03-31)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed cookie deletion with \u003ccode\u003ecookie_domain\u003c/code\u003e and \u003ccode\u003ecookie_options\u003c/code\u003e options\u003c/li\u003e\n\u003cli\u003eUpdated Ahoy.js to 0.4.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.4.1 (2025-09-30)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed deprecation warning with Rack 3.1+\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/0934ed94a4a7263f682eefb47bd78cdc05d33c5d\"\u003e\u003ccode\u003e0934ed9\u003c/code\u003e\u003c/a\u003e Version bump to 5.5.0 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/1881c47e52d10deb1989964acf9809531a937aaf\"\u003e\u003ccode\u003e1881c47\u003c/code\u003e\u003c/a\u003e Updated changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/bb10d30342311ccb8cfc4279555189d56129f6ce\"\u003e\u003ccode\u003ebb10d30\u003c/code\u003e\u003c/a\u003e Fixed error with Ahoy::Tracker outside of request when cookies disabled - res...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/3b4e45fde58880d4432e1a5ab8dfadd41d617117\"\u003e\u003ccode\u003e3b4e45f\u003c/code\u003e\u003c/a\u003e Dropped support for Ruby \u0026lt; 3.3 and Rails \u0026lt; 7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/41d7834a3af1553d8cf890cf231e4fdb53c196d9\"\u003e\u003ccode\u003e41d7834\u003c/code\u003e\u003c/a\u003e Updated readme [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/2186f3857f702c6c5fa3e0d80310d852de2cc8f0\"\u003e\u003ccode\u003e2186f38\u003c/code\u003e\u003c/a\u003e Updated license year [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/eed4fdad924261f9f57b87032e760a06fd4dcd05\"\u003e\u003ccode\u003eeed4fda\u003c/code\u003e\u003c/a\u003e Version bump to 5.4.2 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/f73c04e68fe8b884140cd659acee170224b19ec3\"\u003e\u003ccode\u003ef73c04e\u003c/code\u003e\u003c/a\u003e Updated changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/7c50688aa1e4d56545be421a9427c36c51476383\"\u003e\u003ccode\u003e7c50688\u003c/code\u003e\u003c/a\u003e Fixed cookie deletion with path option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/5a801f44d8bd5e1ab6f8e9f8923f8ef39eaa6e75\"\u003e\u003ccode\u003e5a801f4\u003c/code\u003e\u003c/a\u003e Fixed cookie deletion with cookie_domain option - fixes \u003ca href=\"https://redirect.github.com/ankane/ahoy/issues/581\"\u003e#581\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ankane/ahoy/compare/v5.4.0...v5.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `i18n-js` from 4.2.3 to 4.2.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fnando/i18n-js/blob/main/CHANGELOG.md\"\u003ei18n-js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/f8fb0dc0b01e7e639a6eb5dd875adbaa78858d8f\"\u003e\u003ccode\u003ef8fb0dc\u003c/code\u003e\u003c/a\u003e Bump up version (4.2.4).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/2cbea21df1ac16685a4e974716296853eccc0d49\"\u003e\u003ccode\u003e2cbea21\u003c/code\u003e\u003c/a\u003e Remove benchmark gem (\u003ca href=\"https://redirect.github.com/fnando/i18n-js/issues/737\"\u003e#737\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/9f99172d197b586dab34f4cf6a08a1df9703222f\"\u003e\u003ccode\u003e9f99172\u003c/code\u003e\u003c/a\u003e Update matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/9096c6e63bbbc24900bb10cfd0d42b6a89470c1c\"\u003e\u003ccode\u003e9096c6e\u003c/code\u003e\u003c/a\u003e Fix rubocop warnings.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/237b69b34f73873c2a3c753c45b208e670d15a31\"\u003e\u003ccode\u003e237b69b\u003c/code\u003e\u003c/a\u003e Update --quiet param description (\u003ca href=\"https://redirect.github.com/fnando/i18n-js/issues/730\"\u003e#730\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/1f3305ffa531614de22070ec3a0acbb592902636\"\u003e\u003ccode\u003e1f3305f\u003c/code\u003e\u003c/a\u003e Update action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/674cb0781bdba259e7a25fcd2df6f8dd21dc5276\"\u003e\u003ccode\u003e674cb07\u003c/code\u003e\u003c/a\u003e Fix rubocop warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/877e6f1de96126021cce39f802377ffeead79ff4\"\u003e\u003ccode\u003e877e6f1\u003c/code\u003e\u003c/a\u003e Update actions.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/7e27159f535643bc3080dce132a5ae953c4034ea\"\u003e\u003ccode\u003e7e27159\u003c/code\u003e\u003c/a\u003e Require ruby 3.2+.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/58c32fdc576a499eb2433bd9d633d537f8a696d8\"\u003e\u003ccode\u003e58c32fd\u003c/code\u003e\u003c/a\u003e Disable rubocop rule.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fnando/i18n-js/compare/v4.2.3...v4.2.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `pg` from 1.6.1 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ged/ruby-pg/blob/master/CHANGELOG.md\"\u003epg's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.3 [2025-12-29] Lars Kanis \u003ca href=\"mailto:lars@greiz-reinsdorf.de\"\u003elars@greiz-reinsdorf.de\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003eAdded:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd binary gems for ruby-4.0, now providing ruby-3.0 to 4.0. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/682\"\u003e#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate fat binary gem to OpenSSL-3.6.0 and PostgreSQL-18.1.\u003c/li\u003e\n\u003cli\u003eImprove documentation of PG::Result and README. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/676\"\u003e#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate errorcodes to PostgreSQL-18.\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003erb_hash_new_capa\u003c/code\u003e on Ruby-3.2+ . \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/674\"\u003e#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeny any server communication on a frozen PG::Connection . \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/677\"\u003e#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix possible race condition in PG::Result in Ractor context. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/674\"\u003e#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop binary gem support for platform \u003ccode\u003ex86-mingw32\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/682\"\u003e#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop binary gems for ruby-2.7.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.2 [2025-09-02] Lars Kanis \u003ca href=\"mailto:lars@greiz-reinsdorf.de\"\u003elars@greiz-reinsdorf.de\u003c/a\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove several absolute paths from native binaries which pointed to build directories. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/668\"\u003e#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix bad fallback path to \u003ccode\u003epg_service.conf\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/666\"\u003e#666\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003erbpg_\u003c/code\u003e prefix for \u003ccode\u003ebase64_*\u003c/code\u003e functions to avoid name clashes with functions provided by other libraries like Heimdal on Macos. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/667\"\u003e#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRaise a more descriptive error message in case of \u003ccode\u003epg_ext\u003c/code\u003e LoadError. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/664\"\u003e#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFreeze some constants to make them available in a Ractor context. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/660\"\u003e#660\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSeveral documentation improvements.\u003c/li\u003e\n\u003cli\u003eUpdate native binary gems to OpenSSL-3.5.2, krb5-1.22.1 and PostgreSQL-17.6.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/d4539c25dcc89d47088e1423f8d1915c041920f5\"\u003e\u003ccode\u003ed4539c2\u003c/code\u003e\u003c/a\u003e Bump VERSION to pg-1.6.3 and add release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/720900dbb9d16aa855793146f15c3772e14f627a\"\u003e\u003ccode\u003e720900d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ged/ruby-pg/issues/682\"\u003e#682\u003c/a\u003e from larskanis/ruby-4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/f605b5937093884089109c8baa5fe268fc513eaf\"\u003e\u003ccode\u003ef605b59\u003c/code\u003e\u003c/a\u003e Remove x86-mingw32 from binary builds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/5c690006ba158da70d73d939a233cf75ecdd30ef\"\u003e\u003ccode\u003e5c69000\u003c/code\u003e\u003c/a\u003e Update to ruby-4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/2acaf3d0f76334e056229efe260e1f558a8c6b42\"\u003e\u003ccode\u003e2acaf3d\u003c/code\u003e\u003c/a\u003e CI: workaround missing ruby-4.0 on Window\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/b500ded81127963603e1f724e82bed649c9ca8a1\"\u003e\u003ccode\u003eb500ded\u003c/code\u003e\u003c/a\u003e fix comment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/bc3f2f8b1110e9bcb225d65554e1a7fc842d0506\"\u003e\u003ccode\u003ebc3f2f8\u003c/code\u003e\u003c/a\u003e CI: Macos-13 on Intel is deprecated\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/77667eb4313bd7b79356f402b0fa7fba409483b8\"\u003e\u003ccode\u003e77667eb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ged/ruby-pg/issues/678\"\u003e#678\u003c/a\u003e from larskanis/ci-update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/6e52ce504d05c5359d55f45d9580672103263b54\"\u003e\u003ccode\u003e6e52ce5\u003c/code\u003e\u003c/a\u003e CI: Update PostgreSQL on Macos\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/6d40f50e51a037022495fe6d98181435652464ff\"\u003e\u003ccode\u003e6d40f50\u003c/code\u003e\u003c/a\u003e CI: Print mkmf.log on failure on Macos\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ged/ruby-pg/compare/v1.6.1...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bootsnap` from 1.18.6 to 1.24.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/bootsnap/releases\"\u003ebootsnap's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.24.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix several compatibility issues with Ruby \u003ccode\u003e4.0.4\u003c/code\u003e, particularly the \u003ccode\u003eshould not compile with coverage\u003c/code\u003e error. See \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/547\"\u003e#547\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eBootsnap.enable_frozen_string_literal\u003c/code\u003e to work even when coverage is enabled. Unfortunately only possible on Ruby \u003ccode\u003e4.0.4+\u003c/code\u003e.\nOn older rubies if coverage is enabled a warning will be issued and the feature won't work.\u003c/li\u003e\n\u003cli\u003eReduced cache files header size from 64 to 32 bytes, and got rid of the random padding element.\u003c/li\u003e\n\u003cli\u003eAvoid leaking a private method in \u003ccode\u003eObject\u003c/code\u003e when testing for Parse.y bugs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.24.3...v1.24.4\"\u003ehttps://github.com/rails/bootsnap/compare/v1.24.3...v1.24.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.24.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix the \u003ccode\u003e1.24.2\u003c/code\u003e workaround to parse Ruby files with UTF-8 even when the \u003ccode\u003eLANG\u003c/code\u003e environment variable\nis unset or set to \u003ccode\u003eC\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.24.2...v1.24.3\"\u003ehttps://github.com/rails/bootsnap/compare/v1.24.2...v1.24.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.24.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWorkaround two Ruby bugs in \u003ccode\u003eRubyVM::InstructionSequence.compile_file\u003c/code\u003e, that were causing\nfiles to be loaded with the old Ruby parser instead of Prism, causing issues with some pattern matching syntax.\nRef: \u003ca href=\"https://bugs.ruby-lang.org/issues/22023\"\u003ehttps://bugs.ruby-lang.org/issues/22023\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.24.1...v1.24.2\"\u003ehttps://github.com/rails/bootsnap/compare/v1.24.1...v1.24.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.24.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix encoding of Ruby source files loaded when \u003ccode\u003eBOOTSNAP_READONLY\u003c/code\u003e is set.\nFiles would incorectly be loaded in \u003ccode\u003eASCII-8BIT\u003c/code\u003e causing literal strings outside\nthe pure ASCII range to have \u003ccode\u003eASCII-8BIT\u003c/code\u003e encoding instead of \u003ccode\u003eUTF-8\u003c/code\u003e.\nThis bug was introduced in \u003ccode\u003e1.24.0\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.24.0...v1.24.1\"\u003ehttps://github.com/rails/bootsnap/compare/v1.24.0...v1.24.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.24.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded a hook API to customize Ruby compilation.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.23.0...v1.24.0\"\u003ehttps://github.com/rails/bootsnap/compare/v1.23.0...v1.24.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.23.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Ruby 2.7.\u003c/li\u003e\n\u003cli\u003eFix support for absolute paths in \u003ccode\u003eBOOTSNAP_IGNORE_DIRECTORIES\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/bootsnap/blob/main/CHANGELOG.md\"\u003ebootsnap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.24.4\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix several compatibility issues with Ruby \u003ccode\u003e4.0.4\u003c/code\u003e, particularly the \u003ccode\u003eshould not compile with coverage\u003c/code\u003e error. See \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/547\"\u003e#547\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eBootsnap.enable_frozen_string_literal\u003c/code\u003e to work even when coverage is enabled. Unfortunately only possible on Ruby \u003ccode\u003e4.0.4+\u003c/code\u003e.\nOn older rubies if coverage is enabled a warning will be issued and the feature won't work.\u003c/li\u003e\n\u003cli\u003eReduced cache files header size from 64 to 32 bytes, and got rid of the random padding element.\u003c/li\u003e\n\u003cli\u003eAvoid leaking a private method in \u003ccode\u003eObject\u003c/code\u003e when testing for Parse.y bugs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.24.3\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix the \u003ccode\u003e1.24.2\u003c/code\u003e workaround to parse Ruby files with UTF-8 even when the \u003ccode\u003eLANG\u003c/code\u003e environment variable\nis unset or set to \u003ccode\u003eC\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.24.2\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eWorkaround two Ruby bugs in \u003ccode\u003eRubyVM::InstructionSequence.compile_file\u003c/code\u003e, that were causing\nfiles to be loaded with the old Ruby parser instead of Prism, causing issues with some pattern matching syntax.\nRef: \u003ca href=\"https://bugs.ruby-lang.org/issues/22023\"\u003ehttps://bugs.ruby-lang.org/issues/22023\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.24.1\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix encoding of Ruby source files loaded when \u003ccode\u003eBOOTSNAP_READONLY\u003c/code\u003e is set.\nFiles would incorectly be loaded in \u003ccode\u003eASCII-8BIT\u003c/code\u003e causing literal strings outside\nthe pure ASCII range to have \u003ccode\u003eASCII-8BIT\u003c/code\u003e encoding instead of \u003ccode\u003eUTF-8\u003c/code\u003e.\nThis bug was introduced in \u003ccode\u003e1.24.0\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.24.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eAdded a hook API to customize Ruby compilation.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.23.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Ruby 2.7.\u003c/li\u003e\n\u003cli\u003eFix support for absolute paths in \u003ccode\u003eBOOTSNAP_IGNORE_DIRECTORIES\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.22.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBetter fix for the \u003ccode\u003eopendir\u003c/code\u003e crash.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ebootsnap/rake\u003c/code\u003e for cleaning the bootsnap cache as part of \u003ccode\u003erake clobber\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.21.1\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent a Ruby crash while scanning load path if \u003ccode\u003eopendir\u003c/code\u003e fails without setting \u003ccode\u003eerrno\u003c/code\u003e.\nAccording to the C spec this should not happen, but according to user reports, it did.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.21.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix the \u003ccode\u003erequire\u003c/code\u003e decorator to handle \u003ccode\u003eBootsnap.unload_cache!\u003c/code\u003e being called.\u003c/li\u003e\n\u003cli\u003eMinor optimization: Eagerly clear cache buffers to appease the GC.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/0d8a0a64cd1f302a4cbb29088fff7847ef9852c8\"\u003e\u003ccode\u003e0d8a0a6\u003c/code\u003e\u003c/a\u003e Release 1.24.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/6ccc5ebda794afe4e2b36be677640b4f7b6a03ac\"\u003e\u003ccode\u003e6ccc5eb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/550\"\u003e#550\u003c/a\u003e from byroot/fstr-and-coverage\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/86e95864f89067159dadb8be68b656ae1a5f38ea\"\u003e\u003ccode\u003e86e9586\u003c/code\u003e\u003c/a\u003e Make \u003ccode\u003eBootsnap.enable_frozen_string_literal\u003c/code\u003e work even with coverage on\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/36c22246259452d163986565f7a946154f742da7\"\u003e\u003ccode\u003e36c2224\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/549\"\u003e#549\u003c/a\u003e from byroot/integration-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/6500a43b2ac7fda963f03ed62098fb3b2be2bdeb\"\u003e\u003ccode\u003e6500a43\u003c/code\u003e\u003c/a\u003e Handle Coverage being suspended\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/cf3791edf37b778e14efa1f366c775f8456a3475\"\u003e\u003ccode\u003ecf3791e\u003c/code\u003e\u003c/a\u003e ISeq#input_to_output: just return \u003ccode\u003enil\u003c/code\u003e when using default compiler.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/cabdad95ed5218e6b888121c92702da4338de866\"\u003e\u003ccode\u003ecabdad9\u003c/code\u003e\u003c/a\u003e Only test Ruby [Bug \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/18250\"\u003e#18250\u003c/a\u003e] if on Ruby 3.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/490960e1dcd8bde4dda53e3ed1f435def73e0b0e\"\u003e\u003ccode\u003e490960e\u003c/code\u003e\u003c/a\u003e Yet another warning emitted from the canary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/045beb2ee5a85b1fd5000e6ee566b8b8a4c5df72\"\u003e\u003ccode\u003e045beb2\u003c/code\u003e\u003c/a\u003e Appease rubocop\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/d37f282ec8db1c9b31405c5629bcc6bc68d9974c\"\u003e\u003ccode\u003ed37f282\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/546\"\u003e#546\u003c/a\u003e from davidenglishmusic/rubocop-performance\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.18.6...v1.24.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.4.2 to 3.4.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.4 - 2025-09-10\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAccept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/296\"\u003eGH-296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003eGH-295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Joe Rafaniello\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJoe Rafaniello\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eREXML 3.4.3 - 2025-09-07\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject no root element XML as an invalid XML\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/289\"\u003eGH-289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003eGH-291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/287\"\u003eGH-287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003eGH-288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Jason Thomas\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSutou Kouhei\u003c/p\u003e\n\u003c/li\u003e\n\u003cl...\n\n_Description has been truncated_","html_url":"https://github.com/CircuitVerse/CircuitVerse/pull/7367","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/CircuitVerse%2FCircuitVerse/issues/7367","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7367/packages"},{"uuid":"4412315511","node_id":"PR_kwDOOclWfc7Z1g6m","number":37,"state":"open","title":"Bump the bundler group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-09T11:14:44.000Z","updated_at":"2026-05-09T11:14:48.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":6,"packages":[{"name":"activesupport","old_version":"7.0.6","new_version":"7.2.3.1","repository_url":"https://github.com/rails/rails"},{"name":"addressable","old_version":"2.8.5","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"faraday","old_version":"2.7.10","new_version":"2.14.1","repository_url":"https://github.com/lostisland/faraday"},{"name":"google-protobuf","old_version":"3.23.4","new_version":"3.25.5","repository_url":"https://github.com/protocolbuffers/protobuf"},{"name":"nokogiri","old_version":"1.15.3","new_version":"1.19.3","repository_url":"https://github.com/sparklemotion/nokogiri"},{"name":"rexml","old_version":"3.2.6","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Updates the requirements on [activesupport](https://github.com/rails/rails), [addressable](https://github.com/sporkmonger/addressable), [faraday](https://github.com/lostisland/faraday), [google-protobuf](https://github.com/protocolbuffers/protobuf), [nokogiri](https://github.com/sparklemotion/nokogiri) and [rexml](https://github.com/ruby/rexml) to permit the latest version.\nUpdates `activesupport` from 7.0.6 to 7.2.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactivesupport's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e7.2.3.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Job\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ba76fca032a66f3716ca8a661c9ddb006acaf885\"\u003e\u003ccode\u003eba76fca\u003c/code\u003e\u003c/a\u003e Preparing for 7.2.3.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8a379f43ea3e1c62fc7f6eabc1808ae9f74f726d\"\u003e\u003ccode\u003e8a379f4\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/b54a4b373c6f042cab6ee2033246b1c9ecc38974\"\u003e\u003ccode\u003eb54a4b3\u003c/code\u003e\u003c/a\u003e Improve performance of NumberToDelimitedConverter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/c1ad0e8e1972032f3395853a5e99cea035035beb\"\u003e\u003ccode\u003ec1ad0e8\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ebd6be18120d1136511eb516338e27af25ac0a1a\"\u003e\u003ccode\u003eebd6be1\u003c/code\u003e\u003c/a\u003e NumberConverter: reject scientific notation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/4a155f1fd7d4a1887b169eda4983a052fb2e2f13\"\u003e\u003ccode\u003e4a155f1\u003c/code\u003e\u003c/a\u003e Lock some dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/bb2bdef2925433a0c5db31b873f9faddf2e2e65d\"\u003e\u003ccode\u003ebb2bdef\u003c/code\u003e\u003c/a\u003e Preparing for 7.2.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fe41a9fa77412917ea3f228d6a742f31ad21e26d\"\u003e\u003ccode\u003efe41a9f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/55840\"\u003e#55840\u003c/a\u003e from zzak/asup-xml-mini-bigdecimal-float-precision\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/12040a3145012fb312eb2d70fc700f4d34a27934\"\u003e\u003ccode\u003e12040a3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/55808\"\u003e#55808\u003c/a\u003e from olivier-thatch/fix-enum-sole\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/58630e19ad0fe3c822302ae147ad1f863c95de2e\"\u003e\u003ccode\u003e58630e1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/55794\"\u003e#55794\u003c/a\u003e from rails/fix-55513\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v7.0.6...v7.2.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.5 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.7 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 6 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/535\"\u003esporkmonger/addressable#535\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.6 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMemoize regexps for common character classes (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/524\"\u003e#524\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/524\"\u003e#524\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/524\"\u003esporkmonger/addressable#524\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.5...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `faraday` from 2.7.10 to 2.14.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003efaraday's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.14.1\u003c/h2\u003e\n\u003ch2\u003eSecurity Note\u003c/h2\u003e\n\u003cp\u003eThis release contains a security fix, we recommend all users to upgrade as soon as possible.\nA Security Advisory with more details will be posted shortly.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd RFC document for Options architecture refactoring plan by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1644\"\u003elostisland/faraday#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1655\"\u003elostisland/faraday#1655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExplicit top-level namespace reference by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1657\"\u003elostisland/faraday#1657\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\"\u003ehttps://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eNew features ✨\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUse newer \u003ccode\u003eUnprocessableContent\u003c/code\u003e naming for 422 by \u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes 🐞\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eConvert strings to UTF-8 by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eResponse#to_hash\u003c/code\u003e when response not finished yet by \u003ca href=\"https://github.com/yykamei\"\u003e\u003ccode\u003e@​yykamei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1639\"\u003elostisland/faraday#1639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMisc/Docs 📄\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eLint: use \u003ccode\u003efilter_map\u003c/code\u003e by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1637\"\u003elostisland/faraday#1637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003eactions/checkout\u003c/code\u003e from v4 to v5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1636\"\u003elostisland/faraday#1636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes documentation by \u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove error handling logic and add missing test coverage by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1633\"\u003elostisland/faraday#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix type assumption in \u003ccode\u003eFaraday::Error\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1630\"\u003elostisland/faraday#1630\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/16cbd38ef252d25dedf416a4d2510a2f3db10c87\"\u003e\u003ccode\u003e16cbd38\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/a6d3a3a0bf59c2ab307d0abd91bc126aef5561bc\"\u003e\u003ccode\u003ea6d3a3a\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/b23f710d28c0dba169470f568df4017a1e8beea7\"\u003e\u003ccode\u003eb23f710\u003c/code\u003e\u003c/a\u003e Explicit top-level namespace reference (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1657\"\u003e#1657\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/49ba4ac3a7359baed634c12a82386f6c8c717ea8\"\u003e\u003ccode\u003e49ba4ac\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1655\"\u003e#1655\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/51a49bc99d7df6f724d250d64771e1d710576df7\"\u003e\u003ccode\u003e51a49bc\u003c/code\u003e\u003c/a\u003e Ensure Claude reads the guidelines and allow to plan in a gitignored .ai/PLAN...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/894f65cab8f04bcf35e84a2dfd9fc0286dbce340\"\u003e\u003ccode\u003e894f65c\u003c/code\u003e\u003c/a\u003e Add RFC document for Options architecture refactoring plan (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1644\"\u003e#1644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/397e3ded0c5166313bb22f1c0221b36b6023fd0f\"\u003e\u003ccode\u003e397e3de\u003c/code\u003e\u003c/a\u003e Add comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/d98c65cfc254ea2898386e4359428527122abec3\"\u003e\u003ccode\u003ed98c65c\u003c/code\u003e\u003c/a\u003e Update Faraday-specific AI agent guidelines\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/56c18ecb718e30c5a3a0dea9bd2361912af9013c\"\u003e\u003ccode\u003e56c18ec\u003c/code\u003e\u003c/a\u003e Add AI agent guidelines specific to Faraday repository\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/3201a42957d37efc968ee8834ba9b50ed5dde54a\"\u003e\u003ccode\u003e3201a42\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.7.10...v2.14.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google-protobuf` from 3.23.4 to 3.25.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/70e85ae1f994ee91001a18d9b5b4688ac027c03d\"\u003e\u003ccode\u003e70e85ae\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.5-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/489aba5b55bb994bcd130a43e20cc9be3be04adf\"\u003e\u003ccode\u003e489aba5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/15984\"\u003e#15984\u003c/a\u003e from mkruskal-google/staleness-fix-25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/367c7bea8dd5505f817f41e052e50caa694fb0e6\"\u003e\u003ccode\u003e367c7be\u003c/code\u003e\u003c/a\u003e Regen stale files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/bbbd2dea0e508289d45b48612e4659a230708209\"\u003e\u003ccode\u003ebbbd2de\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.4-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/fc222b9420e19d902e0aee5a6a95274dbbc2fc06\"\u003e\u003ccode\u003efc222b9\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.3-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/6ac04475591db12de14e89d3d750519c2ca9a4cc\"\u003e\u003ccode\u003e6ac0447\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.2-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/7f94235e552599141950d7a4a3eaf93bc87d1b22\"\u003e\u003ccode\u003e7f94235\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/e4b00c75ecbc40389615ddf5482dbabc3a354eea\"\u003e\u003ccode\u003ee4b00c7\u003c/code\u003e\u003c/a\u003e Add support for extensions in CRuby, JRuby, and FFI Ruby (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14703\"\u003e#14703\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14756\"\u003e#14756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/2495d4f96bf4edcc4f770ceb27ae98c71a56fcdb\"\u003e\u003ccode\u003e2495d4f\u003c/code\u003e\u003c/a\u003e Add support for options in CRuby, JRuby and FFI (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14594\"\u003e#14594\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14739\"\u003e#14739\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/6b5d8db01fe47478e8d400f550e797e6230d464e\"\u003e\u003ccode\u003e6b5d8db\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/protocolbuffers/protobuf/compare/v3.23.4...v3.25.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nokogiri` from 1.15.3 to 1.19.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/releases\"\u003enokogiri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.3 / 2026-04-27\u003c/h2\u003e\n\u003ch3\u003eFixed / Security\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAddress exponential regex backtracking in CSS selector tokenizer. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-c4rq-3m3g-8wgx\"\u003eGHSA-c4rq-3m3g-8wgx\u003c/a\u003e for more information.\u003c/li\u003e\n\u003cli\u003e[CRuby] Address memory leak in \u003ccode\u003eXSLT::Stylesheet#transform\u003c/code\u003e. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-v2fc-qm4h-8hqv\"\u003eGHSA-v2fc-qm4h-8hqv\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e46b89e5d7b9e844c2ee360794240c6ea2a4e6fa0c5892a4ed487db621224b639  nokogiri-1.19.3-aarch64-linux-gnu.gem\r\n8392dfdcd21be7a94dbbe9ccc138dea01b97b24cb2dc02a114ca98bfb1d9a0b7  nokogiri-1.19.3-aarch64-linux-musl.gem\r\n3919d5ffc334ad778a4a9eb88fda7dcb8b1fb58c8a52ac640c6dcd2f038e774f  nokogiri-1.19.3-arm-linux-gnu.gem\r\n9ce1cb6346bb9c67b1550eb537aa183ead91e4b6eadb2f36ade02d8dd2a79fb6  nokogiri-1.19.3-arm-linux-musl.gem\r\n71b9bd424b1b7abc18b05052a1a3cfd3627abdca62be280854cc411791357e42  nokogiri-1.19.3-arm64-darwin.gem\r\n40ea6ebf5cf2005dae1dee26dd557d3afb41fb6de6c9764aca8cf06fdb841db1  nokogiri-1.19.3-java.gem\r\n8bb7132cad356c879a1286eaabcb5e68326cb2490317984280fbc62f456d506a  nokogiri-1.19.3-x64-mingw-ucrt.gem\r\n77f3fba57d46c53ab31e62fc6c28f705109d1bf6264356c76f132b2be5728d4d  nokogiri-1.19.3-x86_64-darwin.gem\r\n2f5078620fe12e83669b5b17311b32532a8153d02eee7ad06948b926d6080976  nokogiri-1.19.3-x86_64-linux-gnu.gem\r\n248c906d2166eca5efb56d52fdee5f9a1f51d69a72e2b64fdac647b4ce39ea3f  nokogiri-1.19.3-x86_64-linux-musl.gem\r\n78312cbac32a40c812780d9678221b79d51288eec00054c1a8d15f7ce05960e8  nokogiri-1.19.3.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003ev1.19.2 / 2026-03-19\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[JRuby] Saxon-HE is updated to 12.7, from 9.6.0-4. Saxon-HE is a transitive dependency of nu.validator:jing, and this update addresses CVEs in Saxon-HE's own transitive dependencies JDOM and dom4j. We don't think this warrants a security release, however we're cutting a patch release to help users whose security scanners are flagging this. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3611\"\u003e#3611\u003c/a\u003e \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSHA256 Checksums\u003c/h3\u003e\n\u003cpre\u003e\u003ccode\u003ec34d5c8208025587554608e98fd88ab125b29c80f9352b821964e9a5d5cfbd19  nokogiri-1.19.2-aarch64-linux-gnu.gem\r\n7f6b4b0202d507326841a4f790294bf75098aef50c7173443812e3ac5cb06515  nokogiri-1.19.2-aarch64-linux-musl.gem\r\nb7fa1139016f3dc850bda1260988f0d749934a939d04ef2da13bec060d7d5081  nokogiri-1.19.2-arm-linux-gnu.gem\r\n61114d44f6742ff72194a1b3020967201e2eb982814778d130f6471c11f9828c  nokogiri-1.19.2-arm-linux-musl.gem\r\n58d8ea2e31a967b843b70487a44c14c8ba1866daa1b9da9be9dbdf1b43dee205  nokogiri-1.19.2-arm64-darwin.gem\r\ne9d67034bc80ca71043040beea8a91be5dc99b662daa38a2bfb361b7a2cc8717  nokogiri-1.19.2-java.gem\r\n8ccf25eea3363a2c7b3f2e173a3400582c633cfead27f805df9a9c56d4852d1a  nokogiri-1.19.2-x64-mingw-ucrt.gem\r\n7d9af11fda72dfaa2961d8c4d5380ca0b51bc389dc5f8d4b859b9644f195e7a4  nokogiri-1.19.2-x86_64-darwin.gem\r\nfa8feca882b73e871a9845f3817a72e9734c8e974bdc4fbad6e4bc6e8076b94f  nokogiri-1.19.2-x86_64-linux-gnu.gem\r\n93128448e61a9383a30baef041bf1f5817e22f297a1d400521e90294445069a8  nokogiri-1.19.2-x86_64-linux-musl.gem\r\n38fdd8b59db3d5ea9e7dfb14702e882b9bf819198d5bf976f17ebce12c481756  nokogiri-1.19.2.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/sparklemotion/nokogiri/compare/v1.19.1...v1.19.2\"\u003ehttps://github.com/sparklemotion/nokogiri/compare/v1.19.1...v1.19.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md\"\u003enokogiri's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.3 / 2026-04-27\u003c/h2\u003e\n\u003ch3\u003eFixed / Security\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAddress exponential regex backtracking in CSS selector tokenizer. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-c4rq-3m3g-8wgx\"\u003eGHSA-c4rq-3m3g-8wgx\u003c/a\u003e for more information.\u003c/li\u003e\n\u003cli\u003e[CRuby] Address memory leak in \u003ccode\u003eXSLT::Stylesheet#transform\u003c/code\u003e. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-v2fc-qm4h-8hqv\"\u003eGHSA-v2fc-qm4h-8hqv\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.19.2 / 2026-03-19\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[JRuby] Saxon-HE is updated to 12.7, from 9.6.0-4. Saxon-HE is a transitive dependency of nu.validator:jing, and this update addresses CVEs in Saxon-HE's own transitive dependencies JDOM and dom4j. We don't think this warrants a security release, however we're cutting a patch release to help users whose security scanners are flagging this. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3611\"\u003e#3611\u003c/a\u003e \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.10 / 2025-09-15\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.9\"\u003ev2.13.9\u003c/a\u003e. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.\u003c/li\u003e\n\u003cli\u003e[CRuby] [Windows and MacOS] Vendored libiconv is updated to \u003ca href=\"https://savannah.gnu.org/news/?id=10703\"\u003ev1.18\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.9 / 2025-07-20\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Applied upstream libxml2 patches to address CVE-2025-6021, CVE-2025-6170, CVE-2025-49794, CVE-2025-49795, and CVE-2025-49796. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-353f-x4gh-cqq8\"\u003eGHSA-353f-x4gh-cqq8\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.8 / 2025-04-21\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/c139a3da0fe0cae7499a0bafa20f2875877c585b\"\u003e\u003ccode\u003ec139a3d\u003c/code\u003e\u003c/a\u003e version bump to v1.19.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/7501a63b9f4246d12516e35b91fed8be34f854c0\"\u003e\u003ccode\u003e7501a63\u003c/code\u003e\u003c/a\u003e fix: backtracking in CSS tokenizer rules (v1.19.x backport) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3627\"\u003e#3627\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/03e7968a730a6544ab56a8d6c3e82dd630ad4339\"\u003e\u003ccode\u003e03e7968\u003c/code\u003e\u003c/a\u003e test: skip CSS tokenizer benchmarks on JRuby\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/b984b7e47f622d1aa97d54c16d5cd596c3eb9538\"\u003e\u003ccode\u003eb984b7e\u003c/code\u003e\u003c/a\u003e fix: ReDoS in CSS tokenizer ident rule\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/00926231e28d5a20e5b4873efba36099aea0d5c6\"\u003e\u003ccode\u003e0092623\u003c/code\u003e\u003c/a\u003e fix: ReDoS in CSS tokenizer STRING rule\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/ee17d33aff3adb30c14e71d3d4c8163465acaccf\"\u003e\u003ccode\u003eee17d33\u003c/code\u003e\u003c/a\u003e fix: memory leak in XSLT transform (backport to v1.19.x) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3624\"\u003e#3624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/ce188a395192e3757d8701949afb643dc025084c\"\u003e\u003ccode\u003ece188a3\u003c/code\u003e\u003c/a\u003e doc: update CHANGELOG\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/caeaac41f874f0944f9397c78bf6c1bfac2cb472\"\u003e\u003ccode\u003ecaeaac4\u003c/code\u003e\u003c/a\u003e fix: memory leak in XSLT transform\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/25220bf268c9808e28415563ed7f8ea8d5c332bf\"\u003e\u003ccode\u003e25220bf\u003c/code\u003e\u003c/a\u003e dep(test): test against libxml-ruby v6 (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3618\"\u003e#3618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/0caeb21a5c5e9ff45bbede88fb53655f6753bb0e\"\u003e\u003ccode\u003e0caeb21\u003c/code\u003e\u003c/a\u003e doc: add security warnings for untrusted XSLT stylesheets\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sparklemotion/nokogiri/compare/v1.15.3...v1.19.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.2.6 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.2.6...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/AKJUS/maptimedavis.github.io/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/AKJUS/maptimedavis.github.io/pull/37","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/AKJUS%2Fmaptimedavis.github.io/issues/37","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/37/packages"},{"uuid":"4397358819","node_id":"PR_kwDOLTgSI87ZEe49","number":175,"state":"open","title":"Bump the bundler group across 2 directories with 5 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-07T08:42:01.000Z","updated_at":"2026-05-07T08:42:12.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":5,"packages":[{"name":"addressable","old_version":"2.8.7","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"rexml","old_version":"3.3.9","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"},{"name":"addressable","old_version":"2.8.7","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"rexml","old_version":"3.3.9","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"},{"name":"addressable","old_version":"2.8.9","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"addressable","old_version":"2.8.9","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"net-imap","old_version":"0.6.3","new_version":"0.6.4","repository_url":"https://github.com/ruby/net-imap"},{"name":"nokogiri","old_version":"1.19.2","new_version":"1.19.3","repository_url":"https://github.com/sparklemotion/nokogiri"},{"name":"rack","old_version":"3.2.5","new_version":"3.2.6","repository_url":"https://github.com/rack/rack"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 2 updates in the /examples/stacks/jekyll/myblog directory: [addressable](https://github.com/sporkmonger/addressable) and [rexml](https://github.com/ruby/rexml).\nBumps the bundler group with 4 updates in the /examples/stacks/rails/blog directory: [addressable](https://github.com/sporkmonger/addressable), [net-imap](https://github.com/ruby/net-imap), [nokogiri](https://github.com/sparklemotion/nokogiri) and [rack](https://github.com/rack/rack).\n\nUpdates `addressable` from 2.8.7 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.3.9 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.3.9...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.7 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.3.9 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.3.9...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.9 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.9 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `net-imap` from 0.6.3 to 0.6.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/net-imap/releases\"\u003enet-imap's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.6.4\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003e🔒 Security\u003c/h3\u003e\n\u003cp\u003eThis release contains fixes for \u003cstrong\u003emultiple vulnerabilities\u003c/strong\u003e concerning \u003cem\u003e\u003cstrong\u003e\u003ccode\u003eSTARTTLS\u003c/code\u003e stripping\u003c/strong\u003e\u003c/em\u003e, argument validation, and denial of service attacks.\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!WARNING]\n\u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/664\"\u003eruby/net-imap#664\u003c/a\u003e fixes a \u003ccode\u003eSTARTTLS\u003c/code\u003e stripping vulnerability (GHSA-vcgp-9326-pqcp).\nWithout this fix, a man-in-the-middle attacker can cause \u003ccode\u003eNet::IMAP#starttls\u003c/code\u003e to return \u0026quot;successfully\u0026quot;, \u003cstrong\u003e\u003cem\u003ewithout starting TLS\u003c/em\u003e\u003c/strong\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nArgument validation is significantly improved.  Several injection vulnerabilities have been fixed:\n\u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/657\"\u003eruby/net-imap#657\u003c/a\u003e fixes CRLF/command/argument injection via Symbol arguments (GHSA-75xq-5h9v-w6px).\n\u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/658\"\u003eruby/net-imap#658\u003c/a\u003e fixes CRLF/command/argument injection via the \u003ccode\u003eattr\u003c/code\u003e argument to \u003ccode\u003e#store\u003c/code\u003e/\u003ccode\u003e#uid_store\u003c/code\u003e (GHSA-hm49-wcqc-g2xg)\n\u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/659\"\u003eruby/net-imap#659\u003c/a\u003e fixes CRLF/command/argument injection via the \u003ccode\u003estorage_limit\u003c/code\u003e argument to \u003ccode\u003e#setquota\u003c/code\u003e (GHSA-hm49-wcqc-g2xg).\n\u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/660\"\u003eruby/net-imap#660\u003c/a\u003e fixes CRLF/command injection via \u003ccode\u003eRawData\u003c/code\u003e (GHSA-hm49-wcqc-g2xg):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e#search\u003c/code\u003e and \u003ccode\u003e#uid_search\u003c/code\u003e send \u003ccode\u003ecriteria\u003c/code\u003e as raw data, when it is a String\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e#fetch\u003c/code\u003e and \u003ccode\u003e#uid_fetch\u003c/code\u003e send \u003ccode\u003eattr\u003c/code\u003e as raw data, when it is a String.\nWhen \u003ccode\u003eattr\u003c/code\u003e is an Array, its String members are sent as raw data.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!CAUTION]\n\u003ccode\u003eRawData\u003c/code\u003e does not defend against \u003cem\u003eother\u003c/em\u003e forms of argument injection!  It is an intentionally low-level API.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nTwo denial of service vulnerabilities have been addressed.\nThese are generally only relevant when connecting to an \u003cem\u003euntrusted hostile server\u003c/em\u003e (or without TLS).\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/642\"\u003eruby/net-imap#642\u003c/a\u003e fixes quadratic time complexity when reading large responses containing many string literals (GHSA-q2mw-fvj9-vvcw).\n\u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/654\"\u003eruby/net-imap#654\u003c/a\u003e adds a configurable \u003ccode\u003emax_iterations\u003c/code\u003e count for \u003ccode\u003eSCRAM-*\u003c/code\u003e authentication (GHSA-87pf-fpwv-p7m7).\u003c/p\u003e\n\u003cp\u003eThe default \u003ccode\u003eScramAuthenticator#max_iterations\u003c/code\u003e is \u003ccode\u003e2**31 - 1\u003c/code\u003e (max 32-bit signed int), which was already OpenSSL's maximum value.  \u003cem\u003eIt provides no protection\u003c/em\u003e against hostile servers unless it is explicitly set to a lower value by the user.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e⚡ \u003ccode\u003eResponseReader\u003c/code\u003e memoizes \u003ccode\u003eConfig#max_response_size\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/642\"\u003eruby/net-imap#642\u003c/a\u003e.\nChanges to \u003ccode\u003e#max_response_size\u003c/code\u003e now take effect once per response, not on every \u003ccode\u003eIO#read\u003c/code\u003e.\n\u003cem\u003eNOTE: It is not expected that this will affect any current usage.\u003c/em\u003e  See \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/642\"\u003ethe PR\u003c/a\u003e for details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e✨ Support \u003ccode\u003eBINARY\u003c/code\u003e extention to \u003ccode\u003e#append\u003c/code\u003e (RFC3516)  by \u003ca href=\"https://github.com/nevans\"\u003e\u003ccode\u003e@​nevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/616\"\u003eruby/net-imap#616\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e✨ Support \u003ccode\u003eLITERAL+\u003c/code\u003e and \u003ccode\u003eLITERAL-\u003c/code\u003e non-synchronizing literals (RFC7888) by \u003ca href=\"https://github.com/nevans\"\u003e\u003ccode\u003e@​nevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/649\"\u003eruby/net-imap#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e🔒 Add \u003ccode\u003eScramAuthenticator#max_iterations\u003c/code\u003e by \u003ca href=\"https://github.com/nevans\"\u003e\u003ccode\u003e@​nevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/654\"\u003eruby/net-imap#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e🏷️ Add \u003ccode\u003enumber64\u003c/code\u003e and \u003ccode\u003enz-number64\u003c/code\u003e to NumValidator by \u003ca href=\"https://github.com/nevans\"\u003e\u003ccode\u003e@​nevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/625\"\u003eruby/net-imap#625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e♻️ Add \u003ccode\u003eMailboxQuota#quota_root\u003c/code\u003e alias by \u003ca href=\"https://github.com/nevans\"\u003e\u003ccode\u003e@​nevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/636\"\u003eruby/net-imap#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e🔍 Simplify \u003ccode\u003eNet::IMAP#inspect\u003c/code\u003e with basic state by \u003ca href=\"https://github.com/nevans\"\u003e\u003ccode\u003e@​nevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/612\"\u003eruby/net-imap#612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e🥅 Add \u003ccode\u003eResponseParseError#parser_methods\u003c/code\u003e (and override \u003ccode\u003e#==\u003c/code\u003e) by \u003ca href=\"https://github.com/nevans\"\u003e\u003ccode\u003e@​nevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/615\"\u003eruby/net-imap#615\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/3e490673dca65d0cfeeeb3fbf1fdaa188d6f27c4\"\u003e\u003ccode\u003e3e49067\u003c/code\u003e\u003c/a\u003e 🔖 Bump version to 0.6.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/0ede4c40b1523dfeaf95777b2678e54cc0fd9618\"\u003e\u003ccode\u003e0ede4c4\u003c/code\u003e\u003c/a\u003e 🔀 Merge pull request \u003ca href=\"https://redirect.github.com/ruby/net-imap/issues/664\"\u003e#664\u003c/a\u003e from ruby/security/STARTTLS-stripping\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/51ae3604cabe1e8cfeeb888ff5ef6b9215fe1a65\"\u003e\u003ccode\u003e51ae360\u003c/code\u003e\u003c/a\u003e ♻️ Add command response handler before command is sent\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/24d5c773d1bb76ca1cd0a26b2218195011c16969\"\u003e\u003ccode\u003e24d5c77\u003c/code\u003e\u003c/a\u003e 🔒🥅 Handle tagged \u0026quot;OK\u0026quot; to incomplete command\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/62eea6ffe1e390060065169474f97edbc42bd2b2\"\u003e\u003ccode\u003e62eea6f\u003c/code\u003e\u003c/a\u003e 🔒🥅 Ensure STARTTLS tagged response was handled\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/46636cae8af68a4080c434b853fba1738c7c2587\"\u003e\u003ccode\u003e46636ca\u003c/code\u003e\u003c/a\u003e ❌🔒 Add failing test for STARTTLS stripping\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/e3b010509109eb4acc1d7e4365624e848ef0b45b\"\u003e\u003ccode\u003ee3b0105\u003c/code\u003e\u003c/a\u003e ✅♻️ Inline current STARTLS stripping test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/be32e712eb2ee90a0a2c78752bf19196582ed4d8\"\u003e\u003ccode\u003ebe32e71\u003c/code\u003e\u003c/a\u003e 📚 Improve documentation of RawData arguments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/47c72186d272441878ca73c9499f66013829ca2f\"\u003e\u003ccode\u003e47c7218\u003c/code\u003e\u003c/a\u003e 🐛 Validate RawData and wait to continue literals\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/0ec4fd351263e8b9a4f683713427827b7b1ad974\"\u003e\u003ccode\u003e0ec4fd3\u003c/code\u003e\u003c/a\u003e 🥅 Validate \u003ccode\u003e#setquota\u003c/code\u003e storage limit argument\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/net-imap/compare/v0.6.3...v0.6.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nokogiri` from 1.19.2 to 1.19.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/releases\"\u003enokogiri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.3 / 2026-04-27\u003c/h2\u003e\n\u003ch3\u003eFixed / Security\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAddress exponential regex backtracking in CSS selector tokenizer. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-c4rq-3m3g-8wgx\"\u003eGHSA-c4rq-3m3g-8wgx\u003c/a\u003e for more information.\u003c/li\u003e\n\u003cli\u003e[CRuby] Address memory leak in \u003ccode\u003eXSLT::Stylesheet#transform\u003c/code\u003e. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-v2fc-qm4h-8hqv\"\u003eGHSA-v2fc-qm4h-8hqv\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e46b89e5d7b9e844c2ee360794240c6ea2a4e6fa0c5892a4ed487db621224b639  nokogiri-1.19.3-aarch64-linux-gnu.gem\r\n8392dfdcd21be7a94dbbe9ccc138dea01b97b24cb2dc02a114ca98bfb1d9a0b7  nokogiri-1.19.3-aarch64-linux-musl.gem\r\n3919d5ffc334ad778a4a9eb88fda7dcb8b1fb58c8a52ac640c6dcd2f038e774f  nokogiri-1.19.3-arm-linux-gnu.gem\r\n9ce1cb6346bb9c67b1550eb537aa183ead91e4b6eadb2f36ade02d8dd2a79fb6  nokogiri-1.19.3-arm-linux-musl.gem\r\n71b9bd424b1b7abc18b05052a1a3cfd3627abdca62be280854cc411791357e42  nokogiri-1.19.3-arm64-darwin.gem\r\n40ea6ebf5cf2005dae1dee26dd557d3afb41fb6de6c9764aca8cf06fdb841db1  nokogiri-1.19.3-java.gem\r\n8bb7132cad356c879a1286eaabcb5e68326cb2490317984280fbc62f456d506a  nokogiri-1.19.3-x64-mingw-ucrt.gem\r\n77f3fba57d46c53ab31e62fc6c28f705109d1bf6264356c76f132b2be5728d4d  nokogiri-1.19.3-x86_64-darwin.gem\r\n2f5078620fe12e83669b5b17311b32532a8153d02eee7ad06948b926d6080976  nokogiri-1.19.3-x86_64-linux-gnu.gem\r\n248c906d2166eca5efb56d52fdee5f9a1f51d69a72e2b64fdac647b4ce39ea3f  nokogiri-1.19.3-x86_64-linux-musl.gem\r\n78312cbac32a40c812780d9678221b79d51288eec00054c1a8d15f7ce05960e8  nokogiri-1.19.3.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md\"\u003enokogiri's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.3 / 2026-04-27\u003c/h2\u003e\n\u003ch3\u003eFixed / Security\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAddress exponential regex backtracking in CSS selector tokenizer. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-c4rq-3m3g-8wgx\"\u003eGHSA-c4rq-3m3g-8wgx\u003c/a\u003e for more information.\u003c/li\u003e\n\u003cli\u003e[CRuby] Address memory leak in \u003ccode\u003eXSLT::Stylesheet#transform\u003c/code\u003e. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-v2fc-qm4h-8hqv\"\u003eGHSA-v2fc-qm4h-8hqv\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/c139a3da0fe0cae7499a0bafa20f2875877c585b\"\u003e\u003ccode\u003ec139a3d\u003c/code\u003e\u003c/a\u003e version bump to v1.19.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/7501a63b9f4246d12516e35b91fed8be34f854c0\"\u003e\u003ccode\u003e7501a63\u003c/code\u003e\u003c/a\u003e fix: backtracking in CSS tokenizer rules (v1.19.x backport) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3627\"\u003e#3627\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/03e7968a730a6544ab56a8d6c3e82dd630ad4339\"\u003e\u003ccode\u003e03e7968\u003c/code\u003e\u003c/a\u003e test: skip CSS tokenizer benchmarks on JRuby\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/b984b7e47f622d1aa97d54c16d5cd596c3eb9538\"\u003e\u003ccode\u003eb984b7e\u003c/code\u003e\u003c/a\u003e fix: ReDoS in CSS tokenizer ident rule\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/00926231e28d5a20e5b4873efba36099aea0d5c6\"\u003e\u003ccode\u003e0092623\u003c/code\u003e\u003c/a\u003e fix: ReDoS in CSS tokenizer STRING rule\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/ee17d33aff3adb30c14e71d3d4c8163465acaccf\"\u003e\u003ccode\u003eee17d33\u003c/code\u003e\u003c/a\u003e fix: memory leak in XSLT transform (backport to v1.19.x) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3624\"\u003e#3624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/ce188a395192e3757d8701949afb643dc025084c\"\u003e\u003ccode\u003ece188a3\u003c/code\u003e\u003c/a\u003e doc: update CHANGELOG\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/caeaac41f874f0944f9397c78bf6c1bfac2cb472\"\u003e\u003ccode\u003ecaeaac4\u003c/code\u003e\u003c/a\u003e fix: memory leak in XSLT transform\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/25220bf268c9808e28415563ed7f8ea8d5c332bf\"\u003e\u003ccode\u003e25220bf\u003c/code\u003e\u003c/a\u003e dep(test): test against libxml-ruby v6 (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3618\"\u003e#3618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/0caeb21a5c5e9ff45bbede88fb53655f6753bb0e\"\u003e\u003ccode\u003e0caeb21\u003c/code\u003e\u003c/a\u003e doc: add security warnings for untrusted XSLT stylesheets\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/sparklemotion/nokogiri/compare/v1.19.2...v1.19.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rack` from 3.2.5 to 3.2.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/releases\"\u003erack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.2.6\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.2.5...v3.2.6\"\u003ehttps://github.com/rack/rack/compare/v3.2.5...v3.2.6\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.2.6] - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-7mqq-6cf9-v2qp\"\u003eCVE-2026-34763\u003c/a\u003e Root directory disclosure via unescaped regex interpolation in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v569-hp3g-36wr\"\u003eCVE-2026-34230\u003c/a\u003e Avoid O(n^2) algorithm in \u003ccode\u003eRack::Utils.select_best_encoding\u003c/code\u003e which could lead to denial of service.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qfgr-crr9-7r49\"\u003eCVE-2026-32762\u003c/a\u003e Forwarded header semicolon injection enables Host and Scheme spoofing.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-vgpv-f759-9wx3\"\u003eCVE-2026-26961\u003c/a\u003e Raise error for multipart requests with multiple boundary parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q4qf-9j86-f5mh\"\u003eCVE-2026-34786\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e \u003ccode\u003eheader_rules\u003c/code\u003e bypass via URL-encoded path mismatch.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q2ww-5357-x388\"\u003eCVE-2026-34831\u003c/a\u003e \u003ccode\u003eContent-Length\u003c/code\u003e mismatch in \u003ccode\u003eRack::Files\u003c/code\u003e error responses.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-x8cg-fq8g-mxfx\"\u003eCVE-2026-34826\u003c/a\u003e Multipart byte range processing allows denial of service via excessive overlapping ranges.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-g2pf-xv49-m2h5\"\u003eCVE-2026-34835\u003c/a\u003e \u003ccode\u003eRack::Request\u003c/code\u003e accepts invalid Host characters, enabling host allowlist bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qv7j-4883-hwh7\"\u003eCVE-2026-34830\u003c/a\u003e \u003ccode\u003eRack::Sendfile\u003c/code\u003e header-based \u003ccode\u003eX-Accel-Mapping\u003c/code\u003e regex injection enables unauthorized \u003ccode\u003eX-Accel-Redirect\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-h2jq-g4cq-5ppq\"\u003eCVE-2026-34785\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e prefix matching can expose unintended files under the static root.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-8vqr-qjwx-82mw\"\u003eCVE-2026-34829\u003c/a\u003e Multipart parsing without \u003ccode\u003eContent-Length\u003c/code\u003e header allows unbounded chunked file uploads.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v6x5-cg8r-vv6x\"\u003eCVE-2026-34827\u003c/a\u003e Multipart header parsing allows denial of service via escape-heavy quoted parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-rx22-g9mx-qrhv\"\u003eCVE-2026-26962\u003c/a\u003e Improper unfolding of folded multipart headers preserves CRLF in parsed parameter values.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/e1f22fdbe99afd2126b6fbf05bb12399359574b7\"\u003e\u003ccode\u003ee1f22fd\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/31989fd7bb6f806fdb3cfa4e9aec1fe8434f47d1\"\u003e\u003ccode\u003e31989fd\u003c/code\u003e\u003c/a\u003e Fix typo in test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/d268165e390e17b83573fec916dcdef6304a8b4b\"\u003e\u003ccode\u003ed268165\u003c/code\u003e\u003c/a\u003e Fix test expectation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/8f425de0ee75a2f3cdfbfdd57858c1910b7645ff\"\u003e\u003ccode\u003e8f425de\u003c/code\u003e\u003c/a\u003e Add Ruby v4.0 to the test matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/bf830426ce5b3daccb5a226b733703c86504ceba\"\u003e\u003ccode\u003ebf83042\u003c/code\u003e\u003c/a\u003e Drop EOL Rubies from external tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/d50c4d3dab62fa80b2a276271d0d4fb338cfa7df\"\u003e\u003ccode\u003ed50c4d3\u003c/code\u003e\u003c/a\u003e Implement OBS unfolding for multipart requests per RFC 5322 2.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/bfb69142dbe2a1e3298ad52d12935938d1b58205\"\u003e\u003ccode\u003ebfb6914\u003c/code\u003e\u003c/a\u003e Limit the number of quoted escapes during multipart parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/b3e5945c648c5a5b6982e5072b26e51990991229\"\u003e\u003ccode\u003eb3e5945\u003c/code\u003e\u003c/a\u003e Add Content-Length size check in Rack::Multipart::Parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/7a8f32696609b88e2c4c1f09d473a1d2d837ed4b\"\u003e\u003ccode\u003e7a8f326\u003c/code\u003e\u003c/a\u003e Fix root prefix bug in Rack::Static\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/a57bc140247f904dc1e3302badedcb73645072c7\"\u003e\u003ccode\u003ea57bc14\u003c/code\u003e\u003c/a\u003e Only do a simple substitution on the x-accel-mapping paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/v3.2.5...v3.2.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/SherfeyInv/devbox/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/SherfeyInv/devbox/pull/175","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/SherfeyInv%2Fdevbox/issues/175","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/175/packages"},{"uuid":"4319422671","node_id":"PR_kwDOSK-7Ns7VJv1u","number":1,"state":"closed","title":"Bump rexml from 3.2.5 to 3.4.2","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-23T23:36:05.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-23T23:16:51.000Z","updated_at":"2026-04-23T23:36:06.000Z","time_to_close":1154,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"rexml","old_version":"3.2.5","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [rexml](https://github.com/ruby/rexml) from 3.2.5 to 3.4.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.2.5...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rexml\u0026package-manager=bundler\u0026previous-version=3.2.5\u0026new-version=3.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/KY4GD/virginorpigeon/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/KY4GD/virginorpigeon/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/KY4GD%2Fvirginorpigeon/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"},{"uuid":"4304586061","node_id":"PR_kwDOAVIPGM7UZhRu","number":8314,"state":"open","title":"chore(deps): bump rexml from 3.4.2 to 3.4.4","user":"dependabot[bot]","labels":["Dependencies","Ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-21T18:32:57.000Z","updated_at":"2026-04-22T01:04:08.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"rexml","old_version":"3.4.2","new_version":"3.4.4","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [rexml](https://github.com/ruby/rexml) from 3.4.2 to 3.4.4.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.4 - 2025-09-10\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAccept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/296\"\u003eGH-296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003eGH-295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Joe Rafaniello\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJoe Rafaniello\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eREXML 3.4.3 - 2025-09-07\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject no root element XML as an invalid XML\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/289\"\u003eGH-289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003eGH-291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/287\"\u003eGH-287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003eGH-288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Jason Thomas\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSutou Kouhei\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJason Thomas\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.4 - 2025-09-10 {#version-3-4-4}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAccept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/296\"\u003eGH-296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003eGH-295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Joe Rafaniello\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJoe Rafaniello\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.4.3 - 2025-09-07 {#version-3-4-3}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject no root element XML as an invalid XML\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/289\"\u003eGH-289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003eGH-291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/287\"\u003eGH-287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003eGH-288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Jason Thomas\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSutou Kouhei\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJason Thomas\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/4f32ea33bc3f71cced67487659beef58edcf6d56\"\u003e\u003ccode\u003e4f32ea3\u003c/code\u003e\u003c/a\u003e Add 3.4.4 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/297\"\u003e#297\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/37cde3f4e660f9748f90a933daf7a9e51337d013\"\u003e\u003ccode\u003e37cde3f\u003c/code\u003e\u003c/a\u003e Accept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003e#295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/4ffe211b501614e769a8bf37d63a7037bb5d2e73\"\u003e\u003ccode\u003e4ffe211\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/822530c70f898bd33c075622fe068c6d6433e6c9\"\u003e\u003ccode\u003e822530c\u003c/code\u003e\u003c/a\u003e Add 3.4.3 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/293\"\u003e#293\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/6ba286cfd402e4040627615e2623f5b097261543\"\u003e\u003ccode\u003e6ba286c\u003c/code\u003e\u003c/a\u003e Reject no root element XML as an invalid XML (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/b5b148ed3c8a02fb53e971e312cee94b5301555a\"\u003e\u003ccode\u003eb5b148e\u003c/code\u003e\u003c/a\u003e The Zlib::GzipReader in JRuby does not behave as expected with REXML, so the ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1531862d18ec3ecd659060d60b8bb49accee5a42\"\u003e\u003ccode\u003e1531862\u003c/code\u003e\u003c/a\u003e Fixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/185bdc737da406ba4f9564726849ad3477858eb2\"\u003e\u003ccode\u003e185bdc7\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.4.2...v3.4.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/Coursemology/coursemology2/pull/8314","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Coursemology%2Fcoursemology2/issues/8314","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8314/packages"},{"uuid":"4299379315","node_id":"PR_kwDOCSVaMM7UIreO","number":7320,"state":"open","title":"build(deps): bump the minor-and-patch group across 1 directory with 65 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-20T23:55:34.000Z","updated_at":"2026-04-20T23:56:00.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"minor-and-patch","update_count":65,"packages":[{"name":"aws-actionmailer-ses","old_version":"1.0.0","new_version":"1.1.0","repository_url":"https://github.com/aws/aws-actionmailer-ses-ruby"},{"name":"dotenv-rails","old_version":"3.1.8","new_version":"3.2.0","repository_url":"https://github.com/bkeepers/dotenv"},{"name":"kt-paperclip","old_version":"7.2.2","new_version":"7.3.0","repository_url":"https://github.com/kreeti/kt-paperclip"},{"name":"omniauth","old_version":"2.1.3","new_version":"2.1.4","repository_url":"https://github.com/omniauth/omniauth"},{"name":"omniauth-google-oauth2","old_version":"1.2.1","new_version":"1.2.2","repository_url":"https://github.com/zquestz/omniauth-google-oauth2"},{"name":"view_component","old_version":"4.6.0","new_version":"4.7.0","repository_url":"https://github.com/viewcomponent/view_component"},{"name":"rails","old_version":"8.0.5","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"},{"name":"terser","old_version":"1.2.6","new_version":"1.2.7","repository_url":"https://github.com/ahorek/terser-ruby"},{"name":"jquery-rails","old_version":"4.6.0","new_version":"4.6.1","repository_url":"https://github.com/rails/jquery-rails"},{"name":"sidekiq","old_version":"8.0.7","new_version":"8.1.3","repository_url":"https://github.com/sidekiq/sidekiq"},{"name":"geocoder","old_version":"1.8.5","new_version":"1.8.6","repository_url":"https://github.com/alexreisner/geocoder"},{"name":"pundit","old_version":"2.5.0","new_version":"2.5.2","repository_url":"https://github.com/varvet/pundit"},{"name":"ahoy_matey","old_version":"5.4.0","new_version":"5.5.0","repository_url":"https://github.com/ankane/ahoy"},{"name":"i18n-js","old_version":"4.2.3","new_version":"4.2.4","repository_url":"https://github.com/fnando/i18n-js"},{"name":"pg","old_version":"1.6.1","new_version":"1.6.3","repository_url":"https://github.com/ged/ruby-pg"},{"name":"bootsnap","old_version":"1.18.6","new_version":"1.23.0","repository_url":"https://github.com/rails/bootsnap"},{"name":"rexml","old_version":"3.4.2","new_version":"3.4.4","repository_url":"https://github.com/ruby/rexml"},{"name":"flipper-redis","old_version":"1.3.6","new_version":"1.4.1","repository_url":"https://github.com/flippercloud/flipper"},{"name":"friendly_id","old_version":"5.5.1","new_version":"5.6.0","repository_url":"https://github.com/norman/friendly_id"},{"name":"rails-i18n","old_version":"8.0.2","new_version":"8.1.0","repository_url":"https://github.com/svenfuchs/rails-i18n"},{"name":"recaptcha","old_version":"5.20.1","new_version":"5.21.2","repository_url":"https://github.com/ambethia/recaptcha"},{"name":"strong_migrations","old_version":"2.5.0","new_version":"2.6.0","repository_url":"https://github.com/ankane/strong_migrations"},{"name":"debug","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/ruby/debug"},{"name":"factory_bot_rails","old_version":"6.5.0","new_version":"6.5.1","repository_url":"https://github.com/thoughtbot/factory_bot_rails"},{"name":"faker","old_version":"3.5.2","new_version":"3.8.0","repository_url":"https://github.com/faker-ruby/faker"},{"name":"rspec-rails","old_version":"8.0.2","new_version":"8.0.4","repository_url":"https://github.com/rspec/rspec-rails"},{"name":"rubocop-performance","old_version":"1.25.0","new_version":"1.26.1","repository_url":"https://github.com/rubocop/rubocop-performance"},{"name":"rubocop-rails","old_version":"2.33.3","new_version":"2.34.3","repository_url":"https://github.com/rubocop/rubocop-rails"},{"name":"rubocop-rspec","old_version":"3.6.0","new_version":"3.9.0","repository_url":"https://github.com/rubocop/rubocop-rspec"},{"name":"rbs_rails","old_version":"0.12.1","new_version":"0.13.1","repository_url":"https://github.com/pocke/rbs_rails"},{"name":"json-schema","old_version":"6.0.0","new_version":"6.2.0","repository_url":"https://github.com/voxpupuli/json-schema"},{"name":"webmock","old_version":"3.25.1","new_version":"3.26.2","repository_url":"https://github.com/bblimke/webmock"},{"name":"undercover","old_version":"0.8.0","new_version":"0.8.4","repository_url":"https://github.com/grodowski/undercover"},{"name":"capybara-playwright-driver","old_version":"0.5.7","new_version":"0.5.9","repository_url":"https://github.com/YusukeIwaki/capybara-playwright-driver"},{"name":"listen","old_version":"3.9.0","new_version":"3.10.0","repository_url":"https://github.com/guard/listen"},{"name":"web-console","old_version":"4.2.1","new_version":"4.3.0","repository_url":"https://github.com/rails/web-console"},{"name":"bundler-audit","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/rubysec/bundler-audit"},{"name":"lookbook","old_version":"2.3.13","new_version":"2.3.14","repository_url":"https://github.com/lookbook-hq/lookbook"},{"name":"oj","old_version":"3.16.11","new_version":"3.17.0","repository_url":"https://github.com/ohler55/oj"},{"name":"rack-attack","old_version":"6.7.0","new_version":"6.8.0","repository_url":"https://github.com/rack/rack-attack"},{"name":"aws-sdk-s3","old_version":"1.208.0","new_version":"1.219.0","repository_url":"https://github.com/aws/aws-sdk-ruby"},{"name":"opentelemetry-sdk","old_version":"1.8.1","new_version":"1.11.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby"},{"name":"opentelemetry-exporter-otlp","old_version":"0.30.0","new_version":"0.33.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby"},{"name":"opentelemetry-instrumentation-active_job","old_version":"0.8.0","new_version":"0.11.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby-contrib"},{"name":"maintenance_tasks","old_version":"2.12.0","new_version":"2.14.0","repository_url":"https://github.com/Shopify/maintenance_tasks"},{"name":"stackprof","old_version":"0.2.27","new_version":"0.2.28","repository_url":"https://github.com/tmm1/stackprof"},{"name":"concurrent-ruby","old_version":"1.3.5","new_version":"1.3.6","repository_url":"https://github.com/ruby-concurrency/concurrent-ruby"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the minor-and-patch group with 47 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-actionmailer-ses](https://github.com/aws/aws-actionmailer-ses-ruby) | `1.0.0` | `1.1.0` |\n| [dotenv-rails](https://github.com/bkeepers/dotenv) | `3.1.8` | `3.2.0` |\n| [kt-paperclip](https://github.com/kreeti/kt-paperclip) | `7.2.2` | `7.3.0` |\n| [omniauth](https://github.com/omniauth/omniauth) | `2.1.3` | `2.1.4` |\n| [omniauth-google-oauth2](https://github.com/zquestz/omniauth-google-oauth2) | `1.2.1` | `1.2.2` |\n| [view_component](https://github.com/viewcomponent/view_component) | `4.6.0` | `4.7.0` |\n| [rails](https://github.com/rails/rails) | `8.0.5` | `8.1.3` |\n| [terser](https://github.com/ahorek/terser-ruby) | `1.2.6` | `1.2.7` |\n| [jquery-rails](https://github.com/rails/jquery-rails) | `4.6.0` | `4.6.1` |\n| [sidekiq](https://github.com/sidekiq/sidekiq) | `8.0.7` | `8.1.3` |\n| [geocoder](https://github.com/alexreisner/geocoder) | `1.8.5` | `1.8.6` |\n| [pundit](https://github.com/varvet/pundit) | `2.5.0` | `2.5.2` |\n| [ahoy_matey](https://github.com/ankane/ahoy) | `5.4.0` | `5.5.0` |\n| [i18n-js](https://github.com/fnando/i18n-js) | `4.2.3` | `4.2.4` |\n| [pg](https://github.com/ged/ruby-pg) | `1.6.1` | `1.6.3` |\n| [bootsnap](https://github.com/rails/bootsnap) | `1.18.6` | `1.23.0` |\n| [rexml](https://github.com/ruby/rexml) | `3.4.2` | `3.4.4` |\n| [flipper-redis](https://github.com/flippercloud/flipper) | `1.3.6` | `1.4.1` |\n| [friendly_id](https://github.com/norman/friendly_id) | `5.5.1` | `5.6.0` |\n| [rails-i18n](https://github.com/svenfuchs/rails-i18n) | `8.0.2` | `8.1.0` |\n| [recaptcha](https://github.com/ambethia/recaptcha) | `5.20.1` | `5.21.2` |\n| [strong_migrations](https://github.com/ankane/strong_migrations) | `2.5.0` | `2.6.0` |\n| [debug](https://github.com/ruby/debug) | `1.11.0` | `1.11.1` |\n| [factory_bot_rails](https://github.com/thoughtbot/factory_bot_rails) | `6.5.0` | `6.5.1` |\n| [faker](https://github.com/faker-ruby/faker) | `3.5.2` | `3.8.0` |\n| [rspec-rails](https://github.com/rspec/rspec-rails) | `8.0.2` | `8.0.4` |\n| [rubocop-performance](https://github.com/rubocop/rubocop-performance) | `1.25.0` | `1.26.1` |\n| [rubocop-rails](https://github.com/rubocop/rubocop-rails) | `2.33.3` | `2.34.3` |\n| [rubocop-rspec](https://github.com/rubocop/rubocop-rspec) | `3.6.0` | `3.9.0` |\n| [rbs_rails](https://github.com/pocke/rbs_rails) | `0.12.1` | `0.13.1` |\n| [json-schema](https://github.com/voxpupuli/json-schema) | `6.0.0` | `6.2.0` |\n| [webmock](https://github.com/bblimke/webmock) | `3.25.1` | `3.26.2` |\n| [undercover](https://github.com/grodowski/undercover) | `0.8.0` | `0.8.4` |\n| [capybara-playwright-driver](https://github.com/YusukeIwaki/capybara-playwright-driver) | `0.5.7` | `0.5.9` |\n| [listen](https://github.com/guard/listen) | `3.9.0` | `3.10.0` |\n| [web-console](https://github.com/rails/web-console) | `4.2.1` | `4.3.0` |\n| [bundler-audit](https://github.com/rubysec/bundler-audit) | `0.9.2` | `0.9.3` |\n| [lookbook](https://github.com/lookbook-hq/lookbook) | `2.3.13` | `2.3.14` |\n| [oj](https://github.com/ohler55/oj) | `3.16.11` | `3.17.0` |\n| [rack-attack](https://github.com/rack/rack-attack) | `6.7.0` | `6.8.0` |\n| [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) | `1.208.0` | `1.219.0` |\n| [opentelemetry-sdk](https://github.com/open-telemetry/opentelemetry-ruby) | `1.8.1` | `1.11.0` |\n| [opentelemetry-exporter-otlp](https://github.com/open-telemetry/opentelemetry-ruby) | `0.30.0` | `0.33.0` |\n| [opentelemetry-instrumentation-active_job](https://github.com/open-telemetry/opentelemetry-ruby-contrib) | `0.8.0` | `0.11.0` |\n| [maintenance_tasks](https://github.com/Shopify/maintenance_tasks) | `2.12.0` | `2.14.0` |\n| [stackprof](https://github.com/tmm1/stackprof) | `0.2.27` | `0.2.28` |\n| [concurrent-ruby](https://github.com/ruby-concurrency/concurrent-ruby) | `1.3.5` | `1.3.6` |\n\n\nUpdates `aws-actionmailer-ses` from 1.0.0 to 1.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/releases\"\u003eaws-actionmailer-ses's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v1.1.0 - 2026-03-31\u003c/h2\u003e\n\u003cp\u003eTag release v1.1.0\u003c/p\u003e\n\u003cp\u003eReferences: \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/14\"\u003e#14\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/6\"\u003e#6\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/7\"\u003e#7\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/9\"\u003e#9\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFeature - Support injecting a preconstructed client via \u003ccode\u003e:ses_client\u003c/code\u003e and \u003ccode\u003e:sesv2_client\u003c/code\u003e options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/blob/main/CHANGELOG.md\"\u003eaws-actionmailer-ses's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.1.0 (2026-03-31)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFeature - Support injecting a preconstructed client via \u003ccode\u003e:ses_client\u003c/code\u003e and \u003ccode\u003e:sesv2_client\u003c/code\u003e options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/87d57bae1d2da68729c639da957c89b4f14eef02\"\u003e\u003ccode\u003e87d57ba\u003c/code\u003e\u003c/a\u003e Bumped version to v1.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/55de5a801bc2f819acda6521fa7efab8e72829bb\"\u003e\u003ccode\u003e55de5a8\u003c/code\u003e\u003c/a\u003e Allow precreated SESv2 client (issue \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/7\"\u003e#7\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/14\"\u003e#14\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/0e7a21034d43615e7765bb96c84f09f43fe80e1f\"\u003e\u003ccode\u003e0e7a210\u003c/code\u003e\u003c/a\u003e Scope down GitHub token permissions for ci.yml (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/9\"\u003e#9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/c2b91df4f58ed7da035c953ecfd4f9847da46ebb\"\u003e\u003ccode\u003ec2b91df\u003c/code\u003e\u003c/a\u003e Update CI to include 3.4 (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/6\"\u003e#6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/aab2974887db3c4d525f9e18c3f1ae7c6513d230\"\u003e\u003ccode\u003eaab2974\u003c/code\u003e\u003c/a\u003e Update README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/ce6af36916d5ab9224bf193690d98f539585f208\"\u003e\u003ccode\u003ece6af36\u003c/code\u003e\u003c/a\u003e Added next release section to the changelog. [ci skip]\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/compare/v1.0.0...v1.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv-rails` from 3.1.8 to 3.2.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bkeepers/dotenv/releases\"\u003edotenv-rails's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBoost app startup time by removing to_sentence usage by \u003ca href=\"https://github.com/ThomasCrambert\"\u003e\u003ccode\u003e@​ThomasCrambert\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/534\"\u003ebkeepers/dotenv#534\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHandle parentheses in variables in commands by \u003ca href=\"https://github.com/i7an\"\u003e\u003ccode\u003e@​i7an\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/540\"\u003ebkeepers/dotenv#540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eallow warning when a env var was not overwritten by \u003ca href=\"https://github.com/grosser\"\u003e\u003ccode\u003e@​grosser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/531\"\u003ebkeepers/dotenv#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix a few small issues by \u003ca href=\"https://github.com/grosser\"\u003e\u003ccode\u003e@​grosser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/532\"\u003ebkeepers/dotenv#532\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ThomasCrambert\"\u003e\u003ccode\u003e@​ThomasCrambert\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/534\"\u003ebkeepers/dotenv#534\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i7an\"\u003e\u003ccode\u003e@​i7an\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/540\"\u003ebkeepers/dotenv#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\"\u003ehttps://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/34156bf400cd67387fa6ed9f146778f6a2f5f743\"\u003e\u003ccode\u003e34156bf\u003c/code\u003e\u003c/a\u003e Prepare for 3.2.0 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/ab478201bdb487bfebd9e89875fd4edcf19dc064\"\u003e\u003ccode\u003eab47820\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/531\"\u003e#531\u003c/a\u003e from grosser/grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/fae61202e432f39742e2592817cc7bb38f559852\"\u003e\u003ccode\u003efae6120\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/4f510f41073cabb9786e3a5ea57263933497e696\"\u003e\u003ccode\u003e4f510f4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/532\"\u003e#532\u003c/a\u003e from grosser/grosser/fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/959e1dac9d933a7ffe6a2ab17081f8235b7822a9\"\u003e\u003ccode\u003e959e1da\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/539\"\u003e#539\u003c/a\u003e from bkeepers/dependabot/github_actions/actions/check...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/041451e4ef7fd3a4ea604fcabef0cfb6fb5e79a3\"\u003e\u003ccode\u003e041451e\u003c/code\u003e\u003c/a\u003e Update spec message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/b300f262bdf1cfd6ac5215fd44baa771753702b9\"\u003e\u003ccode\u003eb300f26\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/5f4ca012b03c82343ad3f926e2fd281aa30a434b\"\u003e\u003ccode\u003e5f4ca01\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/209dca47e453f7288aac9f31330e67e3f0b83e78\"\u003e\u003ccode\u003e209dca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/540\"\u003e#540\u003c/a\u003e from i7an/handle-parentheses\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/48c495683008c5dd1816a89329e59f8386324bb2\"\u003e\u003ccode\u003e48c4956\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into handle-parentheses\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `kt-paperclip` from 7.2.2 to 7.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kreeti/kt-paperclip/releases\"\u003ekt-paperclip's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v7.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix BOM for gd locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/158\"\u003e#158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport versions of aws-sdk-s3 \u0026gt;= 1.197 by conditionally using \u003ccode\u003eAws::S3::TransferManager\u003c/code\u003e if available (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/155\"\u003e#155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix frozen string literal warning in geometry.rb (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFeature - add option to return attachment attributes on destroy (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/91\"\u003e#91\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRuby 3.1 - Fix loading of Fog (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/135\"\u003e#135\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/139\"\u003e#139\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFrench Locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/134\"\u003e#134\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oz-tal\"\u003e\u003ccode\u003e@​oz-tal\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/134\"\u003ekreeti/kt-paperclip#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zz9pzza\"\u003e\u003ccode\u003e@​zz9pzza\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/135\"\u003ekreeti/kt-paperclip#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unijewski\"\u003e\u003ccode\u003e@​unijewski\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/91\"\u003ekreeti/kt-paperclip#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lorennorman\"\u003e\u003ccode\u003e@​lorennorman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/146\"\u003ekreeti/kt-paperclip#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cgunther\"\u003e\u003ccode\u003e@​cgunther\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/151\"\u003ekreeti/kt-paperclip#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jukra\"\u003e\u003ccode\u003e@​jukra\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/155\"\u003ekreeti/kt-paperclip#155\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\"\u003ehttps://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/818f236aa6f2323bd0055bea664b33187d926377\"\u003e\u003ccode\u003e818f236\u003c/code\u003e\u003c/a\u003e Deperecate NEWS to OLD-NEWS, see release notes for correct and accurate list ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/a38ed66b5d08210a4326b0d78e2116d0946fa3c2\"\u003e\u003ccode\u003ea38ed66\u003c/code\u003e\u003c/a\u003e prepare for new release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/8820cb221210bf04ca2de278dab594adfa46efe5\"\u003e\u003ccode\u003e8820cb2\u003c/code\u003e\u003c/a\u003e [Fix \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/154\"\u003e#154\u003c/a\u003e] remove BOM from gd locale\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/cd5c4496d12894eafa218cb631c592b67c9c10a2\"\u003e\u003ccode\u003ecd5c449\u003c/code\u003e\u003c/a\u003e Fix S3 TransferManager to use configured client\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/f017c401218da5a1e106ed3dd964b51d601bac5b\"\u003e\u003ccode\u003ef017c40\u003c/code\u003e\u003c/a\u003e Make usage of Aws::S3::TransferManager conditional based on availability\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/233b4756745c2610988796a0059408a50d322b92\"\u003e\u003ccode\u003e233b475\u003c/code\u003e\u003c/a\u003e Support aws-sdk-s3 \u0026gt;= 1.196.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/e20e848c80ce16f18dae2162d5e00be0d9b51421\"\u003e\u003ccode\u003ee20e848\u003c/code\u003e\u003c/a\u003e Fix the use of deprecated methods from \u003ccode\u003eaws-sdk-s3\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/5078ca1c33c8cb66865e6127152ac1e240b2bb0a\"\u003e\u003ccode\u003e5078ca1\u003c/code\u003e\u003c/a\u003e Fix frozen string literal warning in geometry.rb (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/153e7dbe462de4f7f3ef42c67f95390e98e6cba7\"\u003e\u003ccode\u003e153e7db\u003c/code\u003e\u003c/a\u003e fix frozen string literal deprecation warning (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/146\"\u003e#146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/83dc8d92e63e4c360bb9f45af1cf3b63d99bed54\"\u003e\u003ccode\u003e83dc8d9\u003c/code\u003e\u003c/a\u003e Update LICENSE\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `omniauth` from 2.1.3 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/omniauth/omniauth/releases\"\u003eomniauth's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ruby 3.4 to CI by \u003ca href=\"https://github.com/tejasbubane\"\u003e\u003ccode\u003e@​tejasbubane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/omniauth/omniauth/pull/1142\"\u003eomniauth/omniauth#1142\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd after_request_phase callback hook by \u003ca href=\"https://github.com/gerardo-navarro\"\u003e\u003ccode\u003e@​gerardo-navarro\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/omniauth/omniauth/pull/1147\"\u003eomniauth/omniauth#1147\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\"\u003ehttps://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eYou may now configure an after_request_phase callback on your omniauth builder instance. This callback will be run after the request phase before returning the request result.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/20ac5e05a39d58d18aca6419599f7176208f985d\"\u003e\u003ccode\u003e20ac5e0\u003c/code\u003e\u003c/a\u003e 3.1.4 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/3a249afad83e4522bd4761404cbdc89fd56a1079\"\u003e\u003ccode\u003e3a249af\u003c/code\u003e\u003c/a\u003e Add after_request_phase callback hook (\u003ca href=\"https://redirect.github.com/omniauth/omniauth/issues/1147\"\u003e#1147\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/0bcfd5b25bf946422cd4d9c40c4f514121ac04d6\"\u003e\u003ccode\u003e0bcfd5b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/omniauth/omniauth/issues/1142\"\u003e#1142\u003c/a\u003e from tejasbubane/ruby-3.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/09ee92e658878f31ab51f29e02d41296cfe36111\"\u003e\u003ccode\u003e09ee92e\u003c/code\u003e\u003c/a\u003e include cgi in test group due to removal of cookie\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/abfde9072cef0e4d89463daf6185ac68520087f7\"\u003e\u003ccode\u003eabfde90\u003c/code\u003e\u003c/a\u003e add dependency on logger\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/844548c8641d1a3b65c9062e67e073fa8bf39936\"\u003e\u003ccode\u003e844548c\u003c/code\u003e\u003c/a\u003e Add Ruby 3.4 to CI\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `omniauth-google-oauth2` from 1.2.1 to 1.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/releases\"\u003eomniauth-google-oauth2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.2.2\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRuby 4.0 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNothing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUnused \u003ccode\u003eIMAGE_SIZE_REGEXP\u003c/code\u003e constant.\u003c/li\u003e\n\u003cli\u003eDead \u003ccode\u003eskip_friends\u003c/code\u003e and \u003ccode\u003eskip_image_info\u003c/code\u003e options (Google+ was shut down in 2019).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplaced \u003ccode\u003eCGI.parse\u003c/code\u003e with \u003ccode\u003eURI.decode_www_form\u003c/code\u003e for Ruby 4.0 compatibility.\u003c/li\u003e\n\u003cli\u003eUpdated gemspec description to reference OmniAuth instead of OmniAuth 1.x.\u003c/li\u003e\n\u003cli\u003eModernized CI: bumped actions/checkout to v6, rake to 13.3, and rubocop to latest.\u003c/li\u003e\n\u003cli\u003eAdded edge case tests for \u003ccode\u003euid\u003c/code\u003e, \u003ccode\u003estrip_unnecessary_query_parameters\u003c/code\u003e, \u003ccode\u003everify_token\u003c/code\u003e, \u003ccode\u003everify_hd\u003c/code\u003e wildcard, and malformed JSON handling.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/blob/master/CHANGELOG.md\"\u003eomniauth-google-oauth2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.2.2 - 2026-02-23\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRuby 4.0 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNothing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUnused \u003ccode\u003eIMAGE_SIZE_REGEXP\u003c/code\u003e constant.\u003c/li\u003e\n\u003cli\u003eDead \u003ccode\u003eskip_friends\u003c/code\u003e and \u003ccode\u003eskip_image_info\u003c/code\u003e options (Google+ was shut down in 2019).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplaced \u003ccode\u003eCGI.parse\u003c/code\u003e with \u003ccode\u003eURI.decode_www_form\u003c/code\u003e for Ruby 4.0 compatibility.\u003c/li\u003e\n\u003cli\u003eUpdated gemspec description to reference OmniAuth instead of OmniAuth 1.x.\u003c/li\u003e\n\u003cli\u003eModernized CI: bumped actions/checkout to v6, rake to 13.3, and rubocop to latest.\u003c/li\u003e\n\u003cli\u003eAdded edge case tests for \u003ccode\u003euid\u003c/code\u003e, \u003ccode\u003estrip_unnecessary_query_parameters\u003c/code\u003e, \u003ccode\u003everify_token\u003c/code\u003e, \u003ccode\u003everify_hd\u003c/code\u003e wildcard, and malformed JSON handling.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/5158faa94a620d8ec4d9ce400aabfef3a3844dd9\"\u003e\u003ccode\u003e5158faa\u003c/code\u003e\u003c/a\u003e Add release date to CHANGELOG.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/c5f46005e0207d2e436cf0db37c85170cca04da7\"\u003e\u003ccode\u003ec5f4600\u003c/code\u003e\u003c/a\u003e Update docs and examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/4c14af8e1e6dc2615da908c50e4b0b757972922e\"\u003e\u003ccode\u003e4c14af8\u003c/code\u003e\u003c/a\u003e Backfill missing tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/e66d0bbe6ad91f9f5a60056dae2ebf850373f249\"\u003e\u003ccode\u003ee66d0bb\u003c/code\u003e\u003c/a\u003e Clean up dead code, modernize CI, and prep 1.2.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/b902e8e7585e8e3610040d9c770f2d4e90b6f132\"\u003e\u003ccode\u003eb902e8e\u003c/code\u003e\u003c/a\u003e Modernize CI: bump rubocop, checkout action, and tooling defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/ac9a979db8ee097971d5d70c12142070c539d8ab\"\u003e\u003ccode\u003eac9a979\u003c/code\u003e\u003c/a\u003e Add Ruby 4.0 to CI (\u003ca href=\"https://redirect.github.com/zquestz/omniauth-google-oauth2/issues/474\"\u003e#474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/d3f1c912e438ccf6aba577c66772bf2e37373d73\"\u003e\u003ccode\u003ed3f1c91\u003c/code\u003e\u003c/a\u003e Add GitHub pages config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/253f023cdd8a5d5e05b3fed9aa00ae478a6c2997\"\u003e\u003ccode\u003e253f023\u003c/code\u003e\u003c/a\u003e Remove calendar scope on example app\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/baaf3b755ea1a02c9f811fd513b0fe90fdd2defb\"\u003e\u003ccode\u003ebaaf3b7\u003c/code\u003e\u003c/a\u003e chore(doc): update JavaScript example in README (\u003ca href=\"https://redirect.github.com/zquestz/omniauth-google-oauth2/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/dcea9d208416b53af0956d95ce54daa424d36490\"\u003e\u003ccode\u003edcea9d2\u003c/code\u003e\u003c/a\u003e Add Ruby 3.3 and 3.4 to CI matrix\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/compare/v1.2.1...v1.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `view_component` from 4.6.0 to 4.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/viewcomponent/view_component/releases\"\u003eview_component's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix stale content cache when slots are accessed before \u003ccode\u003erender_in\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJared Armstrong\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdd rubocop-view_component to resources.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eAndy Waite\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix bug where inheritance of components with formatless templates improperly raised a NoMethodError.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e, \u003cem\u003eJoel Hawksley\u003c/em\u003e, \u003cem\u003eCameron Dutro\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ViewComponent/view_component/blob/main/docs/CHANGELOG.md\"\u003eview_component's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix stale content cache when slots are accessed before \u003ccode\u003erender_in\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJared Armstrong\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdd rubocop-view_component to resources.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eAndy Waite\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix bug where inheritance of components with formatless templates improperly raised a NoMethodError.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e, \u003cem\u003eJoel Hawksley\u003c/em\u003e, \u003cem\u003eCameron Dutro\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/b89ff4feda61a44d066d6d58a67a4add318f944f\"\u003e\u003ccode\u003eb89ff4f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2610\"\u003e#2610\u003c/a\u003e from ViewComponent/release-4-7-0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/c187ebb9ea8e19b6cb5d988bb1c9eab7431173b2\"\u003e\u003ccode\u003ec187ebb\u003c/code\u003e\u003c/a\u003e lockfiles\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/a53f39d8b11efcc47df62617d1127849448207a7\"\u003e\u003ccode\u003ea53f39d\u003c/code\u003e\u003c/a\u003e release 4.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/59e97964530bb897b80c2a02ca08f0415a361319\"\u003e\u003ccode\u003e59e9796\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2609\"\u003e#2609\u003c/a\u003e from ViewComponent/dependabot/bundler/yard-0.9.42\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/3f4277cbe0d9fb05024a79650650838beb962e46\"\u003e\u003ccode\u003e3f4277c\u003c/code\u003e\u003c/a\u003e Bump yard from 0.9.41 to 0.9.42\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/42909f1ca36038a0564a47242012ca011f420840\"\u003e\u003ccode\u003e42909f1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2608\"\u003e#2608\u003c/a\u003e from ViewComponent/dependabot/bundler/rake-13.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/40f8f68f487e5b1ff9089930900bd7c8ddbaf281\"\u003e\u003ccode\u003e40f8f68\u003c/code\u003e\u003c/a\u003e Bump rake from 13.4.1 to 13.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/62581fedb963feccb3f42a8669c3e04e737a780e\"\u003e\u003ccode\u003e62581fe\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2607\"\u003e#2607\u003c/a\u003e from ViewComponent/dependabot/bundler/yard-0.9.41\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/db4d53ca3a358f5645c521fdcac43d2a5de54d8e\"\u003e\u003ccode\u003edb4d53c\u003c/code\u003e\u003c/a\u003e Bump yard from 0.9.40 to 0.9.41\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/51f833b18443da39d865be4e59522445b6998fb4\"\u003e\u003ccode\u003e51f833b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2606\"\u003e#2606\u003c/a\u003e from ViewComponent/dependabot/bundler/minitest-6.0.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/viewcomponent/view_component/compare/v4.6.0...v4.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rails` from 8.0.5 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003erails's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/e91694b1f0e176eb01bfcc480a008bffc70f7602\"\u003e\u003ccode\u003ee91694b\u003c/code\u003e\u003c/a\u003e Update CHANGELOG (8.1 only)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63f5ad83edaa0b976f82d46988d745426aa4a42d\"\u003e\u003ccode\u003e63f5ad8\u003c/code\u003e\u003c/a\u003e Skip blank attribute names in Action View tag helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8c9676b803820110548cdb7523800db43bc6874c\"\u003e\u003ccode\u003e8c9676b\u003c/code\u003e\u003c/a\u003e Prevent glob injection in ActiveStorage DiskService#delete_prefixed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/9b06fbc0f504b8afe333f33d19548f3b85fbe655\"\u003e\u003ccode\u003e9b06fbc\u003c/code\u003e\u003c/a\u003e Prevent path traversal in ActiveStorage DiskService\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ec1a0e215efd27a3b3911aae6df978a80f456a49\"\u003e\u003ccode\u003eec1a0e2\u003c/code\u003e\u003c/a\u003e Improve performance of NumberToDelimitedConverter\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v8.0.5...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `terser` from 1.2.6 to 1.2.7\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ahorek/terser-ruby/blob/master/CHANGELOG.md\"\u003eterser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.2.7 (23 March 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadded a new module option to enable minification of ES6 modules (default is false)\u003c/li\u003e\n\u003cli\u003eupdate TerserJS to [5.46.1]\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/14243401aadac062e738fde86525f261c37b1782\"\u003e\u003ccode\u003e1424340\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ahorek/terser-ruby/issues/67\"\u003e#67\u003c/a\u003e from ahorek/terser5461\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/ae1669dba36b571932a25685765932103db89189\"\u003e\u003ccode\u003eae1669d\u003c/code\u003e\u003c/a\u003e terser 5.46.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/c8b1c3213847dfeb85e1769958ecf9753651e697\"\u003e\u003ccode\u003ec8b1c32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ahorek/terser-ruby/issues/64\"\u003e#64\u003c/a\u003e from ahorek/module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/3a614841138d5c1dcf79d6362e22ad5b0a0b19f3\"\u003e\u003ccode\u003e3a61484\u003c/code\u003e\u003c/a\u003e add a module option\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ahorek/terser-ruby/compare/1.2.6...1.2.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jquery-rails` from 4.6.0 to 4.6.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md\"\u003ejquery-rails's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.7.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/034296045427fa54ad095f392fccd9ff5708e110\"\u003e\u003ccode\u003e0342960\u003c/code\u003e\u003c/a\u003e Release v4.6.1 with jQuery v3.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/039b12e91c148d65789030308653545943db43a4\"\u003e\u003ccode\u003e039b12e\u003c/code\u003e\u003c/a\u003e Update jquery to v3.7.1 (\u003ca href=\"https://redirect.github.com/rails/jquery-rails/issues/305\"\u003e#305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/jquery-rails/compare/v4.6.0...v4.6.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sidekiq` from 8.0.7 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sidekiq/sidekiq/blob/main/Changes.md\"\u003esidekiq's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix edge case leading to duplicate, concurrent execution \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6379\"\u003e#6379\u003c/a\u003e\nIf 2 Capsules process jobs from the same queue, long-running\njobs could run in parallel during process shutdown.\u003c/li\u003e\n\u003cli\u003e[SECURITY] Remove as much YAML usage as possible. \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6950\"\u003e#6950\u003c/a\u003e\nLocalization files in \u003ccode\u003eweb/locales\u003c/code\u003e are now manually parsed.\nSidekiq::CLI will now only require YAML if you use a \u003ccode\u003e-C\u003c/code\u003e .yml file.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eInitial release for \u003ccode\u003ekiq\u003c/code\u003e, Sidekiq's official terminal UI:\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003ebundle exec kiq\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eUse REDIS_URL or REDIS_PROVIDER to point \u003ccode\u003ekiq\u003c/code\u003e to Redis.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eMutation during iteration in \u003ccode\u003eSortedSet#each\u003c/code\u003e caused it to miss half of the jobs \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6936\"\u003e#6936\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix edge case resulting in nil crash on /busy page \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6954\"\u003e#6954\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDEPRECATION\u003c/strong\u003e \u003ccode\u003erequire 'sidekiq/testing'\u003c/code\u003e and\n\u003ccode\u003erequire 'sidekiq/testing/inline'\u003c/code\u003e.\nAdd new \u003ccode\u003eSidekiq.testing!(mode)\u003c/code\u003e API \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6931\"\u003e#6931\u003c/a\u003e\nRequiring code should not enable process-wide changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003e# Old, implicit\nrequire \u0026quot;sidekiq/testing\u0026quot;\nrequire \u0026quot;sidekiq/testing/inline\u0026quot;\n# New, more explicit\nSidekiq.testing!(:fake)\nSidekiq.testing!(:inline)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eFix race condition with Stop button in UI \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6935\"\u003e#6935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix javascript error handler \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6893\"\u003e#6893\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eretry_for\u003c/code\u003e and \u003ccode\u003eretry\u003c/code\u003e are now mutually exclusive [#6878, Saidbek]\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eperform_inline\u003c/code\u003e now enforces \u003ccode\u003estrict_args!\u003c/code\u003e [#6718, Saidbek]\u003c/li\u003e\n\u003cli\u003eIntegrate Herb linting for ERB templates [#6760, Saidbek]\u003c/li\u003e\n\u003cli\u003eRemove CSRF code, use \u003ccode\u003eSec-Fetch-Site\u003c/code\u003e header [#6874, deve1212]\u003c/li\u003e\n\u003cli\u003eAllow custom Web UI \u003ccode\u003eassets_path\u003c/code\u003e for CDN purposes [#6865, stanhu]\u003c/li\u003e\n\u003cli\u003eUpgrade to connection_pool 3.0\u003c/li\u003e\n\u003cli\u003eAllow idle connection reaping after N seconds.\nYou can activate this \u003cstrong\u003ebeta\u003c/strong\u003e feature like below.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/52a08748a39030aa22e73861e1fd1bbc60bf3dea\"\u003e\u003ccode\u003e52a0874\u003c/code\u003e\u003c/a\u003e Bump, prep [ciskip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/03ca0473816dfa26eb80ae2660ab316b9ff738fb\"\u003e\u003ccode\u003e03ca047\u003c/code\u003e\u003c/a\u003e Dont call bulk_requeue when stopping Capsule, \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6379\"\u003e#6379\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/90d1aeed267a19cc0dfa1d2189b8d184ff5bb995\"\u003e\u003ccode\u003e90d1aee\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;add: info tag when dead queue is at max (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6976\"\u003e#6976\u003c/a\u003e)\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/a5ae98b83aad1758ec6d7fa26e6f78562abc50cf\"\u003e\u003ccode\u003ea5ae98b\u003c/code\u003e\u003c/a\u003e add: info tag when dead queue is at max (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6976\"\u003e#6976\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/fef6cdf5dc2aeaf579f242368ad4beb0675629a5\"\u003e\u003ccode\u003efef6cdf\u003c/code\u003e\u003c/a\u003e Reduce unnecessary exceptions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/30723ca77f5df695079fefd562cea803ce2d5420\"\u003e\u003ccode\u003e30723ca\u003c/code\u003e\u003c/a\u003e fix: improve pagination active page visibility in dark mode (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6960\"\u003e#6960\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/554de9f673f6555b760bf707ad88573db9da44e1\"\u003e\u003ccode\u003e554de9f\u003c/code\u003e\u003c/a\u003e pro changes [ciskip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/25afb7938feeeb4b4f80c979abde89164586d3c6\"\u003e\u003ccode\u003e25afb79\u003c/code\u003e\u003c/a\u003e Remove YAML usage, \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6950\"\u003e#6950\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/96e87996a9a071dc183f85bae513fe0b140cbc56\"\u003e\u003ccode\u003e96e8799\u003c/code\u003e\u003c/a\u003e Update error_handler proc to include config parameter (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6974\"\u003e#6974\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/d9a3c83e999182146a06390cfcd90c462f3310e8\"\u003e\u003ccode\u003ed9a3c83\u003c/code\u003e\u003c/a\u003e Add error_handler breaking change in upgrade docs (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6973\"\u003e#6973\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sidekiq/sidekiq/compare/v8.0.7...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `geocoder` from 1.8.5 to 1.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alexreisner/geocoder/blob/master/CHANGELOG.md\"\u003egeocoder's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.8.6 (2025 Sep 21)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for IPInfo Lite lookup (thanks github.com/iltempo).\u003c/li\u003e\n\u003cli\u003eVarious minor fixes and improvements.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/d3515db46c5785db8cd48dbf94af123a2c99b8a9\"\u003e\u003ccode\u003ed3515db\u003c/code\u003e\u003c/a\u003e Prepare for release of gem version 1.8.6.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/737d16f277f81aabe73e2dfe466e2ba84fef188a\"\u003e\u003ccode\u003e737d16f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1694\"\u003e#1694\u003c/a\u003e from Intrepidd/update-data-gouv-fr-domain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/4b50c085eea4de4f453eab2e8dc6faf7b3824420\"\u003e\u003ccode\u003e4b50c08\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1695\"\u003e#1695\u003c/a\u003e from cprodhomme/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/31545ee756f1230a063e86458b3dadbac9b7e7b4\"\u003e\u003ccode\u003e31545ee\u003c/code\u003e\u003c/a\u003e Update README_API_GUIDE.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/3a90b5aa6c708945cf181f16a182ca232f668c4d\"\u003e\u003ccode\u003e3a90b5a\u003c/code\u003e\u003c/a\u003e Update BAN domain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/b2c0aa5526f90209883e3ca64b73d9559d21f729\"\u003e\u003ccode\u003eb2c0aa5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1691\"\u003e#1691\u003c/a\u003e from TheRusskiy/radius-column-arel\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/cd58cab7fd167d641927fe4a083963fcf5cd08df\"\u003e\u003ccode\u003ecd58cab\u003c/code\u003e\u003c/a\u003e add \u0026quot;arel\u0026quot; to near_test spec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/63ca4702ccffe776b146c28d289f7449d25946ee\"\u003e\u003ccode\u003e63ca470\u003c/code\u003e\u003c/a\u003e radius column can be an instance of Arel.sql\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/eaf85fe4de045c2ad3e035f560d6755e82646bee\"\u003e\u003ccode\u003eeaf85fe\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1688\"\u003e#1688\u003c/a\u003e from skillstopractice/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/00369bb35a29a86f54e6fea516ecf9842e5f855f\"\u003e\u003ccode\u003e00369bb\u003c/code\u003e\u003c/a\u003e Update tests to use data['place_name'] for Mapbox\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexreisner/geocoder/compare/v1.8.5...v1.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `pundit` from 2.5.0 to 2.5.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/varvet/pundit/blob/main/CHANGELOG.md\"\u003epundit's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.5.2 (2025-09-24)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003econfig/rubocop-rspec.yml\u003c/code\u003e back from accidentally being excluded \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/866\"\u003e#866\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.5.1 (2025-09-12)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRequiring only \u003ccode\u003epundit/rspec\u003c/code\u003e no longer raises an error in Active Support \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/857\"\u003e#857\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/2d665d67a26f794987df926e49676948fe115289\"\u003e\u003ccode\u003e2d665d6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/867\"\u003e#867\u003c/a\u003e from varvet/kbs/release-v2.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/7ff48a83790aef27bd89fa4da6a0a238599bca2d\"\u003e\u003ccode\u003e7ff48a8\u003c/code\u003e\u003c/a\u003e Bump to v2.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/674abac197c7ecc000fd25a4542344d38c998535\"\u003e\u003ccode\u003e674abac\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/866\"\u003e#866\u003c/a\u003e from varvet/kbs/add-rubocop-back\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/923eebf39ccd6f8095a5c4270953e7a19d6d16a6\"\u003e\u003ccode\u003e923eebf\u003c/code\u003e\u003c/a\u003e Point changelog to PR\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/47668502881e3abed7dd004ca19fa11d66b23b6f\"\u003e\u003ccode\u003e4766850\u003c/code\u003e\u003c/a\u003e Add rubocop config file back to gem release files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/27a840bedadf0ef3d66f1857edd966c2e01cc18e\"\u003e\u003ccode\u003e27a840b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/863\"\u003e#863\u003c/a\u003e from varvet/kbs/fix-build-pipeline\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/381b202dd2e11c5eb0ea1134d29f85331a01d643\"\u003e\u003ccode\u003e381b202\u003c/code\u003e\u003c/a\u003e +3.4 -3.1 (EOL)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/4bb6a67819572bd9431d30048fbab4c9685cfbf2\"\u003e\u003ccode\u003e4bb6a67\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/862\"\u003e#862\u003c/a\u003e from varvet/kbs/fix-build-pipeline\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/6ceca0d2ab84d2240e6422e7b14d208ad10e3304\"\u003e\u003ccode\u003e6ceca0d\u003c/code\u003e\u003c/a\u003e Attempt code quality upload to qlty.sh instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/82d918a4c4c4ab393f662a32e94028d6b086285d\"\u003e\u003ccode\u003e82d918a\u003c/code\u003e\u003c/a\u003e Bump to v2.5.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/varvet/pundit/compare/v2.5.0...v2.5.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ahoy_matey` from 5.4.0 to 5.5.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ankane/ahoy/blob/master/CHANGELOG.md\"\u003eahoy_matey's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.5.0 (2026-04-08)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed error with \u003ccode\u003eAhoy::Tracker\u003c/code\u003e outside of requests\u003c/li\u003e\n\u003cli\u003eDropped support for Ruby \u0026lt; 3.3 and Rails \u0026lt; 7.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.4.2 (2026-03-31)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed cookie deletion with \u003ccode\u003ecookie_domain\u003c/code\u003e and \u003ccode\u003ecookie_options\u003c/code\u003e options\u003c/li\u003e\n\u003cli\u003eUpdated Ahoy.js to 0.4.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.4.1 (2025-09-30)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed deprecation warning with Rack 3.1+\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/0934ed94a4a7263f682eefb47bd78cdc05d33c5d\"\u003e\u003ccode\u003e0934ed9\u003c/code\u003e\u003c/a\u003e Version bump to 5.5.0 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/1881c47e52d10deb1989964acf9809531a937aaf\"\u003e\u003ccode\u003e1881c47\u003c/code\u003e\u003c/a\u003e Updated changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/bb10d30342311ccb8cfc4279555189d56129f6ce\"\u003e\u003ccode\u003ebb10d30\u003c/code\u003e\u003c/a\u003e Fixed error with Ahoy::Tracker outside of request when cookies disabled - res...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/3b4e45fde58880d4432e1a5ab8dfadd41d617117\"\u003e\u003ccode\u003e3b4e45f\u003c/code\u003e\u003c/a\u003e Dropped support for Ruby \u0026lt; 3.3 and Rails \u0026lt; 7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/41d7834a3af1553d8cf890cf231e4fdb53c196d9\"\u003e\u003ccode\u003e41d7834\u003c/code\u003e\u003c/a\u003e Updated readme [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/2186f3857f702c6c5fa3e0d80310d852de2cc8f0\"\u003e\u003ccode\u003e2186f38\u003c/code\u003e\u003c/a\u003e Updated license year [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/eed4fdad924261f9f57b87032e760a06fd4dcd05\"\u003e\u003ccode\u003eeed4fda\u003c/code\u003e\u003c/a\u003e Version bump to 5.4.2 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/f73c04e68fe8b884140cd659acee170224b19ec3\"\u003e\u003ccode\u003ef73c04e\u003c/code\u003e\u003c/a\u003e Updated changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/7c50688aa1e4d56545be421a9427c36c51476383\"\u003e\u003ccode\u003e7c50688\u003c/code\u003e\u003c/a\u003e Fixed cookie deletion with path option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/5a801f44d8bd5e1ab6f8e9f8923f8ef39eaa6e75\"\u003e\u003ccode\u003e5a801f4\u003c/code\u003e\u003c/a\u003e Fixed cookie deletion with cookie_domain option - fixes \u003ca href=\"https://redirect.github.com/ankane/ahoy/issues/581\"\u003e#581\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ankane/ahoy/compare/v5.4.0...v5.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `i18n-js` from 4.2.3 to 4.2.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fnando/i18n-js/blob/main/CHANGELOG.md\"\u003ei18n-js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/f8fb0dc0b01e7e639a6eb5dd875adbaa78858d8f\"\u003e\u003ccode\u003ef8fb0dc\u003c/code\u003e\u003c/a\u003e Bump up version (4.2.4).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/2cbea21df1ac16685a4e974716296853eccc0d49\"\u003e\u003ccode\u003e2cbea21\u003c/code\u003e\u003c/a\u003e Remove benchmark gem (\u003ca href=\"https://redirect.github.com/fnando/i18n-js/issues/737\"\u003e#737\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/9f99172d197b586dab34f4cf6a08a1df9703222f\"\u003e\u003ccode\u003e9f99172\u003c/code\u003e\u003c/a\u003e Update matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/9096c6e63bbbc24900bb10cfd0d42b6a89470c1c\"\u003e\u003ccode\u003e9096c6e\u003c/code\u003e\u003c/a\u003e Fix rubocop warnings.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/237b69b34f73873c2a3c753c45b208e670d15a31\"\u003e\u003ccode\u003e237b69b\u003c/code\u003e\u003c/a\u003e Update --quiet param description (\u003ca href=\"https://redirect.github.com/fnando/i18n-js/issues/730\"\u003e#730\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/1f3305ffa531614de22070ec3a0acbb592902636\"\u003e\u003ccode\u003e1f3305f\u003c/code\u003e\u003c/a\u003e Update action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/674cb0781bdba259e7a25fcd2df6f8dd21dc5276\"\u003e\u003ccode\u003e674cb07\u003c/code\u003e\u003c/a\u003e Fix rubocop warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/877e6f1de96126021cce39f802377ffeead79ff4\"\u003e\u003ccode\u003e877e6f1\u003c/code\u003e\u003c/a\u003e Update actions.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/7e27159f535643bc3080dce132a5ae953c4034ea\"\u003e\u003ccode\u003e7e27159\u003c/code\u003e\u003c/a\u003e Require ruby 3.2+.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/58c32fdc576a499eb2433bd9d633d537f8a696d8\"\u003e\u003ccode\u003e58c32fd\u003c/code\u003e\u003c/a\u003e Disable rubocop rule.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fnando/i18n-js/compare/v4.2.3...v4.2.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `pg` from 1.6.1 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ged/ruby-pg/blob/master/CHANGELOG.md\"\u003epg's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.3 [2025-12-29] Lars Kanis \u003ca href=\"mailto:lars@greiz-reinsdorf.de\"\u003elars@greiz-reinsdorf.de\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003eAdded:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd binary gems for ruby-4.0, now providing ruby-3.0 to 4.0. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/682\"\u003e#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate fat binary gem to OpenSSL-3.6.0 and PostgreSQL-18.1.\u003c/li\u003e\n\u003cli\u003eImprove documentation of PG::Result and README. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/676\"\u003e#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate errorcodes to PostgreSQL-18.\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003erb_hash_new_capa\u003c/code\u003e on Ruby-3.2+ . \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/674\"\u003e#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeny any server communication on a frozen PG::Connection . \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/677\"\u003e#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix possible race condition in PG::Result in Ractor context. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/674\"\u003e#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop binary gem support for platform \u003ccode\u003ex86-mingw32\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/682\"\u003e#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop binary gems for ruby-2.7.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.2 [2025-09-02] Lars Kanis \u003ca href=\"mailto:lars@greiz-reinsdorf.de\"\u003elars@greiz-reinsdorf.de\u003c/a\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove several absolute paths from native binaries which pointed to build directories. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/668\"\u003e#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix bad fallback path to \u003ccode\u003epg_service.conf\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/666\"\u003e#666\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003erbpg_\u003c/code\u003e prefix for \u003ccode\u003ebase64_*\u003c/code\u003e functions to avoid name clashes with functions provided by other libraries like Heimdal on Macos. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/667\"\u003e#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRaise a more descriptive error message in case of \u003ccode\u003epg_ext\u003c/code\u003e LoadError. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/664\"\u003e#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFreeze some constants to make them available in a Ractor context. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/660\"\u003e#660\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSeveral documentation improvements.\u003c/li\u003e\n\u003cli\u003eUpdate native binary gems to OpenSSL-3.5.2, krb5-1.22.1 and PostgreSQL-17.6.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/d4539c25dcc89d47088e1423f8d1915c041920f5\"\u003e\u003ccode\u003ed4539c2\u003c/code\u003e\u003c/a\u003e Bump VERSION to pg-1.6.3 and add release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/720900dbb9d16aa855793146f15c3772e14f627a\"\u003e\u003ccode\u003e720900d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ged/ruby-pg/issues/682\"\u003e#682\u003c/a\u003e from larskanis/ruby-4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/f605b5937093884089109c8baa5fe268fc513eaf\"\u003e\u003ccode\u003ef605b59\u003c/code\u003e\u003c/a\u003e Remove x86-mingw32 from binary builds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/5c690006ba158da70d73d939a233cf75ecdd30ef\"\u003e\u003ccode\u003e5c69000\u003c/code\u003e\u003c/a\u003e Update to ruby-4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/2acaf3d0f76334e056229efe260e1f558a8c6b42\"\u003e\u003ccode\u003e2acaf3d\u003c/code\u003e\u003c/a\u003e CI: workaround missing ruby-4.0 on Window\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/b500ded81127963603e1f724e82bed649c9ca8a1\"\u003e\u003ccode\u003eb500ded\u003c/code\u003e\u003c/a\u003e fix comment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/bc3f2f8b1110e9bcb225d65554e1a7fc842d0506\"\u003e\u003ccode\u003ebc3f2f8\u003c/code\u003e\u003c/a\u003e CI: Macos-13 on Intel is deprecated\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/77667eb4313bd7b79356f402b0fa7fba409483b8\"\u003e\u003ccode\u003e77667eb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ged/ruby-pg/issues/678\"\u003e#678\u003c/a\u003e from larskanis/ci-update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/6e52ce504d05c5359d55f45d9580672103263b54\"\u003e\u003ccode\u003e6e52ce5\u003c/code\u003e\u003c/a\u003e CI: Update PostgreSQL on Macos\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/6d40f50e51a037022495fe6d98181435652464ff\"\u003e\u003ccode\u003e6d40f50\u003c/code\u003e\u003c/a\u003e CI: Print mkmf.log on failure on Macos\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ged/ruby-pg/compare/v1.6.1...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bootsnap` from 1.18.6 to 1.23.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/bootsnap/releases\"\u003ebootsnap's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.23.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Ruby 2.7.\u003c/li\u003e\n\u003cli\u003eFix support for absolute paths in \u003ccode\u003eBOOTSNAP_IGNORE_DIRECTORIES\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.22.0...v1.23.0\"\u003ehttps://github.com/rails/bootsnap/compare/v1.22.0...v1.23.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.22.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eProper fix for the \u003ccode\u003eopendir\u003c/code\u003e crash.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ebootsnap/rake\u003c/code\u003e for cleaning the bootsnap cache as part of \u003ccode\u003erake clobber\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.21.1...v1.22.0\"\u003ehttps://github.com/rails/bootsnap/compare/v1.21.1...v1.22.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.21.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFallback to pure the pure ruby path scanner on unexpected error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.21.0...v1.21.1\"\u003ehttps://github.com/rails/bootsnap/compare/v1.21.0...v1.21.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.20.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle broken symlinks in load path scanning code.\nShould fix \u003ccode\u003eErrno::ENOENT fstatat\u003c/code\u003e issues some users have encountered after upgrading to 1.20.0.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.20.0...v1.20.1\"\u003ehttps://github.com/rails/bootsnap/compare/v1.20.0...v1.20.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.20.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimized load path scanning with a C extension. Should be about 2x faster on supported platforms.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.19.0...v1.20.0\"\u003ehttps://github.com/rails/bootsnap/compare/v1.19.0...v1.20.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/bootsnap/blob/main/CHANGELOG.md\"\u003ebootsnap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.23.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Ruby 2.7.\u003c/li\u003e\n\u003cli\u003eFix support for absolute paths in \u003ccode\u003eBOOTSNAP_IGNORE_DIRECTORIES\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.22.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBetter fix for the \u003ccode\u003eopendir\u003c/code\u003e crash.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ebootsnap/rake\u003c/code\u003e for cleaning the bootsnap cache as part of \u003ccode\u003erake clobber\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.21.1\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent a Ruby crash while scanning load path if \u003ccode\u003eopendir\u003c/code\u003e fails without setting \u003ccode\u003eerrno\u003c/code\u003e.\nAccording to the C spec this should not happen, but according to user reports, it did.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.21.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix the \u003ccode\u003erequire\u003c/code\u003e decorator to handle \u003ccode\u003eBootsnap.unload_cache!\u003c/code\u003e being called.\u003c/li\u003e\n\u003cli\u003eMinor optimization: Eagerly clear cache buffers to appease the GC.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.20.1\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eHandle broken symlinks in load path scanning code.\nShould fix \u003ccode\u003eErrno::ENOENT fstatat\u003c/code\u003e issues some users have encountered after upgrading to 1.20.0.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.20.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eOptimized load path scanning with a C extension. Should be about 2x faster on supported platforms.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.19.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eRemove JSON parsing cache. Recent versions of the \u003ccode\u003ejson\u003c/code\u003e gem are as fast as \u003ccode\u003emsgpack\u003c/code\u003e if not faster.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/7b04583c5a242ef8e3a7dac907b9f682c6d2f20d\"\u003e\u003ccode\u003e7b04583\u003c/code\u003e\u003c/a\u003e Release 1.23.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/32e709d4168422433ca4f06e5aaec510dd87f882\"\u003e\u003ccode\u003e32e709d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/530\"\u003e#530\u003c/a\u003e from fxn/readdir\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/8326783ad7f2dd17681fd080a6144aa83e03478c\"\u003e\u003ccode\u003e8326783\u003c/code\u003e\u003c/a\u003e Handle readdir errors in bs_rb_scan_dir()\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/780728416ab3eff3c39093246542eb75168a157c\"\u003e\u003ccode\u003e7807284\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/528\"\u003e#528\u003c/a\u003e from Umofomia/path-scanner-cleanup\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/c30155d2d55e3dee46453071e1b21fba81a8295f\"\u003e\u003ccode\u003ec30155d\u003c/code\u003e\u003c/a\u003e Fix bundle path check and consolidate common code in PathScanner\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/c2ef9a36c3ae67338e57aacd98d3399333ea0bc2\"\u003e\u003ccode\u003ec2ef9a3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/526\"\u003e#526\u003c/a\u003e from Umofomia/claw--fix-ignored-directories-absolute-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/93c35b83fd326ebfea4fb45f8cdd37c7c233222a\"\u003e\u003ccode\u003e93c35b8\u003c/code\u003e\u003c/a\u003e LoadPathScanner: Avoid computing the absolute path when not needed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/2bf7aa4f248d3a730a26ee281ee7266dc0ba2c8d\"\u003e\u003ccode\u003e2bf7aa4\u003c/code\u003e\u003c/a\u003e Fix absolute path support for ignored directories in PathScanner.native_call\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/749bf76af511e3cbd5531a19b46a8974c7fcd968\"\u003e\u003ccode\u003e749bf76\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/527\"\u003e#527\u003c/a\u003e from byroot/ruby-2.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/52411892e2bc2d99ba23079e903bb2c2eea5572b\"\u003e\u003ccode\u003e5241189\u003c/code\u003e\u003c/a\u003e Require Ruby 2.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.18.6...v1.23.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.4.2 to 3.4.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.4 - 2025-09-10\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAccept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/296\"\u003eGH-296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003eGH-295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Joe Rafaniello\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJoe Rafaniello\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eREXML 3.4.3 - 2025-09-07\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject no root element XML as an invalid XML\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/289\"\u003eGH-289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003eGH-291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/287\"\u003eGH-287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003eGH-288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Jason Thomas\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSutou Kouhei\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJason Thomas\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.4 - 2025-09-10 {#version-3-4-4}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAccept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/296\"\u003eGH-296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003eGH-295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Joe Rafaniello\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJoe Rafaniello\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.4.3 - 2025-09-07 {#version-3-4-3}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject no root element XML as an invalid XML\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/289\"\u003eGH-289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003eGH-291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/287\"\u003eGH-287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003eGH-288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Jason Thomas\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSutou Kouhei\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJason Thomas\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/4f32ea33bc3f71cced67487659beef58edcf6d56\"\u003e\u003ccode\u003e4f32ea3\u003c/code\u003e\u003c/a\u003e Add 3.4.4 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/297\"\u003e#297\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/37cde3f4e660f9748f90a933daf7a9e51337d013\"\u003e\u003ccode\u003e37cde3f\u003c/code\u003e\u003c/a\u003e Accept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003e#295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/4ffe211b501614e769a8bf37d63a7037bb5d2e73\"\u003e\u003ccode\u003e4ffe211\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/822530c70f898bd33c075622fe068c6d6433e6c9\"\u003e\u003ccode\u003e822530c\u003c/code\u003e\u003c/a\u003e Add 3.4.3 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/293\"\u003e#293\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/6ba286cfd402e4040627615e2623f5b097261543\"\u003e\u003ccode\u003e6ba286c\u003c/code\u003e\u003c/a\u003e Reject no root element XML as an invalid XML (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/b5b148ed3c8a02fb53e971e312cee94b5301555a\"\u003e\u003ccode\u003eb5b148e\u003c/code\u003e\u003c/a\u003e The Zlib::GzipReader in JRuby does not behave as expected with REXML, so the ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1531862d18ec3ecd659060d60b8bb49accee5a42\"\u003e\u003ccode\u003e1531862\u003c/code\u003e\u003c/a\u003e Fixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/185bdc737da406ba4f9564726849ad3477858eb2\"\u003e\u003ccode\u003e185bdc7\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.4.2...v3.4.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `flipper-redis` from 1.3.6 to 1.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/flippercloud/flipper/releases\"\u003eflipper-redis's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.4.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/cache from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/961\"\u003eflippercloud/flipper#961\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd config to disable the Fully Enable button by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/979\"\u003eflippercloud/flipper#979\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd sync mode bypass to Strict adapter by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/982\"\u003eflippercloud/flipper#982\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSkip ETag header on cache_bust to prevent stale webhook syncs by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/987\"\u003eflippercloud/flipper#987\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/flippercloud/flipper/compare/v1.4.0...v1.4.1\"\u003ehttps://github.com/flippercloud/flipper/compare/v1.4.0...v1.4.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove models to their own files by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/944\"\u003eflippercloud/flipper#944\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd kwarg passing for get_all and cache buster for webhook sync by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/945\"\u003eflippercloud/flipper#945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAlways poll even for webhook config by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/946\"\u003eflippercloud/flipper#946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCloud get_all etag support by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/947\"\u003eflippercloud/flipper#947\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix sync behavior when remote expression value is set to nil by \u003ca href=\"https://github.com/jdnvn\"\u003e\u003ccode\u003e@​jdnvn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/949\"\u003eflippercloud/flipper#949\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpression sync by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/950\"\u003eflippercloud/flipper#950\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eShut down polling and adjust poll interval based on headers by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/948\"\u003eflippercloud/flipper#948\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes confirmation trigger for disable by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flip...\n\n_Description has been truncated_","html_url":"https://github.com/CircuitVerse/CircuitVerse/pull/7320","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/CircuitVerse%2FCircuitVerse/issues/7320","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7320/packages"},{"uuid":"4298151520","node_id":"PR_kwDOEf0aQc7UEpw7","number":9,"state":"closed","title":"Bump the bundler group across 1 directory with 4 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-04-20T19:29:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-20T19:27:43.000Z","updated_at":"2026-04-20T19:29:57.000Z","time_to_close":133,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":4,"packages":[{"name":"addressable","old_version":"2.7.0","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"faraday","old_version":"1.0.1","new_version":"1.10.5","repository_url":"https://github.com/lostisland/faraday"},{"name":"kramdown","old_version":"2.3.0","new_version":"2.3.1","repository_url":"https://github.com/gettalong/kramdown"},{"name":"rexml","old_version":"3.2.4","new_version":"3.4.4"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 3 updates in the / directory: [addressable](https://github.com/sporkmonger/addressable), [faraday](https://github.com/lostisland/faraday) and [kramdown](https://github.com/gettalong/kramdown).\n\nUpdates `addressable` from 2.7.0 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.7 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 6 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/535\"\u003esporkmonger/addressable#535\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.6 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMemoize regexps for common character classes (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/524\"\u003e#524\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/524\"\u003e#524\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/524\"\u003esporkmonger/addressable#524\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.5 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix thread safety issue with encoding tables (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDefine URI::NONE as a module to avoid serialization issues (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/509\"\u003e#509\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix YAML serialization (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/508\"\u003e#508\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/508\"\u003e#508\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/508\"\u003esporkmonger/addressable#508\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/509\"\u003e#509\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/509\"\u003esporkmonger/addressable#509\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/515\"\u003e#515\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/515\"\u003esporkmonger/addressable#515\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.4 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRestore \u003ccode\u003eAddressable::IDNA.unicode_normalize_kc\u003c/code\u003e as a deprecated method (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/504\"\u003e#504\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/504\"\u003e#504\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/504\"\u003esporkmonger/addressable#504\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.3 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix template expand level 2 hash support for non-string objects (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/499\"\u003e#499\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/498\"\u003e#498\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.7.0...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `faraday` from 1.0.1 to 1.10.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003efaraday's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport CVE-2026-25765 by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1665\"\u003elostisland/faraday#1665\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.4...v1.10.5\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.4...v1.10.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMake sure that \u003ccode\u003eFaraday::Request::Json\u003c/code\u003e and \u003ccode\u003eFaraday::Response::Json\u003c/code\u003e are correctly autoloaded by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1595\"\u003elostisland/faraday#1595\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.3...v1.10.4\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.3...v1.10.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Ruby 3.2.0 in Faraday v1.x by \u003ca href=\"https://github.com/timrogers\"\u003e\u003ccode\u003e@​timrogers\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1483\"\u003elostisland/faraday#1483\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/timrogers\"\u003e\u003ccode\u003e@​timrogers\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1483\"\u003elostisland/faraday#1483\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.2...v1.10.3\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.2...v1.10.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate three methods for version 2.0 by \u003ca href=\"https://github.com/hyuraku\"\u003e\u003ccode\u003e@​hyuraku\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1446\"\u003elostisland/faraday#1446\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.1...v1.10.2\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.1...v1.10.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eFaraday#Deprecate\u003c/code\u003e to \u003ccode\u003e1.x\u003c/code\u003e by \u003ca href=\"https://github.com/hyuraku\"\u003e\u003ccode\u003e@​hyuraku\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1438\"\u003elostisland/faraday#1438\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyuraku\"\u003e\u003ccode\u003e@​hyuraku\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1438\"\u003elostisland/faraday#1438\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.0...v1.10.1\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.0...v1.10.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd JSON middleware by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1400\"\u003elostisland/faraday#1400\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.9.3...v1.10.0\"\u003ehttps://github.com/lostisland/faraday/compare/v1.9.3...v1.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.9.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRe-add support for Ruby 2.4+ by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1371\"\u003elostisland/faraday#1371\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.9.2...v1.9.3\"\u003ehttps://github.com/lostisland/faraday/compare/v1.9.2...v1.9.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/blob/main/CHANGELOG.md\"\u003efaraday's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eFaraday Changelog\u003c/h1\u003e\n\u003ch2\u003eThe changelog has moved!\u003c/h2\u003e\n\u003cp\u003eThis file is not being updated anymore. Instead, please check the \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003eReleases\u003c/a\u003e page.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v2.1.0...v2.2.0\"\u003e2.2.0\u003c/a\u003e (2022-02-03)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReintroduce the possibility to register middleware with symbols, strings or procs in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1391\"\u003e#1391\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v2.0.1...v2.1.0\"\u003e2.1.0\u003c/a\u003e (2022-01-15)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix test adapter thread safety by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1380\"\u003e#1380\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd default adapter options by \u003ca href=\"https://github.com/hirasawayuki\"\u003e\u003ccode\u003e@​hirasawayuki\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1382\"\u003e#1382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: Add Ruby 3.1 to matrix by \u003ca href=\"https://github.com/petergoldstein\"\u003e\u003ccode\u003e@​petergoldstein\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1374\"\u003e#1374\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix regex pattern in logger.md examples by \u003ca href=\"https://github.com/hirasawayuki\"\u003e\u003ccode\u003e@​hirasawayuki\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1378\"\u003e#1378\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v2.0.0...v2.0.1\"\u003e2.0.1\u003c/a\u003e (2022-01-05)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRe-add \u003ccode\u003efaraday-net_http\u003c/code\u003e as default adapter by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1366\"\u003e#1366\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated sample format in UPGRADING.md by \u003ca href=\"https://github.com/vimutter\"\u003e\u003ccode\u003e@​vimutter\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1361\"\u003e#1361\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Make UPGRADING examples more copyable by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1363\"\u003e#1363\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v1.8.0...v2.0.0\"\u003e2.0.0\u003c/a\u003e (2022-01-04)\u003c/h2\u003e\n\u003cp\u003eThe next major release is here, and it comes almost 2 years after the release of v1.0!\u003c/p\u003e\n\u003cp\u003eThis release changes the way you use Faraday and embraces a new paradigm of Faraday as an ecosystem, rather than a library.\u003c/p\u003e\n\u003cp\u003eWhat does that mean? It means that Faraday is less of a bundled tool and more of a framework for the community to build on top of.\u003c/p\u003e\n\u003cp\u003eAs a result, all adapters and some middleware have moved out and are now shipped as standalone gems 🙌!\u003c/p\u003e\n\u003cp\u003eBut this doesn't mean that upgrading from Faraday 1.x to Faraday 2.0 should be hard, in fact we've listed everything you need to do in the \u003ca href=\"https://github.com/lostisland/faraday/blob/main/UPGRADING.md\"\u003eUPGRADING.md\u003c/a\u003e doc.\u003c/p\u003e\n\u003cp\u003eMoreover, we've setup a new \u003ca href=\"https://github.com/lostisland/awesome-faraday\"\u003eawesome-faraday\u003c/a\u003e repository that will showcase a curated list of adapters and middleware 😎.\u003c/p\u003e\n\u003cp\u003eThis release was the result of the efforts of the core team and all the contributors, new and old, that have helped achieve this milestone 👏.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAutoloading, dependency loading and middleware registry cleanup by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1301\"\u003e#1301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMove JSON middleware (request and response) from faraday_middleware by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1300\"\u003e#1300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove deprecated \u003ccode\u003eFaraday::Request#method\u003c/code\u003e by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1303\"\u003e#1303\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove deprecated \u003ccode\u003eFaraday::UploadIO\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1307\"\u003e#1307\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[1.x] Deprecate Authorization helpers in \u003ccode\u003eFaraday::Connection\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1306\"\u003e#1306\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop deprecated auth helpers from Connection and refactor auth middleware by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1308\"\u003e#1308\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Faraday 1.x examples in authentication.md docs by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1320\"\u003e#1320\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix passing a URL with embedded basic auth by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1324\"\u003e#1324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRegister JSON middleware by \u003ca href=\"https://github.com/mollerhoj\"\u003e\u003ccode\u003e@​mollerhoj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1331\"\u003e#1331\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/5c1d68aae6020c7a5398147356e5a42ca205bf80\"\u003e\u003ccode\u003e5c1d68a\u003c/code\u003e\u003c/a\u003e Version bump to 1.10.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/ea02c0ecbcd7ecc5553767f0cd97ec94eae6142b\"\u003e\u003ccode\u003eea02c0e\u003c/code\u003e\u003c/a\u003e Update rubocop complexity thresholds for security fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/d0fc049beb0b0e4e3bd4a52711189130bba7c5f4\"\u003e\u003ccode\u003ed0fc049\u003c/code\u003e\u003c/a\u003e Backport security fix for CVE-2026-25765 to 1.x branch (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1665\"\u003e#1665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/41c990ee1f82f74270c084cca8f398b186f09262\"\u003e\u003ccode\u003e41c990e\u003c/code\u003e\u003c/a\u003e Version bump to 1.10.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/435888d46cb0236eef9c8d6b02ef37a45681207f\"\u003e\u003ccode\u003e435888d\u003c/code\u003e\u003c/a\u003e Make sure that \u003ccode\u003eFaraday::Request::Json\u003c/code\u003e and \u003ccode\u003eFaraday::Response::Json\u003c/code\u003e are cor...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/82086930f947d037f0ec14ce740c0485a3b4d5a0\"\u003e\u003ccode\u003e8208693\u003c/code\u003e\u003c/a\u003e Use ruby/setup-ruby in publish.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/eeec3677d769258ec97450c678ef4d8f924fac9a\"\u003e\u003ccode\u003eeeec367\u003c/code\u003e\u003c/a\u003e Fix ruby version in publish.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/92c038bcbf24b171abeecd608a195245f5431e98\"\u003e\u003ccode\u003e92c038b\u003c/code\u003e\u003c/a\u003e Update publish.yml to use Ruby 2.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/7a382b5abb19b9278c2bf055da54876ce612cff9\"\u003e\u003ccode\u003e7a382b5\u003c/code\u003e\u003c/a\u003e Version bump to 1.10.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/16506ee918bd8813d0e241aa1c4996fa2157303c\"\u003e\u003ccode\u003e16506ee\u003c/code\u003e\u003c/a\u003e Add support for Ruby 3.2.0 in Faraday v1.x (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1483\"\u003e#1483\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.0.1...v1.10.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `kramdown` from 2.3.0 to 2.3.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/gettalong/kramdown/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.2.4 to 3.4.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.4 - 2025-09-10\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAccept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/296\"\u003eGH-296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003eGH-295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Joe Rafaniello\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJoe Rafaniello\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eREXML 3.4.3 - 2025-09-07\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject no root element XML as an invalid XML\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/289\"\u003eGH-289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003eGH-291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/287\"\u003eGH-287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003eGH-288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Jason Thomas\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSutou Kouhei\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJason Thomas\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImproved performance.\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.4 - 2025-09-10 {#version-3-4-4}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAccept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/296\"\u003eGH-296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003eGH-295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Joe Rafaniello\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJoe Rafaniello\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.4.3 - 2025-09-07 {#version-3-4-3}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject no root element XML as an invalid XML\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/289\"\u003eGH-289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003eGH-291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/287\"\u003eGH-287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003eGH-288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Jason Thomas\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSutou Kouhei\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJason Thomas\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImproved performance.\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/4f32ea33bc3f71cced67487659beef58edcf6d56\"\u003e\u003ccode\u003e4f32ea3\u003c/code\u003e\u003c/a\u003e Add 3.4.4 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/297\"\u003e#297\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/37cde3f4e660f9748f90a933daf7a9e51337d013\"\u003e\u003ccode\u003e37cde3f\u003c/code\u003e\u003c/a\u003e Accept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003e#295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/4ffe211b501614e769a8bf37d63a7037bb5d2e73\"\u003e\u003ccode\u003e4ffe211\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/822530c70f898bd33c075622fe068c6d6433e6c9\"\u003e\u003ccode\u003e822530c\u003c/code\u003e\u003c/a\u003e Add 3.4.3 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/293\"\u003e#293\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/6ba286cfd402e4040627615e2623f5b097261543\"\u003e\u003ccode\u003e6ba286c\u003c/code\u003e\u003c/a\u003e Reject no root element XML as an invalid XML (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/b5b148ed3c8a02fb53e971e312cee94b5301555a\"\u003e\u003ccode\u003eb5b148e\u003c/code\u003e\u003c/a\u003e The Zlib::GzipReader in JRuby does not behave as expected with REXML, so the ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1531862d18ec3ecd659060d60b8bb49accee5a42\"\u003e\u003ccode\u003e1531862\u003c/code\u003e\u003c/a\u003e Fixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/185bdc737da406ba4f9564726849ad3477858eb2\"\u003e\u003ccode\u003e185bdc7\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.2.4...v3.4.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/D3strukt0r/d3strukt0r.github.io/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/D3strukt0r/d3strukt0r.github.io/pull/9","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/D3strukt0r%2Fd3strukt0r.github.io/issues/9","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9/packages"},{"uuid":"4285657597","node_id":"PR_kwDONiTSw87Td2p7","number":1,"state":"open","title":"Bump rexml from 3.2.8 to 3.4.2 in the bundler group across 1 directory","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-17T22:29:46.000Z","updated_at":"2026-04-17T22:30:16.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"rexml","old_version":"3.2.8","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":"the bundler group across 1 directory","ecosystem":"rubygems"},"body":"Bumps the bundler group with 1 update in the / directory: [rexml](https://github.com/ruby/rexml).\n\nUpdates `rexml` from 3.2.8 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.2.8...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rexml\u0026package-manager=bundler\u0026previous-version=3.2.8\u0026new-version=3.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Pcnaid-Dev/Shopify-CLI-Kit/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Pcnaid-Dev/Shopify-CLI-Kit/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Pcnaid-Dev%2FShopify-CLI-Kit/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"},{"uuid":"4244673513","node_id":"PR_kwDOJL4UQs7RqoD8","number":1,"state":"open","title":"build(deps): bump rexml from 3.4.1 to 3.4.2","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-11T13:28:06.000Z","updated_at":"2026-04-11T13:31:30.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"rexml","old_version":"3.4.1","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [rexml](https://github.com/ruby/rexml) from 3.4.1 to 3.4.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.4.1...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rexml\u0026package-manager=bundler\u0026previous-version=3.4.1\u0026new-version=3.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/ZhongRuoyu/formulae.brew.sh/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/ZhongRuoyu/formulae.brew.sh/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ZhongRuoyu%2Fformulae.brew.sh/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"},{"uuid":"4223339824","node_id":"PR_kwDOQ8iVf87Qv_q_","number":8,"state":"open","title":"Bump the bundler group across 1 directory with 4 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-08T09:00:50.000Z","updated_at":"2026-04-08T09:03:44.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":4,"packages":[{"name":"faraday","old_version":"2.7.11","new_version":"2.14.1","repository_url":"https://github.com/lostisland/faraday"},{"name":"nokogiri","old_version":"1.18.9","new_version":"1.19.1","repository_url":"https://github.com/sparklemotion/nokogiri"},{"name":"rexml","old_version":"3.4.1","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"},{"name":"addressable","old_version":"2.8.7","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 4 updates in the /updater directory: [faraday](https://github.com/lostisland/faraday), [nokogiri](https://github.com/sparklemotion/nokogiri), [rexml](https://github.com/ruby/rexml) and [addressable](https://github.com/sporkmonger/addressable).\n\nUpdates `faraday` from 2.7.11 to 2.14.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003efaraday's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.14.1\u003c/h2\u003e\n\u003ch2\u003eSecurity Note\u003c/h2\u003e\n\u003cp\u003eThis release contains a security fix, we recommend all users to upgrade as soon as possible.\nA Security Advisory with more details will be posted shortly.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd RFC document for Options architecture refactoring plan by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1644\"\u003elostisland/faraday#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1655\"\u003elostisland/faraday#1655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExplicit top-level namespace reference by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1657\"\u003elostisland/faraday#1657\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\"\u003ehttps://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eNew features ✨\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUse newer \u003ccode\u003eUnprocessableContent\u003c/code\u003e naming for 422 by \u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes 🐞\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eConvert strings to UTF-8 by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eResponse#to_hash\u003c/code\u003e when response not finished yet by \u003ca href=\"https://github.com/yykamei\"\u003e\u003ccode\u003e@​yykamei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1639\"\u003elostisland/faraday#1639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMisc/Docs 📄\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eLint: use \u003ccode\u003efilter_map\u003c/code\u003e by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1637\"\u003elostisland/faraday#1637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003eactions/checkout\u003c/code\u003e from v4 to v5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1636\"\u003elostisland/faraday#1636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes documentation by \u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove error handling logic and add missing test coverage by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1633\"\u003elostisland/faraday#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix type assumption in \u003ccode\u003eFaraday::Error\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1630\"\u003elostisland/faraday#1630\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/16cbd38ef252d25dedf416a4d2510a2f3db10c87\"\u003e\u003ccode\u003e16cbd38\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/a6d3a3a0bf59c2ab307d0abd91bc126aef5561bc\"\u003e\u003ccode\u003ea6d3a3a\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/b23f710d28c0dba169470f568df4017a1e8beea7\"\u003e\u003ccode\u003eb23f710\u003c/code\u003e\u003c/a\u003e Explicit top-level namespace reference (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1657\"\u003e#1657\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/49ba4ac3a7359baed634c12a82386f6c8c717ea8\"\u003e\u003ccode\u003e49ba4ac\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1655\"\u003e#1655\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/51a49bc99d7df6f724d250d64771e1d710576df7\"\u003e\u003ccode\u003e51a49bc\u003c/code\u003e\u003c/a\u003e Ensure Claude reads the guidelines and allow to plan in a gitignored .ai/PLAN...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/894f65cab8f04bcf35e84a2dfd9fc0286dbce340\"\u003e\u003ccode\u003e894f65c\u003c/code\u003e\u003c/a\u003e Add RFC document for Options architecture refactoring plan (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1644\"\u003e#1644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/397e3ded0c5166313bb22f1c0221b36b6023fd0f\"\u003e\u003ccode\u003e397e3de\u003c/code\u003e\u003c/a\u003e Add comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/d98c65cfc254ea2898386e4359428527122abec3\"\u003e\u003ccode\u003ed98c65c\u003c/code\u003e\u003c/a\u003e Update Faraday-specific AI agent guidelines\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/56c18ecb718e30c5a3a0dea9bd2361912af9013c\"\u003e\u003ccode\u003e56c18ec\u003c/code\u003e\u003c/a\u003e Add AI agent guidelines specific to Faraday repository\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/3201a42957d37efc968ee8834ba9b50ed5dde54a\"\u003e\u003ccode\u003e3201a42\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.7.11...v2.14.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nokogiri` from 1.18.9 to 1.19.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/releases\"\u003enokogiri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003ecfdb0eafd9a554a88f12ebcc688d2b9005f9fce42b00b970e3dc199587b27f32  nokogiri-1.19.1-aarch64-linux-gnu.gem\r\n1e2150ab43c3b373aba76cd1190af7b9e92103564063e48c474f7600923620b5  nokogiri-1.19.1-aarch64-linux-musl.gem\r\n0a39ed59abe3bf279fab9dd4c6db6fe8af01af0608f6e1f08b8ffa4e5d407fa3  nokogiri-1.19.1-arm-linux-gnu.gem\r\n3a18e559ee499b064aac6562d98daab3d39ba6cbb4074a1542781b2f556db47d  nokogiri-1.19.1-arm-linux-musl.gem\r\ndfe2d337e6700eac47290407c289d56bcf85805d128c1b5a6434ddb79731cb9e  nokogiri-1.19.1-arm64-darwin.gem\r\n1e0bda88b1c6409f0edb9e0c25f1bf9ff4fa94c3958f492a10fcf50dda594365  nokogiri-1.19.1-java.gem\r\n110d92ae57694ae7866670d298a5d04cd150fae5a6a7849957d66f171e6aec9b  nokogiri-1.19.1-x64-mingw-ucrt.gem\r\n7093896778cc03efb74b85f915a775862730e887f2e58d6921e3fa3d981e68bf  nokogiri-1.19.1-x86_64-darwin.gem\r\n1a4902842a186b4f901078e692d12257678e6133858d0566152fe29cdb98456a  nokogiri-1.19.1-x86_64-linux-gnu.gem\r\n4267f38ad4fc7e52a2e7ee28ed494e8f9d8eb4f4b3320901d55981c7b995fc23  nokogiri-1.19.1-x86_64-linux-musl.gem\r\n598b327f36df0b172abd57b68b18979a6e14219353bca87180c31a51a00d5ad3  nokogiri-1.19.1.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e11a97ecc3c0e7e5edcf395720b10860ef493b768f6aa80c539573530bc933767  nokogiri-1.19.0-aarch64-linux-gnu.gem\r\neb70507f5e01bc23dad9b8dbec2b36ad0e61d227b42d292835020ff754fb7ba9  nokogiri-1.19.0-aarch64-linux-musl.gem\r\n572a259026b2c8b7c161fdb6469fa2d0edd2b61cd599db4bbda93289abefbfe5  nokogiri-1.19.0-arm-linux-gnu.gem\r\n23ed90922f1a38aed555d3de4d058e90850c731c5b756d191b3dc8055948e73c  nokogiri-1.19.0-arm-linux-musl.gem\r\n0811dfd936d5f6dd3f6d32ef790568bf29b2b7bead9ba68866847b33c9cf5810  nokogiri-1.19.0-arm64-darwin.gem\r\n5f3a70e252be641d8a4099f7fb4cc25c81c632cb594eec9b4b8f2ca8be4374f3  nokogiri-1.19.0-java.gem\r\n05d7ed2d95731edc9bef2811522dc396df3e476ef0d9c76793a9fca81cab056b  nokogiri-1.19.0-x64-mingw-ucrt.gem\r\n1dad56220b603a8edb9750cd95798bffa2b8dd9dd9aa47f664009ee5b43e3067  nokogiri-1.19.0-x86_64-darwin.gem\r\nf482b95c713d60031d48c44ce14562f8d2ce31e3a9e8dd0ccb131e9e5a68b58c  nokogiri-1.19.0-x86_64-linux-gnu.gem\r\n1c4ca6b381622420073ce6043443af1d321e8ed93cc18b08e2666e5bd02ffae4  nokogiri-1.19.0-x86_64-linux-musl.gem\r\ne304d21865f62518e04f2bf59f93bd3a97ca7b07e7f03952946d8e1c05f45695  nokogiri-1.19.0.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md\"\u003enokogiri's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.10 / 2025-09-15\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.9\"\u003ev2.13.9\u003c/a\u003e. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.\u003c/li\u003e\n\u003cli\u003e[CRuby] [Windows and MacOS] Vendored libiconv is updated to \u003ca href=\"https://savannah.gnu.org/news/?id=10703\"\u003ev1.18\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d9130457369de8a6efcb764e6da2cb80d5d3b6dd\"\u003e\u003ccode\u003ed913045\u003c/code\u003e\u003c/a\u003e version bump to v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/b81cb9869e8ed7d1785da3363ef490f455da96eb\"\u003e\u003ccode\u003eb81cb98\u003c/code\u003e\u003c/a\u003e doc: update CHANGELOG for upcoming v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/8e668095c6147def4a3ec044df5f2a478c8161c3\"\u003e\u003ccode\u003e8e66809\u003c/code\u003e\u003c/a\u003e C14n raise on failure (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3600\"\u003e#3600\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/5b77f3d1c48cc09c92d10046c448a0866380eb4a\"\u003e\u003ccode\u003e5b77f3d\u003c/code\u003e\u003c/a\u003e Raise RuntimeError when canonicalization fails\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/edc559565819459d92f6db609f068f50491a57f9\"\u003e\u003ccode\u003eedc5595\u003c/code\u003e\u003c/a\u003e Thank sponsors in the README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d4dc245dfafd7ba42538051b0979306c8e5dc6f2\"\u003e\u003ccode\u003ed4dc245\u003c/code\u003e\u003c/a\u003e dep: update rdoc to v7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d77bfb66302532b90c0f340ed6b4ae74f275dde8\"\u003e\u003ccode\u003ed77bfb6\u003c/code\u003e\u003c/a\u003e version bump to v1.19.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/1eb5c2c035b360fd1195de0b274e901b6e0c12dd\"\u003e\u003ccode\u003e1eb5c2c\u003c/code\u003e\u003c/a\u003e dev: convert scripts/test-gem-set to use mise\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/88a120fd8198cd49b7cbe6388c92cd92d776407d\"\u003e\u003ccode\u003e88a120f\u003c/code\u003e\u003c/a\u003e dep: Add native Ruby 4 support, drop Ruby 3.1 support (v1.19.x) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3592\"\u003e#3592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/f8c8f74e846ea49d2cb221710cc08618842ba21e\"\u003e\u003ccode\u003ef8c8f74\u003c/code\u003e\u003c/a\u003e Skip the parser compression test for Windows system libs\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sparklemotion/nokogiri/compare/v1.18.9...v1.19.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.4.1 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.4.1...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.7 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Trancendos/dependabot-core/network/alerts).\n\n\u003c/details\u003e\n\n\u003c!-- This is an auto-generated description by cubic. --\u003e\n---\n## Summary by cubic\nUpgrades `faraday`, `nokogiri`, `rexml`, and `addressable` in `/updater` to apply security fixes and minor improvements. This hardens HTTP, XML/HTML parsing, and URI handling with no code changes required.\n\n- **Dependencies**\n  - `faraday` 2.7.11 → 2.14.1 (security fix; updated adapter requirements)\n  - `nokogiri` 1.18.9 → 1.19.1 (security fix)\n  - `rexml` 3.4.1 → 3.4.2 (performance and parsing improvements)\n  - `addressable` 2.8.7 → 2.9.0 (ReDoS fix)\n  - Transitives: `public_suffix` 7.x, `faraday-net_http` 3.4.2, plus `net-http`/`uri` additions\n\n- **Migration**\n  - If the updater runs on Ruby 3.1 or JRuby 9.4, upgrade Ruby (Nokogiri 1.19 drops support).\n\n\u003csup\u003eWritten for commit 313061f42af277c1040cb7ceac4055b24d20d96c. Summary will update on new commits.\u003c/sup\u003e\n\n\u003c!-- End of auto-generated description by cubic. --\u003e\n\n","html_url":"https://github.com/Trancendos/dependabot-core/pull/8","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Trancendos%2Fdependabot-core/issues/8","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8/packages"},{"uuid":"4223253824","node_id":"PR_kwDOPJd-3c7Qvt_2","number":4,"state":"closed","title":"Bump the bundler group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-18T15:00:01.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-08T08:44:14.000Z","updated_at":"2026-05-18T15:00:04.000Z","time_to_close":3478547,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":6,"packages":[{"name":"faraday","old_version":"2.12.1","new_version":"2.14.1","repository_url":"https://github.com/lostisland/faraday"},{"name":"ruby-lsp","old_version":"0.19.1","new_version":"0.26.9","repository_url":"https://github.com/Shopify/ruby-lsp"},{"name":"addressable","old_version":"2.8.7","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"rack","old_version":"3.0.16","new_version":"3.1.21","repository_url":"https://github.com/rack/rack"},{"name":"rexml","old_version":"3.3.9","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"},{"name":"uri","old_version":"1.0.3","new_version":"1.1.1","repository_url":"https://github.com/ruby/uri"}],"path":null,"ecosystem":"rubygems"},"body":"Updates the requirements on [faraday](https://github.com/lostisland/faraday), [ruby-lsp](https://github.com/Shopify/ruby-lsp), [addressable](https://github.com/sporkmonger/addressable), [rack](https://github.com/rack/rack), [rexml](https://github.com/ruby/rexml) and [uri](https://github.com/ruby/uri) to permit the latest version.\nUpdates `faraday` from 2.12.1 to 2.14.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003efaraday's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.14.1\u003c/h2\u003e\n\u003ch2\u003eSecurity Note\u003c/h2\u003e\n\u003cp\u003eThis release contains a security fix, we recommend all users to upgrade as soon as possible.\nA Security Advisory with more details will be posted shortly.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd RFC document for Options architecture refactoring plan by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1644\"\u003elostisland/faraday#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1655\"\u003elostisland/faraday#1655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExplicit top-level namespace reference by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1657\"\u003elostisland/faraday#1657\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\"\u003ehttps://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eNew features ✨\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUse newer \u003ccode\u003eUnprocessableContent\u003c/code\u003e naming for 422 by \u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes 🐞\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eConvert strings to UTF-8 by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eResponse#to_hash\u003c/code\u003e when response not finished yet by \u003ca href=\"https://github.com/yykamei\"\u003e\u003ccode\u003e@​yykamei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1639\"\u003elostisland/faraday#1639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMisc/Docs 📄\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eLint: use \u003ccode\u003efilter_map\u003c/code\u003e by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1637\"\u003elostisland/faraday#1637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003eactions/checkout\u003c/code\u003e from v4 to v5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1636\"\u003elostisland/faraday#1636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes documentation by \u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove error handling logic and add missing test coverage by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1633\"\u003elostisland/faraday#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix type assumption in \u003ccode\u003eFaraday::Error\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1630\"\u003elostisland/faraday#1630\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/16cbd38ef252d25dedf416a4d2510a2f3db10c87\"\u003e\u003ccode\u003e16cbd38\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/a6d3a3a0bf59c2ab307d0abd91bc126aef5561bc\"\u003e\u003ccode\u003ea6d3a3a\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/b23f710d28c0dba169470f568df4017a1e8beea7\"\u003e\u003ccode\u003eb23f710\u003c/code\u003e\u003c/a\u003e Explicit top-level namespace reference (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1657\"\u003e#1657\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/49ba4ac3a7359baed634c12a82386f6c8c717ea8\"\u003e\u003ccode\u003e49ba4ac\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1655\"\u003e#1655\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/51a49bc99d7df6f724d250d64771e1d710576df7\"\u003e\u003ccode\u003e51a49bc\u003c/code\u003e\u003c/a\u003e Ensure Claude reads the guidelines and allow to plan in a gitignored .ai/PLAN...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/894f65cab8f04bcf35e84a2dfd9fc0286dbce340\"\u003e\u003ccode\u003e894f65c\u003c/code\u003e\u003c/a\u003e Add RFC document for Options architecture refactoring plan (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1644\"\u003e#1644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/397e3ded0c5166313bb22f1c0221b36b6023fd0f\"\u003e\u003ccode\u003e397e3de\u003c/code\u003e\u003c/a\u003e Add comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/d98c65cfc254ea2898386e4359428527122abec3\"\u003e\u003ccode\u003ed98c65c\u003c/code\u003e\u003c/a\u003e Update Faraday-specific AI agent guidelines\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/56c18ecb718e30c5a3a0dea9bd2361912af9013c\"\u003e\u003ccode\u003e56c18ec\u003c/code\u003e\u003c/a\u003e Add AI agent guidelines specific to Faraday repository\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/3201a42957d37efc968ee8834ba9b50ed5dde54a\"\u003e\u003ccode\u003e3201a42\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.12.1...v2.14.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ruby-lsp` from 0.19.1 to 0.26.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Shopify/ruby-lsp/releases\"\u003eruby-lsp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev0.26.9\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent workspace_dependencies failing if directory gets removed during execution (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3980\"\u003eShopify/ruby-lsp#3980\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix semantic token \u003ccode\u003edefaultLibrary\u003c/code\u003e modifier casing (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/4005\"\u003eShopify/ruby-lsp#4005\u003c/a\u003e) by \u003ca href=\"https://github.com/a-lavis\"\u003e\u003ccode\u003e@​a-lavis\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix document links for source comments above sig blocks (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/4018\"\u003eShopify/ruby-lsp#4018\u003c/a\u003e) by \u003ca href=\"https://github.com/KaanOzkan\"\u003e\u003ccode\u003e@​KaanOzkan\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.8\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix send_log_message ignoring type parameter (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3969\"\u003eShopify/ruby-lsp#3969\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eProperly reset state after leaving a regex capture (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3970\"\u003eShopify/ruby-lsp#3970\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClean up cancelled requests after processing them (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3971\"\u003eShopify/ruby-lsp#3971\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApply lower bound \u003ccode\u003eruby-lsp\u003c/code\u003e version constraint in composed bundle (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3985\"\u003eShopify/ruby-lsp#3985\u003c/a\u003e) by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnsure the original CLI arguments are used when updating (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3986\"\u003eShopify/ruby-lsp#3986\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnsure bundle is re-composed when CLI arguments change (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3987\"\u003eShopify/ruby-lsp#3987\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Other Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eStart accepting --beta flag to install beta server version (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3976\"\u003eShopify/ruby-lsp#3976\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.7\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSkip disable line action for self-resolving cops (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3945\"\u003eShopify/ruby-lsp#3945\u003c/a\u003e) by \u003ca href=\"https://github.com/sucicfilip\"\u003e\u003ccode\u003e@​sucicfilip\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix test runner silent failure on dual-stack IPv4/IPv6 systems (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3953\"\u003eShopify/ruby-lsp#3953\u003c/a\u003e) by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix Bundler::GemNotFound error introduced in 0.26.5 (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3961\"\u003eShopify/ruby-lsp#3961\u003c/a\u003e) by \u003ca href=\"https://github.com/jesse-shopify\"\u003e\u003ccode\u003e@​jesse-shopify\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix incompatible addon version activation when Bundler.setup fails after retry (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3963\"\u003eShopify/ruby-lsp#3963\u003c/a\u003e) by \u003ca href=\"https://github.com/KaanOzkan\"\u003e\u003ccode\u003e@​KaanOzkan\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid failing if \u003ccode\u003eneeds_update\u003c/code\u003e file is deleted by concurrent process (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3964\"\u003eShopify/ruby-lsp#3964\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Other Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport IPv4 and IPv6 for LSP reporter connection (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3965\"\u003eShopify/ruby-lsp#3965\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDecouple test reporter IO from test execution (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3962\"\u003eShopify/ruby-lsp#3962\u003c/a\u003e) by \u003ca href=\"https://github.com/alexcrocha\"\u003e\u003ccode\u003e@​alexcrocha\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.6\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix infinite loop when collecting transitive excluded gems (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3913\"\u003eShopify/ruby-lsp#3913\u003c/a\u003e) by \u003ca href=\"https://github.com/rafaelfranca\"\u003e\u003ccode\u003e@​rafaelfranca\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDon't include test files in the gem package (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3916\"\u003eShopify/ruby-lsp#3916\u003c/a\u003e) by \u003ca href=\"https://github.com/rafaelfranca\"\u003e\u003ccode\u003e@​rafaelfranca\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd rbs to composed bundle update commands (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3938\"\u003eShopify/ruby-lsp#3938\u003c/a\u003e) by \u003ca href=\"https://github.com/modille\"\u003e\u003ccode\u003e@​modille\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExtract GEMS_TO_UPDATE constant and fix missing prism in command path (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3939\"\u003eShopify/ruby-lsp#3939\u003c/a\u003e) by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Other Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[DOC] Add security documentation (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3928\"\u003eShopify/ruby-lsp#3928\u003c/a\u003e) by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.5\u003c/h1\u003e\n\u003ch2\u003e✨ Enhancements\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/29ecc8d29dde87e6157a75bc2f0a3eb62db02ea3\"\u003e\u003ccode\u003e29ecc8d\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/f6d9ee44200cb2c0bd3feeb75ff9b7547accd6ad\"\u003e\u003ccode\u003ef6d9ee4\u003c/code\u003e\u003c/a\u003e Bump version to v0.26.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/97f817d489a212faa6dd876bf129b300ea492fbc\"\u003e\u003ccode\u003e97f817d\u003c/code\u003e\u003c/a\u003e Remove --branch flag from server\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/9e53e7e8366a13e44079f252ee8e5d5000803fe2\"\u003e\u003ccode\u003e9e53e7e\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/eb746d3554f8666e980fa3cffc0d03d7aa062fdd\"\u003e\u003ccode\u003eeb746d3\u003c/code\u003e\u003c/a\u003e Bump extension version to v0.10.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/8834520c7d4ebd067527bc9ba0db3aff586e5df8\"\u003e\u003ccode\u003e8834520\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/issues/4030\"\u003e#4030\u003c/a\u003e from Shopify/use-prism-parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/e4026eac5293387aa1e77a62253ae5dc5a9806b5\"\u003e\u003ccode\u003ee4026ea\u003c/code\u003e\u003c/a\u003e Use Prism parser for Sorbet\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/81843e7a15f2b5428dbe73d87ef3a3ceccb6c411\"\u003e\u003ccode\u003e81843e7\u003c/code\u003e\u003c/a\u003e Bump Sorbet to 0.6.13055\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/b61a59498b70e864ac67c87bafbf72851ecb2ba7\"\u003e\u003ccode\u003eb61a594\u003c/code\u003e\u003c/a\u003e Remove rubyLsp.branch setting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/8c1e9b6b3f69a45dd6853d43d3dfae158f9e555d\"\u003e\u003ccode\u003e8c1e9b6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/issues/4028\"\u003e#4028\u003c/a\u003e from Shopify/dependabot/npm_and_yarn/vscode/minor-an...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Shopify/ruby-lsp/compare/v0.19.1...v0.26.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.7 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rack` from 3.0.16 to 3.1.21\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.1.21] - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-7mqq-6cf9-v2qp\"\u003eCVE-2026-34763\u003c/a\u003e Root directory disclosure via unescaped regex interpolation in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v569-hp3g-36wr\"\u003eCVE-2026-34230\u003c/a\u003e Avoid O(n^2) algorithm in \u003ccode\u003eRack::Utils.select_best_encoding\u003c/code\u003e which could lead to denial of service.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qfgr-crr9-7r49\"\u003eCVE-2026-32762\u003c/a\u003e Forwarded header semicolon injection enables Host and Scheme spoofing.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-vgpv-f759-9wx3\"\u003eCVE-2026-26961\u003c/a\u003e Raise error for multipart requests with multiple boundary parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q4qf-9j86-f5mh\"\u003eCVE-2026-34786\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e \u003ccode\u003eheader_rules\u003c/code\u003e bypass via URL-encoded path mismatch.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q2ww-5357-x388\"\u003eCVE-2026-34831\u003c/a\u003e \u003ccode\u003eContent-Length\u003c/code\u003e mismatch in \u003ccode\u003eRack::Files\u003c/code\u003e error responses.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-x8cg-fq8g-mxfx\"\u003eCVE-2026-34826\u003c/a\u003e Multipart byte range processing allows denial of service via excessive overlapping ranges.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-g2pf-xv49-m2h5\"\u003eCVE-2026-34835\u003c/a\u003e \u003ccode\u003eRack::Request\u003c/code\u003e accepts invalid Host characters, enabling host allowlist bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qv7j-4883-hwh7\"\u003eCVE-2026-34830\u003c/a\u003e \u003ccode\u003eRack::Sendfile\u003c/code\u003e header-based \u003ccode\u003eX-Accel-Mapping\u003c/code\u003e regex injection enables unauthorized \u003ccode\u003eX-Accel-Redirect\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-h2jq-g4cq-5ppq\"\u003eCVE-2026-34785\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e prefix matching can expose unintended files under the static root.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-8vqr-qjwx-82mw\"\u003eCVE-2026-34829\u003c/a\u003e Multipart parsing without \u003ccode\u003eContent-Length\u003c/code\u003e header allows unbounded chunked file uploads.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v6x5-cg8r-vv6x\"\u003eCVE-2026-34827\u003c/a\u003e Multipart header parsing allows denial of service via escape-heavy quoted parameters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.20] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-whrj-4476-wvmp\"\u003eCVE-2026-25500\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-mxw3-3hh2-x2mh\"\u003eCVE-2026-22860\u003c/a\u003e Directory traversal via root prefix bypass in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.19] - 2025-11-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.18] - 2025-10-10\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.17] - 2025-10-07\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-wpv5-97wm-hp9c\"\u003eCVE-2025-61772\u003c/a\u003e Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-w9pc-fmgc-vxvw\"\u003eCVE-2025-61771\u003c/a\u003e Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-p543-xpfm-54cp\"\u003eCVE-2025-61770\u003c/a\u003e Unbounded multipart preamble buffering enables DoS (memory exhaustion)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.16] - 2025-06-04\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-47m2-26rw-j2jw\"\u003eCVE-2025-49007\u003c/a\u003e Fix ReDoS in multipart request.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/ae8431120e66e92d1885ab8ec0a553d9cad5ec13\"\u003e\u003ccode\u003eae84311\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/87961c306df1894fb5efaa57d29179091b4bc194\"\u003e\u003ccode\u003e87961c3\u003c/code\u003e\u003c/a\u003e Fix typo in test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/fd1c23dc762225e68b50d392142e6a6bf54bf9af\"\u003e\u003ccode\u003efd1c23d\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003elogger\u003c/code\u003e to gemfile.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/c59d924f215e41ae8ce1bae1633c34f1ca64b182\"\u003e\u003ccode\u003ec59d924\u003c/code\u003e\u003c/a\u003e Fix test expectation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/176f468e0d575e2f4d7583ff95f30bb53360e3fe\"\u003e\u003ccode\u003e176f468\u003c/code\u003e\u003c/a\u003e Add Ruby v4.0 to the test matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/28569342665fee07f161f0974826eb85c1244533\"\u003e\u003ccode\u003e2856934\u003c/code\u003e\u003c/a\u003e Drop EOL Rubies from external tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/17ce7836be1523a7b453f3c06fe070ad7c954708\"\u003e\u003ccode\u003e17ce783\u003c/code\u003e\u003c/a\u003e Limit the number of quoted escapes during multipart parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/367a2a0ec6fbef605c9412dadfd5763b7867441f\"\u003e\u003ccode\u003e367a2a0\u003c/code\u003e\u003c/a\u003e Add Content-Length size check in Rack::Multipart::Parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/a17cb99b3440a4db09fb920407adf5ead127704c\"\u003e\u003ccode\u003ea17cb99\u003c/code\u003e\u003c/a\u003e Fix root prefix bug in Rack::Static\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/59a0966a484f2903833fa3e4c81919d3c645738d\"\u003e\u003ccode\u003e59a0966\u003c/code\u003e\u003c/a\u003e Only do a simple substitution on the x-accel-mapping paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/v3.0.16...v3.1.21\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.3.9 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.3.9...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uri` from 1.0.3 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/uri/releases\"\u003euri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRe-allow consecutive, leading and trailing dots in EMAIL_REGEXP by \u003ca href=\"https://github.com/osyoyu\"\u003e\u003ccode\u003e@​osyoyu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/189\"\u003eruby/uri#189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/osyoyu\"\u003e\u003ccode\u003e@​osyoyu\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/189\"\u003eruby/uri#189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/uri/compare/v1.1.0...v1.1.1\"\u003ehttps://github.com/ruby/uri/compare/v1.1.0...v1.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.1.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate to use the latest version of setup-ruby and bump up to Ruby 3.4 by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/158\"\u003eruby/uri#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix the mention to removed \u003ccode\u003eURI.escape/URI::Escape\u003c/code\u003e by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/146\"\u003eruby/uri#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse a fully qualified name in warning messages by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/150\"\u003eruby/uri#150\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport \u003ccode\u003eRactor#value\u003c/code\u003e by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/163\"\u003eruby/uri#163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved unnecessary workaround  by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/164\"\u003eruby/uri#164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEscape reserved characters in scheme name by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/148\"\u003eruby/uri#148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[DOC] State that uri library is needed to call Kernel#URI by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/167\"\u003eruby/uri#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrefer dedicated assertion methods by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/169\"\u003eruby/uri#169\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix the message for unexpected argument by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/171\"\u003eruby/uri#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake URI::regexp schemes case sensitive (\u003ca href=\"https://redirect.github.com/ruby/uri/issues/38\"\u003e#38\u003c/a\u003e) by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/170\"\u003eruby/uri#170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe local part should not contain leading or trailing dots in the EMAIL_REGEXP by \u003ca href=\"https://github.com/nlevchuk\"\u003e\u003ccode\u003e@​nlevchuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/124\"\u003eruby/uri#124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMore checks in \u003ccode\u003eEMAIL_REGEXP\u003c/code\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/172\"\u003eruby/uri#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not allow empty host names, as they are not allowed by RFC 3986 by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/116\"\u003eruby/uri#116\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove performance of \u003ccode\u003eURI::MailTo::EMAIL_REGEXP\u003c/code\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/173\"\u003eruby/uri#173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePerformance test stability by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/174\"\u003eruby/uri#174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate documents that used \u003ccode\u003eURI::Parser\u003c/code\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/175\"\u003eruby/uri#175\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a workflow to sync commits to ruby/ruby by \u003ca href=\"https://github.com/k0kubun\"\u003e\u003ccode\u003e@​k0kubun\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/183\"\u003eruby/uri#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eirb\u003c/code\u003e to the Gemfile to fix the warning by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/182\"\u003eruby/uri#182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace reference to the obsolete URI.escape with URI::RFC2396_PARSER.escape by \u003ca href=\"https://github.com/vivshaw\"\u003e\u003ccode\u003e@​vivshaw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/166\"\u003eruby/uri#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch a parsing behavior completely when switching a parser by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/161\"\u003eruby/uri#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove error message by \u003ca href=\"https://github.com/soda92\"\u003e\u003ccode\u003e@​soda92\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/130\"\u003eruby/uri#130\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse generic version number to VERSION by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/187\"\u003eruby/uri#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/146\"\u003eruby/uri#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nlevchuk\"\u003e\u003ccode\u003e@​nlevchuk\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/124\"\u003eruby/uri#124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vivshaw\"\u003e\u003ccode\u003e@​vivshaw\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/166\"\u003eruby/uri#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/soda92\"\u003e\u003ccode\u003e@​soda92\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/130\"\u003eruby/uri#130\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/uri/compare/v1.0.4...v1.1.0\"\u003ehttps://github.com/ruby/uri/compare/v1.0.4...v1.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.0.4\u003c/h2\u003e\n\u003ch3\u003eSecurity fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.ruby-lang.org/en/news/2025/10/07/uri-cve-2025-61594/\"\u003eCVE-2025-61594\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/f1b05c89ab38667e7564896f994d4d6cfbc67149\"\u003e\u003ccode\u003ef1b05c8\u003c/code\u003e\u003c/a\u003e v1.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/8557e8d470ad7b969ba11d210e33b9570919661d\"\u003e\u003ccode\u003e8557e8d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/189\"\u003e#189\u003c/a\u003e from osyoyu/restore-whatwg-email-regexp\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/c551d7020bba3cf452e696d55c451ae951d0f24b\"\u003e\u003ccode\u003ec551d70\u003c/code\u003e\u003c/a\u003e Re-allow consecutive, leading and trailing dots in EMAIL_REGEXP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/c41903b3e4df8ba2ceba16a80d3156a97a81e038\"\u003e\u003ccode\u003ec41903b\u003c/code\u003e\u003c/a\u003e v1.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/b433f3499202b2abc27c5211554195243d083f88\"\u003e\u003ccode\u003eb433f34\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/187\"\u003e#187\u003c/a\u003e from ruby/switch-version-code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/1fc4f0496a2d44f4af317d8f786a50e9f6918656\"\u003e\u003ccode\u003e1fc4f04\u003c/code\u003e\u003c/a\u003e Use generic version number to VERSION and generate VERSION_CODE from that\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/e8306800d9b58f37f3847e8d598599cb1ef36f3c\"\u003e\u003ccode\u003ee830680\u003c/code\u003e\u003c/a\u003e Exclude dependabot updates from release note\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/70d245fa46786b9aa4970c4b815cfe8b1b823bf6\"\u003e\u003ccode\u003e70d245f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/130\"\u003e#130\u003c/a\u003e from soda92/improve-error-message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/d629c8c1541330e4fc50879fbafc0701728e447f\"\u003e\u003ccode\u003ed629c8c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/161\"\u003e#161\u003c/a\u003e from y-yagi/fix_changing_parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/fec6733919edb140bbdc429ed4b0492776ebc4a2\"\u003e\u003ccode\u003efec6733\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/166\"\u003e#166\u003c/a\u003e from vivshaw/vivshaw/correct-obsolete-parse\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/uri/compare/v1.0.3...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Lynquatiq/entitlements-github-plugin/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Lynquatiq/entitlements-github-plugin/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Lynquatiq%2Fentitlements-github-plugin/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"},{"uuid":"4222907401","node_id":"PR_kwDOPVgz5c7Qursv","number":248,"state":"open","title":"build(deps): bump the bundler group across 2 directories with 5 updates","user":"dependabot[bot]","labels":["dependencies","ruby","Stale"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-08T07:41:29.000Z","updated_at":"2026-04-16T05:36:48.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"bundler","update_count":5,"packages":[{"name":"sinatra","old_version":"4.1.1","new_version":"4.2.0","repository_url":"https://github.com/sinatra/sinatra"},{"name":"rack","old_version":"3.1.15","new_version":"3.2.6"},{"name":"rack-session","old_version":"2.1.1","new_version":"2.1.2"},{"name":"addressable","old_version":"2.8.7","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"rexml","old_version":"3.4.0","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 1 update in the /src/email directory: [sinatra](https://github.com/sinatra/sinatra).\nBumps the bundler group with 2 updates in the /src/react-native-app directory: [addressable](https://github.com/sporkmonger/addressable) and [rexml](https://github.com/ruby/rexml).\n\nUpdates `sinatra` from 4.1.1 to 4.2.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sinatra/sinatra/blob/main/CHANGELOG.md\"\u003esinatra's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.2.0 / 2025-10-08\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew: Add \u003ccode\u003e:static_headers\u003c/code\u003e setting for custom headers in static file responses (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2089\"\u003e#2089\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Fix regex in \u003ccode\u003eetag_matches?\u003c/code\u003e to prevent ReDoS (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2121\"\u003e#2121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: \u003ccode\u003ePATH_INFO\u003c/code\u003e can never be empty (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2114\"\u003e#2114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Fix malformed Content-Type headers (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2081\"\u003e#2081\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Avoid crash for integer values in \u003ccode\u003econtent_type\u003c/code\u003e parameters (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2078\"\u003e#2078\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/f2ad45f7d2456172974a30d300e9f82424336e09\"\u003e\u003ccode\u003ef2ad45f\u003c/code\u003e\u003c/a\u003e 4.2.0 release (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2122\"\u003e#2122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/3fe8c38dc405586f7ad8f2ac748aa53e9c3615bd\"\u003e\u003ccode\u003e3fe8c38\u003c/code\u003e\u003c/a\u003e Fix regex in \u003ccode\u003eetag_matches?\u003c/code\u003e to prevent ReDoS (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2121\"\u003e#2121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/fa99a21461d4f1f5337b9b9d7a38a1b51c8f4e55\"\u003e\u003ccode\u003efa99a21\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ePATH_INFO\u003c/code\u003e can never be empty. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2114\"\u003e#2114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/ea0d3fae36d8bba330c1d1f88ef1be2e9e54516a\"\u003e\u003ccode\u003eea0d3fa\u003c/code\u003e\u003c/a\u003e Skip broken tests. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2115\"\u003e#2115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/5e1598501eb23a8673d61034df7be7d50c228400\"\u003e\u003ccode\u003e5e15985\u003c/code\u003e\u003c/a\u003e Sync changelog for v4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/91cfb548c9e50a65324a9ce9e4ea5f10cd897027\"\u003e\u003ccode\u003e91cfb54\u003c/code\u003e\u003c/a\u003e Add :static_headers setting for custom headers in static file responses (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2089\"\u003e#2089\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/c918134b0a520cb80b8b4cc3ab222cb6bbd9c827\"\u003e\u003ccode\u003ec918134\u003c/code\u003e\u003c/a\u003e Set \u003ccode\u003erubygems_mfa_required\u003c/code\u003e for the \u003ccode\u003esinatra\u003c/code\u003e gem (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2087\"\u003e#2087\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/ac3ff2363b6dfc61d2b438c4dfccc515bc6bf48c\"\u003e\u003ccode\u003eac3ff23\u003c/code\u003e\u003c/a\u003e README: Remove duplicate mention of installing puma (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2091\"\u003e#2091\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/cfcc70dee1133690207b5a3dc6000426ec04e250\"\u003e\u003ccode\u003ecfcc70d\u003c/code\u003e\u003c/a\u003e CI: don't use \u003ccode\u003eRack::Lint\u003c/code\u003e on invalid hostname (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2086\"\u003e#2086\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/c235249abaafa2780b540aca1813dfcf3d17c2dd\"\u003e\u003ccode\u003ec235249\u003c/code\u003e\u003c/a\u003e CI: Test with Ruby 3.4 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2083\"\u003e#2083\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sinatra/sinatra/compare/v4.1.1...v4.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rack` from 3.1.15 to 3.2.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/releases\"\u003erack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.2.6\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.2.5...v3.2.6\"\u003ehttps://github.com/rack/rack/compare/v3.2.5...v3.2.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.2.4\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.2.6] - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-7mqq-6cf9-v2qp\"\u003eCVE-2026-34763\u003c/a\u003e Root directory disclosure via unescaped regex interpolation in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v569-hp3g-36wr\"\u003eCVE-2026-34230\u003c/a\u003e Avoid O(n^2) algorithm in \u003ccode\u003eRack::Utils.select_best_encoding\u003c/code\u003e which could lead to denial of service.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qfgr-crr9-7r49\"\u003eCVE-2026-32762\u003c/a\u003e Forwarded header semicolon injection enables Host and Scheme spoofing.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-vgpv-f759-9wx3\"\u003eCVE-2026-26961\u003c/a\u003e Raise error for multipart requests with multiple boundary parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q4qf-9j86-f5mh\"\u003eCVE-2026-34786\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e \u003ccode\u003eheader_rules\u003c/code\u003e bypass via URL-encoded path mismatch.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q2ww-5357-x388\"\u003eCVE-2026-34831\u003c/a\u003e \u003ccode\u003eContent-Length\u003c/code\u003e mismatch in \u003ccode\u003eRack::Files\u003c/code\u003e error responses.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-x8cg-fq8g-mxfx\"\u003eCVE-2026-34826\u003c/a\u003e Multipart byte range processing allows denial of service via excessive overlapping ranges.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-g2pf-xv49-m2h5\"\u003eCVE-2026-34835\u003c/a\u003e \u003ccode\u003eRack::Request\u003c/code\u003e accepts invalid Host characters, enabling host allowlist bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qv7j-4883-hwh7\"\u003eCVE-2026-34830\u003c/a\u003e \u003ccode\u003eRack::Sendfile\u003c/code\u003e header-based \u003ccode\u003eX-Accel-Mapping\u003c/code\u003e regex injection enables unauthorized \u003ccode\u003eX-Accel-Redirect\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-h2jq-g4cq-5ppq\"\u003eCVE-2026-34785\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e prefix matching can expose unintended files under the static root.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-8vqr-qjwx-82mw\"\u003eCVE-2026-34829\u003c/a\u003e Multipart parsing without \u003ccode\u003eContent-Length\u003c/code\u003e header allows unbounded chunked file uploads.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v6x5-cg8r-vv6x\"\u003eCVE-2026-34827\u003c/a\u003e Multipart header parsing allows denial of service via escape-heavy quoted parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-rx22-g9mx-qrhv\"\u003eCVE-2026-26962\u003c/a\u003e Improper unfolding of folded multipart headers preserves CRLF in parsed parameter values.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.5] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-whrj-4476-wvmp\"\u003eCVE-2026-25500\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-mxw3-3hh2-x2mh\"\u003eCVE-2026-22860\u003c/a\u003e Directory traversal via root prefix bypass in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eRack::MockResponse#body\u003c/code\u003e when the body is a Proc. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2420\"\u003e#2420\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rack/rack/pull/2423\"\u003e#2423\u003c/a\u003e, \u003ca href=\"https://github.com/tavianator\"\u003e\u003ccode\u003e@​tavianator\u003c/code\u003e\u003c/a\u003e, [\u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.4] - 2025-11-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3] - 2025-10-10\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.2] - 2025-10-07\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-wpv5-97wm-hp9c\"\u003eCVE-2025-61772\u003c/a\u003e Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-w9pc-fmgc-vxvw\"\u003eCVE-2025-61771\u003c/a\u003e Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-p543-xpfm-54cp\"\u003eCVE-2025-61770\u003c/a\u003e Unbounded multipart preamble buffering enables DoS (memory exhaustion)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/e1f22fdbe99afd2126b6fbf05bb12399359574b7\"\u003e\u003ccode\u003ee1f22fd\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/31989fd7bb6f806fdb3cfa4e9aec1fe8434f47d1\"\u003e\u003ccode\u003e31989fd\u003c/code\u003e\u003c/a\u003e Fix typo in test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/d268165e390e17b83573fec916dcdef6304a8b4b\"\u003e\u003ccode\u003ed268165\u003c/code\u003e\u003c/a\u003e Fix test expectation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/8f425de0ee75a2f3cdfbfdd57858c1910b7645ff\"\u003e\u003ccode\u003e8f425de\u003c/code\u003e\u003c/a\u003e Add Ruby v4.0 to the test matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/bf830426ce5b3daccb5a226b733703c86504ceba\"\u003e\u003ccode\u003ebf83042\u003c/code\u003e\u003c/a\u003e Drop EOL Rubies from external tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/d50c4d3dab62fa80b2a276271d0d4fb338cfa7df\"\u003e\u003ccode\u003ed50c4d3\u003c/code\u003e\u003c/a\u003e Implement OBS unfolding for multipart requests per RFC 5322 2.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/bfb69142dbe2a1e3298ad52d12935938d1b58205\"\u003e\u003ccode\u003ebfb6914\u003c/code\u003e\u003c/a\u003e Limit the number of quoted escapes during multipart parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/b3e5945c648c5a5b6982e5072b26e51990991229\"\u003e\u003ccode\u003eb3e5945\u003c/code\u003e\u003c/a\u003e Add Content-Length size check in Rack::Multipart::Parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/7a8f32696609b88e2c4c1f09d473a1d2d837ed4b\"\u003e\u003ccode\u003e7a8f326\u003c/code\u003e\u003c/a\u003e Fix root prefix bug in Rack::Static\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/a57bc140247f904dc1e3302badedcb73645072c7\"\u003e\u003ccode\u003ea57bc14\u003c/code\u003e\u003c/a\u003e Only do a simple substitution on the x-accel-mapping paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/v3.1.15...v3.2.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rack-session` from 2.1.1 to 2.1.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack-session/blob/main/releases.md\"\u003erack-session's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-33qg-7wpp-89cq\"\u003eCVE-2026-39324\u003c/a\u003e Don't fall back to unencrypted coder if encryptors are present.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/504367b59caf7ec78127785cc6351f46be14f8ca\"\u003e\u003ccode\u003e504367b\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/f43638cb3a4d15c3ecaf59e67a04b47fda08eeac\"\u003e\u003ccode\u003ef43638c\u003c/code\u003e\u003c/a\u003e Don't fall back to unencrypted coder if encryptors are present.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/dadcfe60f193e8d8540bec6b95ca75bed8e5fd7e\"\u003e\u003ccode\u003edadcfe6\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/rack/rack-session/issues/54\"\u003e#54\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/4eb9ea83b372e319c65a8c2bcfe87e8be942cf9b\"\u003e\u003ccode\u003e4eb9ea8\u003c/code\u003e\u003c/a\u003e Add top level session spec to validate existing formats.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/8f94577c1d11b746692974f1417acff2856060cb\"\u003e\u003ccode\u003e8f94577\u003c/code\u003e\u003c/a\u003e Add rails to external tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/38ea47da9937afb4f2140b3c23866e3791a46eaf\"\u003e\u003ccode\u003e38ea47d\u003c/code\u003e\u003c/a\u003e Allow the v2 encryptor to serialize messages with \u003ccode\u003eMarshal\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rack/rack-session/issues/44\"\u003e#44\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/43f2e3a46393b51473bb90f54e61189465ae759d\"\u003e\u003ccode\u003e43f2e3a\u003c/code\u003e\u003c/a\u003e Fix compatibility with older Rubies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/6a060b806399bff4961eaf6bf89535395c95549c\"\u003e\u003ccode\u003e6a060b8\u003c/code\u003e\u003c/a\u003e Support UTF-8 data when using the JSON serializer (\u003ca href=\"https://redirect.github.com/rack/rack-session/issues/39\"\u003e#39\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/8ce0146a7079332d9c58a43e418acb1ecf904ef6\"\u003e\u003ccode\u003e8ce0146\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003eauth_tag\u003c/code\u003e retrieval on JRuby (\u003ca href=\"https://redirect.github.com/rack/rack-session/issues/32\"\u003e#32\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/77271850efd977897d02903bfde8ed51e4137a68\"\u003e\u003ccode\u003e7727185\u003c/code\u003e\u003c/a\u003e Add AEAD encryption (\u003ca href=\"https://redirect.github.com/rack/rack-session/issues/23\"\u003e#23\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rack/rack-session/compare/v2.1.1...v2.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.7 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.4.0 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.4.0...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/burhanuddin-anw/opentelemetry-demo/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/burhanuddin-anw/opentelemetry-demo/pull/248","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/burhanuddin-anw%2Fopentelemetry-demo/issues/248","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/248/packages"},{"uuid":"4222874288","node_id":"PR_kwDOJBA0UM7QulOD","number":19,"state":"open","title":"Bump the bundler group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-08T07:34:29.000Z","updated_at":"2026-05-15T02:19:08.639Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":2,"packages":[{"name":"addressable","old_version":"2.8.7","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"rexml","old_version":"3.4.1","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Updates the requirements on [addressable](https://github.com/sporkmonger/addressable) and [rexml](https://github.com/ruby/rexml) to permit the latest version.\nUpdates `addressable` from 2.8.7 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.4.1 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.4.1...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sivolko/hugs4bugs/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/sivolko/hugs4bugs/pull/19","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sivolko%2Fhugs4bugs/issues/19","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/19/packages"},{"uuid":"4222506848","node_id":"PR_kwDOMS9Kv87QtiMU","number":6,"state":"open","title":"Bump the bundler group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-08T06:16:10.000Z","updated_at":"2026-04-08T08:02:04.161Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":6,"packages":[{"name":"nokogiri","old_version":"1.16.5","new_version":"1.19.1","repository_url":"https://github.com/sparklemotion/nokogiri"},{"name":"webrick","old_version":"1.8.1","new_version":"1.8.2","repository_url":"https://github.com/ruby/webrick"},{"name":"addressable","old_version":"2.8.6","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"httparty","old_version":"0.22.0","new_version":"0.24.0","repository_url":"https://github.com/jnunemaker/httparty"},{"name":"rexml","old_version":"3.2.6","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"},{"name":"google-protobuf","old_version":"3.24.4","new_version":"3.25.5","repository_url":"https://github.com/protocolbuffers/protobuf"}],"path":null,"ecosystem":"rubygems"},"body":"Updates the requirements on [nokogiri](https://github.com/sparklemotion/nokogiri), [webrick](https://github.com/ruby/webrick), [addressable](https://github.com/sporkmonger/addressable), [httparty](https://github.com/jnunemaker/httparty), [rexml](https://github.com/ruby/rexml) and [google-protobuf](https://github.com/protocolbuffers/protobuf) to permit the latest version.\nUpdates `nokogiri` from 1.16.5 to 1.19.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/releases\"\u003enokogiri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003ecfdb0eafd9a554a88f12ebcc688d2b9005f9fce42b00b970e3dc199587b27f32  nokogiri-1.19.1-aarch64-linux-gnu.gem\r\n1e2150ab43c3b373aba76cd1190af7b9e92103564063e48c474f7600923620b5  nokogiri-1.19.1-aarch64-linux-musl.gem\r\n0a39ed59abe3bf279fab9dd4c6db6fe8af01af0608f6e1f08b8ffa4e5d407fa3  nokogiri-1.19.1-arm-linux-gnu.gem\r\n3a18e559ee499b064aac6562d98daab3d39ba6cbb4074a1542781b2f556db47d  nokogiri-1.19.1-arm-linux-musl.gem\r\ndfe2d337e6700eac47290407c289d56bcf85805d128c1b5a6434ddb79731cb9e  nokogiri-1.19.1-arm64-darwin.gem\r\n1e0bda88b1c6409f0edb9e0c25f1bf9ff4fa94c3958f492a10fcf50dda594365  nokogiri-1.19.1-java.gem\r\n110d92ae57694ae7866670d298a5d04cd150fae5a6a7849957d66f171e6aec9b  nokogiri-1.19.1-x64-mingw-ucrt.gem\r\n7093896778cc03efb74b85f915a775862730e887f2e58d6921e3fa3d981e68bf  nokogiri-1.19.1-x86_64-darwin.gem\r\n1a4902842a186b4f901078e692d12257678e6133858d0566152fe29cdb98456a  nokogiri-1.19.1-x86_64-linux-gnu.gem\r\n4267f38ad4fc7e52a2e7ee28ed494e8f9d8eb4f4b3320901d55981c7b995fc23  nokogiri-1.19.1-x86_64-linux-musl.gem\r\n598b327f36df0b172abd57b68b18979a6e14219353bca87180c31a51a00d5ad3  nokogiri-1.19.1.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e11a97ecc3c0e7e5edcf395720b10860ef493b768f6aa80c539573530bc933767  nokogiri-1.19.0-aarch64-linux-gnu.gem\r\neb70507f5e01bc23dad9b8dbec2b36ad0e61d227b42d292835020ff754fb7ba9  nokogiri-1.19.0-aarch64-linux-musl.gem\r\n572a259026b2c8b7c161fdb6469fa2d0edd2b61cd599db4bbda93289abefbfe5  nokogiri-1.19.0-arm-linux-gnu.gem\r\n23ed90922f1a38aed555d3de4d058e90850c731c5b756d191b3dc8055948e73c  nokogiri-1.19.0-arm-linux-musl.gem\r\n0811dfd936d5f6dd3f6d32ef790568bf29b2b7bead9ba68866847b33c9cf5810  nokogiri-1.19.0-arm64-darwin.gem\r\n5f3a70e252be641d8a4099f7fb4cc25c81c632cb594eec9b4b8f2ca8be4374f3  nokogiri-1.19.0-java.gem\r\n05d7ed2d95731edc9bef2811522dc396df3e476ef0d9c76793a9fca81cab056b  nokogiri-1.19.0-x64-mingw-ucrt.gem\r\n1dad56220b603a8edb9750cd95798bffa2b8dd9dd9aa47f664009ee5b43e3067  nokogiri-1.19.0-x86_64-darwin.gem\r\nf482b95c713d60031d48c44ce14562f8d2ce31e3a9e8dd0ccb131e9e5a68b58c  nokogiri-1.19.0-x86_64-linux-gnu.gem\r\n1c4ca6b381622420073ce6043443af1d321e8ed93cc18b08e2666e5bd02ffae4  nokogiri-1.19.0-x86_64-linux-musl.gem\r\ne304d21865f62518e04f2bf59f93bd3a97ca7b07e7f03952946d8e1c05f45695  nokogiri-1.19.0.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md\"\u003enokogiri's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.10 / 2025-09-15\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.9\"\u003ev2.13.9\u003c/a\u003e. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.\u003c/li\u003e\n\u003cli\u003e[CRuby] [Windows and MacOS] Vendored libiconv is updated to \u003ca href=\"https://savannah.gnu.org/news/?id=10703\"\u003ev1.18\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.9 / 2025-07-20\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Applied upstream libxml2 patches to address CVE-2025-6021, CVE-2025-6170, CVE-2025-49794, CVE-2025-49795, and CVE-2025-49796. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-353f-x4gh-cqq8\"\u003eGHSA-353f-x4gh-cqq8\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.8 / 2025-04-21\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.8\"\u003ev2.13.8\u003c/a\u003e to address CVE-2025-32414 and CVE-2025-32415. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-5w6v-399v-w3cc\"\u003eGHSA-5w6v-399v-w3cc\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.7 / 2025-03-31\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.7\"\u003ev2.13.7\u003c/a\u003e, which is a bugfix release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.6 / 2025-03-24\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d9130457369de8a6efcb764e6da2cb80d5d3b6dd\"\u003e\u003ccode\u003ed913045\u003c/code\u003e\u003c/a\u003e version bump to v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/b81cb9869e8ed7d1785da3363ef490f455da96eb\"\u003e\u003ccode\u003eb81cb98\u003c/code\u003e\u003c/a\u003e doc: update CHANGELOG for upcoming v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/8e668095c6147def4a3ec044df5f2a478c8161c3\"\u003e\u003ccode\u003e8e66809\u003c/code\u003e\u003c/a\u003e C14n raise on failure (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3600\"\u003e#3600\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/5b77f3d1c48cc09c92d10046c448a0866380eb4a\"\u003e\u003ccode\u003e5b77f3d\u003c/code\u003e\u003c/a\u003e Raise RuntimeError when canonicalization fails\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/edc559565819459d92f6db609f068f50491a57f9\"\u003e\u003ccode\u003eedc5595\u003c/code\u003e\u003c/a\u003e Thank sponsors in the README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d4dc245dfafd7ba42538051b0979306c8e5dc6f2\"\u003e\u003ccode\u003ed4dc245\u003c/code\u003e\u003c/a\u003e dep: update rdoc to v7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d77bfb66302532b90c0f340ed6b4ae74f275dde8\"\u003e\u003ccode\u003ed77bfb6\u003c/code\u003e\u003c/a\u003e version bump to v1.19.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/1eb5c2c035b360fd1195de0b274e901b6e0c12dd\"\u003e\u003ccode\u003e1eb5c2c\u003c/code\u003e\u003c/a\u003e dev: convert scripts/test-gem-set to use mise\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/88a120fd8198cd49b7cbe6388c92cd92d776407d\"\u003e\u003ccode\u003e88a120f\u003c/code\u003e\u003c/a\u003e dep: Add native Ruby 4 support, drop Ruby 3.1 support (v1.19.x) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3592\"\u003e#3592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/f8c8f74e846ea49d2cb221710cc08618842ba21e\"\u003e\u003ccode\u003ef8c8f74\u003c/code\u003e\u003c/a\u003e Skip the parser compression test for Windows system libs\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sparklemotion/nokogiri/compare/v1.16.5...v1.19.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `webrick` from 1.8.1 to 1.8.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/webrick/releases\"\u003ewebrick's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop commented-out line by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/108\"\u003eruby/webrick#108\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Ruby 3.1 \u0026amp; 3.2 to CI matrix by \u003ca href=\"https://github.com/tricknotes\"\u003e\u003ccode\u003e@​tricknotes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/109\"\u003eruby/webrick#109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix/redos by \u003ca href=\"https://github.com/ooooooo-q\"\u003e\u003ccode\u003e@​ooooooo-q\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/114\"\u003eruby/webrick#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRaise HTTPStatus::BadRequest for requests with invalid/duplicate content-length headers by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/120\"\u003eruby/webrick#120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/121\"\u003eruby/webrick#121\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove CI by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/123\"\u003eruby/webrick#123\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix WEBrick::TestFileHandler#test_short_filename test not working on mswin by \u003ca href=\"https://github.com/KJTsanaktsidis\"\u003e\u003ccode\u003e@​KJTsanaktsidis\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/128\"\u003eruby/webrick#128\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix bug chunk extension detection by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/125\"\u003eruby/webrick#125\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI. by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/131\"\u003eruby/webrick#131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMerge multiple cookie headers, preserving semantic correctness. by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/130\"\u003eruby/webrick#130\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTest on macos-latest by \u003ca href=\"https://github.com/byroot\"\u003e\u003ccode\u003e@​byroot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/132\"\u003eruby/webrick#132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire CRLF line endings in request line and headers by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/138\"\u003eruby/webrick#138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrefer squigly heredocs. by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/143\"\u003eruby/webrick#143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly strip space and horizontal tab in headers by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/141\"\u003eruby/webrick#141\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTreat missing CRLF separator after headers as an EOFError by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/142\"\u003eruby/webrick#142\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReturn 400 response for chunked requests with unexpected data after chunk by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/136\"\u003eruby/webrick#136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix reference to URI::REGEXP::PATTERN::HOST by \u003ca href=\"https://github.com/casperisfine\"\u003e\u003ccode\u003e@​casperisfine\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/144\"\u003eruby/webrick#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrevent request smuggling by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/146\"\u003eruby/webrick#146\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tricknotes\"\u003e\u003ccode\u003e@​tricknotes\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/109\"\u003eruby/webrick#109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ooooooo-q\"\u003e\u003ccode\u003e@​ooooooo-q\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/114\"\u003eruby/webrick#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KJTsanaktsidis\"\u003e\u003ccode\u003e@​KJTsanaktsidis\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/128\"\u003eruby/webrick#128\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/byroot\"\u003e\u003ccode\u003e@​byroot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/132\"\u003eruby/webrick#132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/casperisfine\"\u003e\u003ccode\u003e@​casperisfine\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/144\"\u003eruby/webrick#144\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/webrick/compare/v1.8.1...v1.8.2\"\u003ehttps://github.com/ruby/webrick/compare/v1.8.1...v1.8.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/0fb9de6788a3ba5fe903e63d778a0fb8c1dce786\"\u003e\u003ccode\u003e0fb9de6\u003c/code\u003e\u003c/a\u003e Bump up v1.8.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/b9a4c81ea94dec02a750c6b34092c55234519bf1\"\u003e\u003ccode\u003eb9a4c81\u003c/code\u003e\u003c/a\u003e Removed trailing spaces\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/f5faca9222541591e1a7c3c97552ebb0c92733c7\"\u003e\u003ccode\u003ef5faca9\u003c/code\u003e\u003c/a\u003e Prevent request smuggling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/0c600e169bd4ae267cb5eeb6197277c848323bbe\"\u003e\u003ccode\u003e0c600e1\u003c/code\u003e\u003c/a\u003e Fix reference to URI::REGEXP::PATTERN::HOST\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/15a93914782789520837c334e0c302702aec34e2\"\u003e\u003ccode\u003e15a9391\u003c/code\u003e\u003c/a\u003e Return 400 response for chunked requests with unexpected data after chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/2b38d5614e876d313fe981e87c4e35b91556d226\"\u003e\u003ccode\u003e2b38d56\u003c/code\u003e\u003c/a\u003e Treat missing CRLF separator after headers as an EOFError\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/e4efb4a2300540f14f93c09c06bf0357ac1597dc\"\u003e\u003ccode\u003ee4efb4a\u003c/code\u003e\u003c/a\u003e Remove unnecessary gsub calls in test_httprequest.rb\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/426e214532bb0be5e4ab8b3c9cef328432012d0d\"\u003e\u003ccode\u003e426e214\u003c/code\u003e\u003c/a\u003e Only strip space and horizontal tab in headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/e72cb697836e2ff201a4a74c108fdca9d3d2d0ed\"\u003e\u003ccode\u003ee72cb69\u003c/code\u003e\u003c/a\u003e Prefer squigly heredocs. (\u003ca href=\"https://redirect.github.com/ruby/webrick/issues/143\"\u003e#143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/ee60354bcb84ec33b9245e1d1aa6e1f7e8132101\"\u003e\u003ccode\u003eee60354\u003c/code\u003e\u003c/a\u003e Require CRLF line endings in request line and headers\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/webrick/compare/v1.8.1...v1.8.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.6 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.7 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 6 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/535\"\u003esporkmonger/addressable#535\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.6...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `httparty` from 0.22.0 to 0.24.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jnunemaker/httparty/releases\"\u003ehttparty's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.24.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eForce binary encoding throughout by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/823\"\u003ejnunemaker/httparty#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eset Content-Type for Hash body in requests by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/828\"\u003ejnunemaker/httparty#828\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: stream multipart file uploads to reduce memory usage by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/829\"\u003ejnunemaker/httparty#829\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent SSRF via absolute URL bypassing base_uri by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/830\"\u003ejnunemaker/httparty#830\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.23.2...v0.24.0\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.23.2...v0.24.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.23.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd changelog_uri metadata to gemspec by \u003ca href=\"https://github.com/baraidrissa\"\u003e\u003ccode\u003e@​baraidrissa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/817\"\u003ejnunemaker/httparty#817\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix multipart with files in binary mode and fields including non-ASCII characters by \u003ca href=\"https://github.com/rdimartino\"\u003e\u003ccode\u003e@​rdimartino\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/822\"\u003ejnunemaker/httparty#822\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/baraidrissa\"\u003e\u003ccode\u003e@​baraidrissa\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/817\"\u003ejnunemaker/httparty#817\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rdimartino\"\u003e\u003ccode\u003e@​rdimartino\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/822\"\u003ejnunemaker/httparty#822\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.23.1...v0.23.2\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.23.1...v0.23.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.23.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd foul option to class level \u003ca href=\"https://github.com/jnunemaker/httparty/commit/d2683879c902b278a0776620dd7510c99a9db670\"\u003ehttps://github.com/jnunemaker/httparty/commit/d2683879c902b278a0776620dd7510c99a9db670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.23.0...v0.23.1\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.23.0...v0.23.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.23.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003enew: foul mode to rescue all common network errors:  \u003ca href=\"https://github.com/jnunemaker/httparty/blob/891a4a8093afd4cacecab2719223e3170d07f1c0/examples/party_foul_mode.rb\"\u003ehttps://github.com/jnunemaker/httparty/blob/891a4a8093afd4cacecab2719223e3170d07f1c0/examples/party_foul_mode.rb\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: replace master branch to main for better view by \u003ca href=\"https://github.com/bestony\"\u003e\u003ccode\u003e@​bestony\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/803\"\u003ejnunemaker/httparty#803\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/tradesmanhelix\"\u003e\u003ccode\u003e@​tradesmanhelix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/811\"\u003ejnunemaker/httparty#811\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ashishra0\"\u003e\u003ccode\u003e@​ashishra0\u003c/code\u003e\u003c/a\u003e made their first contribution with foul mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bestony\"\u003e\u003ccode\u003e@​bestony\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/803\"\u003ejnunemaker/httparty#803\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tradesmanhelix\"\u003e\u003ccode\u003e@​tradesmanhelix\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/811\"\u003ejnunemaker/httparty#811\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.22.0...v0.23.0\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.22.0...v0.23.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/55ec76e8d1df7903eab3f7c2367991400d3cf65e\"\u003e\u003ccode\u003e55ec76e\u003c/code\u003e\u003c/a\u003e Release 0.24.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/ddfbc8ddfca03d4f4026b01763ee906071ca558b\"\u003e\u003ccode\u003eddfbc8d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/830\"\u003e#830\u003c/a\u003e from jnunemaker/fix-ssrf-base-uri-bypass\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/0529bcd6309c9fd9bfdd50ae211843b10054c240\"\u003e\u003ccode\u003e0529bcd\u003c/code\u003e\u003c/a\u003e fix: prevent SSRF via absolute URL bypassing base_uri (GHSA-hm5p-x4rq-38w4)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/05f38fd35d8088b9770513c2eaecce671f0940ec\"\u003e\u003ccode\u003e05f38fd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/829\"\u003e#829\u003c/a\u003e from jnunemaker/memory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/8901c238c00d0aca8920271314c4c5d7dd2701fb\"\u003e\u003ccode\u003e8901c23\u003c/code\u003e\u003c/a\u003e feat: stream multipart file uploads to reduce memory usage\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/091bd6aa909e38822b72f8ce2383385cf8eeb302\"\u003e\u003ccode\u003e091bd6a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/828\"\u003e#828\u003c/a\u003e from jnunemaker/issue-826\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/59c0ac5f3d906fb6be2133c1b89d75329755af8f\"\u003e\u003ccode\u003e59c0ac5\u003c/code\u003e\u003c/a\u003e feat: set Content-Type for Hash body in requests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/5c8b45e6297d181d99a56f5297dade3e358cc6f9\"\u003e\u003ccode\u003e5c8b45e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/823\"\u003e#823\u003c/a\u003e from jnunemaker/mixed-encodings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/6419cb307dd435572963e4ab40cd96b41389efcf\"\u003e\u003ccode\u003e6419cb3\u003c/code\u003e\u003c/a\u003e Force binary encoding throughout\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/c74571f7925c8e142d02c2b7d6ebeedf923b1dd1\"\u003e\u003ccode\u003ec74571f\u003c/code\u003e\u003c/a\u003e Release 0.23.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.22.0...v0.24.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.2.6 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.2.6...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google-protobuf` from 3.24.4 to 3.25.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/70e85ae1f994ee91001a18d9b5b4688ac027c03d\"\u003e\u003ccode\u003e70e85ae\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.5-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/489aba5b55bb994bcd130a43e20cc9be3be04adf\"\u003e\u003ccode\u003e489aba5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/15984\"\u003e#15984\u003c/a\u003e from mkruskal-google/staleness-fix-25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/367c7bea8dd5505f817f41e052e50caa694fb0e6\"\u003e\u003ccode\u003e367c7be\u003c/code\u003e\u003c/a\u003e Regen stale files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/bbbd2dea0e508289d45b48612e4659a230708209\"\u003e\u003ccode\u003ebbbd2de\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.4-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/fc222b9420e19d902e0aee5a6a95274dbbc2fc06\"\u003e\u003ccode\u003efc222b9\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.3-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/6ac04475591db12de14e89d3d750519c2ca9a4cc\"\u003e\u003ccode\u003e6ac0447\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.2-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/7f94235e552599141950d7a4a3eaf93bc87d1b22\"\u003e\u003ccode\u003e7f94235\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/e4b00c75ecbc40389615ddf5482dbabc3a354eea\"\u003e\u003ccode\u003ee4b00c7\u003c/code\u003e\u003c/a\u003e Add support for extensions in CRuby, JRuby, and FFI Ruby (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14703\"\u003e#14703\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14756\"\u003e#14756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/2495d4f96bf4edcc4f770ceb27ae98c71a56fcdb\"\u003e\u003ccode\u003e2495d4f\u003c/code\u003e\u003c/a\u003e Add support for options in CRuby, JRuby and FFI (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14594\"\u003e#14594\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14739\"\u003e#14739\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/6b5d8db01fe47478e8d400f550e797e6230d464e\"\u003e\u003ccode\u003e6b5d8db\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/protocolbuffers/protobuf/compare/v3.24.4...v3.25.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/YoutacRandS-VA/dependabot-core/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/YoutacRandS-VA/dependabot-core/pull/6","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/YoutacRandS-VA%2Fdependabot-core/issues/6","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6/packages"},{"uuid":"4200026368","node_id":"PR_kwDOCSVaMM7Px4WT","number":7245,"state":"open","title":"build(deps): bump the minor-and-patch group across 1 directory with 67 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-03T11:02:16.000Z","updated_at":"2026-04-03T11:02:45.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"minor-and-patch","update_count":67,"packages":[{"name":"aws-actionmailer-ses","old_version":"1.0.0","new_version":"1.1.0","repository_url":"https://github.com/aws/aws-actionmailer-ses-ruby"},{"name":"dotenv-rails","old_version":"3.1.8","new_version":"3.2.0","repository_url":"https://github.com/bkeepers/dotenv"},{"name":"kt-paperclip","old_version":"7.2.2","new_version":"7.3.0","repository_url":"https://github.com/kreeti/kt-paperclip"},{"name":"omniauth","old_version":"2.1.3","new_version":"2.1.4","repository_url":"https://github.com/omniauth/omniauth"},{"name":"omniauth-google-oauth2","old_version":"1.2.1","new_version":"1.2.2","repository_url":"https://github.com/zquestz/omniauth-google-oauth2"},{"name":"view_component","old_version":"4.0.2","new_version":"4.6.0","repository_url":"https://github.com/viewcomponent/view_component"},{"name":"rails","old_version":"8.0.2.1","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"},{"name":"terser","old_version":"1.2.6","new_version":"1.2.7","repository_url":"https://github.com/ahorek/terser-ruby"},{"name":"jquery-rails","old_version":"4.6.0","new_version":"4.6.1","repository_url":"https://github.com/rails/jquery-rails"},{"name":"sidekiq","old_version":"8.0.7","new_version":"8.1.2","repository_url":"https://github.com/sidekiq/sidekiq"},{"name":"geocoder","old_version":"1.8.5","new_version":"1.8.6","repository_url":"https://github.com/alexreisner/geocoder"},{"name":"pundit","old_version":"2.5.0","new_version":"2.5.2","repository_url":"https://github.com/varvet/pundit"},{"name":"ahoy_matey","old_version":"5.4.0","new_version":"5.4.2","repository_url":"https://github.com/ankane/ahoy"},{"name":"i18n-js","old_version":"4.2.3","new_version":"4.2.4","repository_url":"https://github.com/fnando/i18n-js"},{"name":"pg","old_version":"1.6.1","new_version":"1.6.3","repository_url":"https://github.com/ged/ruby-pg"},{"name":"bootsnap","old_version":"1.18.6","new_version":"1.23.0","repository_url":"https://github.com/rails/bootsnap"},{"name":"rexml","old_version":"3.4.2","new_version":"3.4.4","repository_url":"https://github.com/ruby/rexml"},{"name":"flipper-redis","old_version":"1.3.6","new_version":"1.4.1","repository_url":"https://github.com/flippercloud/flipper"},{"name":"friendly_id","old_version":"5.5.1","new_version":"5.6.0","repository_url":"https://github.com/norman/friendly_id"},{"name":"rails-i18n","old_version":"8.0.2","new_version":"8.1.0","repository_url":"https://github.com/svenfuchs/rails-i18n"},{"name":"recaptcha","old_version":"5.20.1","new_version":"5.21.1","repository_url":"https://github.com/ambethia/recaptcha"},{"name":"strong_migrations","old_version":"2.5.0","new_version":"2.5.2","repository_url":"https://github.com/ankane/strong_migrations"},{"name":"debug","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/ruby/debug"},{"name":"factory_bot_rails","old_version":"6.5.0","new_version":"6.5.1","repository_url":"https://github.com/thoughtbot/factory_bot_rails"},{"name":"faker","old_version":"3.5.2","new_version":"3.6.1","repository_url":"https://github.com/faker-ruby/faker"},{"name":"rspec-rails","old_version":"8.0.2","new_version":"8.0.4","repository_url":"https://github.com/rspec/rspec-rails"},{"name":"rubocop-performance","old_version":"1.25.0","new_version":"1.26.1","repository_url":"https://github.com/rubocop/rubocop-performance"},{"name":"rubocop-rails","old_version":"2.33.3","new_version":"2.34.3","repository_url":"https://github.com/rubocop/rubocop-rails"},{"name":"rubocop-rspec","old_version":"3.6.0","new_version":"3.9.0","repository_url":"https://github.com/rubocop/rubocop-rspec"},{"name":"rbs_rails","old_version":"0.12.1","new_version":"0.13.0","repository_url":"https://github.com/pocke/rbs_rails"},{"name":"json-schema","old_version":"6.0.0","new_version":"6.2.0","repository_url":"https://github.com/voxpupuli/json-schema"},{"name":"webmock","old_version":"3.25.1","new_version":"3.26.2","repository_url":"https://github.com/bblimke/webmock"},{"name":"undercover","old_version":"0.8.0","new_version":"0.8.4","repository_url":"https://github.com/grodowski/undercover"},{"name":"capybara-playwright-driver","old_version":"0.5.7","new_version":"0.5.9","repository_url":"https://github.com/YusukeIwaki/capybara-playwright-driver"},{"name":"listen","old_version":"3.9.0","new_version":"3.10.0","repository_url":"https://github.com/guard/listen"},{"name":"web-console","old_version":"4.2.1","new_version":"4.3.0","repository_url":"https://github.com/rails/web-console"},{"name":"bundler-audit","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/rubysec/bundler-audit"},{"name":"lookbook","old_version":"2.3.13","new_version":"2.3.14","repository_url":"https://github.com/lookbook-hq/lookbook"},{"name":"oj","old_version":"3.16.11","new_version":"3.16.16","repository_url":"https://github.com/ohler55/oj"},{"name":"rack-attack","old_version":"6.7.0","new_version":"6.8.0","repository_url":"https://github.com/rack/rack-attack"},{"name":"aws-sdk-s3","old_version":"1.208.0","new_version":"1.218.0","repository_url":"https://github.com/aws/aws-sdk-ruby"},{"name":"opentelemetry-sdk","old_version":"1.8.1","new_version":"1.10.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby"},{"name":"opentelemetry-exporter-otlp","old_version":"0.30.0","new_version":"0.32.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby"},{"name":"opentelemetry-instrumentation-active_job","old_version":"0.8.0","new_version":"0.10.1","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby-contrib"},{"name":"maintenance_tasks","old_version":"2.12.0","new_version":"2.14.0","repository_url":"https://github.com/Shopify/maintenance_tasks"},{"name":"stackprof","old_version":"0.2.27","new_version":"0.2.28","repository_url":"https://github.com/tmm1/stackprof"},{"name":"concurrent-ruby","old_version":"1.3.5","new_version":"1.3.6","repository_url":"https://github.com/ruby-concurrency/concurrent-ruby"},{"name":"avo","old_version":"3.30.3","new_version":"3.30.4","repository_url":"https://github.com/avo-hq/avo"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the minor-and-patch group with 48 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-actionmailer-ses](https://github.com/aws/aws-actionmailer-ses-ruby) | `1.0.0` | `1.1.0` |\n| [dotenv-rails](https://github.com/bkeepers/dotenv) | `3.1.8` | `3.2.0` |\n| [kt-paperclip](https://github.com/kreeti/kt-paperclip) | `7.2.2` | `7.3.0` |\n| [omniauth](https://github.com/omniauth/omniauth) | `2.1.3` | `2.1.4` |\n| [omniauth-google-oauth2](https://github.com/zquestz/omniauth-google-oauth2) | `1.2.1` | `1.2.2` |\n| [view_component](https://github.com/viewcomponent/view_component) | `4.0.2` | `4.6.0` |\n| [rails](https://github.com/rails/rails) | `8.0.2.1` | `8.1.3` |\n| [terser](https://github.com/ahorek/terser-ruby) | `1.2.6` | `1.2.7` |\n| [jquery-rails](https://github.com/rails/jquery-rails) | `4.6.0` | `4.6.1` |\n| [sidekiq](https://github.com/sidekiq/sidekiq) | `8.0.7` | `8.1.2` |\n| [geocoder](https://github.com/alexreisner/geocoder) | `1.8.5` | `1.8.6` |\n| [pundit](https://github.com/varvet/pundit) | `2.5.0` | `2.5.2` |\n| [ahoy_matey](https://github.com/ankane/ahoy) | `5.4.0` | `5.4.2` |\n| [i18n-js](https://github.com/fnando/i18n-js) | `4.2.3` | `4.2.4` |\n| [pg](https://github.com/ged/ruby-pg) | `1.6.1` | `1.6.3` |\n| [bootsnap](https://github.com/rails/bootsnap) | `1.18.6` | `1.23.0` |\n| [rexml](https://github.com/ruby/rexml) | `3.4.2` | `3.4.4` |\n| [flipper-redis](https://github.com/flippercloud/flipper) | `1.3.6` | `1.4.1` |\n| [friendly_id](https://github.com/norman/friendly_id) | `5.5.1` | `5.6.0` |\n| [rails-i18n](https://github.com/svenfuchs/rails-i18n) | `8.0.2` | `8.1.0` |\n| [recaptcha](https://github.com/ambethia/recaptcha) | `5.20.1` | `5.21.1` |\n| [strong_migrations](https://github.com/ankane/strong_migrations) | `2.5.0` | `2.5.2` |\n| [debug](https://github.com/ruby/debug) | `1.11.0` | `1.11.1` |\n| [factory_bot_rails](https://github.com/thoughtbot/factory_bot_rails) | `6.5.0` | `6.5.1` |\n| [faker](https://github.com/faker-ruby/faker) | `3.5.2` | `3.6.1` |\n| [rspec-rails](https://github.com/rspec/rspec-rails) | `8.0.2` | `8.0.4` |\n| [rubocop-performance](https://github.com/rubocop/rubocop-performance) | `1.25.0` | `1.26.1` |\n| [rubocop-rails](https://github.com/rubocop/rubocop-rails) | `2.33.3` | `2.34.3` |\n| [rubocop-rspec](https://github.com/rubocop/rubocop-rspec) | `3.6.0` | `3.9.0` |\n| [rbs_rails](https://github.com/pocke/rbs_rails) | `0.12.1` | `0.13.0` |\n| [json-schema](https://github.com/voxpupuli/json-schema) | `6.0.0` | `6.2.0` |\n| [webmock](https://github.com/bblimke/webmock) | `3.25.1` | `3.26.2` |\n| [undercover](https://github.com/grodowski/undercover) | `0.8.0` | `0.8.4` |\n| [capybara-playwright-driver](https://github.com/YusukeIwaki/capybara-playwright-driver) | `0.5.7` | `0.5.9` |\n| [listen](https://github.com/guard/listen) | `3.9.0` | `3.10.0` |\n| [web-console](https://github.com/rails/web-console) | `4.2.1` | `4.3.0` |\n| [bundler-audit](https://github.com/rubysec/bundler-audit) | `0.9.2` | `0.9.3` |\n| [lookbook](https://github.com/lookbook-hq/lookbook) | `2.3.13` | `2.3.14` |\n| [oj](https://github.com/ohler55/oj) | `3.16.11` | `3.16.16` |\n| [rack-attack](https://github.com/rack/rack-attack) | `6.7.0` | `6.8.0` |\n| [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) | `1.208.0` | `1.218.0` |\n| [opentelemetry-sdk](https://github.com/open-telemetry/opentelemetry-ruby) | `1.8.1` | `1.10.0` |\n| [opentelemetry-exporter-otlp](https://github.com/open-telemetry/opentelemetry-ruby) | `0.30.0` | `0.32.0` |\n| [opentelemetry-instrumentation-active_job](https://github.com/open-telemetry/opentelemetry-ruby-contrib) | `0.8.0` | `0.10.1` |\n| [maintenance_tasks](https://github.com/Shopify/maintenance_tasks) | `2.12.0` | `2.14.0` |\n| [stackprof](https://github.com/tmm1/stackprof) | `0.2.27` | `0.2.28` |\n| [concurrent-ruby](https://github.com/ruby-concurrency/concurrent-ruby) | `1.3.5` | `1.3.6` |\n| [avo](https://github.com/avo-hq/avo) | `3.30.3` | `3.30.4` |\n\n\nUpdates `aws-actionmailer-ses` from 1.0.0 to 1.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/releases\"\u003eaws-actionmailer-ses's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v1.1.0 - 2026-03-31\u003c/h2\u003e\n\u003cp\u003eTag release v1.1.0\u003c/p\u003e\n\u003cp\u003eReferences: \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/14\"\u003e#14\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/6\"\u003e#6\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/7\"\u003e#7\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/9\"\u003e#9\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFeature - Support injecting a preconstructed client via \u003ccode\u003e:ses_client\u003c/code\u003e and \u003ccode\u003e:sesv2_client\u003c/code\u003e options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/blob/main/CHANGELOG.md\"\u003eaws-actionmailer-ses's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.1.0 (2026-03-31)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFeature - Support injecting a preconstructed client via \u003ccode\u003e:ses_client\u003c/code\u003e and \u003ccode\u003e:sesv2_client\u003c/code\u003e options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/87d57bae1d2da68729c639da957c89b4f14eef02\"\u003e\u003ccode\u003e87d57ba\u003c/code\u003e\u003c/a\u003e Bumped version to v1.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/55de5a801bc2f819acda6521fa7efab8e72829bb\"\u003e\u003ccode\u003e55de5a8\u003c/code\u003e\u003c/a\u003e Allow precreated SESv2 client (issue \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/7\"\u003e#7\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/14\"\u003e#14\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/0e7a21034d43615e7765bb96c84f09f43fe80e1f\"\u003e\u003ccode\u003e0e7a210\u003c/code\u003e\u003c/a\u003e Scope down GitHub token permissions for ci.yml (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/9\"\u003e#9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/c2b91df4f58ed7da035c953ecfd4f9847da46ebb\"\u003e\u003ccode\u003ec2b91df\u003c/code\u003e\u003c/a\u003e Update CI to include 3.4 (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/6\"\u003e#6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/aab2974887db3c4d525f9e18c3f1ae7c6513d230\"\u003e\u003ccode\u003eaab2974\u003c/code\u003e\u003c/a\u003e Update README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/ce6af36916d5ab9224bf193690d98f539585f208\"\u003e\u003ccode\u003ece6af36\u003c/code\u003e\u003c/a\u003e Added next release section to the changelog. [ci skip]\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/compare/v1.0.0...v1.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv-rails` from 3.1.8 to 3.2.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bkeepers/dotenv/releases\"\u003edotenv-rails's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBoost app startup time by removing to_sentence usage by \u003ca href=\"https://github.com/ThomasCrambert\"\u003e\u003ccode\u003e@​ThomasCrambert\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/534\"\u003ebkeepers/dotenv#534\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHandle parentheses in variables in commands by \u003ca href=\"https://github.com/i7an\"\u003e\u003ccode\u003e@​i7an\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/540\"\u003ebkeepers/dotenv#540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eallow warning when a env var was not overwritten by \u003ca href=\"https://github.com/grosser\"\u003e\u003ccode\u003e@​grosser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/531\"\u003ebkeepers/dotenv#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix a few small issues by \u003ca href=\"https://github.com/grosser\"\u003e\u003ccode\u003e@​grosser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/532\"\u003ebkeepers/dotenv#532\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ThomasCrambert\"\u003e\u003ccode\u003e@​ThomasCrambert\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/534\"\u003ebkeepers/dotenv#534\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i7an\"\u003e\u003ccode\u003e@​i7an\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/540\"\u003ebkeepers/dotenv#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\"\u003ehttps://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/34156bf400cd67387fa6ed9f146778f6a2f5f743\"\u003e\u003ccode\u003e34156bf\u003c/code\u003e\u003c/a\u003e Prepare for 3.2.0 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/ab478201bdb487bfebd9e89875fd4edcf19dc064\"\u003e\u003ccode\u003eab47820\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/531\"\u003e#531\u003c/a\u003e from grosser/grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/fae61202e432f39742e2592817cc7bb38f559852\"\u003e\u003ccode\u003efae6120\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/4f510f41073cabb9786e3a5ea57263933497e696\"\u003e\u003ccode\u003e4f510f4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/532\"\u003e#532\u003c/a\u003e from grosser/grosser/fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/959e1dac9d933a7ffe6a2ab17081f8235b7822a9\"\u003e\u003ccode\u003e959e1da\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/539\"\u003e#539\u003c/a\u003e from bkeepers/dependabot/github_actions/actions/check...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/041451e4ef7fd3a4ea604fcabef0cfb6fb5e79a3\"\u003e\u003ccode\u003e041451e\u003c/code\u003e\u003c/a\u003e Update spec message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/b300f262bdf1cfd6ac5215fd44baa771753702b9\"\u003e\u003ccode\u003eb300f26\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/5f4ca012b03c82343ad3f926e2fd281aa30a434b\"\u003e\u003ccode\u003e5f4ca01\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/209dca47e453f7288aac9f31330e67e3f0b83e78\"\u003e\u003ccode\u003e209dca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/540\"\u003e#540\u003c/a\u003e from i7an/handle-parentheses\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/48c495683008c5dd1816a89329e59f8386324bb2\"\u003e\u003ccode\u003e48c4956\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into handle-parentheses\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `kt-paperclip` from 7.2.2 to 7.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kreeti/kt-paperclip/releases\"\u003ekt-paperclip's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v7.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix BOM for gd locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/158\"\u003e#158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport versions of aws-sdk-s3 \u0026gt;= 1.197 by conditionally using \u003ccode\u003eAws::S3::TransferManager\u003c/code\u003e if available (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/155\"\u003e#155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix frozen string literal warning in geometry.rb (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFeature - add option to return attachment attributes on destroy (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/91\"\u003e#91\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRuby 3.1 - Fix loading of Fog (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/135\"\u003e#135\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/139\"\u003e#139\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFrench Locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/134\"\u003e#134\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oz-tal\"\u003e\u003ccode\u003e@​oz-tal\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/134\"\u003ekreeti/kt-paperclip#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zz9pzza\"\u003e\u003ccode\u003e@​zz9pzza\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/135\"\u003ekreeti/kt-paperclip#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unijewski\"\u003e\u003ccode\u003e@​unijewski\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/91\"\u003ekreeti/kt-paperclip#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lorennorman\"\u003e\u003ccode\u003e@​lorennorman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/146\"\u003ekreeti/kt-paperclip#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cgunther\"\u003e\u003ccode\u003e@​cgunther\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/151\"\u003ekreeti/kt-paperclip#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jukra\"\u003e\u003ccode\u003e@​jukra\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/155\"\u003ekreeti/kt-paperclip#155\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\"\u003ehttps://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/818f236aa6f2323bd0055bea664b33187d926377\"\u003e\u003ccode\u003e818f236\u003c/code\u003e\u003c/a\u003e Deperecate NEWS to OLD-NEWS, see release notes for correct and accurate list ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/a38ed66b5d08210a4326b0d78e2116d0946fa3c2\"\u003e\u003ccode\u003ea38ed66\u003c/code\u003e\u003c/a\u003e prepare for new release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/8820cb221210bf04ca2de278dab594adfa46efe5\"\u003e\u003ccode\u003e8820cb2\u003c/code\u003e\u003c/a\u003e [Fix \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/154\"\u003e#154\u003c/a\u003e] remove BOM from gd locale\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/cd5c4496d12894eafa218cb631c592b67c9c10a2\"\u003e\u003ccode\u003ecd5c449\u003c/code\u003e\u003c/a\u003e Fix S3 TransferManager to use configured client\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/f017c401218da5a1e106ed3dd964b51d601bac5b\"\u003e\u003ccode\u003ef017c40\u003c/code\u003e\u003c/a\u003e Make usage of Aws::S3::TransferManager conditional based on availability\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/233b4756745c2610988796a0059408a50d322b92\"\u003e\u003ccode\u003e233b475\u003c/code\u003e\u003c/a\u003e Support aws-sdk-s3 \u0026gt;= 1.196.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/e20e848c80ce16f18dae2162d5e00be0d9b51421\"\u003e\u003ccode\u003ee20e848\u003c/code\u003e\u003c/a\u003e Fix the use of deprecated methods from \u003ccode\u003eaws-sdk-s3\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/5078ca1c33c8cb66865e6127152ac1e240b2bb0a\"\u003e\u003ccode\u003e5078ca1\u003c/code\u003e\u003c/a\u003e Fix frozen string literal warning in geometry.rb (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/153e7dbe462de4f7f3ef42c67f95390e98e6cba7\"\u003e\u003ccode\u003e153e7db\u003c/code\u003e\u003c/a\u003e fix frozen string literal deprecation warning (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/146\"\u003e#146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/83dc8d92e63e4c360bb9f45af1cf3b63d99bed54\"\u003e\u003ccode\u003e83dc8d9\u003c/code\u003e\u003c/a\u003e Update LICENSE\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `omniauth` from 2.1.3 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/omniauth/omniauth/releases\"\u003eomniauth's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ruby 3.4 to CI by \u003ca href=\"https://github.com/tejasbubane\"\u003e\u003ccode\u003e@​tejasbubane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/omniauth/omniauth/pull/1142\"\u003eomniauth/omniauth#1142\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd after_request_phase callback hook by \u003ca href=\"https://github.com/gerardo-navarro\"\u003e\u003ccode\u003e@​gerardo-navarro\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/omniauth/omniauth/pull/1147\"\u003eomniauth/omniauth#1147\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\"\u003ehttps://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eYou may now configure an after_request_phase callback on your omniauth builder instance. This callback will be run after the request phase before returning the request result.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/20ac5e05a39d58d18aca6419599f7176208f985d\"\u003e\u003ccode\u003e20ac5e0\u003c/code\u003e\u003c/a\u003e 3.1.4 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/3a249afad83e4522bd4761404cbdc89fd56a1079\"\u003e\u003ccode\u003e3a249af\u003c/code\u003e\u003c/a\u003e Add after_request_phase callback hook (\u003ca href=\"https://redirect.github.com/omniauth/omniauth/issues/1147\"\u003e#1147\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/0bcfd5b25bf946422cd4d9c40c4f514121ac04d6\"\u003e\u003ccode\u003e0bcfd5b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/omniauth/omniauth/issues/1142\"\u003e#1142\u003c/a\u003e from tejasbubane/ruby-3.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/09ee92e658878f31ab51f29e02d41296cfe36111\"\u003e\u003ccode\u003e09ee92e\u003c/code\u003e\u003c/a\u003e include cgi in test group due to removal of cookie\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/abfde9072cef0e4d89463daf6185ac68520087f7\"\u003e\u003ccode\u003eabfde90\u003c/code\u003e\u003c/a\u003e add dependency on logger\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/844548c8641d1a3b65c9062e67e073fa8bf39936\"\u003e\u003ccode\u003e844548c\u003c/code\u003e\u003c/a\u003e Add Ruby 3.4 to CI\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `omniauth-google-oauth2` from 1.2.1 to 1.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/releases\"\u003eomniauth-google-oauth2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.2.2\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRuby 4.0 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNothing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUnused \u003ccode\u003eIMAGE_SIZE_REGEXP\u003c/code\u003e constant.\u003c/li\u003e\n\u003cli\u003eDead \u003ccode\u003eskip_friends\u003c/code\u003e and \u003ccode\u003eskip_image_info\u003c/code\u003e options (Google+ was shut down in 2019).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplaced \u003ccode\u003eCGI.parse\u003c/code\u003e with \u003ccode\u003eURI.decode_www_form\u003c/code\u003e for Ruby 4.0 compatibility.\u003c/li\u003e\n\u003cli\u003eUpdated gemspec description to reference OmniAuth instead of OmniAuth 1.x.\u003c/li\u003e\n\u003cli\u003eModernized CI: bumped actions/checkout to v6, rake to 13.3, and rubocop to latest.\u003c/li\u003e\n\u003cli\u003eAdded edge case tests for \u003ccode\u003euid\u003c/code\u003e, \u003ccode\u003estrip_unnecessary_query_parameters\u003c/code\u003e, \u003ccode\u003everify_token\u003c/code\u003e, \u003ccode\u003everify_hd\u003c/code\u003e wildcard, and malformed JSON handling.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/blob/master/CHANGELOG.md\"\u003eomniauth-google-oauth2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.2.2 - 2026-02-23\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRuby 4.0 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNothing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUnused \u003ccode\u003eIMAGE_SIZE_REGEXP\u003c/code\u003e constant.\u003c/li\u003e\n\u003cli\u003eDead \u003ccode\u003eskip_friends\u003c/code\u003e and \u003ccode\u003eskip_image_info\u003c/code\u003e options (Google+ was shut down in 2019).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplaced \u003ccode\u003eCGI.parse\u003c/code\u003e with \u003ccode\u003eURI.decode_www_form\u003c/code\u003e for Ruby 4.0 compatibility.\u003c/li\u003e\n\u003cli\u003eUpdated gemspec description to reference OmniAuth instead of OmniAuth 1.x.\u003c/li\u003e\n\u003cli\u003eModernized CI: bumped actions/checkout to v6, rake to 13.3, and rubocop to latest.\u003c/li\u003e\n\u003cli\u003eAdded edge case tests for \u003ccode\u003euid\u003c/code\u003e, \u003ccode\u003estrip_unnecessary_query_parameters\u003c/code\u003e, \u003ccode\u003everify_token\u003c/code\u003e, \u003ccode\u003everify_hd\u003c/code\u003e wildcard, and malformed JSON handling.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/5158faa94a620d8ec4d9ce400aabfef3a3844dd9\"\u003e\u003ccode\u003e5158faa\u003c/code\u003e\u003c/a\u003e Add release date to CHANGELOG.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/c5f46005e0207d2e436cf0db37c85170cca04da7\"\u003e\u003ccode\u003ec5f4600\u003c/code\u003e\u003c/a\u003e Update docs and examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/4c14af8e1e6dc2615da908c50e4b0b757972922e\"\u003e\u003ccode\u003e4c14af8\u003c/code\u003e\u003c/a\u003e Backfill missing tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/e66d0bbe6ad91f9f5a60056dae2ebf850373f249\"\u003e\u003ccode\u003ee66d0bb\u003c/code\u003e\u003c/a\u003e Clean up dead code, modernize CI, and prep 1.2.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/b902e8e7585e8e3610040d9c770f2d4e90b6f132\"\u003e\u003ccode\u003eb902e8e\u003c/code\u003e\u003c/a\u003e Modernize CI: bump rubocop, checkout action, and tooling defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/ac9a979db8ee097971d5d70c12142070c539d8ab\"\u003e\u003ccode\u003eac9a979\u003c/code\u003e\u003c/a\u003e Add Ruby 4.0 to CI (\u003ca href=\"https://redirect.github.com/zquestz/omniauth-google-oauth2/issues/474\"\u003e#474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/d3f1c912e438ccf6aba577c66772bf2e37373d73\"\u003e\u003ccode\u003ed3f1c91\u003c/code\u003e\u003c/a\u003e Add GitHub pages config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/253f023cdd8a5d5e05b3fed9aa00ae478a6c2997\"\u003e\u003ccode\u003e253f023\u003c/code\u003e\u003c/a\u003e Remove calendar scope on example app\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/baaf3b755ea1a02c9f811fd513b0fe90fdd2defb\"\u003e\u003ccode\u003ebaaf3b7\u003c/code\u003e\u003c/a\u003e chore(doc): update JavaScript example in README (\u003ca href=\"https://redirect.github.com/zquestz/omniauth-google-oauth2/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/dcea9d208416b53af0956d95ce54daa424d36490\"\u003e\u003ccode\u003edcea9d2\u003c/code\u003e\u003c/a\u003e Add Ruby 3.3 and 3.4 to CI matrix\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/compare/v1.2.1...v1.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `view_component` from 4.0.2 to 4.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/viewcomponent/view_component/releases\"\u003eview_component's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd \u003ccode\u003eview_identifier\u003c/code\u003e to the \u003ccode\u003erender.view_component\u003c/code\u003e instrumentation event payload, containing the path to the component's template file (e.g. \u003ccode\u003eapp/components/my_component.html.erb\u003c/code\u003e). For components using inline render methods, \u003ccode\u003eview_identifier\u003c/code\u003e will be \u003ccode\u003enil\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReplace deprecated \u003ccode\u003erequire_dependency\u003c/code\u003e with \u003ccode\u003erequire\u003c/code\u003e in preview loading.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReturn \u003ccode\u003ehtml_safe\u003c/code\u003e empty string from \u003ccode\u003erender_in\u003c/code\u003e when \u003ccode\u003erender?\u003c/code\u003e is false.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix initialization ordering issue causing missing asset errors in Sprockets.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eCameron Dutro\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix segfaults when Ruby coverage is enabled.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGeorge Holborn\u003c/em\u003e, \u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdd \u003ccode\u003eprotocol\u003c/code\u003e parameter to \u003ccode\u003ewith_request_url\u003c/code\u003e test helper to enable testing with HTTPS protocol.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix load order issues for 3rd-party template handlers.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eCameron Dutro\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix segfault when Ruby coverage is enabled with Rails 8.1 ERB templates.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGeorge Holborn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAutomatically merge dependabot PRs.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Ruby 4.0.0 in CI and dev.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix translation scope resolution in deeply nested component blocks (3+ levels). Translations called inside deeply nested slot blocks using \u003ccode\u003erenders_many\u003c/code\u003e/\u003ccode\u003erenders_one\u003c/code\u003e were incorrectly resolving to an intermediate component's scope instead of the partial's scope where the block was defined. The fix captures the virtual path at block definition time and restores it during block execution, ensuring translations always resolve relative to where the block was created regardless of nesting depth.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eNathaniel Watts\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllow \u003ccode\u003erender_inline\u003c/code\u003e with Nokogiri::HTML5 to parse more arbitrary content including bare table content otherwise illegal fragments like \u003ccode\u003e\u0026lt;td\u0026gt;\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ViewComponent/view_component/blob/main/docs/CHANGELOG.md\"\u003eview_component's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd \u003ccode\u003eview_identifier\u003c/code\u003e to the \u003ccode\u003erender.view_component\u003c/code\u003e instrumentation event payload, containing the path to the component's template file (e.g. \u003ccode\u003eapp/components/my_component.html.erb\u003c/code\u003e). For components using inline render methods, \u003ccode\u003eview_identifier\u003c/code\u003e will be \u003ccode\u003enil\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReplace deprecated \u003ccode\u003erequire_dependency\u003c/code\u003e with \u003ccode\u003erequire\u003c/code\u003e in preview loading.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReturn \u003ccode\u003ehtml_safe\u003c/code\u003e empty string from \u003ccode\u003erender_in\u003c/code\u003e when \u003ccode\u003erender?\u003c/code\u003e is false.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix initialization ordering issue causing missing asset errors in Sprockets.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eCameron Dutro\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix segfaults when Ruby coverage is enabled.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGeorge Holborn\u003c/em\u003e, \u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdd \u003ccode\u003eprotocol\u003c/code\u003e parameter to \u003ccode\u003ewith_request_url\u003c/code\u003e test helper to enable testing with HTTPS protocol.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix load order issues for 3rd-party template handlers.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eCameron Dutro\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix segfault when Ruby coverage is enabled with Rails 8.1 ERB templates.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGeorge Holborn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAutomatically merge dependabot PRs.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Ruby 4.0.0 in CI and dev.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.2.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/3e180995cc76298c94f9a691e641987c624d62b7\"\u003e\u003ccode\u003e3e18099\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2591\"\u003e#2591\u003c/a\u003e from ViewComponent/release-4-6-0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/09a54ed5203b0bb40411bf2dd5a4e519b2bffdab\"\u003e\u003ccode\u003e09a54ed\u003c/code\u003e\u003c/a\u003e gemfiles\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/e69555cf0a7dd12621dd7ceb7abfeec5023f9492\"\u003e\u003ccode\u003ee69555c\u003c/code\u003e\u003c/a\u003e lockfiles\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/52d2ffb17ab13aedbaa51be57bea78997f2b0ac4\"\u003e\u003ccode\u003e52d2ffb\u003c/code\u003e\u003c/a\u003e release 4.6.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/7b82b0267965993cb201de094e054c4b9000d59d\"\u003e\u003ccode\u003e7b82b02\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2590\"\u003e#2590\u003c/a\u003e from ViewComponent/dependabot/bundler/bundler-269952...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/4a216ecf50905b1da426f095258a23729b5b245c\"\u003e\u003ccode\u003e4a216ec\u003c/code\u003e\u003c/a\u003e Bump action_text-trix in the bundler group across 1 directory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/98ab326cb79ebb590fc487bd46667ddb3dafea2e\"\u003e\u003ccode\u003e98ab326\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2572\"\u003e#2572\u003c/a\u003e from ViewComponent/copilot/add-event-emission-for-vi...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/55c2cac1d9c676249eba73f6b5a9cc73204ddbf6\"\u003e\u003ccode\u003e55c2cac\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into copilot/add-event-emission-for-view-file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/192ccfba66c373e738a02fc5939c6df6cd3e45e8\"\u003e\u003ccode\u003e192ccfb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2589\"\u003e#2589\u003c/a\u003e from ViewComponent/copilot/remove-require-dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/6ac4927ce572a59136c05d4b0fda02f9afb7cd19\"\u003e\u003ccode\u003e6ac4927\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into copilot/remove-require-dependency\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/viewcomponent/view_component/compare/v4.0.2...v4.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rails` from 8.0.2.1 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003erails's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/e91694b1f0e176eb01bfcc480a008bffc70f7602\"\u003e\u003ccode\u003ee91694b\u003c/code\u003e\u003c/a\u003e Update CHANGELOG (8.1 only)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63f5ad83edaa0b976f82d46988d745426aa4a42d\"\u003e\u003ccode\u003e63f5ad8\u003c/code\u003e\u003c/a\u003e Skip blank attribute names in Action View tag helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8c9676b803820110548cdb7523800db43bc6874c\"\u003e\u003ccode\u003e8c9676b\u003c/code\u003e\u003c/a\u003e Prevent glob injection in ActiveStorage DiskService#delete_prefixed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/9b06fbc0f504b8afe333f33d19548f3b85fbe655\"\u003e\u003ccode\u003e9b06fbc\u003c/code\u003e\u003c/a\u003e Prevent path traversal in ActiveStorage DiskService\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ec1a0e215efd27a3b3911aae6df978a80f456a49\"\u003e\u003ccode\u003eec1a0e2\u003c/code\u003e\u003c/a\u003e Improve performance of NumberToDelimitedConverter\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v8.0.2.1...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `terser` from 1.2.6 to 1.2.7\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ahorek/terser-ruby/blob/master/CHANGELOG.md\"\u003eterser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.2.7 (23 March 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadded a new module option to enable minification of ES6 modules (default is false)\u003c/li\u003e\n\u003cli\u003eupdate TerserJS to [5.46.1]\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/14243401aadac062e738fde86525f261c37b1782\"\u003e\u003ccode\u003e1424340\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ahorek/terser-ruby/issues/67\"\u003e#67\u003c/a\u003e from ahorek/terser5461\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/ae1669dba36b571932a25685765932103db89189\"\u003e\u003ccode\u003eae1669d\u003c/code\u003e\u003c/a\u003e terser 5.46.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/c8b1c3213847dfeb85e1769958ecf9753651e697\"\u003e\u003ccode\u003ec8b1c32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ahorek/terser-ruby/issues/64\"\u003e#64\u003c/a\u003e from ahorek/module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/3a614841138d5c1dcf79d6362e22ad5b0a0b19f3\"\u003e\u003ccode\u003e3a61484\u003c/code\u003e\u003c/a\u003e add a module option\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ahorek/terser-ruby/compare/1.2.6...1.2.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jquery-rails` from 4.6.0 to 4.6.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md\"\u003ejquery-rails's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.7.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/034296045427fa54ad095f392fccd9ff5708e110\"\u003e\u003ccode\u003e0342960\u003c/code\u003e\u003c/a\u003e Release v4.6.1 with jQuery v3.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/039b12e91c148d65789030308653545943db43a4\"\u003e\u003ccode\u003e039b12e\u003c/code\u003e\u003c/a\u003e Update jquery to v3.7.1 (\u003ca href=\"https://redirect.github.com/rails/jquery-rails/issues/305\"\u003e#305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/jquery-rails/compare/v4.6.0...v4.6.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sidekiq` from 8.0.7 to 8.1.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sidekiq/sidekiq/blob/main/Changes.md\"\u003esidekiq's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eInitial release for \u003ccode\u003ekiq\u003c/code\u003e, Sidekiq's official terminal UI:\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003ebundle exec kiq\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eUse REDIS_URL or REDIS_PROVIDER to point \u003ccode\u003ekiq\u003c/code\u003e to Redis.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eMutation during iteration in \u003ccode\u003eSortedSet#each\u003c/code\u003e caused it to miss half of the jobs \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6936\"\u003e#6936\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix edge case resulting in nil crash on /busy page \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6954\"\u003e#6954\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDEPRECATION\u003c/strong\u003e \u003ccode\u003erequire 'sidekiq/testing'\u003c/code\u003e and\n\u003ccode\u003erequire 'sidekiq/testing/inline'\u003c/code\u003e.\nAdd new \u003ccode\u003eSidekiq.testing!(mode)\u003c/code\u003e API \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6931\"\u003e#6931\u003c/a\u003e\nRequiring code should not enable process-wide changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003e# Old, implicit\nrequire \u0026quot;sidekiq/testing\u0026quot;\nrequire \u0026quot;sidekiq/testing/inline\u0026quot;\n# New, more explicit\nSidekiq.testing!(:fake)\nSidekiq.testing!(:inline)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eFix race condition with Stop button in UI \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6935\"\u003e#6935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix javascript error handler \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6893\"\u003e#6893\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eretry_for\u003c/code\u003e and \u003ccode\u003eretry\u003c/code\u003e are now mutually exclusive [#6878, Saidbek]\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eperform_inline\u003c/code\u003e now enforces \u003ccode\u003estrict_args!\u003c/code\u003e [#6718, Saidbek]\u003c/li\u003e\n\u003cli\u003eIntegrate Herb linting for ERB templates [#6760, Saidbek]\u003c/li\u003e\n\u003cli\u003eRemove CSRF code, use \u003ccode\u003eSec-Fetch-Site\u003c/code\u003e header [#6874, deve1212]\u003c/li\u003e\n\u003cli\u003eAllow custom Web UI \u003ccode\u003eassets_path\u003c/code\u003e for CDN purposes [#6865, stanhu]\u003c/li\u003e\n\u003cli\u003eUpgrade to connection_pool 3.0\u003c/li\u003e\n\u003cli\u003eAllow idle connection reaping after N seconds.\nYou can activate this \u003cstrong\u003ebeta\u003c/strong\u003e feature like below.\nFeedback requested: is this feature stable and useful for you in production?\nThis feature may or may not be enabled by default in Sidekiq 9.0.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eSidekiq.configure_server do |cfg|\n  cfg.reap_idle_redis_connections(60)\nend\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003e8.0.10\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/38e62d159560359ac038c2929a431307bb0e0654\"\u003e\u003ccode\u003e38e62d1\u003c/code\u003e\u003c/a\u003e Changes, release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/5079304b2856a78bb5d9b1433f1762cd46215bb2\"\u003e\u003ccode\u003e5079304\u003c/code\u003e\u003c/a\u003e Fixes zh-TW.LanguageName (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6964\"\u003e#6964\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/ce6a5f7524c36c95434bbfb923a9cf9dd5737ed2\"\u003e\u003ccode\u003ece6a5f7\u003c/code\u003e\u003c/a\u003e restructure gemfile, support :tui group for bundler\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/901529114f14c04ac3e831a814c6ed6c207f8ba2\"\u003e\u003ccode\u003e9015291\u003c/code\u003e\u003c/a\u003e verify url hacking doesnt crash, \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6955\"\u003e#6955\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/7c411b9f36365ee20e6a8fc107e3999ec9040810\"\u003e\u003ccode\u003e7c411b9\u003c/code\u003e\u003c/a\u003e fix nil on busy page, resolves \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6954\"\u003e#6954\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/91218466303f61d5c07fef2900b7bc81bb9e54aa\"\u003e\u003ccode\u003e9121846\u003c/code\u003e\u003c/a\u003e Reduce default batch size when enqueuing scheduled jobs via \u003ccode\u003epush_bulk\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6953\"\u003e#6953\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/4d84d013e5f31daf9e79f6bcb43bbcc2fef61efa\"\u003e\u003ccode\u003e4d84d01\u003c/code\u003e\u003c/a\u003e gemfile cleanup\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/4da811f8310ff3b0a2cacca0b4acd0a57beeb962\"\u003e\u003ccode\u003e4da811f\u003c/code\u003e\u003c/a\u003e fix ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/dbe63ff5692efc5ac4933ffd3b914e7c3acf3bf1\"\u003e\u003ccode\u003edbe63ff\u003c/code\u003e\u003c/a\u003e upgrade herb, fmt [ciskip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/33a904426149a473a0078cff12a34c6996c26810\"\u003e\u003ccode\u003e33a9044\u003c/code\u003e\u003c/a\u003e simplify refresh\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sidekiq/sidekiq/compare/v8.0.7...v8.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `geocoder` from 1.8.5 to 1.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alexreisner/geocoder/blob/master/CHANGELOG.md\"\u003egeocoder's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.8.6 (2025 Sep 21)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for IPInfo Lite lookup (thanks github.com/iltempo).\u003c/li\u003e\n\u003cli\u003eVarious minor fixes and improvements.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/d3515db46c5785db8cd48dbf94af123a2c99b8a9\"\u003e\u003ccode\u003ed3515db\u003c/code\u003e\u003c/a\u003e Prepare for release of gem version 1.8.6.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/737d16f277f81aabe73e2dfe466e2ba84fef188a\"\u003e\u003ccode\u003e737d16f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1694\"\u003e#1694\u003c/a\u003e from Intrepidd/update-data-gouv-fr-domain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/4b50c085eea4de4f453eab2e8dc6faf7b3824420\"\u003e\u003ccode\u003e4b50c08\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1695\"\u003e#1695\u003c/a\u003e from cprodhomme/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/31545ee756f1230a063e86458b3dadbac9b7e7b4\"\u003e\u003ccode\u003e31545ee\u003c/code\u003e\u003c/a\u003e Update README_API_GUIDE.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/3a90b5aa6c708945cf181f16a182ca232f668c4d\"\u003e\u003ccode\u003e3a90b5a\u003c/code\u003e\u003c/a\u003e Update BAN domain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/b2c0aa5526f90209883e3ca64b73d9559d21f729\"\u003e\u003ccode\u003eb2c0aa5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1691\"\u003e#1691\u003c/a\u003e from TheRusskiy/radius-column-arel\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/cd58cab7fd167d641927fe4a083963fcf5cd08df\"\u003e\u003ccode\u003ecd58cab\u003c/code\u003e\u003c/a\u003e add \u0026quot;arel\u0026quot; to near_test spec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/63ca4702ccffe776b146c28d289f7449d25946ee\"\u003e\u003ccode\u003e63ca470\u003c/code\u003e\u003c/a\u003e radius column can be an instance of Arel.sql\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/eaf85fe4de045c2ad3e035f560d6755e82646bee\"\u003e\u003ccode\u003eeaf85fe\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1688\"\u003e#1688\u003c/a\u003e from skillstopractice/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/00369bb35a29a86f54e6fea516ecf9842e5f855f\"\u003e\u003ccode\u003e00369bb\u003c/code\u003e\u003c/a\u003e Update tests to use data['place_name'] for Mapbox\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexreisner/geocoder/compare/v1.8.5...v1.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `pundit` from 2.5.0 to 2.5.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/varvet/pundit/blob/main/CHANGELOG.md\"\u003epundit's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.5.2 (2025-09-24)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003econfig/rubocop-rspec.yml\u003c/code\u003e back from accidentally being excluded \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/866\"\u003e#866\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.5.1 (2025-09-12)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRequiring only \u003ccode\u003epundit/rspec\u003c/code\u003e no longer raises an error in Active Support \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/857\"\u003e#857\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/2d665d67a26f794987df926e49676948fe115289\"\u003e\u003ccode\u003e2d665d6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/867\"\u003e#867\u003c/a\u003e from varvet/kbs/release-v2.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/7ff48a83790aef27bd89fa4da6a0a238599bca2d\"\u003e\u003ccode\u003e7ff48a8\u003c/code\u003e\u003c/a\u003e Bump to v2.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/674abac197c7ecc000fd25a4542344d38c998535\"\u003e\u003ccode\u003e674abac\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/866\"\u003e#866\u003c/a\u003e from varvet/kbs/add-rubocop-back\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/923eebf39ccd6f8095a5c4270953e7a19d6d16a6\"\u003e\u003ccode\u003e923eebf\u003c/code\u003e\u003c/a\u003e Point changelog to PR\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/47668502881e3abed7dd004ca19fa11d66b23b6f\"\u003e\u003ccode\u003e4766850\u003c/code\u003e\u003c/a\u003e Add rubocop config file back to gem release files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/27a840bedadf0ef3d66f1857edd966c2e01cc18e\"\u003e\u003ccode\u003e27a840b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/863\"\u003e#863\u003c/a\u003e from varvet/kbs/fix-build-pipeline\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/381b202dd2e11c5eb0ea1134d29f85331a01d643\"\u003e\u003ccode\u003e381b202\u003c/code\u003e\u003c/a\u003e +3.4 -3.1 (EOL)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/4bb6a67819572bd9431d30048fbab4c9685cfbf2\"\u003e\u003ccode\u003e4bb6a67\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/862\"\u003e#862\u003c/a\u003e from varvet/kbs/fix-build-pipeline\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/6ceca0d2ab84d2240e6422e7b14d208ad10e3304\"\u003e\u003ccode\u003e6ceca0d\u003c/code\u003e\u003c/a\u003e Attempt code quality upload to qlty.sh instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/82d918a4c4c4ab393f662a32e94028d6b086285d\"\u003e\u003ccode\u003e82d918a\u003c/code\u003e\u003c/a\u003e Bump to v2.5.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/varvet/pundit/compare/v2.5.0...v2.5.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ahoy_matey` from 5.4.0 to 5.4.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ankane/ahoy/blob/master/CHANGELOG.md\"\u003eahoy_matey's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.4.2 (2026-03-31)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed cookie deletion with \u003ccode\u003ecookie_domain\u003c/code\u003e and \u003ccode\u003ecookie_options\u003c/code\u003e options\u003c/li\u003e\n\u003cli\u003eUpdated Ahoy.js to 0.4.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.4.1 (2025-09-30)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed deprecation warning with Rack 3.1+\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/eed4fdad924261f9f57b87032e760a06fd4dcd05\"\u003e\u003ccode\u003eeed4fda\u003c/code\u003e\u003c/a\u003e Version bump to 5.4.2 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/f73c04e68fe8b884140cd659acee170224b19ec3\"\u003e\u003ccode\u003ef73c04e\u003c/code\u003e\u003c/a\u003e Updated changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/7c50688aa1e4d56545be421a9427c36c51476383\"\u003e\u003ccode\u003e7c50688\u003c/code\u003e\u003c/a\u003e Fixed cookie deletion with path option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/5a801f44d8bd5e1ab6f8e9f8923f8ef39eaa6e75\"\u003e\u003ccode\u003e5a801f4\u003c/code\u003e\u003c/a\u003e Fixed cookie deletion with cookie_domain option - fixes \u003ca href=\"https://redirect.github.com/ankane/ahoy/issues/581\"\u003e#581\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/4dcd2ec48ffc8c1c2a4fbdcd9eeb6c616626b187\"\u003e\u003ccode\u003e4dcd2ec\u003c/code\u003e\u003c/a\u003e Updated Ahoy.js to 0.4.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/7d9d62d5411131d807d123a69d7e4abb2efe3eaf\"\u003e\u003ccode\u003e7d9d62d\u003c/code\u003e\u003c/a\u003e Added cgi to gemspec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/cf3c1f67ef6924b67c39e416e8b0c5fa8f2867ef\"\u003e\u003ccode\u003ecf3c1f6\u003c/code\u003e\u003c/a\u003e Removed dev dependency on minitest-mock\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/defd0ef1de4a908fd0627df9ff622f971a0d5c5a\"\u003e\u003ccode\u003edefd0ef\u003c/code\u003e\u003c/a\u003e Test with Ruby 4.0 on CI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/0e41a80741fd31e415c52d9c185ae3e729f0edf2\"\u003e\u003ccode\u003e0e41a80\u003c/code\u003e\u003c/a\u003e Updated Gemfile [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/e4a38b1690a31b4a6c5a34faa8803bd6e842dd90\"\u003e\u003ccode\u003ee4a38b1\u003c/code\u003e\u003c/a\u003e Updated tests for minitest 6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ankane/ahoy/compare/v5.4.0...v5.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `i18n-js` from 4.2.3 to 4.2.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fnando/i18n-js/blob/main/CHANGELOG.md\"\u003ei18n-js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/f8fb0dc0b01e7e639a6eb5dd875adbaa78858d8f\"\u003e\u003ccode\u003ef8fb0dc\u003c/code\u003e\u003c/a\u003e Bump up version (4.2.4).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/2cbea21df1ac16685a4e974716296853eccc0d49\"\u003e\u003ccode\u003e2cbea21\u003c/code\u003e\u003c/a\u003e Remove benchmark gem (\u003ca href=\"https://redirect.github.com/fnando/i18n-js/issues/737\"\u003e#737\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/9f99172d197b586dab34f4cf6a08a1df9703222f\"\u003e\u003ccode\u003e9f99172\u003c/code\u003e\u003c/a\u003e Update matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/9096c6e63bbbc24900bb10cfd0d42b6a89470c1c\"\u003e\u003ccode\u003e9096c6e\u003c/code\u003e\u003c/a\u003e Fix rubocop warnings.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/237b69b34f73873c2a3c753c45b208e670d15a31\"\u003e\u003ccode\u003e237b69b\u003c/code\u003e\u003c/a\u003e Update --quiet param description (\u003ca href=\"https://redirect.github.com/fnando/i18n-js/issues/730\"\u003e#730\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/1f3305ffa531614de22070ec3a0acbb592902636\"\u003e\u003ccode\u003e1f3305f\u003c/code\u003e\u003c/a\u003e Update action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/674cb0781bdba259e7a25fcd2df6f8dd21dc5276\"\u003e\u003ccode\u003e674cb07\u003c/code\u003e\u003c/a\u003e Fix rubocop warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/877e6f1de96126021cce39f802377ffeead79ff4\"\u003e\u003ccode\u003e877e6f1\u003c/code\u003e\u003c/a\u003e Update actions.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/7e27159f535643bc3080dce132a5ae953c4034ea\"\u003e\u003ccode\u003e7e27159\u003c/code\u003e\u003c/a\u003e Require ruby 3.2+.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/58c32fdc576a499eb2433bd9d633d537f8a696d8\"\u003e\u003ccode\u003e58c32fd\u003c/code\u003e\u003c/a\u003e Disable rubocop rule.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fnando/i18n-js/compare/v4.2.3...v4.2.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `pg` from 1.6.1 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ged/ruby-pg/blob/master/CHANGELOG.md\"\u003epg's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.3 [2025-12-29] Lars Kanis \u003ca href=\"mailto:lars@greiz-reinsdorf.de\"\u003elars@greiz-reinsdorf.de\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003eAdded:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd binary gems for ruby-4.0, now providing ruby-3.0 to 4.0. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/682\"\u003e#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate fat binary gem to OpenSSL-3.6.0 and PostgreSQL-18.1.\u003c/li\u003e\n\u003cli\u003eImprove documentation of PG::Result and README. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/676\"\u003e#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate errorcodes to PostgreSQL-18.\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003erb_hash_new_capa\u003c/code\u003e on Ruby-3.2+ . \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/674\"\u003e#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeny any server communication on a frozen PG::Connection . \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/677\"\u003e#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix possible race condition in PG::Result in Ractor context. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/674\"\u003e#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop binary gem support for platform \u003ccode\u003ex86-mingw32\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/682\"\u003e#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop binary gems for ruby-2.7.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.2 [2025-09-02] Lars Kanis \u003ca href=\"mailto:lars@greiz-reinsdorf.de\"\u003elars@greiz-reinsdorf.de\u003c/a\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove several absolute paths from native binaries which pointed to build directories. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/668\"\u003e#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix bad fallback path to \u003ccode\u003epg_service.conf\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/666\"\u003e#666\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003erbpg_\u003c/code\u003e prefix for \u003ccode\u003ebase64_*\u003c/code\u003e functions to avoid name clashes with functions provided by other libraries like Heimdal on Macos. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/667\"\u003e#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRaise a more descriptive error message in case of \u003ccode\u003epg_ext\u003c/code\u003e LoadError. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/664\"\u003e#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFreeze some constants to make them available in a Ractor context. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/660\"\u003e#660\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSeveral documentation improvements.\u003c/li\u003e\n\u003cli\u003eUpdate native binary gems to OpenSSL-3.5.2, krb5-1.22.1 and PostgreSQL-17.6.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/d4539c25dcc89d47088e1423f8d1915c041920f5\"\u003e\u003ccode\u003ed4539c2\u003c/code\u003e\u003c/a\u003e Bump VERSION to pg-1.6.3 and add release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/720900dbb9d16aa855793146f15c3772e14f627a\"\u003e\u003ccode\u003e720900d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ged/ruby-pg/issues/682\"\u003e#682\u003c/a\u003e from larskanis/ruby-4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/f605b5937093884089109c8baa5fe268fc513eaf\"\u003e\u003ccode\u003ef605b59\u003c/code\u003e\u003c/a\u003e Remove x86-mingw32 from binary builds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/5c690006ba158da70d73d939a233cf75ecdd30ef\"\u003e\u003ccode\u003e5c69000\u003c/code\u003e\u003c/a\u003e Update to ruby-4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/2acaf3d0f76334e056229efe260e1f558a8c6b42\"\u003e\u003ccode\u003e2acaf3d\u003c/code\u003e\u003c/a\u003e CI: workaround missing ruby-4.0 on Window\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/b500ded81127963603e1f724e82bed649c9ca8a1\"\u003e\u003ccode\u003eb500ded\u003c/code\u003e\u003c/a\u003e fix comment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/bc3f2f8b1110e9bcb225d65554e1a7fc842d0506\"\u003e\u003ccode\u003ebc3f2f8\u003c/code\u003e\u003c/a\u003e CI: Macos-13 on Intel is deprecated\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/77667eb4313bd7b79356f402b0fa7fba409483b8\"\u003e\u003ccode\u003e77667eb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ged/ruby-pg/issues/678\"\u003e#678\u003c/a\u003e from larskanis/ci-update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/6e52ce504d05c5359d55f45d9580672103263b54\"\u003e\u003ccode\u003e6e52ce5\u003c/code\u003e\u003c/a\u003e CI: Update PostgreSQL on Macos\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/6d40f50e51a037022495fe6d98181435652464ff\"\u003e\u003ccode\u003e6d40f50\u003c/code\u003e\u003c/a\u003e CI: Print mkmf.log on failure on Macos\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ged/ruby-pg/compare/v1.6.1...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `meta-tags` from 2.22.1 to 2.23.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpumuk/meta-tags/releases\"\u003emeta-tags's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.23.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRefactor and harden GitHub Actions CI by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/343\"\u003ekpumuk/meta-tags#343\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eStabilize Steep toolchain by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/344\"\u003ekpumuk/meta-tags#344\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix packaged Rails RBS interfaces by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/345\"\u003ekpumuk/meta-tags#345\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/upload-artifact from 4.6.2 to 7.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/348\"\u003ekpumuk/meta-tags#348\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/download-artifact from 5.0.0 to 8.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/347\"\u003ekpumuk/meta-tags#347\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.2 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/346\"\u003ekpumuk/meta-tags#346\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefresh README SEO guidance by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/349\"\u003ekpumuk/meta-tags#349\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOptimize property tag matching by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/350\"\u003ekpumuk/meta-tags#350\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix YARD comment wording by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/351\"\u003ekpumuk/meta-tags#351\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd strict YARD linting by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/352\"\u003ekpumuk/meta-tags#352\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparing 2.23.0 release by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/353\"\u003ekpumuk/meta-tags#353\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/kpumuk/meta-tags/compare/v2.22.3...v2.23.0\"\u003ehttps://github.com/kpumuk/meta-tags/compare/v2.22.3...v2.23.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.22.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/339\"\u003ekpumuk/meta-tags#339\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not lock Rails version to allow early testing with newer versions by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/340\"\u003ekpumuk/meta-tags#340\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded Ruby 4.0 and Truffleruby to the build matrix by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/341\"\u003ekpumuk/meta-tags#341\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparing 2.22.3 release by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/342\"\u003ekpumuk/meta-tags#342\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/kpumuk/meta-tags/compare/v2.22.2...v2.22.3\"\u003ehttps://github.com/kpumuk/meta-tags/compare/v2.22.2...v2.22.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.22.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate rubocop-rspec requirement from ~\u0026gt; 3.0.1 to ~\u0026gt; 3.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/317\"\u003ekpumuk/meta-tags#317\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRails 8 will require Ruby 3.2.0 or newer. by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/318\"\u003ekpumuk/meta-tags#318\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate rubocop-rails requirement from ~\u0026gt; 2.26.0 to ~\u0026gt; 2.27.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/320\"\u003ekpumuk/meta-tags#320\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate rubocop-rspec requirement from ~\u0026gt; 3.1.0 to ~\u0026gt; 3.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/319\"\u003ekpumuk/meta-tags#319\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded Rails 8.0 to the build matrix, removed Rails 6.0, and locked Zeitwerk to 2.6 for Ruby versions before 3.2 by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/321\"\u003ekpumuk/meta-tags#321\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate rubocop-rspec requirement from ~\u0026gt; 3.2.0 to ~\u0026gt; 3.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/322\"\u003ekpumuk/meta-tags#322\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitched default Ruby on CI to 3.3, and added 3.4 by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/323\"\u003ekpumuk/meta-tags#323\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate rubocop-rspec requirement from ~\u0026gt; 3.3.0 to ~\u0026gt; 3.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/326\"\u003ekpumuk/meta-tags#326\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate rubocop-rails requirement from ~\u0026gt; 2.27.0 to ~\u0026gt; 2.28.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/324\"\u003ekpumuk/meta-tags#324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate steep requirement from ~\u0026gt; 1.9.3 to ~\u0026gt; 1.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/330\"\u003ekpumuk/meta-tags#330\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/333\"\u003ekpumuk/meta-tags#333\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Rails 8.1 support and update dependency upper bound to \u0026lt; 8.2 by \u003ca href=\"https://github.com/kataokatsuki\"\u003e\u003ccode\u003e@​kataokatsuki\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/337\"\u003ekpumuk/meta-tags#337\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparing release 2.22.2 by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/338\"\u003ekpumuk/meta-tags#338\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kataokatsuki\"\u003e\u003ccode\u003e@​kataokatsuki\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/337\"\u003ekpumuk/meta-tags#337\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/kpumuk/meta-tags/compare/v2.22.1...v2.22.2\"\u003ehttps://github.com/kpumuk/meta-tags/compare/v2.22.1...v2.22.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpumuk/meta-tags/blob/main/CHANGELOG.md\"\u003emeta-tags's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.23.0 (March 16, 2026) \u003ca href=\"https://github.com/kpumuk/meta-tags/compare/v2.22.3...v2.23.0\"\u003e☰\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003eBugfixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003etitle\u003c/code\u003e helper to always return a string, joining array titles with the configured separator (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/344\"\u003e344\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed packaged RBS interfaces for Rails helpers so \u003ccode\u003e_ActionViewBase\u003c/code\u003e and \u003ccode\u003e_ActionControllerBase\u003c/code\u003e resolve for gem consumers (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/345\"\u003e345\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eChanges:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRefreshed README and generated docs to describe modern SEO guidance more accurately, while keeping legacy metadata features documented as compatibility options (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/349\"\u003e349\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eOptimized property tag matching to improve metadata rendering performance and reduce allocations and memory use on the hot render path (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/350\"\u003e350\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.22.3 (January 7, 2026) \u003ca href=\"https://github.com/kpumuk/meta-tags/compare/v2.22.2...v2.22.3\"\u003e☰\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003eChanges:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpper limit for Ruby on Rails version is no longer enforced (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/340\"\u003ekpumuk/meta-tags#340\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded Ruby 4.0 the build matrix (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/341\"\u003ekpumuk/meta-tags#341\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.22.2 (October 25, 2025) \u003ca href=\"https://github.com/kpumuk/meta-tags/compare/v2.22.1...v2.22.2\"\u003e☰\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003eChanges:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdded Ruby on Rails 8.0 to the build matrix, removed Rails 6.0 (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/321\"\u003e321\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded support for Ruby on Rails 8.1 (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/337\"\u003e337\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/e26101479ab9a70ecbe7408e5ffe6785e6656632\"\u003e\u003ccode\u003ee261014\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/issues/353\"\u003e#353\u003c/a\u003e from kpumuk/release-2.23.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/2e798ea44dca3d32fdee94af8f3c128aea3f37e4\"\u003e\u003ccode\u003e2e798ea\u003c/code\u003e\u003c/a\u003e Preparing 2.23.0 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/2b956c9eda6cb138036b2b5e9679c16d74bfcc0c\"\u003e\u003ccode\u003e2b956c9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/issues/352\"\u003e#352\u003c/a\u003e from kpumuk/yard-lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/8254a05c4306a23fd8f8047b4cb34f27e5bea305\"\u003e\u003ccode\u003e8254a05\u003c/code\u003e\u003c/a\u003e Limit yard-lint to Ruby 3.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/f099110f416a79aaa1b9a080a35bbf17522ff8fa\"\u003e\u003ccode\u003ef099110\u003c/code\u003e\u003c/a\u003e Add strict YARD linting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/f1cffa73dc548bbbb2a709f3ab510fe0a78f0a73\"\u003e\u003ccode\u003ef1cffa7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/issues/351\"\u003e#351\u003c/a\u003e from kpumuk/typos\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/70dadc6d5a3a224a662a1fde2b4045904ee74997\"\u003e\u003ccode\u003e70dadc6\u003c/code\u003e\u003c/a\u003e Fix YARD comment wording\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/df53bacf49909c6f5410c742f0f8b4325aa502d0\"\u003e\u003ccode\u003edf53bac\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/issues/350\"\u003e#350\u003c/a\u003e from kpumuk/prop-name-perf\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/6f2b429cf4c892e887541ff0d264eb961cdcf717\"\u003e\u003ccode\u003e6f2b429\u003c/code\u003e\u003c/a\u003e Add changelog entry for property tag optimization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/998710df590892b611c4287245e6e6ea88ceec90\"\u003e\u003ccode\u003e998710d\u003c/code\u003e\u003c/a\u003e Optimize property tag fast path\u003c/li\u003e\n\u003cli\u003eAdditional c...\n\n_Description has been truncated_","html_url":"https://github.com/CircuitVerse/CircuitVerse/pull/7245","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/CircuitVerse%2FCircuitVerse/issues/7245","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7245/packages"},{"uuid":"4196586484","node_id":"PR_kwDOISjhyM7Pp2TV","number":27,"state":"closed","title":"build(deps): bump the bundler group across 10 directories with 10 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-08T01:31:30.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-02T19:37:09.000Z","updated_at":"2026-04-08T01:31:32.000Z","time_to_close":453261,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"bundler","update_count":10,"packages":[{"name":"rack","old_version":"2.0.7","new_version":"2.2.23","repository_url":"https://github.com/rack/rack"},{"name":"sinatra","old_version":"2.0.5","new_version":"4.2.0","repository_url":"https://github.com/sinatra/sinatra"},{"name":"git","old_version":"1.3.0","new_version":"1.13.0","repository_url":"https://github.com/ruby-git/ruby-git"},{"name":"git","old_version":"1.9.1","new_version":"1.13.0","repository_url":"https://github.com/ruby-git/ruby-git"},{"name":"faraday","old_version":"1.7.0","new_version":"1.10.5","repository_url":"https://github.com/lostisland/faraday"},{"name":"httparty","old_version":"0.18.1","new_version":"0.24.0","repository_url":"https://github.com/jnunemaker/httparty"},{"name":"rexml","old_version":"3.2.5","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 2 updates in the /pkgs/applications/office/ledger-web directory: [rack](https://github.com/rack/rack) and [sinatra](https://github.com/sinatra/sinatra).\nBumps the bundler group with 1 update in the /pkgs/applications/version-management/bitbucket-server-cli directory: [git](https://github.com/ruby-git/ruby-git).\nBumps the bundler group with 4 updates in the /pkgs/applications/version-management/danger-gitlab directory: [git](https://github.com/ruby-git/ruby-git), [faraday](https://github.com/lostisland/faraday), [httparty](https://github.com/jnunemaker/httparty) and [rexml](https://github.com/ruby/rexml).\nBumps the bundler group with 2 updates in the /pkgs/applications/version-management/git-fame directory: [rexml](https://github.com/ruby/rexml) and [activesupport](https://github.com/rails/rails).\nBumps the bundler group with 2 updates in the /pkgs/by-name/ba/bashly directory: [rexml](https://github.com/ruby/rexml) and [cgi](https://github.com/ruby/cgi).\nBumps the bundler group with 2 updates in the /pkgs/by-name/cf/cfn-nag directory: [rexml](https://github.com/ruby/rexml) and [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby).\nBumps the bundler group with 1 update in the /pkgs/by-name/co/coltrane directory: [activesupport](https://github.com/rails/rails).\nBumps the bundler group with 1 update in the /pkgs/by-name/ev/evil-winrm directory: [rexml](https://github.com/ruby/rexml).\nBumps the bundler group with 1 update in the /pkgs/by-name/fu/fusuma directory: [rexml](https://github.com/ruby/rexml).\nBumps the bundler group with 4 updates in the /pkgs/by-name/go/gollum directory: [rack](https://github.com/rack/rack), [sinatra](https://github.com/sinatra/sinatra), [rexml](https://github.com/ruby/rexml) and [nokogiri](https://github.com/sparklemotion/nokogiri).\n\nUpdates `rack` from 2.0.7 to 2.2.23\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/releases\"\u003erack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.2.8.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed ReDoS in Accept header parsing [CVE-2024-26146]\u003c/li\u003e\n\u003cli\u003eFixed ReDoS in Content Type header parsing [CVE-2024-25126]\u003c/li\u003e\n\u003cli\u003eReject Range headers which are too large [CVE-2024-26141]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v2.2.8...v2.2.8.1\"\u003ehttps://github.com/rack/rack/compare/v2.2.8...v2.2.8.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.2.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eLimit file extension length of multipart tempfiles (2.2 backport) by \u003ca href=\"https://github.com/dentarg\"\u003e\u003ccode\u003e@​dentarg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2075\"\u003erack/rack#2075\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCHANGELOG: Add missing 2.2.7 by \u003ca href=\"https://github.com/tisba\"\u003e\u003ccode\u003e@​tisba\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2081\"\u003erack/rack#2081\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate cookie.rb by \u003ca href=\"https://github.com/dchandekstark\"\u003e\u003ccode\u003e@​dchandekstark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2092\"\u003erack/rack#2092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrefer ubuntu-latest for testing. by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2095\"\u003erack/rack#2095\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix inefficient assert pattern in Rack::Lint [2-2-stable] by \u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2101\"\u003erack/rack#2101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRegenerate SPEC [2-2-stable] by \u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2102\"\u003erack/rack#2102\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tisba\"\u003e\u003ccode\u003e@​tisba\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2081\"\u003erack/rack#2081\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dchandekstark\"\u003e\u003ccode\u003e@​dchandekstark\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2092\"\u003erack/rack#2092\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v2.2.7...v2.2.8\"\u003ehttps://github.com/rack/rack/compare/v2.2.7...v2.2.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.2.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCorrect the year number in the changelog by \u003ca href=\"https://github.com/kimulab\"\u003e\u003ccode\u003e@​kimulab\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2015\"\u003erack/rack#2015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport underscore in host names for Rack 2.2 (Fixes \u003ca href=\"https://redirect.github.com/rack/rack/issues/2070\"\u003e#2070\u003c/a\u003e) by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2071\"\u003erack/rack#2071\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kimulab\"\u003e\u003ccode\u003e@​kimulab\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2015\"\u003erack/rack#2015\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v2.2.6.4...v2.2.7\"\u003ehttps://github.com/rack/rack/compare/v2.2.6.4...v2.2.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.2.6.4\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev2.1.4.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed ReDoS in Accept header parsing [CVE-2024-26146]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v2.1.4.3...v2.1.4.4\"\u003ehttps://github.com/rack/rack/compare/v2.1.4.3...v2.1.4.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.0.9.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed ReDoS in Accept header parsing [CVE-2024-26146]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v2.0.9.3...v2.0.9.4\"\u003ehttps://github.com/rack/rack/compare/v2.0.9.3...v2.0.9.4\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[2.2.23] - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-7mqq-6cf9-v2qp\"\u003eCVE-2026-34763\u003c/a\u003e Root directory disclosure via unescaped regex interpolation in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v569-hp3g-36wr\"\u003eCVE-2026-34230\u003c/a\u003e Avoid O(n^2) algorithm in \u003ccode\u003eRack::Utils.select_best_encoding\u003c/code\u003e which could lead to denial of service.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-vgpv-f759-9wx3\"\u003eCVE-2026-26961\u003c/a\u003e Raise error for multipart requests with multiple boundary parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q4qf-9j86-f5mh\"\u003eCVE-2026-34786\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e \u003ccode\u003eheader_rules\u003c/code\u003e bypass via URL-encoded path mismatch.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q2ww-5357-x388\"\u003eCVE-2026-34831\u003c/a\u003e \u003ccode\u003eContent-Length\u003c/code\u003e mismatch in \u003ccode\u003eRack::Files\u003c/code\u003e error responses.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-x8cg-fq8g-mxfx\"\u003eCVE-2026-34826\u003c/a\u003e Multipart byte range processing allows denial of service via excessive overlapping ranges.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qv7j-4883-hwh7\"\u003eCVE-2026-34830\u003c/a\u003e \u003ccode\u003eRack::Sendfile\u003c/code\u003e header-based \u003ccode\u003eX-Accel-Mapping\u003c/code\u003e regex injection enables unauthorized \u003ccode\u003eX-Accel-Redirect\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-h2jq-g4cq-5ppq\"\u003eCVE-2026-34785\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e prefix matching can expose unintended files under the static root.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-8vqr-qjwx-82mw\"\u003eCVE-2026-34829\u003c/a\u003e Multipart parsing without \u003ccode\u003eContent-Length\u003c/code\u003e header allows unbounded chunked file uploads.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.22] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-whrj-4476-wvmp\"\u003eCVE-2026-25500\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-mxw3-3hh2-x2mh\"\u003eCVE-2026-22860\u003c/a\u003e Directory traversal via root prefix bypass in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.21] - 2025-11-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.20] - 2025-10-10\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.19] - 2025-10-07\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-wpv5-97wm-hp9c\"\u003eCVE-2025-61772\u003c/a\u003e Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-w9pc-fmgc-vxvw\"\u003eCVE-2025-61771\u003c/a\u003e Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-p543-xpfm-54cp\"\u003eCVE-2025-61770\u003c/a\u003e Unbounded multipart preamble buffering enables DoS (memory exhaustion)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.18] - 2025-09-25\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-625h-95r8-8xpm\"\u003eCVE-2025-59830\u003c/a\u003e Unbounded parameter parsing in \u003ccode\u003eRack::QueryParser\u003c/code\u003e can lead to memory exhaustion via semicolon-separated parameters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.17] - 2025-06-03\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/f2af0c8f869193fa7bb7d20b619b3003418e1055\"\u003e\u003ccode\u003ef2af0c8\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/345b74428e278540bb6c68484e60e01b7542fd49\"\u003e\u003ccode\u003e345b744\u003c/code\u003e\u003c/a\u003e Fix tests for old Rubies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/e2d8e309680f2b9820ab5de13a43f76778bd2c6d\"\u003e\u003ccode\u003ee2d8e30\u003c/code\u003e\u003c/a\u003e Add version guard around non-default gems.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/add1a80fa7a3772605cae8a45e29af6b1d425057\"\u003e\u003ccode\u003eadd1a80\u003c/code\u003e\u003c/a\u003e Fix handling of \u003ccode\u003eErrno::EPIPE\u003c/code\u003e in multipart tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/54261eccf12bb01952f7cbc8203fe68a0e5a1ee3\"\u003e\u003ccode\u003e54261ec\u003c/code\u003e\u003c/a\u003e Fix typo in test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/a36f48bbda4835aa00c3c2f2dbddc5a734dcdfcd\"\u003e\u003ccode\u003ea36f48b\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003eostruct\u003c/code\u003e to Gemfile.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/8883f0da7bf9606d0973f7915a30c3edfc0d3038\"\u003e\u003ccode\u003e8883f0d\u003c/code\u003e\u003c/a\u003e Fix test expectation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/2287a3babec2e80d47329e7e75b5f15c406a07ab\"\u003e\u003ccode\u003e2287a3b\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003elogger\u003c/code\u003e to gemfile.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/e6540e5f11e75c9fb4335934de54b6de05bcf626\"\u003e\u003ccode\u003ee6540e5\u003c/code\u003e\u003c/a\u003e Add Ruby v4.0 to the test matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/c42e357995065aa0c144eba0215a689d8105e4de\"\u003e\u003ccode\u003ec42e357\u003c/code\u003e\u003c/a\u003e Add Content-Length size check in Rack::Multipart::Parser\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/2.0.7...v2.2.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sinatra` from 2.0.5 to 4.2.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sinatra/sinatra/blob/main/CHANGELOG.md\"\u003esinatra's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.2.0 / 2025-10-08\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew: Add \u003ccode\u003e:static_headers\u003c/code\u003e setting for custom headers in static file responses (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2089\"\u003e#2089\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Fix regex in \u003ccode\u003eetag_matches?\u003c/code\u003e to prevent ReDoS (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2121\"\u003e#2121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: \u003ccode\u003ePATH_INFO\u003c/code\u003e can never be empty (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2114\"\u003e#2114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Fix malformed Content-Type headers (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2081\"\u003e#2081\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Avoid crash for integer values in \u003ccode\u003econtent_type\u003c/code\u003e parameters (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2078\"\u003e#2078\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.1.1 / 2024-11-20\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix: Restore WEBrick support (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2067\"\u003e#2067\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.1.0 / 2024-11-18\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew: Add \u003ccode\u003ehost_authorization\u003c/code\u003e setting (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2053\"\u003e#2053\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eDefaults to \u003ccode\u003e.localhost\u003c/code\u003e, \u003ccode\u003e.test\u003c/code\u003e and any IP address in development mode.\u003c/li\u003e\n\u003cli\u003eSecurity: addresses \u003ca href=\"https://github.com/advisories/GHSA-hxx2-7vcw-mqr3\"\u003eCVE-2024-21510\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eFix: Return an instance of \u003ccode\u003eSinatra::IndifferentHash\u003c/code\u003e when calling \u003ccode\u003e#except\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2044\"\u003e#2044\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Address warning from \u003ccode\u003eURI\u003c/code\u003e for Ruby 3.4 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2060\"\u003e#2060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: \u003ccode\u003erackup\u003c/code\u003e no longer depends on WEBrick, recommend Puma instead (\u003ca href=\"https://github.com/sinatra/sinatra/commit/4a558503a0ee41f26d4ebc07b478340e8a8a5ed6\"\u003e\u003ccode\u003e4a558503\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Zeitwerk 2.7.0+ compatibility (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2050\"\u003e#2050\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Address warning about Hash construction for Ruby 3.4 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2028\"\u003e#2028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Declare missing dependencies for Ruby 3.5 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2032\"\u003e#2032\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Compatibility with \u003ccode\u003e--enable-frozen-string-literal\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2033\"\u003e#2033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Rack 3.1 compatibility (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2035\"\u003e#2035\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eDon't depend on \u003ccode\u003eRack::Logger\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDon't delete \u003ccode\u003econtent-length\u003c/code\u003e header when \u003ccode\u003eRack::Files\u003c/code\u003e is used\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.1 / 2025-05-24\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eRack 3.1 compatibility (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2035\"\u003e#2035\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix malformed Content-Type headers (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2081\"\u003e#2081\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAvoid crash for integer values in \u003ccode\u003econtent_type\u003c/code\u003e parameters (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2078\"\u003e#2078\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix compatibility with --enable-frozen-string-literal (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2033\"\u003e#2033\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeclare missing dependencies for Ruby 3.5 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2032\"\u003e#2032\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix warning about Hash construction. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2028\"\u003e#2028\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSupport Zeitwerk 2.7.0+ (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2050\"\u003e#2050\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAddress URI depreciation (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2060\"\u003e#2060\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2035\"\u003e#2035\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2035\"\u003esinatra/sinatra#2035\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2081\"\u003e#2081\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2081\"\u003esinatra/sinatra#2081\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2078\"\u003e#2078\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2078\"\u003esinatra/sinatra#2078\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2033\"\u003e#2033\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2033\"\u003esinatra/sinatra#2033\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/f2ad45f7d2456172974a30d300e9f82424336e09\"\u003e\u003ccode\u003ef2ad45f\u003c/code\u003e\u003c/a\u003e 4.2.0 release (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2122\"\u003e#2122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/3fe8c38dc405586f7ad8f2ac748aa53e9c3615bd\"\u003e\u003ccode\u003e3fe8c38\u003c/code\u003e\u003c/a\u003e Fix regex in \u003ccode\u003eetag_matches?\u003c/code\u003e to prevent ReDoS (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2121\"\u003e#2121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/fa99a21461d4f1f5337b9b9d7a38a1b51c8f4e55\"\u003e\u003ccode\u003efa99a21\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ePATH_INFO\u003c/code\u003e can never be empty. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2114\"\u003e#2114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/ea0d3fae36d8bba330c1d1f88ef1be2e9e54516a\"\u003e\u003ccode\u003eea0d3fa\u003c/code\u003e\u003c/a\u003e Skip broken tests. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2115\"\u003e#2115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/5e1598501eb23a8673d61034df7be7d50c228400\"\u003e\u003ccode\u003e5e15985\u003c/code\u003e\u003c/a\u003e Sync changelog for v4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/91cfb548c9e50a65324a9ce9e4ea5f10cd897027\"\u003e\u003ccode\u003e91cfb54\u003c/code\u003e\u003c/a\u003e Add :static_headers setting for custom headers in static file responses (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2089\"\u003e#2089\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/c918134b0a520cb80b8b4cc3ab222cb6bbd9c827\"\u003e\u003ccode\u003ec918134\u003c/code\u003e\u003c/a\u003e Set \u003ccode\u003erubygems_mfa_required\u003c/code\u003e for the \u003ccode\u003esinatra\u003c/code\u003e gem (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2087\"\u003e#2087\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/ac3ff2363b6dfc61d2b438c4dfccc515bc6bf48c\"\u003e\u003ccode\u003eac3ff23\u003c/code\u003e\u003c/a\u003e README: Remove duplicate mention of installing puma (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2091\"\u003e#2091\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/cfcc70dee1133690207b5a3dc6000426ec04e250\"\u003e\u003ccode\u003ecfcc70d\u003c/code\u003e\u003c/a\u003e CI: don't use \u003ccode\u003eRack::Lint\u003c/code\u003e on invalid hostname (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2086\"\u003e#2086\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/c235249abaafa2780b540aca1813dfcf3d17c2dd\"\u003e\u003ccode\u003ec235249\u003c/code\u003e\u003c/a\u003e CI: Test with Ruby 3.4 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2083\"\u003e#2083\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sinatra/sinatra/compare/v2.0.5...v4.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `git` from 1.3.0 to 1.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby-git/ruby-git/releases\"\u003egit's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.12.0...v1.13.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eca8ff35 Release v1.13.0 (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/603\"\u003e#603\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e8349224 Update list of maintainers (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/598\"\u003e#598\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4fe8738 In ls-files do not unescape file paths with eval (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/602\"\u003e#602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e74b8e11 Add start_point option for checkout command (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/597\"\u003e#597\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eff6dcf4 Do not assume the default branch is 'master' in tests\u003c/li\u003e\n\u003cli\u003e8279298 Fix exception when Git is autoloaded (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.12.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.11.0...v1.12.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eea79dad Release v1.12.0\u003c/li\u003e\n\u003cli\u003ee58cd29 Support the commit --no-gpg-sign flag (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/589\"\u003e#589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e323383b Use yard gem version 0.9.8 or later instead of HEAD from GitHub (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/592\"\u003e#592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e609ab8b Allow the CI build to be run manually using the GitHub interface (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/590\"\u003e#590\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4a96679 Fix windows build (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/591\"\u003e#591\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e6f2b3fd Support the --all option for git fetch (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/583\"\u003e#583\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e1b13ec1 Workaround to get JRuby build working (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/582\"\u003e#582\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5f0adec Update README.md (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/580\"\u003e#580\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e45b467c Make the directory param to Git.clone optional (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/578\"\u003e#578\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eb92130c Make Git::URL.clone_to handle cloning to bare and mirror repos (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/577\"\u003e#577\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e13471d7 Add Git::URL #parse and #clone_to methods (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/575\"\u003e#575\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e0a43d8b Use the head version of yard (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.11.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.10.2...HEAD\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e292087e Supress unneeded test output (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/570\"\u003e#570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e19dfe5e Add support for fetch options \u0026quot;--force/-f\u0026quot; and \u0026quot;--prune-tags/-P\u0026quot;. (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/563\"\u003e#563\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e018d919 Fix bug when grepping lines that contain numbers surrounded by colons (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/566\"\u003e#566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec04d16e remove from maintainer (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/567\"\u003e#567\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e291ca09 Address command line injection in Git::Lib#fetch\u003c/li\u003e\n\u003cli\u003e521b8e7 Release v1.10.2 (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.10.2\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.10.1...v1.10.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e57f941c Release v1.10.2\u003c/li\u003e\n\u003cli\u003ec987a74 Add create-release, setup, and console dev scripts (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/560\"\u003e#560\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e12e3d03 Store tempfile objects to prevent deletion during tests (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/555\"\u003e#555\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.10.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.10.0...v1.10.1\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ec7b12af Release v1.10.1\u003c/li\u003e\n\u003cli\u003eea28118 Properly escape double quotes in shell commands on Windows (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/552\"\u003e#552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edb060fc Properly unescape diff paths (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/504\"\u003e#504\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eea47044 Add Ruby 3.0 to CI build (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/547\"\u003e#547\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby-git/ruby-git/blob/main/CHANGELOG.md\"\u003egit's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.0 (2022-12-10)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.12.0...v1.13.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e8349224 Update list of maintainers (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/598\"\u003e#598\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4fe8738 In ls-files do not unescape file paths with eval (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/602\"\u003e#602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e74b8e11 Add start_point option for checkout command (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/597\"\u003e#597\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eff6dcf4 Do not assume the default branch is 'master' in tests\u003c/li\u003e\n\u003cli\u003e8279298 Fix exception when Git is autoloaded (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.12.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.12.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.12.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e292087e Supress unneeded test output (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/570\"\u003e#570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e19dfe5e Add support for fetch options \u0026quot;--force/-f\u0026quot; and \u0026quot;--prune-tags/-P\u0026quot;. (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/563\"\u003e#563\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e018d919 Fix bug when grepping lines that contain numbers surrounded by colons (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/566\"\u003e#566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec04d16e remove from maintainer (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/567\"\u003e#567\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e291ca09 Address command line injection in Git::Lib#fetch\u003c/li\u003e\n\u003cli\u003e521b8e7 Release v1.10.2 (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.11.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.11.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.2\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.10.2\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.10.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.10.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.10.1\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.10.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.10.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.10.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.9.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.9.1\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.9.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.9.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.8.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.8.1\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.8.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.8.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/ca8ff350a63172630b8e9e919e02a0ce8e7a7a6d\"\u003e\u003ccode\u003eca8ff35\u003c/code\u003e\u003c/a\u003e Release v1.13.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/83492243ef3779bd30f23b41541927f6e50e744f\"\u003e\u003ccode\u003e8349224\u003c/code\u003e\u003c/a\u003e Update list of maintainers (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/598\"\u003e#598\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/4fe8738e8348567255ab4be25867684b5d0d282d\"\u003e\u003ccode\u003e4fe8738\u003c/code\u003e\u003c/a\u003e In ls-files do not unescape file paths with eval (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/602\"\u003e#602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/74b8e11af1a181d90f769129a0810bbc7f2f8a56\"\u003e\u003ccode\u003e74b8e11\u003c/code\u003e\u003c/a\u003e Add start_point option for checkout command (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/597\"\u003e#597\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/ff6dcf47ea1c14e5f12a8ff51eeb4ee10b7b2487\"\u003e\u003ccode\u003eff6dcf4\u003c/code\u003e\u003c/a\u003e Do not assume the default branch is 'master' in tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/827929819c9e607c2ca0ef3f4c9aff57130c682a\"\u003e\u003ccode\u003e8279298\u003c/code\u003e\u003c/a\u003e Fix exception when Git is autoloaded (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/ea79dadf07e65896a08487af011e60336e86d3e3\"\u003e\u003ccode\u003eea79dad\u003c/code\u003e\u003c/a\u003e Release v1.12.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/e58cd2997670561e41df22db236e06e41daea3da\"\u003e\u003ccode\u003ee58cd29\u003c/code\u003e\u003c/a\u003e Support the commit --no-gpg-sign flag (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/589\"\u003e#589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/323383be03358c96523f60e361ad8ec21857f52e\"\u003e\u003ccode\u003e323383b\u003c/code\u003e\u003c/a\u003e Use yard gem version 0.9.8 or later instead of HEAD from GitHub (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/592\"\u003e#592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/609ab8be2656c2362f126863dc2c98255fb5f68a\"\u003e\u003ccode\u003e609ab8b\u003c/code\u003e\u003c/a\u003e Allow the CI build to be run manually using the GitHub interface (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/590\"\u003e#590\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.3.0...v1.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `git` from 1.9.1 to 1.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby-git/ruby-git/releases\"\u003egit's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.12.0...v1.13.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eca8ff35 Release v1.13.0 (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/603\"\u003e#603\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e8349224 Update list of maintainers (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/598\"\u003e#598\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4fe8738 In ls-files do not unescape file paths with eval (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/602\"\u003e#602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e74b8e11 Add start_point option for checkout command (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/597\"\u003e#597\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eff6dcf4 Do not assume the default branch is 'master' in tests\u003c/li\u003e\n\u003cli\u003e8279298 Fix exception when Git is autoloaded (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.12.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.11.0...v1.12.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eea79dad Release v1.12.0\u003c/li\u003e\n\u003cli\u003ee58cd29 Support the commit --no-gpg-sign flag (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/589\"\u003e#589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e323383b Use yard gem version 0.9.8 or later instead of HEAD from GitHub (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/592\"\u003e#592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e609ab8b Allow the CI build to be run manually using the GitHub interface (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/590\"\u003e#590\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4a96679 Fix windows build (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/591\"\u003e#591\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e6f2b3fd Support the --all option for git fetch (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/583\"\u003e#583\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e1b13ec1 Workaround to get JRuby build working (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/582\"\u003e#582\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5f0adec Update README.md (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/580\"\u003e#580\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e45b467c Make the directory param to Git.clone optional (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/578\"\u003e#578\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eb92130c Make Git::URL.clone_to handle cloning to bare and mirror repos (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/577\"\u003e#577\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e13471d7 Add Git::URL #parse and #clone_to methods (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/575\"\u003e#575\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e0a43d8b Use the head version of yard (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.11.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.10.2...HEAD\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e292087e Supress unneeded test output (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/570\"\u003e#570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e19dfe5e Add support for fetch options \u0026quot;--force/-f\u0026quot; and \u0026quot;--prune-tags/-P\u0026quot;. (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/563\"\u003e#563\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e018d919 Fix bug when grepping lines that contain numbers surrounded by colons (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/566\"\u003e#566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec04d16e remove from maintainer (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/567\"\u003e#567\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e291ca09 Address command line injection in Git::Lib#fetch\u003c/li\u003e\n\u003cli\u003e521b8e7 Release v1.10.2 (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.10.2\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.10.1...v1.10.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e57f941c Release v1.10.2\u003c/li\u003e\n\u003cli\u003ec987a74 Add create-release, setup, and console dev scripts (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/560\"\u003e#560\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e12e3d03 Store tempfile objects to prevent deletion during tests (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/555\"\u003e#555\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.10.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.10.0...v1.10.1\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ec7b12af Release v1.10.1\u003c/li\u003e\n\u003cli\u003eea28118 Properly escape double quotes in shell commands on Windows (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/552\"\u003e#552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edb060fc Properly unescape diff paths (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/504\"\u003e#504\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eea47044 Add Ruby 3.0 to CI build (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/547\"\u003e#547\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby-git/ruby-git/blob/main/CHANGELOG.md\"\u003egit's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.0 (2022-12-10)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.12.0...v1.13.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e8349224 Update list of maintainers (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/598\"\u003e#598\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4fe8738 In ls-files do not unescape file paths with eval (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/602\"\u003e#602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e74b8e11 Add start_point option for checkout command (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/597\"\u003e#597\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eff6dcf4 Do not assume the default branch is 'master' in tests\u003c/li\u003e\n\u003cli\u003e8279298 Fix exception when Git is autoloaded (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.12.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.12.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.12.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e292087e Supress unneeded test output (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/570\"\u003e#570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e19dfe5e Add support for fetch options \u0026quot;--force/-f\u0026quot; and \u0026quot;--prune-tags/-P\u0026quot;. (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/563\"\u003e#563\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e018d919 Fix bug when grepping lines that contain numbers surrounded by colons (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/566\"\u003e#566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec04d16e remove from maintainer (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/567\"\u003e#567\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e291ca09 Address command line injection in Git::Lib#fetch\u003c/li\u003e\n\u003cli\u003e521b8e7 Release v1.10.2 (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.11.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.11.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.2\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.10.2\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.10.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.10.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.10.1\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.10.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.10.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.10.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.9.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.9.1\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.9.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.9.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.8.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.8.1\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.8.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.8.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/ca8ff350a63172630b8e9e919e02a0ce8e7a7a6d\"\u003e\u003ccode\u003eca8ff35\u003c/code\u003e\u003c/a\u003e Release v1.13.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/83492243ef3779bd30f23b41541927f6e50e744f\"\u003e\u003ccode\u003e8349224\u003c/code\u003e\u003c/a\u003e Update list of maintainers (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/598\"\u003e#598\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/4fe8738e8348567255ab4be25867684b5d0d282d\"\u003e\u003ccode\u003e4fe8738\u003c/code\u003e\u003c/a\u003e In ls-files do not unescape file paths with eval (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/602\"\u003e#602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/74b8e11af1a181d90f769129a0810bbc7f2f8a56\"\u003e\u003ccode\u003e74b8e11\u003c/code\u003e\u003c/a\u003e Add start_point option for checkout command (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/597\"\u003e#597\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/ff6dcf47ea1c14e5f12a8ff51eeb4ee10b7b2487\"\u003e\u003ccode\u003eff6dcf4\u003c/code\u003e\u003c/a\u003e Do not assume the default branch is 'master' in tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/827929819c9e607c2ca0ef3f4c9aff57130c682a\"\u003e\u003ccode\u003e8279298\u003c/code\u003e\u003c/a\u003e Fix exception when Git is autoloaded (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/ea79dadf07e65896a08487af011e60336e86d3e3\"\u003e\u003ccode\u003eea79dad\u003c/code\u003e\u003c/a\u003e Release v1.12.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/e58cd2997670561e41df22db236e06e41daea3da\"\u003e\u003ccode\u003ee58cd29\u003c/code\u003e\u003c/a\u003e Support the commit --no-gpg-sign flag (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/589\"\u003e#589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/323383be03358c96523f60e361ad8ec21857f52e\"\u003e\u003ccode\u003e323383b\u003c/code\u003e\u003c/a\u003e Use yard gem version 0.9.8 or later instead of HEAD from GitHub (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/592\"\u003e#592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/609ab8be2656c2362f126863dc2c98255fb5f68a\"\u003e\u003ccode\u003e609ab8b\u003c/code\u003e\u003c/a\u003e Allow the CI build to be run manually using the GitHub interface (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/590\"\u003e#590\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.3.0...v1.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `faraday` from 1.7.0 to 1.10.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003efaraday's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport CVE-2026-25765 by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1665\"\u003elostisland/faraday#1665\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.4...v1.10.5\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.4...v1.10.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMake sure that \u003ccode\u003eFaraday::Request::Json\u003c/code\u003e and \u003ccode\u003eFaraday::Response::Json\u003c/code\u003e are correctly autoloaded by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1595\"\u003elostisland/faraday#1595\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.3...v1.10.4\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.3...v1.10.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Ruby 3.2.0 in Faraday v1.x by \u003ca href=\"https://github.com/timrogers\"\u003e\u003ccode\u003e@​timrogers\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1483\"\u003elostisland/faraday#1483\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/timrogers\"\u003e\u003ccode\u003e@​timrogers\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1483\"\u003elostisland/faraday#1483\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.2...v1.10.3\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.2...v1.10.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate three methods for version 2.0 by \u003ca href=\"https://github.com/hyuraku\"\u003e\u003ccode\u003e@​hyuraku\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1446\"\u003elostisland/faraday#1446\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.1...v1.10.2\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.1...v1.10.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eFaraday#Deprecate\u003c/code\u003e to \u003ccode\u003e1.x\u003c/code\u003e by \u003ca href=\"https://github.com/hyuraku\"\u003e\u003ccode\u003e@​hyuraku\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1438\"\u003elostisland/faraday#1438\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyuraku\"\u003e\u003ccode\u003e@​hyuraku\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1438\"\u003elostisland/faraday#1438\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.0...v1.10.1\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.0...v1.10.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd JSON middleware by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1400\"\u003elostisland/faraday#1400\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.9.3...v1.10.0\"\u003ehttps://github.com/lostisland/faraday/compare/v1.9.3...v1.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.9.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRe-add support for Ruby 2.4+ by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1371\"\u003elostisland/faraday#1371\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.9.2...v1.9.3\"\u003ehttps://github.com/lostisland/faraday/compare/v1.9.2...v1.9.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/blob/main/CHANGELOG.md\"\u003efaraday's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eFaraday Changelog\u003c/h1\u003e\n\u003ch2\u003eThe changelog has moved!\u003c/h2\u003e\n\u003cp\u003eThis file is not being updated anymore. Instead, please check the \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003eReleases\u003c/a\u003e page.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v2.1.0...v2.2.0\"\u003e2.2.0\u003c/a\u003e (2022-02-03)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReintroduce the possibility to register middleware with symbols, strings or procs in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1391\"\u003e#1391\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v2.0.1...v2.1.0\"\u003e2.1.0\u003c/a\u003e (2022-01-15)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix test adapter thread safety by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1380\"\u003e#1380\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd default adapter options by \u003ca href=\"https://github.com/hirasawayuki\"\u003e\u003ccode\u003e@​hirasawayuki\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1382\"\u003e#1382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: Add Ruby 3.1 to matrix by \u003ca href=\"https://github.com/petergoldstein\"\u003e\u003ccode\u003e@​petergoldstein\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1374\"\u003e#1374\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix regex pattern in logger.md examples by \u003ca href=\"https://github.com/hirasawayuki\"\u003e\u003ccode\u003e@​hirasawayuki\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1378\"\u003e#1378\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v2.0.0...v2.0.1\"\u003e2.0.1\u003c/a\u003e (2022-01-05)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRe-add \u003ccode\u003efaraday-net_http\u003c/code\u003e as default adapter by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1366\"\u003e#1366\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated sample format in UPGRADING.md by \u003ca href=\"https://github.com/vimutter\"\u003e\u003ccode\u003e@​vimutter\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1361\"\u003e#1361\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Make UPGRADING examples more copyable by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1363\"\u003e#1363\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v1.8.0...v2.0.0\"\u003e2.0.0\u003c/a\u003e (2022-01-04)\u003c/h2\u003e\n\u003cp\u003eThe next major release is here, and it comes almost 2 years after the release of v1.0!\u003c/p\u003e\n\u003cp\u003eThis release changes the way you use Faraday and embraces a new paradigm of Faraday as an ecosystem, rather than a library.\u003c/p\u003e\n\u003cp\u003eWhat does that mean? It means that Faraday is less of a bundled tool and more of a framework for the community to build on top of.\u003c/p\u003e\n\u003cp\u003eAs a result, all adapters and some middleware have moved out and are now shipped as standalone gems 🙌!\u003c/p\u003e\n\u003cp\u003eBut this doesn't mean that upgrading from Faraday 1.x to Faraday 2.0 should be hard, in fact we've listed everything you need to do in the \u003ca href=\"https://github.com/lostisland/faraday/blob/main/UPGRADING.md\"\u003eUPGRADING.md\u003c/a\u003e doc.\u003c/p\u003e\n\u003cp\u003eMoreover, we've setup a new \u003ca href=\"https://github.com/lostisland/awesome-faraday\"\u003eawesome-faraday\u003c/a\u003e repository that will showcase a curated list of adapters and middleware 😎.\u003c/p\u003e\n\u003cp\u003eThis release was the result of the efforts of the core team and all the contributors, new and old, that have helped achieve this milestone 👏.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAutoloading, dependency loading and middleware registry cleanup by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1301\"\u003e#1301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMove JSON middleware (request and response) from faraday_middleware by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1300\"\u003e#1300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove deprecated \u003ccode\u003eFaraday::Request#method\u003c/code\u003e by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1303\"\u003e#1303\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove deprecated \u003ccode\u003eFaraday::UploadIO\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1307\"\u003e#1307\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[1.x] Deprecate Authorization helpers in \u003ccode\u003eFaraday::Connection\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1306\"\u003e#1306\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop deprecated auth helpers from Connection and refactor auth middleware by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1308\"\u003e#1308\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Faraday 1.x examples in authentication.md docs by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1320\"\u003e#1320\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix passing a URL with embedded basic auth by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1324\"\u003e#1324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRegister JSON middleware by \u003ca href=\"https://github.com/mollerhoj\"\u003e\u003ccode\u003e@​mollerhoj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1331\"\u003e#1331\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/5c1d68aae6020c7a5398147356e5a42ca205bf80\"\u003e\u003ccode\u003e5c1d68a\u003c/code\u003e\u003c/a\u003e Version bump to 1.10.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/ea02c0ecbcd7ecc5553767f0cd97ec94eae6142b\"\u003e\u003ccode\u003eea02c0e\u003c/code\u003e\u003c/a\u003e Update rubocop complexity thresholds for security fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/d0fc049beb0b0e4e3bd4a52711189130bba7c5f4\"\u003e\u003ccode\u003ed0fc049\u003c/code\u003e\u003c/a\u003e Backport security fix for CVE-2026-25765 to 1.x branch (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1665\"\u003e#1665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/41c990ee1f82f74270c084cca8f398b186f09262\"\u003e\u003ccode\u003e41c990e\u003c/code\u003e\u003c/a\u003e Version bump to 1.10.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/435888d46cb0236eef9c8d6b02ef37a45681207f\"\u003e\u003ccode\u003e435888d\u003c/code\u003e\u003c/a\u003e Make sure that \u003ccode\u003eFaraday::Request::Json\u003c/code\u003e and \u003ccode\u003eFaraday::Response::Json\u003c/code\u003e are cor...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/82086930f947d037f0ec14ce740c0485a3b4d5a0\"\u003e\u003ccode\u003e8208693\u003c/code\u003e\u003c/a\u003e Use ruby/setup-ruby in publish.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/eeec3677d769258ec97450c678ef4d8f924fac9a\"\u003e\u003ccode\u003eeeec367\u003c/code\u003e\u003c/a\u003e Fix ruby version in publish.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/92c038bcbf24b171abeecd608a195245f5431e98\"\u003e\u003ccode\u003e92c038b\u003c/code\u003e\u003c/a\u003e Update publish.yml to use Ruby 2.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/7a382b5abb19b9278c2bf055da54876ce612cff9\"\u003e\u003ccode\u003e7a382b5\u003c/code\u003e\u003c/a\u003e Version bump to 1.10.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/16506ee918bd8813d0e241aa1c4996fa2157303c\"\u003e\u003ccode\u003e16506ee\u003c/code\u003e\u003c/a\u003e Add support for Ruby 3.2.0 in Faraday v1.x (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1483\"\u003e#1483\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.7.0...v1.10.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `httparty` from 0.18.1 to 0.24.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jnunemaker/httparty/releases\"\u003ehttparty's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.24.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eForce binary encoding throughout by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/823\"\u003ejnunemaker/httparty#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eset Content-Type for Hash body in requests by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/828\"\u003ejnunemaker/httparty#828\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: stream multipart file uploads to reduce memory usage by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/829\"\u003ejnunemaker/httparty#829\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent SSRF via absolute URL bypassing base_uri by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/830\"\u003ejnunemaker/httparty#830\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.23.2...v0.24.0\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.23.2...v0.24.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.23.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd changelog_uri metadata to gemspec by \u003ca href=\"https://github.com/baraidrissa\"\u003e\u003ccode\u003e@​baraidrissa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/817\"\u003ejnunemaker/httparty#817\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix multipart with files in binary mode and fields including non-ASCII characters by \u003ca href=\"https://github.com/rdimartino\"\u003e\u003ccode\u003e@​rdimartino\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/822\"\u003ejnunemaker/httparty#822\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/baraidrissa\"\u003e\u003ccode\u003e@​baraidrissa\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/817\"\u003ejnunemaker/httparty#817\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rdimartino\"\u003e\u003ccode\u003e@​rdimartino\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/822\"\u003ejnunemaker/httparty#822\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.23.1...v0.23.2\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.23.1...v0.23.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.23.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd foul option to class level \u003ca href=\"https://github.com/jnunemaker/httparty/commit/d2683879c902b278a0776620dd7510c99a9db670\"\u003ehttps://github.com/jnunemaker/httparty/commit/d2683879c902b278a0776620dd7510c99a9db670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.23.0...v0.23.1\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.23.0...v0.23.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.23.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003enew: foul mode to rescue all common network errors:  \u003ca href=\"https://github.com/jnunemaker/httparty/blob/891a4a8093afd4cacecab2719223e3170d07f1c0/examples/party_foul_mode.rb\"\u003ehttps://github.com/jnunemaker/httparty/blob/891a4a8093afd4cacecab2719223e3170d07f1c0/examples/party_foul_mode.rb\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: replace master branch to main for better view by \u003ca href=\"https://github.com/bestony\"\u003e\u003ccode\u003e@​bestony\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/803\"\u003ejnunemaker/httparty#803\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/tradesmanhelix\"\u003e\u003ccode\u003e@​tradesmanhelix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/811\"\u003ejnunemaker/httparty#811\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ashishra0\"\u003e\u003ccode\u003e@​ashishra0\u003c/code\u003e\u003c/a\u003e made their first contribution with foul mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bestony\"\u003e\u003ccode\u003e@​bestony\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/803\"\u003ejnunemaker/httparty#803\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tradesmanhelix\"\u003e\u003ccode\u003e@​tradesmanhelix\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/811\"\u003ejnunemaker/httparty#811\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.22.0...v0.23.0\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.22.0...v0.23.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.22.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix typo in example name by \u003ca href=\"https://github.com/xymbol\"\u003e\u003ccode\u003e@​xymbol\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/780\"\u003ejnunemaker/httparty#780\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExtract request building method by \u003ca href=\"https://github.com/aliismayilov\"\u003e\u003ccode\u003e@​aliismayilov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/786\"\u003ejnunemaker/httparty#786\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: Tell dependabot to update GH Actions by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/791\"\u003ejnunemaker/httparty#791\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd CSV gem as a dependency for Ruby 3.4 by \u003ca href=\"https://github.com/ngan\"\u003e\u003ccode\u003e@​ngan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/796\"\u003ejnunemaker/httparty#796\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClear body when redirecting to a GET  by \u003ca href=\"https://github.com/rhett-inbox\"\u003e\u003ccode\u003e@​rhett-inbox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/783\"\u003ejnunemaker/httparty#783\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI against Ruby 3.3 by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/798\"\u003ejnunemaker/httparty#798\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/792\"\u003ejnunemaker/httparty#792\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jnunemaker/httparty/blob/main/Changelog.md\"\u003ehttparty's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003cp\u003eAll notable \u003ca href=\"https://github.com/jnunemaker/httparty/releases\"\u003echanges since 0.22 are documented in GitHub Releases\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e0.21.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/cdb45a678c43e44570b4e73f84b1abeb5ec22b8e\"\u003eescape filename in the multipart/form-data Content-Disposition header\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/767\"\u003eFix request marshaling\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/769\"\u003eReplace \u003ccode\u003emime-types\u003c/code\u003e with \u003ccode\u003emini_mime\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.20.0\u003c/h2\u003e\n\u003cp\u003eBreaking changes\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Ruby \u0026gt;= 2.3.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFixes\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/714\"\u003e\u003ccode\u003eMarshal.dump\u003c/code\u003e fails on response objects when request option \u003ccode\u003e:logger\u003c/code\u003e is set or \u003ccode\u003e:parser\u003c/code\u003e is a proc\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/720\"\u003eSwitch \u003ccode\u003e:pem\u003c/code\u003e option to to \u003ccode\u003eOpenSSL::PKey.read\u003c/code\u003e to support other algorithms\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.19.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/4416141d37fd71bdba4f37589ec265f55aa446ce\"\u003eRemove use of unary + method for creating non-frozen string to increase compatibility with older versions of ruby\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.19.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/709\"\u003eMultipart/Form-Data: rewind files after read\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/711\"\u003eadd frozen_string_literal pragma to all files\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Better handling of Accept-Encoding / Content-Encoding decompression (fixes \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/562\"\u003e#562\u003c/a\u003e)](\u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/729\"\u003ejnunemaker/httparty#729\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/55ec76e8d1df7903eab3f7c2367991400d3cf65e\"\u003e\u003ccode\u003e55ec76e\u003c/code\u003e\u003c/a\u003e Release 0.24.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/ddfbc8ddfca03d4f4026b01763ee906071ca558b\"\u003e\u003ccode\u003eddfbc8d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/830\"\u003e#830\u003c/a\u003e from jnunemaker/fix-ssrf-base-uri-bypass\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/0529bcd6309c9fd9bfdd50ae211843b10054c240\"\u003e\u003ccode\u003e0529bcd\u003c/code\u003e\u003c/a\u003e fix: prevent SSRF via absolute URL bypassing base_uri (GHSA-hm5p-x4rq-38w4)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/05f38fd35d8088b9770513c2eaecce671f0940ec\"\u003e\u003ccode\u003e05f38fd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/829\"\u003e#829\u003c/a\u003e from jnunemaker/memory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/8901c238c00d0aca8920271314c4c5d7dd2701fb\"\u003e\u003ccode\u003e8901c23\u003c/code\u003e\u003c/a\u003e feat: stream multipart file uploads to reduce memory usage\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/091bd6aa909e38822b72f8ce2383385cf8eeb302\"\u003e\u003ccode\u003e091bd6a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/828\"\u003e#828\u003c/a\u003e from jnunemaker/issue-826\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/59c0ac5f3d906fb6be2133c1b89d75329755af8f\"\u003e\u003ccode\u003e59c0ac5\u003c/code\u003e\u003c/a\u003e feat: set Content-Type for Hash body in requests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/5c8b45e6297d181d99a56f5297dade3e358cc6f9\"\u003e\u003ccode\u003e5c8b45e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/823\"\u003e#823\u003c/a\u003e from jnunemaker/mixed-encodings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/6419cb307dd435572963e4ab40cd96b41389efcf\"\u003e\u003ccode\u003e6419cb3\u003c/code\u003e\u003c/a\u003e Force binary encoding throughout\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/c74571f7925c8e142d02c2b7d6ebeedf923b1dd1\"\u003e\u003ccode\u003ec74571f\u003c/code\u003e\u003c/a\u003e Release 0.23.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.18.1...v0.24.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.2.5 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.g...\n\n_Description has been truncated_","html_url":"https://github.com/danwdart/nixpkgs/pull/27","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/danwdart%2Fnixpkgs/issues/27","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/27/packages"},{"uuid":"4196377004","node_id":"PR_kwDOPJd-3c7PpLmd","number":3,"state":"closed","title":"Bump the bundler group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-08T08:44:17.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-02T18:52:05.000Z","updated_at":"2026-04-08T08:44:19.000Z","time_to_close":481932,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":5,"packages":[{"name":"faraday","old_version":"2.12.1","new_version":"2.14.1","repository_url":"https://github.com/lostisland/faraday"},{"name":"ruby-lsp","old_version":"0.19.1","new_version":"0.26.9","repository_url":"https://github.com/Shopify/ruby-lsp"},{"name":"rack","old_version":"3.0.16","new_version":"3.1.21","repository_url":"https://github.com/rack/rack"},{"name":"rexml","old_version":"3.3.9","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"},{"name":"uri","old_version":"1.0.3","new_version":"1.1.1","repository_url":"https://github.com/ruby/uri"}],"path":null,"ecosystem":"rubygems"},"body":"Updates the requirements on [faraday](https://github.com/lostisland/faraday), [ruby-lsp](https://github.com/Shopify/ruby-lsp), [rack](https://github.com/rack/rack), [rexml](https://github.com/ruby/rexml) and [uri](https://github.com/ruby/uri) to permit the latest version.\nUpdates `faraday` from 2.12.1 to 2.14.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003efaraday's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.14.1\u003c/h2\u003e\n\u003ch2\u003eSecurity Note\u003c/h2\u003e\n\u003cp\u003eThis release contains a security fix, we recommend all users to upgrade as soon as possible.\nA Security Advisory with more details will be posted shortly.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd RFC document for Options architecture refactoring plan by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1644\"\u003elostisland/faraday#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1655\"\u003elostisland/faraday#1655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExplicit top-level namespace reference by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1657\"\u003elostisland/faraday#1657\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\"\u003ehttps://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eNew features ✨\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUse newer \u003ccode\u003eUnprocessableContent\u003c/code\u003e naming for 422 by \u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes 🐞\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eConvert strings to UTF-8 by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eResponse#to_hash\u003c/code\u003e when response not finished yet by \u003ca href=\"https://github.com/yykamei\"\u003e\u003ccode\u003e@​yykamei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1639\"\u003elostisland/faraday#1639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMisc/Docs 📄\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eLint: use \u003ccode\u003efilter_map\u003c/code\u003e by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1637\"\u003elostisland/faraday#1637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003eactions/checkout\u003c/code\u003e from v4 to v5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1636\"\u003elostisland/faraday#1636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes documentation by \u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove error handling logic and add missing test coverage by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1633\"\u003elostisland/faraday#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix type assumption in \u003ccode\u003eFaraday::Error\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1630\"\u003elostisland/faraday#1630\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/16cbd38ef252d25dedf416a4d2510a2f3db10c87\"\u003e\u003ccode\u003e16cbd38\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/a6d3a3a0bf59c2ab307d0abd91bc126aef5561bc\"\u003e\u003ccode\u003ea6d3a3a\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/b23f710d28c0dba169470f568df4017a1e8beea7\"\u003e\u003ccode\u003eb23f710\u003c/code\u003e\u003c/a\u003e Explicit top-level namespace reference (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1657\"\u003e#1657\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/49ba4ac3a7359baed634c12a82386f6c8c717ea8\"\u003e\u003ccode\u003e49ba4ac\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1655\"\u003e#1655\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/51a49bc99d7df6f724d250d64771e1d710576df7\"\u003e\u003ccode\u003e51a49bc\u003c/code\u003e\u003c/a\u003e Ensure Claude reads the guidelines and allow to plan in a gitignored .ai/PLAN...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/894f65cab8f04bcf35e84a2dfd9fc0286dbce340\"\u003e\u003ccode\u003e894f65c\u003c/code\u003e\u003c/a\u003e Add RFC document for Options architecture refactoring plan (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1644\"\u003e#1644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/397e3ded0c5166313bb22f1c0221b36b6023fd0f\"\u003e\u003ccode\u003e397e3de\u003c/code\u003e\u003c/a\u003e Add comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/d98c65cfc254ea2898386e4359428527122abec3\"\u003e\u003ccode\u003ed98c65c\u003c/code\u003e\u003c/a\u003e Update Faraday-specific AI agent guidelines\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/56c18ecb718e30c5a3a0dea9bd2361912af9013c\"\u003e\u003ccode\u003e56c18ec\u003c/code\u003e\u003c/a\u003e Add AI agent guidelines specific to Faraday repository\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/3201a42957d37efc968ee8834ba9b50ed5dde54a\"\u003e\u003ccode\u003e3201a42\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.12.1...v2.14.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ruby-lsp` from 0.19.1 to 0.26.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Shopify/ruby-lsp/releases\"\u003eruby-lsp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev0.26.9\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent workspace_dependencies failing if directory gets removed during execution (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3980\"\u003eShopify/ruby-lsp#3980\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix semantic token \u003ccode\u003edefaultLibrary\u003c/code\u003e modifier casing (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/4005\"\u003eShopify/ruby-lsp#4005\u003c/a\u003e) by \u003ca href=\"https://github.com/a-lavis\"\u003e\u003ccode\u003e@​a-lavis\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix document links for source comments above sig blocks (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/4018\"\u003eShopify/ruby-lsp#4018\u003c/a\u003e) by \u003ca href=\"https://github.com/KaanOzkan\"\u003e\u003ccode\u003e@​KaanOzkan\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.8\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix send_log_message ignoring type parameter (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3969\"\u003eShopify/ruby-lsp#3969\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eProperly reset state after leaving a regex capture (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3970\"\u003eShopify/ruby-lsp#3970\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClean up cancelled requests after processing them (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3971\"\u003eShopify/ruby-lsp#3971\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApply lower bound \u003ccode\u003eruby-lsp\u003c/code\u003e version constraint in composed bundle (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3985\"\u003eShopify/ruby-lsp#3985\u003c/a\u003e) by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnsure the original CLI arguments are used when updating (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3986\"\u003eShopify/ruby-lsp#3986\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnsure bundle is re-composed when CLI arguments change (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3987\"\u003eShopify/ruby-lsp#3987\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Other Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eStart accepting --beta flag to install beta server version (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3976\"\u003eShopify/ruby-lsp#3976\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.7\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSkip disable line action for self-resolving cops (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3945\"\u003eShopify/ruby-lsp#3945\u003c/a\u003e) by \u003ca href=\"https://github.com/sucicfilip\"\u003e\u003ccode\u003e@​sucicfilip\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix test runner silent failure on dual-stack IPv4/IPv6 systems (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3953\"\u003eShopify/ruby-lsp#3953\u003c/a\u003e) by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix Bundler::GemNotFound error introduced in 0.26.5 (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3961\"\u003eShopify/ruby-lsp#3961\u003c/a\u003e) by \u003ca href=\"https://github.com/jesse-shopify\"\u003e\u003ccode\u003e@​jesse-shopify\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix incompatible addon version activation when Bundler.setup fails after retry (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3963\"\u003eShopify/ruby-lsp#3963\u003c/a\u003e) by \u003ca href=\"https://github.com/KaanOzkan\"\u003e\u003ccode\u003e@​KaanOzkan\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid failing if \u003ccode\u003eneeds_update\u003c/code\u003e file is deleted by concurrent process (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3964\"\u003eShopify/ruby-lsp#3964\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Other Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport IPv4 and IPv6 for LSP reporter connection (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3965\"\u003eShopify/ruby-lsp#3965\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDecouple test reporter IO from test execution (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3962\"\u003eShopify/ruby-lsp#3962\u003c/a\u003e) by \u003ca href=\"https://github.com/alexcrocha\"\u003e\u003ccode\u003e@​alexcrocha\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.6\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix infinite loop when collecting transitive excluded gems (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3913\"\u003eShopify/ruby-lsp#3913\u003c/a\u003e) by \u003ca href=\"https://github.com/rafaelfranca\"\u003e\u003ccode\u003e@​rafaelfranca\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDon't include test files in the gem package (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3916\"\u003eShopify/ruby-lsp#3916\u003c/a\u003e) by \u003ca href=\"https://github.com/rafaelfranca\"\u003e\u003ccode\u003e@​rafaelfranca\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd rbs to composed bundle update commands (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3938\"\u003eShopify/ruby-lsp#3938\u003c/a\u003e) by \u003ca href=\"https://github.com/modille\"\u003e\u003ccode\u003e@​modille\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExtract GEMS_TO_UPDATE constant and fix missing prism in command path (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3939\"\u003eShopify/ruby-lsp#3939\u003c/a\u003e) by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Other Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[DOC] Add security documentation (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3928\"\u003eShopify/ruby-lsp#3928\u003c/a\u003e) by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.5\u003c/h1\u003e\n\u003ch2\u003e✨ Enhancements\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/29ecc8d29dde87e6157a75bc2f0a3eb62db02ea3\"\u003e\u003ccode\u003e29ecc8d\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/f6d9ee44200cb2c0bd3feeb75ff9b7547accd6ad\"\u003e\u003ccode\u003ef6d9ee4\u003c/code\u003e\u003c/a\u003e Bump version to v0.26.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/97f817d489a212faa6dd876bf129b300ea492fbc\"\u003e\u003ccode\u003e97f817d\u003c/code\u003e\u003c/a\u003e Remove --branch flag from server\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/9e53e7e8366a13e44079f252ee8e5d5000803fe2\"\u003e\u003ccode\u003e9e53e7e\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/eb746d3554f8666e980fa3cffc0d03d7aa062fdd\"\u003e\u003ccode\u003eeb746d3\u003c/code\u003e\u003c/a\u003e Bump extension version to v0.10.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/8834520c7d4ebd067527bc9ba0db3aff586e5df8\"\u003e\u003ccode\u003e8834520\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/issues/4030\"\u003e#4030\u003c/a\u003e from Shopify/use-prism-parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/e4026eac5293387aa1e77a62253ae5dc5a9806b5\"\u003e\u003ccode\u003ee4026ea\u003c/code\u003e\u003c/a\u003e Use Prism parser for Sorbet\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/81843e7a15f2b5428dbe73d87ef3a3ceccb6c411\"\u003e\u003ccode\u003e81843e7\u003c/code\u003e\u003c/a\u003e Bump Sorbet to 0.6.13055\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/b61a59498b70e864ac67c87bafbf72851ecb2ba7\"\u003e\u003ccode\u003eb61a594\u003c/code\u003e\u003c/a\u003e Remove rubyLsp.branch setting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/8c1e9b6b3f69a45dd6853d43d3dfae158f9e555d\"\u003e\u003ccode\u003e8c1e9b6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/issues/4028\"\u003e#4028\u003c/a\u003e from Shopify/dependabot/npm_and_yarn/vscode/minor-an...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Shopify/ruby-lsp/compare/v0.19.1...v0.26.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rack` from 3.0.16 to 3.1.21\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.1.21] - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-7mqq-6cf9-v2qp\"\u003eCVE-2026-34763\u003c/a\u003e Root directory disclosure via unescaped regex interpolation in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v569-hp3g-36wr\"\u003eCVE-2026-34230\u003c/a\u003e Avoid O(n^2) algorithm in \u003ccode\u003eRack::Utils.select_best_encoding\u003c/code\u003e which could lead to denial of service.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qfgr-crr9-7r49\"\u003eCVE-2026-32762\u003c/a\u003e Forwarded header semicolon injection enables Host and Scheme spoofing.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-vgpv-f759-9wx3\"\u003eCVE-2026-26961\u003c/a\u003e Raise error for multipart requests with multiple boundary parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q4qf-9j86-f5mh\"\u003eCVE-2026-34786\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e \u003ccode\u003eheader_rules\u003c/code\u003e bypass via URL-encoded path mismatch.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q2ww-5357-x388\"\u003eCVE-2026-34831\u003c/a\u003e \u003ccode\u003eContent-Length\u003c/code\u003e mismatch in \u003ccode\u003eRack::Files\u003c/code\u003e error responses.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-x8cg-fq8g-mxfx\"\u003eCVE-2026-34826\u003c/a\u003e Multipart byte range processing allows denial of service via excessive overlapping ranges.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-g2pf-xv49-m2h5\"\u003eCVE-2026-34835\u003c/a\u003e \u003ccode\u003eRack::Request\u003c/code\u003e accepts invalid Host characters, enabling host allowlist bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qv7j-4883-hwh7\"\u003eCVE-2026-34830\u003c/a\u003e \u003ccode\u003eRack::Sendfile\u003c/code\u003e header-based \u003ccode\u003eX-Accel-Mapping\u003c/code\u003e regex injection enables unauthorized \u003ccode\u003eX-Accel-Redirect\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-h2jq-g4cq-5ppq\"\u003eCVE-2026-34785\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e prefix matching can expose unintended files under the static root.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-8vqr-qjwx-82mw\"\u003eCVE-2026-34829\u003c/a\u003e Multipart parsing without \u003ccode\u003eContent-Length\u003c/code\u003e header allows unbounded chunked file uploads.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v6x5-cg8r-vv6x\"\u003eCVE-2026-34827\u003c/a\u003e Multipart header parsing allows denial of service via escape-heavy quoted parameters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.20] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-whrj-4476-wvmp\"\u003eCVE-2026-25500\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-mxw3-3hh2-x2mh\"\u003eCVE-2026-22860\u003c/a\u003e Directory traversal via root prefix bypass in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.19] - 2025-11-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.18] - 2025-10-10\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.17] - 2025-10-07\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-wpv5-97wm-hp9c\"\u003eCVE-2025-61772\u003c/a\u003e Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-w9pc-fmgc-vxvw\"\u003eCVE-2025-61771\u003c/a\u003e Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-p543-xpfm-54cp\"\u003eCVE-2025-61770\u003c/a\u003e Unbounded multipart preamble buffering enables DoS (memory exhaustion)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.16] - 2025-06-04\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-47m2-26rw-j2jw\"\u003eCVE-2025-49007\u003c/a\u003e Fix ReDoS in multipart request.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/ae8431120e66e92d1885ab8ec0a553d9cad5ec13\"\u003e\u003ccode\u003eae84311\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/87961c306df1894fb5efaa57d29179091b4bc194\"\u003e\u003ccode\u003e87961c3\u003c/code\u003e\u003c/a\u003e Fix typo in test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/fd1c23dc762225e68b50d392142e6a6bf54bf9af\"\u003e\u003ccode\u003efd1c23d\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003elogger\u003c/code\u003e to gemfile.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/c59d924f215e41ae8ce1bae1633c34f1ca64b182\"\u003e\u003ccode\u003ec59d924\u003c/code\u003e\u003c/a\u003e Fix test expectation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/176f468e0d575e2f4d7583ff95f30bb53360e3fe\"\u003e\u003ccode\u003e176f468\u003c/code\u003e\u003c/a\u003e Add Ruby v4.0 to the test matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/28569342665fee07f161f0974826eb85c1244533\"\u003e\u003ccode\u003e2856934\u003c/code\u003e\u003c/a\u003e Drop EOL Rubies from external tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/17ce7836be1523a7b453f3c06fe070ad7c954708\"\u003e\u003ccode\u003e17ce783\u003c/code\u003e\u003c/a\u003e Limit the number of quoted escapes during multipart parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/367a2a0ec6fbef605c9412dadfd5763b7867441f\"\u003e\u003ccode\u003e367a2a0\u003c/code\u003e\u003c/a\u003e Add Content-Length size check in Rack::Multipart::Parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/a17cb99b3440a4db09fb920407adf5ead127704c\"\u003e\u003ccode\u003ea17cb99\u003c/code\u003e\u003c/a\u003e Fix root prefix bug in Rack::Static\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/59a0966a484f2903833fa3e4c81919d3c645738d\"\u003e\u003ccode\u003e59a0966\u003c/code\u003e\u003c/a\u003e Only do a simple substitution on the x-accel-mapping paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/v3.0.16...v3.1.21\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.3.9 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.3.9...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uri` from 1.0.3 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/uri/releases\"\u003euri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRe-allow consecutive, leading and trailing dots in EMAIL_REGEXP by \u003ca href=\"https://github.com/osyoyu\"\u003e\u003ccode\u003e@​osyoyu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/189\"\u003eruby/uri#189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/osyoyu\"\u003e\u003ccode\u003e@​osyoyu\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/189\"\u003eruby/uri#189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/uri/compare/v1.1.0...v1.1.1\"\u003ehttps://github.com/ruby/uri/compare/v1.1.0...v1.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.1.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate to use the latest version of setup-ruby and bump up to Ruby 3.4 by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/158\"\u003eruby/uri#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix the mention to removed \u003ccode\u003eURI.escape/URI::Escape\u003c/code\u003e by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/146\"\u003eruby/uri#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse a fully qualified name in warning messages by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/150\"\u003eruby/uri#150\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport \u003ccode\u003eRactor#value\u003c/code\u003e by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/163\"\u003eruby/uri#163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved unnecessary workaround  by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/164\"\u003eruby/uri#164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEscape reserved characters in scheme name by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/148\"\u003eruby/uri#148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[DOC] State that uri library is needed to call Kernel#URI by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/167\"\u003eruby/uri#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrefer dedicated assertion methods by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/169\"\u003eruby/uri#169\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix the message for unexpected argument by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/171\"\u003eruby/uri#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake URI::regexp schemes case sensitive (\u003ca href=\"https://redirect.github.com/ruby/uri/issues/38\"\u003e#38\u003c/a\u003e) by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/170\"\u003eruby/uri#170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe local part should not contain leading or trailing dots in the EMAIL_REGEXP by \u003ca href=\"https://github.com/nlevchuk\"\u003e\u003ccode\u003e@​nlevchuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/124\"\u003eruby/uri#124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMore checks in \u003ccode\u003eEMAIL_REGEXP\u003c/code\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/172\"\u003eruby/uri#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not allow empty host names, as they are not allowed by RFC 3986 by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/116\"\u003eruby/uri#116\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove performance of \u003ccode\u003eURI::MailTo::EMAIL_REGEXP\u003c/code\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/173\"\u003eruby/uri#173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePerformance test stability by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/174\"\u003eruby/uri#174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate documents that used \u003ccode\u003eURI::Parser\u003c/code\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/175\"\u003eruby/uri#175\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a workflow to sync commits to ruby/ruby by \u003ca href=\"https://github.com/k0kubun\"\u003e\u003ccode\u003e@​k0kubun\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/183\"\u003eruby/uri#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eirb\u003c/code\u003e to the Gemfile to fix the warning by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/182\"\u003eruby/uri#182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace reference to the obsolete URI.escape with URI::RFC2396_PARSER.escape by \u003ca href=\"https://github.com/vivshaw\"\u003e\u003ccode\u003e@​vivshaw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/166\"\u003eruby/uri#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch a parsing behavior completely when switching a parser by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/161\"\u003eruby/uri#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove error message by \u003ca href=\"https://github.com/soda92\"\u003e\u003ccode\u003e@​soda92\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/130\"\u003eruby/uri#130\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse generic version number to VERSION by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/187\"\u003eruby/uri#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/146\"\u003eruby/uri#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nlevchuk\"\u003e\u003ccode\u003e@​nlevchuk\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/124\"\u003eruby/uri#124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vivshaw\"\u003e\u003ccode\u003e@​vivshaw\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/166\"\u003eruby/uri#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/soda92\"\u003e\u003ccode\u003e@​soda92\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/130\"\u003eruby/uri#130\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/uri/compare/v1.0.4...v1.1.0\"\u003ehttps://github.com/ruby/uri/compare/v1.0.4...v1.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.0.4\u003c/h2\u003e\n\u003ch3\u003eSecurity fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.ruby-lang.org/en/news/2025/10/07/uri-cve-2025-61594/\"\u003eCVE-2025-61594\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/f1b05c89ab38667e7564896f994d4d6cfbc67149\"\u003e\u003ccode\u003ef1b05c8\u003c/code\u003e\u003c/a\u003e v1.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/8557e8d470ad7b969ba11d210e33b9570919661d\"\u003e\u003ccode\u003e8557e8d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/189\"\u003e#189\u003c/a\u003e from osyoyu/restore-whatwg-email-regexp\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/c551d7020bba3cf452e696d55c451ae951d0f24b\"\u003e\u003ccode\u003ec551d70\u003c/code\u003e\u003c/a\u003e Re-allow consecutive, leading and trailing dots in EMAIL_REGEXP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/c41903b3e4df8ba2ceba16a80d3156a97a81e038\"\u003e\u003ccode\u003ec41903b\u003c/code\u003e\u003c/a\u003e v1.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/b433f3499202b2abc27c5211554195243d083f88\"\u003e\u003ccode\u003eb433f34\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/187\"\u003e#187\u003c/a\u003e from ruby/switch-version-code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/1fc4f0496a2d44f4af317d8f786a50e9f6918656\"\u003e\u003ccode\u003e1fc4f04\u003c/code\u003e\u003c/a\u003e Use generic version number to VERSION and generate VERSION_CODE from that\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/e8306800d9b58f37f3847e8d598599cb1ef36f3c\"\u003e\u003ccode\u003ee830680\u003c/code\u003e\u003c/a\u003e Exclude dependabot updates from release note\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/70d245fa46786b9aa4970c4b815cfe8b1b823bf6\"\u003e\u003ccode\u003e70d245f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/130\"\u003e#130\u003c/a\u003e from soda92/improve-error-message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/d629c8c1541330e4fc50879fbafc0701728e447f\"\u003e\u003ccode\u003ed629c8c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/161\"\u003e#161\u003c/a\u003e from y-yagi/fix_changing_parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/fec6733919edb140bbdc429ed4b0492776ebc4a2\"\u003e\u003ccode\u003efec6733\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/166\"\u003e#166\u003c/a\u003e from vivshaw/vivshaw/correct-obsolete-parse\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/uri/compare/v1.0.3...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Lynquatiq/entitlements-github-plugin/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Lynquatiq/entitlements-github-plugin/pull/3","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Lynquatiq%2Fentitlements-github-plugin/issues/3","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/3/packages"},{"uuid":"4196345500","node_id":"PR_kwDOQ8iWSs7PpFDK","number":13,"state":"open","title":"Bump the bundler group across 3 directories with 7 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-02T18:46:13.000Z","updated_at":"2026-04-02T18:49:33.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":7,"packages":[{"name":"rack","old_version":"3.0.10","new_version":"3.1.21","repository_url":"https://github.com/rack/rack"},{"name":"puma","old_version":"6.4.2","new_version":"6.4.3","repository_url":"https://github.com/puma/puma"},{"name":"google-protobuf","old_version":"4.26.1","new_version":"4.27.5","repository_url":"https://github.com/protocolbuffers/protobuf"},{"name":"rexml","old_version":"3.2.8","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"},{"name":"webrick","old_version":"1.8.1","new_version":"1.8.2","repository_url":"https://github.com/ruby/webrick"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 2 updates in the /bundler/multi-dir/bar directory: [rack](https://github.com/rack/rack) and [nokogiri](https://github.com/sparklemotion/nokogiri).\nBumps the bundler group with 5 updates in the /bundler/security-subdep directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [rack](https://github.com/rack/rack) | `3.0.10` | `3.1.21` |\n| [puma](https://github.com/puma/puma) | `6.4.2` | `6.4.3` |\n| [google-protobuf](https://github.com/protocolbuffers/protobuf) | `4.26.1` | `4.27.5` |\n| [rexml](https://github.com/ruby/rexml) | `3.2.8` | `3.4.2` |\n| [webrick](https://github.com/ruby/webrick) | `1.8.1` | `1.8.2` |\n\nBumps the bundler group with 2 updates in the /bundler/multi-dir/foo directory: [nokogiri](https://github.com/sparklemotion/nokogiri) and [sinatra](https://github.com/sinatra/sinatra).\n\nUpdates `rack` from 3.0.0 to 3.1.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/releases\"\u003erack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.9.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed ReDoS in Accept header parsing [CVE-2024-26146]\u003c/li\u003e\n\u003cli\u003eFixed ReDoS in Content Type header parsing [CVE-2024-25126]\u003c/li\u003e\n\u003cli\u003eReject Range headers which are too large [CVE-2024-26141]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.9...v3.0.9.1\"\u003ehttps://github.com/rack/rack/compare/v3.0.9...v3.0.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix content-length calcuation in Rack:Response#write \u003ca href=\"https://redirect.github.com/rack/rack/issues/2150\"\u003e#2150\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.8...v3.0.9\"\u003ehttps://github.com/rack/rack/compare/v3.0.8...v3.0.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u0026quot;Fix some unused variable verbose warnings\u0026quot; by \u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2084\"\u003erack/rack#2084\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2084\"\u003erack/rack#2084\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.7...v3.0.8\"\u003ehttps://github.com/rack/rack/compare/v3.0.7...v3.0.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u0026quot;Make query parameters without = have nil values\u0026quot;. by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2060\"\u003erack/rack#2060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.6.1...v3.0.7\"\u003ehttps://github.com/rack/rack/compare/v3.0.6.1...v3.0.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.6.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev3.0.4.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.4...v3.0.4.1\"\u003ehttps://github.com/rack/rack/compare/v3.0.4...v3.0.4.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.4\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.3...v3.0.4\"\u003ehttps://github.com/rack/rack/compare/v3.0.3...v3.0.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRelease v3.0.3 by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2000\"\u003erack/rack#2000\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.2...v3.0.3\"\u003ehttps://github.com/rack/rack/compare/v3.0.2...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.2\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.1...v3.0.2\"\u003ehttps://github.com/rack/rack/compare/v3.0.1...v3.0.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.1.21] - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-7mqq-6cf9-v2qp\"\u003eCVE-2026-34763\u003c/a\u003e Root directory disclosure via unescaped regex interpolation in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v569-hp3g-36wr\"\u003eCVE-2026-34230\u003c/a\u003e Avoid O(n^2) algorithm in \u003ccode\u003eRack::Utils.select_best_encoding\u003c/code\u003e which could lead to denial of service.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qfgr-crr9-7r49\"\u003eCVE-2026-32762\u003c/a\u003e Forwarded header semicolon injection enables Host and Scheme spoofing.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-vgpv-f759-9wx3\"\u003eCVE-2026-26961\u003c/a\u003e Raise error for multipart requests with multiple boundary parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q4qf-9j86-f5mh\"\u003eCVE-2026-34786\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e \u003ccode\u003eheader_rules\u003c/code\u003e bypass via URL-encoded path mismatch.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q2ww-5357-x388\"\u003eCVE-2026-34831\u003c/a\u003e \u003ccode\u003eContent-Length\u003c/code\u003e mismatch in \u003ccode\u003eRack::Files\u003c/code\u003e error responses.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-x8cg-fq8g-mxfx\"\u003eCVE-2026-34826\u003c/a\u003e Multipart byte range processing allows denial of service via excessive overlapping ranges.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-g2pf-xv49-m2h5\"\u003eCVE-2026-34835\u003c/a\u003e \u003ccode\u003eRack::Request\u003c/code\u003e accepts invalid Host characters, enabling host allowlist bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qv7j-4883-hwh7\"\u003eCVE-2026-34830\u003c/a\u003e \u003ccode\u003eRack::Sendfile\u003c/code\u003e header-based \u003ccode\u003eX-Accel-Mapping\u003c/code\u003e regex injection enables unauthorized \u003ccode\u003eX-Accel-Redirect\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-h2jq-g4cq-5ppq\"\u003eCVE-2026-34785\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e prefix matching can expose unintended files under the static root.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-8vqr-qjwx-82mw\"\u003eCVE-2026-34829\u003c/a\u003e Multipart parsing without \u003ccode\u003eContent-Length\u003c/code\u003e header allows unbounded chunked file uploads.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v6x5-cg8r-vv6x\"\u003eCVE-2026-34827\u003c/a\u003e Multipart header parsing allows denial of service via escape-heavy quoted parameters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.20] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-whrj-4476-wvmp\"\u003eCVE-2026-25500\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-mxw3-3hh2-x2mh\"\u003eCVE-2026-22860\u003c/a\u003e Directory traversal via root prefix bypass in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.19] - 2025-11-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.18] - 2025-10-10\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.17] - 2025-10-07\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-wpv5-97wm-hp9c\"\u003eCVE-2025-61772\u003c/a\u003e Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-w9pc-fmgc-vxvw\"\u003eCVE-2025-61771\u003c/a\u003e Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-p543-xpfm-54cp\"\u003eCVE-2025-61770\u003c/a\u003e Unbounded multipart preamble buffering enables DoS (memory exhaustion)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.16] - 2025-06-04\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-47m2-26rw-j2jw\"\u003eCVE-2025-49007\u003c/a\u003e Fix ReDoS in multipart request.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/ae8431120e66e92d1885ab8ec0a553d9cad5ec13\"\u003e\u003ccode\u003eae84311\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/87961c306df1894fb5efaa57d29179091b4bc194\"\u003e\u003ccode\u003e87961c3\u003c/code\u003e\u003c/a\u003e Fix typo in test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/fd1c23dc762225e68b50d392142e6a6bf54bf9af\"\u003e\u003ccode\u003efd1c23d\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003elogger\u003c/code\u003e to gemfile.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/c59d924f215e41ae8ce1bae1633c34f1ca64b182\"\u003e\u003ccode\u003ec59d924\u003c/code\u003e\u003c/a\u003e Fix test expectation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/176f468e0d575e2f4d7583ff95f30bb53360e3fe\"\u003e\u003ccode\u003e176f468\u003c/code\u003e\u003c/a\u003e Add Ruby v4.0 to the test matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/28569342665fee07f161f0974826eb85c1244533\"\u003e\u003ccode\u003e2856934\u003c/code\u003e\u003c/a\u003e Drop EOL Rubies from external tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/17ce7836be1523a7b453f3c06fe070ad7c954708\"\u003e\u003ccode\u003e17ce783\u003c/code\u003e\u003c/a\u003e Limit the number of quoted escapes during multipart parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/367a2a0ec6fbef605c9412dadfd5763b7867441f\"\u003e\u003ccode\u003e367a2a0\u003c/code\u003e\u003c/a\u003e Add Content-Length size check in Rack::Multipart::Parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/a17cb99b3440a4db09fb920407adf5ead127704c\"\u003e\u003ccode\u003ea17cb99\u003c/code\u003e\u003c/a\u003e Fix root prefix bug in Rack::Static\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/59a0966a484f2903833fa3e4c81919d3c645738d\"\u003e\u003ccode\u003e59a0966\u003c/code\u003e\u003c/a\u003e Only do a simple substitution on the x-accel-mapping paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/3.0.0...v3.1.21\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nokogiri` from 1.11.0 to 1.19.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/releases\"\u003enokogiri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003ecfdb0eafd9a554a88f12ebcc688d2b9005f9fce42b00b970e3dc199587b27f32  nokogiri-1.19.1-aarch64-linux-gnu.gem\r\n1e2150ab43c3b373aba76cd1190af7b9e92103564063e48c474f7600923620b5  nokogiri-1.19.1-aarch64-linux-musl.gem\r\n0a39ed59abe3bf279fab9dd4c6db6fe8af01af0608f6e1f08b8ffa4e5d407fa3  nokogiri-1.19.1-arm-linux-gnu.gem\r\n3a18e559ee499b064aac6562d98daab3d39ba6cbb4074a1542781b2f556db47d  nokogiri-1.19.1-arm-linux-musl.gem\r\ndfe2d337e6700eac47290407c289d56bcf85805d128c1b5a6434ddb79731cb9e  nokogiri-1.19.1-arm64-darwin.gem\r\n1e0bda88b1c6409f0edb9e0c25f1bf9ff4fa94c3958f492a10fcf50dda594365  nokogiri-1.19.1-java.gem\r\n110d92ae57694ae7866670d298a5d04cd150fae5a6a7849957d66f171e6aec9b  nokogiri-1.19.1-x64-mingw-ucrt.gem\r\n7093896778cc03efb74b85f915a775862730e887f2e58d6921e3fa3d981e68bf  nokogiri-1.19.1-x86_64-darwin.gem\r\n1a4902842a186b4f901078e692d12257678e6133858d0566152fe29cdb98456a  nokogiri-1.19.1-x86_64-linux-gnu.gem\r\n4267f38ad4fc7e52a2e7ee28ed494e8f9d8eb4f4b3320901d55981c7b995fc23  nokogiri-1.19.1-x86_64-linux-musl.gem\r\n598b327f36df0b172abd57b68b18979a6e14219353bca87180c31a51a00d5ad3  nokogiri-1.19.1.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e11a97ecc3c0e7e5edcf395720b10860ef493b768f6aa80c539573530bc933767  nokogiri-1.19.0-aarch64-linux-gnu.gem\r\neb70507f5e01bc23dad9b8dbec2b36ad0e61d227b42d292835020ff754fb7ba9  nokogiri-1.19.0-aarch64-linux-musl.gem\r\n572a259026b2c8b7c161fdb6469fa2d0edd2b61cd599db4bbda93289abefbfe5  nokogiri-1.19.0-arm-linux-gnu.gem\r\n23ed90922f1a38aed555d3de4d058e90850c731c5b756d191b3dc8055948e73c  nokogiri-1.19.0-arm-linux-musl.gem\r\n0811dfd936d5f6dd3f6d32ef790568bf29b2b7bead9ba68866847b33c9cf5810  nokogiri-1.19.0-arm64-darwin.gem\r\n5f3a70e252be641d8a4099f7fb4cc25c81c632cb594eec9b4b8f2ca8be4374f3  nokogiri-1.19.0-java.gem\r\n05d7ed2d95731edc9bef2811522dc396df3e476ef0d9c76793a9fca81cab056b  nokogiri-1.19.0-x64-mingw-ucrt.gem\r\n1dad56220b603a8edb9750cd95798bffa2b8dd9dd9aa47f664009ee5b43e3067  nokogiri-1.19.0-x86_64-darwin.gem\r\nf482b95c713d60031d48c44ce14562f8d2ce31e3a9e8dd0ccb131e9e5a68b58c  nokogiri-1.19.0-x86_64-linux-gnu.gem\r\n1c4ca6b381622420073ce6043443af1d321e8ed93cc18b08e2666e5bd02ffae4  nokogiri-1.19.0-x86_64-linux-musl.gem\r\ne304d21865f62518e04f2bf59f93bd3a97ca7b07e7f03952946d8e1c05f45695  nokogiri-1.19.0.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md\"\u003enokogiri's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.10 / 2025-09-15\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.9\"\u003ev2.13.9\u003c/a\u003e. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.\u003c/li\u003e\n\u003cli\u003e[CRuby] [Windows and MacOS] Vendored libiconv is updated to \u003ca href=\"https://savannah.gnu.org/news/?id=10703\"\u003ev1.18\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.9 / 2025-07-20\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Applied upstream libxml2 patches to address CVE-2025-6021, CVE-2025-6170, CVE-2025-49794, CVE-2025-49795, and CVE-2025-49796. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-353f-x4gh-cqq8\"\u003eGHSA-353f-x4gh-cqq8\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.8 / 2025-04-21\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.8\"\u003ev2.13.8\u003c/a\u003e to address CVE-2025-32414 and CVE-2025-32415. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-5w6v-399v-w3cc\"\u003eGHSA-5w6v-399v-w3cc\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.7 / 2025-03-31\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.7\"\u003ev2.13.7\u003c/a\u003e, which is a bugfix release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.6 / 2025-03-24\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d9130457369de8a6efcb764e6da2cb80d5d3b6dd\"\u003e\u003ccode\u003ed913045\u003c/code\u003e\u003c/a\u003e version bump to v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/b81cb9869e8ed7d1785da3363ef490f455da96eb\"\u003e\u003ccode\u003eb81cb98\u003c/code\u003e\u003c/a\u003e doc: update CHANGELOG for upcoming v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/8e668095c6147def4a3ec044df5f2a478c8161c3\"\u003e\u003ccode\u003e8e66809\u003c/code\u003e\u003c/a\u003e C14n raise on failure (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3600\"\u003e#3600\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/5b77f3d1c48cc09c92d10046c448a0866380eb4a\"\u003e\u003ccode\u003e5b77f3d\u003c/code\u003e\u003c/a\u003e Raise RuntimeError when canonicalization fails\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/edc559565819459d92f6db609f068f50491a57f9\"\u003e\u003ccode\u003eedc5595\u003c/code\u003e\u003c/a\u003e Thank sponsors in the README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d4dc245dfafd7ba42538051b0979306c8e5dc6f2\"\u003e\u003ccode\u003ed4dc245\u003c/code\u003e\u003c/a\u003e dep: update rdoc to v7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d77bfb66302532b90c0f340ed6b4ae74f275dde8\"\u003e\u003ccode\u003ed77bfb6\u003c/code\u003e\u003c/a\u003e version bump to v1.19.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/1eb5c2c035b360fd1195de0b274e901b6e0c12dd\"\u003e\u003ccode\u003e1eb5c2c\u003c/code\u003e\u003c/a\u003e dev: convert scripts/test-gem-set to use mise\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/88a120fd8198cd49b7cbe6388c92cd92d776407d\"\u003e\u003ccode\u003e88a120f\u003c/code\u003e\u003c/a\u003e dep: Add native Ruby 4 support, drop Ruby 3.1 support (v1.19.x) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3592\"\u003e#3592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/f8c8f74e846ea49d2cb221710cc08618842ba21e\"\u003e\u003ccode\u003ef8c8f74\u003c/code\u003e\u003c/a\u003e Skip the parser compression test for Windows system libs\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sparklemotion/nokogiri/compare/v1.11.0...v1.19.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rack` from 3.0.10 to 3.1.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/releases\"\u003erack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.9.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed ReDoS in Accept header parsing [CVE-2024-26146]\u003c/li\u003e\n\u003cli\u003eFixed ReDoS in Content Type header parsing [CVE-2024-25126]\u003c/li\u003e\n\u003cli\u003eReject Range headers which are too large [CVE-2024-26141]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.9...v3.0.9.1\"\u003ehttps://github.com/rack/rack/compare/v3.0.9...v3.0.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix content-length calcuation in Rack:Response#write \u003ca href=\"https://redirect.github.com/rack/rack/issues/2150\"\u003e#2150\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.8...v3.0.9\"\u003ehttps://github.com/rack/rack/compare/v3.0.8...v3.0.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u0026quot;Fix some unused variable verbose warnings\u0026quot; by \u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2084\"\u003erack/rack#2084\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2084\"\u003erack/rack#2084\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.7...v3.0.8\"\u003ehttps://github.com/rack/rack/compare/v3.0.7...v3.0.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u0026quot;Make query parameters without = have nil values\u0026quot;. by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2060\"\u003erack/rack#2060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.6.1...v3.0.7\"\u003ehttps://github.com/rack/rack/compare/v3.0.6.1...v3.0.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.6.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev3.0.4.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.4...v3.0.4.1\"\u003ehttps://github.com/rack/rack/compare/v3.0.4...v3.0.4.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.4\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.3...v3.0.4\"\u003ehttps://github.com/rack/rack/compare/v3.0.3...v3.0.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRelease v3.0.3 by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2000\"\u003erack/rack#2000\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.2...v3.0.3\"\u003ehttps://github.com/rack/rack/compare/v3.0.2...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.2\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.1...v3.0.2\"\u003ehttps://github.com/rack/rack/compare/v3.0.1...v3.0.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.1.21] - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-7mqq-6cf9-v2qp\"\u003eCVE-2026-34763\u003c/a\u003e Root directory disclosure via unescaped regex interpolation in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v569-hp3g-36wr\"\u003eCVE-2026-34230\u003c/a\u003e Avoid O(n^2) algorithm in \u003ccode\u003eRack::Utils.select_best_encoding\u003c/code\u003e which could lead to denial of service.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qfgr-crr9-7r49\"\u003eCVE-2026-32762\u003c/a\u003e Forwarded header semicolon injection enables Host and Scheme spoofing.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-vgpv-f759-9wx3\"\u003eCVE-2026-26961\u003c/a\u003e Raise error for multipart requests with multiple boundary parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q4qf-9j86-f5mh\"\u003eCVE-2026-34786\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e \u003ccode\u003eheader_rules\u003c/code\u003e bypass via URL-encoded path mismatch.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q2ww-5357-x388\"\u003eCVE-2026-34831\u003c/a\u003e \u003ccode\u003eContent-Length\u003c/code\u003e mismatch in \u003ccode\u003eRack::Files\u003c/code\u003e error responses.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-x8cg-fq8g-mxfx\"\u003eCVE-2026-34826\u003c/a\u003e Multipart byte range processing allows denial of service via excessive overlapping ranges.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-g2pf-xv49-m2h5\"\u003eCVE-2026-34835\u003c/a\u003e \u003ccode\u003eRack::Request\u003c/code\u003e accepts invalid Host characters, enabling host allowlist bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qv7j-4883-hwh7\"\u003eCVE-2026-34830\u003c/a\u003e \u003ccode\u003eRack::Sendfile\u003c/code\u003e header-based \u003ccode\u003eX-Accel-Mapping\u003c/code\u003e regex injection enables unauthorized \u003ccode\u003eX-Accel-Redirect\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-h2jq-g4cq-5ppq\"\u003eCVE-2026-34785\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e prefix matching can expose unintended files under the static root.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-8vqr-qjwx-82mw\"\u003eCVE-2026-34829\u003c/a\u003e Multipart parsing without \u003ccode\u003eContent-Length\u003c/code\u003e header allows unbounded chunked file uploads.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v6x5-cg8r-vv6x\"\u003eCVE-2026-34827\u003c/a\u003e Multipart header parsing allows denial of service via escape-heavy quoted parameters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.20] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-whrj-4476-wvmp\"\u003eCVE-2026-25500\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-mxw3-3hh2-x2mh\"\u003eCVE-2026-22860\u003c/a\u003e Directory traversal via root prefix bypass in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.19] - 2025-11-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.18] - 2025-10-10\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.17] - 2025-10-07\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-wpv5-97wm-hp9c\"\u003eCVE-2025-61772\u003c/a\u003e Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-w9pc-fmgc-vxvw\"\u003eCVE-2025-61771\u003c/a\u003e Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-p543-xpfm-54cp\"\u003eCVE-2025-61770\u003c/a\u003e Unbounded multipart preamble buffering enables DoS (memory exhaustion)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.16] - 2025-06-04\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-47m2-26rw-j2jw\"\u003eCVE-2025-49007\u003c/a\u003e Fix ReDoS in multipart request.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/ae8431120e66e92d1885ab8ec0a553d9cad5ec13\"\u003e\u003ccode\u003eae84311\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/87961c306df1894fb5efaa57d29179091b4bc194\"\u003e\u003ccode\u003e87961c3\u003c/code\u003e\u003c/a\u003e Fix typo in test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/fd1c23dc762225e68b50d392142e6a6bf54bf9af\"\u003e\u003ccode\u003efd1c23d\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003elogger\u003c/code\u003e to gemfile.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/c59d924f215e41ae8ce1bae1633c34f1ca64b182\"\u003e\u003ccode\u003ec59d924\u003c/code\u003e\u003c/a\u003e Fix test expectation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/176f468e0d575e2f4d7583ff95f30bb53360e3fe\"\u003e\u003ccode\u003e176f468\u003c/code\u003e\u003c/a\u003e Add Ruby v4.0 to the test matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/28569342665fee07f161f0974826eb85c1244533\"\u003e\u003ccode\u003e2856934\u003c/code\u003e\u003c/a\u003e Drop EOL Rubies from external tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/17ce7836be1523a7b453f3c06fe070ad7c954708\"\u003e\u003ccode\u003e17ce783\u003c/code\u003e\u003c/a\u003e Limit the number of quoted escapes during multipart parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/367a2a0ec6fbef605c9412dadfd5763b7867441f\"\u003e\u003ccode\u003e367a2a0\u003c/code\u003e\u003c/a\u003e Add Content-Length size check in Rack::Multipart::Parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/a17cb99b3440a4db09fb920407adf5ead127704c\"\u003e\u003ccode\u003ea17cb99\u003c/code\u003e\u003c/a\u003e Fix root prefix bug in Rack::Static\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/59a0966a484f2903833fa3e4c81919d3c645738d\"\u003e\u003ccode\u003e59a0966\u003c/code\u003e\u003c/a\u003e Only do a simple substitution on the x-accel-mapping paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/3.0.0...v3.1.21\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `puma` from 6.4.2 to 6.4.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/puma/puma/releases\"\u003epuma's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e6.4.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity\n\u003cul\u003e\n\u003cli\u003eDiscards any headers using underscores if the non-underscore version also exists. Without this, an attacker could overwrite values set by intermediate proxies (e.g. X-Forwarded-For). (\u003ca href=\"https://github.com/puma/puma/security/advisories/GHSA-9hf4-67fc-4vf4\"\u003eCVE-2024-45614\u003c/a\u003e/GHSA-9hf4-67fc-4vf4)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/puma/puma/blob/main/History.md\"\u003epuma's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e6.4.3 / 2024-09-19\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity\n\u003cul\u003e\n\u003cli\u003eDiscards any headers using underscores if the non-underscore version also exists. Without this, an attacker could overwrite values set by intermediate proxies (e.g. X-Forwarded-For). (\u003ca href=\"https://github.com/puma/puma/security/advisories/GHSA-9hf4-67fc-4vf4\"\u003eCVE-2024-45614\u003c/a\u003e/GHSA-9hf4-67fc-4vf4)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/puma/puma/commit/e867e53aa4e7df91fa97d8995a80fc2f9466a080\"\u003e\u003ccode\u003ee867e53\u003c/code\u003e\u003c/a\u003e 6.4.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/puma/puma/commit/63a27b5b5bc333bb123d34359fb0a10488bf7392\"\u003e\u003ccode\u003e63a27b5\u003c/code\u003e\u003c/a\u003e 5.6.9 release note [ci skip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/puma/puma/commit/cac3fd18cf29ed43719ff5d52d9cfec215f0a043\"\u003e\u003ccode\u003ecac3fd1\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/puma/puma/compare/v6.4.2...v6.4.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google-protobuf` from 4.26.1 to 4.27.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/protocolbuffers/protobuf/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.2.8 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.2.8...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `webrick` from 1.8.1 to 1.8.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/webrick/releases\"\u003ewebrick's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop commented-out line by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/108\"\u003eruby/webrick#108\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Ruby 3.1 \u0026amp; 3.2 to CI matrix by \u003ca href=\"https://github.com/tricknotes\"\u003e\u003ccode\u003e@​tricknotes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/109\"\u003eruby/webrick#109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix/redos by \u003ca href=\"https://github.com/ooooooo-q\"\u003e\u003ccode\u003e@​ooooooo-q\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/114\"\u003eruby/webrick#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRaise HTTPStatus::BadRequest for requests with invalid/duplicate content-length headers by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/120\"\u003eruby/webrick#120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/121\"\u003eruby/webrick#121\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove CI by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/123\"\u003eruby/webrick#123\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix WEBrick::TestFileHandler#test_short_filename test not working on mswin by \u003ca href=\"https://github.com/KJTsanaktsidis\"\u003e\u003ccode\u003e@​KJTsanaktsidis\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/128\"\u003eruby/webrick#128\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix bug chunk extension detection by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/125\"\u003eruby/webrick#125\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI. by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/131\"\u003eruby/webrick#131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMerge multiple cookie headers, preserving semantic correctness. by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/130\"\u003eruby/webrick#130\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTest on macos-latest by \u003ca href=\"https://github.com/byroot\"\u003e\u003ccode\u003e@​byroot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/132\"\u003eruby/webrick#132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire CRLF line endings in request line and headers by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/138\"\u003eruby/webrick#138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrefer squigly heredocs. by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/143\"\u003eruby/webrick#143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly strip space and horizontal tab in headers by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/141\"\u003eruby/webrick#141\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTreat missing CRLF separator after headers as an EOFError by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/142\"\u003eruby/webrick#142\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReturn 400 response for chunked requests with unexpected data after chunk by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/136\"\u003eruby/webrick#136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix reference to URI::REGEXP::PATTERN::HOST by \u003ca href=\"https://github.com/casperisfine\"\u003e\u003ccode\u003e@​casperisfine\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/144\"\u003eruby/webrick#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrevent request smuggling by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/146\"\u003eruby/webrick#146\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tricknotes\"\u003e\u003ccode\u003e@​tricknotes\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/109\"\u003eruby/webrick#109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ooooooo-q\"\u003e\u003ccode\u003e@​ooooooo-q\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/114\"\u003eruby/webrick#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KJTsanaktsidis\"\u003e\u003ccode\u003e@​KJTsanaktsidis\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/128\"\u003eruby/webrick#128\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/byroot\"\u003e\u003ccode\u003e@​byroot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/132\"\u003eruby/webrick#132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/casperisfine\"\u003e\u003ccode\u003e@​casperisfine\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/144\"\u003eruby/webrick#144\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/webrick/compare/v1.8.1...v1.8.2\"\u003ehttps://github.com/ruby/webrick/compare/v1.8.1...v1.8.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/0fb9de6788a3ba5fe903e63d778a0fb8c1dce786\"\u003e\u003ccode\u003e0fb9de6\u003c/code\u003e\u003c/a\u003e Bump up v1.8.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/b9a4c81ea94dec02a750c6b34092c55234519bf1\"\u003e\u003ccode\u003eb9a4c81\u003c/code\u003e\u003c/a\u003e Removed trailing spaces\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/f5faca9222541591e1a7c3c97552ebb0c92733c7\"\u003e\u003ccode\u003ef5faca9\u003c/code\u003e\u003c/a\u003e Prevent request smuggling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/0c600e169bd4ae267cb5eeb6197277c848323bbe\"\u003e\u003ccode\u003e0c600e1\u003c/code\u003e\u003c/a\u003e Fix reference to URI::REGEXP::PATTERN::HOST\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/15a93914782789520837c334e0c302702aec34e2\"\u003e\u003ccode\u003e15a9391\u003c/code\u003e\u003c/a\u003e Return 400 response for chunked requests with unexpected data after chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/2b38d5614e876d313fe981e87c4e35b91556d226\"\u003e\u003ccode\u003e2b38d56\u003c/code\u003e\u003c/a\u003e Treat missing CRLF separator after headers as an EOFError\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/e4efb4a2300540f14f93c09c06bf0357ac1597dc\"\u003e\u003ccode\u003ee4efb4a\u003c/code\u003e\u003c/a\u003e Remove unnecessary gsub calls in test_httprequest.rb\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/426e214532bb0be5e4ab8b3c9cef328432012d0d\"\u003e\u003ccode\u003e426e214\u003c/code\u003e\u003c/a\u003e Only strip space and horizontal tab in headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/e72cb697836e2ff201a4a74c108fdca9d3d2d0ed\"\u003e\u003ccode\u003ee72cb69\u003c/code\u003e\u003c/a\u003e Prefer squigly heredocs. (\u003ca href=\"https://redirect.github.com/ruby/webrick/issues/143\"\u003e#143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/ee60354bcb84ec33b9245e1d1aa6e1f7e8132101\"\u003e\u003ccode\u003eee60354\u003c/code\u003e\u003c/a\u003e Require CRLF line endings in request line and headers\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/webrick/compare/v1.8.1...v1.8.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nokogiri` from 1.11.0 to 1.19.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/releases\"\u003enokogiri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003ecfdb0eafd9a554a88f12ebcc688d2b9005f9fce42b00b970e3dc199587b27f32  nokogiri-1.19.1-aarch64-linux-gnu.gem\r\n1e2150ab43c3b373aba76cd1190af7b9e92103564063e48c474f7600923620b5  nokogiri-1.19.1-aarch64-linux-musl.gem\r\n0a39ed59abe3bf279fab9dd4c6db6fe8af01af0608f6e1f08b8ffa4e5d407fa3  nokogiri-1.19.1-arm-linux-gnu.gem\r\n3a18e559ee499b064aac6562d98daab3d39ba6cbb4074a1542781b2f556db47d  nokogiri-1.19.1-arm-linux-musl.gem\r\ndfe2d337e6700eac47290407c289d56bcf85805d128c1b5a6434ddb79731cb9e  nokogiri-1.19.1-arm64-darwin.gem\r\n1e0bda88b1c6409f0edb9e0c25f1bf9ff4fa94c3958f492a10fcf50dda594365  nokogiri-1.19.1-java.gem\r\n110d92ae57694ae7866670d298a5d04cd150fae5a6a7849957d66f171e6aec9b  nokogiri-1.19.1-x64-mingw-ucrt.gem\r\n7093896778cc03efb74b85f915a775862730e887f2e58d6921e3fa3d981e68bf  nokogiri-1.19.1-x86_64-darwin.gem\r\n1a4902842a186b4f901078e692d12257678e6133858d0566152fe29cdb98456a  nokogiri-1.19.1-x86_64-linux-gnu.gem\r\n4267f38ad4fc7e52a2e7ee28ed494e8f9d8eb4f4b3320901d55981c7b995fc23  nokogiri-1.19.1-x86_64-linux-musl.gem\r\n598b327f36df0b172abd57b68b18979a6e14219353bca87180c31a51a00d5ad3  nokogiri-1.19.1.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e11a97ecc3c0e7e5edcf395720b10860ef493b768f6aa80c539573530bc933767  nokogiri-1.19.0-aarch64-linux-gnu.gem\r\neb70507f5e01bc23dad9b8dbec2b36ad0e61d227b42d292835020ff754fb7ba9  nokogiri-1.19.0-aarch64-linux-musl.gem\r\n572a259026b2c8b7c161fdb6469fa2d0edd2b61cd599db4bbda93289abefbfe5  nokogiri-1.19.0-arm-linux-gnu.gem\r\n23ed90922f1a38aed555d3de4d058e90850c731c5b756d191b3dc8055948e73c  nokogiri-1.19.0-arm-linux-musl.gem\r\n0811dfd936d5f6dd3f6d32ef790568bf29b2b7bead9ba68866847b33c9cf5810  nokogiri-1.19.0-arm64-darwin.gem\r\n5f3a70e252be641d8a4099f7fb4cc25c81c632cb594eec9b4b8f2ca8be4374f3  nokogiri-1.19.0-java.gem\r\n05d7ed2d95731edc9bef2811522dc396df3e476ef0d9c76793a9fca81cab056b  nokogiri-1.19.0-x64-mingw-ucrt.gem\r\n1dad56220b603a8edb9750cd95798bffa2b8dd9dd9aa47f664009ee5b43e3067  nokogiri-1.19.0-x86_64-darwin.gem\r\nf482b95c713d60031d48c44ce14562f8d2ce31e3a9e8dd0ccb131e9e5a68b58c  nokogiri-1.19.0-x86_64-linux-gnu.gem\r\n1c4ca6b381622420073ce6043443af1d321e8ed93cc18b08e2666e5bd02ffae4  nokogiri-1.19.0-x86_64-linux-musl.gem\r\ne304d21865f62518e04f2bf59f93bd3a97ca7b07e7f03952946d8e1c05f45695  nokogiri-1.19.0.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md\"\u003enokogiri's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.10 / 2025-09-15\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.9\"\u003ev2.13.9\u003c/a\u003e. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.\u003c/li\u003e\n\u003cli\u003e[CRuby] [Windows and MacOS] Vendored libiconv is updated to \u003ca href=\"https://savannah.gnu.org/news/?id=10703\"\u003ev1.18\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.9 / 2025-07-20\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Applied upstream libxml2 patches to address CVE-2025-6021, CVE-2025-6170, CVE-2025-49794, CVE-2025-49795, and CVE-2025-49796. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-353f-x4gh-cqq8\"\u003eGHSA-353f-x4gh-cqq8\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.8 / 2025-04-21\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.8\"\u003ev2.13.8\u003c/a\u003e to address CVE-2025-32414 and CVE-2025-32415. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-5w6v-399v-w3cc\"\u003eGHSA-5w6v-399v-w3cc\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.7 / 2025-03-31\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.7\"\u003ev2.13.7\u003c/a\u003e, which is a bugfix release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.6 / 2025-03-24\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d9130457369de8a6efcb764e6da2cb80d5d3b6dd\"\u003e\u003ccode\u003ed913045\u003c/code\u003e\u003c/a\u003e version bump to v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/b81cb9869e8ed7d1785da3363ef490f455da96eb\"\u003e\u003ccode\u003eb81cb98\u003c/code\u003e\u003c/a\u003e doc: update CHANGELOG for upcoming v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/8e668095c6147def4a3ec044df5f2a478c8161c3\"\u003e\u003ccode\u003e8e66809\u003c/code\u003e\u003c/a\u003e C14n raise on failure (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3600\"\u003e#3600\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/5b77f3d1c48cc09c92d10046c448a0866380eb4a\"\u003e\u003ccode\u003e5b77f3d\u003c/code\u003e\u003c/a\u003e Raise RuntimeError when canonicalization fails\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/edc559565819459d92f6db609f068f50491a57f9\"\u003e\u003ccode\u003eedc5595\u003c/code\u003e\u003c/a\u003e Thank sponsors in the README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d4dc245dfafd7ba42538051b0979306c8e5dc6f2\"\u003e\u003ccode\u003ed4dc245\u003c/code\u003e\u003c/a\u003e dep: update rdoc to v7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d77bfb66302532b90c0f340ed6b4ae74f275dde8\"\u003e\u003ccode\u003ed77bfb6\u003c/code\u003e\u003c/a\u003e version bump to v1.19.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/1eb5c2c035b360fd1195de0b274e901b6e0c12dd\"\u003e\u003ccode\u003e1eb5c2c\u003c/code\u003e\u003c/a\u003e dev: convert scripts/test-gem-set to use mise\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/88a120fd8198cd49b7cbe6388c92cd92d776407d\"\u003e\u003ccode\u003e88a120f\u003c/code\u003e\u003c/a\u003e dep: Add native Ruby 4 support, drop Ruby 3.1 support (v1.19.x) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3592\"\u003e#3592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/f8c8f74e846ea49d2cb221710cc08618842ba21e\"\u003e\u003ccode\u003ef8c8f74\u003c/code\u003e\u003c/a\u003e Skip the parser compression test for Windows system libs\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sparklemotion/nokogiri/compare/v1.11.0...v1.19.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sinatra` from 1.2.2 to 4.2.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sinatra/sinatra/blob/main/CHANGELOG.md\"\u003esinatra's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.2.0 / 2025-10-08\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew: Add \u003ccode\u003e:static_headers\u003c/code\u003e setting for custom headers in static file responses (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2089\"\u003e#2089\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Fix regex in \u003ccode\u003eetag_matches?\u003c/code\u003e to prevent ReDoS (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2121\"\u003e#2121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: \u003ccode\u003ePATH_INFO\u003c/code\u003e can never be empty (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2114\"\u003e#2114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Fix malformed Content-Type headers (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2081\"\u003e#2081\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Avoid crash for integer values in \u003ccode\u003econtent_type\u003c/code\u003e parameters (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2078\"\u003e#2078\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.1.1 / 2024-11-20\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix: Restore WEBrick support (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2067\"\u003e#2067\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.1.0 / 2024-11-18\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew: Add \u003ccode\u003ehost_authorization\u003c/code\u003e setting (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2053\"\u003e#2053\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eDefaults to \u003ccode\u003e.localhost\u003c/code\u003e, \u003ccode\u003e.test\u003c/code\u003e and any IP address in development mode.\u003c/li\u003e\n\u003cli\u003eSecurity: addresses \u003ca href=\"https://github.com/advisories/GHSA-hxx2-7vcw-mqr3\"\u003eCVE-2024-21510\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eFix: Return an instance of \u003ccode\u003eSinatra::IndifferentHash\u003c/code\u003e when calling \u003ccode\u003e#except\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2044\"\u003e#2044\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Address warning from \u003ccode\u003eURI\u003c/code\u003e for Ruby 3.4 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2060\"\u003e#2060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: \u003ccode\u003erackup\u003c/code\u003e no longer depends on WEBrick, recommend Puma instead (\u003ca href=\"https://github.com/sinatra/sinatra/commit/4a558503a0ee41f26d4ebc07b478340e8a8a5ed6\"\u003e\u003ccode\u003e4a558503\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Zeitwerk 2.7.0+ compatibility (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2050\"\u003e#2050\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Address warning about Hash construction for Ruby 3.4 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2028\"\u003e#2028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Declare missing dependencies for Ruby 3.5 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2032\"\u003e#2032\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Compatibility with \u003ccode\u003e--enable-frozen-string-literal\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2033\"\u003e#2033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Rack 3.1 compatibility (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2035\"\u003e#2035\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eDon't depend on \u003ccode\u003eRack::Logger\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDon't delete \u003ccode\u003econtent-length\u003c/code\u003e header when \u003ccode\u003eRack::Files\u003c/code\u003e is used\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.1 / 2025-05-24\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eRack 3.1 compatibility (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2035\"\u003e#2035\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix malformed Content-Type headers (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2081\"\u003e#2081\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAvoid crash for integer values in \u003ccode\u003econtent_type\u003c/code\u003e parameters (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2078\"\u003e#2078\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix compatibility with --enable-frozen-string-literal (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2033\"\u003e#2033\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeclare missing dependencies for Ruby 3.5 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2032\"\u003e#2032\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix warning about Hash construction. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2028\"\u003e#2028\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSupport Zeitwerk 2.7.0+ (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2050\"\u003e#2050\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAddress URI depreciation (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2060\"\u003e#2060\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2035\"\u003e#2035\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2035\"\u003esinatra/sinatra#2035\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2081\"\u003e#2081\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2081\"\u003esinatra/sinatra#2081\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2078\"\u003e#2078\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2078\"\u003esinatra/sinatra#2078\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2033\"\u003e#2033\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2033\"\u003esinatra/sinatra#2033\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/f2ad45f7d2456172974a30d300e9f82424336e09\"\u003e\u003ccode\u003ef2ad45f\u003c/code\u003e\u003c/a\u003e 4.2.0 release (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2122\"\u003e#2122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/3fe8c38dc405586f7ad8f2ac748aa53e9c3615bd\"\u003e\u003ccode\u003e3fe8c38\u003c/code\u003e\u003c/a\u003e Fix regex in \u003ccode\u003eetag_matches?\u003c/code\u003e to prevent ReDoS (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2121\"\u003e#2121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/fa99a21461d4f1f5337b9b9d7a38a1b51c8f4e55\"\u003e\u003ccode\u003efa99a21\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ePATH_INFO\u003c/code\u003e can never be empty. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2114\"\u003e#2114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/ea0d3fae36d8bba330c1d1f88ef1be2e9e54516a\"\u003e\u003ccode\u003eea0d3fa\u003c/code\u003e\u003c/a\u003e Skip broken tests. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2115\"\u003e#2115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/5e1598501eb23a8673d61034df7be7d50c228400\"\u003e\u003ccode\u003e5e15985\u003c/code\u003e\u003c/a\u003e Sync changelog for v4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/91cfb548c9e50a65324a9ce9e4ea5f10cd897027\"\u003e\u003ccode\u003e91cfb54\u003c/code\u003e\u003c/a\u003e Add :static_headers setting for custom headers in static file responses (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2089\"\u003e#2089\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/c918134b0a520cb80b8b4cc3ab222cb6bbd9c827\"\u003e\u003ccode\u003ec918134\u003c/code\u003e\u003c/a\u003e Set \u003ccode\u003erubygems_mfa_required\u003c/code\u003e for the \u003ccode\u003esinatra\u003c/code\u003e gem (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2087\"\u003e#2087\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/ac3ff2363b6dfc61d2b438c4dfccc515bc6bf48c\"\u003e\u003ccode\u003eac3ff23\u003c/code\u003e\u003c/a\u003e README: Remove duplicate mention of installing puma (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2091\"\u003e#2091\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/cfcc70dee1133690207b5a3dc6000426ec04e250\"\u003e\u003ccode\u003ecfcc70d\u003c/code\u003e\u003c/a\u003e CI: don't use \u003ccode\u003eRack::Lint\u003c/code\u003e on invalid hostname (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2086\"\u003e#2086\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/c235249abaafa2780b540aca1813dfcf3d17c2dd\"\u003e\u003ccode\u003ec235249\u003c/code\u003e\u003c/a\u003e CI: Test with Ruby 3.4 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2083\"\u003e#2083\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sinatra/sinatra/compare/1.2.2...v4.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Trancendos/smoke-tests/network/alerts).\n\n\u003c/details\u003e\n\n\u003c!-- This is an auto-generated description by cubic. --\u003e\n---\n## Summary by cubic\nUpgrade the Ruby web stack across three bundler directories to pick up security fixes and align on Rack 3.x. This includes a major `sinatra` update and refreshed versions of core HTTP/XML gems.\n\n- **Dependencies**\n  - /bundler/multi-dir/bar: `rack` → 3.1.21, `nokogiri` → 1.19.1\n  - /bundler/multi-dir/foo: `sinatra` → 4.2.0 (adds `rack-protection` 4.2.0 and `rack-session` 2.1.1; uses `rack` 3.2.6), `nokogiri` → 1.19.1\n  - /bundler/security-subdep: `rack` → 3.1.21, `puma` → 6.4.3 (Gemfile constraint set to `~\u003e 6.4`), `google-protobuf` → 4.27.5, `rexml` → 3.4.2, `webrick` → 1.8.2\n\n- **Migration**\n  - Run `bundle install` in each updated directory.\n  - `sinatra` 4 requires Rack 3; review routes/middleware for 1.x → 4.x breaking changes.\n  - `nokogiri` 1.19 drops Ruby 3.1; ensure the Ruby version in use is supported.\n\n\u003csup\u003eWritten for commit 887ddced2c839581394eee7e6fb0f904e5d0193f. Summary will update on new commits.\u003c/sup\u003e\n\n\u003c!-- End of auto-generated description by cubic. --\u003e\n\n","html_url":"https://github.com/Trancendos/smoke-tests/pull/13","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Trancendos%2Fsmoke-tests/issues/13","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13/packages"},{"uuid":"4156303746","node_id":"PR_kwDOJaZ_ts7OLUpd","number":340,"state":"closed","title":"Bump the all group in /site with 35 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-27T22:48:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-27T22:40:35.000Z","updated_at":"2026-03-27T22:48:51.000Z","time_to_close":494,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"all","update_count":35,"packages":[{"name":"github-pages","old_version":"228","new_version":"232","repository_url":"https://github.com/github/pages-gem"},{"name":"activesupport","old_version":"7.0.5","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"},{"name":"addressable","old_version":"2.8.4","new_version":"2.8.9","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"coffee-script-source","old_version":"1.11.1","new_version":"1.12.2"},{"name":"commonmarker","old_version":"0.23.9","new_version":"0.23.12","repository_url":"https://github.com/gjtorikian/commonmarker"},{"name":"concurrent-ruby","old_version":"1.2.2","new_version":"1.3.6","repository_url":"https://github.com/ruby-concurrency/concurrent-ruby"},{"name":"dnsruby","old_version":"1.70.0","new_version":"1.73.1","repository_url":"https://github.com/alexdalitz/dnsruby"},{"name":"ethon","old_version":"0.16.0","new_version":"0.18.0","repository_url":"https://github.com/typhoeus/ethon"},{"name":"execjs","old_version":"2.8.1","new_version":"2.10.0","repository_url":"https://github.com/rails/execjs"},{"name":"faraday","old_version":"2.7.6","new_version":"2.14.1","repository_url":"https://github.com/lostisland/faraday"},{"name":"faraday-net_http","old_version":"3.0.2","new_version":"3.4.2","repository_url":"https://github.com/lostisland/faraday-net_http"},{"name":"gemoji","old_version":"3.0.1","new_version":"4.1.0","repository_url":"https://github.com/github/gemoji"},{"name":"github-pages-health-check","old_version":"1.17.9","new_version":"1.18.2","repository_url":"https://github.com/github/github-pages-health-check"},{"name":"http_parser.rb","old_version":"0.8.0","new_version":"0.8.1","repository_url":"https://github.com/tmm1/http_parser.rb"},{"name":"i18n","old_version":"1.14.1","new_version":"1.14.8","repository_url":"https://github.com/ruby-i18n/i18n"},{"name":"jekyll","old_version":"3.9.3","new_version":"3.10.0","repository_url":"https://github.com/jekyll/jekyll"},{"name":"jekyll-avatar","old_version":"0.7.0","new_version":"0.8.0","repository_url":"https://github.com/jekyll/jekyll-avatar"},{"name":"jekyll-coffeescript","old_version":"1.1.1","new_version":"1.2.2","repository_url":"https://github.com/jekyll/jekyll-coffeescript"},{"name":"jekyll-commonmark-ghpages","old_version":"0.4.0","new_version":"0.5.1","repository_url":"https://github.com/github/jekyll-commonmark-ghpages"},{"name":"jekyll-default-layout","old_version":"0.1.4","new_version":"0.1.5","repository_url":"https://github.com/benbalter/jekyll-default-layout"},{"name":"jekyll-feed","old_version":"0.15.1","new_version":"0.17.0","repository_url":"https://github.com/jekyll/jekyll-feed"},{"name":"jekyll-github-metadata","old_version":"2.13.0","new_version":"2.16.1","repository_url":"https://github.com/jekyll/github-metadata"},{"name":"jemoji","old_version":"0.12.0","new_version":"0.13.0","repository_url":"https://github.com/jekyll/jemoji"},{"name":"kramdown","old_version":"2.3.2","new_version":"2.4.0","repository_url":"https://github.com/gettalong/kramdown"},{"name":"listen","old_version":"3.8.0","new_version":"3.10.0","repository_url":"https://github.com/guard/listen"},{"name":"minitest","old_version":"5.18.0","new_version":"6.0.2","repository_url":"https://github.com/minitest/minitest"},{"name":"nokogiri","old_version":"1.15.2","new_version":"1.19.2","repository_url":"https://github.com/sparklemotion/nokogiri"},{"name":"public_suffix","old_version":"4.0.7","new_version":"5.1.1","repository_url":"https://github.com/weppos/publicsuffix-ruby"},{"name":"racc","old_version":"1.7.0","new_version":"1.8.1","repository_url":"https://github.com/ruby/racc"},{"name":"rexml","old_version":"3.2.5","new_version":"3.4.4","repository_url":"https://github.com/ruby/rexml"},{"name":"rouge","old_version":"3.26.0","new_version":"3.30.0","repository_url":"https://github.com/rouge-ruby/rouge"},{"name":"rubyzip","old_version":"2.3.2","new_version":"2.4.1","repository_url":"https://github.com/rubyzip/rubyzip"},{"name":"sawyer","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/lostisland/sawyer"},{"name":"simpleidn","old_version":"0.2.1","new_version":"0.2.3","repository_url":"https://github.com/mmriis/simpleidn"},{"name":"typhoeus","old_version":"1.4.0","new_version":"1.6.0","repository_url":"https://github.com/typhoeus/typhoeus"}],"path":"/site","ecosystem":"rubygems"},"body":"Bumps the all group in /site with 35 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github-pages](https://github.com/github/pages-gem) | `228` | `232` |\n| [activesupport](https://github.com/rails/rails) | `7.0.5` | `8.1.3` |\n| [addressable](https://github.com/sporkmonger/addressable) | `2.8.4` | `2.8.9` |\n| [coffee-script-source](http://coffeescript.org) | `1.11.1` | `1.12.2` |\n| [commonmarker](https://github.com/gjtorikian/commonmarker) | `0.23.9` | `0.23.12` |\n| [concurrent-ruby](https://github.com/ruby-concurrency/concurrent-ruby) | `1.2.2` | `1.3.6` |\n| [dnsruby](https://github.com/alexdalitz/dnsruby) | `1.70.0` | `1.73.1` |\n| [ethon](https://github.com/typhoeus/ethon) | `0.16.0` | `0.18.0` |\n| [execjs](https://github.com/rails/execjs) | `2.8.1` | `2.10.0` |\n| [faraday](https://github.com/lostisland/faraday) | `2.7.6` | `2.14.1` |\n| [faraday-net_http](https://github.com/lostisland/faraday-net_http) | `3.0.2` | `3.4.2` |\n| [gemoji](https://github.com/github/gemoji) | `3.0.1` | `4.1.0` |\n| [github-pages-health-check](https://github.com/github/github-pages-health-check) | `1.17.9` | `1.18.2` |\n| [http_parser.rb](https://github.com/tmm1/http_parser.rb) | `0.8.0` | `0.8.1` |\n| [i18n](https://github.com/ruby-i18n/i18n) | `1.14.1` | `1.14.8` |\n| [jekyll](https://github.com/jekyll/jekyll) | `3.9.3` | `3.10.0` |\n| [jekyll-avatar](https://github.com/jekyll/jekyll-avatar) | `0.7.0` | `0.8.0` |\n| [jekyll-coffeescript](https://github.com/jekyll/jekyll-coffeescript) | `1.1.1` | `1.2.2` |\n| [jekyll-commonmark-ghpages](https://github.com/github/jekyll-commonmark-ghpages) | `0.4.0` | `0.5.1` |\n| [jekyll-default-layout](https://github.com/benbalter/jekyll-default-layout) | `0.1.4` | `0.1.5` |\n| [jekyll-feed](https://github.com/jekyll/jekyll-feed) | `0.15.1` | `0.17.0` |\n| [jekyll-github-metadata](https://github.com/jekyll/github-metadata) | `2.13.0` | `2.16.1` |\n| [jemoji](https://github.com/jekyll/jemoji) | `0.12.0` | `0.13.0` |\n| [kramdown](https://github.com/gettalong/kramdown) | `2.3.2` | `2.4.0` |\n| [listen](https://github.com/guard/listen) | `3.8.0` | `3.10.0` |\n| [minitest](https://github.com/minitest/minitest) | `5.18.0` | `6.0.2` |\n| [nokogiri](https://github.com/sparklemotion/nokogiri) | `1.15.2` | `1.19.2` |\n| [public_suffix](https://github.com/weppos/publicsuffix-ruby) | `4.0.7` | `5.1.1` |\n| [racc](https://github.com/ruby/racc) | `1.7.0` | `1.8.1` |\n| [rexml](https://github.com/ruby/rexml) | `3.2.5` | `3.4.4` |\n| [rouge](https://github.com/rouge-ruby/rouge) | `3.26.0` | `3.30.0` |\n| [rubyzip](https://github.com/rubyzip/rubyzip) | `2.3.2` | `2.4.1` |\n| [sawyer](https://github.com/lostisland/sawyer) | `0.9.2` | `0.9.3` |\n| [simpleidn](https://github.com/mmriis/simpleidn) | `0.2.1` | `0.2.3` |\n| [typhoeus](https://github.com/typhoeus/typhoeus) | `1.4.0` | `1.6.0` |\n\nUpdates `github-pages` from 228 to 232\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/github/pages-gem/releases\"\u003egithub-pages's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev232\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump docker/build-push-action from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/916\"\u003egithub/pages-gem#916\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix obscured gemfile issue by \u003ca href=\"https://github.com/mrmanc\"\u003e\u003ccode\u003e@​mrmanc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/912\"\u003egithub/pages-gem#912\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd webrick as Ruby 3 doesn’t include it by \u003ca href=\"https://github.com/mrmanc\"\u003e\u003ccode\u003e@​mrmanc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/914\"\u003egithub/pages-gem#914\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate nokogiri CVE-2024-25062 by \u003ca href=\"https://github.com/naxhh\"\u003e\u003ccode\u003e@​naxhh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/911\"\u003egithub/pages-gem#911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eParkr jekyll3.10 by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/919\"\u003egithub/pages-gem#919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix improperly bound regex by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/921\"\u003egithub/pages-gem#921\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrep 232 by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/923\"\u003egithub/pages-gem#923\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/naxhh\"\u003e\u003ccode\u003e@​naxhh\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/911\"\u003egithub/pages-gem#911\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/github/pages-gem/compare/v231...v232\"\u003ehttps://github.com/github/pages-gem/compare/v231...v232\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev231\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRevert jekyll-relative-links to 0.6.1 and add a test by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/910\"\u003egithub/pages-gem#910\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/github/pages-gem/compare/v230...v231\"\u003ehttps://github.com/github/pages-gem/compare/v230...v231\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev230\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump docker/login-action from 2 to 3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/907\"\u003egithub/pages-gem#907\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump docker/build-push-action from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/905\"\u003egithub/pages-gem#905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump docker/setup-buildx-action from 2 to 3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/906\"\u003egithub/pages-gem#906\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Jekyll to 3.9.5 by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/908\"\u003egithub/pages-gem#908\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/github/pages-gem/compare/v229...v230\"\u003ehttps://github.com/github/pages-gem/compare/v229...v230\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev229\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump docker/metadata-action from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/889\"\u003egithub/pages-gem#889\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/888\"\u003egithub/pages-gem#888\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes \u003ccode\u003e$github-pages health-check\u003c/code\u003e NoMethodError by \u003ca href=\"https://github.com/edward\"\u003e\u003ccode\u003e@​edward\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/878\"\u003egithub/pages-gem#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport Ruby 3.2+, fixes \u003ca href=\"https://redirect.github.com/github/pages-gem/issues/879\"\u003e#879\u003c/a\u003e by \u003ca href=\"https://github.com/fulldecent\"\u003e\u003ccode\u003e@​fulldecent\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/880\"\u003egithub/pages-gem#880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCreate publish-gem.yml by \u003ca href=\"https://github.com/tsusdere\"\u003e\u003ccode\u003e@​tsusdere\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/898\"\u003egithub/pages-gem#898\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/900\"\u003egithub/pages-gem#900\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable multi arch docker image build by \u003ca href=\"https://github.com/rngtng\"\u003e\u003ccode\u003e@​rngtng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/884\"\u003egithub/pages-gem#884\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBring back proper support for Ruby 3.x by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/901\"\u003egithub/pages-gem#901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump dependencies (patch and minor only) by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/902\"\u003egithub/pages-gem#902\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix release script by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/903\"\u003egithub/pages-gem#903\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnother publish script fix by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/904\"\u003egithub/pages-gem#904\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/edward\"\u003e\u003ccode\u003e@​edward\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/878\"\u003egithub/pages-gem#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fulldecent\"\u003e\u003ccode\u003e@​fulldecent\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/880\"\u003egithub/pages-gem#880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tsusdere\"\u003e\u003ccode\u003e@​tsusdere\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/898\"\u003egithub/pages-gem#898\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/c34277c8ff6a2c86bfb19f17f35de573e796f030\"\u003e\u003ccode\u003ec34277c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/pages-gem/issues/923\"\u003e#923\u003c/a\u003e from github/prep-232\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/4565c456bab6bbea3d1f618e7ff7f333571e4951\"\u003e\u003ccode\u003e4565c45\u003c/code\u003e\u003c/a\u003e Prep 232\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/0d149e93f9a1cde29d77052ddc981510c51e9a5a\"\u003e\u003ccode\u003e0d149e9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/pages-gem/issues/921\"\u003e#921\u003c/a\u003e from github/regex\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/fdf1e16adb69567277abd5a5fc9ec4e4f9d7d03c\"\u003e\u003ccode\u003efdf1e16\u003c/code\u003e\u003c/a\u003e Escape all the dots\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/1c47cb2cfdac3f3070093f601ea096970899afb2\"\u003e\u003ccode\u003e1c47cb2\u003c/code\u003e\u003c/a\u003e Fix improperly bound regex\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/43aa23e95ff311daf09da36ee9c6aec9963cd26d\"\u003e\u003ccode\u003e43aa23e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/pages-gem/issues/919\"\u003e#919\u003c/a\u003e from github/parkr-jekyll3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/0a6fecc6683a7780fa9840389d3b49bc9cd18b73\"\u003e\u003ccode\u003e0a6fecc\u003c/code\u003e\u003c/a\u003e Attempt to move webrick to the gemspec instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/f430f404e8863be299ef39a0d6032c5d71da9193\"\u003e\u003ccode\u003ef430f40\u003c/code\u003e\u003c/a\u003e nil webrick test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/48dca23c8ce904c9235ef38915ad067f43cc24ff\"\u003e\u003ccode\u003e48dca23\u003c/code\u003e\u003c/a\u003e cosmetic\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/7b839b231b0a8e753951ebb370bd1ad184281e85\"\u003e\u003ccode\u003e7b839b2\u003c/code\u003e\u003c/a\u003e Add webrick to core\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/github/pages-gem/compare/v228...v232\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `activesupport` from 7.0.5 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactivesupport's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/activesupport/CHANGELOG.md\"\u003eactivesupport's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.3 (March 24, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\n  inflect.acronym \u0026quot;USD\u0026quot;\n  inflect.acronym \u0026quot;USDC\u0026quot;\nend\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ec1a0e215efd27a3b3911aae6df978a80f456a49\"\u003e\u003ccode\u003eec1a0e2\u003c/code\u003e\u003c/a\u003e Improve performance of NumberToDelimitedConverter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/50d732af3b7c8aaf63cbcca0becbc00279b215b7\"\u003e\u003ccode\u003e50d732a\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/19dbab51ca086a657bb86458042bc44314916bcb\"\u003e\u003ccode\u003e19dbab5\u003c/code\u003e\u003c/a\u003e NumberConverter: reject scientific notation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/c315744f2001bdd5cba32d43274adca50b71e289\"\u003e\u003ccode\u003ec315744\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56889\"\u003e#56889\u003c/a\u003e from alpaca-tc/support-spring-on-test-environment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/2ac86a8a9e32fff6bfaacd199957ba4ace0a2256\"\u003e\u003ccode\u003e2ac86a8\u003c/code\u003e\u003c/a\u003e Revert benchmark.rb to a silent shim (\u003ca href=\"https://redirect.github.com/rails/rails/issues/56832\"\u003e#56832\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8e8c95511610c6316084ccd9bc098acfd5e163b8\"\u003e\u003ccode\u003e8e8c955\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56785\"\u003e#56785\u003c/a\u003e from drsharp/dan/fix-json-encoder-bug\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v7.0.5...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.4 to 2.8.9\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.7 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 6 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/535\"\u003esporkmonger/addressable#535\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.6 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMemoize regexps for common character classes (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/524\"\u003e#524\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/524\"\u003e#524\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/524\"\u003esporkmonger/addressable#524\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.5 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix thread safety issue with encoding tables (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDefine URI::NONE as a module to avoid serialization issues (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/509\"\u003e#509\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix YAML serialization (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/508\"\u003e#508\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/508\"\u003e#508\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/508\"\u003esporkmonger/addressable#508\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/509\"\u003e#509\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/509\"\u003esporkmonger/addressable#509\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/515\"\u003e#515\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/515\"\u003esporkmonger/addressable#515\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c4f92fc45a018268c6a204aa0b13017d1e0f49ec\"\u003e\u003ccode\u003ec4f92fc\u003c/code\u003e\u003c/a\u003e CI: skip \u003ccode\u003eRactor\u003c/code\u003e test on Windows to avoid job timeout\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/6aa115f47b5f2e26e5a1dc04d28a9b5663c39a95\"\u003e\u003ccode\u003e6aa115f\u003c/code\u003e\u003c/a\u003e CI: add public_suffix v7 job\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/b860736521cd3b46481db63ed5a3fcc4e1bee1f7\"\u003e\u003ccode\u003eb860736\u003c/code\u003e\u003c/a\u003e CI: drop macos-14, add macos-26\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/45dd2d3e581cb6fece8829534a1d14826b27e6b2\"\u003e\u003ccode\u003e45dd2d3\u003c/code\u003e\u003c/a\u003e CI: Use Windows 2025 (\u003ccode\u003ewindows-latest\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/6b5a7d6588d8e3a9740cb5916a182eda260a95cf\"\u003e\u003ccode\u003e6b5a7d6\u003c/code\u003e\u003c/a\u003e CI: timeouts for all jobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d931e7fdc79d878f240fa4706b89cb01e171\"\u003e\u003ccode\u003e5fc1d93\u003c/code\u003e\u003c/a\u003e No need for bundler as development dependency\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.4...addressable-2.8.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `coffee-script-source` from 1.11.1 to 1.12.2\n\nUpdates `commonmarker` from 0.23.9 to 0.23.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gjtorikian/commonmarker/releases\"\u003ecommonmarker's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.23.12\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gjtorikian/commonmarker/compare/v0.23.11...v0.23.12\"\u003ehttps://github.com/gjtorikian/commonmarker/compare/v0.23.11...v0.23.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.23.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[0.x] Fix memory leaks of string buffers by \u003ca href=\"https://github.com/jhawthorn\"\u003e\u003ccode\u003e@​jhawthorn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gjtorikian/commonmarker/pull/320\"\u003egjtorikian/commonmarker#320\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jhawthorn\"\u003e\u003ccode\u003e@​jhawthorn\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gjtorikian/commonmarker/pull/320\"\u003egjtorikian/commonmarker#320\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gjtorikian/commonmarker/compare/v0.23.10...v0.23.11\"\u003ehttps://github.com/gjtorikian/commonmarker/compare/v0.23.10...v0.23.11\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.23.10\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate to 0.29.0.gfm.13 by \u003ca href=\"https://github.com/anticomputer\"\u003e\u003ccode\u003e@​anticomputer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gjtorikian/commonmarker/pull/247\"\u003egjtorikian/commonmarker#247\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gjtorikian/commonmarker/compare/v0.23.9...v0.23.10\"\u003ehttps://github.com/gjtorikian/commonmarker/compare/v0.23.9...v0.23.10\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/cd435f7bb1a2c53e9ca3bb95b389c7d777083921\"\u003e\u003ccode\u003ecd435f7\u003c/code\u003e\u003c/a\u003e Support GCC15\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/1d6e5ebe031c7b11012039340d079d4eb60f61cd\"\u003e\u003ccode\u003e1d6e5eb\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eappend_cflags\u003c/code\u003e instead of modifying \u003ccode\u003eCFLAGS\u003c/code\u003e directly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/5d9976be667491db7bcbad2840e448ce67ce438f\"\u003e\u003ccode\u003e5d9976b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gjtorikian/commonmarker/issues/320\"\u003e#320\u003c/a\u003e from jhawthorn/c-api-stable-memory-leaks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/b0df48c5bd8e3512b5ce32b421d13650760f7ce4\"\u003e\u003ccode\u003eb0df48c\u003c/code\u003e\u003c/a\u003e Bump version to 0.23.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/36b34b90d7b4924da5c81fcfb029dbd79b09ca5c\"\u003e\u003ccode\u003e36b34b9\u003c/code\u003e\u003c/a\u003e Fix memory leaks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/db8cd377b54541f7fd484d168b7682a282a680f7\"\u003e\u003ccode\u003edb8cd37\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gjtorikian/commonmarker/issues/247\"\u003e#247\u003c/a\u003e from anticomputer/update-to-0.29.0.gfm.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/e1e450c381e1fac5021a08bdc5f72bbac9cf6038\"\u003e\u003ccode\u003ee1e450c\u003c/code\u003e\u003c/a\u003e :gem: release 0.23.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/08b7c4b96c2835edcc2f14e978f758f6ac58b158\"\u003e\u003ccode\u003e08b7c4b\u003c/code\u003e\u003c/a\u003e Update cmark-upstream to \u003ca href=\"https://github.com/github/cmark-gfm/commit/587a12bb5\"\u003ehttps://github.com/github/cmark-gfm/commit/587a12bb5\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/d0e81e2392861ad3f6f27e895080cdfc6a8e72e7\"\u003e\u003ccode\u003ed0e81e2\u003c/code\u003e\u003c/a\u003e I've used this version of the update_submodules script for several releases, ...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/gjtorikian/commonmarker/compare/v0.23.9...v0.23.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `concurrent-ruby` from 1.2.2 to 1.3.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/releases\"\u003econcurrent-ruby's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.3.6\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRun tests without the C extension in CI by \u003ca href=\"https://github.com/eregon\"\u003e\u003ccode\u003e@​eregon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1081\"\u003eruby-concurrency/concurrent-ruby#1081\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix typo in Promise docs by \u003ca href=\"https://github.com/danieldiekmeier\"\u003e\u003ccode\u003e@​danieldiekmeier\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1083\"\u003eruby-concurrency/concurrent-ruby#1083\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect word in readme by \u003ca href=\"https://github.com/wwahammy\"\u003e\u003ccode\u003e@​wwahammy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1084\"\u003eruby-concurrency/concurrent-ruby#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix mistakes in MVar documentation by \u003ca href=\"https://github.com/trinistr\"\u003e\u003ccode\u003e@​trinistr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1087\"\u003eruby-concurrency/concurrent-ruby#1087\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix multi require concurrent/executor/cached_thread_pool by \u003ca href=\"https://github.com/OuYangJinTing\"\u003e\u003ccode\u003e@​OuYangJinTing\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1085\"\u003eruby-concurrency/concurrent-ruby#1085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse typed data APIs by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1096\"\u003eruby-concurrency/concurrent-ruby#1096\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Joshua Young to the list of maintainers by \u003ca href=\"https://github.com/eregon\"\u003e\u003ccode\u003e@​eregon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1097\"\u003eruby-concurrency/concurrent-ruby#1097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAsynchronous pruning for RubyThreadPoolExecutor by \u003ca href=\"https://github.com/joshuay03\"\u003e\u003ccode\u003e@​joshuay03\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1082\"\u003eruby-concurrency/concurrent-ruby#1082\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMark RubySingleThreadExecutor as a SerialExecutorService by \u003ca href=\"https://github.com/meineerde\"\u003e\u003ccode\u003e@​meineerde\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1070\"\u003eruby-concurrency/concurrent-ruby#1070\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow TimerTask to be safely restarted after shutdown and avoid duplicate tasks by \u003ca href=\"https://github.com/bensheldon\"\u003e\u003ccode\u003e@​bensheldon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1001\"\u003eruby-concurrency/concurrent-ruby#1001\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFlaky test fix: allow ThreadPool to shutdown before asserting completed_task_count by \u003ca href=\"https://github.com/bensheldon\"\u003e\u003ccode\u003e@​bensheldon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1098\"\u003eruby-concurrency/concurrent-ruby#1098\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eThreadPoolExecutor#kill\u003c/code\u003e will \u003ccode\u003ewait_for_termination\u003c/code\u003e in JRuby; ensure \u003ccode\u003eTimerSet\u003c/code\u003e timer thread shuts down cleanly by \u003ca href=\"https://github.com/bensheldon\"\u003e\u003ccode\u003e@​bensheldon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1044\"\u003eruby-concurrency/concurrent-ruby#1044\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/danieldiekmeier\"\u003e\u003ccode\u003e@​danieldiekmeier\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1083\"\u003eruby-concurrency/concurrent-ruby#1083\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wwahammy\"\u003e\u003ccode\u003e@​wwahammy\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1084\"\u003eruby-concurrency/concurrent-ruby#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trinistr\"\u003e\u003ccode\u003e@​trinistr\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1087\"\u003eruby-concurrency/concurrent-ruby#1087\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/OuYangJinTing\"\u003e\u003ccode\u003e@​OuYangJinTing\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1085\"\u003eruby-concurrency/concurrent-ruby#1085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1096\"\u003eruby-concurrency/concurrent-ruby#1096\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/joshuay03\"\u003e\u003ccode\u003e@​joshuay03\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1082\"\u003eruby-concurrency/concurrent-ruby#1082\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/compare/v1.3.5...v1.3.6\"\u003ehttps://github.com/ruby-concurrency/concurrent-ruby/compare/v1.3.5...v1.3.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.3.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove dependency on logger by \u003ca href=\"https://github.com/eregon\"\u003e\u003ccode\u003e@​eregon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1062\"\u003eruby-concurrency/concurrent-ruby#1062\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid error when member is present on ancestor class by \u003ca href=\"https://github.com/francesmcmullin\"\u003e\u003ccode\u003e@​francesmcmullin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1068\"\u003eruby-concurrency/concurrent-ruby#1068\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet rake-compiler source and target to Java 8 by \u003ca href=\"https://github.com/headius\"\u003e\u003ccode\u003e@​headius\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1071\"\u003eruby-concurrency/concurrent-ruby#1071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix typos by \u003ca href=\"https://github.com/chenrui333\"\u003e\u003ccode\u003e@​chenrui333\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1076\"\u003eruby-concurrency/concurrent-ruby#1076\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/francesmcmullin\"\u003e\u003ccode\u003e@​francesmcmullin\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1068\"\u003eruby-concurrency/concurrent-ruby#1068\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chenrui333\"\u003e\u003ccode\u003e@​chenrui333\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1076\"\u003eruby-concurrency/concurrent-ruby#1076\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/compare/v1.3.4...v1.3.5\"\u003ehttps://github.com/ruby-concurrency/concurrent-ruby/compare/v1.3.4...v1.3.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.3.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate comment for JRuby variant of processor_count to reality by \u003ca href=\"https://github.com/meineerde\"\u003e\u003ccode\u003e@​meineerde\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1054\"\u003eruby-concurrency/concurrent-ruby#1054\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eConcurrent.cpu_requests\u003c/code\u003e that is cgroups aware. by \u003ca href=\"https://github.com/heka1024\"\u003e\u003ccode\u003e@​heka1024\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1058\"\u003eruby-concurrency/concurrent-ruby#1058\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix the doc of \u003ccode\u003eConcurrent.available_processor_count\u003c/code\u003e by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1059\"\u003eruby-concurrency/concurrent-ruby#1059\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix the return value of \u003ccode\u003eConcurrent.available_processor_count\u003c/code\u003e when \u003ccode\u003ecpu.cfs_quota_us\u003c/code\u003e is -1 by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1060\"\u003eruby-concurrency/concurrent-ruby#1060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heka1024\"\u003e\u003ccode\u003e@​heka1024\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1058\"\u003eruby-concurrency/concurrent-ruby#1058\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1059\"\u003eruby-concurrency/concurrent-ruby#1059\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/blob/master/CHANGELOG.md\"\u003econcurrent-ruby's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v1.3.6 (13 December 2025)\u003c/h2\u003e\n\u003cp\u003econcurrent-ruby:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eSee the \u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/releases/tag/v1.3.6\"\u003erelease notes on GitHub\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.3.5, edge v0.7.2 (15 January 2025)\u003c/h2\u003e\n\u003cp\u003econcurrent-ruby:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1062\"\u003e#1062\u003c/a\u003e) Remove dependency on logger.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003econcurrent-ruby-edge:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1062\"\u003e#1062\u003c/a\u003e) Remove dependency on logger.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.3.4 (10 August 2024)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1060\"\u003e#1060\u003c/a\u003e) Fix bug with return value of \u003ccode\u003eConcurrent.available_processor_count\u003c/code\u003e when \u003ccode\u003ecpu.cfs_quota_us\u003c/code\u003e is -1.\u003c/li\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1058\"\u003e#1058\u003c/a\u003e) Add \u003ccode\u003eConcurrent.cpu_shares\u003c/code\u003e that is cgroups aware.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.3.3 (9 June 2024)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1053\"\u003e#1053\u003c/a\u003e) Improve the speed of \u003ccode\u003eConcurrent.physical_processor_count\u003c/code\u003e on Windows.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.3.2, edge v0.7.1 (7 June 2024)\u003c/h2\u003e\n\u003cp\u003econcurrent-ruby:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1051\"\u003e#1051\u003c/a\u003e) Remove dependency on \u003ccode\u003ewin32ole\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003econcurrent-ruby-edge:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1052\"\u003e#1052\u003c/a\u003e) Fix dependency on \u003ccode\u003econcurrent-ruby\u003c/code\u003e to allow the latest release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.3.1 (29 May 2024)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRelease 1.3.0 was broken when pushed to RubyGems. 1.3.1 is a packaging fix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.3.0 (28 May 2024)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1042\"\u003e#1042\u003c/a\u003e) Align Java Executor Service behavior for \u003ccode\u003eshuttingdown?\u003c/code\u003e, \u003ccode\u003eshutdown?\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1038\"\u003e#1038\u003c/a\u003e) Add \u003ccode\u003eConcurrent.available_processor_count\u003c/code\u003e that is cgroups aware.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.2.3 (16 Jan 2024)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSee \u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/releases/tag/v1.2.3\"\u003ethe GitHub release\u003c/a\u003e for details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/dba776697b17b564f5cd9c6f2597adbc9b698724\"\u003e\u003ccode\u003edba7766\u003c/code\u003e\u003c/a\u003e Release 1.3.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/49b7552025d0be5c30181478170d699be2c1d494\"\u003e\u003ccode\u003e49b7552\u003c/code\u003e\u003c/a\u003e Exclude dependabot updates from release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/048f5d05ba8dee915ed96d4b87a54d4ee233d1b5\"\u003e\u003ccode\u003e048f5d0\u003c/code\u003e\u003c/a\u003e ThreadPoolExecutor \u003ccode\u003ekill\u003c/code\u003e will \u003ccode\u003ewait_for_termination\u003c/code\u003e in JRuby; ensure TimerS...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/4e340ede6a0104d6e4e2bd0dc3c8f1cd4cdac483\"\u003e\u003ccode\u003e4e340ed\u003c/code\u003e\u003c/a\u003e Flaky test fix: allow ThreadPool to shutdown before asserting completed_task_...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/4dc8de3f57d81e1c6cade7386c417770ba5d39bc\"\u003e\u003ccode\u003e4dc8de3\u003c/code\u003e\u003c/a\u003e Allow TimerTask to be safely restarted after shutdown and avoid duplicate tas...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/47cf3a1955725c56bb411db65c0862e80816d306\"\u003e\u003ccode\u003e47cf3a1\u003c/code\u003e\u003c/a\u003e Mark RubySingleThreadExecutor as a SerialExecutorService\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/572d44c46e3cb5baae4551754526eb7aeaaf34a1\"\u003e\u003ccode\u003e572d44c\u003c/code\u003e\u003c/a\u003e Asynchronous pruning for RubyThreadPoolExecutor (\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1082\"\u003e#1082\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/e25e34cbff1e6647621ea03d6208ef5cf55df28c\"\u003e\u003ccode\u003ee25e34c\u003c/code\u003e\u003c/a\u003e Add Joshua Young to the list of maintainers (\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1097\"\u003e#1097\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/978eed6c317c523a5ce31769bdf46c0f947e6fdb\"\u003e\u003ccode\u003e978eed6\u003c/code\u003e\u003c/a\u003e Use typed data APIs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/eacd77a07c65c2d9ad6eb0a197222da118cb68d1\"\u003e\u003ccode\u003eeacd77a\u003c/code\u003e\u003c/a\u003e Use stdatomic.h on recent macOS\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/compare/v1.2.2...v1.3.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dnsruby` from 1.70.0 to 1.73.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alexdalitz/dnsruby/blob/master/RELEASE_NOTES.md\"\u003ednsruby's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.73.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(caa): add support for issuevmc (\u003ca href=\"https://redirect.github.com/alexdalitz/dnsruby/issues/214\"\u003e#214\u003c/a\u003e) - thanks Mark McDonnell!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.73.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRuby 3.4 updates - thanks \u003ca href=\"https://github.com/zarqman\"\u003e\u003ccode\u003e@​zarqman\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eEnable setting up a custom UDP size when DNSSEC validation is disabled\u003c/li\u003e\n\u003cli\u003eEDNS OPT RR for udp_size \u0026gt; 512 - thanks \u003ca href=\"https://github.com/mrideout\"\u003e\u003ccode\u003e@​mrideout\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eTest code improvements - thanks \u003ca href=\"https://github.com/mrideout\"\u003e\u003ccode\u003e@​mrideout\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003ebase64 gem version fixes\u003c/li\u003e\n\u003cli\u003eFix for file descriptor leak on truncated UDP messages\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.72.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eallow parsing case insensitive property tags for CAA records - thanks ruby-dev!\u003c/li\u003e\n\u003cli\u003eAdd logger as a dependency for Ruby 3.5.0+ support - thanks Alexandre ZANNI!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.72.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix cached answer response time - thanks Andre Meij!\u003c/li\u003e\n\u003cli\u003eAdd base64 as a dependency for Ruby 3.4.0+ support - thanks Alexandre ZANNI!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.72.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eInvalid CAA handling fixes - thanks Noah Smethwick and Ryan Doherty!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev.1.72.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd issuemail CAA record support - thanks Ryan Doherty!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev.1.72.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix compatibility with the \u003ccode\u003e--enable-string-literal\u003c/code\u003e Ruby option - thanks Jean byroot Boussier!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev.1.71.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix assigning public_key in ECDSA - thanks Jiří Kubíček!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev.1.70.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenSSL 3 support\u003c/li\u003e\n\u003cli\u003eResource record hashes no longer include the rdata\u003c/li\u003e\n\u003cli\u003eRemoved requite to title-cased Digest - thanks jhawthron\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev.1.61.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove unused net-ftp dependency\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev.1.61.8\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/alexdalitz/dnsruby/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ethon` from 0.16.0 to 0.18.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typhoeus/ethon/blob/master/CHANGELOG.md\"\u003eethon's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.18.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/typhoeus/ethon/compare/v0.17.0...v0.18.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFixed verbose mode attempting to print binary SSL data by replacing it with a summary.\n(\u003ca href=\"https://github.com/felipedmesquita\"\u003eFelipe Mesquita\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFixed \u003ccode\u003eon_headers\u003c/code\u003e callbacks being called once per header line instead of once for all headers.\n(\u003ca href=\"https://github.com/felipedmesquita\"\u003eFelipe Mesquita\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eStabilized test server boot on macOS by fixing IPv6/IPv4 localhost resolution and preventing orphaned processes.\n(\u003ca href=\"https://github.com/tagliala\"\u003eGeremia Taglialatela\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003elogger\u003c/code\u003e to runtime dependencies for Ruby 3.5+ compatibility.\n(\u003ca href=\"https://github.com/tagliala\"\u003eGeremia Taglialatela\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eOpted-in for MFA requirement explicitly by adding \u003ccode\u003erubygems_mfa_required\u003c/code\u003e metadata.\n(\u003ca href=\"https://github.com/tagliala\"\u003eGeremia Taglialatela\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemoved redundant encoding and require_relative checks.\n(\u003ca href=\"https://github.com/tagliala\"\u003eGeremia Taglialatela\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/258\"\u003e#258\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.17.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/typhoeus/ethon/compare/v0.16.0...v0.17.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Ruby 2.6+ and simplify Gemfile.\n(\u003ca href=\"https://github.com/felipedmesquita\"\u003eFelipe Mesquita\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFixed mismatched libcurl error codes in \u003ccode\u003eeasy_codes\u003c/code\u003e array.\n(\u003ca href=\"https://github.com/felipedmesquita\"\u003eFelipe Mesquita\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd Ruby 3.3 and 3.4, remove Ruby 2.5 from CI matrix.\n(\u003ca href=\"https://github.com/felipedmesquita\"\u003eFelipe Mesquita\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSkip test due to libcurl 8.7.x bug in CURLINFO_REQUEST_SIZE.\n(\u003ca href=\"https://github.com/felipedmesquita\"\u003eFelipe Mesquita\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/251\"\u003e#251\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003eRackup::Handler.default\u003c/code\u003e for Rack 3 compatibility.\n(\u003ca href=\"https://github.com/voxik\"\u003eVít Ondruch\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/244\"\u003e#244\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd Ruby 3.1 and 3.2 to the test matrix.\n(\u003ca href=\"https://github.com/orien\"\u003eOrien Madgwick\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/228\"\u003e#228\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove development and test files from the gem package.\n(\u003ca href=\"https://github.com/orien\"\u003eOrien Madgwick\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/227\"\u003e#227\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing parenthesis in example.\n(\u003ca href=\"https://github.com/atsalolikhin-spokeo\"\u003eAleksey Tsalolikhin\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/226\"\u003e#226\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/d48d24a01b16a65a377d5cc801e9c422f2932615\"\u003e\u003ccode\u003ed48d24a\u003c/code\u003e\u003c/a\u003e release v0.18.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/f3def840644edaaff2d08074c886053bf3766583\"\u003e\u003ccode\u003ef3def84\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/typhoeus/ethon/issues/265\"\u003e#265\u003c/a\u003e from felipedmesquita/fix-verbose-mode-attempting-to-p...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/1765b2474b5012928029457a89afe245d4e208f3\"\u003e\u003ccode\u003e1765b24\u003c/code\u003e\u003c/a\u003e replace broken ssl data with a summary inspired by curl cli\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/4a1700c2856de9e139cbd2c91a787c1ff88edd36\"\u003e\u003ccode\u003e4a1700c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/typhoeus/ethon/issues/264\"\u003e#264\u003c/a\u003e from felipedmesquita/fix-on_headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/715d3959d70f50c8ff8d40c1c5b8cb38c135fc8f\"\u003e\u003ccode\u003e715d395\u003c/code\u003e\u003c/a\u003e keep support for :abort from on_headers by aborting on_body\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/4be2cef9bd06567fbafbd3be6c62bd737ca28517\"\u003e\u003ccode\u003e4be2cef\u003c/code\u003e\u003c/a\u003e can't run user callbacks here, libcurl calls this once per header line\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/a7af5c2143259bbe73472025b0e7023bccbca5df\"\u003e\u003ccode\u003ea7af5c2\u003c/code\u003e\u003c/a\u003e mutable reference prevented this test from breaking when it should have\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/b5f755dd7889af8fbc3f97c1c846f0ab0720ba20\"\u003e\u003ccode\u003eb5f755d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/typhoeus/ethon/issues/261\"\u003e#261\u003c/a\u003e from tagliala/chore/260-allow-specs-to-run-on-mac\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/3d7a9ca586f2da6a14b443e6d94e7390b110645d\"\u003e\u003ccode\u003e3d7a9ca\u003c/code\u003e\u003c/a\u003e Stabilize test server boot on macOS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/0e80211ddedfe626c862fa16afd2e021290861bb\"\u003e\u003ccode\u003e0e80211\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/typhoeus/ethon/issues/259\"\u003e#259\u003c/a\u003e from tagliala/feature/242-add-logger\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/typhoeus/ethon/compare/v0.16.0...v0.18.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `execjs` from 2.8.1 to 2.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/execjs/releases\"\u003eexecjs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.9.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle Bun priting loaded env variables on STDERR by \u003ca href=\"https://github.com/byroot\"\u003e\u003ccode\u003e@​byroot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/131\"\u003erails/execjs#131\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/execjs/compare/v2.9.0...v2.9.1\"\u003ehttps://github.com/rails/execjs/compare/v2.9.0...v2.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd runtime using GraalJS on TruffleRuby by \u003ca href=\"https://github.com/eregon\"\u003e\u003ccode\u003e@​eregon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/107\"\u003erails/execjs#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove \u003ccode\u003eEncoding\u003c/code\u003e handling by \u003ca href=\"https://github.com/casperisfine\"\u003e\u003ccode\u003e@​casperisfine\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/111\"\u003erails/execjs#111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdapt ExecJS::GraalJSRuntime to foreign exception changes in TruffleRuby by \u003ca href=\"https://github.com/eregon\"\u003e\u003ccode\u003e@​eregon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/112\"\u003erails/execjs#112\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove outdated Encoding workaround by \u003ca href=\"https://github.com/byroot\"\u003e\u003ccode\u003e@​byroot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/113\"\u003erails/execjs#113\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConvert Symbol explicitly to a JS String and add test by \u003ca href=\"https://github.com/eregon\"\u003e\u003ccode\u003e@​eregon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/117\"\u003erails/execjs#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSkip \u003ccode\u003eeval code@\u003c/code\u003e line thrown by Apple JavaScriptCore by \u003ca href=\"https://github.com/amatsuda\"\u003e\u003ccode\u003e@​amatsuda\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/124\"\u003erails/execjs#124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Bun as an available runtime by \u003ca href=\"https://github.com/terracatta\"\u003e\u003ccode\u003e@​terracatta\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/127\"\u003erails/execjs#127\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eregon\"\u003e\u003ccode\u003e@​eregon\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/107\"\u003erails/execjs#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tisba\"\u003e\u003ccode\u003e@​tisba\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/123\"\u003erails/execjs#123\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amatsuda\"\u003e\u003ccode\u003e@​amatsuda\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/124\"\u003erails/execjs#124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terracatta\"\u003e\u003ccode\u003e@​terracatta\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/127\"\u003erails/execjs#127\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/execjs/compare/v2.8.1...v2.9.0\"\u003ehttps://github.com/rails/execjs/compare/v2.8.1...v2.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/06feba503e961f0c1613e0b66a69937e3ce02e95\"\u003e\u003ccode\u003e06feba5\u003c/code\u003e\u003c/a\u003e Release 2.10.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/86cb852dc4c66f7616a97b1d8c97a487c3889534\"\u003e\u003ccode\u003e86cb852\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/execjs/issues/143\"\u003e#143\u003c/a\u003e from noesya/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/7594b6bb38ac3e8fff82ef5d00a3b22e53ebb4a2\"\u003e\u003ccode\u003e7594b6b\u003c/code\u003e\u003c/a\u003e autodetect runtime for tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/3ecf76890d973bb2c217cf80f88378f7ae6d0c4b\"\u003e\u003ccode\u003e3ecf768\u003c/code\u003e\u003c/a\u003e prevent runtime autodetect on require\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/ea4731de8b7b68de8404029c2f3d52eacefabec7\"\u003e\u003ccode\u003eea4731d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/execjs/issues/135\"\u003e#135\u003c/a\u003e from reesericci/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/3ab72a6224c1624d965116da63e55dc2dbbafb3f\"\u003e\u003ccode\u003e3ab72a6\u003c/code\u003e\u003c/a\u003e refactor and add test case\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/45043f1c2db1af330dbf8972af517688b24975a3\"\u003e\u003ccode\u003e45043f1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/execjs/issues/141\"\u003e#141\u003c/a\u003e from mattmenefee/update-coffeescript-link\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/4dd71a27fcb7a1d3dd5be42c18e36147fe98cd1b\"\u003e\u003ccode\u003e4dd71a2\u003c/code\u003e\u003c/a\u003e Update link to CoffeeScript source in README.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/e630a1f7c9347c1ba118a1e7ac028ca6e35fc5aa\"\u003e\u003ccode\u003ee630a1f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/execjs/issues/140\"\u003e#140\u003c/a\u003e from m-nakamura145/update-actions-checkout\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/46f73426dcf64362d197f6d1241e9907f40719a3\"\u003e\u003ccode\u003e46f7342\u003c/code\u003e\u003c/a\u003e Bump actions/checkout\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/execjs/compare/v2.8.1...v2.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `faraday` from 2.7.6 to 2.14.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003efaraday's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.14.1\u003c/h2\u003e\n\u003ch2\u003eSecurity Note\u003c/h2\u003e\n\u003cp\u003eThis release contains a security fix, we recommend all users to upgrade as soon as possible.\nA Security Advisory with more details will be posted shortly.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd RFC document for Options architecture refactoring plan by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1644\"\u003elostisland/faraday#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1655\"\u003elostisland/faraday#1655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExplicit top-level namespace reference by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1657\"\u003elostisland/faraday#1657\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\"\u003ehttps://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eNew features ✨\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUse newer \u003ccode\u003eUnprocessableContent\u003c/code\u003e naming for 422 by \u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes 🐞\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eConvert strings to UTF-8 by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eResponse#to_hash\u003c/code\u003e when response not finished yet by \u003ca href=\"https://github.com/yykamei\"\u003e\u003ccode\u003e@​yykamei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1639\"\u003elostisland/faraday#1639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMisc/Docs 📄\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eLint: use \u003ccode\u003efilter_map\u003c/code\u003e by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1637\"\u003elostisland/faraday#1637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003eactions/checkout\u003c/code\u003e from v4 to v5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1636\"\u003elostisland/faraday#1636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes documentation by \u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove error handling logic and add missing test coverage by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1633\"\u003elostisland/faraday#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix type assumption in \u003ccode\u003eFaraday::Error\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1630\"\u003elostisland/faraday#1630\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/16cbd38ef252d25dedf416a4d2510a2f3db10c87\"\u003e\u003ccode\u003e16cbd38\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/a6d3a3a0bf59c2ab307d0abd91bc126aef5561bc\"\u003e\u003ccode\u003ea6d3a3a\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/b23f710d28c0dba169470f568df4017a1e8beea7\"\u003e\u003ccode\u003eb23f710\u003c/code\u003e\u003c/a\u003e Explicit top-level namespace reference (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1657\"\u003e#1657\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/49ba4ac3a7359baed634c12a82386f6c8c717ea8\"\u003e\u003ccode\u003e49ba4ac\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1655\"\u003e#1655\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/51a49bc99d7df6f724d250d64771e1d710576df7\"\u003e\u003ccode\u003e51a49bc\u003c/code\u003e\u003c/a\u003e Ensure Claude reads the guidelines and allow to plan in a gitignored .ai/PLAN...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/894f65cab8f04bcf35e84a2dfd9fc0286dbce340\"\u003e\u003ccode\u003e894f65c\u003c/code\u003e\u003c/a\u003e Add RFC document for Options architecture refactoring plan (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1644\"\u003e#1644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/397e3ded0c5166313bb22f1c0221b36b6023fd0f\"\u003e\u003ccode\u003e397e3de\u003c/code\u003e\u003c/a\u003e Add comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/d98c65cfc254ea2898386e4359428527122abec3\"\u003e\u003ccode\u003ed98c65c\u003c/code\u003e\u003c/a\u003e Update Faraday-specific AI agent guidelines\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/56c18ecb718e30c5a3a0dea9bd2361912af9013c\"\u003e\u003ccode\u003e56c18ec\u003c/code\u003e\u003c/a\u003e Add AI agent guidelines specific to Faraday repository\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/3201a42957d37efc968ee8834ba9b50ed5dde54a\"\u003e\u003ccode\u003e3201a42\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.7.6...v2.14.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `faraday-net_http` from 3.0.2 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday-net_http/releases\"\u003efaraday-net_http's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.4.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse more conservative net-http version constraint by \u003ca href=\"https://github.com/RDeckard\"\u003e\u003ccode\u003e@​RDeckard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/53\"\u003elostisland/faraday-net_http#53\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RDeckard\"\u003e\u003ccode\u003e@​RDeckard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/53\"\u003elostisland/faraday-net_http#53\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday-net_http/compare/v3.4.1...v3.4.2\"\u003ehttps://github.com/lostisland/faraday-net_http/compare/v3.4.1...v3.4.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.4.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare Trusted Publisher by \u003ca href=\"https://github.com/djsmentya\"\u003e\u003ccode\u003e@​djsmentya\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/50\"\u003elostisland/faraday-net_http#50\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/djsmentya\"\u003e\u003ccode\u003e@​djsmentya\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/50\"\u003elostisland/faraday-net_http#50\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday-net_http/compare/v3.4.0...v3.4.1\"\u003ehttps://github.com/lostisland/faraday-net_http/compare/v3.4.0...v3.4.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd HTTPS Proxy support by \u003ca href=\"https://github.com/richardmarbach\"\u003e\u003ccode\u003e@​richardmarbach\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/47\"\u003elostisland/faraday-net_http#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix HTTPS proxy support by \u003ca href=\"https://github.com/richardmarbach\"\u003e\u003ccode\u003e@​richardmarbach\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/48\"\u003elostisland/faraday-net_http#48\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/richardmarbach\"\u003e\u003ccode\u003e@​richardmarbach\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/47\"\u003elostisland/faraday-net_http#47\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday-net_http/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/lostisland/faraday-net_http/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpt-in for MFA requirement explicitly by \u003ca href=\"https://github.com/tagliala\"\u003e\u003ccode\u003e@​tagliala\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/43\"\u003elostisland/faraday-net_http#43\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun CI against \u003ccode\u003emain\u003c/code\u003e branch of Faraday by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/46\"\u003elostisland/faraday-net_http#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eciphers\u003c/code\u003e SSLOptions by \u003ca href=\"https://github.com/womblep\"\u003e\u003ccode\u003e@​womblep\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/45\"\u003elostisland/faraday-net_http#45\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tagliala\"\u003e\u003ccode\u003e@​tagliala\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/43\"\u003elostisland/faraday-net_http#43\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/womblep\"\u003e\u003ccode\u003e@​womblep\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/45\"\u003elostisland/faraday-net_http#45\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday-net_http/compare/v3.2.0...v3.3.0\"\u003ehttps://github.com/lostisland/faraday-net_http/compare/v3.2.0...v3.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded: Support setting SSL client cert as a an ar...\n\n_Description has been truncated_","html_url":"https://github.com/plule/vox-uristi/pull/340","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/plule%2Fvox-uristi/issues/340","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/340/packages"}],"issue_packages":[{"old_version":"3.3.7","new_version":"3.4.2","update_type":"minor","path":null,"pr_created_at":"2026-06-01T01:01:55.000Z","version_change":"3.3.7 → 3.4.2","issue":{"uuid":"4559613809","node_id":"PR_kwDOFt1Lb87hL2Wk","number":208,"state":"open","title":"Bump rexml from 3.3.7 to 3.4.2","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-01T01:01:55.000Z","updated_at":"2026-06-01T01:02:21.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"rexml","old_version":"3.3.7","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [rexml](https://github.com/ruby/rexml) from 3.3.7 to 3.4.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.3.7...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rexml\u0026package-manager=bundler\u0026previous-version=3.3.7\u0026new-version=3.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Automattic/a8c-ci-toolkit-buildkite-plugin/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Automattic/a8c-ci-toolkit-buildkite-plugin/pull/208","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Automattic%2Fa8c-ci-toolkit-buildkite-plugin/issues/208","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/208/packages"}},{"old_version":"3.4.2","new_version":"3.4.4","update_type":"patch","path":null,"pr_created_at":"2026-05-16T06:23:56.000Z","version_change":"3.4.2 → 3.4.4","issue":{"uuid":"4458911143","node_id":"PR_kwDOCSVaMM7cKhYW","number":7367,"state":"closed","title":"build(deps): bump the minor-and-patch group across 1 directory with 67 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-19T03:21:24.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-16T06:23:56.000Z","updated_at":"2026-05-19T03:21:26.000Z","time_to_close":248248,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"minor-and-patch","update_count":67,"packages":[{"name":"aws-actionmailer-ses","old_version":"1.0.0","new_version":"1.1.0","repository_url":"https://github.com/aws/aws-actionmailer-ses-ruby"},{"name":"dotenv-rails","old_version":"3.1.8","new_version":"3.2.0","repository_url":"https://github.com/bkeepers/dotenv"},{"name":"kt-paperclip","old_version":"7.2.2","new_version":"7.3.0","repository_url":"https://github.com/kreeti/kt-paperclip"},{"name":"omniauth","old_version":"2.1.3","new_version":"2.1.4","repository_url":"https://github.com/omniauth/omniauth"},{"name":"omniauth-google-oauth2","old_version":"1.2.1","new_version":"1.2.2","repository_url":"https://github.com/zquestz/omniauth-google-oauth2"},{"name":"rails","old_version":"8.0.5","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"},{"name":"terser","old_version":"1.2.6","new_version":"1.2.7","repository_url":"https://github.com/ahorek/terser-ruby"},{"name":"jbuilder","old_version":"2.14.1","new_version":"2.15.0","repository_url":"https://github.com/rails/jbuilder"},{"name":"devise","old_version":"5.0.3","new_version":"5.0.4","repository_url":"https://github.com/heartcombo/devise"},{"name":"jquery-rails","old_version":"4.6.0","new_version":"4.6.1","repository_url":"https://github.com/rails/jquery-rails"},{"name":"sidekiq","old_version":"8.0.7","new_version":"8.1.5","repository_url":"https://github.com/sidekiq/sidekiq"},{"name":"geocoder","old_version":"1.8.5","new_version":"1.8.6","repository_url":"https://github.com/alexreisner/geocoder"},{"name":"pundit","old_version":"2.5.0","new_version":"2.5.2","repository_url":"https://github.com/varvet/pundit"},{"name":"ahoy_matey","old_version":"5.4.0","new_version":"5.5.0","repository_url":"https://github.com/ankane/ahoy"},{"name":"i18n-js","old_version":"4.2.3","new_version":"4.2.4","repository_url":"https://github.com/fnando/i18n-js"},{"name":"pg","old_version":"1.6.1","new_version":"1.6.3","repository_url":"https://github.com/ged/ruby-pg"},{"name":"bootsnap","old_version":"1.18.6","new_version":"1.24.4","repository_url":"https://github.com/rails/bootsnap"},{"name":"rexml","old_version":"3.4.2","new_version":"3.4.4","repository_url":"https://github.com/ruby/rexml"},{"name":"flipper-redis","old_version":"1.3.6","new_version":"1.4.2","repository_url":"https://github.com/flippercloud/flipper"},{"name":"friendly_id","old_version":"5.5.1","new_version":"5.7.0","repository_url":"https://github.com/norman/friendly_id"},{"name":"rails-i18n","old_version":"8.0.2","new_version":"8.1.0","repository_url":"https://github.com/svenfuchs/rails-i18n"},{"name":"recaptcha","old_version":"5.20.1","new_version":"5.21.2","repository_url":"https://github.com/ambethia/recaptcha"},{"name":"strong_migrations","old_version":"2.5.0","new_version":"2.8.0","repository_url":"https://github.com/ankane/strong_migrations"},{"name":"debug","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/ruby/debug"},{"name":"factory_bot_rails","old_version":"6.5.0","new_version":"6.5.1","repository_url":"https://github.com/thoughtbot/factory_bot_rails"},{"name":"faker","old_version":"3.5.2","new_version":"3.8.0","repository_url":"https://github.com/faker-ruby/faker"},{"name":"rspec-rails","old_version":"8.0.2","new_version":"8.0.4","repository_url":"https://github.com/rspec/rspec-rails"},{"name":"rubocop-performance","old_version":"1.25.0","new_version":"1.26.1","repository_url":"https://github.com/rubocop/rubocop-performance"},{"name":"rubocop-rails","old_version":"2.33.3","new_version":"2.35.0","repository_url":"https://github.com/rubocop/rubocop-rails"},{"name":"rubocop-rspec","old_version":"3.6.0","new_version":"3.9.0","repository_url":"https://github.com/rubocop/rubocop-rspec"},{"name":"rbs_rails","old_version":"0.12.1","new_version":"0.13.1","repository_url":"https://github.com/pocke/rbs_rails"},{"name":"json-schema","old_version":"6.0.0","new_version":"6.2.0","repository_url":"https://github.com/voxpupuli/json-schema"},{"name":"webmock","old_version":"3.25.1","new_version":"3.26.2","repository_url":"https://github.com/bblimke/webmock"},{"name":"undercover","old_version":"0.8.0","new_version":"0.8.5","repository_url":"https://github.com/grodowski/undercover"},{"name":"capybara-playwright-driver","old_version":"0.5.7","new_version":"0.5.9","repository_url":"https://github.com/YusukeIwaki/capybara-playwright-driver"},{"name":"listen","old_version":"3.9.0","new_version":"3.10.0","repository_url":"https://github.com/guard/listen"},{"name":"web-console","old_version":"4.2.1","new_version":"4.3.0","repository_url":"https://github.com/rails/web-console"},{"name":"lookbook","old_version":"2.3.13","new_version":"2.3.14","repository_url":"https://github.com/lookbook-hq/lookbook"},{"name":"oj","old_version":"3.16.11","new_version":"3.17.1","repository_url":"https://github.com/ohler55/oj"},{"name":"rack-attack","old_version":"6.7.0","new_version":"6.8.0","repository_url":"https://github.com/rack/rack-attack"},{"name":"aws-sdk-s3","old_version":"1.208.0","new_version":"1.222.0","repository_url":"https://github.com/aws/aws-sdk-ruby"},{"name":"opentelemetry-sdk","old_version":"1.8.1","new_version":"1.12.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby"},{"name":"opentelemetry-exporter-otlp","old_version":"0.30.0","new_version":"0.34.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby"},{"name":"opentelemetry-instrumentation-active_job","old_version":"0.8.0","new_version":"0.12.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby-contrib"},{"name":"maintenance_tasks","old_version":"2.12.0","new_version":"2.16.0","repository_url":"https://github.com/Shopify/maintenance_tasks"},{"name":"stackprof","old_version":"0.2.27","new_version":"0.2.28","repository_url":"https://github.com/tmm1/stackprof"},{"name":"concurrent-ruby","old_version":"1.3.5","new_version":"1.3.6","repository_url":"https://github.com/ruby-concurrency/concurrent-ruby"},{"name":"avo","old_version":"3.31.0","new_version":"3.31.2","repository_url":"https://github.com/avo-hq/avo"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the minor-and-patch group with 48 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-actionmailer-ses](https://github.com/aws/aws-actionmailer-ses-ruby) | `1.0.0` | `1.1.0` |\n| [dotenv-rails](https://github.com/bkeepers/dotenv) | `3.1.8` | `3.2.0` |\n| [kt-paperclip](https://github.com/kreeti/kt-paperclip) | `7.2.2` | `7.3.0` |\n| [omniauth](https://github.com/omniauth/omniauth) | `2.1.3` | `2.1.4` |\n| [omniauth-google-oauth2](https://github.com/zquestz/omniauth-google-oauth2) | `1.2.1` | `1.2.2` |\n| [rails](https://github.com/rails/rails) | `8.0.5` | `8.1.3` |\n| [terser](https://github.com/ahorek/terser-ruby) | `1.2.6` | `1.2.7` |\n| [jbuilder](https://github.com/rails/jbuilder) | `2.14.1` | `2.15.0` |\n| [devise](https://github.com/heartcombo/devise) | `5.0.3` | `5.0.4` |\n| [jquery-rails](https://github.com/rails/jquery-rails) | `4.6.0` | `4.6.1` |\n| [sidekiq](https://github.com/sidekiq/sidekiq) | `8.0.7` | `8.1.5` |\n| [geocoder](https://github.com/alexreisner/geocoder) | `1.8.5` | `1.8.6` |\n| [pundit](https://github.com/varvet/pundit) | `2.5.0` | `2.5.2` |\n| [ahoy_matey](https://github.com/ankane/ahoy) | `5.4.0` | `5.5.0` |\n| [i18n-js](https://github.com/fnando/i18n-js) | `4.2.3` | `4.2.4` |\n| [pg](https://github.com/ged/ruby-pg) | `1.6.1` | `1.6.3` |\n| [bootsnap](https://github.com/rails/bootsnap) | `1.18.6` | `1.24.4` |\n| [rexml](https://github.com/ruby/rexml) | `3.4.2` | `3.4.4` |\n| [flipper-redis](https://github.com/flippercloud/flipper) | `1.3.6` | `1.4.2` |\n| [friendly_id](https://github.com/norman/friendly_id) | `5.5.1` | `5.7.0` |\n| [rails-i18n](https://github.com/svenfuchs/rails-i18n) | `8.0.2` | `8.1.0` |\n| [recaptcha](https://github.com/ambethia/recaptcha) | `5.20.1` | `5.21.2` |\n| [strong_migrations](https://github.com/ankane/strong_migrations) | `2.5.0` | `2.8.0` |\n| [debug](https://github.com/ruby/debug) | `1.11.0` | `1.11.1` |\n| [factory_bot_rails](https://github.com/thoughtbot/factory_bot_rails) | `6.5.0` | `6.5.1` |\n| [faker](https://github.com/faker-ruby/faker) | `3.5.2` | `3.8.0` |\n| [rspec-rails](https://github.com/rspec/rspec-rails) | `8.0.2` | `8.0.4` |\n| [rubocop-performance](https://github.com/rubocop/rubocop-performance) | `1.25.0` | `1.26.1` |\n| [rubocop-rails](https://github.com/rubocop/rubocop-rails) | `2.33.3` | `2.35.0` |\n| [rubocop-rspec](https://github.com/rubocop/rubocop-rspec) | `3.6.0` | `3.9.0` |\n| [rbs_rails](https://github.com/pocke/rbs_rails) | `0.12.1` | `0.13.1` |\n| [json-schema](https://github.com/voxpupuli/json-schema) | `6.0.0` | `6.2.0` |\n| [webmock](https://github.com/bblimke/webmock) | `3.25.1` | `3.26.2` |\n| [undercover](https://github.com/grodowski/undercover) | `0.8.0` | `0.8.5` |\n| [capybara-playwright-driver](https://github.com/YusukeIwaki/capybara-playwright-driver) | `0.5.7` | `0.5.9` |\n| [listen](https://github.com/guard/listen) | `3.9.0` | `3.10.0` |\n| [web-console](https://github.com/rails/web-console) | `4.2.1` | `4.3.0` |\n| [lookbook](https://github.com/lookbook-hq/lookbook) | `2.3.13` | `2.3.14` |\n| [oj](https://github.com/ohler55/oj) | `3.16.11` | `3.17.1` |\n| [rack-attack](https://github.com/rack/rack-attack) | `6.7.0` | `6.8.0` |\n| [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) | `1.208.0` | `1.222.0` |\n| [opentelemetry-sdk](https://github.com/open-telemetry/opentelemetry-ruby) | `1.8.1` | `1.12.0` |\n| [opentelemetry-exporter-otlp](https://github.com/open-telemetry/opentelemetry-ruby) | `0.30.0` | `0.34.0` |\n| [opentelemetry-instrumentation-active_job](https://github.com/open-telemetry/opentelemetry-ruby-contrib) | `0.8.0` | `0.12.0` |\n| [maintenance_tasks](https://github.com/Shopify/maintenance_tasks) | `2.12.0` | `2.16.0` |\n| [stackprof](https://github.com/tmm1/stackprof) | `0.2.27` | `0.2.28` |\n| [concurrent-ruby](https://github.com/ruby-concurrency/concurrent-ruby) | `1.3.5` | `1.3.6` |\n| [avo](https://github.com/avo-hq/avo) | `3.31.0` | `3.31.2` |\n\n\nUpdates `aws-actionmailer-ses` from 1.0.0 to 1.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/releases\"\u003eaws-actionmailer-ses's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v1.1.0 - 2026-03-31\u003c/h2\u003e\n\u003cp\u003eTag release v1.1.0\u003c/p\u003e\n\u003cp\u003eReferences: \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/14\"\u003e#14\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/6\"\u003e#6\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/7\"\u003e#7\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/9\"\u003e#9\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFeature - Support injecting a preconstructed client via \u003ccode\u003e:ses_client\u003c/code\u003e and \u003ccode\u003e:sesv2_client\u003c/code\u003e options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/blob/main/CHANGELOG.md\"\u003eaws-actionmailer-ses's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.1.0 (2026-03-31)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFeature - Support injecting a preconstructed client via \u003ccode\u003e:ses_client\u003c/code\u003e and \u003ccode\u003e:sesv2_client\u003c/code\u003e options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/87d57bae1d2da68729c639da957c89b4f14eef02\"\u003e\u003ccode\u003e87d57ba\u003c/code\u003e\u003c/a\u003e Bumped version to v1.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/55de5a801bc2f819acda6521fa7efab8e72829bb\"\u003e\u003ccode\u003e55de5a8\u003c/code\u003e\u003c/a\u003e Allow precreated SESv2 client (issue \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/7\"\u003e#7\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/14\"\u003e#14\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/0e7a21034d43615e7765bb96c84f09f43fe80e1f\"\u003e\u003ccode\u003e0e7a210\u003c/code\u003e\u003c/a\u003e Scope down GitHub token permissions for ci.yml (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/9\"\u003e#9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/c2b91df4f58ed7da035c953ecfd4f9847da46ebb\"\u003e\u003ccode\u003ec2b91df\u003c/code\u003e\u003c/a\u003e Update CI to include 3.4 (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/6\"\u003e#6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/aab2974887db3c4d525f9e18c3f1ae7c6513d230\"\u003e\u003ccode\u003eaab2974\u003c/code\u003e\u003c/a\u003e Update README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/ce6af36916d5ab9224bf193690d98f539585f208\"\u003e\u003ccode\u003ece6af36\u003c/code\u003e\u003c/a\u003e Added next release section to the changelog. [ci skip]\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/compare/v1.0.0...v1.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv-rails` from 3.1.8 to 3.2.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bkeepers/dotenv/releases\"\u003edotenv-rails's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBoost app startup time by removing to_sentence usage by \u003ca href=\"https://github.com/ThomasCrambert\"\u003e\u003ccode\u003e@​ThomasCrambert\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/534\"\u003ebkeepers/dotenv#534\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHandle parentheses in variables in commands by \u003ca href=\"https://github.com/i7an\"\u003e\u003ccode\u003e@​i7an\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/540\"\u003ebkeepers/dotenv#540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eallow warning when a env var was not overwritten by \u003ca href=\"https://github.com/grosser\"\u003e\u003ccode\u003e@​grosser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/531\"\u003ebkeepers/dotenv#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix a few small issues by \u003ca href=\"https://github.com/grosser\"\u003e\u003ccode\u003e@​grosser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/532\"\u003ebkeepers/dotenv#532\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ThomasCrambert\"\u003e\u003ccode\u003e@​ThomasCrambert\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/534\"\u003ebkeepers/dotenv#534\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i7an\"\u003e\u003ccode\u003e@​i7an\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/540\"\u003ebkeepers/dotenv#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\"\u003ehttps://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/34156bf400cd67387fa6ed9f146778f6a2f5f743\"\u003e\u003ccode\u003e34156bf\u003c/code\u003e\u003c/a\u003e Prepare for 3.2.0 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/ab478201bdb487bfebd9e89875fd4edcf19dc064\"\u003e\u003ccode\u003eab47820\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/531\"\u003e#531\u003c/a\u003e from grosser/grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/fae61202e432f39742e2592817cc7bb38f559852\"\u003e\u003ccode\u003efae6120\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/4f510f41073cabb9786e3a5ea57263933497e696\"\u003e\u003ccode\u003e4f510f4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/532\"\u003e#532\u003c/a\u003e from grosser/grosser/fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/959e1dac9d933a7ffe6a2ab17081f8235b7822a9\"\u003e\u003ccode\u003e959e1da\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/539\"\u003e#539\u003c/a\u003e from bkeepers/dependabot/github_actions/actions/check...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/041451e4ef7fd3a4ea604fcabef0cfb6fb5e79a3\"\u003e\u003ccode\u003e041451e\u003c/code\u003e\u003c/a\u003e Update spec message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/b300f262bdf1cfd6ac5215fd44baa771753702b9\"\u003e\u003ccode\u003eb300f26\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/5f4ca012b03c82343ad3f926e2fd281aa30a434b\"\u003e\u003ccode\u003e5f4ca01\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/209dca47e453f7288aac9f31330e67e3f0b83e78\"\u003e\u003ccode\u003e209dca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/540\"\u003e#540\u003c/a\u003e from i7an/handle-parentheses\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/48c495683008c5dd1816a89329e59f8386324bb2\"\u003e\u003ccode\u003e48c4956\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into handle-parentheses\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `kt-paperclip` from 7.2.2 to 7.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kreeti/kt-paperclip/releases\"\u003ekt-paperclip's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v7.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix BOM for gd locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/158\"\u003e#158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport versions of aws-sdk-s3 \u0026gt;= 1.197 by conditionally using \u003ccode\u003eAws::S3::TransferManager\u003c/code\u003e if available (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/155\"\u003e#155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix frozen string literal warning in geometry.rb (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFeature - add option to return attachment attributes on destroy (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/91\"\u003e#91\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRuby 3.1 - Fix loading of Fog (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/135\"\u003e#135\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/139\"\u003e#139\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFrench Locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/134\"\u003e#134\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oz-tal\"\u003e\u003ccode\u003e@​oz-tal\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/134\"\u003ekreeti/kt-paperclip#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zz9pzza\"\u003e\u003ccode\u003e@​zz9pzza\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/135\"\u003ekreeti/kt-paperclip#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unijewski\"\u003e\u003ccode\u003e@​unijewski\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/91\"\u003ekreeti/kt-paperclip#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lorennorman\"\u003e\u003ccode\u003e@​lorennorman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/146\"\u003ekreeti/kt-paperclip#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cgunther\"\u003e\u003ccode\u003e@​cgunther\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/151\"\u003ekreeti/kt-paperclip#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jukra\"\u003e\u003ccode\u003e@​jukra\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/155\"\u003ekreeti/kt-paperclip#155\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\"\u003ehttps://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kreeti/kt-paperclip/blob/master/CHANGELOG.md\"\u003ekt-paperclip's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e7.3.0 (2026-01-31)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix BOM for gd locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/158\"\u003ekreeti/kt-paperclip#158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport versions of aws-sdk-s3 \u0026gt;= 1.197 by conditionally using Aws::S3::TransferManager if available (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/155\"\u003ekreeti/kt-paperclip#155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix frozen string literal warning in geometry.rb (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/151\"\u003ekreeti/kt-paperclip#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFeature: Add option to return attachment attributes on destroy (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/91\"\u003ekreeti/kt-paperclip#91\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRuby 3.1: Fix loading of Fog (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/135\"\u003ekreeti/kt-paperclip#135\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/139\"\u003ekreeti/kt-paperclip#139\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFrench Locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/134\"\u003ekreeti/kt-paperclip#134\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/818f236aa6f2323bd0055bea664b33187d926377\"\u003e\u003ccode\u003e818f236\u003c/code\u003e\u003c/a\u003e Deperecate NEWS to OLD-NEWS, see release notes for correct and accurate list ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/a38ed66b5d08210a4326b0d78e2116d0946fa3c2\"\u003e\u003ccode\u003ea38ed66\u003c/code\u003e\u003c/a\u003e prepare for new release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/8820cb221210bf04ca2de278dab594adfa46efe5\"\u003e\u003ccode\u003e8820cb2\u003c/code\u003e\u003c/a\u003e [Fix \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/154\"\u003e#154\u003c/a\u003e] remove BOM from gd locale\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/cd5c4496d12894eafa218cb631c592b67c9c10a2\"\u003e\u003ccode\u003ecd5c449\u003c/code\u003e\u003c/a\u003e Fix S3 TransferManager to use configured client\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/f017c401218da5a1e106ed3dd964b51d601bac5b\"\u003e\u003ccode\u003ef017c40\u003c/code\u003e\u003c/a\u003e Make usage of Aws::S3::TransferManager conditional based on availability\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/233b4756745c2610988796a0059408a50d322b92\"\u003e\u003ccode\u003e233b475\u003c/code\u003e\u003c/a\u003e Support aws-sdk-s3 \u0026gt;= 1.196.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/e20e848c80ce16f18dae2162d5e00be0d9b51421\"\u003e\u003ccode\u003ee20e848\u003c/code\u003e\u003c/a\u003e Fix the use of deprecated methods from \u003ccode\u003eaws-sdk-s3\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/5078ca1c33c8cb66865e6127152ac1e240b2bb0a\"\u003e\u003ccode\u003e5078ca1\u003c/code\u003e\u003c/a\u003e Fix frozen string literal warning in geometry.rb (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/153e7dbe462de4f7f3ef42c67f95390e98e6cba7\"\u003e\u003ccode\u003e153e7db\u003c/code\u003e\u003c/a\u003e fix frozen string literal deprecation warning (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/146\"\u003e#146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/83dc8d92e63e4c360bb9f45af1cf3b63d99bed54\"\u003e\u003ccode\u003e83dc8d9\u003c/code\u003e\u003c/a\u003e Update LICENSE\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `omniauth` from 2.1.3 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/omniauth/omniauth/releases\"\u003eomniauth's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ruby 3.4 to CI by \u003ca href=\"https://github.com/tejasbubane\"\u003e\u003ccode\u003e@​tejasbubane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/omniauth/omniauth/pull/1142\"\u003eomniauth/omniauth#1142\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd after_request_phase callback hook by \u003ca href=\"https://github.com/gerardo-navarro\"\u003e\u003ccode\u003e@​gerardo-navarro\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/omniauth/omniauth/pull/1147\"\u003eomniauth/omniauth#1147\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\"\u003ehttps://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eYou may now configure an after_request_phase callback on your omniauth builder instance. This callback will be run after the request phase before returning the request result.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/20ac5e05a39d58d18aca6419599f7176208f985d\"\u003e\u003ccode\u003e20ac5e0\u003c/code\u003e\u003c/a\u003e 3.1.4 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/3a249afad83e4522bd4761404cbdc89fd56a1079\"\u003e\u003ccode\u003e3a249af\u003c/code\u003e\u003c/a\u003e Add after_request_phase callback hook (\u003ca href=\"https://redirect.github.com/omniauth/omniauth/issues/1147\"\u003e#1147\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/0bcfd5b25bf946422cd4d9c40c4f514121ac04d6\"\u003e\u003ccode\u003e0bcfd5b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/omniauth/omniauth/issues/1142\"\u003e#1142\u003c/a\u003e from tejasbubane/ruby-3.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/09ee92e658878f31ab51f29e02d41296cfe36111\"\u003e\u003ccode\u003e09ee92e\u003c/code\u003e\u003c/a\u003e include cgi in test group due to removal of cookie\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/abfde9072cef0e4d89463daf6185ac68520087f7\"\u003e\u003ccode\u003eabfde90\u003c/code\u003e\u003c/a\u003e add dependency on logger\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/844548c8641d1a3b65c9062e67e073fa8bf39936\"\u003e\u003ccode\u003e844548c\u003c/code\u003e\u003c/a\u003e Add Ruby 3.4 to CI\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `omniauth-google-oauth2` from 1.2.1 to 1.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/releases\"\u003eomniauth-google-oauth2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.2.2\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRuby 4.0 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNothing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUnused \u003ccode\u003eIMAGE_SIZE_REGEXP\u003c/code\u003e constant.\u003c/li\u003e\n\u003cli\u003eDead \u003ccode\u003eskip_friends\u003c/code\u003e and \u003ccode\u003eskip_image_info\u003c/code\u003e options (Google+ was shut down in 2019).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplaced \u003ccode\u003eCGI.parse\u003c/code\u003e with \u003ccode\u003eURI.decode_www_form\u003c/code\u003e for Ruby 4.0 compatibility.\u003c/li\u003e\n\u003cli\u003eUpdated gemspec description to reference OmniAuth instead of OmniAuth 1.x.\u003c/li\u003e\n\u003cli\u003eModernized CI: bumped actions/checkout to v6, rake to 13.3, and rubocop to latest.\u003c/li\u003e\n\u003cli\u003eAdded edge case tests for \u003ccode\u003euid\u003c/code\u003e, \u003ccode\u003estrip_unnecessary_query_parameters\u003c/code\u003e, \u003ccode\u003everify_token\u003c/code\u003e, \u003ccode\u003everify_hd\u003c/code\u003e wildcard, and malformed JSON handling.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/blob/master/CHANGELOG.md\"\u003eomniauth-google-oauth2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.2.2 - 2026-02-23\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRuby 4.0 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNothing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUnused \u003ccode\u003eIMAGE_SIZE_REGEXP\u003c/code\u003e constant.\u003c/li\u003e\n\u003cli\u003eDead \u003ccode\u003eskip_friends\u003c/code\u003e and \u003ccode\u003eskip_image_info\u003c/code\u003e options (Google+ was shut down in 2019).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplaced \u003ccode\u003eCGI.parse\u003c/code\u003e with \u003ccode\u003eURI.decode_www_form\u003c/code\u003e for Ruby 4.0 compatibility.\u003c/li\u003e\n\u003cli\u003eUpdated gemspec description to reference OmniAuth instead of OmniAuth 1.x.\u003c/li\u003e\n\u003cli\u003eModernized CI: bumped actions/checkout to v6, rake to 13.3, and rubocop to latest.\u003c/li\u003e\n\u003cli\u003eAdded edge case tests for \u003ccode\u003euid\u003c/code\u003e, \u003ccode\u003estrip_unnecessary_query_parameters\u003c/code\u003e, \u003ccode\u003everify_token\u003c/code\u003e, \u003ccode\u003everify_hd\u003c/code\u003e wildcard, and malformed JSON handling.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/5158faa94a620d8ec4d9ce400aabfef3a3844dd9\"\u003e\u003ccode\u003e5158faa\u003c/code\u003e\u003c/a\u003e Add release date to CHANGELOG.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/c5f46005e0207d2e436cf0db37c85170cca04da7\"\u003e\u003ccode\u003ec5f4600\u003c/code\u003e\u003c/a\u003e Update docs and examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/4c14af8e1e6dc2615da908c50e4b0b757972922e\"\u003e\u003ccode\u003e4c14af8\u003c/code\u003e\u003c/a\u003e Backfill missing tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/e66d0bbe6ad91f9f5a60056dae2ebf850373f249\"\u003e\u003ccode\u003ee66d0bb\u003c/code\u003e\u003c/a\u003e Clean up dead code, modernize CI, and prep 1.2.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/b902e8e7585e8e3610040d9c770f2d4e90b6f132\"\u003e\u003ccode\u003eb902e8e\u003c/code\u003e\u003c/a\u003e Modernize CI: bump rubocop, checkout action, and tooling defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/ac9a979db8ee097971d5d70c12142070c539d8ab\"\u003e\u003ccode\u003eac9a979\u003c/code\u003e\u003c/a\u003e Add Ruby 4.0 to CI (\u003ca href=\"https://redirect.github.com/zquestz/omniauth-google-oauth2/issues/474\"\u003e#474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/d3f1c912e438ccf6aba577c66772bf2e37373d73\"\u003e\u003ccode\u003ed3f1c91\u003c/code\u003e\u003c/a\u003e Add GitHub pages config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/253f023cdd8a5d5e05b3fed9aa00ae478a6c2997\"\u003e\u003ccode\u003e253f023\u003c/code\u003e\u003c/a\u003e Remove calendar scope on example app\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/baaf3b755ea1a02c9f811fd513b0fe90fdd2defb\"\u003e\u003ccode\u003ebaaf3b7\u003c/code\u003e\u003c/a\u003e chore(doc): update JavaScript example in README (\u003ca href=\"https://redirect.github.com/zquestz/omniauth-google-oauth2/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/dcea9d208416b53af0956d95ce54daa424d36490\"\u003e\u003ccode\u003edcea9d2\u003c/code\u003e\u003c/a\u003e Add Ruby 3.3 and 3.4 to CI matrix\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/compare/v1.2.1...v1.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rails` from 8.0.5 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003erails's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/e91694b1f0e176eb01bfcc480a008bffc70f7602\"\u003e\u003ccode\u003ee91694b\u003c/code\u003e\u003c/a\u003e Update CHANGELOG (8.1 only)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63f5ad83edaa0b976f82d46988d745426aa4a42d\"\u003e\u003ccode\u003e63f5ad8\u003c/code\u003e\u003c/a\u003e Skip blank attribute names in Action View tag helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8c9676b803820110548cdb7523800db43bc6874c\"\u003e\u003ccode\u003e8c9676b\u003c/code\u003e\u003c/a\u003e Prevent glob injection in ActiveStorage DiskService#delete_prefixed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/9b06fbc0f504b8afe333f33d19548f3b85fbe655\"\u003e\u003ccode\u003e9b06fbc\u003c/code\u003e\u003c/a\u003e Prevent path traversal in ActiveStorage DiskService\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ec1a0e215efd27a3b3911aae6df978a80f456a49\"\u003e\u003ccode\u003eec1a0e2\u003c/code\u003e\u003c/a\u003e Improve performance of NumberToDelimitedConverter\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v8.0.5...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `terser` from 1.2.6 to 1.2.7\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ahorek/terser-ruby/blob/master/CHANGELOG.md\"\u003eterser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.2.7 (23 March 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadded a new module option to enable minification of ES6 modules (default is false)\u003c/li\u003e\n\u003cli\u003eupdate TerserJS to [5.46.1]\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/14243401aadac062e738fde86525f261c37b1782\"\u003e\u003ccode\u003e1424340\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ahorek/terser-ruby/issues/67\"\u003e#67\u003c/a\u003e from ahorek/terser5461\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/ae1669dba36b571932a25685765932103db89189\"\u003e\u003ccode\u003eae1669d\u003c/code\u003e\u003c/a\u003e terser 5.46.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/c8b1c3213847dfeb85e1769958ecf9753651e697\"\u003e\u003ccode\u003ec8b1c32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ahorek/terser-ruby/issues/64\"\u003e#64\u003c/a\u003e from ahorek/module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/3a614841138d5c1dcf79d6362e22ad5b0a0b19f3\"\u003e\u003ccode\u003e3a61484\u003c/code\u003e\u003c/a\u003e add a module option\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ahorek/terser-ruby/compare/1.2.6...1.2.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jbuilder` from 2.14.1 to 2.15.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/jbuilder/releases\"\u003ejbuilder's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.15.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize \u003ccode\u003eKeyFormatter\u003c/code\u003e on cache hits by \u003ca href=\"https://github.com/moberegger\"\u003e\u003ccode\u003e@​moberegger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/607\"\u003erails/jbuilder#607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake method_missing private by \u003ca href=\"https://github.com/alexceder\"\u003e\u003ccode\u003e@​alexceder\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/614\"\u003erails/jbuilder#614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOptimize \u003ccode\u003earray!\u003c/code\u003e and \u003ccode\u003eset!\u003c/code\u003e by \u003ca href=\"https://github.com/moberegger\"\u003e\u003ccode\u003e@​moberegger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/604\"\u003erails/jbuilder#604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003e:unprocessable_content\u003c/code\u003e for scaffolds with Rack 3.1 or higher by \u003ca href=\"https://github.com/taketo1113\"\u003e\u003ccode\u003e@​taketo1113\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/603\"\u003erails/jbuilder#603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOptimize \u003ccode\u003e_map_collection\u003c/code\u003e by \u003ca href=\"https://github.com/moberegger\"\u003e\u003ccode\u003e@​moberegger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/612\"\u003erails/jbuilder#612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Preserve locals when rendering inline partial for object by \u003ca href=\"https://github.com/moberegger\"\u003e\u003ccode\u003e@​moberegger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/613\"\u003erails/jbuilder#613\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mayur-kambariya\"\u003e\u003ccode\u003e@​mayur-kambariya\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/609\"\u003erails/jbuilder#609\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexceder\"\u003e\u003ccode\u003e@​alexceder\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/614\"\u003erails/jbuilder#614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/taketo1113\"\u003e\u003ccode\u003e@​taketo1113\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rails/jbuilder/pull/603\"\u003erails/jbuilder#603\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/jbuilder/compare/v2.14.1...v2.15.0\"\u003ehttps://github.com/rails/jbuilder/compare/v2.14.1...v2.15.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/018083d55f933c2a1d58929600799724462476e6\"\u003e\u003ccode\u003e018083d\u003c/code\u003e\u003c/a\u003e Prepare for 2.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/72cf0673f5f8428dad00cf09c07e1aac0d6f3e17\"\u003e\u003ccode\u003e72cf067\u003c/code\u003e\u003c/a\u003e Update devcontainer image to Ruby 4.0.4 and add devcontainer-lock.json\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/d35a962709bc0ccc157a9d42f3f428e7aeee687a\"\u003e\u003ccode\u003ed35a962\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jbuilder/issues/615\"\u003e#615\u003c/a\u003e from taketo1113/ci-rails8.1-ruby4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/cc42e7eb979116e37b63cb29ba5e86d4785f2153\"\u003e\u003ccode\u003ecc42e7e\u003c/code\u003e\u003c/a\u003e CI: Add Rails 8.1 \u0026amp; Ruby 4.0 to CI Matrix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/cd7482eebb69bc194587af056aef700291032570\"\u003e\u003ccode\u003ecd7482e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jbuilder/issues/613\"\u003e#613\u003c/a\u003e from affinity/moberegger/fix-inline-partial-locals-be\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/58283a0cbf73fc46753a39c09933b5adc5f9e011\"\u003e\u003ccode\u003e58283a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jbuilder/issues/612\"\u003e#612\u003c/a\u003e from affinity/moberegger/optimize-_map_collection\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/09ca3e12cb603ea27af8c6057c2a38a76fde3ac7\"\u003e\u003ccode\u003e09ca3e1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jbuilder/issues/603\"\u003e#603\u003c/a\u003e from taketo1113/update-rack-unprocessable_content\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/9a921d3b816cd4d858c9aba05c5f30fa9db70e3d\"\u003e\u003ccode\u003e9a921d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jbuilder/issues/604\"\u003e#604\u003c/a\u003e from affinity/moberegger/optimize-set-and-array-dsl\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/363c3c8d850ba8ff198c05131217fcfb026d0c0a\"\u003e\u003ccode\u003e363c3c8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/jbuilder/issues/614\"\u003e#614\u003c/a\u003e from alexceder/make-method-missing-private\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jbuilder/commit/26c236c9353f28b1ac9a5438dea34fcd340c6b6f\"\u003e\u003ccode\u003e26c236c\u003c/code\u003e\u003c/a\u003e Make method_missing private\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/jbuilder/compare/v2.14.1...v2.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `devise` from 5.0.3 to 5.0.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/heartcombo/devise/releases\"\u003edevise's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.0.4\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/heartcombo/devise/blob/v5.0.4/CHANGELOG.md#504---2026-05-08\"\u003ehttps://github.com/heartcombo/devise/blob/v5.0.4/CHANGELOG.md#504---2026-05-08\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/heartcombo/devise/blob/main/CHANGELOG.md\"\u003edevise's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e5.0.4 - 2026-05-08\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esecurity fixes\n\u003cul\u003e\n\u003cli\u003eFix open redirect in \u003ccode\u003eFailureApp\u003c/code\u003e via unvalidated \u003ccode\u003eReferer\u003c/code\u003e header on non-GET session timeout. CVE-2026-40295 \u003ca href=\"https://github.com/heartcombo/devise/security/advisories/GHSA-jp94-3292-c3xv\"\u003eGHSA-jp94-3292-c3xv\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heartcombo/devise/commit/9ea459de9aec5f1217ad738c58e0d23fb9f5beaa\"\u003e\u003ccode\u003e9ea459d\u003c/code\u003e\u003c/a\u003e Release v5.0.4 with sec fix for timeoutable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heartcombo/devise/commit/025fe2124f9928766fc46520e999633b598d0360\"\u003e\u003ccode\u003e025fe21\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heartcombo/devise/commit/7ca7ed9c174525a4d36167441b35af4a0991b6af\"\u003e\u003ccode\u003e7ca7ed9\u003c/code\u003e\u003c/a\u003e Add GHSA link to the v5.0.3 sec fix changelog entry [ci skip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heartcombo/devise/commit/605de86174c26b9f5b2618470249db2c225327d4\"\u003e\u003ccode\u003e605de86\u003c/code\u003e\u003c/a\u003e Update links to https [ci skip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heartcombo/devise/commit/5e3a8bf3a01cc556185dbde47ecf3bb20c41b150\"\u003e\u003ccode\u003e5e3a8bf\u003c/code\u003e\u003c/a\u003e Bundle update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heartcombo/devise/commit/5d202775d75ccee8c36a9ed72062f627202e29e2\"\u003e\u003ccode\u003e5d20277\u003c/code\u003e\u003c/a\u003e Cleanup old Rails.version check for db migration path\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heartcombo/devise/commit/4ffb0b7e88b627ac0575e475b279e0cc474b4ded\"\u003e\u003ccode\u003e4ffb0b7\u003c/code\u003e\u003c/a\u003e Fix Gemfile for Rails 7.2, incorrectly testing against 7.1\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/heartcombo/devise/compare/v5.0.3...v5.0.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jquery-rails` from 4.6.0 to 4.6.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md\"\u003ejquery-rails's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.7.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/034296045427fa54ad095f392fccd9ff5708e110\"\u003e\u003ccode\u003e0342960\u003c/code\u003e\u003c/a\u003e Release v4.6.1 with jQuery v3.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/039b12e91c148d65789030308653545943db43a4\"\u003e\u003ccode\u003e039b12e\u003c/code\u003e\u003c/a\u003e Update jquery to v3.7.1 (\u003ca href=\"https://redirect.github.com/rails/jquery-rails/issues/305\"\u003e#305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/jquery-rails/compare/v4.6.0...v4.6.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sidekiq` from 8.0.7 to 8.1.5\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sidekiq/sidekiq/blob/main/Changes.md\"\u003esidekiq's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eIdentify Sidekiq connnections in Redis with \u003ccode\u003eCLIENT SETINFO\u003c/code\u003e \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6986\"\u003e#6986\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix edge case where Web UI could show an empty Batch set \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6987\"\u003e#6987\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe TTIN signal is undeprecated as the INFO signal is not supported on Linux\u003c/li\u003e\n\u003cli\u003eShow iteration job state on Busy page \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6978\"\u003e#6978\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix edge case leading to duplicate, concurrent execution \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6379\"\u003e#6379\u003c/a\u003e\nIf 2 Capsules process jobs from the same queue, long-running\njobs could run in parallel during process shutdown.\u003c/li\u003e\n\u003cli\u003e[SECURITY] Remove as much YAML usage as possible. \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6950\"\u003e#6950\u003c/a\u003e\nLocalization files in \u003ccode\u003eweb/locales\u003c/code\u003e are now manually parsed.\nSidekiq::CLI will now only require YAML if you use a \u003ccode\u003e-C\u003c/code\u003e .yml file.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eInitial release for \u003ccode\u003ekiq\u003c/code\u003e, Sidekiq's official terminal UI:\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003ebundle exec kiq\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eUse REDIS_URL or REDIS_PROVIDER to point \u003ccode\u003ekiq\u003c/code\u003e to Redis.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eMutation during iteration in \u003ccode\u003eSortedSet#each\u003c/code\u003e caused it to miss half of the jobs \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6936\"\u003e#6936\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix edge case resulting in nil crash on /busy page \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6954\"\u003e#6954\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDEPRECATION\u003c/strong\u003e \u003ccode\u003erequire 'sidekiq/testing'\u003c/code\u003e and\n\u003ccode\u003erequire 'sidekiq/testing/inline'\u003c/code\u003e.\nAdd new \u003ccode\u003eSidekiq.testing!(mode)\u003c/code\u003e API \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6931\"\u003e#6931\u003c/a\u003e\nRequiring code should not enable process-wide changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003e# Old, implicit\nrequire \u0026quot;sidekiq/testing\u0026quot;\nrequire \u0026quot;sidekiq/testing/inline\u0026quot;\n# New, more explicit\nSidekiq.testing!(:fake)\nSidekiq.testing!(:inline)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eFix race condition with Stop button in UI \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6935\"\u003e#6935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix javascript error handler \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6893\"\u003e#6893\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/5c049c585a2eb4c91b1a163589d72465e99aad7e\"\u003e\u003ccode\u003e5c049c5\u003c/code\u003e\u003c/a\u003e changes [ciskip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/0bafeb1084b9c7a5edcf0bc507108b4603682597\"\u003e\u003ccode\u003e0bafeb1\u003c/code\u003e\u003c/a\u003e bump, release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/2a4eec2dd323adb32f333b4416ca167bf4b83a92\"\u003e\u003ccode\u003e2a4eec2\u003c/code\u003e\u003c/a\u003e Identify Sidekiq connections via CLIENT SETINFO (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6986\"\u003e#6986\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/6bdf6903e93eeaf9b96fcbbe66f503fe758ee4b2\"\u003e\u003ccode\u003e6bdf690\u003c/code\u003e\u003c/a\u003e Fix: don't cache \u0026quot;none\u0026quot; type in Paginator::TYPE_CACHE (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6987\"\u003e#6987\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/28b37b722c58d89593620c3733d3dcd87f6e6e08\"\u003e\u003ccode\u003e28b37b7\u003c/code\u003e\u003c/a\u003e release [ciskip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/4d0adda70769168a675bb260d2790d76f6849188\"\u003e\u003ccode\u003e4d0adda\u003c/code\u003e\u003c/a\u003e fmt, bump\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/906fb6837a2b42a5330b3748bdb4007ec06666ff\"\u003e\u003ccode\u003e906fb68\u003c/code\u003e\u003c/a\u003e sidekiq changes [ciskip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/92924ab48a80cf31148fd7ab4cd2e561d5bf823a\"\u003e\u003ccode\u003e92924ab\u003c/code\u003e\u003c/a\u003e ent changes [ciskip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/c6bd7b89e9bb825bc9c4969712828ef88b6d84bc\"\u003e\u003ccode\u003ec6bd7b8\u003c/code\u003e\u003c/a\u003e Add new keys to gd translation (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6984\"\u003e#6984\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/29542380a69b23453f7e6e429ef96fe5fd62e3c9\"\u003e\u003ccode\u003e2954238\u003c/code\u003e\u003c/a\u003e tui: implement locale-aware number_with_delimiter (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6983\"\u003e#6983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sidekiq/sidekiq/compare/v8.0.7...v8.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `geocoder` from 1.8.5 to 1.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alexreisner/geocoder/blob/master/CHANGELOG.md\"\u003egeocoder's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.8.6 (2025 Sep 21)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for IPInfo Lite lookup (thanks github.com/iltempo).\u003c/li\u003e\n\u003cli\u003eVarious minor fixes and improvements.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/d3515db46c5785db8cd48dbf94af123a2c99b8a9\"\u003e\u003ccode\u003ed3515db\u003c/code\u003e\u003c/a\u003e Prepare for release of gem version 1.8.6.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/737d16f277f81aabe73e2dfe466e2ba84fef188a\"\u003e\u003ccode\u003e737d16f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1694\"\u003e#1694\u003c/a\u003e from Intrepidd/update-data-gouv-fr-domain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/4b50c085eea4de4f453eab2e8dc6faf7b3824420\"\u003e\u003ccode\u003e4b50c08\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1695\"\u003e#1695\u003c/a\u003e from cprodhomme/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/31545ee756f1230a063e86458b3dadbac9b7e7b4\"\u003e\u003ccode\u003e31545ee\u003c/code\u003e\u003c/a\u003e Update README_API_GUIDE.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/3a90b5aa6c708945cf181f16a182ca232f668c4d\"\u003e\u003ccode\u003e3a90b5a\u003c/code\u003e\u003c/a\u003e Update BAN domain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/b2c0aa5526f90209883e3ca64b73d9559d21f729\"\u003e\u003ccode\u003eb2c0aa5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1691\"\u003e#1691\u003c/a\u003e from TheRusskiy/radius-column-arel\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/cd58cab7fd167d641927fe4a083963fcf5cd08df\"\u003e\u003ccode\u003ecd58cab\u003c/code\u003e\u003c/a\u003e add \u0026quot;arel\u0026quot; to near_test spec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/63ca4702ccffe776b146c28d289f7449d25946ee\"\u003e\u003ccode\u003e63ca470\u003c/code\u003e\u003c/a\u003e radius column can be an instance of Arel.sql\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/eaf85fe4de045c2ad3e035f560d6755e82646bee\"\u003e\u003ccode\u003eeaf85fe\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1688\"\u003e#1688\u003c/a\u003e from skillstopractice/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/00369bb35a29a86f54e6fea516ecf9842e5f855f\"\u003e\u003ccode\u003e00369bb\u003c/code\u003e\u003c/a\u003e Update tests to use data['place_name'] for Mapbox\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexreisner/geocoder/compare/v1.8.5...v1.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `pundit` from 2.5.0 to 2.5.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/varvet/pundit/blob/main/CHANGELOG.md\"\u003epundit's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.5.2 (2025-09-24)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003econfig/rubocop-rspec.yml\u003c/code\u003e back from accidentally being excluded \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/866\"\u003e#866\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.5.1 (2025-09-12)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRequiring only \u003ccode\u003epundit/rspec\u003c/code\u003e no longer raises an error in Active Support \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/857\"\u003e#857\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/2d665d67a26f794987df926e49676948fe115289\"\u003e\u003ccode\u003e2d665d6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/867\"\u003e#867\u003c/a\u003e from varvet/kbs/release-v2.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/7ff48a83790aef27bd89fa4da6a0a238599bca2d\"\u003e\u003ccode\u003e7ff48a8\u003c/code\u003e\u003c/a\u003e Bump to v2.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/674abac197c7ecc000fd25a4542344d38c998535\"\u003e\u003ccode\u003e674abac\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/866\"\u003e#866\u003c/a\u003e from varvet/kbs/add-rubocop-back\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/923eebf39ccd6f8095a5c4270953e7a19d6d16a6\"\u003e\u003ccode\u003e923eebf\u003c/code\u003e\u003c/a\u003e Point changelog to PR\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/47668502881e3abed7dd004ca19fa11d66b23b6f\"\u003e\u003ccode\u003e4766850\u003c/code\u003e\u003c/a\u003e Add rubocop config file back to gem release files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/27a840bedadf0ef3d66f1857edd966c2e01cc18e\"\u003e\u003ccode\u003e27a840b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/863\"\u003e#863\u003c/a\u003e from varvet/kbs/fix-build-pipeline\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/381b202dd2e11c5eb0ea1134d29f85331a01d643\"\u003e\u003ccode\u003e381b202\u003c/code\u003e\u003c/a\u003e +3.4 -3.1 (EOL)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/4bb6a67819572bd9431d30048fbab4c9685cfbf2\"\u003e\u003ccode\u003e4bb6a67\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/862\"\u003e#862\u003c/a\u003e from varvet/kbs/fix-build-pipeline\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/6ceca0d2ab84d2240e6422e7b14d208ad10e3304\"\u003e\u003ccode\u003e6ceca0d\u003c/code\u003e\u003c/a\u003e Attempt code quality upload to qlty.sh instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/82d918a4c4c4ab393f662a32e94028d6b086285d\"\u003e\u003ccode\u003e82d918a\u003c/code\u003e\u003c/a\u003e Bump to v2.5.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/varvet/pundit/compare/v2.5.0...v2.5.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ahoy_matey` from 5.4.0 to 5.5.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ankane/ahoy/blob/master/CHANGELOG.md\"\u003eahoy_matey's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.5.0 (2026-04-08)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed error with \u003ccode\u003eAhoy::Tracker\u003c/code\u003e outside of requests\u003c/li\u003e\n\u003cli\u003eDropped support for Ruby \u0026lt; 3.3 and Rails \u0026lt; 7.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.4.2 (2026-03-31)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed cookie deletion with \u003ccode\u003ecookie_domain\u003c/code\u003e and \u003ccode\u003ecookie_options\u003c/code\u003e options\u003c/li\u003e\n\u003cli\u003eUpdated Ahoy.js to 0.4.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.4.1 (2025-09-30)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed deprecation warning with Rack 3.1+\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/0934ed94a4a7263f682eefb47bd78cdc05d33c5d\"\u003e\u003ccode\u003e0934ed9\u003c/code\u003e\u003c/a\u003e Version bump to 5.5.0 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/1881c47e52d10deb1989964acf9809531a937aaf\"\u003e\u003ccode\u003e1881c47\u003c/code\u003e\u003c/a\u003e Updated changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/bb10d30342311ccb8cfc4279555189d56129f6ce\"\u003e\u003ccode\u003ebb10d30\u003c/code\u003e\u003c/a\u003e Fixed error with Ahoy::Tracker outside of request when cookies disabled - res...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/3b4e45fde58880d4432e1a5ab8dfadd41d617117\"\u003e\u003ccode\u003e3b4e45f\u003c/code\u003e\u003c/a\u003e Dropped support for Ruby \u0026lt; 3.3 and Rails \u0026lt; 7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/41d7834a3af1553d8cf890cf231e4fdb53c196d9\"\u003e\u003ccode\u003e41d7834\u003c/code\u003e\u003c/a\u003e Updated readme [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/2186f3857f702c6c5fa3e0d80310d852de2cc8f0\"\u003e\u003ccode\u003e2186f38\u003c/code\u003e\u003c/a\u003e Updated license year [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/eed4fdad924261f9f57b87032e760a06fd4dcd05\"\u003e\u003ccode\u003eeed4fda\u003c/code\u003e\u003c/a\u003e Version bump to 5.4.2 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/f73c04e68fe8b884140cd659acee170224b19ec3\"\u003e\u003ccode\u003ef73c04e\u003c/code\u003e\u003c/a\u003e Updated changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/7c50688aa1e4d56545be421a9427c36c51476383\"\u003e\u003ccode\u003e7c50688\u003c/code\u003e\u003c/a\u003e Fixed cookie deletion with path option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/5a801f44d8bd5e1ab6f8e9f8923f8ef39eaa6e75\"\u003e\u003ccode\u003e5a801f4\u003c/code\u003e\u003c/a\u003e Fixed cookie deletion with cookie_domain option - fixes \u003ca href=\"https://redirect.github.com/ankane/ahoy/issues/581\"\u003e#581\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ankane/ahoy/compare/v5.4.0...v5.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `i18n-js` from 4.2.3 to 4.2.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fnando/i18n-js/blob/main/CHANGELOG.md\"\u003ei18n-js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/f8fb0dc0b01e7e639a6eb5dd875adbaa78858d8f\"\u003e\u003ccode\u003ef8fb0dc\u003c/code\u003e\u003c/a\u003e Bump up version (4.2.4).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/2cbea21df1ac16685a4e974716296853eccc0d49\"\u003e\u003ccode\u003e2cbea21\u003c/code\u003e\u003c/a\u003e Remove benchmark gem (\u003ca href=\"https://redirect.github.com/fnando/i18n-js/issues/737\"\u003e#737\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/9f99172d197b586dab34f4cf6a08a1df9703222f\"\u003e\u003ccode\u003e9f99172\u003c/code\u003e\u003c/a\u003e Update matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/9096c6e63bbbc24900bb10cfd0d42b6a89470c1c\"\u003e\u003ccode\u003e9096c6e\u003c/code\u003e\u003c/a\u003e Fix rubocop warnings.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/237b69b34f73873c2a3c753c45b208e670d15a31\"\u003e\u003ccode\u003e237b69b\u003c/code\u003e\u003c/a\u003e Update --quiet param description (\u003ca href=\"https://redirect.github.com/fnando/i18n-js/issues/730\"\u003e#730\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/1f3305ffa531614de22070ec3a0acbb592902636\"\u003e\u003ccode\u003e1f3305f\u003c/code\u003e\u003c/a\u003e Update action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/674cb0781bdba259e7a25fcd2df6f8dd21dc5276\"\u003e\u003ccode\u003e674cb07\u003c/code\u003e\u003c/a\u003e Fix rubocop warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/877e6f1de96126021cce39f802377ffeead79ff4\"\u003e\u003ccode\u003e877e6f1\u003c/code\u003e\u003c/a\u003e Update actions.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/7e27159f535643bc3080dce132a5ae953c4034ea\"\u003e\u003ccode\u003e7e27159\u003c/code\u003e\u003c/a\u003e Require ruby 3.2+.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/58c32fdc576a499eb2433bd9d633d537f8a696d8\"\u003e\u003ccode\u003e58c32fd\u003c/code\u003e\u003c/a\u003e Disable rubocop rule.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fnando/i18n-js/compare/v4.2.3...v4.2.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `pg` from 1.6.1 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ged/ruby-pg/blob/master/CHANGELOG.md\"\u003epg's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.3 [2025-12-29] Lars Kanis \u003ca href=\"mailto:lars@greiz-reinsdorf.de\"\u003elars@greiz-reinsdorf.de\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003eAdded:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd binary gems for ruby-4.0, now providing ruby-3.0 to 4.0. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/682\"\u003e#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate fat binary gem to OpenSSL-3.6.0 and PostgreSQL-18.1.\u003c/li\u003e\n\u003cli\u003eImprove documentation of PG::Result and README. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/676\"\u003e#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate errorcodes to PostgreSQL-18.\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003erb_hash_new_capa\u003c/code\u003e on Ruby-3.2+ . \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/674\"\u003e#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeny any server communication on a frozen PG::Connection . \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/677\"\u003e#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix possible race condition in PG::Result in Ractor context. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/674\"\u003e#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop binary gem support for platform \u003ccode\u003ex86-mingw32\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/682\"\u003e#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop binary gems for ruby-2.7.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.2 [2025-09-02] Lars Kanis \u003ca href=\"mailto:lars@greiz-reinsdorf.de\"\u003elars@greiz-reinsdorf.de\u003c/a\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove several absolute paths from native binaries which pointed to build directories. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/668\"\u003e#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix bad fallback path to \u003ccode\u003epg_service.conf\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/666\"\u003e#666\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003erbpg_\u003c/code\u003e prefix for \u003ccode\u003ebase64_*\u003c/code\u003e functions to avoid name clashes with functions provided by other libraries like Heimdal on Macos. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/667\"\u003e#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRaise a more descriptive error message in case of \u003ccode\u003epg_ext\u003c/code\u003e LoadError. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/664\"\u003e#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFreeze some constants to make them available in a Ractor context. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/660\"\u003e#660\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSeveral documentation improvements.\u003c/li\u003e\n\u003cli\u003eUpdate native binary gems to OpenSSL-3.5.2, krb5-1.22.1 and PostgreSQL-17.6.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/d4539c25dcc89d47088e1423f8d1915c041920f5\"\u003e\u003ccode\u003ed4539c2\u003c/code\u003e\u003c/a\u003e Bump VERSION to pg-1.6.3 and add release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/720900dbb9d16aa855793146f15c3772e14f627a\"\u003e\u003ccode\u003e720900d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ged/ruby-pg/issues/682\"\u003e#682\u003c/a\u003e from larskanis/ruby-4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/f605b5937093884089109c8baa5fe268fc513eaf\"\u003e\u003ccode\u003ef605b59\u003c/code\u003e\u003c/a\u003e Remove x86-mingw32 from binary builds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/5c690006ba158da70d73d939a233cf75ecdd30ef\"\u003e\u003ccode\u003e5c69000\u003c/code\u003e\u003c/a\u003e Update to ruby-4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/2acaf3d0f76334e056229efe260e1f558a8c6b42\"\u003e\u003ccode\u003e2acaf3d\u003c/code\u003e\u003c/a\u003e CI: workaround missing ruby-4.0 on Window\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/b500ded81127963603e1f724e82bed649c9ca8a1\"\u003e\u003ccode\u003eb500ded\u003c/code\u003e\u003c/a\u003e fix comment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/bc3f2f8b1110e9bcb225d65554e1a7fc842d0506\"\u003e\u003ccode\u003ebc3f2f8\u003c/code\u003e\u003c/a\u003e CI: Macos-13 on Intel is deprecated\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/77667eb4313bd7b79356f402b0fa7fba409483b8\"\u003e\u003ccode\u003e77667eb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ged/ruby-pg/issues/678\"\u003e#678\u003c/a\u003e from larskanis/ci-update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/6e52ce504d05c5359d55f45d9580672103263b54\"\u003e\u003ccode\u003e6e52ce5\u003c/code\u003e\u003c/a\u003e CI: Update PostgreSQL on Macos\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/6d40f50e51a037022495fe6d98181435652464ff\"\u003e\u003ccode\u003e6d40f50\u003c/code\u003e\u003c/a\u003e CI: Print mkmf.log on failure on Macos\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ged/ruby-pg/compare/v1.6.1...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bootsnap` from 1.18.6 to 1.24.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/bootsnap/releases\"\u003ebootsnap's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.24.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix several compatibility issues with Ruby \u003ccode\u003e4.0.4\u003c/code\u003e, particularly the \u003ccode\u003eshould not compile with coverage\u003c/code\u003e error. See \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/547\"\u003e#547\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eBootsnap.enable_frozen_string_literal\u003c/code\u003e to work even when coverage is enabled. Unfortunately only possible on Ruby \u003ccode\u003e4.0.4+\u003c/code\u003e.\nOn older rubies if coverage is enabled a warning will be issued and the feature won't work.\u003c/li\u003e\n\u003cli\u003eReduced cache files header size from 64 to 32 bytes, and got rid of the random padding element.\u003c/li\u003e\n\u003cli\u003eAvoid leaking a private method in \u003ccode\u003eObject\u003c/code\u003e when testing for Parse.y bugs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.24.3...v1.24.4\"\u003ehttps://github.com/rails/bootsnap/compare/v1.24.3...v1.24.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.24.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix the \u003ccode\u003e1.24.2\u003c/code\u003e workaround to parse Ruby files with UTF-8 even when the \u003ccode\u003eLANG\u003c/code\u003e environment variable\nis unset or set to \u003ccode\u003eC\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.24.2...v1.24.3\"\u003ehttps://github.com/rails/bootsnap/compare/v1.24.2...v1.24.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.24.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWorkaround two Ruby bugs in \u003ccode\u003eRubyVM::InstructionSequence.compile_file\u003c/code\u003e, that were causing\nfiles to be loaded with the old Ruby parser instead of Prism, causing issues with some pattern matching syntax.\nRef: \u003ca href=\"https://bugs.ruby-lang.org/issues/22023\"\u003ehttps://bugs.ruby-lang.org/issues/22023\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.24.1...v1.24.2\"\u003ehttps://github.com/rails/bootsnap/compare/v1.24.1...v1.24.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.24.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix encoding of Ruby source files loaded when \u003ccode\u003eBOOTSNAP_READONLY\u003c/code\u003e is set.\nFiles would incorectly be loaded in \u003ccode\u003eASCII-8BIT\u003c/code\u003e causing literal strings outside\nthe pure ASCII range to have \u003ccode\u003eASCII-8BIT\u003c/code\u003e encoding instead of \u003ccode\u003eUTF-8\u003c/code\u003e.\nThis bug was introduced in \u003ccode\u003e1.24.0\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.24.0...v1.24.1\"\u003ehttps://github.com/rails/bootsnap/compare/v1.24.0...v1.24.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.24.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded a hook API to customize Ruby compilation.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.23.0...v1.24.0\"\u003ehttps://github.com/rails/bootsnap/compare/v1.23.0...v1.24.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.23.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Ruby 2.7.\u003c/li\u003e\n\u003cli\u003eFix support for absolute paths in \u003ccode\u003eBOOTSNAP_IGNORE_DIRECTORIES\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/bootsnap/blob/main/CHANGELOG.md\"\u003ebootsnap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.24.4\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix several compatibility issues with Ruby \u003ccode\u003e4.0.4\u003c/code\u003e, particularly the \u003ccode\u003eshould not compile with coverage\u003c/code\u003e error. See \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/547\"\u003e#547\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eBootsnap.enable_frozen_string_literal\u003c/code\u003e to work even when coverage is enabled. Unfortunately only possible on Ruby \u003ccode\u003e4.0.4+\u003c/code\u003e.\nOn older rubies if coverage is enabled a warning will be issued and the feature won't work.\u003c/li\u003e\n\u003cli\u003eReduced cache files header size from 64 to 32 bytes, and got rid of the random padding element.\u003c/li\u003e\n\u003cli\u003eAvoid leaking a private method in \u003ccode\u003eObject\u003c/code\u003e when testing for Parse.y bugs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.24.3\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix the \u003ccode\u003e1.24.2\u003c/code\u003e workaround to parse Ruby files with UTF-8 even when the \u003ccode\u003eLANG\u003c/code\u003e environment variable\nis unset or set to \u003ccode\u003eC\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.24.2\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eWorkaround two Ruby bugs in \u003ccode\u003eRubyVM::InstructionSequence.compile_file\u003c/code\u003e, that were causing\nfiles to be loaded with the old Ruby parser instead of Prism, causing issues with some pattern matching syntax.\nRef: \u003ca href=\"https://bugs.ruby-lang.org/issues/22023\"\u003ehttps://bugs.ruby-lang.org/issues/22023\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.24.1\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix encoding of Ruby source files loaded when \u003ccode\u003eBOOTSNAP_READONLY\u003c/code\u003e is set.\nFiles would incorectly be loaded in \u003ccode\u003eASCII-8BIT\u003c/code\u003e causing literal strings outside\nthe pure ASCII range to have \u003ccode\u003eASCII-8BIT\u003c/code\u003e encoding instead of \u003ccode\u003eUTF-8\u003c/code\u003e.\nThis bug was introduced in \u003ccode\u003e1.24.0\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.24.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eAdded a hook API to customize Ruby compilation.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.23.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Ruby 2.7.\u003c/li\u003e\n\u003cli\u003eFix support for absolute paths in \u003ccode\u003eBOOTSNAP_IGNORE_DIRECTORIES\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.22.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBetter fix for the \u003ccode\u003eopendir\u003c/code\u003e crash.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ebootsnap/rake\u003c/code\u003e for cleaning the bootsnap cache as part of \u003ccode\u003erake clobber\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.21.1\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent a Ruby crash while scanning load path if \u003ccode\u003eopendir\u003c/code\u003e fails without setting \u003ccode\u003eerrno\u003c/code\u003e.\nAccording to the C spec this should not happen, but according to user reports, it did.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.21.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix the \u003ccode\u003erequire\u003c/code\u003e decorator to handle \u003ccode\u003eBootsnap.unload_cache!\u003c/code\u003e being called.\u003c/li\u003e\n\u003cli\u003eMinor optimization: Eagerly clear cache buffers to appease the GC.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/0d8a0a64cd1f302a4cbb29088fff7847ef9852c8\"\u003e\u003ccode\u003e0d8a0a6\u003c/code\u003e\u003c/a\u003e Release 1.24.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/6ccc5ebda794afe4e2b36be677640b4f7b6a03ac\"\u003e\u003ccode\u003e6ccc5eb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/550\"\u003e#550\u003c/a\u003e from byroot/fstr-and-coverage\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/86e95864f89067159dadb8be68b656ae1a5f38ea\"\u003e\u003ccode\u003e86e9586\u003c/code\u003e\u003c/a\u003e Make \u003ccode\u003eBootsnap.enable_frozen_string_literal\u003c/code\u003e work even with coverage on\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/36c22246259452d163986565f7a946154f742da7\"\u003e\u003ccode\u003e36c2224\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/549\"\u003e#549\u003c/a\u003e from byroot/integration-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/6500a43b2ac7fda963f03ed62098fb3b2be2bdeb\"\u003e\u003ccode\u003e6500a43\u003c/code\u003e\u003c/a\u003e Handle Coverage being suspended\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/cf3791edf37b778e14efa1f366c775f8456a3475\"\u003e\u003ccode\u003ecf3791e\u003c/code\u003e\u003c/a\u003e ISeq#input_to_output: just return \u003ccode\u003enil\u003c/code\u003e when using default compiler.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/cabdad95ed5218e6b888121c92702da4338de866\"\u003e\u003ccode\u003ecabdad9\u003c/code\u003e\u003c/a\u003e Only test Ruby [Bug \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/18250\"\u003e#18250\u003c/a\u003e] if on Ruby 3.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/490960e1dcd8bde4dda53e3ed1f435def73e0b0e\"\u003e\u003ccode\u003e490960e\u003c/code\u003e\u003c/a\u003e Yet another warning emitted from the canary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/045beb2ee5a85b1fd5000e6ee566b8b8a4c5df72\"\u003e\u003ccode\u003e045beb2\u003c/code\u003e\u003c/a\u003e Appease rubocop\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/d37f282ec8db1c9b31405c5629bcc6bc68d9974c\"\u003e\u003ccode\u003ed37f282\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/546\"\u003e#546\u003c/a\u003e from davidenglishmusic/rubocop-performance\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.18.6...v1.24.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.4.2 to 3.4.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.4 - 2025-09-10\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAccept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/296\"\u003eGH-296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003eGH-295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Joe Rafaniello\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJoe Rafaniello\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eREXML 3.4.3 - 2025-09-07\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject no root element XML as an invalid XML\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/289\"\u003eGH-289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003eGH-291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/287\"\u003eGH-287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003eGH-288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Jason Thomas\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSutou Kouhei\u003c/p\u003e\n\u003c/li\u003e\n\u003cl...\n\n_Description has been truncated_","html_url":"https://github.com/CircuitVerse/CircuitVerse/pull/7367","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/CircuitVerse%2FCircuitVerse/issues/7367","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7367/packages"}},{"old_version":"3.2.6","new_version":"3.4.2","update_type":"minor","path":null,"pr_created_at":"2026-05-09T11:14:44.000Z","version_change":"3.2.6 → 3.4.2","issue":{"uuid":"4412315511","node_id":"PR_kwDOOclWfc7Z1g6m","number":37,"state":"open","title":"Bump the bundler group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-09T11:14:44.000Z","updated_at":"2026-05-09T11:14:48.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":6,"packages":[{"name":"activesupport","old_version":"7.0.6","new_version":"7.2.3.1","repository_url":"https://github.com/rails/rails"},{"name":"addressable","old_version":"2.8.5","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"faraday","old_version":"2.7.10","new_version":"2.14.1","repository_url":"https://github.com/lostisland/faraday"},{"name":"google-protobuf","old_version":"3.23.4","new_version":"3.25.5","repository_url":"https://github.com/protocolbuffers/protobuf"},{"name":"nokogiri","old_version":"1.15.3","new_version":"1.19.3","repository_url":"https://github.com/sparklemotion/nokogiri"},{"name":"rexml","old_version":"3.2.6","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Updates the requirements on [activesupport](https://github.com/rails/rails), [addressable](https://github.com/sporkmonger/addressable), [faraday](https://github.com/lostisland/faraday), [google-protobuf](https://github.com/protocolbuffers/protobuf), [nokogiri](https://github.com/sparklemotion/nokogiri) and [rexml](https://github.com/ruby/rexml) to permit the latest version.\nUpdates `activesupport` from 7.0.6 to 7.2.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactivesupport's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e7.2.3.1\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33169]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Record\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction View\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eSkip blank attribute names in tag helpers to avoid generating invalid HTML.\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33168]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eMike Dalessio\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAction Pack\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Job\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ba76fca032a66f3716ca8a661c9ddb006acaf885\"\u003e\u003ccode\u003eba76fca\u003c/code\u003e\u003c/a\u003e Preparing for 7.2.3.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8a379f43ea3e1c62fc7f6eabc1808ae9f74f726d\"\u003e\u003ccode\u003e8a379f4\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/b54a4b373c6f042cab6ee2033246b1c9ecc38974\"\u003e\u003ccode\u003eb54a4b3\u003c/code\u003e\u003c/a\u003e Improve performance of NumberToDelimitedConverter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/c1ad0e8e1972032f3395853a5e99cea035035beb\"\u003e\u003ccode\u003ec1ad0e8\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ebd6be18120d1136511eb516338e27af25ac0a1a\"\u003e\u003ccode\u003eebd6be1\u003c/code\u003e\u003c/a\u003e NumberConverter: reject scientific notation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/4a155f1fd7d4a1887b169eda4983a052fb2e2f13\"\u003e\u003ccode\u003e4a155f1\u003c/code\u003e\u003c/a\u003e Lock some dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/bb2bdef2925433a0c5db31b873f9faddf2e2e65d\"\u003e\u003ccode\u003ebb2bdef\u003c/code\u003e\u003c/a\u003e Preparing for 7.2.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fe41a9fa77412917ea3f228d6a742f31ad21e26d\"\u003e\u003ccode\u003efe41a9f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/55840\"\u003e#55840\u003c/a\u003e from zzak/asup-xml-mini-bigdecimal-float-precision\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/12040a3145012fb312eb2d70fc700f4d34a27934\"\u003e\u003ccode\u003e12040a3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/55808\"\u003e#55808\u003c/a\u003e from olivier-thatch/fix-enum-sole\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/58630e19ad0fe3c822302ae147ad1f863c95de2e\"\u003e\u003ccode\u003e58630e1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/55794\"\u003e#55794\u003c/a\u003e from rails/fix-55513\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v7.0.6...v7.2.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.5 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.7 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 6 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/535\"\u003esporkmonger/addressable#535\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.6 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMemoize regexps for common character classes (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/524\"\u003e#524\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/524\"\u003e#524\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/524\"\u003esporkmonger/addressable#524\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.5...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `faraday` from 2.7.10 to 2.14.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003efaraday's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.14.1\u003c/h2\u003e\n\u003ch2\u003eSecurity Note\u003c/h2\u003e\n\u003cp\u003eThis release contains a security fix, we recommend all users to upgrade as soon as possible.\nA Security Advisory with more details will be posted shortly.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd RFC document for Options architecture refactoring plan by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1644\"\u003elostisland/faraday#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1655\"\u003elostisland/faraday#1655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExplicit top-level namespace reference by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1657\"\u003elostisland/faraday#1657\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\"\u003ehttps://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eNew features ✨\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUse newer \u003ccode\u003eUnprocessableContent\u003c/code\u003e naming for 422 by \u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes 🐞\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eConvert strings to UTF-8 by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eResponse#to_hash\u003c/code\u003e when response not finished yet by \u003ca href=\"https://github.com/yykamei\"\u003e\u003ccode\u003e@​yykamei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1639\"\u003elostisland/faraday#1639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMisc/Docs 📄\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eLint: use \u003ccode\u003efilter_map\u003c/code\u003e by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1637\"\u003elostisland/faraday#1637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003eactions/checkout\u003c/code\u003e from v4 to v5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1636\"\u003elostisland/faraday#1636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes documentation by \u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove error handling logic and add missing test coverage by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1633\"\u003elostisland/faraday#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix type assumption in \u003ccode\u003eFaraday::Error\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1630\"\u003elostisland/faraday#1630\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/16cbd38ef252d25dedf416a4d2510a2f3db10c87\"\u003e\u003ccode\u003e16cbd38\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/a6d3a3a0bf59c2ab307d0abd91bc126aef5561bc\"\u003e\u003ccode\u003ea6d3a3a\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/b23f710d28c0dba169470f568df4017a1e8beea7\"\u003e\u003ccode\u003eb23f710\u003c/code\u003e\u003c/a\u003e Explicit top-level namespace reference (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1657\"\u003e#1657\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/49ba4ac3a7359baed634c12a82386f6c8c717ea8\"\u003e\u003ccode\u003e49ba4ac\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1655\"\u003e#1655\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/51a49bc99d7df6f724d250d64771e1d710576df7\"\u003e\u003ccode\u003e51a49bc\u003c/code\u003e\u003c/a\u003e Ensure Claude reads the guidelines and allow to plan in a gitignored .ai/PLAN...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/894f65cab8f04bcf35e84a2dfd9fc0286dbce340\"\u003e\u003ccode\u003e894f65c\u003c/code\u003e\u003c/a\u003e Add RFC document for Options architecture refactoring plan (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1644\"\u003e#1644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/397e3ded0c5166313bb22f1c0221b36b6023fd0f\"\u003e\u003ccode\u003e397e3de\u003c/code\u003e\u003c/a\u003e Add comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/d98c65cfc254ea2898386e4359428527122abec3\"\u003e\u003ccode\u003ed98c65c\u003c/code\u003e\u003c/a\u003e Update Faraday-specific AI agent guidelines\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/56c18ecb718e30c5a3a0dea9bd2361912af9013c\"\u003e\u003ccode\u003e56c18ec\u003c/code\u003e\u003c/a\u003e Add AI agent guidelines specific to Faraday repository\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/3201a42957d37efc968ee8834ba9b50ed5dde54a\"\u003e\u003ccode\u003e3201a42\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.7.10...v2.14.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google-protobuf` from 3.23.4 to 3.25.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/70e85ae1f994ee91001a18d9b5b4688ac027c03d\"\u003e\u003ccode\u003e70e85ae\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.5-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/489aba5b55bb994bcd130a43e20cc9be3be04adf\"\u003e\u003ccode\u003e489aba5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/15984\"\u003e#15984\u003c/a\u003e from mkruskal-google/staleness-fix-25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/367c7bea8dd5505f817f41e052e50caa694fb0e6\"\u003e\u003ccode\u003e367c7be\u003c/code\u003e\u003c/a\u003e Regen stale files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/bbbd2dea0e508289d45b48612e4659a230708209\"\u003e\u003ccode\u003ebbbd2de\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.4-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/fc222b9420e19d902e0aee5a6a95274dbbc2fc06\"\u003e\u003ccode\u003efc222b9\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.3-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/6ac04475591db12de14e89d3d750519c2ca9a4cc\"\u003e\u003ccode\u003e6ac0447\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.2-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/7f94235e552599141950d7a4a3eaf93bc87d1b22\"\u003e\u003ccode\u003e7f94235\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/e4b00c75ecbc40389615ddf5482dbabc3a354eea\"\u003e\u003ccode\u003ee4b00c7\u003c/code\u003e\u003c/a\u003e Add support for extensions in CRuby, JRuby, and FFI Ruby (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14703\"\u003e#14703\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14756\"\u003e#14756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/2495d4f96bf4edcc4f770ceb27ae98c71a56fcdb\"\u003e\u003ccode\u003e2495d4f\u003c/code\u003e\u003c/a\u003e Add support for options in CRuby, JRuby and FFI (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14594\"\u003e#14594\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14739\"\u003e#14739\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/6b5d8db01fe47478e8d400f550e797e6230d464e\"\u003e\u003ccode\u003e6b5d8db\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/protocolbuffers/protobuf/compare/v3.23.4...v3.25.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nokogiri` from 1.15.3 to 1.19.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/releases\"\u003enokogiri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.3 / 2026-04-27\u003c/h2\u003e\n\u003ch3\u003eFixed / Security\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAddress exponential regex backtracking in CSS selector tokenizer. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-c4rq-3m3g-8wgx\"\u003eGHSA-c4rq-3m3g-8wgx\u003c/a\u003e for more information.\u003c/li\u003e\n\u003cli\u003e[CRuby] Address memory leak in \u003ccode\u003eXSLT::Stylesheet#transform\u003c/code\u003e. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-v2fc-qm4h-8hqv\"\u003eGHSA-v2fc-qm4h-8hqv\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e46b89e5d7b9e844c2ee360794240c6ea2a4e6fa0c5892a4ed487db621224b639  nokogiri-1.19.3-aarch64-linux-gnu.gem\r\n8392dfdcd21be7a94dbbe9ccc138dea01b97b24cb2dc02a114ca98bfb1d9a0b7  nokogiri-1.19.3-aarch64-linux-musl.gem\r\n3919d5ffc334ad778a4a9eb88fda7dcb8b1fb58c8a52ac640c6dcd2f038e774f  nokogiri-1.19.3-arm-linux-gnu.gem\r\n9ce1cb6346bb9c67b1550eb537aa183ead91e4b6eadb2f36ade02d8dd2a79fb6  nokogiri-1.19.3-arm-linux-musl.gem\r\n71b9bd424b1b7abc18b05052a1a3cfd3627abdca62be280854cc411791357e42  nokogiri-1.19.3-arm64-darwin.gem\r\n40ea6ebf5cf2005dae1dee26dd557d3afb41fb6de6c9764aca8cf06fdb841db1  nokogiri-1.19.3-java.gem\r\n8bb7132cad356c879a1286eaabcb5e68326cb2490317984280fbc62f456d506a  nokogiri-1.19.3-x64-mingw-ucrt.gem\r\n77f3fba57d46c53ab31e62fc6c28f705109d1bf6264356c76f132b2be5728d4d  nokogiri-1.19.3-x86_64-darwin.gem\r\n2f5078620fe12e83669b5b17311b32532a8153d02eee7ad06948b926d6080976  nokogiri-1.19.3-x86_64-linux-gnu.gem\r\n248c906d2166eca5efb56d52fdee5f9a1f51d69a72e2b64fdac647b4ce39ea3f  nokogiri-1.19.3-x86_64-linux-musl.gem\r\n78312cbac32a40c812780d9678221b79d51288eec00054c1a8d15f7ce05960e8  nokogiri-1.19.3.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003ev1.19.2 / 2026-03-19\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[JRuby] Saxon-HE is updated to 12.7, from 9.6.0-4. Saxon-HE is a transitive dependency of nu.validator:jing, and this update addresses CVEs in Saxon-HE's own transitive dependencies JDOM and dom4j. We don't think this warrants a security release, however we're cutting a patch release to help users whose security scanners are flagging this. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3611\"\u003e#3611\u003c/a\u003e \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSHA256 Checksums\u003c/h3\u003e\n\u003cpre\u003e\u003ccode\u003ec34d5c8208025587554608e98fd88ab125b29c80f9352b821964e9a5d5cfbd19  nokogiri-1.19.2-aarch64-linux-gnu.gem\r\n7f6b4b0202d507326841a4f790294bf75098aef50c7173443812e3ac5cb06515  nokogiri-1.19.2-aarch64-linux-musl.gem\r\nb7fa1139016f3dc850bda1260988f0d749934a939d04ef2da13bec060d7d5081  nokogiri-1.19.2-arm-linux-gnu.gem\r\n61114d44f6742ff72194a1b3020967201e2eb982814778d130f6471c11f9828c  nokogiri-1.19.2-arm-linux-musl.gem\r\n58d8ea2e31a967b843b70487a44c14c8ba1866daa1b9da9be9dbdf1b43dee205  nokogiri-1.19.2-arm64-darwin.gem\r\ne9d67034bc80ca71043040beea8a91be5dc99b662daa38a2bfb361b7a2cc8717  nokogiri-1.19.2-java.gem\r\n8ccf25eea3363a2c7b3f2e173a3400582c633cfead27f805df9a9c56d4852d1a  nokogiri-1.19.2-x64-mingw-ucrt.gem\r\n7d9af11fda72dfaa2961d8c4d5380ca0b51bc389dc5f8d4b859b9644f195e7a4  nokogiri-1.19.2-x86_64-darwin.gem\r\nfa8feca882b73e871a9845f3817a72e9734c8e974bdc4fbad6e4bc6e8076b94f  nokogiri-1.19.2-x86_64-linux-gnu.gem\r\n93128448e61a9383a30baef041bf1f5817e22f297a1d400521e90294445069a8  nokogiri-1.19.2-x86_64-linux-musl.gem\r\n38fdd8b59db3d5ea9e7dfb14702e882b9bf819198d5bf976f17ebce12c481756  nokogiri-1.19.2.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/sparklemotion/nokogiri/compare/v1.19.1...v1.19.2\"\u003ehttps://github.com/sparklemotion/nokogiri/compare/v1.19.1...v1.19.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md\"\u003enokogiri's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.3 / 2026-04-27\u003c/h2\u003e\n\u003ch3\u003eFixed / Security\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAddress exponential regex backtracking in CSS selector tokenizer. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-c4rq-3m3g-8wgx\"\u003eGHSA-c4rq-3m3g-8wgx\u003c/a\u003e for more information.\u003c/li\u003e\n\u003cli\u003e[CRuby] Address memory leak in \u003ccode\u003eXSLT::Stylesheet#transform\u003c/code\u003e. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-v2fc-qm4h-8hqv\"\u003eGHSA-v2fc-qm4h-8hqv\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.19.2 / 2026-03-19\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[JRuby] Saxon-HE is updated to 12.7, from 9.6.0-4. Saxon-HE is a transitive dependency of nu.validator:jing, and this update addresses CVEs in Saxon-HE's own transitive dependencies JDOM and dom4j. We don't think this warrants a security release, however we're cutting a patch release to help users whose security scanners are flagging this. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3611\"\u003e#3611\u003c/a\u003e \u003ca href=\"https://github.com/flavorjones\"\u003e\u003ccode\u003e@​flavorjones\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.10 / 2025-09-15\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.9\"\u003ev2.13.9\u003c/a\u003e. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.\u003c/li\u003e\n\u003cli\u003e[CRuby] [Windows and MacOS] Vendored libiconv is updated to \u003ca href=\"https://savannah.gnu.org/news/?id=10703\"\u003ev1.18\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.9 / 2025-07-20\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Applied upstream libxml2 patches to address CVE-2025-6021, CVE-2025-6170, CVE-2025-49794, CVE-2025-49795, and CVE-2025-49796. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-353f-x4gh-cqq8\"\u003eGHSA-353f-x4gh-cqq8\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.8 / 2025-04-21\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/c139a3da0fe0cae7499a0bafa20f2875877c585b\"\u003e\u003ccode\u003ec139a3d\u003c/code\u003e\u003c/a\u003e version bump to v1.19.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/7501a63b9f4246d12516e35b91fed8be34f854c0\"\u003e\u003ccode\u003e7501a63\u003c/code\u003e\u003c/a\u003e fix: backtracking in CSS tokenizer rules (v1.19.x backport) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3627\"\u003e#3627\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/03e7968a730a6544ab56a8d6c3e82dd630ad4339\"\u003e\u003ccode\u003e03e7968\u003c/code\u003e\u003c/a\u003e test: skip CSS tokenizer benchmarks on JRuby\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/b984b7e47f622d1aa97d54c16d5cd596c3eb9538\"\u003e\u003ccode\u003eb984b7e\u003c/code\u003e\u003c/a\u003e fix: ReDoS in CSS tokenizer ident rule\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/00926231e28d5a20e5b4873efba36099aea0d5c6\"\u003e\u003ccode\u003e0092623\u003c/code\u003e\u003c/a\u003e fix: ReDoS in CSS tokenizer STRING rule\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/ee17d33aff3adb30c14e71d3d4c8163465acaccf\"\u003e\u003ccode\u003eee17d33\u003c/code\u003e\u003c/a\u003e fix: memory leak in XSLT transform (backport to v1.19.x) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3624\"\u003e#3624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/ce188a395192e3757d8701949afb643dc025084c\"\u003e\u003ccode\u003ece188a3\u003c/code\u003e\u003c/a\u003e doc: update CHANGELOG\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/caeaac41f874f0944f9397c78bf6c1bfac2cb472\"\u003e\u003ccode\u003ecaeaac4\u003c/code\u003e\u003c/a\u003e fix: memory leak in XSLT transform\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/25220bf268c9808e28415563ed7f8ea8d5c332bf\"\u003e\u003ccode\u003e25220bf\u003c/code\u003e\u003c/a\u003e dep(test): test against libxml-ruby v6 (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3618\"\u003e#3618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/0caeb21a5c5e9ff45bbede88fb53655f6753bb0e\"\u003e\u003ccode\u003e0caeb21\u003c/code\u003e\u003c/a\u003e doc: add security warnings for untrusted XSLT stylesheets\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sparklemotion/nokogiri/compare/v1.15.3...v1.19.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.2.6 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.2.6...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/AKJUS/maptimedavis.github.io/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/AKJUS/maptimedavis.github.io/pull/37","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/AKJUS%2Fmaptimedavis.github.io/issues/37","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/37/packages"}},{"old_version":"3.3.9","new_version":"3.4.2","update_type":"minor","path":null,"pr_created_at":"2026-05-07T08:42:01.000Z","version_change":"3.3.9 → 3.4.2","issue":{"uuid":"4397358819","node_id":"PR_kwDOLTgSI87ZEe49","number":175,"state":"open","title":"Bump the bundler group across 2 directories with 5 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-07T08:42:01.000Z","updated_at":"2026-05-07T08:42:12.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":5,"packages":[{"name":"addressable","old_version":"2.8.7","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"rexml","old_version":"3.3.9","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"},{"name":"addressable","old_version":"2.8.7","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"rexml","old_version":"3.3.9","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"},{"name":"addressable","old_version":"2.8.9","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"addressable","old_version":"2.8.9","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"net-imap","old_version":"0.6.3","new_version":"0.6.4","repository_url":"https://github.com/ruby/net-imap"},{"name":"nokogiri","old_version":"1.19.2","new_version":"1.19.3","repository_url":"https://github.com/sparklemotion/nokogiri"},{"name":"rack","old_version":"3.2.5","new_version":"3.2.6","repository_url":"https://github.com/rack/rack"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 2 updates in the /examples/stacks/jekyll/myblog directory: [addressable](https://github.com/sporkmonger/addressable) and [rexml](https://github.com/ruby/rexml).\nBumps the bundler group with 4 updates in the /examples/stacks/rails/blog directory: [addressable](https://github.com/sporkmonger/addressable), [net-imap](https://github.com/ruby/net-imap), [nokogiri](https://github.com/sparklemotion/nokogiri) and [rack](https://github.com/rack/rack).\n\nUpdates `addressable` from 2.8.7 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.3.9 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.3.9...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.7 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.3.9 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.3.9...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.9 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.9 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `net-imap` from 0.6.3 to 0.6.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/net-imap/releases\"\u003enet-imap's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.6.4\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003e🔒 Security\u003c/h3\u003e\n\u003cp\u003eThis release contains fixes for \u003cstrong\u003emultiple vulnerabilities\u003c/strong\u003e concerning \u003cem\u003e\u003cstrong\u003e\u003ccode\u003eSTARTTLS\u003c/code\u003e stripping\u003c/strong\u003e\u003c/em\u003e, argument validation, and denial of service attacks.\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!WARNING]\n\u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/664\"\u003eruby/net-imap#664\u003c/a\u003e fixes a \u003ccode\u003eSTARTTLS\u003c/code\u003e stripping vulnerability (GHSA-vcgp-9326-pqcp).\nWithout this fix, a man-in-the-middle attacker can cause \u003ccode\u003eNet::IMAP#starttls\u003c/code\u003e to return \u0026quot;successfully\u0026quot;, \u003cstrong\u003e\u003cem\u003ewithout starting TLS\u003c/em\u003e\u003c/strong\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nArgument validation is significantly improved.  Several injection vulnerabilities have been fixed:\n\u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/657\"\u003eruby/net-imap#657\u003c/a\u003e fixes CRLF/command/argument injection via Symbol arguments (GHSA-75xq-5h9v-w6px).\n\u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/658\"\u003eruby/net-imap#658\u003c/a\u003e fixes CRLF/command/argument injection via the \u003ccode\u003eattr\u003c/code\u003e argument to \u003ccode\u003e#store\u003c/code\u003e/\u003ccode\u003e#uid_store\u003c/code\u003e (GHSA-hm49-wcqc-g2xg)\n\u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/659\"\u003eruby/net-imap#659\u003c/a\u003e fixes CRLF/command/argument injection via the \u003ccode\u003estorage_limit\u003c/code\u003e argument to \u003ccode\u003e#setquota\u003c/code\u003e (GHSA-hm49-wcqc-g2xg).\n\u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/660\"\u003eruby/net-imap#660\u003c/a\u003e fixes CRLF/command injection via \u003ccode\u003eRawData\u003c/code\u003e (GHSA-hm49-wcqc-g2xg):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e#search\u003c/code\u003e and \u003ccode\u003e#uid_search\u003c/code\u003e send \u003ccode\u003ecriteria\u003c/code\u003e as raw data, when it is a String\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e#fetch\u003c/code\u003e and \u003ccode\u003e#uid_fetch\u003c/code\u003e send \u003ccode\u003eattr\u003c/code\u003e as raw data, when it is a String.\nWhen \u003ccode\u003eattr\u003c/code\u003e is an Array, its String members are sent as raw data.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!CAUTION]\n\u003ccode\u003eRawData\u003c/code\u003e does not defend against \u003cem\u003eother\u003c/em\u003e forms of argument injection!  It is an intentionally low-level API.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nTwo denial of service vulnerabilities have been addressed.\nThese are generally only relevant when connecting to an \u003cem\u003euntrusted hostile server\u003c/em\u003e (or without TLS).\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/642\"\u003eruby/net-imap#642\u003c/a\u003e fixes quadratic time complexity when reading large responses containing many string literals (GHSA-q2mw-fvj9-vvcw).\n\u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/654\"\u003eruby/net-imap#654\u003c/a\u003e adds a configurable \u003ccode\u003emax_iterations\u003c/code\u003e count for \u003ccode\u003eSCRAM-*\u003c/code\u003e authentication (GHSA-87pf-fpwv-p7m7).\u003c/p\u003e\n\u003cp\u003eThe default \u003ccode\u003eScramAuthenticator#max_iterations\u003c/code\u003e is \u003ccode\u003e2**31 - 1\u003c/code\u003e (max 32-bit signed int), which was already OpenSSL's maximum value.  \u003cem\u003eIt provides no protection\u003c/em\u003e against hostile servers unless it is explicitly set to a lower value by the user.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e⚡ \u003ccode\u003eResponseReader\u003c/code\u003e memoizes \u003ccode\u003eConfig#max_response_size\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/642\"\u003eruby/net-imap#642\u003c/a\u003e.\nChanges to \u003ccode\u003e#max_response_size\u003c/code\u003e now take effect once per response, not on every \u003ccode\u003eIO#read\u003c/code\u003e.\n\u003cem\u003eNOTE: It is not expected that this will affect any current usage.\u003c/em\u003e  See \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/642\"\u003ethe PR\u003c/a\u003e for details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e✨ Support \u003ccode\u003eBINARY\u003c/code\u003e extention to \u003ccode\u003e#append\u003c/code\u003e (RFC3516)  by \u003ca href=\"https://github.com/nevans\"\u003e\u003ccode\u003e@​nevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/616\"\u003eruby/net-imap#616\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e✨ Support \u003ccode\u003eLITERAL+\u003c/code\u003e and \u003ccode\u003eLITERAL-\u003c/code\u003e non-synchronizing literals (RFC7888) by \u003ca href=\"https://github.com/nevans\"\u003e\u003ccode\u003e@​nevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/649\"\u003eruby/net-imap#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e🔒 Add \u003ccode\u003eScramAuthenticator#max_iterations\u003c/code\u003e by \u003ca href=\"https://github.com/nevans\"\u003e\u003ccode\u003e@​nevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/654\"\u003eruby/net-imap#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e🏷️ Add \u003ccode\u003enumber64\u003c/code\u003e and \u003ccode\u003enz-number64\u003c/code\u003e to NumValidator by \u003ca href=\"https://github.com/nevans\"\u003e\u003ccode\u003e@​nevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/625\"\u003eruby/net-imap#625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e♻️ Add \u003ccode\u003eMailboxQuota#quota_root\u003c/code\u003e alias by \u003ca href=\"https://github.com/nevans\"\u003e\u003ccode\u003e@​nevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/636\"\u003eruby/net-imap#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e🔍 Simplify \u003ccode\u003eNet::IMAP#inspect\u003c/code\u003e with basic state by \u003ca href=\"https://github.com/nevans\"\u003e\u003ccode\u003e@​nevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/612\"\u003eruby/net-imap#612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e🥅 Add \u003ccode\u003eResponseParseError#parser_methods\u003c/code\u003e (and override \u003ccode\u003e#==\u003c/code\u003e) by \u003ca href=\"https://github.com/nevans\"\u003e\u003ccode\u003e@​nevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/net-imap/pull/615\"\u003eruby/net-imap#615\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/3e490673dca65d0cfeeeb3fbf1fdaa188d6f27c4\"\u003e\u003ccode\u003e3e49067\u003c/code\u003e\u003c/a\u003e 🔖 Bump version to 0.6.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/0ede4c40b1523dfeaf95777b2678e54cc0fd9618\"\u003e\u003ccode\u003e0ede4c4\u003c/code\u003e\u003c/a\u003e 🔀 Merge pull request \u003ca href=\"https://redirect.github.com/ruby/net-imap/issues/664\"\u003e#664\u003c/a\u003e from ruby/security/STARTTLS-stripping\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/51ae3604cabe1e8cfeeb888ff5ef6b9215fe1a65\"\u003e\u003ccode\u003e51ae360\u003c/code\u003e\u003c/a\u003e ♻️ Add command response handler before command is sent\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/24d5c773d1bb76ca1cd0a26b2218195011c16969\"\u003e\u003ccode\u003e24d5c77\u003c/code\u003e\u003c/a\u003e 🔒🥅 Handle tagged \u0026quot;OK\u0026quot; to incomplete command\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/62eea6ffe1e390060065169474f97edbc42bd2b2\"\u003e\u003ccode\u003e62eea6f\u003c/code\u003e\u003c/a\u003e 🔒🥅 Ensure STARTTLS tagged response was handled\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/46636cae8af68a4080c434b853fba1738c7c2587\"\u003e\u003ccode\u003e46636ca\u003c/code\u003e\u003c/a\u003e ❌🔒 Add failing test for STARTTLS stripping\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/e3b010509109eb4acc1d7e4365624e848ef0b45b\"\u003e\u003ccode\u003ee3b0105\u003c/code\u003e\u003c/a\u003e ✅♻️ Inline current STARTLS stripping test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/be32e712eb2ee90a0a2c78752bf19196582ed4d8\"\u003e\u003ccode\u003ebe32e71\u003c/code\u003e\u003c/a\u003e 📚 Improve documentation of RawData arguments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/47c72186d272441878ca73c9499f66013829ca2f\"\u003e\u003ccode\u003e47c7218\u003c/code\u003e\u003c/a\u003e 🐛 Validate RawData and wait to continue literals\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/net-imap/commit/0ec4fd351263e8b9a4f683713427827b7b1ad974\"\u003e\u003ccode\u003e0ec4fd3\u003c/code\u003e\u003c/a\u003e 🥅 Validate \u003ccode\u003e#setquota\u003c/code\u003e storage limit argument\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/net-imap/compare/v0.6.3...v0.6.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nokogiri` from 1.19.2 to 1.19.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/releases\"\u003enokogiri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.3 / 2026-04-27\u003c/h2\u003e\n\u003ch3\u003eFixed / Security\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAddress exponential regex backtracking in CSS selector tokenizer. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-c4rq-3m3g-8wgx\"\u003eGHSA-c4rq-3m3g-8wgx\u003c/a\u003e for more information.\u003c/li\u003e\n\u003cli\u003e[CRuby] Address memory leak in \u003ccode\u003eXSLT::Stylesheet#transform\u003c/code\u003e. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-v2fc-qm4h-8hqv\"\u003eGHSA-v2fc-qm4h-8hqv\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e46b89e5d7b9e844c2ee360794240c6ea2a4e6fa0c5892a4ed487db621224b639  nokogiri-1.19.3-aarch64-linux-gnu.gem\r\n8392dfdcd21be7a94dbbe9ccc138dea01b97b24cb2dc02a114ca98bfb1d9a0b7  nokogiri-1.19.3-aarch64-linux-musl.gem\r\n3919d5ffc334ad778a4a9eb88fda7dcb8b1fb58c8a52ac640c6dcd2f038e774f  nokogiri-1.19.3-arm-linux-gnu.gem\r\n9ce1cb6346bb9c67b1550eb537aa183ead91e4b6eadb2f36ade02d8dd2a79fb6  nokogiri-1.19.3-arm-linux-musl.gem\r\n71b9bd424b1b7abc18b05052a1a3cfd3627abdca62be280854cc411791357e42  nokogiri-1.19.3-arm64-darwin.gem\r\n40ea6ebf5cf2005dae1dee26dd557d3afb41fb6de6c9764aca8cf06fdb841db1  nokogiri-1.19.3-java.gem\r\n8bb7132cad356c879a1286eaabcb5e68326cb2490317984280fbc62f456d506a  nokogiri-1.19.3-x64-mingw-ucrt.gem\r\n77f3fba57d46c53ab31e62fc6c28f705109d1bf6264356c76f132b2be5728d4d  nokogiri-1.19.3-x86_64-darwin.gem\r\n2f5078620fe12e83669b5b17311b32532a8153d02eee7ad06948b926d6080976  nokogiri-1.19.3-x86_64-linux-gnu.gem\r\n248c906d2166eca5efb56d52fdee5f9a1f51d69a72e2b64fdac647b4ce39ea3f  nokogiri-1.19.3-x86_64-linux-musl.gem\r\n78312cbac32a40c812780d9678221b79d51288eec00054c1a8d15f7ce05960e8  nokogiri-1.19.3.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md\"\u003enokogiri's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.3 / 2026-04-27\u003c/h2\u003e\n\u003ch3\u003eFixed / Security\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAddress exponential regex backtracking in CSS selector tokenizer. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-c4rq-3m3g-8wgx\"\u003eGHSA-c4rq-3m3g-8wgx\u003c/a\u003e for more information.\u003c/li\u003e\n\u003cli\u003e[CRuby] Address memory leak in \u003ccode\u003eXSLT::Stylesheet#transform\u003c/code\u003e. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-v2fc-qm4h-8hqv\"\u003eGHSA-v2fc-qm4h-8hqv\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/c139a3da0fe0cae7499a0bafa20f2875877c585b\"\u003e\u003ccode\u003ec139a3d\u003c/code\u003e\u003c/a\u003e version bump to v1.19.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/7501a63b9f4246d12516e35b91fed8be34f854c0\"\u003e\u003ccode\u003e7501a63\u003c/code\u003e\u003c/a\u003e fix: backtracking in CSS tokenizer rules (v1.19.x backport) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3627\"\u003e#3627\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/03e7968a730a6544ab56a8d6c3e82dd630ad4339\"\u003e\u003ccode\u003e03e7968\u003c/code\u003e\u003c/a\u003e test: skip CSS tokenizer benchmarks on JRuby\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/b984b7e47f622d1aa97d54c16d5cd596c3eb9538\"\u003e\u003ccode\u003eb984b7e\u003c/code\u003e\u003c/a\u003e fix: ReDoS in CSS tokenizer ident rule\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/00926231e28d5a20e5b4873efba36099aea0d5c6\"\u003e\u003ccode\u003e0092623\u003c/code\u003e\u003c/a\u003e fix: ReDoS in CSS tokenizer STRING rule\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/ee17d33aff3adb30c14e71d3d4c8163465acaccf\"\u003e\u003ccode\u003eee17d33\u003c/code\u003e\u003c/a\u003e fix: memory leak in XSLT transform (backport to v1.19.x) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3624\"\u003e#3624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/ce188a395192e3757d8701949afb643dc025084c\"\u003e\u003ccode\u003ece188a3\u003c/code\u003e\u003c/a\u003e doc: update CHANGELOG\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/caeaac41f874f0944f9397c78bf6c1bfac2cb472\"\u003e\u003ccode\u003ecaeaac4\u003c/code\u003e\u003c/a\u003e fix: memory leak in XSLT transform\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/25220bf268c9808e28415563ed7f8ea8d5c332bf\"\u003e\u003ccode\u003e25220bf\u003c/code\u003e\u003c/a\u003e dep(test): test against libxml-ruby v6 (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3618\"\u003e#3618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/0caeb21a5c5e9ff45bbede88fb53655f6753bb0e\"\u003e\u003ccode\u003e0caeb21\u003c/code\u003e\u003c/a\u003e doc: add security warnings for untrusted XSLT stylesheets\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/sparklemotion/nokogiri/compare/v1.19.2...v1.19.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rack` from 3.2.5 to 3.2.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/releases\"\u003erack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.2.6\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.2.5...v3.2.6\"\u003ehttps://github.com/rack/rack/compare/v3.2.5...v3.2.6\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.2.6] - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-7mqq-6cf9-v2qp\"\u003eCVE-2026-34763\u003c/a\u003e Root directory disclosure via unescaped regex interpolation in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v569-hp3g-36wr\"\u003eCVE-2026-34230\u003c/a\u003e Avoid O(n^2) algorithm in \u003ccode\u003eRack::Utils.select_best_encoding\u003c/code\u003e which could lead to denial of service.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qfgr-crr9-7r49\"\u003eCVE-2026-32762\u003c/a\u003e Forwarded header semicolon injection enables Host and Scheme spoofing.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-vgpv-f759-9wx3\"\u003eCVE-2026-26961\u003c/a\u003e Raise error for multipart requests with multiple boundary parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q4qf-9j86-f5mh\"\u003eCVE-2026-34786\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e \u003ccode\u003eheader_rules\u003c/code\u003e bypass via URL-encoded path mismatch.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q2ww-5357-x388\"\u003eCVE-2026-34831\u003c/a\u003e \u003ccode\u003eContent-Length\u003c/code\u003e mismatch in \u003ccode\u003eRack::Files\u003c/code\u003e error responses.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-x8cg-fq8g-mxfx\"\u003eCVE-2026-34826\u003c/a\u003e Multipart byte range processing allows denial of service via excessive overlapping ranges.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-g2pf-xv49-m2h5\"\u003eCVE-2026-34835\u003c/a\u003e \u003ccode\u003eRack::Request\u003c/code\u003e accepts invalid Host characters, enabling host allowlist bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qv7j-4883-hwh7\"\u003eCVE-2026-34830\u003c/a\u003e \u003ccode\u003eRack::Sendfile\u003c/code\u003e header-based \u003ccode\u003eX-Accel-Mapping\u003c/code\u003e regex injection enables unauthorized \u003ccode\u003eX-Accel-Redirect\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-h2jq-g4cq-5ppq\"\u003eCVE-2026-34785\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e prefix matching can expose unintended files under the static root.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-8vqr-qjwx-82mw\"\u003eCVE-2026-34829\u003c/a\u003e Multipart parsing without \u003ccode\u003eContent-Length\u003c/code\u003e header allows unbounded chunked file uploads.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v6x5-cg8r-vv6x\"\u003eCVE-2026-34827\u003c/a\u003e Multipart header parsing allows denial of service via escape-heavy quoted parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-rx22-g9mx-qrhv\"\u003eCVE-2026-26962\u003c/a\u003e Improper unfolding of folded multipart headers preserves CRLF in parsed parameter values.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/e1f22fdbe99afd2126b6fbf05bb12399359574b7\"\u003e\u003ccode\u003ee1f22fd\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/31989fd7bb6f806fdb3cfa4e9aec1fe8434f47d1\"\u003e\u003ccode\u003e31989fd\u003c/code\u003e\u003c/a\u003e Fix typo in test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/d268165e390e17b83573fec916dcdef6304a8b4b\"\u003e\u003ccode\u003ed268165\u003c/code\u003e\u003c/a\u003e Fix test expectation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/8f425de0ee75a2f3cdfbfdd57858c1910b7645ff\"\u003e\u003ccode\u003e8f425de\u003c/code\u003e\u003c/a\u003e Add Ruby v4.0 to the test matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/bf830426ce5b3daccb5a226b733703c86504ceba\"\u003e\u003ccode\u003ebf83042\u003c/code\u003e\u003c/a\u003e Drop EOL Rubies from external tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/d50c4d3dab62fa80b2a276271d0d4fb338cfa7df\"\u003e\u003ccode\u003ed50c4d3\u003c/code\u003e\u003c/a\u003e Implement OBS unfolding for multipart requests per RFC 5322 2.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/bfb69142dbe2a1e3298ad52d12935938d1b58205\"\u003e\u003ccode\u003ebfb6914\u003c/code\u003e\u003c/a\u003e Limit the number of quoted escapes during multipart parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/b3e5945c648c5a5b6982e5072b26e51990991229\"\u003e\u003ccode\u003eb3e5945\u003c/code\u003e\u003c/a\u003e Add Content-Length size check in Rack::Multipart::Parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/7a8f32696609b88e2c4c1f09d473a1d2d837ed4b\"\u003e\u003ccode\u003e7a8f326\u003c/code\u003e\u003c/a\u003e Fix root prefix bug in Rack::Static\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/a57bc140247f904dc1e3302badedcb73645072c7\"\u003e\u003ccode\u003ea57bc14\u003c/code\u003e\u003c/a\u003e Only do a simple substitution on the x-accel-mapping paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/v3.2.5...v3.2.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/SherfeyInv/devbox/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/SherfeyInv/devbox/pull/175","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/SherfeyInv%2Fdevbox/issues/175","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/175/packages"}},{"old_version":"3.2.5","new_version":"3.4.2","update_type":"minor","path":null,"pr_created_at":"2026-04-23T23:16:51.000Z","version_change":"3.2.5 → 3.4.2","issue":{"uuid":"4319422671","node_id":"PR_kwDOSK-7Ns7VJv1u","number":1,"state":"closed","title":"Bump rexml from 3.2.5 to 3.4.2","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-23T23:36:05.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-23T23:16:51.000Z","updated_at":"2026-04-23T23:36:06.000Z","time_to_close":1154,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"rexml","old_version":"3.2.5","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [rexml](https://github.com/ruby/rexml) from 3.2.5 to 3.4.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.2.5...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rexml\u0026package-manager=bundler\u0026previous-version=3.2.5\u0026new-version=3.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/KY4GD/virginorpigeon/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/KY4GD/virginorpigeon/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/KY4GD%2Fvirginorpigeon/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"}},{"old_version":"3.4.2","new_version":"3.4.4","update_type":"patch","path":null,"pr_created_at":"2026-04-21T18:32:57.000Z","version_change":"3.4.2 → 3.4.4","issue":{"uuid":"4304586061","node_id":"PR_kwDOAVIPGM7UZhRu","number":8314,"state":"open","title":"chore(deps): bump rexml from 3.4.2 to 3.4.4","user":"dependabot[bot]","labels":["Dependencies","Ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-21T18:32:57.000Z","updated_at":"2026-04-22T01:04:08.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"rexml","old_version":"3.4.2","new_version":"3.4.4","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [rexml](https://github.com/ruby/rexml) from 3.4.2 to 3.4.4.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.4 - 2025-09-10\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAccept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/296\"\u003eGH-296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003eGH-295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Joe Rafaniello\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJoe Rafaniello\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eREXML 3.4.3 - 2025-09-07\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject no root element XML as an invalid XML\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/289\"\u003eGH-289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003eGH-291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/287\"\u003eGH-287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003eGH-288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Jason Thomas\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSutou Kouhei\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJason Thomas\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.4 - 2025-09-10 {#version-3-4-4}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAccept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/296\"\u003eGH-296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003eGH-295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Joe Rafaniello\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJoe Rafaniello\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.4.3 - 2025-09-07 {#version-3-4-3}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject no root element XML as an invalid XML\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/289\"\u003eGH-289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003eGH-291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/287\"\u003eGH-287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003eGH-288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Jason Thomas\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSutou Kouhei\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJason Thomas\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/4f32ea33bc3f71cced67487659beef58edcf6d56\"\u003e\u003ccode\u003e4f32ea3\u003c/code\u003e\u003c/a\u003e Add 3.4.4 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/297\"\u003e#297\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/37cde3f4e660f9748f90a933daf7a9e51337d013\"\u003e\u003ccode\u003e37cde3f\u003c/code\u003e\u003c/a\u003e Accept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003e#295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/4ffe211b501614e769a8bf37d63a7037bb5d2e73\"\u003e\u003ccode\u003e4ffe211\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/822530c70f898bd33c075622fe068c6d6433e6c9\"\u003e\u003ccode\u003e822530c\u003c/code\u003e\u003c/a\u003e Add 3.4.3 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/293\"\u003e#293\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/6ba286cfd402e4040627615e2623f5b097261543\"\u003e\u003ccode\u003e6ba286c\u003c/code\u003e\u003c/a\u003e Reject no root element XML as an invalid XML (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/b5b148ed3c8a02fb53e971e312cee94b5301555a\"\u003e\u003ccode\u003eb5b148e\u003c/code\u003e\u003c/a\u003e The Zlib::GzipReader in JRuby does not behave as expected with REXML, so the ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1531862d18ec3ecd659060d60b8bb49accee5a42\"\u003e\u003ccode\u003e1531862\u003c/code\u003e\u003c/a\u003e Fixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/185bdc737da406ba4f9564726849ad3477858eb2\"\u003e\u003ccode\u003e185bdc7\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.4.2...v3.4.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/Coursemology/coursemology2/pull/8314","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Coursemology%2Fcoursemology2/issues/8314","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8314/packages"}},{"old_version":"3.4.2","new_version":"3.4.4","update_type":"patch","path":null,"pr_created_at":"2026-04-20T23:55:34.000Z","version_change":"3.4.2 → 3.4.4","issue":{"uuid":"4299379315","node_id":"PR_kwDOCSVaMM7UIreO","number":7320,"state":"open","title":"build(deps): bump the minor-and-patch group across 1 directory with 65 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-20T23:55:34.000Z","updated_at":"2026-04-20T23:56:00.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"minor-and-patch","update_count":65,"packages":[{"name":"aws-actionmailer-ses","old_version":"1.0.0","new_version":"1.1.0","repository_url":"https://github.com/aws/aws-actionmailer-ses-ruby"},{"name":"dotenv-rails","old_version":"3.1.8","new_version":"3.2.0","repository_url":"https://github.com/bkeepers/dotenv"},{"name":"kt-paperclip","old_version":"7.2.2","new_version":"7.3.0","repository_url":"https://github.com/kreeti/kt-paperclip"},{"name":"omniauth","old_version":"2.1.3","new_version":"2.1.4","repository_url":"https://github.com/omniauth/omniauth"},{"name":"omniauth-google-oauth2","old_version":"1.2.1","new_version":"1.2.2","repository_url":"https://github.com/zquestz/omniauth-google-oauth2"},{"name":"view_component","old_version":"4.6.0","new_version":"4.7.0","repository_url":"https://github.com/viewcomponent/view_component"},{"name":"rails","old_version":"8.0.5","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"},{"name":"terser","old_version":"1.2.6","new_version":"1.2.7","repository_url":"https://github.com/ahorek/terser-ruby"},{"name":"jquery-rails","old_version":"4.6.0","new_version":"4.6.1","repository_url":"https://github.com/rails/jquery-rails"},{"name":"sidekiq","old_version":"8.0.7","new_version":"8.1.3","repository_url":"https://github.com/sidekiq/sidekiq"},{"name":"geocoder","old_version":"1.8.5","new_version":"1.8.6","repository_url":"https://github.com/alexreisner/geocoder"},{"name":"pundit","old_version":"2.5.0","new_version":"2.5.2","repository_url":"https://github.com/varvet/pundit"},{"name":"ahoy_matey","old_version":"5.4.0","new_version":"5.5.0","repository_url":"https://github.com/ankane/ahoy"},{"name":"i18n-js","old_version":"4.2.3","new_version":"4.2.4","repository_url":"https://github.com/fnando/i18n-js"},{"name":"pg","old_version":"1.6.1","new_version":"1.6.3","repository_url":"https://github.com/ged/ruby-pg"},{"name":"bootsnap","old_version":"1.18.6","new_version":"1.23.0","repository_url":"https://github.com/rails/bootsnap"},{"name":"rexml","old_version":"3.4.2","new_version":"3.4.4","repository_url":"https://github.com/ruby/rexml"},{"name":"flipper-redis","old_version":"1.3.6","new_version":"1.4.1","repository_url":"https://github.com/flippercloud/flipper"},{"name":"friendly_id","old_version":"5.5.1","new_version":"5.6.0","repository_url":"https://github.com/norman/friendly_id"},{"name":"rails-i18n","old_version":"8.0.2","new_version":"8.1.0","repository_url":"https://github.com/svenfuchs/rails-i18n"},{"name":"recaptcha","old_version":"5.20.1","new_version":"5.21.2","repository_url":"https://github.com/ambethia/recaptcha"},{"name":"strong_migrations","old_version":"2.5.0","new_version":"2.6.0","repository_url":"https://github.com/ankane/strong_migrations"},{"name":"debug","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/ruby/debug"},{"name":"factory_bot_rails","old_version":"6.5.0","new_version":"6.5.1","repository_url":"https://github.com/thoughtbot/factory_bot_rails"},{"name":"faker","old_version":"3.5.2","new_version":"3.8.0","repository_url":"https://github.com/faker-ruby/faker"},{"name":"rspec-rails","old_version":"8.0.2","new_version":"8.0.4","repository_url":"https://github.com/rspec/rspec-rails"},{"name":"rubocop-performance","old_version":"1.25.0","new_version":"1.26.1","repository_url":"https://github.com/rubocop/rubocop-performance"},{"name":"rubocop-rails","old_version":"2.33.3","new_version":"2.34.3","repository_url":"https://github.com/rubocop/rubocop-rails"},{"name":"rubocop-rspec","old_version":"3.6.0","new_version":"3.9.0","repository_url":"https://github.com/rubocop/rubocop-rspec"},{"name":"rbs_rails","old_version":"0.12.1","new_version":"0.13.1","repository_url":"https://github.com/pocke/rbs_rails"},{"name":"json-schema","old_version":"6.0.0","new_version":"6.2.0","repository_url":"https://github.com/voxpupuli/json-schema"},{"name":"webmock","old_version":"3.25.1","new_version":"3.26.2","repository_url":"https://github.com/bblimke/webmock"},{"name":"undercover","old_version":"0.8.0","new_version":"0.8.4","repository_url":"https://github.com/grodowski/undercover"},{"name":"capybara-playwright-driver","old_version":"0.5.7","new_version":"0.5.9","repository_url":"https://github.com/YusukeIwaki/capybara-playwright-driver"},{"name":"listen","old_version":"3.9.0","new_version":"3.10.0","repository_url":"https://github.com/guard/listen"},{"name":"web-console","old_version":"4.2.1","new_version":"4.3.0","repository_url":"https://github.com/rails/web-console"},{"name":"bundler-audit","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/rubysec/bundler-audit"},{"name":"lookbook","old_version":"2.3.13","new_version":"2.3.14","repository_url":"https://github.com/lookbook-hq/lookbook"},{"name":"oj","old_version":"3.16.11","new_version":"3.17.0","repository_url":"https://github.com/ohler55/oj"},{"name":"rack-attack","old_version":"6.7.0","new_version":"6.8.0","repository_url":"https://github.com/rack/rack-attack"},{"name":"aws-sdk-s3","old_version":"1.208.0","new_version":"1.219.0","repository_url":"https://github.com/aws/aws-sdk-ruby"},{"name":"opentelemetry-sdk","old_version":"1.8.1","new_version":"1.11.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby"},{"name":"opentelemetry-exporter-otlp","old_version":"0.30.0","new_version":"0.33.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby"},{"name":"opentelemetry-instrumentation-active_job","old_version":"0.8.0","new_version":"0.11.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby-contrib"},{"name":"maintenance_tasks","old_version":"2.12.0","new_version":"2.14.0","repository_url":"https://github.com/Shopify/maintenance_tasks"},{"name":"stackprof","old_version":"0.2.27","new_version":"0.2.28","repository_url":"https://github.com/tmm1/stackprof"},{"name":"concurrent-ruby","old_version":"1.3.5","new_version":"1.3.6","repository_url":"https://github.com/ruby-concurrency/concurrent-ruby"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the minor-and-patch group with 47 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-actionmailer-ses](https://github.com/aws/aws-actionmailer-ses-ruby) | `1.0.0` | `1.1.0` |\n| [dotenv-rails](https://github.com/bkeepers/dotenv) | `3.1.8` | `3.2.0` |\n| [kt-paperclip](https://github.com/kreeti/kt-paperclip) | `7.2.2` | `7.3.0` |\n| [omniauth](https://github.com/omniauth/omniauth) | `2.1.3` | `2.1.4` |\n| [omniauth-google-oauth2](https://github.com/zquestz/omniauth-google-oauth2) | `1.2.1` | `1.2.2` |\n| [view_component](https://github.com/viewcomponent/view_component) | `4.6.0` | `4.7.0` |\n| [rails](https://github.com/rails/rails) | `8.0.5` | `8.1.3` |\n| [terser](https://github.com/ahorek/terser-ruby) | `1.2.6` | `1.2.7` |\n| [jquery-rails](https://github.com/rails/jquery-rails) | `4.6.0` | `4.6.1` |\n| [sidekiq](https://github.com/sidekiq/sidekiq) | `8.0.7` | `8.1.3` |\n| [geocoder](https://github.com/alexreisner/geocoder) | `1.8.5` | `1.8.6` |\n| [pundit](https://github.com/varvet/pundit) | `2.5.0` | `2.5.2` |\n| [ahoy_matey](https://github.com/ankane/ahoy) | `5.4.0` | `5.5.0` |\n| [i18n-js](https://github.com/fnando/i18n-js) | `4.2.3` | `4.2.4` |\n| [pg](https://github.com/ged/ruby-pg) | `1.6.1` | `1.6.3` |\n| [bootsnap](https://github.com/rails/bootsnap) | `1.18.6` | `1.23.0` |\n| [rexml](https://github.com/ruby/rexml) | `3.4.2` | `3.4.4` |\n| [flipper-redis](https://github.com/flippercloud/flipper) | `1.3.6` | `1.4.1` |\n| [friendly_id](https://github.com/norman/friendly_id) | `5.5.1` | `5.6.0` |\n| [rails-i18n](https://github.com/svenfuchs/rails-i18n) | `8.0.2` | `8.1.0` |\n| [recaptcha](https://github.com/ambethia/recaptcha) | `5.20.1` | `5.21.2` |\n| [strong_migrations](https://github.com/ankane/strong_migrations) | `2.5.0` | `2.6.0` |\n| [debug](https://github.com/ruby/debug) | `1.11.0` | `1.11.1` |\n| [factory_bot_rails](https://github.com/thoughtbot/factory_bot_rails) | `6.5.0` | `6.5.1` |\n| [faker](https://github.com/faker-ruby/faker) | `3.5.2` | `3.8.0` |\n| [rspec-rails](https://github.com/rspec/rspec-rails) | `8.0.2` | `8.0.4` |\n| [rubocop-performance](https://github.com/rubocop/rubocop-performance) | `1.25.0` | `1.26.1` |\n| [rubocop-rails](https://github.com/rubocop/rubocop-rails) | `2.33.3` | `2.34.3` |\n| [rubocop-rspec](https://github.com/rubocop/rubocop-rspec) | `3.6.0` | `3.9.0` |\n| [rbs_rails](https://github.com/pocke/rbs_rails) | `0.12.1` | `0.13.1` |\n| [json-schema](https://github.com/voxpupuli/json-schema) | `6.0.0` | `6.2.0` |\n| [webmock](https://github.com/bblimke/webmock) | `3.25.1` | `3.26.2` |\n| [undercover](https://github.com/grodowski/undercover) | `0.8.0` | `0.8.4` |\n| [capybara-playwright-driver](https://github.com/YusukeIwaki/capybara-playwright-driver) | `0.5.7` | `0.5.9` |\n| [listen](https://github.com/guard/listen) | `3.9.0` | `3.10.0` |\n| [web-console](https://github.com/rails/web-console) | `4.2.1` | `4.3.0` |\n| [bundler-audit](https://github.com/rubysec/bundler-audit) | `0.9.2` | `0.9.3` |\n| [lookbook](https://github.com/lookbook-hq/lookbook) | `2.3.13` | `2.3.14` |\n| [oj](https://github.com/ohler55/oj) | `3.16.11` | `3.17.0` |\n| [rack-attack](https://github.com/rack/rack-attack) | `6.7.0` | `6.8.0` |\n| [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) | `1.208.0` | `1.219.0` |\n| [opentelemetry-sdk](https://github.com/open-telemetry/opentelemetry-ruby) | `1.8.1` | `1.11.0` |\n| [opentelemetry-exporter-otlp](https://github.com/open-telemetry/opentelemetry-ruby) | `0.30.0` | `0.33.0` |\n| [opentelemetry-instrumentation-active_job](https://github.com/open-telemetry/opentelemetry-ruby-contrib) | `0.8.0` | `0.11.0` |\n| [maintenance_tasks](https://github.com/Shopify/maintenance_tasks) | `2.12.0` | `2.14.0` |\n| [stackprof](https://github.com/tmm1/stackprof) | `0.2.27` | `0.2.28` |\n| [concurrent-ruby](https://github.com/ruby-concurrency/concurrent-ruby) | `1.3.5` | `1.3.6` |\n\n\nUpdates `aws-actionmailer-ses` from 1.0.0 to 1.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/releases\"\u003eaws-actionmailer-ses's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v1.1.0 - 2026-03-31\u003c/h2\u003e\n\u003cp\u003eTag release v1.1.0\u003c/p\u003e\n\u003cp\u003eReferences: \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/14\"\u003e#14\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/6\"\u003e#6\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/7\"\u003e#7\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/9\"\u003e#9\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFeature - Support injecting a preconstructed client via \u003ccode\u003e:ses_client\u003c/code\u003e and \u003ccode\u003e:sesv2_client\u003c/code\u003e options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/blob/main/CHANGELOG.md\"\u003eaws-actionmailer-ses's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.1.0 (2026-03-31)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFeature - Support injecting a preconstructed client via \u003ccode\u003e:ses_client\u003c/code\u003e and \u003ccode\u003e:sesv2_client\u003c/code\u003e options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/87d57bae1d2da68729c639da957c89b4f14eef02\"\u003e\u003ccode\u003e87d57ba\u003c/code\u003e\u003c/a\u003e Bumped version to v1.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/55de5a801bc2f819acda6521fa7efab8e72829bb\"\u003e\u003ccode\u003e55de5a8\u003c/code\u003e\u003c/a\u003e Allow precreated SESv2 client (issue \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/7\"\u003e#7\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/14\"\u003e#14\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/0e7a21034d43615e7765bb96c84f09f43fe80e1f\"\u003e\u003ccode\u003e0e7a210\u003c/code\u003e\u003c/a\u003e Scope down GitHub token permissions for ci.yml (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/9\"\u003e#9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/c2b91df4f58ed7da035c953ecfd4f9847da46ebb\"\u003e\u003ccode\u003ec2b91df\u003c/code\u003e\u003c/a\u003e Update CI to include 3.4 (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/6\"\u003e#6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/aab2974887db3c4d525f9e18c3f1ae7c6513d230\"\u003e\u003ccode\u003eaab2974\u003c/code\u003e\u003c/a\u003e Update README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/ce6af36916d5ab9224bf193690d98f539585f208\"\u003e\u003ccode\u003ece6af36\u003c/code\u003e\u003c/a\u003e Added next release section to the changelog. [ci skip]\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/compare/v1.0.0...v1.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv-rails` from 3.1.8 to 3.2.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bkeepers/dotenv/releases\"\u003edotenv-rails's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBoost app startup time by removing to_sentence usage by \u003ca href=\"https://github.com/ThomasCrambert\"\u003e\u003ccode\u003e@​ThomasCrambert\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/534\"\u003ebkeepers/dotenv#534\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHandle parentheses in variables in commands by \u003ca href=\"https://github.com/i7an\"\u003e\u003ccode\u003e@​i7an\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/540\"\u003ebkeepers/dotenv#540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eallow warning when a env var was not overwritten by \u003ca href=\"https://github.com/grosser\"\u003e\u003ccode\u003e@​grosser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/531\"\u003ebkeepers/dotenv#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix a few small issues by \u003ca href=\"https://github.com/grosser\"\u003e\u003ccode\u003e@​grosser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/532\"\u003ebkeepers/dotenv#532\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ThomasCrambert\"\u003e\u003ccode\u003e@​ThomasCrambert\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/534\"\u003ebkeepers/dotenv#534\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i7an\"\u003e\u003ccode\u003e@​i7an\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/540\"\u003ebkeepers/dotenv#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\"\u003ehttps://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/34156bf400cd67387fa6ed9f146778f6a2f5f743\"\u003e\u003ccode\u003e34156bf\u003c/code\u003e\u003c/a\u003e Prepare for 3.2.0 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/ab478201bdb487bfebd9e89875fd4edcf19dc064\"\u003e\u003ccode\u003eab47820\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/531\"\u003e#531\u003c/a\u003e from grosser/grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/fae61202e432f39742e2592817cc7bb38f559852\"\u003e\u003ccode\u003efae6120\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/4f510f41073cabb9786e3a5ea57263933497e696\"\u003e\u003ccode\u003e4f510f4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/532\"\u003e#532\u003c/a\u003e from grosser/grosser/fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/959e1dac9d933a7ffe6a2ab17081f8235b7822a9\"\u003e\u003ccode\u003e959e1da\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/539\"\u003e#539\u003c/a\u003e from bkeepers/dependabot/github_actions/actions/check...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/041451e4ef7fd3a4ea604fcabef0cfb6fb5e79a3\"\u003e\u003ccode\u003e041451e\u003c/code\u003e\u003c/a\u003e Update spec message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/b300f262bdf1cfd6ac5215fd44baa771753702b9\"\u003e\u003ccode\u003eb300f26\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/5f4ca012b03c82343ad3f926e2fd281aa30a434b\"\u003e\u003ccode\u003e5f4ca01\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/209dca47e453f7288aac9f31330e67e3f0b83e78\"\u003e\u003ccode\u003e209dca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/540\"\u003e#540\u003c/a\u003e from i7an/handle-parentheses\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/48c495683008c5dd1816a89329e59f8386324bb2\"\u003e\u003ccode\u003e48c4956\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into handle-parentheses\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `kt-paperclip` from 7.2.2 to 7.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kreeti/kt-paperclip/releases\"\u003ekt-paperclip's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v7.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix BOM for gd locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/158\"\u003e#158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport versions of aws-sdk-s3 \u0026gt;= 1.197 by conditionally using \u003ccode\u003eAws::S3::TransferManager\u003c/code\u003e if available (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/155\"\u003e#155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix frozen string literal warning in geometry.rb (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFeature - add option to return attachment attributes on destroy (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/91\"\u003e#91\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRuby 3.1 - Fix loading of Fog (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/135\"\u003e#135\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/139\"\u003e#139\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFrench Locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/134\"\u003e#134\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oz-tal\"\u003e\u003ccode\u003e@​oz-tal\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/134\"\u003ekreeti/kt-paperclip#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zz9pzza\"\u003e\u003ccode\u003e@​zz9pzza\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/135\"\u003ekreeti/kt-paperclip#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unijewski\"\u003e\u003ccode\u003e@​unijewski\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/91\"\u003ekreeti/kt-paperclip#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lorennorman\"\u003e\u003ccode\u003e@​lorennorman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/146\"\u003ekreeti/kt-paperclip#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cgunther\"\u003e\u003ccode\u003e@​cgunther\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/151\"\u003ekreeti/kt-paperclip#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jukra\"\u003e\u003ccode\u003e@​jukra\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/155\"\u003ekreeti/kt-paperclip#155\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\"\u003ehttps://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/818f236aa6f2323bd0055bea664b33187d926377\"\u003e\u003ccode\u003e818f236\u003c/code\u003e\u003c/a\u003e Deperecate NEWS to OLD-NEWS, see release notes for correct and accurate list ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/a38ed66b5d08210a4326b0d78e2116d0946fa3c2\"\u003e\u003ccode\u003ea38ed66\u003c/code\u003e\u003c/a\u003e prepare for new release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/8820cb221210bf04ca2de278dab594adfa46efe5\"\u003e\u003ccode\u003e8820cb2\u003c/code\u003e\u003c/a\u003e [Fix \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/154\"\u003e#154\u003c/a\u003e] remove BOM from gd locale\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/cd5c4496d12894eafa218cb631c592b67c9c10a2\"\u003e\u003ccode\u003ecd5c449\u003c/code\u003e\u003c/a\u003e Fix S3 TransferManager to use configured client\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/f017c401218da5a1e106ed3dd964b51d601bac5b\"\u003e\u003ccode\u003ef017c40\u003c/code\u003e\u003c/a\u003e Make usage of Aws::S3::TransferManager conditional based on availability\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/233b4756745c2610988796a0059408a50d322b92\"\u003e\u003ccode\u003e233b475\u003c/code\u003e\u003c/a\u003e Support aws-sdk-s3 \u0026gt;= 1.196.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/e20e848c80ce16f18dae2162d5e00be0d9b51421\"\u003e\u003ccode\u003ee20e848\u003c/code\u003e\u003c/a\u003e Fix the use of deprecated methods from \u003ccode\u003eaws-sdk-s3\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/5078ca1c33c8cb66865e6127152ac1e240b2bb0a\"\u003e\u003ccode\u003e5078ca1\u003c/code\u003e\u003c/a\u003e Fix frozen string literal warning in geometry.rb (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/153e7dbe462de4f7f3ef42c67f95390e98e6cba7\"\u003e\u003ccode\u003e153e7db\u003c/code\u003e\u003c/a\u003e fix frozen string literal deprecation warning (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/146\"\u003e#146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/83dc8d92e63e4c360bb9f45af1cf3b63d99bed54\"\u003e\u003ccode\u003e83dc8d9\u003c/code\u003e\u003c/a\u003e Update LICENSE\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `omniauth` from 2.1.3 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/omniauth/omniauth/releases\"\u003eomniauth's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ruby 3.4 to CI by \u003ca href=\"https://github.com/tejasbubane\"\u003e\u003ccode\u003e@​tejasbubane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/omniauth/omniauth/pull/1142\"\u003eomniauth/omniauth#1142\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd after_request_phase callback hook by \u003ca href=\"https://github.com/gerardo-navarro\"\u003e\u003ccode\u003e@​gerardo-navarro\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/omniauth/omniauth/pull/1147\"\u003eomniauth/omniauth#1147\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\"\u003ehttps://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eYou may now configure an after_request_phase callback on your omniauth builder instance. This callback will be run after the request phase before returning the request result.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/20ac5e05a39d58d18aca6419599f7176208f985d\"\u003e\u003ccode\u003e20ac5e0\u003c/code\u003e\u003c/a\u003e 3.1.4 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/3a249afad83e4522bd4761404cbdc89fd56a1079\"\u003e\u003ccode\u003e3a249af\u003c/code\u003e\u003c/a\u003e Add after_request_phase callback hook (\u003ca href=\"https://redirect.github.com/omniauth/omniauth/issues/1147\"\u003e#1147\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/0bcfd5b25bf946422cd4d9c40c4f514121ac04d6\"\u003e\u003ccode\u003e0bcfd5b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/omniauth/omniauth/issues/1142\"\u003e#1142\u003c/a\u003e from tejasbubane/ruby-3.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/09ee92e658878f31ab51f29e02d41296cfe36111\"\u003e\u003ccode\u003e09ee92e\u003c/code\u003e\u003c/a\u003e include cgi in test group due to removal of cookie\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/abfde9072cef0e4d89463daf6185ac68520087f7\"\u003e\u003ccode\u003eabfde90\u003c/code\u003e\u003c/a\u003e add dependency on logger\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/844548c8641d1a3b65c9062e67e073fa8bf39936\"\u003e\u003ccode\u003e844548c\u003c/code\u003e\u003c/a\u003e Add Ruby 3.4 to CI\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `omniauth-google-oauth2` from 1.2.1 to 1.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/releases\"\u003eomniauth-google-oauth2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.2.2\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRuby 4.0 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNothing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUnused \u003ccode\u003eIMAGE_SIZE_REGEXP\u003c/code\u003e constant.\u003c/li\u003e\n\u003cli\u003eDead \u003ccode\u003eskip_friends\u003c/code\u003e and \u003ccode\u003eskip_image_info\u003c/code\u003e options (Google+ was shut down in 2019).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplaced \u003ccode\u003eCGI.parse\u003c/code\u003e with \u003ccode\u003eURI.decode_www_form\u003c/code\u003e for Ruby 4.0 compatibility.\u003c/li\u003e\n\u003cli\u003eUpdated gemspec description to reference OmniAuth instead of OmniAuth 1.x.\u003c/li\u003e\n\u003cli\u003eModernized CI: bumped actions/checkout to v6, rake to 13.3, and rubocop to latest.\u003c/li\u003e\n\u003cli\u003eAdded edge case tests for \u003ccode\u003euid\u003c/code\u003e, \u003ccode\u003estrip_unnecessary_query_parameters\u003c/code\u003e, \u003ccode\u003everify_token\u003c/code\u003e, \u003ccode\u003everify_hd\u003c/code\u003e wildcard, and malformed JSON handling.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/blob/master/CHANGELOG.md\"\u003eomniauth-google-oauth2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.2.2 - 2026-02-23\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRuby 4.0 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNothing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUnused \u003ccode\u003eIMAGE_SIZE_REGEXP\u003c/code\u003e constant.\u003c/li\u003e\n\u003cli\u003eDead \u003ccode\u003eskip_friends\u003c/code\u003e and \u003ccode\u003eskip_image_info\u003c/code\u003e options (Google+ was shut down in 2019).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplaced \u003ccode\u003eCGI.parse\u003c/code\u003e with \u003ccode\u003eURI.decode_www_form\u003c/code\u003e for Ruby 4.0 compatibility.\u003c/li\u003e\n\u003cli\u003eUpdated gemspec description to reference OmniAuth instead of OmniAuth 1.x.\u003c/li\u003e\n\u003cli\u003eModernized CI: bumped actions/checkout to v6, rake to 13.3, and rubocop to latest.\u003c/li\u003e\n\u003cli\u003eAdded edge case tests for \u003ccode\u003euid\u003c/code\u003e, \u003ccode\u003estrip_unnecessary_query_parameters\u003c/code\u003e, \u003ccode\u003everify_token\u003c/code\u003e, \u003ccode\u003everify_hd\u003c/code\u003e wildcard, and malformed JSON handling.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/5158faa94a620d8ec4d9ce400aabfef3a3844dd9\"\u003e\u003ccode\u003e5158faa\u003c/code\u003e\u003c/a\u003e Add release date to CHANGELOG.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/c5f46005e0207d2e436cf0db37c85170cca04da7\"\u003e\u003ccode\u003ec5f4600\u003c/code\u003e\u003c/a\u003e Update docs and examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/4c14af8e1e6dc2615da908c50e4b0b757972922e\"\u003e\u003ccode\u003e4c14af8\u003c/code\u003e\u003c/a\u003e Backfill missing tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/e66d0bbe6ad91f9f5a60056dae2ebf850373f249\"\u003e\u003ccode\u003ee66d0bb\u003c/code\u003e\u003c/a\u003e Clean up dead code, modernize CI, and prep 1.2.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/b902e8e7585e8e3610040d9c770f2d4e90b6f132\"\u003e\u003ccode\u003eb902e8e\u003c/code\u003e\u003c/a\u003e Modernize CI: bump rubocop, checkout action, and tooling defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/ac9a979db8ee097971d5d70c12142070c539d8ab\"\u003e\u003ccode\u003eac9a979\u003c/code\u003e\u003c/a\u003e Add Ruby 4.0 to CI (\u003ca href=\"https://redirect.github.com/zquestz/omniauth-google-oauth2/issues/474\"\u003e#474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/d3f1c912e438ccf6aba577c66772bf2e37373d73\"\u003e\u003ccode\u003ed3f1c91\u003c/code\u003e\u003c/a\u003e Add GitHub pages config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/253f023cdd8a5d5e05b3fed9aa00ae478a6c2997\"\u003e\u003ccode\u003e253f023\u003c/code\u003e\u003c/a\u003e Remove calendar scope on example app\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/baaf3b755ea1a02c9f811fd513b0fe90fdd2defb\"\u003e\u003ccode\u003ebaaf3b7\u003c/code\u003e\u003c/a\u003e chore(doc): update JavaScript example in README (\u003ca href=\"https://redirect.github.com/zquestz/omniauth-google-oauth2/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/dcea9d208416b53af0956d95ce54daa424d36490\"\u003e\u003ccode\u003edcea9d2\u003c/code\u003e\u003c/a\u003e Add Ruby 3.3 and 3.4 to CI matrix\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/compare/v1.2.1...v1.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `view_component` from 4.6.0 to 4.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/viewcomponent/view_component/releases\"\u003eview_component's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix stale content cache when slots are accessed before \u003ccode\u003erender_in\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJared Armstrong\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdd rubocop-view_component to resources.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eAndy Waite\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix bug where inheritance of components with formatless templates improperly raised a NoMethodError.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e, \u003cem\u003eJoel Hawksley\u003c/em\u003e, \u003cem\u003eCameron Dutro\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ViewComponent/view_component/blob/main/docs/CHANGELOG.md\"\u003eview_component's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix stale content cache when slots are accessed before \u003ccode\u003erender_in\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJared Armstrong\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdd rubocop-view_component to resources.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eAndy Waite\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix bug where inheritance of components with formatless templates improperly raised a NoMethodError.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e, \u003cem\u003eJoel Hawksley\u003c/em\u003e, \u003cem\u003eCameron Dutro\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/b89ff4feda61a44d066d6d58a67a4add318f944f\"\u003e\u003ccode\u003eb89ff4f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2610\"\u003e#2610\u003c/a\u003e from ViewComponent/release-4-7-0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/c187ebb9ea8e19b6cb5d988bb1c9eab7431173b2\"\u003e\u003ccode\u003ec187ebb\u003c/code\u003e\u003c/a\u003e lockfiles\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/a53f39d8b11efcc47df62617d1127849448207a7\"\u003e\u003ccode\u003ea53f39d\u003c/code\u003e\u003c/a\u003e release 4.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/59e97964530bb897b80c2a02ca08f0415a361319\"\u003e\u003ccode\u003e59e9796\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2609\"\u003e#2609\u003c/a\u003e from ViewComponent/dependabot/bundler/yard-0.9.42\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/3f4277cbe0d9fb05024a79650650838beb962e46\"\u003e\u003ccode\u003e3f4277c\u003c/code\u003e\u003c/a\u003e Bump yard from 0.9.41 to 0.9.42\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/42909f1ca36038a0564a47242012ca011f420840\"\u003e\u003ccode\u003e42909f1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2608\"\u003e#2608\u003c/a\u003e from ViewComponent/dependabot/bundler/rake-13.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/40f8f68f487e5b1ff9089930900bd7c8ddbaf281\"\u003e\u003ccode\u003e40f8f68\u003c/code\u003e\u003c/a\u003e Bump rake from 13.4.1 to 13.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/62581fedb963feccb3f42a8669c3e04e737a780e\"\u003e\u003ccode\u003e62581fe\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2607\"\u003e#2607\u003c/a\u003e from ViewComponent/dependabot/bundler/yard-0.9.41\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/db4d53ca3a358f5645c521fdcac43d2a5de54d8e\"\u003e\u003ccode\u003edb4d53c\u003c/code\u003e\u003c/a\u003e Bump yard from 0.9.40 to 0.9.41\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/51f833b18443da39d865be4e59522445b6998fb4\"\u003e\u003ccode\u003e51f833b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2606\"\u003e#2606\u003c/a\u003e from ViewComponent/dependabot/bundler/minitest-6.0.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/viewcomponent/view_component/compare/v4.6.0...v4.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rails` from 8.0.5 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003erails's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/e91694b1f0e176eb01bfcc480a008bffc70f7602\"\u003e\u003ccode\u003ee91694b\u003c/code\u003e\u003c/a\u003e Update CHANGELOG (8.1 only)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63f5ad83edaa0b976f82d46988d745426aa4a42d\"\u003e\u003ccode\u003e63f5ad8\u003c/code\u003e\u003c/a\u003e Skip blank attribute names in Action View tag helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8c9676b803820110548cdb7523800db43bc6874c\"\u003e\u003ccode\u003e8c9676b\u003c/code\u003e\u003c/a\u003e Prevent glob injection in ActiveStorage DiskService#delete_prefixed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/9b06fbc0f504b8afe333f33d19548f3b85fbe655\"\u003e\u003ccode\u003e9b06fbc\u003c/code\u003e\u003c/a\u003e Prevent path traversal in ActiveStorage DiskService\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ec1a0e215efd27a3b3911aae6df978a80f456a49\"\u003e\u003ccode\u003eec1a0e2\u003c/code\u003e\u003c/a\u003e Improve performance of NumberToDelimitedConverter\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v8.0.5...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `terser` from 1.2.6 to 1.2.7\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ahorek/terser-ruby/blob/master/CHANGELOG.md\"\u003eterser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.2.7 (23 March 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadded a new module option to enable minification of ES6 modules (default is false)\u003c/li\u003e\n\u003cli\u003eupdate TerserJS to [5.46.1]\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/14243401aadac062e738fde86525f261c37b1782\"\u003e\u003ccode\u003e1424340\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ahorek/terser-ruby/issues/67\"\u003e#67\u003c/a\u003e from ahorek/terser5461\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/ae1669dba36b571932a25685765932103db89189\"\u003e\u003ccode\u003eae1669d\u003c/code\u003e\u003c/a\u003e terser 5.46.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/c8b1c3213847dfeb85e1769958ecf9753651e697\"\u003e\u003ccode\u003ec8b1c32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ahorek/terser-ruby/issues/64\"\u003e#64\u003c/a\u003e from ahorek/module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/3a614841138d5c1dcf79d6362e22ad5b0a0b19f3\"\u003e\u003ccode\u003e3a61484\u003c/code\u003e\u003c/a\u003e add a module option\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ahorek/terser-ruby/compare/1.2.6...1.2.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jquery-rails` from 4.6.0 to 4.6.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md\"\u003ejquery-rails's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.7.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/034296045427fa54ad095f392fccd9ff5708e110\"\u003e\u003ccode\u003e0342960\u003c/code\u003e\u003c/a\u003e Release v4.6.1 with jQuery v3.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/039b12e91c148d65789030308653545943db43a4\"\u003e\u003ccode\u003e039b12e\u003c/code\u003e\u003c/a\u003e Update jquery to v3.7.1 (\u003ca href=\"https://redirect.github.com/rails/jquery-rails/issues/305\"\u003e#305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/jquery-rails/compare/v4.6.0...v4.6.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sidekiq` from 8.0.7 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sidekiq/sidekiq/blob/main/Changes.md\"\u003esidekiq's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix edge case leading to duplicate, concurrent execution \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6379\"\u003e#6379\u003c/a\u003e\nIf 2 Capsules process jobs from the same queue, long-running\njobs could run in parallel during process shutdown.\u003c/li\u003e\n\u003cli\u003e[SECURITY] Remove as much YAML usage as possible. \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6950\"\u003e#6950\u003c/a\u003e\nLocalization files in \u003ccode\u003eweb/locales\u003c/code\u003e are now manually parsed.\nSidekiq::CLI will now only require YAML if you use a \u003ccode\u003e-C\u003c/code\u003e .yml file.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eInitial release for \u003ccode\u003ekiq\u003c/code\u003e, Sidekiq's official terminal UI:\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003ebundle exec kiq\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eUse REDIS_URL or REDIS_PROVIDER to point \u003ccode\u003ekiq\u003c/code\u003e to Redis.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eMutation during iteration in \u003ccode\u003eSortedSet#each\u003c/code\u003e caused it to miss half of the jobs \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6936\"\u003e#6936\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix edge case resulting in nil crash on /busy page \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6954\"\u003e#6954\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDEPRECATION\u003c/strong\u003e \u003ccode\u003erequire 'sidekiq/testing'\u003c/code\u003e and\n\u003ccode\u003erequire 'sidekiq/testing/inline'\u003c/code\u003e.\nAdd new \u003ccode\u003eSidekiq.testing!(mode)\u003c/code\u003e API \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6931\"\u003e#6931\u003c/a\u003e\nRequiring code should not enable process-wide changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003e# Old, implicit\nrequire \u0026quot;sidekiq/testing\u0026quot;\nrequire \u0026quot;sidekiq/testing/inline\u0026quot;\n# New, more explicit\nSidekiq.testing!(:fake)\nSidekiq.testing!(:inline)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eFix race condition with Stop button in UI \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6935\"\u003e#6935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix javascript error handler \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6893\"\u003e#6893\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eretry_for\u003c/code\u003e and \u003ccode\u003eretry\u003c/code\u003e are now mutually exclusive [#6878, Saidbek]\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eperform_inline\u003c/code\u003e now enforces \u003ccode\u003estrict_args!\u003c/code\u003e [#6718, Saidbek]\u003c/li\u003e\n\u003cli\u003eIntegrate Herb linting for ERB templates [#6760, Saidbek]\u003c/li\u003e\n\u003cli\u003eRemove CSRF code, use \u003ccode\u003eSec-Fetch-Site\u003c/code\u003e header [#6874, deve1212]\u003c/li\u003e\n\u003cli\u003eAllow custom Web UI \u003ccode\u003eassets_path\u003c/code\u003e for CDN purposes [#6865, stanhu]\u003c/li\u003e\n\u003cli\u003eUpgrade to connection_pool 3.0\u003c/li\u003e\n\u003cli\u003eAllow idle connection reaping after N seconds.\nYou can activate this \u003cstrong\u003ebeta\u003c/strong\u003e feature like below.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/52a08748a39030aa22e73861e1fd1bbc60bf3dea\"\u003e\u003ccode\u003e52a0874\u003c/code\u003e\u003c/a\u003e Bump, prep [ciskip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/03ca0473816dfa26eb80ae2660ab316b9ff738fb\"\u003e\u003ccode\u003e03ca047\u003c/code\u003e\u003c/a\u003e Dont call bulk_requeue when stopping Capsule, \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6379\"\u003e#6379\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/90d1aeed267a19cc0dfa1d2189b8d184ff5bb995\"\u003e\u003ccode\u003e90d1aee\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;add: info tag when dead queue is at max (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6976\"\u003e#6976\u003c/a\u003e)\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/a5ae98b83aad1758ec6d7fa26e6f78562abc50cf\"\u003e\u003ccode\u003ea5ae98b\u003c/code\u003e\u003c/a\u003e add: info tag when dead queue is at max (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6976\"\u003e#6976\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/fef6cdf5dc2aeaf579f242368ad4beb0675629a5\"\u003e\u003ccode\u003efef6cdf\u003c/code\u003e\u003c/a\u003e Reduce unnecessary exceptions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/30723ca77f5df695079fefd562cea803ce2d5420\"\u003e\u003ccode\u003e30723ca\u003c/code\u003e\u003c/a\u003e fix: improve pagination active page visibility in dark mode (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6960\"\u003e#6960\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/554de9f673f6555b760bf707ad88573db9da44e1\"\u003e\u003ccode\u003e554de9f\u003c/code\u003e\u003c/a\u003e pro changes [ciskip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/25afb7938feeeb4b4f80c979abde89164586d3c6\"\u003e\u003ccode\u003e25afb79\u003c/code\u003e\u003c/a\u003e Remove YAML usage, \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6950\"\u003e#6950\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/96e87996a9a071dc183f85bae513fe0b140cbc56\"\u003e\u003ccode\u003e96e8799\u003c/code\u003e\u003c/a\u003e Update error_handler proc to include config parameter (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6974\"\u003e#6974\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/d9a3c83e999182146a06390cfcd90c462f3310e8\"\u003e\u003ccode\u003ed9a3c83\u003c/code\u003e\u003c/a\u003e Add error_handler breaking change in upgrade docs (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6973\"\u003e#6973\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sidekiq/sidekiq/compare/v8.0.7...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `geocoder` from 1.8.5 to 1.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alexreisner/geocoder/blob/master/CHANGELOG.md\"\u003egeocoder's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.8.6 (2025 Sep 21)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for IPInfo Lite lookup (thanks github.com/iltempo).\u003c/li\u003e\n\u003cli\u003eVarious minor fixes and improvements.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/d3515db46c5785db8cd48dbf94af123a2c99b8a9\"\u003e\u003ccode\u003ed3515db\u003c/code\u003e\u003c/a\u003e Prepare for release of gem version 1.8.6.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/737d16f277f81aabe73e2dfe466e2ba84fef188a\"\u003e\u003ccode\u003e737d16f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1694\"\u003e#1694\u003c/a\u003e from Intrepidd/update-data-gouv-fr-domain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/4b50c085eea4de4f453eab2e8dc6faf7b3824420\"\u003e\u003ccode\u003e4b50c08\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1695\"\u003e#1695\u003c/a\u003e from cprodhomme/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/31545ee756f1230a063e86458b3dadbac9b7e7b4\"\u003e\u003ccode\u003e31545ee\u003c/code\u003e\u003c/a\u003e Update README_API_GUIDE.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/3a90b5aa6c708945cf181f16a182ca232f668c4d\"\u003e\u003ccode\u003e3a90b5a\u003c/code\u003e\u003c/a\u003e Update BAN domain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/b2c0aa5526f90209883e3ca64b73d9559d21f729\"\u003e\u003ccode\u003eb2c0aa5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1691\"\u003e#1691\u003c/a\u003e from TheRusskiy/radius-column-arel\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/cd58cab7fd167d641927fe4a083963fcf5cd08df\"\u003e\u003ccode\u003ecd58cab\u003c/code\u003e\u003c/a\u003e add \u0026quot;arel\u0026quot; to near_test spec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/63ca4702ccffe776b146c28d289f7449d25946ee\"\u003e\u003ccode\u003e63ca470\u003c/code\u003e\u003c/a\u003e radius column can be an instance of Arel.sql\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/eaf85fe4de045c2ad3e035f560d6755e82646bee\"\u003e\u003ccode\u003eeaf85fe\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1688\"\u003e#1688\u003c/a\u003e from skillstopractice/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/00369bb35a29a86f54e6fea516ecf9842e5f855f\"\u003e\u003ccode\u003e00369bb\u003c/code\u003e\u003c/a\u003e Update tests to use data['place_name'] for Mapbox\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexreisner/geocoder/compare/v1.8.5...v1.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `pundit` from 2.5.0 to 2.5.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/varvet/pundit/blob/main/CHANGELOG.md\"\u003epundit's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.5.2 (2025-09-24)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003econfig/rubocop-rspec.yml\u003c/code\u003e back from accidentally being excluded \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/866\"\u003e#866\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.5.1 (2025-09-12)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRequiring only \u003ccode\u003epundit/rspec\u003c/code\u003e no longer raises an error in Active Support \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/857\"\u003e#857\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/2d665d67a26f794987df926e49676948fe115289\"\u003e\u003ccode\u003e2d665d6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/867\"\u003e#867\u003c/a\u003e from varvet/kbs/release-v2.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/7ff48a83790aef27bd89fa4da6a0a238599bca2d\"\u003e\u003ccode\u003e7ff48a8\u003c/code\u003e\u003c/a\u003e Bump to v2.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/674abac197c7ecc000fd25a4542344d38c998535\"\u003e\u003ccode\u003e674abac\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/866\"\u003e#866\u003c/a\u003e from varvet/kbs/add-rubocop-back\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/923eebf39ccd6f8095a5c4270953e7a19d6d16a6\"\u003e\u003ccode\u003e923eebf\u003c/code\u003e\u003c/a\u003e Point changelog to PR\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/47668502881e3abed7dd004ca19fa11d66b23b6f\"\u003e\u003ccode\u003e4766850\u003c/code\u003e\u003c/a\u003e Add rubocop config file back to gem release files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/27a840bedadf0ef3d66f1857edd966c2e01cc18e\"\u003e\u003ccode\u003e27a840b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/863\"\u003e#863\u003c/a\u003e from varvet/kbs/fix-build-pipeline\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/381b202dd2e11c5eb0ea1134d29f85331a01d643\"\u003e\u003ccode\u003e381b202\u003c/code\u003e\u003c/a\u003e +3.4 -3.1 (EOL)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/4bb6a67819572bd9431d30048fbab4c9685cfbf2\"\u003e\u003ccode\u003e4bb6a67\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/862\"\u003e#862\u003c/a\u003e from varvet/kbs/fix-build-pipeline\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/6ceca0d2ab84d2240e6422e7b14d208ad10e3304\"\u003e\u003ccode\u003e6ceca0d\u003c/code\u003e\u003c/a\u003e Attempt code quality upload to qlty.sh instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/82d918a4c4c4ab393f662a32e94028d6b086285d\"\u003e\u003ccode\u003e82d918a\u003c/code\u003e\u003c/a\u003e Bump to v2.5.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/varvet/pundit/compare/v2.5.0...v2.5.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ahoy_matey` from 5.4.0 to 5.5.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ankane/ahoy/blob/master/CHANGELOG.md\"\u003eahoy_matey's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.5.0 (2026-04-08)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed error with \u003ccode\u003eAhoy::Tracker\u003c/code\u003e outside of requests\u003c/li\u003e\n\u003cli\u003eDropped support for Ruby \u0026lt; 3.3 and Rails \u0026lt; 7.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.4.2 (2026-03-31)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed cookie deletion with \u003ccode\u003ecookie_domain\u003c/code\u003e and \u003ccode\u003ecookie_options\u003c/code\u003e options\u003c/li\u003e\n\u003cli\u003eUpdated Ahoy.js to 0.4.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.4.1 (2025-09-30)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed deprecation warning with Rack 3.1+\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/0934ed94a4a7263f682eefb47bd78cdc05d33c5d\"\u003e\u003ccode\u003e0934ed9\u003c/code\u003e\u003c/a\u003e Version bump to 5.5.0 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/1881c47e52d10deb1989964acf9809531a937aaf\"\u003e\u003ccode\u003e1881c47\u003c/code\u003e\u003c/a\u003e Updated changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/bb10d30342311ccb8cfc4279555189d56129f6ce\"\u003e\u003ccode\u003ebb10d30\u003c/code\u003e\u003c/a\u003e Fixed error with Ahoy::Tracker outside of request when cookies disabled - res...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/3b4e45fde58880d4432e1a5ab8dfadd41d617117\"\u003e\u003ccode\u003e3b4e45f\u003c/code\u003e\u003c/a\u003e Dropped support for Ruby \u0026lt; 3.3 and Rails \u0026lt; 7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/41d7834a3af1553d8cf890cf231e4fdb53c196d9\"\u003e\u003ccode\u003e41d7834\u003c/code\u003e\u003c/a\u003e Updated readme [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/2186f3857f702c6c5fa3e0d80310d852de2cc8f0\"\u003e\u003ccode\u003e2186f38\u003c/code\u003e\u003c/a\u003e Updated license year [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/eed4fdad924261f9f57b87032e760a06fd4dcd05\"\u003e\u003ccode\u003eeed4fda\u003c/code\u003e\u003c/a\u003e Version bump to 5.4.2 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/f73c04e68fe8b884140cd659acee170224b19ec3\"\u003e\u003ccode\u003ef73c04e\u003c/code\u003e\u003c/a\u003e Updated changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/7c50688aa1e4d56545be421a9427c36c51476383\"\u003e\u003ccode\u003e7c50688\u003c/code\u003e\u003c/a\u003e Fixed cookie deletion with path option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/5a801f44d8bd5e1ab6f8e9f8923f8ef39eaa6e75\"\u003e\u003ccode\u003e5a801f4\u003c/code\u003e\u003c/a\u003e Fixed cookie deletion with cookie_domain option - fixes \u003ca href=\"https://redirect.github.com/ankane/ahoy/issues/581\"\u003e#581\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ankane/ahoy/compare/v5.4.0...v5.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `i18n-js` from 4.2.3 to 4.2.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fnando/i18n-js/blob/main/CHANGELOG.md\"\u003ei18n-js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/f8fb0dc0b01e7e639a6eb5dd875adbaa78858d8f\"\u003e\u003ccode\u003ef8fb0dc\u003c/code\u003e\u003c/a\u003e Bump up version (4.2.4).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/2cbea21df1ac16685a4e974716296853eccc0d49\"\u003e\u003ccode\u003e2cbea21\u003c/code\u003e\u003c/a\u003e Remove benchmark gem (\u003ca href=\"https://redirect.github.com/fnando/i18n-js/issues/737\"\u003e#737\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/9f99172d197b586dab34f4cf6a08a1df9703222f\"\u003e\u003ccode\u003e9f99172\u003c/code\u003e\u003c/a\u003e Update matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/9096c6e63bbbc24900bb10cfd0d42b6a89470c1c\"\u003e\u003ccode\u003e9096c6e\u003c/code\u003e\u003c/a\u003e Fix rubocop warnings.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/237b69b34f73873c2a3c753c45b208e670d15a31\"\u003e\u003ccode\u003e237b69b\u003c/code\u003e\u003c/a\u003e Update --quiet param description (\u003ca href=\"https://redirect.github.com/fnando/i18n-js/issues/730\"\u003e#730\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/1f3305ffa531614de22070ec3a0acbb592902636\"\u003e\u003ccode\u003e1f3305f\u003c/code\u003e\u003c/a\u003e Update action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/674cb0781bdba259e7a25fcd2df6f8dd21dc5276\"\u003e\u003ccode\u003e674cb07\u003c/code\u003e\u003c/a\u003e Fix rubocop warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/877e6f1de96126021cce39f802377ffeead79ff4\"\u003e\u003ccode\u003e877e6f1\u003c/code\u003e\u003c/a\u003e Update actions.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/7e27159f535643bc3080dce132a5ae953c4034ea\"\u003e\u003ccode\u003e7e27159\u003c/code\u003e\u003c/a\u003e Require ruby 3.2+.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/58c32fdc576a499eb2433bd9d633d537f8a696d8\"\u003e\u003ccode\u003e58c32fd\u003c/code\u003e\u003c/a\u003e Disable rubocop rule.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fnando/i18n-js/compare/v4.2.3...v4.2.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `pg` from 1.6.1 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ged/ruby-pg/blob/master/CHANGELOG.md\"\u003epg's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.3 [2025-12-29] Lars Kanis \u003ca href=\"mailto:lars@greiz-reinsdorf.de\"\u003elars@greiz-reinsdorf.de\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003eAdded:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd binary gems for ruby-4.0, now providing ruby-3.0 to 4.0. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/682\"\u003e#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate fat binary gem to OpenSSL-3.6.0 and PostgreSQL-18.1.\u003c/li\u003e\n\u003cli\u003eImprove documentation of PG::Result and README. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/676\"\u003e#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate errorcodes to PostgreSQL-18.\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003erb_hash_new_capa\u003c/code\u003e on Ruby-3.2+ . \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/674\"\u003e#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeny any server communication on a frozen PG::Connection . \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/677\"\u003e#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix possible race condition in PG::Result in Ractor context. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/674\"\u003e#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop binary gem support for platform \u003ccode\u003ex86-mingw32\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/682\"\u003e#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop binary gems for ruby-2.7.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.2 [2025-09-02] Lars Kanis \u003ca href=\"mailto:lars@greiz-reinsdorf.de\"\u003elars@greiz-reinsdorf.de\u003c/a\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove several absolute paths from native binaries which pointed to build directories. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/668\"\u003e#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix bad fallback path to \u003ccode\u003epg_service.conf\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/666\"\u003e#666\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003erbpg_\u003c/code\u003e prefix for \u003ccode\u003ebase64_*\u003c/code\u003e functions to avoid name clashes with functions provided by other libraries like Heimdal on Macos. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/667\"\u003e#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRaise a more descriptive error message in case of \u003ccode\u003epg_ext\u003c/code\u003e LoadError. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/664\"\u003e#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFreeze some constants to make them available in a Ractor context. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/660\"\u003e#660\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSeveral documentation improvements.\u003c/li\u003e\n\u003cli\u003eUpdate native binary gems to OpenSSL-3.5.2, krb5-1.22.1 and PostgreSQL-17.6.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/d4539c25dcc89d47088e1423f8d1915c041920f5\"\u003e\u003ccode\u003ed4539c2\u003c/code\u003e\u003c/a\u003e Bump VERSION to pg-1.6.3 and add release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/720900dbb9d16aa855793146f15c3772e14f627a\"\u003e\u003ccode\u003e720900d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ged/ruby-pg/issues/682\"\u003e#682\u003c/a\u003e from larskanis/ruby-4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/f605b5937093884089109c8baa5fe268fc513eaf\"\u003e\u003ccode\u003ef605b59\u003c/code\u003e\u003c/a\u003e Remove x86-mingw32 from binary builds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/5c690006ba158da70d73d939a233cf75ecdd30ef\"\u003e\u003ccode\u003e5c69000\u003c/code\u003e\u003c/a\u003e Update to ruby-4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/2acaf3d0f76334e056229efe260e1f558a8c6b42\"\u003e\u003ccode\u003e2acaf3d\u003c/code\u003e\u003c/a\u003e CI: workaround missing ruby-4.0 on Window\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/b500ded81127963603e1f724e82bed649c9ca8a1\"\u003e\u003ccode\u003eb500ded\u003c/code\u003e\u003c/a\u003e fix comment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/bc3f2f8b1110e9bcb225d65554e1a7fc842d0506\"\u003e\u003ccode\u003ebc3f2f8\u003c/code\u003e\u003c/a\u003e CI: Macos-13 on Intel is deprecated\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/77667eb4313bd7b79356f402b0fa7fba409483b8\"\u003e\u003ccode\u003e77667eb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ged/ruby-pg/issues/678\"\u003e#678\u003c/a\u003e from larskanis/ci-update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/6e52ce504d05c5359d55f45d9580672103263b54\"\u003e\u003ccode\u003e6e52ce5\u003c/code\u003e\u003c/a\u003e CI: Update PostgreSQL on Macos\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/6d40f50e51a037022495fe6d98181435652464ff\"\u003e\u003ccode\u003e6d40f50\u003c/code\u003e\u003c/a\u003e CI: Print mkmf.log on failure on Macos\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ged/ruby-pg/compare/v1.6.1...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bootsnap` from 1.18.6 to 1.23.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/bootsnap/releases\"\u003ebootsnap's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.23.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Ruby 2.7.\u003c/li\u003e\n\u003cli\u003eFix support for absolute paths in \u003ccode\u003eBOOTSNAP_IGNORE_DIRECTORIES\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.22.0...v1.23.0\"\u003ehttps://github.com/rails/bootsnap/compare/v1.22.0...v1.23.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.22.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eProper fix for the \u003ccode\u003eopendir\u003c/code\u003e crash.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ebootsnap/rake\u003c/code\u003e for cleaning the bootsnap cache as part of \u003ccode\u003erake clobber\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.21.1...v1.22.0\"\u003ehttps://github.com/rails/bootsnap/compare/v1.21.1...v1.22.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.21.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFallback to pure the pure ruby path scanner on unexpected error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.21.0...v1.21.1\"\u003ehttps://github.com/rails/bootsnap/compare/v1.21.0...v1.21.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.20.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle broken symlinks in load path scanning code.\nShould fix \u003ccode\u003eErrno::ENOENT fstatat\u003c/code\u003e issues some users have encountered after upgrading to 1.20.0.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.20.0...v1.20.1\"\u003ehttps://github.com/rails/bootsnap/compare/v1.20.0...v1.20.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.20.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimized load path scanning with a C extension. Should be about 2x faster on supported platforms.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.19.0...v1.20.0\"\u003ehttps://github.com/rails/bootsnap/compare/v1.19.0...v1.20.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/bootsnap/blob/main/CHANGELOG.md\"\u003ebootsnap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.23.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Ruby 2.7.\u003c/li\u003e\n\u003cli\u003eFix support for absolute paths in \u003ccode\u003eBOOTSNAP_IGNORE_DIRECTORIES\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.22.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBetter fix for the \u003ccode\u003eopendir\u003c/code\u003e crash.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ebootsnap/rake\u003c/code\u003e for cleaning the bootsnap cache as part of \u003ccode\u003erake clobber\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.21.1\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent a Ruby crash while scanning load path if \u003ccode\u003eopendir\u003c/code\u003e fails without setting \u003ccode\u003eerrno\u003c/code\u003e.\nAccording to the C spec this should not happen, but according to user reports, it did.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.21.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix the \u003ccode\u003erequire\u003c/code\u003e decorator to handle \u003ccode\u003eBootsnap.unload_cache!\u003c/code\u003e being called.\u003c/li\u003e\n\u003cli\u003eMinor optimization: Eagerly clear cache buffers to appease the GC.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.20.1\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eHandle broken symlinks in load path scanning code.\nShould fix \u003ccode\u003eErrno::ENOENT fstatat\u003c/code\u003e issues some users have encountered after upgrading to 1.20.0.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.20.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eOptimized load path scanning with a C extension. Should be about 2x faster on supported platforms.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.19.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eRemove JSON parsing cache. Recent versions of the \u003ccode\u003ejson\u003c/code\u003e gem are as fast as \u003ccode\u003emsgpack\u003c/code\u003e if not faster.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/7b04583c5a242ef8e3a7dac907b9f682c6d2f20d\"\u003e\u003ccode\u003e7b04583\u003c/code\u003e\u003c/a\u003e Release 1.23.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/32e709d4168422433ca4f06e5aaec510dd87f882\"\u003e\u003ccode\u003e32e709d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/530\"\u003e#530\u003c/a\u003e from fxn/readdir\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/8326783ad7f2dd17681fd080a6144aa83e03478c\"\u003e\u003ccode\u003e8326783\u003c/code\u003e\u003c/a\u003e Handle readdir errors in bs_rb_scan_dir()\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/780728416ab3eff3c39093246542eb75168a157c\"\u003e\u003ccode\u003e7807284\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/528\"\u003e#528\u003c/a\u003e from Umofomia/path-scanner-cleanup\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/c30155d2d55e3dee46453071e1b21fba81a8295f\"\u003e\u003ccode\u003ec30155d\u003c/code\u003e\u003c/a\u003e Fix bundle path check and consolidate common code in PathScanner\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/c2ef9a36c3ae67338e57aacd98d3399333ea0bc2\"\u003e\u003ccode\u003ec2ef9a3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/526\"\u003e#526\u003c/a\u003e from Umofomia/claw--fix-ignored-directories-absolute-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/93c35b83fd326ebfea4fb45f8cdd37c7c233222a\"\u003e\u003ccode\u003e93c35b8\u003c/code\u003e\u003c/a\u003e LoadPathScanner: Avoid computing the absolute path when not needed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/2bf7aa4f248d3a730a26ee281ee7266dc0ba2c8d\"\u003e\u003ccode\u003e2bf7aa4\u003c/code\u003e\u003c/a\u003e Fix absolute path support for ignored directories in PathScanner.native_call\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/749bf76af511e3cbd5531a19b46a8974c7fcd968\"\u003e\u003ccode\u003e749bf76\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/bootsnap/issues/527\"\u003e#527\u003c/a\u003e from byroot/ruby-2.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/bootsnap/commit/52411892e2bc2d99ba23079e903bb2c2eea5572b\"\u003e\u003ccode\u003e5241189\u003c/code\u003e\u003c/a\u003e Require Ruby 2.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/bootsnap/compare/v1.18.6...v1.23.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.4.2 to 3.4.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.4 - 2025-09-10\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAccept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/296\"\u003eGH-296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003eGH-295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Joe Rafaniello\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJoe Rafaniello\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eREXML 3.4.3 - 2025-09-07\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject no root element XML as an invalid XML\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/289\"\u003eGH-289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003eGH-291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/287\"\u003eGH-287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003eGH-288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Jason Thomas\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSutou Kouhei\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJason Thomas\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.4 - 2025-09-10 {#version-3-4-4}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAccept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/296\"\u003eGH-296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003eGH-295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Joe Rafaniello\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJoe Rafaniello\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.4.3 - 2025-09-07 {#version-3-4-3}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject no root element XML as an invalid XML\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/289\"\u003eGH-289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003eGH-291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/287\"\u003eGH-287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003eGH-288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Jason Thomas\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSutou Kouhei\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJason Thomas\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/4f32ea33bc3f71cced67487659beef58edcf6d56\"\u003e\u003ccode\u003e4f32ea3\u003c/code\u003e\u003c/a\u003e Add 3.4.4 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/297\"\u003e#297\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/37cde3f4e660f9748f90a933daf7a9e51337d013\"\u003e\u003ccode\u003e37cde3f\u003c/code\u003e\u003c/a\u003e Accept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003e#295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/4ffe211b501614e769a8bf37d63a7037bb5d2e73\"\u003e\u003ccode\u003e4ffe211\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/822530c70f898bd33c075622fe068c6d6433e6c9\"\u003e\u003ccode\u003e822530c\u003c/code\u003e\u003c/a\u003e Add 3.4.3 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/293\"\u003e#293\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/6ba286cfd402e4040627615e2623f5b097261543\"\u003e\u003ccode\u003e6ba286c\u003c/code\u003e\u003c/a\u003e Reject no root element XML as an invalid XML (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/b5b148ed3c8a02fb53e971e312cee94b5301555a\"\u003e\u003ccode\u003eb5b148e\u003c/code\u003e\u003c/a\u003e The Zlib::GzipReader in JRuby does not behave as expected with REXML, so the ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1531862d18ec3ecd659060d60b8bb49accee5a42\"\u003e\u003ccode\u003e1531862\u003c/code\u003e\u003c/a\u003e Fixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/185bdc737da406ba4f9564726849ad3477858eb2\"\u003e\u003ccode\u003e185bdc7\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.4.2...v3.4.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `flipper-redis` from 1.3.6 to 1.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/flippercloud/flipper/releases\"\u003eflipper-redis's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.4.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/cache from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/961\"\u003eflippercloud/flipper#961\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd config to disable the Fully Enable button by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/979\"\u003eflippercloud/flipper#979\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd sync mode bypass to Strict adapter by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/982\"\u003eflippercloud/flipper#982\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSkip ETag header on cache_bust to prevent stale webhook syncs by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/987\"\u003eflippercloud/flipper#987\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/flippercloud/flipper/compare/v1.4.0...v1.4.1\"\u003ehttps://github.com/flippercloud/flipper/compare/v1.4.0...v1.4.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove models to their own files by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/944\"\u003eflippercloud/flipper#944\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd kwarg passing for get_all and cache buster for webhook sync by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/945\"\u003eflippercloud/flipper#945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAlways poll even for webhook config by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/946\"\u003eflippercloud/flipper#946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCloud get_all etag support by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/947\"\u003eflippercloud/flipper#947\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix sync behavior when remote expression value is set to nil by \u003ca href=\"https://github.com/jdnvn\"\u003e\u003ccode\u003e@​jdnvn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/949\"\u003eflippercloud/flipper#949\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpression sync by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/950\"\u003eflippercloud/flipper#950\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eShut down polling and adjust poll interval based on headers by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flippercloud/flipper/pull/948\"\u003eflippercloud/flipper#948\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes confirmation trigger for disable by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/flip...\n\n_Description has been truncated_","html_url":"https://github.com/CircuitVerse/CircuitVerse/pull/7320","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/CircuitVerse%2FCircuitVerse/issues/7320","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7320/packages"}},{"old_version":"3.2.4","new_version":"3.4.4","update_type":"minor","path":null,"pr_created_at":"2026-04-20T19:27:43.000Z","version_change":"3.2.4 → 3.4.4","issue":{"uuid":"4298151520","node_id":"PR_kwDOEf0aQc7UEpw7","number":9,"state":"closed","title":"Bump the bundler group across 1 directory with 4 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-04-20T19:29:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-20T19:27:43.000Z","updated_at":"2026-04-20T19:29:57.000Z","time_to_close":133,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":4,"packages":[{"name":"addressable","old_version":"2.7.0","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"faraday","old_version":"1.0.1","new_version":"1.10.5","repository_url":"https://github.com/lostisland/faraday"},{"name":"kramdown","old_version":"2.3.0","new_version":"2.3.1","repository_url":"https://github.com/gettalong/kramdown"},{"name":"rexml","old_version":"3.2.4","new_version":"3.4.4"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 3 updates in the / directory: [addressable](https://github.com/sporkmonger/addressable), [faraday](https://github.com/lostisland/faraday) and [kramdown](https://github.com/gettalong/kramdown).\n\nUpdates `addressable` from 2.7.0 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.7 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 6 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/535\"\u003esporkmonger/addressable#535\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.6 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMemoize regexps for common character classes (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/524\"\u003e#524\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/524\"\u003e#524\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/524\"\u003esporkmonger/addressable#524\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.5 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix thread safety issue with encoding tables (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDefine URI::NONE as a module to avoid serialization issues (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/509\"\u003e#509\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix YAML serialization (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/508\"\u003e#508\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/508\"\u003e#508\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/508\"\u003esporkmonger/addressable#508\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/509\"\u003e#509\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/509\"\u003esporkmonger/addressable#509\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/515\"\u003e#515\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/515\"\u003esporkmonger/addressable#515\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.4 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRestore \u003ccode\u003eAddressable::IDNA.unicode_normalize_kc\u003c/code\u003e as a deprecated method (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/504\"\u003e#504\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/504\"\u003e#504\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/504\"\u003esporkmonger/addressable#504\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.3 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix template expand level 2 hash support for non-string objects (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/499\"\u003e#499\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/498\"\u003e#498\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.7.0...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `faraday` from 1.0.1 to 1.10.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003efaraday's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport CVE-2026-25765 by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1665\"\u003elostisland/faraday#1665\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.4...v1.10.5\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.4...v1.10.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMake sure that \u003ccode\u003eFaraday::Request::Json\u003c/code\u003e and \u003ccode\u003eFaraday::Response::Json\u003c/code\u003e are correctly autoloaded by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1595\"\u003elostisland/faraday#1595\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.3...v1.10.4\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.3...v1.10.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Ruby 3.2.0 in Faraday v1.x by \u003ca href=\"https://github.com/timrogers\"\u003e\u003ccode\u003e@​timrogers\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1483\"\u003elostisland/faraday#1483\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/timrogers\"\u003e\u003ccode\u003e@​timrogers\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1483\"\u003elostisland/faraday#1483\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.2...v1.10.3\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.2...v1.10.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate three methods for version 2.0 by \u003ca href=\"https://github.com/hyuraku\"\u003e\u003ccode\u003e@​hyuraku\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1446\"\u003elostisland/faraday#1446\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.1...v1.10.2\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.1...v1.10.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eFaraday#Deprecate\u003c/code\u003e to \u003ccode\u003e1.x\u003c/code\u003e by \u003ca href=\"https://github.com/hyuraku\"\u003e\u003ccode\u003e@​hyuraku\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1438\"\u003elostisland/faraday#1438\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyuraku\"\u003e\u003ccode\u003e@​hyuraku\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1438\"\u003elostisland/faraday#1438\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.0...v1.10.1\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.0...v1.10.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd JSON middleware by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1400\"\u003elostisland/faraday#1400\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.9.3...v1.10.0\"\u003ehttps://github.com/lostisland/faraday/compare/v1.9.3...v1.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.9.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRe-add support for Ruby 2.4+ by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1371\"\u003elostisland/faraday#1371\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.9.2...v1.9.3\"\u003ehttps://github.com/lostisland/faraday/compare/v1.9.2...v1.9.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/blob/main/CHANGELOG.md\"\u003efaraday's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eFaraday Changelog\u003c/h1\u003e\n\u003ch2\u003eThe changelog has moved!\u003c/h2\u003e\n\u003cp\u003eThis file is not being updated anymore. Instead, please check the \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003eReleases\u003c/a\u003e page.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v2.1.0...v2.2.0\"\u003e2.2.0\u003c/a\u003e (2022-02-03)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReintroduce the possibility to register middleware with symbols, strings or procs in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1391\"\u003e#1391\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v2.0.1...v2.1.0\"\u003e2.1.0\u003c/a\u003e (2022-01-15)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix test adapter thread safety by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1380\"\u003e#1380\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd default adapter options by \u003ca href=\"https://github.com/hirasawayuki\"\u003e\u003ccode\u003e@​hirasawayuki\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1382\"\u003e#1382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: Add Ruby 3.1 to matrix by \u003ca href=\"https://github.com/petergoldstein\"\u003e\u003ccode\u003e@​petergoldstein\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1374\"\u003e#1374\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix regex pattern in logger.md examples by \u003ca href=\"https://github.com/hirasawayuki\"\u003e\u003ccode\u003e@​hirasawayuki\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1378\"\u003e#1378\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v2.0.0...v2.0.1\"\u003e2.0.1\u003c/a\u003e (2022-01-05)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRe-add \u003ccode\u003efaraday-net_http\u003c/code\u003e as default adapter by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1366\"\u003e#1366\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated sample format in UPGRADING.md by \u003ca href=\"https://github.com/vimutter\"\u003e\u003ccode\u003e@​vimutter\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1361\"\u003e#1361\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Make UPGRADING examples more copyable by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1363\"\u003e#1363\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v1.8.0...v2.0.0\"\u003e2.0.0\u003c/a\u003e (2022-01-04)\u003c/h2\u003e\n\u003cp\u003eThe next major release is here, and it comes almost 2 years after the release of v1.0!\u003c/p\u003e\n\u003cp\u003eThis release changes the way you use Faraday and embraces a new paradigm of Faraday as an ecosystem, rather than a library.\u003c/p\u003e\n\u003cp\u003eWhat does that mean? It means that Faraday is less of a bundled tool and more of a framework for the community to build on top of.\u003c/p\u003e\n\u003cp\u003eAs a result, all adapters and some middleware have moved out and are now shipped as standalone gems 🙌!\u003c/p\u003e\n\u003cp\u003eBut this doesn't mean that upgrading from Faraday 1.x to Faraday 2.0 should be hard, in fact we've listed everything you need to do in the \u003ca href=\"https://github.com/lostisland/faraday/blob/main/UPGRADING.md\"\u003eUPGRADING.md\u003c/a\u003e doc.\u003c/p\u003e\n\u003cp\u003eMoreover, we've setup a new \u003ca href=\"https://github.com/lostisland/awesome-faraday\"\u003eawesome-faraday\u003c/a\u003e repository that will showcase a curated list of adapters and middleware 😎.\u003c/p\u003e\n\u003cp\u003eThis release was the result of the efforts of the core team and all the contributors, new and old, that have helped achieve this milestone 👏.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAutoloading, dependency loading and middleware registry cleanup by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1301\"\u003e#1301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMove JSON middleware (request and response) from faraday_middleware by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1300\"\u003e#1300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove deprecated \u003ccode\u003eFaraday::Request#method\u003c/code\u003e by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1303\"\u003e#1303\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove deprecated \u003ccode\u003eFaraday::UploadIO\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1307\"\u003e#1307\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[1.x] Deprecate Authorization helpers in \u003ccode\u003eFaraday::Connection\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1306\"\u003e#1306\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop deprecated auth helpers from Connection and refactor auth middleware by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1308\"\u003e#1308\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Faraday 1.x examples in authentication.md docs by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1320\"\u003e#1320\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix passing a URL with embedded basic auth by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1324\"\u003e#1324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRegister JSON middleware by \u003ca href=\"https://github.com/mollerhoj\"\u003e\u003ccode\u003e@​mollerhoj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1331\"\u003e#1331\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/5c1d68aae6020c7a5398147356e5a42ca205bf80\"\u003e\u003ccode\u003e5c1d68a\u003c/code\u003e\u003c/a\u003e Version bump to 1.10.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/ea02c0ecbcd7ecc5553767f0cd97ec94eae6142b\"\u003e\u003ccode\u003eea02c0e\u003c/code\u003e\u003c/a\u003e Update rubocop complexity thresholds for security fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/d0fc049beb0b0e4e3bd4a52711189130bba7c5f4\"\u003e\u003ccode\u003ed0fc049\u003c/code\u003e\u003c/a\u003e Backport security fix for CVE-2026-25765 to 1.x branch (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1665\"\u003e#1665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/41c990ee1f82f74270c084cca8f398b186f09262\"\u003e\u003ccode\u003e41c990e\u003c/code\u003e\u003c/a\u003e Version bump to 1.10.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/435888d46cb0236eef9c8d6b02ef37a45681207f\"\u003e\u003ccode\u003e435888d\u003c/code\u003e\u003c/a\u003e Make sure that \u003ccode\u003eFaraday::Request::Json\u003c/code\u003e and \u003ccode\u003eFaraday::Response::Json\u003c/code\u003e are cor...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/82086930f947d037f0ec14ce740c0485a3b4d5a0\"\u003e\u003ccode\u003e8208693\u003c/code\u003e\u003c/a\u003e Use ruby/setup-ruby in publish.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/eeec3677d769258ec97450c678ef4d8f924fac9a\"\u003e\u003ccode\u003eeeec367\u003c/code\u003e\u003c/a\u003e Fix ruby version in publish.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/92c038bcbf24b171abeecd608a195245f5431e98\"\u003e\u003ccode\u003e92c038b\u003c/code\u003e\u003c/a\u003e Update publish.yml to use Ruby 2.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/7a382b5abb19b9278c2bf055da54876ce612cff9\"\u003e\u003ccode\u003e7a382b5\u003c/code\u003e\u003c/a\u003e Version bump to 1.10.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/16506ee918bd8813d0e241aa1c4996fa2157303c\"\u003e\u003ccode\u003e16506ee\u003c/code\u003e\u003c/a\u003e Add support for Ruby 3.2.0 in Faraday v1.x (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1483\"\u003e#1483\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.0.1...v1.10.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `kramdown` from 2.3.0 to 2.3.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/gettalong/kramdown/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.2.4 to 3.4.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.4 - 2025-09-10\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAccept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/296\"\u003eGH-296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003eGH-295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Joe Rafaniello\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJoe Rafaniello\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eREXML 3.4.3 - 2025-09-07\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject no root element XML as an invalid XML\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/289\"\u003eGH-289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003eGH-291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/287\"\u003eGH-287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003eGH-288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Jason Thomas\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSutou Kouhei\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJason Thomas\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImproved performance.\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.4 - 2025-09-10 {#version-3-4-4}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAccept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/296\"\u003eGH-296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003eGH-295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Joe Rafaniello\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJoe Rafaniello\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.4.3 - 2025-09-07 {#version-3-4-3}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject no root element XML as an invalid XML\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/289\"\u003eGH-289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003eGH-291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/287\"\u003eGH-287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003eGH-288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Jason Thomas\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNAITOH Jun\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSutou Kouhei\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJason Thomas\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImproved performance.\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/4f32ea33bc3f71cced67487659beef58edcf6d56\"\u003e\u003ccode\u003e4f32ea3\u003c/code\u003e\u003c/a\u003e Add 3.4.4 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/297\"\u003e#297\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/37cde3f4e660f9748f90a933daf7a9e51337d013\"\u003e\u003ccode\u003e37cde3f\u003c/code\u003e\u003c/a\u003e Accept \u003ccode\u003eREXML::Document.new(\u0026quot;\u0026quot;)\u003c/code\u003e for backward compatibility (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/295\"\u003e#295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/4ffe211b501614e769a8bf37d63a7037bb5d2e73\"\u003e\u003ccode\u003e4ffe211\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/822530c70f898bd33c075622fe068c6d6433e6c9\"\u003e\u003ccode\u003e822530c\u003c/code\u003e\u003c/a\u003e Add 3.4.3 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/293\"\u003e#293\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/6ba286cfd402e4040627615e2623f5b097261543\"\u003e\u003ccode\u003e6ba286c\u003c/code\u003e\u003c/a\u003e Reject no root element XML as an invalid XML (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/b5b148ed3c8a02fb53e971e312cee94b5301555a\"\u003e\u003ccode\u003eb5b148e\u003c/code\u003e\u003c/a\u003e The Zlib::GzipReader in JRuby does not behave as expected with REXML, so the ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1531862d18ec3ecd659060d60b8bb49accee5a42\"\u003e\u003ccode\u003e1531862\u003c/code\u003e\u003c/a\u003e Fixed an issue with \u003ccode\u003eIOSource#read_until\u003c/code\u003e when reaching the end of a file (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/185bdc737da406ba4f9564726849ad3477858eb2\"\u003e\u003ccode\u003e185bdc7\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.2.4...v3.4.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/D3strukt0r/d3strukt0r.github.io/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/D3strukt0r/d3strukt0r.github.io/pull/9","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/D3strukt0r%2Fd3strukt0r.github.io/issues/9","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9/packages"}},{"old_version":"3.2.8","new_version":"3.4.2","update_type":"minor","path":"the bundler group across 1 directory","pr_created_at":"2026-04-17T22:29:46.000Z","version_change":"3.2.8 → 3.4.2","issue":{"uuid":"4285657597","node_id":"PR_kwDONiTSw87Td2p7","number":1,"state":"open","title":"Bump rexml from 3.2.8 to 3.4.2 in the bundler group across 1 directory","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-17T22:29:46.000Z","updated_at":"2026-04-17T22:30:16.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"rexml","old_version":"3.2.8","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":"the bundler group across 1 directory","ecosystem":"rubygems"},"body":"Bumps the bundler group with 1 update in the / directory: [rexml](https://github.com/ruby/rexml).\n\nUpdates `rexml` from 3.2.8 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.2.8...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rexml\u0026package-manager=bundler\u0026previous-version=3.2.8\u0026new-version=3.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Pcnaid-Dev/Shopify-CLI-Kit/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Pcnaid-Dev/Shopify-CLI-Kit/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Pcnaid-Dev%2FShopify-CLI-Kit/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"}},{"old_version":"3.4.1","new_version":"3.4.2","update_type":"patch","path":null,"pr_created_at":"2026-04-11T13:28:06.000Z","version_change":"3.4.1 → 3.4.2","issue":{"uuid":"4244673513","node_id":"PR_kwDOJL4UQs7RqoD8","number":1,"state":"open","title":"build(deps): bump rexml from 3.4.1 to 3.4.2","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-11T13:28:06.000Z","updated_at":"2026-04-11T13:31:30.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"rexml","old_version":"3.4.1","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps [rexml](https://github.com/ruby/rexml) from 3.4.1 to 3.4.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.4.1...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rexml\u0026package-manager=bundler\u0026previous-version=3.4.1\u0026new-version=3.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/ZhongRuoyu/formulae.brew.sh/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/ZhongRuoyu/formulae.brew.sh/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ZhongRuoyu%2Fformulae.brew.sh/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"}},{"old_version":"3.4.1","new_version":"3.4.2","update_type":"patch","path":null,"pr_created_at":"2026-04-08T09:00:50.000Z","version_change":"3.4.1 → 3.4.2","issue":{"uuid":"4223339824","node_id":"PR_kwDOQ8iVf87Qv_q_","number":8,"state":"open","title":"Bump the bundler group across 1 directory with 4 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-08T09:00:50.000Z","updated_at":"2026-04-08T09:03:44.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":4,"packages":[{"name":"faraday","old_version":"2.7.11","new_version":"2.14.1","repository_url":"https://github.com/lostisland/faraday"},{"name":"nokogiri","old_version":"1.18.9","new_version":"1.19.1","repository_url":"https://github.com/sparklemotion/nokogiri"},{"name":"rexml","old_version":"3.4.1","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"},{"name":"addressable","old_version":"2.8.7","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 4 updates in the /updater directory: [faraday](https://github.com/lostisland/faraday), [nokogiri](https://github.com/sparklemotion/nokogiri), [rexml](https://github.com/ruby/rexml) and [addressable](https://github.com/sporkmonger/addressable).\n\nUpdates `faraday` from 2.7.11 to 2.14.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003efaraday's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.14.1\u003c/h2\u003e\n\u003ch2\u003eSecurity Note\u003c/h2\u003e\n\u003cp\u003eThis release contains a security fix, we recommend all users to upgrade as soon as possible.\nA Security Advisory with more details will be posted shortly.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd RFC document for Options architecture refactoring plan by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1644\"\u003elostisland/faraday#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1655\"\u003elostisland/faraday#1655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExplicit top-level namespace reference by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1657\"\u003elostisland/faraday#1657\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\"\u003ehttps://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eNew features ✨\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUse newer \u003ccode\u003eUnprocessableContent\u003c/code\u003e naming for 422 by \u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes 🐞\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eConvert strings to UTF-8 by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eResponse#to_hash\u003c/code\u003e when response not finished yet by \u003ca href=\"https://github.com/yykamei\"\u003e\u003ccode\u003e@​yykamei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1639\"\u003elostisland/faraday#1639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMisc/Docs 📄\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eLint: use \u003ccode\u003efilter_map\u003c/code\u003e by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1637\"\u003elostisland/faraday#1637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003eactions/checkout\u003c/code\u003e from v4 to v5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1636\"\u003elostisland/faraday#1636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes documentation by \u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove error handling logic and add missing test coverage by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1633\"\u003elostisland/faraday#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix type assumption in \u003ccode\u003eFaraday::Error\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1630\"\u003elostisland/faraday#1630\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/16cbd38ef252d25dedf416a4d2510a2f3db10c87\"\u003e\u003ccode\u003e16cbd38\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/a6d3a3a0bf59c2ab307d0abd91bc126aef5561bc\"\u003e\u003ccode\u003ea6d3a3a\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/b23f710d28c0dba169470f568df4017a1e8beea7\"\u003e\u003ccode\u003eb23f710\u003c/code\u003e\u003c/a\u003e Explicit top-level namespace reference (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1657\"\u003e#1657\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/49ba4ac3a7359baed634c12a82386f6c8c717ea8\"\u003e\u003ccode\u003e49ba4ac\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1655\"\u003e#1655\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/51a49bc99d7df6f724d250d64771e1d710576df7\"\u003e\u003ccode\u003e51a49bc\u003c/code\u003e\u003c/a\u003e Ensure Claude reads the guidelines and allow to plan in a gitignored .ai/PLAN...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/894f65cab8f04bcf35e84a2dfd9fc0286dbce340\"\u003e\u003ccode\u003e894f65c\u003c/code\u003e\u003c/a\u003e Add RFC document for Options architecture refactoring plan (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1644\"\u003e#1644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/397e3ded0c5166313bb22f1c0221b36b6023fd0f\"\u003e\u003ccode\u003e397e3de\u003c/code\u003e\u003c/a\u003e Add comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/d98c65cfc254ea2898386e4359428527122abec3\"\u003e\u003ccode\u003ed98c65c\u003c/code\u003e\u003c/a\u003e Update Faraday-specific AI agent guidelines\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/56c18ecb718e30c5a3a0dea9bd2361912af9013c\"\u003e\u003ccode\u003e56c18ec\u003c/code\u003e\u003c/a\u003e Add AI agent guidelines specific to Faraday repository\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/3201a42957d37efc968ee8834ba9b50ed5dde54a\"\u003e\u003ccode\u003e3201a42\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.7.11...v2.14.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nokogiri` from 1.18.9 to 1.19.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/releases\"\u003enokogiri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003ecfdb0eafd9a554a88f12ebcc688d2b9005f9fce42b00b970e3dc199587b27f32  nokogiri-1.19.1-aarch64-linux-gnu.gem\r\n1e2150ab43c3b373aba76cd1190af7b9e92103564063e48c474f7600923620b5  nokogiri-1.19.1-aarch64-linux-musl.gem\r\n0a39ed59abe3bf279fab9dd4c6db6fe8af01af0608f6e1f08b8ffa4e5d407fa3  nokogiri-1.19.1-arm-linux-gnu.gem\r\n3a18e559ee499b064aac6562d98daab3d39ba6cbb4074a1542781b2f556db47d  nokogiri-1.19.1-arm-linux-musl.gem\r\ndfe2d337e6700eac47290407c289d56bcf85805d128c1b5a6434ddb79731cb9e  nokogiri-1.19.1-arm64-darwin.gem\r\n1e0bda88b1c6409f0edb9e0c25f1bf9ff4fa94c3958f492a10fcf50dda594365  nokogiri-1.19.1-java.gem\r\n110d92ae57694ae7866670d298a5d04cd150fae5a6a7849957d66f171e6aec9b  nokogiri-1.19.1-x64-mingw-ucrt.gem\r\n7093896778cc03efb74b85f915a775862730e887f2e58d6921e3fa3d981e68bf  nokogiri-1.19.1-x86_64-darwin.gem\r\n1a4902842a186b4f901078e692d12257678e6133858d0566152fe29cdb98456a  nokogiri-1.19.1-x86_64-linux-gnu.gem\r\n4267f38ad4fc7e52a2e7ee28ed494e8f9d8eb4f4b3320901d55981c7b995fc23  nokogiri-1.19.1-x86_64-linux-musl.gem\r\n598b327f36df0b172abd57b68b18979a6e14219353bca87180c31a51a00d5ad3  nokogiri-1.19.1.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e11a97ecc3c0e7e5edcf395720b10860ef493b768f6aa80c539573530bc933767  nokogiri-1.19.0-aarch64-linux-gnu.gem\r\neb70507f5e01bc23dad9b8dbec2b36ad0e61d227b42d292835020ff754fb7ba9  nokogiri-1.19.0-aarch64-linux-musl.gem\r\n572a259026b2c8b7c161fdb6469fa2d0edd2b61cd599db4bbda93289abefbfe5  nokogiri-1.19.0-arm-linux-gnu.gem\r\n23ed90922f1a38aed555d3de4d058e90850c731c5b756d191b3dc8055948e73c  nokogiri-1.19.0-arm-linux-musl.gem\r\n0811dfd936d5f6dd3f6d32ef790568bf29b2b7bead9ba68866847b33c9cf5810  nokogiri-1.19.0-arm64-darwin.gem\r\n5f3a70e252be641d8a4099f7fb4cc25c81c632cb594eec9b4b8f2ca8be4374f3  nokogiri-1.19.0-java.gem\r\n05d7ed2d95731edc9bef2811522dc396df3e476ef0d9c76793a9fca81cab056b  nokogiri-1.19.0-x64-mingw-ucrt.gem\r\n1dad56220b603a8edb9750cd95798bffa2b8dd9dd9aa47f664009ee5b43e3067  nokogiri-1.19.0-x86_64-darwin.gem\r\nf482b95c713d60031d48c44ce14562f8d2ce31e3a9e8dd0ccb131e9e5a68b58c  nokogiri-1.19.0-x86_64-linux-gnu.gem\r\n1c4ca6b381622420073ce6043443af1d321e8ed93cc18b08e2666e5bd02ffae4  nokogiri-1.19.0-x86_64-linux-musl.gem\r\ne304d21865f62518e04f2bf59f93bd3a97ca7b07e7f03952946d8e1c05f45695  nokogiri-1.19.0.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md\"\u003enokogiri's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.10 / 2025-09-15\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.9\"\u003ev2.13.9\u003c/a\u003e. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.\u003c/li\u003e\n\u003cli\u003e[CRuby] [Windows and MacOS] Vendored libiconv is updated to \u003ca href=\"https://savannah.gnu.org/news/?id=10703\"\u003ev1.18\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d9130457369de8a6efcb764e6da2cb80d5d3b6dd\"\u003e\u003ccode\u003ed913045\u003c/code\u003e\u003c/a\u003e version bump to v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/b81cb9869e8ed7d1785da3363ef490f455da96eb\"\u003e\u003ccode\u003eb81cb98\u003c/code\u003e\u003c/a\u003e doc: update CHANGELOG for upcoming v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/8e668095c6147def4a3ec044df5f2a478c8161c3\"\u003e\u003ccode\u003e8e66809\u003c/code\u003e\u003c/a\u003e C14n raise on failure (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3600\"\u003e#3600\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/5b77f3d1c48cc09c92d10046c448a0866380eb4a\"\u003e\u003ccode\u003e5b77f3d\u003c/code\u003e\u003c/a\u003e Raise RuntimeError when canonicalization fails\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/edc559565819459d92f6db609f068f50491a57f9\"\u003e\u003ccode\u003eedc5595\u003c/code\u003e\u003c/a\u003e Thank sponsors in the README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d4dc245dfafd7ba42538051b0979306c8e5dc6f2\"\u003e\u003ccode\u003ed4dc245\u003c/code\u003e\u003c/a\u003e dep: update rdoc to v7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d77bfb66302532b90c0f340ed6b4ae74f275dde8\"\u003e\u003ccode\u003ed77bfb6\u003c/code\u003e\u003c/a\u003e version bump to v1.19.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/1eb5c2c035b360fd1195de0b274e901b6e0c12dd\"\u003e\u003ccode\u003e1eb5c2c\u003c/code\u003e\u003c/a\u003e dev: convert scripts/test-gem-set to use mise\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/88a120fd8198cd49b7cbe6388c92cd92d776407d\"\u003e\u003ccode\u003e88a120f\u003c/code\u003e\u003c/a\u003e dep: Add native Ruby 4 support, drop Ruby 3.1 support (v1.19.x) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3592\"\u003e#3592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/f8c8f74e846ea49d2cb221710cc08618842ba21e\"\u003e\u003ccode\u003ef8c8f74\u003c/code\u003e\u003c/a\u003e Skip the parser compression test for Windows system libs\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sparklemotion/nokogiri/compare/v1.18.9...v1.19.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.4.1 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.4.1...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.7 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Trancendos/dependabot-core/network/alerts).\n\n\u003c/details\u003e\n\n\u003c!-- This is an auto-generated description by cubic. --\u003e\n---\n## Summary by cubic\nUpgrades `faraday`, `nokogiri`, `rexml`, and `addressable` in `/updater` to apply security fixes and minor improvements. This hardens HTTP, XML/HTML parsing, and URI handling with no code changes required.\n\n- **Dependencies**\n  - `faraday` 2.7.11 → 2.14.1 (security fix; updated adapter requirements)\n  - `nokogiri` 1.18.9 → 1.19.1 (security fix)\n  - `rexml` 3.4.1 → 3.4.2 (performance and parsing improvements)\n  - `addressable` 2.8.7 → 2.9.0 (ReDoS fix)\n  - Transitives: `public_suffix` 7.x, `faraday-net_http` 3.4.2, plus `net-http`/`uri` additions\n\n- **Migration**\n  - If the updater runs on Ruby 3.1 or JRuby 9.4, upgrade Ruby (Nokogiri 1.19 drops support).\n\n\u003csup\u003eWritten for commit 313061f42af277c1040cb7ceac4055b24d20d96c. Summary will update on new commits.\u003c/sup\u003e\n\n\u003c!-- End of auto-generated description by cubic. --\u003e\n\n","html_url":"https://github.com/Trancendos/dependabot-core/pull/8","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Trancendos%2Fdependabot-core/issues/8","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8/packages"}},{"old_version":"3.3.9","new_version":"3.4.2","update_type":"minor","path":null,"pr_created_at":"2026-04-08T08:44:14.000Z","version_change":"3.3.9 → 3.4.2","issue":{"uuid":"4223253824","node_id":"PR_kwDOPJd-3c7Qvt_2","number":4,"state":"closed","title":"Bump the bundler group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-18T15:00:01.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-08T08:44:14.000Z","updated_at":"2026-05-18T15:00:04.000Z","time_to_close":3478547,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":6,"packages":[{"name":"faraday","old_version":"2.12.1","new_version":"2.14.1","repository_url":"https://github.com/lostisland/faraday"},{"name":"ruby-lsp","old_version":"0.19.1","new_version":"0.26.9","repository_url":"https://github.com/Shopify/ruby-lsp"},{"name":"addressable","old_version":"2.8.7","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"rack","old_version":"3.0.16","new_version":"3.1.21","repository_url":"https://github.com/rack/rack"},{"name":"rexml","old_version":"3.3.9","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"},{"name":"uri","old_version":"1.0.3","new_version":"1.1.1","repository_url":"https://github.com/ruby/uri"}],"path":null,"ecosystem":"rubygems"},"body":"Updates the requirements on [faraday](https://github.com/lostisland/faraday), [ruby-lsp](https://github.com/Shopify/ruby-lsp), [addressable](https://github.com/sporkmonger/addressable), [rack](https://github.com/rack/rack), [rexml](https://github.com/ruby/rexml) and [uri](https://github.com/ruby/uri) to permit the latest version.\nUpdates `faraday` from 2.12.1 to 2.14.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003efaraday's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.14.1\u003c/h2\u003e\n\u003ch2\u003eSecurity Note\u003c/h2\u003e\n\u003cp\u003eThis release contains a security fix, we recommend all users to upgrade as soon as possible.\nA Security Advisory with more details will be posted shortly.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd RFC document for Options architecture refactoring plan by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1644\"\u003elostisland/faraday#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1655\"\u003elostisland/faraday#1655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExplicit top-level namespace reference by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1657\"\u003elostisland/faraday#1657\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\"\u003ehttps://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eNew features ✨\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUse newer \u003ccode\u003eUnprocessableContent\u003c/code\u003e naming for 422 by \u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes 🐞\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eConvert strings to UTF-8 by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eResponse#to_hash\u003c/code\u003e when response not finished yet by \u003ca href=\"https://github.com/yykamei\"\u003e\u003ccode\u003e@​yykamei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1639\"\u003elostisland/faraday#1639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMisc/Docs 📄\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eLint: use \u003ccode\u003efilter_map\u003c/code\u003e by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1637\"\u003elostisland/faraday#1637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003eactions/checkout\u003c/code\u003e from v4 to v5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1636\"\u003elostisland/faraday#1636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes documentation by \u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove error handling logic and add missing test coverage by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1633\"\u003elostisland/faraday#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix type assumption in \u003ccode\u003eFaraday::Error\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1630\"\u003elostisland/faraday#1630\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/16cbd38ef252d25dedf416a4d2510a2f3db10c87\"\u003e\u003ccode\u003e16cbd38\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/a6d3a3a0bf59c2ab307d0abd91bc126aef5561bc\"\u003e\u003ccode\u003ea6d3a3a\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/b23f710d28c0dba169470f568df4017a1e8beea7\"\u003e\u003ccode\u003eb23f710\u003c/code\u003e\u003c/a\u003e Explicit top-level namespace reference (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1657\"\u003e#1657\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/49ba4ac3a7359baed634c12a82386f6c8c717ea8\"\u003e\u003ccode\u003e49ba4ac\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1655\"\u003e#1655\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/51a49bc99d7df6f724d250d64771e1d710576df7\"\u003e\u003ccode\u003e51a49bc\u003c/code\u003e\u003c/a\u003e Ensure Claude reads the guidelines and allow to plan in a gitignored .ai/PLAN...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/894f65cab8f04bcf35e84a2dfd9fc0286dbce340\"\u003e\u003ccode\u003e894f65c\u003c/code\u003e\u003c/a\u003e Add RFC document for Options architecture refactoring plan (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1644\"\u003e#1644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/397e3ded0c5166313bb22f1c0221b36b6023fd0f\"\u003e\u003ccode\u003e397e3de\u003c/code\u003e\u003c/a\u003e Add comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/d98c65cfc254ea2898386e4359428527122abec3\"\u003e\u003ccode\u003ed98c65c\u003c/code\u003e\u003c/a\u003e Update Faraday-specific AI agent guidelines\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/56c18ecb718e30c5a3a0dea9bd2361912af9013c\"\u003e\u003ccode\u003e56c18ec\u003c/code\u003e\u003c/a\u003e Add AI agent guidelines specific to Faraday repository\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/3201a42957d37efc968ee8834ba9b50ed5dde54a\"\u003e\u003ccode\u003e3201a42\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.12.1...v2.14.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ruby-lsp` from 0.19.1 to 0.26.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Shopify/ruby-lsp/releases\"\u003eruby-lsp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev0.26.9\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent workspace_dependencies failing if directory gets removed during execution (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3980\"\u003eShopify/ruby-lsp#3980\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix semantic token \u003ccode\u003edefaultLibrary\u003c/code\u003e modifier casing (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/4005\"\u003eShopify/ruby-lsp#4005\u003c/a\u003e) by \u003ca href=\"https://github.com/a-lavis\"\u003e\u003ccode\u003e@​a-lavis\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix document links for source comments above sig blocks (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/4018\"\u003eShopify/ruby-lsp#4018\u003c/a\u003e) by \u003ca href=\"https://github.com/KaanOzkan\"\u003e\u003ccode\u003e@​KaanOzkan\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.8\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix send_log_message ignoring type parameter (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3969\"\u003eShopify/ruby-lsp#3969\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eProperly reset state after leaving a regex capture (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3970\"\u003eShopify/ruby-lsp#3970\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClean up cancelled requests after processing them (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3971\"\u003eShopify/ruby-lsp#3971\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApply lower bound \u003ccode\u003eruby-lsp\u003c/code\u003e version constraint in composed bundle (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3985\"\u003eShopify/ruby-lsp#3985\u003c/a\u003e) by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnsure the original CLI arguments are used when updating (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3986\"\u003eShopify/ruby-lsp#3986\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnsure bundle is re-composed when CLI arguments change (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3987\"\u003eShopify/ruby-lsp#3987\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Other Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eStart accepting --beta flag to install beta server version (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3976\"\u003eShopify/ruby-lsp#3976\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.7\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSkip disable line action for self-resolving cops (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3945\"\u003eShopify/ruby-lsp#3945\u003c/a\u003e) by \u003ca href=\"https://github.com/sucicfilip\"\u003e\u003ccode\u003e@​sucicfilip\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix test runner silent failure on dual-stack IPv4/IPv6 systems (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3953\"\u003eShopify/ruby-lsp#3953\u003c/a\u003e) by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix Bundler::GemNotFound error introduced in 0.26.5 (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3961\"\u003eShopify/ruby-lsp#3961\u003c/a\u003e) by \u003ca href=\"https://github.com/jesse-shopify\"\u003e\u003ccode\u003e@​jesse-shopify\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix incompatible addon version activation when Bundler.setup fails after retry (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3963\"\u003eShopify/ruby-lsp#3963\u003c/a\u003e) by \u003ca href=\"https://github.com/KaanOzkan\"\u003e\u003ccode\u003e@​KaanOzkan\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid failing if \u003ccode\u003eneeds_update\u003c/code\u003e file is deleted by concurrent process (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3964\"\u003eShopify/ruby-lsp#3964\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Other Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport IPv4 and IPv6 for LSP reporter connection (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3965\"\u003eShopify/ruby-lsp#3965\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDecouple test reporter IO from test execution (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3962\"\u003eShopify/ruby-lsp#3962\u003c/a\u003e) by \u003ca href=\"https://github.com/alexcrocha\"\u003e\u003ccode\u003e@​alexcrocha\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.6\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix infinite loop when collecting transitive excluded gems (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3913\"\u003eShopify/ruby-lsp#3913\u003c/a\u003e) by \u003ca href=\"https://github.com/rafaelfranca\"\u003e\u003ccode\u003e@​rafaelfranca\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDon't include test files in the gem package (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3916\"\u003eShopify/ruby-lsp#3916\u003c/a\u003e) by \u003ca href=\"https://github.com/rafaelfranca\"\u003e\u003ccode\u003e@​rafaelfranca\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd rbs to composed bundle update commands (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3938\"\u003eShopify/ruby-lsp#3938\u003c/a\u003e) by \u003ca href=\"https://github.com/modille\"\u003e\u003ccode\u003e@​modille\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExtract GEMS_TO_UPDATE constant and fix missing prism in command path (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3939\"\u003eShopify/ruby-lsp#3939\u003c/a\u003e) by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Other Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[DOC] Add security documentation (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3928\"\u003eShopify/ruby-lsp#3928\u003c/a\u003e) by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.5\u003c/h1\u003e\n\u003ch2\u003e✨ Enhancements\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/29ecc8d29dde87e6157a75bc2f0a3eb62db02ea3\"\u003e\u003ccode\u003e29ecc8d\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/f6d9ee44200cb2c0bd3feeb75ff9b7547accd6ad\"\u003e\u003ccode\u003ef6d9ee4\u003c/code\u003e\u003c/a\u003e Bump version to v0.26.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/97f817d489a212faa6dd876bf129b300ea492fbc\"\u003e\u003ccode\u003e97f817d\u003c/code\u003e\u003c/a\u003e Remove --branch flag from server\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/9e53e7e8366a13e44079f252ee8e5d5000803fe2\"\u003e\u003ccode\u003e9e53e7e\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/eb746d3554f8666e980fa3cffc0d03d7aa062fdd\"\u003e\u003ccode\u003eeb746d3\u003c/code\u003e\u003c/a\u003e Bump extension version to v0.10.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/8834520c7d4ebd067527bc9ba0db3aff586e5df8\"\u003e\u003ccode\u003e8834520\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/issues/4030\"\u003e#4030\u003c/a\u003e from Shopify/use-prism-parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/e4026eac5293387aa1e77a62253ae5dc5a9806b5\"\u003e\u003ccode\u003ee4026ea\u003c/code\u003e\u003c/a\u003e Use Prism parser for Sorbet\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/81843e7a15f2b5428dbe73d87ef3a3ceccb6c411\"\u003e\u003ccode\u003e81843e7\u003c/code\u003e\u003c/a\u003e Bump Sorbet to 0.6.13055\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/b61a59498b70e864ac67c87bafbf72851ecb2ba7\"\u003e\u003ccode\u003eb61a594\u003c/code\u003e\u003c/a\u003e Remove rubyLsp.branch setting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/8c1e9b6b3f69a45dd6853d43d3dfae158f9e555d\"\u003e\u003ccode\u003e8c1e9b6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/issues/4028\"\u003e#4028\u003c/a\u003e from Shopify/dependabot/npm_and_yarn/vscode/minor-an...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Shopify/ruby-lsp/compare/v0.19.1...v0.26.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.7 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rack` from 3.0.16 to 3.1.21\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.1.21] - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-7mqq-6cf9-v2qp\"\u003eCVE-2026-34763\u003c/a\u003e Root directory disclosure via unescaped regex interpolation in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v569-hp3g-36wr\"\u003eCVE-2026-34230\u003c/a\u003e Avoid O(n^2) algorithm in \u003ccode\u003eRack::Utils.select_best_encoding\u003c/code\u003e which could lead to denial of service.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qfgr-crr9-7r49\"\u003eCVE-2026-32762\u003c/a\u003e Forwarded header semicolon injection enables Host and Scheme spoofing.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-vgpv-f759-9wx3\"\u003eCVE-2026-26961\u003c/a\u003e Raise error for multipart requests with multiple boundary parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q4qf-9j86-f5mh\"\u003eCVE-2026-34786\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e \u003ccode\u003eheader_rules\u003c/code\u003e bypass via URL-encoded path mismatch.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q2ww-5357-x388\"\u003eCVE-2026-34831\u003c/a\u003e \u003ccode\u003eContent-Length\u003c/code\u003e mismatch in \u003ccode\u003eRack::Files\u003c/code\u003e error responses.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-x8cg-fq8g-mxfx\"\u003eCVE-2026-34826\u003c/a\u003e Multipart byte range processing allows denial of service via excessive overlapping ranges.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-g2pf-xv49-m2h5\"\u003eCVE-2026-34835\u003c/a\u003e \u003ccode\u003eRack::Request\u003c/code\u003e accepts invalid Host characters, enabling host allowlist bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qv7j-4883-hwh7\"\u003eCVE-2026-34830\u003c/a\u003e \u003ccode\u003eRack::Sendfile\u003c/code\u003e header-based \u003ccode\u003eX-Accel-Mapping\u003c/code\u003e regex injection enables unauthorized \u003ccode\u003eX-Accel-Redirect\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-h2jq-g4cq-5ppq\"\u003eCVE-2026-34785\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e prefix matching can expose unintended files under the static root.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-8vqr-qjwx-82mw\"\u003eCVE-2026-34829\u003c/a\u003e Multipart parsing without \u003ccode\u003eContent-Length\u003c/code\u003e header allows unbounded chunked file uploads.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v6x5-cg8r-vv6x\"\u003eCVE-2026-34827\u003c/a\u003e Multipart header parsing allows denial of service via escape-heavy quoted parameters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.20] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-whrj-4476-wvmp\"\u003eCVE-2026-25500\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-mxw3-3hh2-x2mh\"\u003eCVE-2026-22860\u003c/a\u003e Directory traversal via root prefix bypass in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.19] - 2025-11-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.18] - 2025-10-10\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.17] - 2025-10-07\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-wpv5-97wm-hp9c\"\u003eCVE-2025-61772\u003c/a\u003e Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-w9pc-fmgc-vxvw\"\u003eCVE-2025-61771\u003c/a\u003e Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-p543-xpfm-54cp\"\u003eCVE-2025-61770\u003c/a\u003e Unbounded multipart preamble buffering enables DoS (memory exhaustion)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.16] - 2025-06-04\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-47m2-26rw-j2jw\"\u003eCVE-2025-49007\u003c/a\u003e Fix ReDoS in multipart request.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/ae8431120e66e92d1885ab8ec0a553d9cad5ec13\"\u003e\u003ccode\u003eae84311\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/87961c306df1894fb5efaa57d29179091b4bc194\"\u003e\u003ccode\u003e87961c3\u003c/code\u003e\u003c/a\u003e Fix typo in test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/fd1c23dc762225e68b50d392142e6a6bf54bf9af\"\u003e\u003ccode\u003efd1c23d\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003elogger\u003c/code\u003e to gemfile.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/c59d924f215e41ae8ce1bae1633c34f1ca64b182\"\u003e\u003ccode\u003ec59d924\u003c/code\u003e\u003c/a\u003e Fix test expectation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/176f468e0d575e2f4d7583ff95f30bb53360e3fe\"\u003e\u003ccode\u003e176f468\u003c/code\u003e\u003c/a\u003e Add Ruby v4.0 to the test matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/28569342665fee07f161f0974826eb85c1244533\"\u003e\u003ccode\u003e2856934\u003c/code\u003e\u003c/a\u003e Drop EOL Rubies from external tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/17ce7836be1523a7b453f3c06fe070ad7c954708\"\u003e\u003ccode\u003e17ce783\u003c/code\u003e\u003c/a\u003e Limit the number of quoted escapes during multipart parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/367a2a0ec6fbef605c9412dadfd5763b7867441f\"\u003e\u003ccode\u003e367a2a0\u003c/code\u003e\u003c/a\u003e Add Content-Length size check in Rack::Multipart::Parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/a17cb99b3440a4db09fb920407adf5ead127704c\"\u003e\u003ccode\u003ea17cb99\u003c/code\u003e\u003c/a\u003e Fix root prefix bug in Rack::Static\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/59a0966a484f2903833fa3e4c81919d3c645738d\"\u003e\u003ccode\u003e59a0966\u003c/code\u003e\u003c/a\u003e Only do a simple substitution on the x-accel-mapping paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/v3.0.16...v3.1.21\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.3.9 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.3.9...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uri` from 1.0.3 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/uri/releases\"\u003euri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRe-allow consecutive, leading and trailing dots in EMAIL_REGEXP by \u003ca href=\"https://github.com/osyoyu\"\u003e\u003ccode\u003e@​osyoyu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/189\"\u003eruby/uri#189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/osyoyu\"\u003e\u003ccode\u003e@​osyoyu\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/189\"\u003eruby/uri#189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/uri/compare/v1.1.0...v1.1.1\"\u003ehttps://github.com/ruby/uri/compare/v1.1.0...v1.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.1.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate to use the latest version of setup-ruby and bump up to Ruby 3.4 by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/158\"\u003eruby/uri#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix the mention to removed \u003ccode\u003eURI.escape/URI::Escape\u003c/code\u003e by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/146\"\u003eruby/uri#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse a fully qualified name in warning messages by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/150\"\u003eruby/uri#150\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport \u003ccode\u003eRactor#value\u003c/code\u003e by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/163\"\u003eruby/uri#163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved unnecessary workaround  by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/164\"\u003eruby/uri#164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEscape reserved characters in scheme name by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/148\"\u003eruby/uri#148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[DOC] State that uri library is needed to call Kernel#URI by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/167\"\u003eruby/uri#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrefer dedicated assertion methods by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/169\"\u003eruby/uri#169\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix the message for unexpected argument by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/171\"\u003eruby/uri#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake URI::regexp schemes case sensitive (\u003ca href=\"https://redirect.github.com/ruby/uri/issues/38\"\u003e#38\u003c/a\u003e) by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/170\"\u003eruby/uri#170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe local part should not contain leading or trailing dots in the EMAIL_REGEXP by \u003ca href=\"https://github.com/nlevchuk\"\u003e\u003ccode\u003e@​nlevchuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/124\"\u003eruby/uri#124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMore checks in \u003ccode\u003eEMAIL_REGEXP\u003c/code\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/172\"\u003eruby/uri#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not allow empty host names, as they are not allowed by RFC 3986 by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/116\"\u003eruby/uri#116\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove performance of \u003ccode\u003eURI::MailTo::EMAIL_REGEXP\u003c/code\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/173\"\u003eruby/uri#173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePerformance test stability by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/174\"\u003eruby/uri#174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate documents that used \u003ccode\u003eURI::Parser\u003c/code\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/175\"\u003eruby/uri#175\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a workflow to sync commits to ruby/ruby by \u003ca href=\"https://github.com/k0kubun\"\u003e\u003ccode\u003e@​k0kubun\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/183\"\u003eruby/uri#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eirb\u003c/code\u003e to the Gemfile to fix the warning by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/182\"\u003eruby/uri#182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace reference to the obsolete URI.escape with URI::RFC2396_PARSER.escape by \u003ca href=\"https://github.com/vivshaw\"\u003e\u003ccode\u003e@​vivshaw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/166\"\u003eruby/uri#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch a parsing behavior completely when switching a parser by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/161\"\u003eruby/uri#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove error message by \u003ca href=\"https://github.com/soda92\"\u003e\u003ccode\u003e@​soda92\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/130\"\u003eruby/uri#130\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse generic version number to VERSION by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/187\"\u003eruby/uri#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/146\"\u003eruby/uri#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nlevchuk\"\u003e\u003ccode\u003e@​nlevchuk\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/124\"\u003eruby/uri#124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vivshaw\"\u003e\u003ccode\u003e@​vivshaw\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/166\"\u003eruby/uri#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/soda92\"\u003e\u003ccode\u003e@​soda92\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/130\"\u003eruby/uri#130\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/uri/compare/v1.0.4...v1.1.0\"\u003ehttps://github.com/ruby/uri/compare/v1.0.4...v1.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.0.4\u003c/h2\u003e\n\u003ch3\u003eSecurity fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.ruby-lang.org/en/news/2025/10/07/uri-cve-2025-61594/\"\u003eCVE-2025-61594\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/f1b05c89ab38667e7564896f994d4d6cfbc67149\"\u003e\u003ccode\u003ef1b05c8\u003c/code\u003e\u003c/a\u003e v1.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/8557e8d470ad7b969ba11d210e33b9570919661d\"\u003e\u003ccode\u003e8557e8d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/189\"\u003e#189\u003c/a\u003e from osyoyu/restore-whatwg-email-regexp\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/c551d7020bba3cf452e696d55c451ae951d0f24b\"\u003e\u003ccode\u003ec551d70\u003c/code\u003e\u003c/a\u003e Re-allow consecutive, leading and trailing dots in EMAIL_REGEXP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/c41903b3e4df8ba2ceba16a80d3156a97a81e038\"\u003e\u003ccode\u003ec41903b\u003c/code\u003e\u003c/a\u003e v1.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/b433f3499202b2abc27c5211554195243d083f88\"\u003e\u003ccode\u003eb433f34\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/187\"\u003e#187\u003c/a\u003e from ruby/switch-version-code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/1fc4f0496a2d44f4af317d8f786a50e9f6918656\"\u003e\u003ccode\u003e1fc4f04\u003c/code\u003e\u003c/a\u003e Use generic version number to VERSION and generate VERSION_CODE from that\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/e8306800d9b58f37f3847e8d598599cb1ef36f3c\"\u003e\u003ccode\u003ee830680\u003c/code\u003e\u003c/a\u003e Exclude dependabot updates from release note\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/70d245fa46786b9aa4970c4b815cfe8b1b823bf6\"\u003e\u003ccode\u003e70d245f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/130\"\u003e#130\u003c/a\u003e from soda92/improve-error-message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/d629c8c1541330e4fc50879fbafc0701728e447f\"\u003e\u003ccode\u003ed629c8c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/161\"\u003e#161\u003c/a\u003e from y-yagi/fix_changing_parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/fec6733919edb140bbdc429ed4b0492776ebc4a2\"\u003e\u003ccode\u003efec6733\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/166\"\u003e#166\u003c/a\u003e from vivshaw/vivshaw/correct-obsolete-parse\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/uri/compare/v1.0.3...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Lynquatiq/entitlements-github-plugin/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Lynquatiq/entitlements-github-plugin/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Lynquatiq%2Fentitlements-github-plugin/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"}},{"old_version":"3.4.0","new_version":"3.4.2","update_type":"patch","path":null,"pr_created_at":"2026-04-08T07:41:29.000Z","version_change":"3.4.0 → 3.4.2","issue":{"uuid":"4222907401","node_id":"PR_kwDOPVgz5c7Qursv","number":248,"state":"open","title":"build(deps): bump the bundler group across 2 directories with 5 updates","user":"dependabot[bot]","labels":["dependencies","ruby","Stale"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-08T07:41:29.000Z","updated_at":"2026-04-16T05:36:48.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"bundler","update_count":5,"packages":[{"name":"sinatra","old_version":"4.1.1","new_version":"4.2.0","repository_url":"https://github.com/sinatra/sinatra"},{"name":"rack","old_version":"3.1.15","new_version":"3.2.6"},{"name":"rack-session","old_version":"2.1.1","new_version":"2.1.2"},{"name":"addressable","old_version":"2.8.7","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"rexml","old_version":"3.4.0","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 1 update in the /src/email directory: [sinatra](https://github.com/sinatra/sinatra).\nBumps the bundler group with 2 updates in the /src/react-native-app directory: [addressable](https://github.com/sporkmonger/addressable) and [rexml](https://github.com/ruby/rexml).\n\nUpdates `sinatra` from 4.1.1 to 4.2.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sinatra/sinatra/blob/main/CHANGELOG.md\"\u003esinatra's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.2.0 / 2025-10-08\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew: Add \u003ccode\u003e:static_headers\u003c/code\u003e setting for custom headers in static file responses (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2089\"\u003e#2089\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Fix regex in \u003ccode\u003eetag_matches?\u003c/code\u003e to prevent ReDoS (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2121\"\u003e#2121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: \u003ccode\u003ePATH_INFO\u003c/code\u003e can never be empty (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2114\"\u003e#2114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Fix malformed Content-Type headers (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2081\"\u003e#2081\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Avoid crash for integer values in \u003ccode\u003econtent_type\u003c/code\u003e parameters (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2078\"\u003e#2078\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/f2ad45f7d2456172974a30d300e9f82424336e09\"\u003e\u003ccode\u003ef2ad45f\u003c/code\u003e\u003c/a\u003e 4.2.0 release (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2122\"\u003e#2122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/3fe8c38dc405586f7ad8f2ac748aa53e9c3615bd\"\u003e\u003ccode\u003e3fe8c38\u003c/code\u003e\u003c/a\u003e Fix regex in \u003ccode\u003eetag_matches?\u003c/code\u003e to prevent ReDoS (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2121\"\u003e#2121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/fa99a21461d4f1f5337b9b9d7a38a1b51c8f4e55\"\u003e\u003ccode\u003efa99a21\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ePATH_INFO\u003c/code\u003e can never be empty. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2114\"\u003e#2114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/ea0d3fae36d8bba330c1d1f88ef1be2e9e54516a\"\u003e\u003ccode\u003eea0d3fa\u003c/code\u003e\u003c/a\u003e Skip broken tests. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2115\"\u003e#2115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/5e1598501eb23a8673d61034df7be7d50c228400\"\u003e\u003ccode\u003e5e15985\u003c/code\u003e\u003c/a\u003e Sync changelog for v4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/91cfb548c9e50a65324a9ce9e4ea5f10cd897027\"\u003e\u003ccode\u003e91cfb54\u003c/code\u003e\u003c/a\u003e Add :static_headers setting for custom headers in static file responses (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2089\"\u003e#2089\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/c918134b0a520cb80b8b4cc3ab222cb6bbd9c827\"\u003e\u003ccode\u003ec918134\u003c/code\u003e\u003c/a\u003e Set \u003ccode\u003erubygems_mfa_required\u003c/code\u003e for the \u003ccode\u003esinatra\u003c/code\u003e gem (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2087\"\u003e#2087\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/ac3ff2363b6dfc61d2b438c4dfccc515bc6bf48c\"\u003e\u003ccode\u003eac3ff23\u003c/code\u003e\u003c/a\u003e README: Remove duplicate mention of installing puma (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2091\"\u003e#2091\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/cfcc70dee1133690207b5a3dc6000426ec04e250\"\u003e\u003ccode\u003ecfcc70d\u003c/code\u003e\u003c/a\u003e CI: don't use \u003ccode\u003eRack::Lint\u003c/code\u003e on invalid hostname (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2086\"\u003e#2086\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/c235249abaafa2780b540aca1813dfcf3d17c2dd\"\u003e\u003ccode\u003ec235249\u003c/code\u003e\u003c/a\u003e CI: Test with Ruby 3.4 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2083\"\u003e#2083\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sinatra/sinatra/compare/v4.1.1...v4.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rack` from 3.1.15 to 3.2.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/releases\"\u003erack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.2.6\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.2.5...v3.2.6\"\u003ehttps://github.com/rack/rack/compare/v3.2.5...v3.2.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.2.4\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.2.6] - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-7mqq-6cf9-v2qp\"\u003eCVE-2026-34763\u003c/a\u003e Root directory disclosure via unescaped regex interpolation in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v569-hp3g-36wr\"\u003eCVE-2026-34230\u003c/a\u003e Avoid O(n^2) algorithm in \u003ccode\u003eRack::Utils.select_best_encoding\u003c/code\u003e which could lead to denial of service.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qfgr-crr9-7r49\"\u003eCVE-2026-32762\u003c/a\u003e Forwarded header semicolon injection enables Host and Scheme spoofing.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-vgpv-f759-9wx3\"\u003eCVE-2026-26961\u003c/a\u003e Raise error for multipart requests with multiple boundary parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q4qf-9j86-f5mh\"\u003eCVE-2026-34786\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e \u003ccode\u003eheader_rules\u003c/code\u003e bypass via URL-encoded path mismatch.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q2ww-5357-x388\"\u003eCVE-2026-34831\u003c/a\u003e \u003ccode\u003eContent-Length\u003c/code\u003e mismatch in \u003ccode\u003eRack::Files\u003c/code\u003e error responses.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-x8cg-fq8g-mxfx\"\u003eCVE-2026-34826\u003c/a\u003e Multipart byte range processing allows denial of service via excessive overlapping ranges.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-g2pf-xv49-m2h5\"\u003eCVE-2026-34835\u003c/a\u003e \u003ccode\u003eRack::Request\u003c/code\u003e accepts invalid Host characters, enabling host allowlist bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qv7j-4883-hwh7\"\u003eCVE-2026-34830\u003c/a\u003e \u003ccode\u003eRack::Sendfile\u003c/code\u003e header-based \u003ccode\u003eX-Accel-Mapping\u003c/code\u003e regex injection enables unauthorized \u003ccode\u003eX-Accel-Redirect\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-h2jq-g4cq-5ppq\"\u003eCVE-2026-34785\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e prefix matching can expose unintended files under the static root.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-8vqr-qjwx-82mw\"\u003eCVE-2026-34829\u003c/a\u003e Multipart parsing without \u003ccode\u003eContent-Length\u003c/code\u003e header allows unbounded chunked file uploads.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v6x5-cg8r-vv6x\"\u003eCVE-2026-34827\u003c/a\u003e Multipart header parsing allows denial of service via escape-heavy quoted parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-rx22-g9mx-qrhv\"\u003eCVE-2026-26962\u003c/a\u003e Improper unfolding of folded multipart headers preserves CRLF in parsed parameter values.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.5] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-whrj-4476-wvmp\"\u003eCVE-2026-25500\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-mxw3-3hh2-x2mh\"\u003eCVE-2026-22860\u003c/a\u003e Directory traversal via root prefix bypass in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eRack::MockResponse#body\u003c/code\u003e when the body is a Proc. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2420\"\u003e#2420\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rack/rack/pull/2423\"\u003e#2423\u003c/a\u003e, \u003ca href=\"https://github.com/tavianator\"\u003e\u003ccode\u003e@​tavianator\u003c/code\u003e\u003c/a\u003e, [\u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.4] - 2025-11-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3] - 2025-10-10\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.2] - 2025-10-07\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-wpv5-97wm-hp9c\"\u003eCVE-2025-61772\u003c/a\u003e Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-w9pc-fmgc-vxvw\"\u003eCVE-2025-61771\u003c/a\u003e Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-p543-xpfm-54cp\"\u003eCVE-2025-61770\u003c/a\u003e Unbounded multipart preamble buffering enables DoS (memory exhaustion)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/e1f22fdbe99afd2126b6fbf05bb12399359574b7\"\u003e\u003ccode\u003ee1f22fd\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/31989fd7bb6f806fdb3cfa4e9aec1fe8434f47d1\"\u003e\u003ccode\u003e31989fd\u003c/code\u003e\u003c/a\u003e Fix typo in test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/d268165e390e17b83573fec916dcdef6304a8b4b\"\u003e\u003ccode\u003ed268165\u003c/code\u003e\u003c/a\u003e Fix test expectation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/8f425de0ee75a2f3cdfbfdd57858c1910b7645ff\"\u003e\u003ccode\u003e8f425de\u003c/code\u003e\u003c/a\u003e Add Ruby v4.0 to the test matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/bf830426ce5b3daccb5a226b733703c86504ceba\"\u003e\u003ccode\u003ebf83042\u003c/code\u003e\u003c/a\u003e Drop EOL Rubies from external tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/d50c4d3dab62fa80b2a276271d0d4fb338cfa7df\"\u003e\u003ccode\u003ed50c4d3\u003c/code\u003e\u003c/a\u003e Implement OBS unfolding for multipart requests per RFC 5322 2.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/bfb69142dbe2a1e3298ad52d12935938d1b58205\"\u003e\u003ccode\u003ebfb6914\u003c/code\u003e\u003c/a\u003e Limit the number of quoted escapes during multipart parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/b3e5945c648c5a5b6982e5072b26e51990991229\"\u003e\u003ccode\u003eb3e5945\u003c/code\u003e\u003c/a\u003e Add Content-Length size check in Rack::Multipart::Parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/7a8f32696609b88e2c4c1f09d473a1d2d837ed4b\"\u003e\u003ccode\u003e7a8f326\u003c/code\u003e\u003c/a\u003e Fix root prefix bug in Rack::Static\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/a57bc140247f904dc1e3302badedcb73645072c7\"\u003e\u003ccode\u003ea57bc14\u003c/code\u003e\u003c/a\u003e Only do a simple substitution on the x-accel-mapping paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/v3.1.15...v3.2.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rack-session` from 2.1.1 to 2.1.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack-session/blob/main/releases.md\"\u003erack-session's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-33qg-7wpp-89cq\"\u003eCVE-2026-39324\u003c/a\u003e Don't fall back to unencrypted coder if encryptors are present.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/504367b59caf7ec78127785cc6351f46be14f8ca\"\u003e\u003ccode\u003e504367b\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/f43638cb3a4d15c3ecaf59e67a04b47fda08eeac\"\u003e\u003ccode\u003ef43638c\u003c/code\u003e\u003c/a\u003e Don't fall back to unencrypted coder if encryptors are present.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/dadcfe60f193e8d8540bec6b95ca75bed8e5fd7e\"\u003e\u003ccode\u003edadcfe6\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/rack/rack-session/issues/54\"\u003e#54\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/4eb9ea83b372e319c65a8c2bcfe87e8be942cf9b\"\u003e\u003ccode\u003e4eb9ea8\u003c/code\u003e\u003c/a\u003e Add top level session spec to validate existing formats.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/8f94577c1d11b746692974f1417acff2856060cb\"\u003e\u003ccode\u003e8f94577\u003c/code\u003e\u003c/a\u003e Add rails to external tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/38ea47da9937afb4f2140b3c23866e3791a46eaf\"\u003e\u003ccode\u003e38ea47d\u003c/code\u003e\u003c/a\u003e Allow the v2 encryptor to serialize messages with \u003ccode\u003eMarshal\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rack/rack-session/issues/44\"\u003e#44\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/43f2e3a46393b51473bb90f54e61189465ae759d\"\u003e\u003ccode\u003e43f2e3a\u003c/code\u003e\u003c/a\u003e Fix compatibility with older Rubies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/6a060b806399bff4961eaf6bf89535395c95549c\"\u003e\u003ccode\u003e6a060b8\u003c/code\u003e\u003c/a\u003e Support UTF-8 data when using the JSON serializer (\u003ca href=\"https://redirect.github.com/rack/rack-session/issues/39\"\u003e#39\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/8ce0146a7079332d9c58a43e418acb1ecf904ef6\"\u003e\u003ccode\u003e8ce0146\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003eauth_tag\u003c/code\u003e retrieval on JRuby (\u003ca href=\"https://redirect.github.com/rack/rack-session/issues/32\"\u003e#32\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack-session/commit/77271850efd977897d02903bfde8ed51e4137a68\"\u003e\u003ccode\u003e7727185\u003c/code\u003e\u003c/a\u003e Add AEAD encryption (\u003ca href=\"https://redirect.github.com/rack/rack-session/issues/23\"\u003e#23\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rack/rack-session/compare/v2.1.1...v2.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.7 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.4.0 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.4.0...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/burhanuddin-anw/opentelemetry-demo/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/burhanuddin-anw/opentelemetry-demo/pull/248","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/burhanuddin-anw%2Fopentelemetry-demo/issues/248","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/248/packages"}},{"old_version":"3.4.1","new_version":"3.4.2","update_type":"patch","path":null,"pr_created_at":"2026-04-08T07:34:29.000Z","version_change":"3.4.1 → 3.4.2","issue":{"uuid":"4222874288","node_id":"PR_kwDOJBA0UM7QulOD","number":19,"state":"open","title":"Bump the bundler group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-08T07:34:29.000Z","updated_at":"2026-05-15T02:19:08.639Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":2,"packages":[{"name":"addressable","old_version":"2.8.7","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"rexml","old_version":"3.4.1","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Updates the requirements on [addressable](https://github.com/sporkmonger/addressable) and [rexml](https://github.com/ruby/rexml) to permit the latest version.\nUpdates `addressable` from 2.8.7 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.7...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.4.1 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.4.1...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sivolko/hugs4bugs/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/sivolko/hugs4bugs/pull/19","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sivolko%2Fhugs4bugs/issues/19","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/19/packages"}},{"old_version":"3.2.6","new_version":"3.4.2","update_type":"minor","path":null,"pr_created_at":"2026-04-08T06:16:10.000Z","version_change":"3.2.6 → 3.4.2","issue":{"uuid":"4222506848","node_id":"PR_kwDOMS9Kv87QtiMU","number":6,"state":"open","title":"Bump the bundler group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-08T06:16:10.000Z","updated_at":"2026-04-08T08:02:04.161Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":6,"packages":[{"name":"nokogiri","old_version":"1.16.5","new_version":"1.19.1","repository_url":"https://github.com/sparklemotion/nokogiri"},{"name":"webrick","old_version":"1.8.1","new_version":"1.8.2","repository_url":"https://github.com/ruby/webrick"},{"name":"addressable","old_version":"2.8.6","new_version":"2.9.0","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"httparty","old_version":"0.22.0","new_version":"0.24.0","repository_url":"https://github.com/jnunemaker/httparty"},{"name":"rexml","old_version":"3.2.6","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"},{"name":"google-protobuf","old_version":"3.24.4","new_version":"3.25.5","repository_url":"https://github.com/protocolbuffers/protobuf"}],"path":null,"ecosystem":"rubygems"},"body":"Updates the requirements on [nokogiri](https://github.com/sparklemotion/nokogiri), [webrick](https://github.com/ruby/webrick), [addressable](https://github.com/sporkmonger/addressable), [httparty](https://github.com/jnunemaker/httparty), [rexml](https://github.com/ruby/rexml) and [google-protobuf](https://github.com/protocolbuffers/protobuf) to permit the latest version.\nUpdates `nokogiri` from 1.16.5 to 1.19.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/releases\"\u003enokogiri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003ecfdb0eafd9a554a88f12ebcc688d2b9005f9fce42b00b970e3dc199587b27f32  nokogiri-1.19.1-aarch64-linux-gnu.gem\r\n1e2150ab43c3b373aba76cd1190af7b9e92103564063e48c474f7600923620b5  nokogiri-1.19.1-aarch64-linux-musl.gem\r\n0a39ed59abe3bf279fab9dd4c6db6fe8af01af0608f6e1f08b8ffa4e5d407fa3  nokogiri-1.19.1-arm-linux-gnu.gem\r\n3a18e559ee499b064aac6562d98daab3d39ba6cbb4074a1542781b2f556db47d  nokogiri-1.19.1-arm-linux-musl.gem\r\ndfe2d337e6700eac47290407c289d56bcf85805d128c1b5a6434ddb79731cb9e  nokogiri-1.19.1-arm64-darwin.gem\r\n1e0bda88b1c6409f0edb9e0c25f1bf9ff4fa94c3958f492a10fcf50dda594365  nokogiri-1.19.1-java.gem\r\n110d92ae57694ae7866670d298a5d04cd150fae5a6a7849957d66f171e6aec9b  nokogiri-1.19.1-x64-mingw-ucrt.gem\r\n7093896778cc03efb74b85f915a775862730e887f2e58d6921e3fa3d981e68bf  nokogiri-1.19.1-x86_64-darwin.gem\r\n1a4902842a186b4f901078e692d12257678e6133858d0566152fe29cdb98456a  nokogiri-1.19.1-x86_64-linux-gnu.gem\r\n4267f38ad4fc7e52a2e7ee28ed494e8f9d8eb4f4b3320901d55981c7b995fc23  nokogiri-1.19.1-x86_64-linux-musl.gem\r\n598b327f36df0b172abd57b68b18979a6e14219353bca87180c31a51a00d5ad3  nokogiri-1.19.1.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e11a97ecc3c0e7e5edcf395720b10860ef493b768f6aa80c539573530bc933767  nokogiri-1.19.0-aarch64-linux-gnu.gem\r\neb70507f5e01bc23dad9b8dbec2b36ad0e61d227b42d292835020ff754fb7ba9  nokogiri-1.19.0-aarch64-linux-musl.gem\r\n572a259026b2c8b7c161fdb6469fa2d0edd2b61cd599db4bbda93289abefbfe5  nokogiri-1.19.0-arm-linux-gnu.gem\r\n23ed90922f1a38aed555d3de4d058e90850c731c5b756d191b3dc8055948e73c  nokogiri-1.19.0-arm-linux-musl.gem\r\n0811dfd936d5f6dd3f6d32ef790568bf29b2b7bead9ba68866847b33c9cf5810  nokogiri-1.19.0-arm64-darwin.gem\r\n5f3a70e252be641d8a4099f7fb4cc25c81c632cb594eec9b4b8f2ca8be4374f3  nokogiri-1.19.0-java.gem\r\n05d7ed2d95731edc9bef2811522dc396df3e476ef0d9c76793a9fca81cab056b  nokogiri-1.19.0-x64-mingw-ucrt.gem\r\n1dad56220b603a8edb9750cd95798bffa2b8dd9dd9aa47f664009ee5b43e3067  nokogiri-1.19.0-x86_64-darwin.gem\r\nf482b95c713d60031d48c44ce14562f8d2ce31e3a9e8dd0ccb131e9e5a68b58c  nokogiri-1.19.0-x86_64-linux-gnu.gem\r\n1c4ca6b381622420073ce6043443af1d321e8ed93cc18b08e2666e5bd02ffae4  nokogiri-1.19.0-x86_64-linux-musl.gem\r\ne304d21865f62518e04f2bf59f93bd3a97ca7b07e7f03952946d8e1c05f45695  nokogiri-1.19.0.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md\"\u003enokogiri's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.10 / 2025-09-15\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.9\"\u003ev2.13.9\u003c/a\u003e. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.\u003c/li\u003e\n\u003cli\u003e[CRuby] [Windows and MacOS] Vendored libiconv is updated to \u003ca href=\"https://savannah.gnu.org/news/?id=10703\"\u003ev1.18\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.9 / 2025-07-20\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Applied upstream libxml2 patches to address CVE-2025-6021, CVE-2025-6170, CVE-2025-49794, CVE-2025-49795, and CVE-2025-49796. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-353f-x4gh-cqq8\"\u003eGHSA-353f-x4gh-cqq8\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.8 / 2025-04-21\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.8\"\u003ev2.13.8\u003c/a\u003e to address CVE-2025-32414 and CVE-2025-32415. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-5w6v-399v-w3cc\"\u003eGHSA-5w6v-399v-w3cc\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.7 / 2025-03-31\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.7\"\u003ev2.13.7\u003c/a\u003e, which is a bugfix release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.6 / 2025-03-24\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d9130457369de8a6efcb764e6da2cb80d5d3b6dd\"\u003e\u003ccode\u003ed913045\u003c/code\u003e\u003c/a\u003e version bump to v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/b81cb9869e8ed7d1785da3363ef490f455da96eb\"\u003e\u003ccode\u003eb81cb98\u003c/code\u003e\u003c/a\u003e doc: update CHANGELOG for upcoming v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/8e668095c6147def4a3ec044df5f2a478c8161c3\"\u003e\u003ccode\u003e8e66809\u003c/code\u003e\u003c/a\u003e C14n raise on failure (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3600\"\u003e#3600\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/5b77f3d1c48cc09c92d10046c448a0866380eb4a\"\u003e\u003ccode\u003e5b77f3d\u003c/code\u003e\u003c/a\u003e Raise RuntimeError when canonicalization fails\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/edc559565819459d92f6db609f068f50491a57f9\"\u003e\u003ccode\u003eedc5595\u003c/code\u003e\u003c/a\u003e Thank sponsors in the README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d4dc245dfafd7ba42538051b0979306c8e5dc6f2\"\u003e\u003ccode\u003ed4dc245\u003c/code\u003e\u003c/a\u003e dep: update rdoc to v7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d77bfb66302532b90c0f340ed6b4ae74f275dde8\"\u003e\u003ccode\u003ed77bfb6\u003c/code\u003e\u003c/a\u003e version bump to v1.19.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/1eb5c2c035b360fd1195de0b274e901b6e0c12dd\"\u003e\u003ccode\u003e1eb5c2c\u003c/code\u003e\u003c/a\u003e dev: convert scripts/test-gem-set to use mise\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/88a120fd8198cd49b7cbe6388c92cd92d776407d\"\u003e\u003ccode\u003e88a120f\u003c/code\u003e\u003c/a\u003e dep: Add native Ruby 4 support, drop Ruby 3.1 support (v1.19.x) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3592\"\u003e#3592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/f8c8f74e846ea49d2cb221710cc08618842ba21e\"\u003e\u003ccode\u003ef8c8f74\u003c/code\u003e\u003c/a\u003e Skip the parser compression test for Windows system libs\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sparklemotion/nokogiri/compare/v1.16.5...v1.19.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `webrick` from 1.8.1 to 1.8.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/webrick/releases\"\u003ewebrick's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop commented-out line by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/108\"\u003eruby/webrick#108\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Ruby 3.1 \u0026amp; 3.2 to CI matrix by \u003ca href=\"https://github.com/tricknotes\"\u003e\u003ccode\u003e@​tricknotes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/109\"\u003eruby/webrick#109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix/redos by \u003ca href=\"https://github.com/ooooooo-q\"\u003e\u003ccode\u003e@​ooooooo-q\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/114\"\u003eruby/webrick#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRaise HTTPStatus::BadRequest for requests with invalid/duplicate content-length headers by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/120\"\u003eruby/webrick#120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/121\"\u003eruby/webrick#121\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove CI by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/123\"\u003eruby/webrick#123\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix WEBrick::TestFileHandler#test_short_filename test not working on mswin by \u003ca href=\"https://github.com/KJTsanaktsidis\"\u003e\u003ccode\u003e@​KJTsanaktsidis\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/128\"\u003eruby/webrick#128\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix bug chunk extension detection by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/125\"\u003eruby/webrick#125\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI. by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/131\"\u003eruby/webrick#131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMerge multiple cookie headers, preserving semantic correctness. by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/130\"\u003eruby/webrick#130\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTest on macos-latest by \u003ca href=\"https://github.com/byroot\"\u003e\u003ccode\u003e@​byroot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/132\"\u003eruby/webrick#132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire CRLF line endings in request line and headers by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/138\"\u003eruby/webrick#138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrefer squigly heredocs. by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/143\"\u003eruby/webrick#143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly strip space and horizontal tab in headers by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/141\"\u003eruby/webrick#141\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTreat missing CRLF separator after headers as an EOFError by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/142\"\u003eruby/webrick#142\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReturn 400 response for chunked requests with unexpected data after chunk by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/136\"\u003eruby/webrick#136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix reference to URI::REGEXP::PATTERN::HOST by \u003ca href=\"https://github.com/casperisfine\"\u003e\u003ccode\u003e@​casperisfine\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/144\"\u003eruby/webrick#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrevent request smuggling by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/146\"\u003eruby/webrick#146\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tricknotes\"\u003e\u003ccode\u003e@​tricknotes\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/109\"\u003eruby/webrick#109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ooooooo-q\"\u003e\u003ccode\u003e@​ooooooo-q\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/114\"\u003eruby/webrick#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KJTsanaktsidis\"\u003e\u003ccode\u003e@​KJTsanaktsidis\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/128\"\u003eruby/webrick#128\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/byroot\"\u003e\u003ccode\u003e@​byroot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/132\"\u003eruby/webrick#132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/casperisfine\"\u003e\u003ccode\u003e@​casperisfine\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/144\"\u003eruby/webrick#144\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/webrick/compare/v1.8.1...v1.8.2\"\u003ehttps://github.com/ruby/webrick/compare/v1.8.1...v1.8.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/0fb9de6788a3ba5fe903e63d778a0fb8c1dce786\"\u003e\u003ccode\u003e0fb9de6\u003c/code\u003e\u003c/a\u003e Bump up v1.8.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/b9a4c81ea94dec02a750c6b34092c55234519bf1\"\u003e\u003ccode\u003eb9a4c81\u003c/code\u003e\u003c/a\u003e Removed trailing spaces\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/f5faca9222541591e1a7c3c97552ebb0c92733c7\"\u003e\u003ccode\u003ef5faca9\u003c/code\u003e\u003c/a\u003e Prevent request smuggling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/0c600e169bd4ae267cb5eeb6197277c848323bbe\"\u003e\u003ccode\u003e0c600e1\u003c/code\u003e\u003c/a\u003e Fix reference to URI::REGEXP::PATTERN::HOST\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/15a93914782789520837c334e0c302702aec34e2\"\u003e\u003ccode\u003e15a9391\u003c/code\u003e\u003c/a\u003e Return 400 response for chunked requests with unexpected data after chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/2b38d5614e876d313fe981e87c4e35b91556d226\"\u003e\u003ccode\u003e2b38d56\u003c/code\u003e\u003c/a\u003e Treat missing CRLF separator after headers as an EOFError\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/e4efb4a2300540f14f93c09c06bf0357ac1597dc\"\u003e\u003ccode\u003ee4efb4a\u003c/code\u003e\u003c/a\u003e Remove unnecessary gsub calls in test_httprequest.rb\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/426e214532bb0be5e4ab8b3c9cef328432012d0d\"\u003e\u003ccode\u003e426e214\u003c/code\u003e\u003c/a\u003e Only strip space and horizontal tab in headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/e72cb697836e2ff201a4a74c108fdca9d3d2d0ed\"\u003e\u003ccode\u003ee72cb69\u003c/code\u003e\u003c/a\u003e Prefer squigly heredocs. (\u003ca href=\"https://redirect.github.com/ruby/webrick/issues/143\"\u003e#143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/ee60354bcb84ec33b9245e1d1aa6e1f7e8132101\"\u003e\u003ccode\u003eee60354\u003c/code\u003e\u003c/a\u003e Require CRLF line endings in request line and headers\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/webrick/compare/v1.8.1...v1.8.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.6 to 2.9.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.9.0 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match (fixes incomplete\nremediation in 2.8.10)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.10 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes ReDoS vulnerability in Addressable::Template#match\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.7 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 6 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/535\"\u003esporkmonger/addressable#535\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0c3e8589b23d4402903a9b4e1fdeba4e43c52ca4\"\u003e\u003ccode\u003e0c3e858\u003c/code\u003e\u003c/a\u003e Revving version and changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/91915c1f7aafa3e2c9f42e2f4e21d948c7a861b8\"\u003e\u003ccode\u003e91915c1\u003c/code\u003e\u003c/a\u003e Fixing additional vulnerable paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/a091e39ff02fc321b21dea3a0df585bef2ba3744\"\u003e\u003ccode\u003ea091e39\u003c/code\u003e\u003c/a\u003e Add many more adversarial test cases to ensure we don't have any ReDoS regres...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/463a819665a3b85ce5ce894c90bd7bfa3b9d2e15\"\u003e\u003ccode\u003e463a819\u003c/code\u003e\u003c/a\u003e Regenerate gemspec on newer rubygems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0afcb0b9672bee301e5e96ed850fec05b2fcabb0\"\u003e\u003ccode\u003e0afcb0b\u003c/code\u003e\u003c/a\u003e Improve from O(n^2) to O(n)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c87f768f22ab00376ed2f8cb106f59c9d0652d3a\"\u003e\u003ccode\u003ec87f768\u003c/code\u003e\u003c/a\u003e Fix a ReDoS vulnerability in URI template matching\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.6...addressable-2.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `httparty` from 0.22.0 to 0.24.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jnunemaker/httparty/releases\"\u003ehttparty's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.24.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eForce binary encoding throughout by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/823\"\u003ejnunemaker/httparty#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eset Content-Type for Hash body in requests by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/828\"\u003ejnunemaker/httparty#828\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: stream multipart file uploads to reduce memory usage by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/829\"\u003ejnunemaker/httparty#829\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent SSRF via absolute URL bypassing base_uri by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/830\"\u003ejnunemaker/httparty#830\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.23.2...v0.24.0\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.23.2...v0.24.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.23.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd changelog_uri metadata to gemspec by \u003ca href=\"https://github.com/baraidrissa\"\u003e\u003ccode\u003e@​baraidrissa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/817\"\u003ejnunemaker/httparty#817\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix multipart with files in binary mode and fields including non-ASCII characters by \u003ca href=\"https://github.com/rdimartino\"\u003e\u003ccode\u003e@​rdimartino\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/822\"\u003ejnunemaker/httparty#822\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/baraidrissa\"\u003e\u003ccode\u003e@​baraidrissa\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/817\"\u003ejnunemaker/httparty#817\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rdimartino\"\u003e\u003ccode\u003e@​rdimartino\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/822\"\u003ejnunemaker/httparty#822\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.23.1...v0.23.2\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.23.1...v0.23.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.23.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd foul option to class level \u003ca href=\"https://github.com/jnunemaker/httparty/commit/d2683879c902b278a0776620dd7510c99a9db670\"\u003ehttps://github.com/jnunemaker/httparty/commit/d2683879c902b278a0776620dd7510c99a9db670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.23.0...v0.23.1\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.23.0...v0.23.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.23.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003enew: foul mode to rescue all common network errors:  \u003ca href=\"https://github.com/jnunemaker/httparty/blob/891a4a8093afd4cacecab2719223e3170d07f1c0/examples/party_foul_mode.rb\"\u003ehttps://github.com/jnunemaker/httparty/blob/891a4a8093afd4cacecab2719223e3170d07f1c0/examples/party_foul_mode.rb\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: replace master branch to main for better view by \u003ca href=\"https://github.com/bestony\"\u003e\u003ccode\u003e@​bestony\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/803\"\u003ejnunemaker/httparty#803\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/tradesmanhelix\"\u003e\u003ccode\u003e@​tradesmanhelix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/811\"\u003ejnunemaker/httparty#811\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ashishra0\"\u003e\u003ccode\u003e@​ashishra0\u003c/code\u003e\u003c/a\u003e made their first contribution with foul mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bestony\"\u003e\u003ccode\u003e@​bestony\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/803\"\u003ejnunemaker/httparty#803\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tradesmanhelix\"\u003e\u003ccode\u003e@​tradesmanhelix\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/811\"\u003ejnunemaker/httparty#811\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.22.0...v0.23.0\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.22.0...v0.23.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/55ec76e8d1df7903eab3f7c2367991400d3cf65e\"\u003e\u003ccode\u003e55ec76e\u003c/code\u003e\u003c/a\u003e Release 0.24.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/ddfbc8ddfca03d4f4026b01763ee906071ca558b\"\u003e\u003ccode\u003eddfbc8d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/830\"\u003e#830\u003c/a\u003e from jnunemaker/fix-ssrf-base-uri-bypass\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/0529bcd6309c9fd9bfdd50ae211843b10054c240\"\u003e\u003ccode\u003e0529bcd\u003c/code\u003e\u003c/a\u003e fix: prevent SSRF via absolute URL bypassing base_uri (GHSA-hm5p-x4rq-38w4)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/05f38fd35d8088b9770513c2eaecce671f0940ec\"\u003e\u003ccode\u003e05f38fd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/829\"\u003e#829\u003c/a\u003e from jnunemaker/memory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/8901c238c00d0aca8920271314c4c5d7dd2701fb\"\u003e\u003ccode\u003e8901c23\u003c/code\u003e\u003c/a\u003e feat: stream multipart file uploads to reduce memory usage\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/091bd6aa909e38822b72f8ce2383385cf8eeb302\"\u003e\u003ccode\u003e091bd6a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/828\"\u003e#828\u003c/a\u003e from jnunemaker/issue-826\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/59c0ac5f3d906fb6be2133c1b89d75329755af8f\"\u003e\u003ccode\u003e59c0ac5\u003c/code\u003e\u003c/a\u003e feat: set Content-Type for Hash body in requests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/5c8b45e6297d181d99a56f5297dade3e358cc6f9\"\u003e\u003ccode\u003e5c8b45e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/823\"\u003e#823\u003c/a\u003e from jnunemaker/mixed-encodings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/6419cb307dd435572963e4ab40cd96b41389efcf\"\u003e\u003ccode\u003e6419cb3\u003c/code\u003e\u003c/a\u003e Force binary encoding throughout\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/c74571f7925c8e142d02c2b7d6ebeedf923b1dd1\"\u003e\u003ccode\u003ec74571f\u003c/code\u003e\u003c/a\u003e Release 0.23.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.22.0...v0.24.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.2.6 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.2.6...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google-protobuf` from 3.24.4 to 3.25.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/70e85ae1f994ee91001a18d9b5b4688ac027c03d\"\u003e\u003ccode\u003e70e85ae\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.5-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/489aba5b55bb994bcd130a43e20cc9be3be04adf\"\u003e\u003ccode\u003e489aba5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/15984\"\u003e#15984\u003c/a\u003e from mkruskal-google/staleness-fix-25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/367c7bea8dd5505f817f41e052e50caa694fb0e6\"\u003e\u003ccode\u003e367c7be\u003c/code\u003e\u003c/a\u003e Regen stale files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/bbbd2dea0e508289d45b48612e4659a230708209\"\u003e\u003ccode\u003ebbbd2de\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.4-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/fc222b9420e19d902e0aee5a6a95274dbbc2fc06\"\u003e\u003ccode\u003efc222b9\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.3-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/6ac04475591db12de14e89d3d750519c2ca9a4cc\"\u003e\u003ccode\u003e6ac0447\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.2-dev\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/7f94235e552599141950d7a4a3eaf93bc87d1b22\"\u003e\u003ccode\u003e7f94235\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/e4b00c75ecbc40389615ddf5482dbabc3a354eea\"\u003e\u003ccode\u003ee4b00c7\u003c/code\u003e\u003c/a\u003e Add support for extensions in CRuby, JRuby, and FFI Ruby (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14703\"\u003e#14703\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14756\"\u003e#14756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/2495d4f96bf4edcc4f770ceb27ae98c71a56fcdb\"\u003e\u003ccode\u003e2495d4f\u003c/code\u003e\u003c/a\u003e Add support for options in CRuby, JRuby and FFI (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14594\"\u003e#14594\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/14739\"\u003e#14739\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/protocolbuffers/protobuf/commit/6b5d8db01fe47478e8d400f550e797e6230d464e\"\u003e\u003ccode\u003e6b5d8db\u003c/code\u003e\u003c/a\u003e Updating version.json and repo version numbers to: 25.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/protocolbuffers/protobuf/compare/v3.24.4...v3.25.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/YoutacRandS-VA/dependabot-core/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/YoutacRandS-VA/dependabot-core/pull/6","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/YoutacRandS-VA%2Fdependabot-core/issues/6","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6/packages"}},{"old_version":"3.4.2","new_version":"3.4.4","update_type":"patch","path":null,"pr_created_at":"2026-04-03T11:02:16.000Z","version_change":"3.4.2 → 3.4.4","issue":{"uuid":"4200026368","node_id":"PR_kwDOCSVaMM7Px4WT","number":7245,"state":"open","title":"build(deps): bump the minor-and-patch group across 1 directory with 67 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-03T11:02:16.000Z","updated_at":"2026-04-03T11:02:45.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"minor-and-patch","update_count":67,"packages":[{"name":"aws-actionmailer-ses","old_version":"1.0.0","new_version":"1.1.0","repository_url":"https://github.com/aws/aws-actionmailer-ses-ruby"},{"name":"dotenv-rails","old_version":"3.1.8","new_version":"3.2.0","repository_url":"https://github.com/bkeepers/dotenv"},{"name":"kt-paperclip","old_version":"7.2.2","new_version":"7.3.0","repository_url":"https://github.com/kreeti/kt-paperclip"},{"name":"omniauth","old_version":"2.1.3","new_version":"2.1.4","repository_url":"https://github.com/omniauth/omniauth"},{"name":"omniauth-google-oauth2","old_version":"1.2.1","new_version":"1.2.2","repository_url":"https://github.com/zquestz/omniauth-google-oauth2"},{"name":"view_component","old_version":"4.0.2","new_version":"4.6.0","repository_url":"https://github.com/viewcomponent/view_component"},{"name":"rails","old_version":"8.0.2.1","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"},{"name":"terser","old_version":"1.2.6","new_version":"1.2.7","repository_url":"https://github.com/ahorek/terser-ruby"},{"name":"jquery-rails","old_version":"4.6.0","new_version":"4.6.1","repository_url":"https://github.com/rails/jquery-rails"},{"name":"sidekiq","old_version":"8.0.7","new_version":"8.1.2","repository_url":"https://github.com/sidekiq/sidekiq"},{"name":"geocoder","old_version":"1.8.5","new_version":"1.8.6","repository_url":"https://github.com/alexreisner/geocoder"},{"name":"pundit","old_version":"2.5.0","new_version":"2.5.2","repository_url":"https://github.com/varvet/pundit"},{"name":"ahoy_matey","old_version":"5.4.0","new_version":"5.4.2","repository_url":"https://github.com/ankane/ahoy"},{"name":"i18n-js","old_version":"4.2.3","new_version":"4.2.4","repository_url":"https://github.com/fnando/i18n-js"},{"name":"pg","old_version":"1.6.1","new_version":"1.6.3","repository_url":"https://github.com/ged/ruby-pg"},{"name":"bootsnap","old_version":"1.18.6","new_version":"1.23.0","repository_url":"https://github.com/rails/bootsnap"},{"name":"rexml","old_version":"3.4.2","new_version":"3.4.4","repository_url":"https://github.com/ruby/rexml"},{"name":"flipper-redis","old_version":"1.3.6","new_version":"1.4.1","repository_url":"https://github.com/flippercloud/flipper"},{"name":"friendly_id","old_version":"5.5.1","new_version":"5.6.0","repository_url":"https://github.com/norman/friendly_id"},{"name":"rails-i18n","old_version":"8.0.2","new_version":"8.1.0","repository_url":"https://github.com/svenfuchs/rails-i18n"},{"name":"recaptcha","old_version":"5.20.1","new_version":"5.21.1","repository_url":"https://github.com/ambethia/recaptcha"},{"name":"strong_migrations","old_version":"2.5.0","new_version":"2.5.2","repository_url":"https://github.com/ankane/strong_migrations"},{"name":"debug","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/ruby/debug"},{"name":"factory_bot_rails","old_version":"6.5.0","new_version":"6.5.1","repository_url":"https://github.com/thoughtbot/factory_bot_rails"},{"name":"faker","old_version":"3.5.2","new_version":"3.6.1","repository_url":"https://github.com/faker-ruby/faker"},{"name":"rspec-rails","old_version":"8.0.2","new_version":"8.0.4","repository_url":"https://github.com/rspec/rspec-rails"},{"name":"rubocop-performance","old_version":"1.25.0","new_version":"1.26.1","repository_url":"https://github.com/rubocop/rubocop-performance"},{"name":"rubocop-rails","old_version":"2.33.3","new_version":"2.34.3","repository_url":"https://github.com/rubocop/rubocop-rails"},{"name":"rubocop-rspec","old_version":"3.6.0","new_version":"3.9.0","repository_url":"https://github.com/rubocop/rubocop-rspec"},{"name":"rbs_rails","old_version":"0.12.1","new_version":"0.13.0","repository_url":"https://github.com/pocke/rbs_rails"},{"name":"json-schema","old_version":"6.0.0","new_version":"6.2.0","repository_url":"https://github.com/voxpupuli/json-schema"},{"name":"webmock","old_version":"3.25.1","new_version":"3.26.2","repository_url":"https://github.com/bblimke/webmock"},{"name":"undercover","old_version":"0.8.0","new_version":"0.8.4","repository_url":"https://github.com/grodowski/undercover"},{"name":"capybara-playwright-driver","old_version":"0.5.7","new_version":"0.5.9","repository_url":"https://github.com/YusukeIwaki/capybara-playwright-driver"},{"name":"listen","old_version":"3.9.0","new_version":"3.10.0","repository_url":"https://github.com/guard/listen"},{"name":"web-console","old_version":"4.2.1","new_version":"4.3.0","repository_url":"https://github.com/rails/web-console"},{"name":"bundler-audit","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/rubysec/bundler-audit"},{"name":"lookbook","old_version":"2.3.13","new_version":"2.3.14","repository_url":"https://github.com/lookbook-hq/lookbook"},{"name":"oj","old_version":"3.16.11","new_version":"3.16.16","repository_url":"https://github.com/ohler55/oj"},{"name":"rack-attack","old_version":"6.7.0","new_version":"6.8.0","repository_url":"https://github.com/rack/rack-attack"},{"name":"aws-sdk-s3","old_version":"1.208.0","new_version":"1.218.0","repository_url":"https://github.com/aws/aws-sdk-ruby"},{"name":"opentelemetry-sdk","old_version":"1.8.1","new_version":"1.10.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby"},{"name":"opentelemetry-exporter-otlp","old_version":"0.30.0","new_version":"0.32.0","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby"},{"name":"opentelemetry-instrumentation-active_job","old_version":"0.8.0","new_version":"0.10.1","repository_url":"https://github.com/open-telemetry/opentelemetry-ruby-contrib"},{"name":"maintenance_tasks","old_version":"2.12.0","new_version":"2.14.0","repository_url":"https://github.com/Shopify/maintenance_tasks"},{"name":"stackprof","old_version":"0.2.27","new_version":"0.2.28","repository_url":"https://github.com/tmm1/stackprof"},{"name":"concurrent-ruby","old_version":"1.3.5","new_version":"1.3.6","repository_url":"https://github.com/ruby-concurrency/concurrent-ruby"},{"name":"avo","old_version":"3.30.3","new_version":"3.30.4","repository_url":"https://github.com/avo-hq/avo"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the minor-and-patch group with 48 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-actionmailer-ses](https://github.com/aws/aws-actionmailer-ses-ruby) | `1.0.0` | `1.1.0` |\n| [dotenv-rails](https://github.com/bkeepers/dotenv) | `3.1.8` | `3.2.0` |\n| [kt-paperclip](https://github.com/kreeti/kt-paperclip) | `7.2.2` | `7.3.0` |\n| [omniauth](https://github.com/omniauth/omniauth) | `2.1.3` | `2.1.4` |\n| [omniauth-google-oauth2](https://github.com/zquestz/omniauth-google-oauth2) | `1.2.1` | `1.2.2` |\n| [view_component](https://github.com/viewcomponent/view_component) | `4.0.2` | `4.6.0` |\n| [rails](https://github.com/rails/rails) | `8.0.2.1` | `8.1.3` |\n| [terser](https://github.com/ahorek/terser-ruby) | `1.2.6` | `1.2.7` |\n| [jquery-rails](https://github.com/rails/jquery-rails) | `4.6.0` | `4.6.1` |\n| [sidekiq](https://github.com/sidekiq/sidekiq) | `8.0.7` | `8.1.2` |\n| [geocoder](https://github.com/alexreisner/geocoder) | `1.8.5` | `1.8.6` |\n| [pundit](https://github.com/varvet/pundit) | `2.5.0` | `2.5.2` |\n| [ahoy_matey](https://github.com/ankane/ahoy) | `5.4.0` | `5.4.2` |\n| [i18n-js](https://github.com/fnando/i18n-js) | `4.2.3` | `4.2.4` |\n| [pg](https://github.com/ged/ruby-pg) | `1.6.1` | `1.6.3` |\n| [bootsnap](https://github.com/rails/bootsnap) | `1.18.6` | `1.23.0` |\n| [rexml](https://github.com/ruby/rexml) | `3.4.2` | `3.4.4` |\n| [flipper-redis](https://github.com/flippercloud/flipper) | `1.3.6` | `1.4.1` |\n| [friendly_id](https://github.com/norman/friendly_id) | `5.5.1` | `5.6.0` |\n| [rails-i18n](https://github.com/svenfuchs/rails-i18n) | `8.0.2` | `8.1.0` |\n| [recaptcha](https://github.com/ambethia/recaptcha) | `5.20.1` | `5.21.1` |\n| [strong_migrations](https://github.com/ankane/strong_migrations) | `2.5.0` | `2.5.2` |\n| [debug](https://github.com/ruby/debug) | `1.11.0` | `1.11.1` |\n| [factory_bot_rails](https://github.com/thoughtbot/factory_bot_rails) | `6.5.0` | `6.5.1` |\n| [faker](https://github.com/faker-ruby/faker) | `3.5.2` | `3.6.1` |\n| [rspec-rails](https://github.com/rspec/rspec-rails) | `8.0.2` | `8.0.4` |\n| [rubocop-performance](https://github.com/rubocop/rubocop-performance) | `1.25.0` | `1.26.1` |\n| [rubocop-rails](https://github.com/rubocop/rubocop-rails) | `2.33.3` | `2.34.3` |\n| [rubocop-rspec](https://github.com/rubocop/rubocop-rspec) | `3.6.0` | `3.9.0` |\n| [rbs_rails](https://github.com/pocke/rbs_rails) | `0.12.1` | `0.13.0` |\n| [json-schema](https://github.com/voxpupuli/json-schema) | `6.0.0` | `6.2.0` |\n| [webmock](https://github.com/bblimke/webmock) | `3.25.1` | `3.26.2` |\n| [undercover](https://github.com/grodowski/undercover) | `0.8.0` | `0.8.4` |\n| [capybara-playwright-driver](https://github.com/YusukeIwaki/capybara-playwright-driver) | `0.5.7` | `0.5.9` |\n| [listen](https://github.com/guard/listen) | `3.9.0` | `3.10.0` |\n| [web-console](https://github.com/rails/web-console) | `4.2.1` | `4.3.0` |\n| [bundler-audit](https://github.com/rubysec/bundler-audit) | `0.9.2` | `0.9.3` |\n| [lookbook](https://github.com/lookbook-hq/lookbook) | `2.3.13` | `2.3.14` |\n| [oj](https://github.com/ohler55/oj) | `3.16.11` | `3.16.16` |\n| [rack-attack](https://github.com/rack/rack-attack) | `6.7.0` | `6.8.0` |\n| [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) | `1.208.0` | `1.218.0` |\n| [opentelemetry-sdk](https://github.com/open-telemetry/opentelemetry-ruby) | `1.8.1` | `1.10.0` |\n| [opentelemetry-exporter-otlp](https://github.com/open-telemetry/opentelemetry-ruby) | `0.30.0` | `0.32.0` |\n| [opentelemetry-instrumentation-active_job](https://github.com/open-telemetry/opentelemetry-ruby-contrib) | `0.8.0` | `0.10.1` |\n| [maintenance_tasks](https://github.com/Shopify/maintenance_tasks) | `2.12.0` | `2.14.0` |\n| [stackprof](https://github.com/tmm1/stackprof) | `0.2.27` | `0.2.28` |\n| [concurrent-ruby](https://github.com/ruby-concurrency/concurrent-ruby) | `1.3.5` | `1.3.6` |\n| [avo](https://github.com/avo-hq/avo) | `3.30.3` | `3.30.4` |\n\n\nUpdates `aws-actionmailer-ses` from 1.0.0 to 1.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/releases\"\u003eaws-actionmailer-ses's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v1.1.0 - 2026-03-31\u003c/h2\u003e\n\u003cp\u003eTag release v1.1.0\u003c/p\u003e\n\u003cp\u003eReferences: \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/14\"\u003e#14\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/6\"\u003e#6\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/7\"\u003e#7\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/9\"\u003e#9\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFeature - Support injecting a preconstructed client via \u003ccode\u003e:ses_client\u003c/code\u003e and \u003ccode\u003e:sesv2_client\u003c/code\u003e options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/blob/main/CHANGELOG.md\"\u003eaws-actionmailer-ses's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.1.0 (2026-03-31)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFeature - Support injecting a preconstructed client via \u003ccode\u003e:ses_client\u003c/code\u003e and \u003ccode\u003e:sesv2_client\u003c/code\u003e options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/87d57bae1d2da68729c639da957c89b4f14eef02\"\u003e\u003ccode\u003e87d57ba\u003c/code\u003e\u003c/a\u003e Bumped version to v1.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/55de5a801bc2f819acda6521fa7efab8e72829bb\"\u003e\u003ccode\u003e55de5a8\u003c/code\u003e\u003c/a\u003e Allow precreated SESv2 client (issue \u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/7\"\u003e#7\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/14\"\u003e#14\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/0e7a21034d43615e7765bb96c84f09f43fe80e1f\"\u003e\u003ccode\u003e0e7a210\u003c/code\u003e\u003c/a\u003e Scope down GitHub token permissions for ci.yml (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/9\"\u003e#9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/c2b91df4f58ed7da035c953ecfd4f9847da46ebb\"\u003e\u003ccode\u003ec2b91df\u003c/code\u003e\u003c/a\u003e Update CI to include 3.4 (\u003ca href=\"https://redirect.github.com/aws/aws-actionmailer-ses-ruby/issues/6\"\u003e#6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/aab2974887db3c4d525f9e18c3f1ae7c6513d230\"\u003e\u003ccode\u003eaab2974\u003c/code\u003e\u003c/a\u003e Update README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/commit/ce6af36916d5ab9224bf193690d98f539585f208\"\u003e\u003ccode\u003ece6af36\u003c/code\u003e\u003c/a\u003e Added next release section to the changelog. [ci skip]\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-actionmailer-ses-ruby/compare/v1.0.0...v1.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv-rails` from 3.1.8 to 3.2.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bkeepers/dotenv/releases\"\u003edotenv-rails's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBoost app startup time by removing to_sentence usage by \u003ca href=\"https://github.com/ThomasCrambert\"\u003e\u003ccode\u003e@​ThomasCrambert\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/534\"\u003ebkeepers/dotenv#534\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHandle parentheses in variables in commands by \u003ca href=\"https://github.com/i7an\"\u003e\u003ccode\u003e@​i7an\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/540\"\u003ebkeepers/dotenv#540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eallow warning when a env var was not overwritten by \u003ca href=\"https://github.com/grosser\"\u003e\u003ccode\u003e@​grosser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/531\"\u003ebkeepers/dotenv#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix a few small issues by \u003ca href=\"https://github.com/grosser\"\u003e\u003ccode\u003e@​grosser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/532\"\u003ebkeepers/dotenv#532\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ThomasCrambert\"\u003e\u003ccode\u003e@​ThomasCrambert\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/534\"\u003ebkeepers/dotenv#534\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i7an\"\u003e\u003ccode\u003e@​i7an\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/pull/540\"\u003ebkeepers/dotenv#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\"\u003ehttps://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/34156bf400cd67387fa6ed9f146778f6a2f5f743\"\u003e\u003ccode\u003e34156bf\u003c/code\u003e\u003c/a\u003e Prepare for 3.2.0 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/ab478201bdb487bfebd9e89875fd4edcf19dc064\"\u003e\u003ccode\u003eab47820\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/531\"\u003e#531\u003c/a\u003e from grosser/grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/fae61202e432f39742e2592817cc7bb38f559852\"\u003e\u003ccode\u003efae6120\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/4f510f41073cabb9786e3a5ea57263933497e696\"\u003e\u003ccode\u003e4f510f4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/532\"\u003e#532\u003c/a\u003e from grosser/grosser/fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/959e1dac9d933a7ffe6a2ab17081f8235b7822a9\"\u003e\u003ccode\u003e959e1da\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/539\"\u003e#539\u003c/a\u003e from bkeepers/dependabot/github_actions/actions/check...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/041451e4ef7fd3a4ea604fcabef0cfb6fb5e79a3\"\u003e\u003ccode\u003e041451e\u003c/code\u003e\u003c/a\u003e Update spec message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/b300f262bdf1cfd6ac5215fd44baa771753702b9\"\u003e\u003ccode\u003eb300f26\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/5f4ca012b03c82343ad3f926e2fd281aa30a434b\"\u003e\u003ccode\u003e5f4ca01\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into grosser/warn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/209dca47e453f7288aac9f31330e67e3f0b83e78\"\u003e\u003ccode\u003e209dca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/bkeepers/dotenv/issues/540\"\u003e#540\u003c/a\u003e from i7an/handle-parentheses\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bkeepers/dotenv/commit/48c495683008c5dd1816a89329e59f8386324bb2\"\u003e\u003ccode\u003e48c4956\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into handle-parentheses\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bkeepers/dotenv/compare/v3.1.8...v3.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `kt-paperclip` from 7.2.2 to 7.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kreeti/kt-paperclip/releases\"\u003ekt-paperclip's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v7.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix BOM for gd locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/158\"\u003e#158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport versions of aws-sdk-s3 \u0026gt;= 1.197 by conditionally using \u003ccode\u003eAws::S3::TransferManager\u003c/code\u003e if available (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/155\"\u003e#155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix frozen string literal warning in geometry.rb (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFeature - add option to return attachment attributes on destroy (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/91\"\u003e#91\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRuby 3.1 - Fix loading of Fog (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/135\"\u003e#135\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/139\"\u003e#139\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFrench Locale (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/134\"\u003e#134\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oz-tal\"\u003e\u003ccode\u003e@​oz-tal\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/134\"\u003ekreeti/kt-paperclip#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zz9pzza\"\u003e\u003ccode\u003e@​zz9pzza\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/135\"\u003ekreeti/kt-paperclip#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unijewski\"\u003e\u003ccode\u003e@​unijewski\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/91\"\u003ekreeti/kt-paperclip#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lorennorman\"\u003e\u003ccode\u003e@​lorennorman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/146\"\u003ekreeti/kt-paperclip#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cgunther\"\u003e\u003ccode\u003e@​cgunther\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/151\"\u003ekreeti/kt-paperclip#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jukra\"\u003e\u003ccode\u003e@​jukra\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/pull/155\"\u003ekreeti/kt-paperclip#155\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\"\u003ehttps://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/818f236aa6f2323bd0055bea664b33187d926377\"\u003e\u003ccode\u003e818f236\u003c/code\u003e\u003c/a\u003e Deperecate NEWS to OLD-NEWS, see release notes for correct and accurate list ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/a38ed66b5d08210a4326b0d78e2116d0946fa3c2\"\u003e\u003ccode\u003ea38ed66\u003c/code\u003e\u003c/a\u003e prepare for new release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/8820cb221210bf04ca2de278dab594adfa46efe5\"\u003e\u003ccode\u003e8820cb2\u003c/code\u003e\u003c/a\u003e [Fix \u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/154\"\u003e#154\u003c/a\u003e] remove BOM from gd locale\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/cd5c4496d12894eafa218cb631c592b67c9c10a2\"\u003e\u003ccode\u003ecd5c449\u003c/code\u003e\u003c/a\u003e Fix S3 TransferManager to use configured client\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/f017c401218da5a1e106ed3dd964b51d601bac5b\"\u003e\u003ccode\u003ef017c40\u003c/code\u003e\u003c/a\u003e Make usage of Aws::S3::TransferManager conditional based on availability\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/233b4756745c2610988796a0059408a50d322b92\"\u003e\u003ccode\u003e233b475\u003c/code\u003e\u003c/a\u003e Support aws-sdk-s3 \u0026gt;= 1.196.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/e20e848c80ce16f18dae2162d5e00be0d9b51421\"\u003e\u003ccode\u003ee20e848\u003c/code\u003e\u003c/a\u003e Fix the use of deprecated methods from \u003ccode\u003eaws-sdk-s3\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/5078ca1c33c8cb66865e6127152ac1e240b2bb0a\"\u003e\u003ccode\u003e5078ca1\u003c/code\u003e\u003c/a\u003e Fix frozen string literal warning in geometry.rb (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/153e7dbe462de4f7f3ef42c67f95390e98e6cba7\"\u003e\u003ccode\u003e153e7db\u003c/code\u003e\u003c/a\u003e fix frozen string literal deprecation warning (\u003ca href=\"https://redirect.github.com/kreeti/kt-paperclip/issues/146\"\u003e#146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kreeti/kt-paperclip/commit/83dc8d92e63e4c360bb9f45af1cf3b63d99bed54\"\u003e\u003ccode\u003e83dc8d9\u003c/code\u003e\u003c/a\u003e Update LICENSE\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kreeti/kt-paperclip/compare/v7.2.2...v7.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `omniauth` from 2.1.3 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/omniauth/omniauth/releases\"\u003eomniauth's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ruby 3.4 to CI by \u003ca href=\"https://github.com/tejasbubane\"\u003e\u003ccode\u003e@​tejasbubane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/omniauth/omniauth/pull/1142\"\u003eomniauth/omniauth#1142\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd after_request_phase callback hook by \u003ca href=\"https://github.com/gerardo-navarro\"\u003e\u003ccode\u003e@​gerardo-navarro\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/omniauth/omniauth/pull/1147\"\u003eomniauth/omniauth#1147\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\"\u003ehttps://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eYou may now configure an after_request_phase callback on your omniauth builder instance. This callback will be run after the request phase before returning the request result.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/20ac5e05a39d58d18aca6419599f7176208f985d\"\u003e\u003ccode\u003e20ac5e0\u003c/code\u003e\u003c/a\u003e 3.1.4 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/3a249afad83e4522bd4761404cbdc89fd56a1079\"\u003e\u003ccode\u003e3a249af\u003c/code\u003e\u003c/a\u003e Add after_request_phase callback hook (\u003ca href=\"https://redirect.github.com/omniauth/omniauth/issues/1147\"\u003e#1147\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/0bcfd5b25bf946422cd4d9c40c4f514121ac04d6\"\u003e\u003ccode\u003e0bcfd5b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/omniauth/omniauth/issues/1142\"\u003e#1142\u003c/a\u003e from tejasbubane/ruby-3.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/09ee92e658878f31ab51f29e02d41296cfe36111\"\u003e\u003ccode\u003e09ee92e\u003c/code\u003e\u003c/a\u003e include cgi in test group due to removal of cookie\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/abfde9072cef0e4d89463daf6185ac68520087f7\"\u003e\u003ccode\u003eabfde90\u003c/code\u003e\u003c/a\u003e add dependency on logger\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/omniauth/omniauth/commit/844548c8641d1a3b65c9062e67e073fa8bf39936\"\u003e\u003ccode\u003e844548c\u003c/code\u003e\u003c/a\u003e Add Ruby 3.4 to CI\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/omniauth/omniauth/compare/v2.1.3...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `omniauth-google-oauth2` from 1.2.1 to 1.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/releases\"\u003eomniauth-google-oauth2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.2.2\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRuby 4.0 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNothing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUnused \u003ccode\u003eIMAGE_SIZE_REGEXP\u003c/code\u003e constant.\u003c/li\u003e\n\u003cli\u003eDead \u003ccode\u003eskip_friends\u003c/code\u003e and \u003ccode\u003eskip_image_info\u003c/code\u003e options (Google+ was shut down in 2019).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplaced \u003ccode\u003eCGI.parse\u003c/code\u003e with \u003ccode\u003eURI.decode_www_form\u003c/code\u003e for Ruby 4.0 compatibility.\u003c/li\u003e\n\u003cli\u003eUpdated gemspec description to reference OmniAuth instead of OmniAuth 1.x.\u003c/li\u003e\n\u003cli\u003eModernized CI: bumped actions/checkout to v6, rake to 13.3, and rubocop to latest.\u003c/li\u003e\n\u003cli\u003eAdded edge case tests for \u003ccode\u003euid\u003c/code\u003e, \u003ccode\u003estrip_unnecessary_query_parameters\u003c/code\u003e, \u003ccode\u003everify_token\u003c/code\u003e, \u003ccode\u003everify_hd\u003c/code\u003e wildcard, and malformed JSON handling.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/blob/master/CHANGELOG.md\"\u003eomniauth-google-oauth2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.2.2 - 2026-02-23\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRuby 4.0 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNothing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUnused \u003ccode\u003eIMAGE_SIZE_REGEXP\u003c/code\u003e constant.\u003c/li\u003e\n\u003cli\u003eDead \u003ccode\u003eskip_friends\u003c/code\u003e and \u003ccode\u003eskip_image_info\u003c/code\u003e options (Google+ was shut down in 2019).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplaced \u003ccode\u003eCGI.parse\u003c/code\u003e with \u003ccode\u003eURI.decode_www_form\u003c/code\u003e for Ruby 4.0 compatibility.\u003c/li\u003e\n\u003cli\u003eUpdated gemspec description to reference OmniAuth instead of OmniAuth 1.x.\u003c/li\u003e\n\u003cli\u003eModernized CI: bumped actions/checkout to v6, rake to 13.3, and rubocop to latest.\u003c/li\u003e\n\u003cli\u003eAdded edge case tests for \u003ccode\u003euid\u003c/code\u003e, \u003ccode\u003estrip_unnecessary_query_parameters\u003c/code\u003e, \u003ccode\u003everify_token\u003c/code\u003e, \u003ccode\u003everify_hd\u003c/code\u003e wildcard, and malformed JSON handling.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/5158faa94a620d8ec4d9ce400aabfef3a3844dd9\"\u003e\u003ccode\u003e5158faa\u003c/code\u003e\u003c/a\u003e Add release date to CHANGELOG.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/c5f46005e0207d2e436cf0db37c85170cca04da7\"\u003e\u003ccode\u003ec5f4600\u003c/code\u003e\u003c/a\u003e Update docs and examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/4c14af8e1e6dc2615da908c50e4b0b757972922e\"\u003e\u003ccode\u003e4c14af8\u003c/code\u003e\u003c/a\u003e Backfill missing tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/e66d0bbe6ad91f9f5a60056dae2ebf850373f249\"\u003e\u003ccode\u003ee66d0bb\u003c/code\u003e\u003c/a\u003e Clean up dead code, modernize CI, and prep 1.2.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/b902e8e7585e8e3610040d9c770f2d4e90b6f132\"\u003e\u003ccode\u003eb902e8e\u003c/code\u003e\u003c/a\u003e Modernize CI: bump rubocop, checkout action, and tooling defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/ac9a979db8ee097971d5d70c12142070c539d8ab\"\u003e\u003ccode\u003eac9a979\u003c/code\u003e\u003c/a\u003e Add Ruby 4.0 to CI (\u003ca href=\"https://redirect.github.com/zquestz/omniauth-google-oauth2/issues/474\"\u003e#474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/d3f1c912e438ccf6aba577c66772bf2e37373d73\"\u003e\u003ccode\u003ed3f1c91\u003c/code\u003e\u003c/a\u003e Add GitHub pages config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/253f023cdd8a5d5e05b3fed9aa00ae478a6c2997\"\u003e\u003ccode\u003e253f023\u003c/code\u003e\u003c/a\u003e Remove calendar scope on example app\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/baaf3b755ea1a02c9f811fd513b0fe90fdd2defb\"\u003e\u003ccode\u003ebaaf3b7\u003c/code\u003e\u003c/a\u003e chore(doc): update JavaScript example in README (\u003ca href=\"https://redirect.github.com/zquestz/omniauth-google-oauth2/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/commit/dcea9d208416b53af0956d95ce54daa424d36490\"\u003e\u003ccode\u003edcea9d2\u003c/code\u003e\u003c/a\u003e Add Ruby 3.3 and 3.4 to CI matrix\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/zquestz/omniauth-google-oauth2/compare/v1.2.1...v1.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `view_component` from 4.0.2 to 4.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/viewcomponent/view_component/releases\"\u003eview_component's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd \u003ccode\u003eview_identifier\u003c/code\u003e to the \u003ccode\u003erender.view_component\u003c/code\u003e instrumentation event payload, containing the path to the component's template file (e.g. \u003ccode\u003eapp/components/my_component.html.erb\u003c/code\u003e). For components using inline render methods, \u003ccode\u003eview_identifier\u003c/code\u003e will be \u003ccode\u003enil\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReplace deprecated \u003ccode\u003erequire_dependency\u003c/code\u003e with \u003ccode\u003erequire\u003c/code\u003e in preview loading.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReturn \u003ccode\u003ehtml_safe\u003c/code\u003e empty string from \u003ccode\u003erender_in\u003c/code\u003e when \u003ccode\u003erender?\u003c/code\u003e is false.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix initialization ordering issue causing missing asset errors in Sprockets.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eCameron Dutro\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix segfaults when Ruby coverage is enabled.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGeorge Holborn\u003c/em\u003e, \u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdd \u003ccode\u003eprotocol\u003c/code\u003e parameter to \u003ccode\u003ewith_request_url\u003c/code\u003e test helper to enable testing with HTTPS protocol.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix load order issues for 3rd-party template handlers.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eCameron Dutro\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix segfault when Ruby coverage is enabled with Rails 8.1 ERB templates.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGeorge Holborn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAutomatically merge dependabot PRs.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Ruby 4.0.0 in CI and dev.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix translation scope resolution in deeply nested component blocks (3+ levels). Translations called inside deeply nested slot blocks using \u003ccode\u003erenders_many\u003c/code\u003e/\u003ccode\u003erenders_one\u003c/code\u003e were incorrectly resolving to an intermediate component's scope instead of the partial's scope where the block was defined. The fix captures the virtual path at block definition time and restores it during block execution, ensuring translations always resolve relative to where the block was created regardless of nesting depth.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eNathaniel Watts\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllow \u003ccode\u003erender_inline\u003c/code\u003e with Nokogiri::HTML5 to parse more arbitrary content including bare table content otherwise illegal fragments like \u003ccode\u003e\u0026lt;td\u0026gt;\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ViewComponent/view_component/blob/main/docs/CHANGELOG.md\"\u003eview_component's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd \u003ccode\u003eview_identifier\u003c/code\u003e to the \u003ccode\u003erender.view_component\u003c/code\u003e instrumentation event payload, containing the path to the component's template file (e.g. \u003ccode\u003eapp/components/my_component.html.erb\u003c/code\u003e). For components using inline render methods, \u003ccode\u003eview_identifier\u003c/code\u003e will be \u003ccode\u003enil\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReplace deprecated \u003ccode\u003erequire_dependency\u003c/code\u003e with \u003ccode\u003erequire\u003c/code\u003e in preview loading.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReturn \u003ccode\u003ehtml_safe\u003c/code\u003e empty string from \u003ccode\u003erender_in\u003c/code\u003e when \u003ccode\u003erender?\u003c/code\u003e is false.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGitHub Copilot\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix initialization ordering issue causing missing asset errors in Sprockets.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eCameron Dutro\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix segfaults when Ruby coverage is enabled.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGeorge Holborn\u003c/em\u003e, \u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdd \u003ccode\u003eprotocol\u003c/code\u003e parameter to \u003ccode\u003ewith_request_url\u003c/code\u003e test helper to enable testing with HTTPS protocol.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix load order issues for 3rd-party template handlers.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eCameron Dutro\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix segfault when Ruby coverage is enabled with Rails 8.1 ERB templates.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eGeorge Holborn\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAutomatically merge dependabot PRs.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Ruby 4.0.0 in CI and dev.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJoel Hawksley\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.2.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/3e180995cc76298c94f9a691e641987c624d62b7\"\u003e\u003ccode\u003e3e18099\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2591\"\u003e#2591\u003c/a\u003e from ViewComponent/release-4-6-0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/09a54ed5203b0bb40411bf2dd5a4e519b2bffdab\"\u003e\u003ccode\u003e09a54ed\u003c/code\u003e\u003c/a\u003e gemfiles\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/e69555cf0a7dd12621dd7ceb7abfeec5023f9492\"\u003e\u003ccode\u003ee69555c\u003c/code\u003e\u003c/a\u003e lockfiles\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/52d2ffb17ab13aedbaa51be57bea78997f2b0ac4\"\u003e\u003ccode\u003e52d2ffb\u003c/code\u003e\u003c/a\u003e release 4.6.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/7b82b0267965993cb201de094e054c4b9000d59d\"\u003e\u003ccode\u003e7b82b02\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2590\"\u003e#2590\u003c/a\u003e from ViewComponent/dependabot/bundler/bundler-269952...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/4a216ecf50905b1da426f095258a23729b5b245c\"\u003e\u003ccode\u003e4a216ec\u003c/code\u003e\u003c/a\u003e Bump action_text-trix in the bundler group across 1 directory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/98ab326cb79ebb590fc487bd46667ddb3dafea2e\"\u003e\u003ccode\u003e98ab326\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2572\"\u003e#2572\u003c/a\u003e from ViewComponent/copilot/add-event-emission-for-vi...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/55c2cac1d9c676249eba73f6b5a9cc73204ddbf6\"\u003e\u003ccode\u003e55c2cac\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into copilot/add-event-emission-for-view-file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/192ccfba66c373e738a02fc5939c6df6cd3e45e8\"\u003e\u003ccode\u003e192ccfb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/viewcomponent/view_component/issues/2589\"\u003e#2589\u003c/a\u003e from ViewComponent/copilot/remove-require-dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ViewComponent/view_component/commit/6ac4927ce572a59136c05d4b0fda02f9afb7cd19\"\u003e\u003ccode\u003e6ac4927\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into copilot/remove-require-dependency\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/viewcomponent/view_component/compare/v4.0.2...v4.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rails` from 8.0.2.1 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003erails's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/e91694b1f0e176eb01bfcc480a008bffc70f7602\"\u003e\u003ccode\u003ee91694b\u003c/code\u003e\u003c/a\u003e Update CHANGELOG (8.1 only)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/6752711c8c31d79ba50d13af6a6698a3b85415e0\"\u003e\u003ccode\u003e6752711\u003c/code\u003e\u003c/a\u003e Fix XSS in debug exceptions copy-to-clipboard\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63f5ad83edaa0b976f82d46988d745426aa4a42d\"\u003e\u003ccode\u003e63f5ad8\u003c/code\u003e\u003c/a\u003e Skip blank attribute names in Action View tag helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8c9676b803820110548cdb7523800db43bc6874c\"\u003e\u003ccode\u003e8c9676b\u003c/code\u003e\u003c/a\u003e Prevent glob injection in ActiveStorage DiskService#delete_prefixed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/9b06fbc0f504b8afe333f33d19548f3b85fbe655\"\u003e\u003ccode\u003e9b06fbc\u003c/code\u003e\u003c/a\u003e Prevent path traversal in ActiveStorage DiskService\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ec1a0e215efd27a3b3911aae6df978a80f456a49\"\u003e\u003ccode\u003eec1a0e2\u003c/code\u003e\u003c/a\u003e Improve performance of NumberToDelimitedConverter\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v8.0.2.1...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `terser` from 1.2.6 to 1.2.7\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ahorek/terser-ruby/blob/master/CHANGELOG.md\"\u003eterser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.2.7 (23 March 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadded a new module option to enable minification of ES6 modules (default is false)\u003c/li\u003e\n\u003cli\u003eupdate TerserJS to [5.46.1]\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/14243401aadac062e738fde86525f261c37b1782\"\u003e\u003ccode\u003e1424340\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ahorek/terser-ruby/issues/67\"\u003e#67\u003c/a\u003e from ahorek/terser5461\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/ae1669dba36b571932a25685765932103db89189\"\u003e\u003ccode\u003eae1669d\u003c/code\u003e\u003c/a\u003e terser 5.46.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/c8b1c3213847dfeb85e1769958ecf9753651e697\"\u003e\u003ccode\u003ec8b1c32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ahorek/terser-ruby/issues/64\"\u003e#64\u003c/a\u003e from ahorek/module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahorek/terser-ruby/commit/3a614841138d5c1dcf79d6362e22ad5b0a0b19f3\"\u003e\u003ccode\u003e3a61484\u003c/code\u003e\u003c/a\u003e add a module option\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ahorek/terser-ruby/compare/1.2.6...1.2.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jquery-rails` from 4.6.0 to 4.6.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md\"\u003ejquery-rails's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate jquery to 3.7.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/034296045427fa54ad095f392fccd9ff5708e110\"\u003e\u003ccode\u003e0342960\u003c/code\u003e\u003c/a\u003e Release v4.6.1 with jQuery v3.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/jquery-rails/commit/039b12e91c148d65789030308653545943db43a4\"\u003e\u003ccode\u003e039b12e\u003c/code\u003e\u003c/a\u003e Update jquery to v3.7.1 (\u003ca href=\"https://redirect.github.com/rails/jquery-rails/issues/305\"\u003e#305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rails/jquery-rails/compare/v4.6.0...v4.6.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sidekiq` from 8.0.7 to 8.1.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sidekiq/sidekiq/blob/main/Changes.md\"\u003esidekiq's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eInitial release for \u003ccode\u003ekiq\u003c/code\u003e, Sidekiq's official terminal UI:\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003ebundle exec kiq\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eUse REDIS_URL or REDIS_PROVIDER to point \u003ccode\u003ekiq\u003c/code\u003e to Redis.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eMutation during iteration in \u003ccode\u003eSortedSet#each\u003c/code\u003e caused it to miss half of the jobs \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6936\"\u003e#6936\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix edge case resulting in nil crash on /busy page \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6954\"\u003e#6954\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDEPRECATION\u003c/strong\u003e \u003ccode\u003erequire 'sidekiq/testing'\u003c/code\u003e and\n\u003ccode\u003erequire 'sidekiq/testing/inline'\u003c/code\u003e.\nAdd new \u003ccode\u003eSidekiq.testing!(mode)\u003c/code\u003e API \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6931\"\u003e#6931\u003c/a\u003e\nRequiring code should not enable process-wide changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003e# Old, implicit\nrequire \u0026quot;sidekiq/testing\u0026quot;\nrequire \u0026quot;sidekiq/testing/inline\u0026quot;\n# New, more explicit\nSidekiq.testing!(:fake)\nSidekiq.testing!(:inline)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eFix race condition with Stop button in UI \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6935\"\u003e#6935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix javascript error handler \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6893\"\u003e#6893\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eretry_for\u003c/code\u003e and \u003ccode\u003eretry\u003c/code\u003e are now mutually exclusive [#6878, Saidbek]\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eperform_inline\u003c/code\u003e now enforces \u003ccode\u003estrict_args!\u003c/code\u003e [#6718, Saidbek]\u003c/li\u003e\n\u003cli\u003eIntegrate Herb linting for ERB templates [#6760, Saidbek]\u003c/li\u003e\n\u003cli\u003eRemove CSRF code, use \u003ccode\u003eSec-Fetch-Site\u003c/code\u003e header [#6874, deve1212]\u003c/li\u003e\n\u003cli\u003eAllow custom Web UI \u003ccode\u003eassets_path\u003c/code\u003e for CDN purposes [#6865, stanhu]\u003c/li\u003e\n\u003cli\u003eUpgrade to connection_pool 3.0\u003c/li\u003e\n\u003cli\u003eAllow idle connection reaping after N seconds.\nYou can activate this \u003cstrong\u003ebeta\u003c/strong\u003e feature like below.\nFeedback requested: is this feature stable and useful for you in production?\nThis feature may or may not be enabled by default in Sidekiq 9.0.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eSidekiq.configure_server do |cfg|\n  cfg.reap_idle_redis_connections(60)\nend\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003e8.0.10\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/38e62d159560359ac038c2929a431307bb0e0654\"\u003e\u003ccode\u003e38e62d1\u003c/code\u003e\u003c/a\u003e Changes, release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/5079304b2856a78bb5d9b1433f1762cd46215bb2\"\u003e\u003ccode\u003e5079304\u003c/code\u003e\u003c/a\u003e Fixes zh-TW.LanguageName (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6964\"\u003e#6964\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/ce6a5f7524c36c95434bbfb923a9cf9dd5737ed2\"\u003e\u003ccode\u003ece6a5f7\u003c/code\u003e\u003c/a\u003e restructure gemfile, support :tui group for bundler\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/901529114f14c04ac3e831a814c6ed6c207f8ba2\"\u003e\u003ccode\u003e9015291\u003c/code\u003e\u003c/a\u003e verify url hacking doesnt crash, \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6955\"\u003e#6955\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/7c411b9f36365ee20e6a8fc107e3999ec9040810\"\u003e\u003ccode\u003e7c411b9\u003c/code\u003e\u003c/a\u003e fix nil on busy page, resolves \u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6954\"\u003e#6954\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/91218466303f61d5c07fef2900b7bc81bb9e54aa\"\u003e\u003ccode\u003e9121846\u003c/code\u003e\u003c/a\u003e Reduce default batch size when enqueuing scheduled jobs via \u003ccode\u003epush_bulk\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sidekiq/sidekiq/issues/6953\"\u003e#6953\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/4d84d013e5f31daf9e79f6bcb43bbcc2fef61efa\"\u003e\u003ccode\u003e4d84d01\u003c/code\u003e\u003c/a\u003e gemfile cleanup\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/4da811f8310ff3b0a2cacca0b4acd0a57beeb962\"\u003e\u003ccode\u003e4da811f\u003c/code\u003e\u003c/a\u003e fix ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/dbe63ff5692efc5ac4933ffd3b914e7c3acf3bf1\"\u003e\u003ccode\u003edbe63ff\u003c/code\u003e\u003c/a\u003e upgrade herb, fmt [ciskip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidekiq/sidekiq/commit/33a904426149a473a0078cff12a34c6996c26810\"\u003e\u003ccode\u003e33a9044\u003c/code\u003e\u003c/a\u003e simplify refresh\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sidekiq/sidekiq/compare/v8.0.7...v8.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `geocoder` from 1.8.5 to 1.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alexreisner/geocoder/blob/master/CHANGELOG.md\"\u003egeocoder's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.8.6 (2025 Sep 21)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for IPInfo Lite lookup (thanks github.com/iltempo).\u003c/li\u003e\n\u003cli\u003eVarious minor fixes and improvements.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/d3515db46c5785db8cd48dbf94af123a2c99b8a9\"\u003e\u003ccode\u003ed3515db\u003c/code\u003e\u003c/a\u003e Prepare for release of gem version 1.8.6.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/737d16f277f81aabe73e2dfe466e2ba84fef188a\"\u003e\u003ccode\u003e737d16f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1694\"\u003e#1694\u003c/a\u003e from Intrepidd/update-data-gouv-fr-domain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/4b50c085eea4de4f453eab2e8dc6faf7b3824420\"\u003e\u003ccode\u003e4b50c08\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1695\"\u003e#1695\u003c/a\u003e from cprodhomme/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/31545ee756f1230a063e86458b3dadbac9b7e7b4\"\u003e\u003ccode\u003e31545ee\u003c/code\u003e\u003c/a\u003e Update README_API_GUIDE.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/3a90b5aa6c708945cf181f16a182ca232f668c4d\"\u003e\u003ccode\u003e3a90b5a\u003c/code\u003e\u003c/a\u003e Update BAN domain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/b2c0aa5526f90209883e3ca64b73d9559d21f729\"\u003e\u003ccode\u003eb2c0aa5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1691\"\u003e#1691\u003c/a\u003e from TheRusskiy/radius-column-arel\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/cd58cab7fd167d641927fe4a083963fcf5cd08df\"\u003e\u003ccode\u003ecd58cab\u003c/code\u003e\u003c/a\u003e add \u0026quot;arel\u0026quot; to near_test spec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/63ca4702ccffe776b146c28d289f7449d25946ee\"\u003e\u003ccode\u003e63ca470\u003c/code\u003e\u003c/a\u003e radius column can be an instance of Arel.sql\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/eaf85fe4de045c2ad3e035f560d6755e82646bee\"\u003e\u003ccode\u003eeaf85fe\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alexreisner/geocoder/issues/1688\"\u003e#1688\u003c/a\u003e from skillstopractice/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexreisner/geocoder/commit/00369bb35a29a86f54e6fea516ecf9842e5f855f\"\u003e\u003ccode\u003e00369bb\u003c/code\u003e\u003c/a\u003e Update tests to use data['place_name'] for Mapbox\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexreisner/geocoder/compare/v1.8.5...v1.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `pundit` from 2.5.0 to 2.5.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/varvet/pundit/blob/main/CHANGELOG.md\"\u003epundit's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.5.2 (2025-09-24)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003econfig/rubocop-rspec.yml\u003c/code\u003e back from accidentally being excluded \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/866\"\u003e#866\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.5.1 (2025-09-12)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRequiring only \u003ccode\u003epundit/rspec\u003c/code\u003e no longer raises an error in Active Support \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/857\"\u003e#857\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/2d665d67a26f794987df926e49676948fe115289\"\u003e\u003ccode\u003e2d665d6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/867\"\u003e#867\u003c/a\u003e from varvet/kbs/release-v2.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/7ff48a83790aef27bd89fa4da6a0a238599bca2d\"\u003e\u003ccode\u003e7ff48a8\u003c/code\u003e\u003c/a\u003e Bump to v2.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/674abac197c7ecc000fd25a4542344d38c998535\"\u003e\u003ccode\u003e674abac\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/866\"\u003e#866\u003c/a\u003e from varvet/kbs/add-rubocop-back\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/923eebf39ccd6f8095a5c4270953e7a19d6d16a6\"\u003e\u003ccode\u003e923eebf\u003c/code\u003e\u003c/a\u003e Point changelog to PR\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/47668502881e3abed7dd004ca19fa11d66b23b6f\"\u003e\u003ccode\u003e4766850\u003c/code\u003e\u003c/a\u003e Add rubocop config file back to gem release files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/27a840bedadf0ef3d66f1857edd966c2e01cc18e\"\u003e\u003ccode\u003e27a840b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/863\"\u003e#863\u003c/a\u003e from varvet/kbs/fix-build-pipeline\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/381b202dd2e11c5eb0ea1134d29f85331a01d643\"\u003e\u003ccode\u003e381b202\u003c/code\u003e\u003c/a\u003e +3.4 -3.1 (EOL)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/4bb6a67819572bd9431d30048fbab4c9685cfbf2\"\u003e\u003ccode\u003e4bb6a67\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/varvet/pundit/issues/862\"\u003e#862\u003c/a\u003e from varvet/kbs/fix-build-pipeline\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/6ceca0d2ab84d2240e6422e7b14d208ad10e3304\"\u003e\u003ccode\u003e6ceca0d\u003c/code\u003e\u003c/a\u003e Attempt code quality upload to qlty.sh instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/varvet/pundit/commit/82d918a4c4c4ab393f662a32e94028d6b086285d\"\u003e\u003ccode\u003e82d918a\u003c/code\u003e\u003c/a\u003e Bump to v2.5.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/varvet/pundit/compare/v2.5.0...v2.5.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ahoy_matey` from 5.4.0 to 5.4.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ankane/ahoy/blob/master/CHANGELOG.md\"\u003eahoy_matey's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.4.2 (2026-03-31)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed cookie deletion with \u003ccode\u003ecookie_domain\u003c/code\u003e and \u003ccode\u003ecookie_options\u003c/code\u003e options\u003c/li\u003e\n\u003cli\u003eUpdated Ahoy.js to 0.4.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.4.1 (2025-09-30)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed deprecation warning with Rack 3.1+\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/eed4fdad924261f9f57b87032e760a06fd4dcd05\"\u003e\u003ccode\u003eeed4fda\u003c/code\u003e\u003c/a\u003e Version bump to 5.4.2 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/f73c04e68fe8b884140cd659acee170224b19ec3\"\u003e\u003ccode\u003ef73c04e\u003c/code\u003e\u003c/a\u003e Updated changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/7c50688aa1e4d56545be421a9427c36c51476383\"\u003e\u003ccode\u003e7c50688\u003c/code\u003e\u003c/a\u003e Fixed cookie deletion with path option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/5a801f44d8bd5e1ab6f8e9f8923f8ef39eaa6e75\"\u003e\u003ccode\u003e5a801f4\u003c/code\u003e\u003c/a\u003e Fixed cookie deletion with cookie_domain option - fixes \u003ca href=\"https://redirect.github.com/ankane/ahoy/issues/581\"\u003e#581\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/4dcd2ec48ffc8c1c2a4fbdcd9eeb6c616626b187\"\u003e\u003ccode\u003e4dcd2ec\u003c/code\u003e\u003c/a\u003e Updated Ahoy.js to 0.4.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/7d9d62d5411131d807d123a69d7e4abb2efe3eaf\"\u003e\u003ccode\u003e7d9d62d\u003c/code\u003e\u003c/a\u003e Added cgi to gemspec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/cf3c1f67ef6924b67c39e416e8b0c5fa8f2867ef\"\u003e\u003ccode\u003ecf3c1f6\u003c/code\u003e\u003c/a\u003e Removed dev dependency on minitest-mock\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/defd0ef1de4a908fd0627df9ff622f971a0d5c5a\"\u003e\u003ccode\u003edefd0ef\u003c/code\u003e\u003c/a\u003e Test with Ruby 4.0 on CI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/0e41a80741fd31e415c52d9c185ae3e729f0edf2\"\u003e\u003ccode\u003e0e41a80\u003c/code\u003e\u003c/a\u003e Updated Gemfile [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ankane/ahoy/commit/e4a38b1690a31b4a6c5a34faa8803bd6e842dd90\"\u003e\u003ccode\u003ee4a38b1\u003c/code\u003e\u003c/a\u003e Updated tests for minitest 6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ankane/ahoy/compare/v5.4.0...v5.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `i18n-js` from 4.2.3 to 4.2.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fnando/i18n-js/blob/main/CHANGELOG.md\"\u003ei18n-js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/f8fb0dc0b01e7e639a6eb5dd875adbaa78858d8f\"\u003e\u003ccode\u003ef8fb0dc\u003c/code\u003e\u003c/a\u003e Bump up version (4.2.4).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/2cbea21df1ac16685a4e974716296853eccc0d49\"\u003e\u003ccode\u003e2cbea21\u003c/code\u003e\u003c/a\u003e Remove benchmark gem (\u003ca href=\"https://redirect.github.com/fnando/i18n-js/issues/737\"\u003e#737\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/9f99172d197b586dab34f4cf6a08a1df9703222f\"\u003e\u003ccode\u003e9f99172\u003c/code\u003e\u003c/a\u003e Update matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/9096c6e63bbbc24900bb10cfd0d42b6a89470c1c\"\u003e\u003ccode\u003e9096c6e\u003c/code\u003e\u003c/a\u003e Fix rubocop warnings.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/237b69b34f73873c2a3c753c45b208e670d15a31\"\u003e\u003ccode\u003e237b69b\u003c/code\u003e\u003c/a\u003e Update --quiet param description (\u003ca href=\"https://redirect.github.com/fnando/i18n-js/issues/730\"\u003e#730\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/1f3305ffa531614de22070ec3a0acbb592902636\"\u003e\u003ccode\u003e1f3305f\u003c/code\u003e\u003c/a\u003e Update action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/674cb0781bdba259e7a25fcd2df6f8dd21dc5276\"\u003e\u003ccode\u003e674cb07\u003c/code\u003e\u003c/a\u003e Fix rubocop warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/877e6f1de96126021cce39f802377ffeead79ff4\"\u003e\u003ccode\u003e877e6f1\u003c/code\u003e\u003c/a\u003e Update actions.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/7e27159f535643bc3080dce132a5ae953c4034ea\"\u003e\u003ccode\u003e7e27159\u003c/code\u003e\u003c/a\u003e Require ruby 3.2+.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fnando/i18n-js/commit/58c32fdc576a499eb2433bd9d633d537f8a696d8\"\u003e\u003ccode\u003e58c32fd\u003c/code\u003e\u003c/a\u003e Disable rubocop rule.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fnando/i18n-js/compare/v4.2.3...v4.2.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `pg` from 1.6.1 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ged/ruby-pg/blob/master/CHANGELOG.md\"\u003epg's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.3 [2025-12-29] Lars Kanis \u003ca href=\"mailto:lars@greiz-reinsdorf.de\"\u003elars@greiz-reinsdorf.de\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003eAdded:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd binary gems for ruby-4.0, now providing ruby-3.0 to 4.0. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/682\"\u003e#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate fat binary gem to OpenSSL-3.6.0 and PostgreSQL-18.1.\u003c/li\u003e\n\u003cli\u003eImprove documentation of PG::Result and README. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/676\"\u003e#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate errorcodes to PostgreSQL-18.\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003erb_hash_new_capa\u003c/code\u003e on Ruby-3.2+ . \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/674\"\u003e#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeny any server communication on a frozen PG::Connection . \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/677\"\u003e#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix possible race condition in PG::Result in Ractor context. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/674\"\u003e#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop binary gem support for platform \u003ccode\u003ex86-mingw32\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/682\"\u003e#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop binary gems for ruby-2.7.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.2 [2025-09-02] Lars Kanis \u003ca href=\"mailto:lars@greiz-reinsdorf.de\"\u003elars@greiz-reinsdorf.de\u003c/a\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove several absolute paths from native binaries which pointed to build directories. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/668\"\u003e#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix bad fallback path to \u003ccode\u003epg_service.conf\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/666\"\u003e#666\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003erbpg_\u003c/code\u003e prefix for \u003ccode\u003ebase64_*\u003c/code\u003e functions to avoid name clashes with functions provided by other libraries like Heimdal on Macos. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/667\"\u003e#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRaise a more descriptive error message in case of \u003ccode\u003epg_ext\u003c/code\u003e LoadError. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/664\"\u003e#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFreeze some constants to make them available in a Ractor context. \u003ca href=\"https://redirect.github.com/ged/ruby-pg/pull/660\"\u003e#660\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSeveral documentation improvements.\u003c/li\u003e\n\u003cli\u003eUpdate native binary gems to OpenSSL-3.5.2, krb5-1.22.1 and PostgreSQL-17.6.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/d4539c25dcc89d47088e1423f8d1915c041920f5\"\u003e\u003ccode\u003ed4539c2\u003c/code\u003e\u003c/a\u003e Bump VERSION to pg-1.6.3 and add release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/720900dbb9d16aa855793146f15c3772e14f627a\"\u003e\u003ccode\u003e720900d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ged/ruby-pg/issues/682\"\u003e#682\u003c/a\u003e from larskanis/ruby-4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/f605b5937093884089109c8baa5fe268fc513eaf\"\u003e\u003ccode\u003ef605b59\u003c/code\u003e\u003c/a\u003e Remove x86-mingw32 from binary builds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/5c690006ba158da70d73d939a233cf75ecdd30ef\"\u003e\u003ccode\u003e5c69000\u003c/code\u003e\u003c/a\u003e Update to ruby-4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/2acaf3d0f76334e056229efe260e1f558a8c6b42\"\u003e\u003ccode\u003e2acaf3d\u003c/code\u003e\u003c/a\u003e CI: workaround missing ruby-4.0 on Window\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/b500ded81127963603e1f724e82bed649c9ca8a1\"\u003e\u003ccode\u003eb500ded\u003c/code\u003e\u003c/a\u003e fix comment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/bc3f2f8b1110e9bcb225d65554e1a7fc842d0506\"\u003e\u003ccode\u003ebc3f2f8\u003c/code\u003e\u003c/a\u003e CI: Macos-13 on Intel is deprecated\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/77667eb4313bd7b79356f402b0fa7fba409483b8\"\u003e\u003ccode\u003e77667eb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ged/ruby-pg/issues/678\"\u003e#678\u003c/a\u003e from larskanis/ci-update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/6e52ce504d05c5359d55f45d9580672103263b54\"\u003e\u003ccode\u003e6e52ce5\u003c/code\u003e\u003c/a\u003e CI: Update PostgreSQL on Macos\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ged/ruby-pg/commit/6d40f50e51a037022495fe6d98181435652464ff\"\u003e\u003ccode\u003e6d40f50\u003c/code\u003e\u003c/a\u003e CI: Print mkmf.log on failure on Macos\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ged/ruby-pg/compare/v1.6.1...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `meta-tags` from 2.22.1 to 2.23.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpumuk/meta-tags/releases\"\u003emeta-tags's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.23.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRefactor and harden GitHub Actions CI by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/343\"\u003ekpumuk/meta-tags#343\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eStabilize Steep toolchain by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/344\"\u003ekpumuk/meta-tags#344\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix packaged Rails RBS interfaces by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/345\"\u003ekpumuk/meta-tags#345\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/upload-artifact from 4.6.2 to 7.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/348\"\u003ekpumuk/meta-tags#348\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/download-artifact from 5.0.0 to 8.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/347\"\u003ekpumuk/meta-tags#347\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.2 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/346\"\u003ekpumuk/meta-tags#346\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefresh README SEO guidance by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/349\"\u003ekpumuk/meta-tags#349\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOptimize property tag matching by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/350\"\u003ekpumuk/meta-tags#350\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix YARD comment wording by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/351\"\u003ekpumuk/meta-tags#351\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd strict YARD linting by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/352\"\u003ekpumuk/meta-tags#352\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparing 2.23.0 release by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/353\"\u003ekpumuk/meta-tags#353\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/kpumuk/meta-tags/compare/v2.22.3...v2.23.0\"\u003ehttps://github.com/kpumuk/meta-tags/compare/v2.22.3...v2.23.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.22.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/339\"\u003ekpumuk/meta-tags#339\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not lock Rails version to allow early testing with newer versions by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/340\"\u003ekpumuk/meta-tags#340\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded Ruby 4.0 and Truffleruby to the build matrix by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/341\"\u003ekpumuk/meta-tags#341\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparing 2.22.3 release by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/342\"\u003ekpumuk/meta-tags#342\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/kpumuk/meta-tags/compare/v2.22.2...v2.22.3\"\u003ehttps://github.com/kpumuk/meta-tags/compare/v2.22.2...v2.22.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.22.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate rubocop-rspec requirement from ~\u0026gt; 3.0.1 to ~\u0026gt; 3.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/317\"\u003ekpumuk/meta-tags#317\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRails 8 will require Ruby 3.2.0 or newer. by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/318\"\u003ekpumuk/meta-tags#318\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate rubocop-rails requirement from ~\u0026gt; 2.26.0 to ~\u0026gt; 2.27.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/320\"\u003ekpumuk/meta-tags#320\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate rubocop-rspec requirement from ~\u0026gt; 3.1.0 to ~\u0026gt; 3.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/319\"\u003ekpumuk/meta-tags#319\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded Rails 8.0 to the build matrix, removed Rails 6.0, and locked Zeitwerk to 2.6 for Ruby versions before 3.2 by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/321\"\u003ekpumuk/meta-tags#321\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate rubocop-rspec requirement from ~\u0026gt; 3.2.0 to ~\u0026gt; 3.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/322\"\u003ekpumuk/meta-tags#322\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitched default Ruby on CI to 3.3, and added 3.4 by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/323\"\u003ekpumuk/meta-tags#323\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate rubocop-rspec requirement from ~\u0026gt; 3.3.0 to ~\u0026gt; 3.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/326\"\u003ekpumuk/meta-tags#326\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate rubocop-rails requirement from ~\u0026gt; 2.27.0 to ~\u0026gt; 2.28.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/324\"\u003ekpumuk/meta-tags#324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate steep requirement from ~\u0026gt; 1.9.3 to ~\u0026gt; 1.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/330\"\u003ekpumuk/meta-tags#330\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/333\"\u003ekpumuk/meta-tags#333\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Rails 8.1 support and update dependency upper bound to \u0026lt; 8.2 by \u003ca href=\"https://github.com/kataokatsuki\"\u003e\u003ccode\u003e@​kataokatsuki\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/337\"\u003ekpumuk/meta-tags#337\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparing release 2.22.2 by \u003ca href=\"https://github.com/kpumuk\"\u003e\u003ccode\u003e@​kpumuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/338\"\u003ekpumuk/meta-tags#338\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kataokatsuki\"\u003e\u003ccode\u003e@​kataokatsuki\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/337\"\u003ekpumuk/meta-tags#337\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/kpumuk/meta-tags/compare/v2.22.1...v2.22.2\"\u003ehttps://github.com/kpumuk/meta-tags/compare/v2.22.1...v2.22.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpumuk/meta-tags/blob/main/CHANGELOG.md\"\u003emeta-tags's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.23.0 (March 16, 2026) \u003ca href=\"https://github.com/kpumuk/meta-tags/compare/v2.22.3...v2.23.0\"\u003e☰\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003eBugfixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003etitle\u003c/code\u003e helper to always return a string, joining array titles with the configured separator (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/344\"\u003e344\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed packaged RBS interfaces for Rails helpers so \u003ccode\u003e_ActionViewBase\u003c/code\u003e and \u003ccode\u003e_ActionControllerBase\u003c/code\u003e resolve for gem consumers (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/345\"\u003e345\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eChanges:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRefreshed README and generated docs to describe modern SEO guidance more accurately, while keeping legacy metadata features documented as compatibility options (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/349\"\u003e349\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eOptimized property tag matching to improve metadata rendering performance and reduce allocations and memory use on the hot render path (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/350\"\u003e350\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.22.3 (January 7, 2026) \u003ca href=\"https://github.com/kpumuk/meta-tags/compare/v2.22.2...v2.22.3\"\u003e☰\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003eChanges:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpper limit for Ruby on Rails version is no longer enforced (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/340\"\u003ekpumuk/meta-tags#340\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded Ruby 4.0 the build matrix (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/341\"\u003ekpumuk/meta-tags#341\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.22.2 (October 25, 2025) \u003ca href=\"https://github.com/kpumuk/meta-tags/compare/v2.22.1...v2.22.2\"\u003e☰\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003eChanges:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdded Ruby on Rails 8.0 to the build matrix, removed Rails 6.0 (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/321\"\u003e321\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded support for Ruby on Rails 8.1 (\u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/pull/337\"\u003e337\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/e26101479ab9a70ecbe7408e5ffe6785e6656632\"\u003e\u003ccode\u003ee261014\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/issues/353\"\u003e#353\u003c/a\u003e from kpumuk/release-2.23.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/2e798ea44dca3d32fdee94af8f3c128aea3f37e4\"\u003e\u003ccode\u003e2e798ea\u003c/code\u003e\u003c/a\u003e Preparing 2.23.0 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/2b956c9eda6cb138036b2b5e9679c16d74bfcc0c\"\u003e\u003ccode\u003e2b956c9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/issues/352\"\u003e#352\u003c/a\u003e from kpumuk/yard-lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/8254a05c4306a23fd8f8047b4cb34f27e5bea305\"\u003e\u003ccode\u003e8254a05\u003c/code\u003e\u003c/a\u003e Limit yard-lint to Ruby 3.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/f099110f416a79aaa1b9a080a35bbf17522ff8fa\"\u003e\u003ccode\u003ef099110\u003c/code\u003e\u003c/a\u003e Add strict YARD linting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/f1cffa73dc548bbbb2a709f3ab510fe0a78f0a73\"\u003e\u003ccode\u003ef1cffa7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/issues/351\"\u003e#351\u003c/a\u003e from kpumuk/typos\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/70dadc6d5a3a224a662a1fde2b4045904ee74997\"\u003e\u003ccode\u003e70dadc6\u003c/code\u003e\u003c/a\u003e Fix YARD comment wording\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/df53bacf49909c6f5410c742f0f8b4325aa502d0\"\u003e\u003ccode\u003edf53bac\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/kpumuk/meta-tags/issues/350\"\u003e#350\u003c/a\u003e from kpumuk/prop-name-perf\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/6f2b429cf4c892e887541ff0d264eb961cdcf717\"\u003e\u003ccode\u003e6f2b429\u003c/code\u003e\u003c/a\u003e Add changelog entry for property tag optimization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpumuk/meta-tags/commit/998710df590892b611c4287245e6e6ea88ceec90\"\u003e\u003ccode\u003e998710d\u003c/code\u003e\u003c/a\u003e Optimize property tag fast path\u003c/li\u003e\n\u003cli\u003eAdditional c...\n\n_Description has been truncated_","html_url":"https://github.com/CircuitVerse/CircuitVerse/pull/7245","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/CircuitVerse%2FCircuitVerse/issues/7245","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7245/packages"}},{"old_version":"3.2.5","new_version":"3.4.2","update_type":"minor","path":null,"pr_created_at":"2026-04-02T19:37:09.000Z","version_change":"3.2.5 → 3.4.2","issue":{"uuid":"4196586484","node_id":"PR_kwDOISjhyM7Pp2TV","number":27,"state":"closed","title":"build(deps): bump the bundler group across 10 directories with 10 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-08T01:31:30.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-02T19:37:09.000Z","updated_at":"2026-04-08T01:31:32.000Z","time_to_close":453261,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"bundler","update_count":10,"packages":[{"name":"rack","old_version":"2.0.7","new_version":"2.2.23","repository_url":"https://github.com/rack/rack"},{"name":"sinatra","old_version":"2.0.5","new_version":"4.2.0","repository_url":"https://github.com/sinatra/sinatra"},{"name":"git","old_version":"1.3.0","new_version":"1.13.0","repository_url":"https://github.com/ruby-git/ruby-git"},{"name":"git","old_version":"1.9.1","new_version":"1.13.0","repository_url":"https://github.com/ruby-git/ruby-git"},{"name":"faraday","old_version":"1.7.0","new_version":"1.10.5","repository_url":"https://github.com/lostisland/faraday"},{"name":"httparty","old_version":"0.18.1","new_version":"0.24.0","repository_url":"https://github.com/jnunemaker/httparty"},{"name":"rexml","old_version":"3.2.5","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 2 updates in the /pkgs/applications/office/ledger-web directory: [rack](https://github.com/rack/rack) and [sinatra](https://github.com/sinatra/sinatra).\nBumps the bundler group with 1 update in the /pkgs/applications/version-management/bitbucket-server-cli directory: [git](https://github.com/ruby-git/ruby-git).\nBumps the bundler group with 4 updates in the /pkgs/applications/version-management/danger-gitlab directory: [git](https://github.com/ruby-git/ruby-git), [faraday](https://github.com/lostisland/faraday), [httparty](https://github.com/jnunemaker/httparty) and [rexml](https://github.com/ruby/rexml).\nBumps the bundler group with 2 updates in the /pkgs/applications/version-management/git-fame directory: [rexml](https://github.com/ruby/rexml) and [activesupport](https://github.com/rails/rails).\nBumps the bundler group with 2 updates in the /pkgs/by-name/ba/bashly directory: [rexml](https://github.com/ruby/rexml) and [cgi](https://github.com/ruby/cgi).\nBumps the bundler group with 2 updates in the /pkgs/by-name/cf/cfn-nag directory: [rexml](https://github.com/ruby/rexml) and [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby).\nBumps the bundler group with 1 update in the /pkgs/by-name/co/coltrane directory: [activesupport](https://github.com/rails/rails).\nBumps the bundler group with 1 update in the /pkgs/by-name/ev/evil-winrm directory: [rexml](https://github.com/ruby/rexml).\nBumps the bundler group with 1 update in the /pkgs/by-name/fu/fusuma directory: [rexml](https://github.com/ruby/rexml).\nBumps the bundler group with 4 updates in the /pkgs/by-name/go/gollum directory: [rack](https://github.com/rack/rack), [sinatra](https://github.com/sinatra/sinatra), [rexml](https://github.com/ruby/rexml) and [nokogiri](https://github.com/sparklemotion/nokogiri).\n\nUpdates `rack` from 2.0.7 to 2.2.23\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/releases\"\u003erack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.2.8.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed ReDoS in Accept header parsing [CVE-2024-26146]\u003c/li\u003e\n\u003cli\u003eFixed ReDoS in Content Type header parsing [CVE-2024-25126]\u003c/li\u003e\n\u003cli\u003eReject Range headers which are too large [CVE-2024-26141]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v2.2.8...v2.2.8.1\"\u003ehttps://github.com/rack/rack/compare/v2.2.8...v2.2.8.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.2.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eLimit file extension length of multipart tempfiles (2.2 backport) by \u003ca href=\"https://github.com/dentarg\"\u003e\u003ccode\u003e@​dentarg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2075\"\u003erack/rack#2075\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCHANGELOG: Add missing 2.2.7 by \u003ca href=\"https://github.com/tisba\"\u003e\u003ccode\u003e@​tisba\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2081\"\u003erack/rack#2081\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate cookie.rb by \u003ca href=\"https://github.com/dchandekstark\"\u003e\u003ccode\u003e@​dchandekstark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2092\"\u003erack/rack#2092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrefer ubuntu-latest for testing. by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2095\"\u003erack/rack#2095\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix inefficient assert pattern in Rack::Lint [2-2-stable] by \u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2101\"\u003erack/rack#2101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRegenerate SPEC [2-2-stable] by \u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2102\"\u003erack/rack#2102\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tisba\"\u003e\u003ccode\u003e@​tisba\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2081\"\u003erack/rack#2081\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dchandekstark\"\u003e\u003ccode\u003e@​dchandekstark\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2092\"\u003erack/rack#2092\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v2.2.7...v2.2.8\"\u003ehttps://github.com/rack/rack/compare/v2.2.7...v2.2.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.2.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCorrect the year number in the changelog by \u003ca href=\"https://github.com/kimulab\"\u003e\u003ccode\u003e@​kimulab\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2015\"\u003erack/rack#2015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport underscore in host names for Rack 2.2 (Fixes \u003ca href=\"https://redirect.github.com/rack/rack/issues/2070\"\u003e#2070\u003c/a\u003e) by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2071\"\u003erack/rack#2071\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kimulab\"\u003e\u003ccode\u003e@​kimulab\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2015\"\u003erack/rack#2015\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v2.2.6.4...v2.2.7\"\u003ehttps://github.com/rack/rack/compare/v2.2.6.4...v2.2.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.2.6.4\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev2.1.4.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed ReDoS in Accept header parsing [CVE-2024-26146]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v2.1.4.3...v2.1.4.4\"\u003ehttps://github.com/rack/rack/compare/v2.1.4.3...v2.1.4.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.0.9.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed ReDoS in Accept header parsing [CVE-2024-26146]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v2.0.9.3...v2.0.9.4\"\u003ehttps://github.com/rack/rack/compare/v2.0.9.3...v2.0.9.4\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[2.2.23] - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-7mqq-6cf9-v2qp\"\u003eCVE-2026-34763\u003c/a\u003e Root directory disclosure via unescaped regex interpolation in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v569-hp3g-36wr\"\u003eCVE-2026-34230\u003c/a\u003e Avoid O(n^2) algorithm in \u003ccode\u003eRack::Utils.select_best_encoding\u003c/code\u003e which could lead to denial of service.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-vgpv-f759-9wx3\"\u003eCVE-2026-26961\u003c/a\u003e Raise error for multipart requests with multiple boundary parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q4qf-9j86-f5mh\"\u003eCVE-2026-34786\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e \u003ccode\u003eheader_rules\u003c/code\u003e bypass via URL-encoded path mismatch.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q2ww-5357-x388\"\u003eCVE-2026-34831\u003c/a\u003e \u003ccode\u003eContent-Length\u003c/code\u003e mismatch in \u003ccode\u003eRack::Files\u003c/code\u003e error responses.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-x8cg-fq8g-mxfx\"\u003eCVE-2026-34826\u003c/a\u003e Multipart byte range processing allows denial of service via excessive overlapping ranges.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qv7j-4883-hwh7\"\u003eCVE-2026-34830\u003c/a\u003e \u003ccode\u003eRack::Sendfile\u003c/code\u003e header-based \u003ccode\u003eX-Accel-Mapping\u003c/code\u003e regex injection enables unauthorized \u003ccode\u003eX-Accel-Redirect\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-h2jq-g4cq-5ppq\"\u003eCVE-2026-34785\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e prefix matching can expose unintended files under the static root.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-8vqr-qjwx-82mw\"\u003eCVE-2026-34829\u003c/a\u003e Multipart parsing without \u003ccode\u003eContent-Length\u003c/code\u003e header allows unbounded chunked file uploads.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.22] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-whrj-4476-wvmp\"\u003eCVE-2026-25500\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-mxw3-3hh2-x2mh\"\u003eCVE-2026-22860\u003c/a\u003e Directory traversal via root prefix bypass in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.21] - 2025-11-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.20] - 2025-10-10\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.19] - 2025-10-07\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-wpv5-97wm-hp9c\"\u003eCVE-2025-61772\u003c/a\u003e Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-w9pc-fmgc-vxvw\"\u003eCVE-2025-61771\u003c/a\u003e Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-p543-xpfm-54cp\"\u003eCVE-2025-61770\u003c/a\u003e Unbounded multipart preamble buffering enables DoS (memory exhaustion)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.18] - 2025-09-25\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-625h-95r8-8xpm\"\u003eCVE-2025-59830\u003c/a\u003e Unbounded parameter parsing in \u003ccode\u003eRack::QueryParser\u003c/code\u003e can lead to memory exhaustion via semicolon-separated parameters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.17] - 2025-06-03\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/f2af0c8f869193fa7bb7d20b619b3003418e1055\"\u003e\u003ccode\u003ef2af0c8\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/345b74428e278540bb6c68484e60e01b7542fd49\"\u003e\u003ccode\u003e345b744\u003c/code\u003e\u003c/a\u003e Fix tests for old Rubies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/e2d8e309680f2b9820ab5de13a43f76778bd2c6d\"\u003e\u003ccode\u003ee2d8e30\u003c/code\u003e\u003c/a\u003e Add version guard around non-default gems.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/add1a80fa7a3772605cae8a45e29af6b1d425057\"\u003e\u003ccode\u003eadd1a80\u003c/code\u003e\u003c/a\u003e Fix handling of \u003ccode\u003eErrno::EPIPE\u003c/code\u003e in multipart tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/54261eccf12bb01952f7cbc8203fe68a0e5a1ee3\"\u003e\u003ccode\u003e54261ec\u003c/code\u003e\u003c/a\u003e Fix typo in test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/a36f48bbda4835aa00c3c2f2dbddc5a734dcdfcd\"\u003e\u003ccode\u003ea36f48b\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003eostruct\u003c/code\u003e to Gemfile.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/8883f0da7bf9606d0973f7915a30c3edfc0d3038\"\u003e\u003ccode\u003e8883f0d\u003c/code\u003e\u003c/a\u003e Fix test expectation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/2287a3babec2e80d47329e7e75b5f15c406a07ab\"\u003e\u003ccode\u003e2287a3b\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003elogger\u003c/code\u003e to gemfile.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/e6540e5f11e75c9fb4335934de54b6de05bcf626\"\u003e\u003ccode\u003ee6540e5\u003c/code\u003e\u003c/a\u003e Add Ruby v4.0 to the test matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/c42e357995065aa0c144eba0215a689d8105e4de\"\u003e\u003ccode\u003ec42e357\u003c/code\u003e\u003c/a\u003e Add Content-Length size check in Rack::Multipart::Parser\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/2.0.7...v2.2.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sinatra` from 2.0.5 to 4.2.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sinatra/sinatra/blob/main/CHANGELOG.md\"\u003esinatra's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.2.0 / 2025-10-08\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew: Add \u003ccode\u003e:static_headers\u003c/code\u003e setting for custom headers in static file responses (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2089\"\u003e#2089\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Fix regex in \u003ccode\u003eetag_matches?\u003c/code\u003e to prevent ReDoS (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2121\"\u003e#2121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: \u003ccode\u003ePATH_INFO\u003c/code\u003e can never be empty (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2114\"\u003e#2114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Fix malformed Content-Type headers (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2081\"\u003e#2081\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Avoid crash for integer values in \u003ccode\u003econtent_type\u003c/code\u003e parameters (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2078\"\u003e#2078\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.1.1 / 2024-11-20\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix: Restore WEBrick support (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2067\"\u003e#2067\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.1.0 / 2024-11-18\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew: Add \u003ccode\u003ehost_authorization\u003c/code\u003e setting (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2053\"\u003e#2053\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eDefaults to \u003ccode\u003e.localhost\u003c/code\u003e, \u003ccode\u003e.test\u003c/code\u003e and any IP address in development mode.\u003c/li\u003e\n\u003cli\u003eSecurity: addresses \u003ca href=\"https://github.com/advisories/GHSA-hxx2-7vcw-mqr3\"\u003eCVE-2024-21510\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eFix: Return an instance of \u003ccode\u003eSinatra::IndifferentHash\u003c/code\u003e when calling \u003ccode\u003e#except\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2044\"\u003e#2044\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Address warning from \u003ccode\u003eURI\u003c/code\u003e for Ruby 3.4 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2060\"\u003e#2060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: \u003ccode\u003erackup\u003c/code\u003e no longer depends on WEBrick, recommend Puma instead (\u003ca href=\"https://github.com/sinatra/sinatra/commit/4a558503a0ee41f26d4ebc07b478340e8a8a5ed6\"\u003e\u003ccode\u003e4a558503\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Zeitwerk 2.7.0+ compatibility (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2050\"\u003e#2050\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Address warning about Hash construction for Ruby 3.4 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2028\"\u003e#2028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Declare missing dependencies for Ruby 3.5 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2032\"\u003e#2032\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Compatibility with \u003ccode\u003e--enable-frozen-string-literal\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2033\"\u003e#2033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Rack 3.1 compatibility (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2035\"\u003e#2035\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eDon't depend on \u003ccode\u003eRack::Logger\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDon't delete \u003ccode\u003econtent-length\u003c/code\u003e header when \u003ccode\u003eRack::Files\u003c/code\u003e is used\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.1 / 2025-05-24\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eRack 3.1 compatibility (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2035\"\u003e#2035\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix malformed Content-Type headers (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2081\"\u003e#2081\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAvoid crash for integer values in \u003ccode\u003econtent_type\u003c/code\u003e parameters (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2078\"\u003e#2078\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix compatibility with --enable-frozen-string-literal (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2033\"\u003e#2033\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeclare missing dependencies for Ruby 3.5 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2032\"\u003e#2032\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix warning about Hash construction. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2028\"\u003e#2028\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSupport Zeitwerk 2.7.0+ (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2050\"\u003e#2050\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAddress URI depreciation (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2060\"\u003e#2060\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2035\"\u003e#2035\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2035\"\u003esinatra/sinatra#2035\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2081\"\u003e#2081\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2081\"\u003esinatra/sinatra#2081\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2078\"\u003e#2078\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2078\"\u003esinatra/sinatra#2078\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2033\"\u003e#2033\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2033\"\u003esinatra/sinatra#2033\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/f2ad45f7d2456172974a30d300e9f82424336e09\"\u003e\u003ccode\u003ef2ad45f\u003c/code\u003e\u003c/a\u003e 4.2.0 release (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2122\"\u003e#2122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/3fe8c38dc405586f7ad8f2ac748aa53e9c3615bd\"\u003e\u003ccode\u003e3fe8c38\u003c/code\u003e\u003c/a\u003e Fix regex in \u003ccode\u003eetag_matches?\u003c/code\u003e to prevent ReDoS (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2121\"\u003e#2121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/fa99a21461d4f1f5337b9b9d7a38a1b51c8f4e55\"\u003e\u003ccode\u003efa99a21\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ePATH_INFO\u003c/code\u003e can never be empty. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2114\"\u003e#2114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/ea0d3fae36d8bba330c1d1f88ef1be2e9e54516a\"\u003e\u003ccode\u003eea0d3fa\u003c/code\u003e\u003c/a\u003e Skip broken tests. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2115\"\u003e#2115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/5e1598501eb23a8673d61034df7be7d50c228400\"\u003e\u003ccode\u003e5e15985\u003c/code\u003e\u003c/a\u003e Sync changelog for v4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/91cfb548c9e50a65324a9ce9e4ea5f10cd897027\"\u003e\u003ccode\u003e91cfb54\u003c/code\u003e\u003c/a\u003e Add :static_headers setting for custom headers in static file responses (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2089\"\u003e#2089\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/c918134b0a520cb80b8b4cc3ab222cb6bbd9c827\"\u003e\u003ccode\u003ec918134\u003c/code\u003e\u003c/a\u003e Set \u003ccode\u003erubygems_mfa_required\u003c/code\u003e for the \u003ccode\u003esinatra\u003c/code\u003e gem (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2087\"\u003e#2087\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/ac3ff2363b6dfc61d2b438c4dfccc515bc6bf48c\"\u003e\u003ccode\u003eac3ff23\u003c/code\u003e\u003c/a\u003e README: Remove duplicate mention of installing puma (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2091\"\u003e#2091\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/cfcc70dee1133690207b5a3dc6000426ec04e250\"\u003e\u003ccode\u003ecfcc70d\u003c/code\u003e\u003c/a\u003e CI: don't use \u003ccode\u003eRack::Lint\u003c/code\u003e on invalid hostname (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2086\"\u003e#2086\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/c235249abaafa2780b540aca1813dfcf3d17c2dd\"\u003e\u003ccode\u003ec235249\u003c/code\u003e\u003c/a\u003e CI: Test with Ruby 3.4 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2083\"\u003e#2083\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sinatra/sinatra/compare/v2.0.5...v4.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `git` from 1.3.0 to 1.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby-git/ruby-git/releases\"\u003egit's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.12.0...v1.13.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eca8ff35 Release v1.13.0 (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/603\"\u003e#603\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e8349224 Update list of maintainers (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/598\"\u003e#598\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4fe8738 In ls-files do not unescape file paths with eval (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/602\"\u003e#602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e74b8e11 Add start_point option for checkout command (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/597\"\u003e#597\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eff6dcf4 Do not assume the default branch is 'master' in tests\u003c/li\u003e\n\u003cli\u003e8279298 Fix exception when Git is autoloaded (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.12.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.11.0...v1.12.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eea79dad Release v1.12.0\u003c/li\u003e\n\u003cli\u003ee58cd29 Support the commit --no-gpg-sign flag (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/589\"\u003e#589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e323383b Use yard gem version 0.9.8 or later instead of HEAD from GitHub (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/592\"\u003e#592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e609ab8b Allow the CI build to be run manually using the GitHub interface (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/590\"\u003e#590\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4a96679 Fix windows build (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/591\"\u003e#591\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e6f2b3fd Support the --all option for git fetch (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/583\"\u003e#583\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e1b13ec1 Workaround to get JRuby build working (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/582\"\u003e#582\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5f0adec Update README.md (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/580\"\u003e#580\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e45b467c Make the directory param to Git.clone optional (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/578\"\u003e#578\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eb92130c Make Git::URL.clone_to handle cloning to bare and mirror repos (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/577\"\u003e#577\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e13471d7 Add Git::URL #parse and #clone_to methods (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/575\"\u003e#575\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e0a43d8b Use the head version of yard (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.11.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.10.2...HEAD\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e292087e Supress unneeded test output (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/570\"\u003e#570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e19dfe5e Add support for fetch options \u0026quot;--force/-f\u0026quot; and \u0026quot;--prune-tags/-P\u0026quot;. (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/563\"\u003e#563\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e018d919 Fix bug when grepping lines that contain numbers surrounded by colons (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/566\"\u003e#566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec04d16e remove from maintainer (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/567\"\u003e#567\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e291ca09 Address command line injection in Git::Lib#fetch\u003c/li\u003e\n\u003cli\u003e521b8e7 Release v1.10.2 (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.10.2\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.10.1...v1.10.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e57f941c Release v1.10.2\u003c/li\u003e\n\u003cli\u003ec987a74 Add create-release, setup, and console dev scripts (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/560\"\u003e#560\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e12e3d03 Store tempfile objects to prevent deletion during tests (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/555\"\u003e#555\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.10.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.10.0...v1.10.1\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ec7b12af Release v1.10.1\u003c/li\u003e\n\u003cli\u003eea28118 Properly escape double quotes in shell commands on Windows (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/552\"\u003e#552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edb060fc Properly unescape diff paths (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/504\"\u003e#504\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eea47044 Add Ruby 3.0 to CI build (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/547\"\u003e#547\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby-git/ruby-git/blob/main/CHANGELOG.md\"\u003egit's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.0 (2022-12-10)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.12.0...v1.13.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e8349224 Update list of maintainers (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/598\"\u003e#598\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4fe8738 In ls-files do not unescape file paths with eval (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/602\"\u003e#602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e74b8e11 Add start_point option for checkout command (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/597\"\u003e#597\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eff6dcf4 Do not assume the default branch is 'master' in tests\u003c/li\u003e\n\u003cli\u003e8279298 Fix exception when Git is autoloaded (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.12.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.12.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.12.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e292087e Supress unneeded test output (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/570\"\u003e#570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e19dfe5e Add support for fetch options \u0026quot;--force/-f\u0026quot; and \u0026quot;--prune-tags/-P\u0026quot;. (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/563\"\u003e#563\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e018d919 Fix bug when grepping lines that contain numbers surrounded by colons (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/566\"\u003e#566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec04d16e remove from maintainer (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/567\"\u003e#567\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e291ca09 Address command line injection in Git::Lib#fetch\u003c/li\u003e\n\u003cli\u003e521b8e7 Release v1.10.2 (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.11.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.11.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.2\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.10.2\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.10.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.10.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.10.1\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.10.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.10.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.10.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.9.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.9.1\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.9.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.9.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.8.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.8.1\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.8.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.8.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/ca8ff350a63172630b8e9e919e02a0ce8e7a7a6d\"\u003e\u003ccode\u003eca8ff35\u003c/code\u003e\u003c/a\u003e Release v1.13.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/83492243ef3779bd30f23b41541927f6e50e744f\"\u003e\u003ccode\u003e8349224\u003c/code\u003e\u003c/a\u003e Update list of maintainers (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/598\"\u003e#598\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/4fe8738e8348567255ab4be25867684b5d0d282d\"\u003e\u003ccode\u003e4fe8738\u003c/code\u003e\u003c/a\u003e In ls-files do not unescape file paths with eval (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/602\"\u003e#602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/74b8e11af1a181d90f769129a0810bbc7f2f8a56\"\u003e\u003ccode\u003e74b8e11\u003c/code\u003e\u003c/a\u003e Add start_point option for checkout command (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/597\"\u003e#597\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/ff6dcf47ea1c14e5f12a8ff51eeb4ee10b7b2487\"\u003e\u003ccode\u003eff6dcf4\u003c/code\u003e\u003c/a\u003e Do not assume the default branch is 'master' in tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/827929819c9e607c2ca0ef3f4c9aff57130c682a\"\u003e\u003ccode\u003e8279298\u003c/code\u003e\u003c/a\u003e Fix exception when Git is autoloaded (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/ea79dadf07e65896a08487af011e60336e86d3e3\"\u003e\u003ccode\u003eea79dad\u003c/code\u003e\u003c/a\u003e Release v1.12.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/e58cd2997670561e41df22db236e06e41daea3da\"\u003e\u003ccode\u003ee58cd29\u003c/code\u003e\u003c/a\u003e Support the commit --no-gpg-sign flag (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/589\"\u003e#589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/323383be03358c96523f60e361ad8ec21857f52e\"\u003e\u003ccode\u003e323383b\u003c/code\u003e\u003c/a\u003e Use yard gem version 0.9.8 or later instead of HEAD from GitHub (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/592\"\u003e#592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/609ab8be2656c2362f126863dc2c98255fb5f68a\"\u003e\u003ccode\u003e609ab8b\u003c/code\u003e\u003c/a\u003e Allow the CI build to be run manually using the GitHub interface (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/590\"\u003e#590\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.3.0...v1.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `git` from 1.9.1 to 1.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby-git/ruby-git/releases\"\u003egit's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.12.0...v1.13.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eca8ff35 Release v1.13.0 (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/603\"\u003e#603\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e8349224 Update list of maintainers (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/598\"\u003e#598\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4fe8738 In ls-files do not unescape file paths with eval (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/602\"\u003e#602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e74b8e11 Add start_point option for checkout command (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/597\"\u003e#597\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eff6dcf4 Do not assume the default branch is 'master' in tests\u003c/li\u003e\n\u003cli\u003e8279298 Fix exception when Git is autoloaded (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.12.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.11.0...v1.12.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eea79dad Release v1.12.0\u003c/li\u003e\n\u003cli\u003ee58cd29 Support the commit --no-gpg-sign flag (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/589\"\u003e#589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e323383b Use yard gem version 0.9.8 or later instead of HEAD from GitHub (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/592\"\u003e#592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e609ab8b Allow the CI build to be run manually using the GitHub interface (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/590\"\u003e#590\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4a96679 Fix windows build (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/591\"\u003e#591\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e6f2b3fd Support the --all option for git fetch (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/583\"\u003e#583\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e1b13ec1 Workaround to get JRuby build working (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/582\"\u003e#582\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5f0adec Update README.md (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/580\"\u003e#580\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e45b467c Make the directory param to Git.clone optional (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/578\"\u003e#578\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eb92130c Make Git::URL.clone_to handle cloning to bare and mirror repos (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/577\"\u003e#577\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e13471d7 Add Git::URL #parse and #clone_to methods (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/575\"\u003e#575\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e0a43d8b Use the head version of yard (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.11.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.10.2...HEAD\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e292087e Supress unneeded test output (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/570\"\u003e#570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e19dfe5e Add support for fetch options \u0026quot;--force/-f\u0026quot; and \u0026quot;--prune-tags/-P\u0026quot;. (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/563\"\u003e#563\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e018d919 Fix bug when grepping lines that contain numbers surrounded by colons (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/566\"\u003e#566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec04d16e remove from maintainer (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/567\"\u003e#567\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e291ca09 Address command line injection in Git::Lib#fetch\u003c/li\u003e\n\u003cli\u003e521b8e7 Release v1.10.2 (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.10.2\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.10.1...v1.10.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e57f941c Release v1.10.2\u003c/li\u003e\n\u003cli\u003ec987a74 Add create-release, setup, and console dev scripts (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/560\"\u003e#560\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e12e3d03 Store tempfile objects to prevent deletion during tests (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/555\"\u003e#555\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.10.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.10.0...v1.10.1\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ec7b12af Release v1.10.1\u003c/li\u003e\n\u003cli\u003eea28118 Properly escape double quotes in shell commands on Windows (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/552\"\u003e#552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edb060fc Properly unescape diff paths (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/504\"\u003e#504\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eea47044 Add Ruby 3.0 to CI build (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/547\"\u003e#547\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby-git/ruby-git/blob/main/CHANGELOG.md\"\u003egit's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.0 (2022-12-10)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.12.0...v1.13.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e8349224 Update list of maintainers (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/598\"\u003e#598\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4fe8738 In ls-files do not unescape file paths with eval (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/602\"\u003e#602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e74b8e11 Add start_point option for checkout command (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/597\"\u003e#597\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eff6dcf4 Do not assume the default branch is 'master' in tests\u003c/li\u003e\n\u003cli\u003e8279298 Fix exception when Git is autoloaded (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.12.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.12.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.12.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e292087e Supress unneeded test output (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/570\"\u003e#570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e19dfe5e Add support for fetch options \u0026quot;--force/-f\u0026quot; and \u0026quot;--prune-tags/-P\u0026quot;. (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/563\"\u003e#563\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e018d919 Fix bug when grepping lines that contain numbers surrounded by colons (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/566\"\u003e#566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec04d16e remove from maintainer (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/567\"\u003e#567\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e291ca09 Address command line injection in Git::Lib#fetch\u003c/li\u003e\n\u003cli\u003e521b8e7 Release v1.10.2 (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.11.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.11.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.2\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.10.2\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.10.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.10.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.10.1\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.10.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.10.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.10.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.9.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.9.1\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.9.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.9.0\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.8.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/ruby-git/ruby-git/releases/tag/v1.8.1\"\u003ehttps://github.com/ruby-git/ruby-git/releases/tag/v1.8.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.8.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/ca8ff350a63172630b8e9e919e02a0ce8e7a7a6d\"\u003e\u003ccode\u003eca8ff35\u003c/code\u003e\u003c/a\u003e Release v1.13.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/83492243ef3779bd30f23b41541927f6e50e744f\"\u003e\u003ccode\u003e8349224\u003c/code\u003e\u003c/a\u003e Update list of maintainers (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/598\"\u003e#598\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/4fe8738e8348567255ab4be25867684b5d0d282d\"\u003e\u003ccode\u003e4fe8738\u003c/code\u003e\u003c/a\u003e In ls-files do not unescape file paths with eval (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/602\"\u003e#602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/74b8e11af1a181d90f769129a0810bbc7f2f8a56\"\u003e\u003ccode\u003e74b8e11\u003c/code\u003e\u003c/a\u003e Add start_point option for checkout command (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/597\"\u003e#597\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/ff6dcf47ea1c14e5f12a8ff51eeb4ee10b7b2487\"\u003e\u003ccode\u003eff6dcf4\u003c/code\u003e\u003c/a\u003e Do not assume the default branch is 'master' in tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/827929819c9e607c2ca0ef3f4c9aff57130c682a\"\u003e\u003ccode\u003e8279298\u003c/code\u003e\u003c/a\u003e Fix exception when Git is autoloaded (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/ea79dadf07e65896a08487af011e60336e86d3e3\"\u003e\u003ccode\u003eea79dad\u003c/code\u003e\u003c/a\u003e Release v1.12.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/e58cd2997670561e41df22db236e06e41daea3da\"\u003e\u003ccode\u003ee58cd29\u003c/code\u003e\u003c/a\u003e Support the commit --no-gpg-sign flag (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/589\"\u003e#589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/323383be03358c96523f60e361ad8ec21857f52e\"\u003e\u003ccode\u003e323383b\u003c/code\u003e\u003c/a\u003e Use yard gem version 0.9.8 or later instead of HEAD from GitHub (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/592\"\u003e#592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-git/ruby-git/commit/609ab8be2656c2362f126863dc2c98255fb5f68a\"\u003e\u003ccode\u003e609ab8b\u003c/code\u003e\u003c/a\u003e Allow the CI build to be run manually using the GitHub interface (\u003ca href=\"https://redirect.github.com/ruby-git/ruby-git/issues/590\"\u003e#590\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby-git/ruby-git/compare/v1.3.0...v1.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `faraday` from 1.7.0 to 1.10.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003efaraday's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport CVE-2026-25765 by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1665\"\u003elostisland/faraday#1665\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.4...v1.10.5\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.4...v1.10.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMake sure that \u003ccode\u003eFaraday::Request::Json\u003c/code\u003e and \u003ccode\u003eFaraday::Response::Json\u003c/code\u003e are correctly autoloaded by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1595\"\u003elostisland/faraday#1595\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.3...v1.10.4\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.3...v1.10.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Ruby 3.2.0 in Faraday v1.x by \u003ca href=\"https://github.com/timrogers\"\u003e\u003ccode\u003e@​timrogers\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1483\"\u003elostisland/faraday#1483\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/timrogers\"\u003e\u003ccode\u003e@​timrogers\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1483\"\u003elostisland/faraday#1483\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.2...v1.10.3\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.2...v1.10.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate three methods for version 2.0 by \u003ca href=\"https://github.com/hyuraku\"\u003e\u003ccode\u003e@​hyuraku\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1446\"\u003elostisland/faraday#1446\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.1...v1.10.2\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.1...v1.10.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eFaraday#Deprecate\u003c/code\u003e to \u003ccode\u003e1.x\u003c/code\u003e by \u003ca href=\"https://github.com/hyuraku\"\u003e\u003ccode\u003e@​hyuraku\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1438\"\u003elostisland/faraday#1438\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyuraku\"\u003e\u003ccode\u003e@​hyuraku\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1438\"\u003elostisland/faraday#1438\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.10.0...v1.10.1\"\u003ehttps://github.com/lostisland/faraday/compare/v1.10.0...v1.10.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd JSON middleware by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1400\"\u003elostisland/faraday#1400\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.9.3...v1.10.0\"\u003ehttps://github.com/lostisland/faraday/compare/v1.9.3...v1.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.9.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRe-add support for Ruby 2.4+ by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1371\"\u003elostisland/faraday#1371\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.9.2...v1.9.3\"\u003ehttps://github.com/lostisland/faraday/compare/v1.9.2...v1.9.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/blob/main/CHANGELOG.md\"\u003efaraday's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eFaraday Changelog\u003c/h1\u003e\n\u003ch2\u003eThe changelog has moved!\u003c/h2\u003e\n\u003cp\u003eThis file is not being updated anymore. Instead, please check the \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003eReleases\u003c/a\u003e page.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v2.1.0...v2.2.0\"\u003e2.2.0\u003c/a\u003e (2022-02-03)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReintroduce the possibility to register middleware with symbols, strings or procs in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1391\"\u003e#1391\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v2.0.1...v2.1.0\"\u003e2.1.0\u003c/a\u003e (2022-01-15)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix test adapter thread safety by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1380\"\u003e#1380\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd default adapter options by \u003ca href=\"https://github.com/hirasawayuki\"\u003e\u003ccode\u003e@​hirasawayuki\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1382\"\u003e#1382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: Add Ruby 3.1 to matrix by \u003ca href=\"https://github.com/petergoldstein\"\u003e\u003ccode\u003e@​petergoldstein\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1374\"\u003e#1374\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix regex pattern in logger.md examples by \u003ca href=\"https://github.com/hirasawayuki\"\u003e\u003ccode\u003e@​hirasawayuki\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1378\"\u003e#1378\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v2.0.0...v2.0.1\"\u003e2.0.1\u003c/a\u003e (2022-01-05)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRe-add \u003ccode\u003efaraday-net_http\u003c/code\u003e as default adapter by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1366\"\u003e#1366\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated sample format in UPGRADING.md by \u003ca href=\"https://github.com/vimutter\"\u003e\u003ccode\u003e@​vimutter\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1361\"\u003e#1361\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Make UPGRADING examples more copyable by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1363\"\u003e#1363\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lostisland/faraday/compare/v1.8.0...v2.0.0\"\u003e2.0.0\u003c/a\u003e (2022-01-04)\u003c/h2\u003e\n\u003cp\u003eThe next major release is here, and it comes almost 2 years after the release of v1.0!\u003c/p\u003e\n\u003cp\u003eThis release changes the way you use Faraday and embraces a new paradigm of Faraday as an ecosystem, rather than a library.\u003c/p\u003e\n\u003cp\u003eWhat does that mean? It means that Faraday is less of a bundled tool and more of a framework for the community to build on top of.\u003c/p\u003e\n\u003cp\u003eAs a result, all adapters and some middleware have moved out and are now shipped as standalone gems 🙌!\u003c/p\u003e\n\u003cp\u003eBut this doesn't mean that upgrading from Faraday 1.x to Faraday 2.0 should be hard, in fact we've listed everything you need to do in the \u003ca href=\"https://github.com/lostisland/faraday/blob/main/UPGRADING.md\"\u003eUPGRADING.md\u003c/a\u003e doc.\u003c/p\u003e\n\u003cp\u003eMoreover, we've setup a new \u003ca href=\"https://github.com/lostisland/awesome-faraday\"\u003eawesome-faraday\u003c/a\u003e repository that will showcase a curated list of adapters and middleware 😎.\u003c/p\u003e\n\u003cp\u003eThis release was the result of the efforts of the core team and all the contributors, new and old, that have helped achieve this milestone 👏.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAutoloading, dependency loading and middleware registry cleanup by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1301\"\u003e#1301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMove JSON middleware (request and response) from faraday_middleware by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1300\"\u003e#1300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove deprecated \u003ccode\u003eFaraday::Request#method\u003c/code\u003e by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1303\"\u003e#1303\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove deprecated \u003ccode\u003eFaraday::UploadIO\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1307\"\u003e#1307\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[1.x] Deprecate Authorization helpers in \u003ccode\u003eFaraday::Connection\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1306\"\u003e#1306\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop deprecated auth helpers from Connection and refactor auth middleware by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1308\"\u003e#1308\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Faraday 1.x examples in authentication.md docs by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1320\"\u003e#1320\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix passing a URL with embedded basic auth by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1324\"\u003e#1324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRegister JSON middleware by \u003ca href=\"https://github.com/mollerhoj\"\u003e\u003ccode\u003e@​mollerhoj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1331\"\u003e#1331\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/5c1d68aae6020c7a5398147356e5a42ca205bf80\"\u003e\u003ccode\u003e5c1d68a\u003c/code\u003e\u003c/a\u003e Version bump to 1.10.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/ea02c0ecbcd7ecc5553767f0cd97ec94eae6142b\"\u003e\u003ccode\u003eea02c0e\u003c/code\u003e\u003c/a\u003e Update rubocop complexity thresholds for security fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/d0fc049beb0b0e4e3bd4a52711189130bba7c5f4\"\u003e\u003ccode\u003ed0fc049\u003c/code\u003e\u003c/a\u003e Backport security fix for CVE-2026-25765 to 1.x branch (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1665\"\u003e#1665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/41c990ee1f82f74270c084cca8f398b186f09262\"\u003e\u003ccode\u003e41c990e\u003c/code\u003e\u003c/a\u003e Version bump to 1.10.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/435888d46cb0236eef9c8d6b02ef37a45681207f\"\u003e\u003ccode\u003e435888d\u003c/code\u003e\u003c/a\u003e Make sure that \u003ccode\u003eFaraday::Request::Json\u003c/code\u003e and \u003ccode\u003eFaraday::Response::Json\u003c/code\u003e are cor...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/82086930f947d037f0ec14ce740c0485a3b4d5a0\"\u003e\u003ccode\u003e8208693\u003c/code\u003e\u003c/a\u003e Use ruby/setup-ruby in publish.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/eeec3677d769258ec97450c678ef4d8f924fac9a\"\u003e\u003ccode\u003eeeec367\u003c/code\u003e\u003c/a\u003e Fix ruby version in publish.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/92c038bcbf24b171abeecd608a195245f5431e98\"\u003e\u003ccode\u003e92c038b\u003c/code\u003e\u003c/a\u003e Update publish.yml to use Ruby 2.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/7a382b5abb19b9278c2bf055da54876ce612cff9\"\u003e\u003ccode\u003e7a382b5\u003c/code\u003e\u003c/a\u003e Version bump to 1.10.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/16506ee918bd8813d0e241aa1c4996fa2157303c\"\u003e\u003ccode\u003e16506ee\u003c/code\u003e\u003c/a\u003e Add support for Ruby 3.2.0 in Faraday v1.x (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1483\"\u003e#1483\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lostisland/faraday/compare/v1.7.0...v1.10.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `httparty` from 0.18.1 to 0.24.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jnunemaker/httparty/releases\"\u003ehttparty's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.24.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eForce binary encoding throughout by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/823\"\u003ejnunemaker/httparty#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eset Content-Type for Hash body in requests by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/828\"\u003ejnunemaker/httparty#828\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: stream multipart file uploads to reduce memory usage by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/829\"\u003ejnunemaker/httparty#829\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent SSRF via absolute URL bypassing base_uri by \u003ca href=\"https://github.com/jnunemaker\"\u003e\u003ccode\u003e@​jnunemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/830\"\u003ejnunemaker/httparty#830\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.23.2...v0.24.0\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.23.2...v0.24.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.23.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd changelog_uri metadata to gemspec by \u003ca href=\"https://github.com/baraidrissa\"\u003e\u003ccode\u003e@​baraidrissa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/817\"\u003ejnunemaker/httparty#817\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix multipart with files in binary mode and fields including non-ASCII characters by \u003ca href=\"https://github.com/rdimartino\"\u003e\u003ccode\u003e@​rdimartino\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/822\"\u003ejnunemaker/httparty#822\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/baraidrissa\"\u003e\u003ccode\u003e@​baraidrissa\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/817\"\u003ejnunemaker/httparty#817\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rdimartino\"\u003e\u003ccode\u003e@​rdimartino\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/822\"\u003ejnunemaker/httparty#822\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.23.1...v0.23.2\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.23.1...v0.23.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.23.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd foul option to class level \u003ca href=\"https://github.com/jnunemaker/httparty/commit/d2683879c902b278a0776620dd7510c99a9db670\"\u003ehttps://github.com/jnunemaker/httparty/commit/d2683879c902b278a0776620dd7510c99a9db670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.23.0...v0.23.1\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.23.0...v0.23.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.23.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003enew: foul mode to rescue all common network errors:  \u003ca href=\"https://github.com/jnunemaker/httparty/blob/891a4a8093afd4cacecab2719223e3170d07f1c0/examples/party_foul_mode.rb\"\u003ehttps://github.com/jnunemaker/httparty/blob/891a4a8093afd4cacecab2719223e3170d07f1c0/examples/party_foul_mode.rb\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: replace master branch to main for better view by \u003ca href=\"https://github.com/bestony\"\u003e\u003ccode\u003e@​bestony\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/803\"\u003ejnunemaker/httparty#803\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/tradesmanhelix\"\u003e\u003ccode\u003e@​tradesmanhelix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/811\"\u003ejnunemaker/httparty#811\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ashishra0\"\u003e\u003ccode\u003e@​ashishra0\u003c/code\u003e\u003c/a\u003e made their first contribution with foul mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bestony\"\u003e\u003ccode\u003e@​bestony\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/803\"\u003ejnunemaker/httparty#803\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tradesmanhelix\"\u003e\u003ccode\u003e@​tradesmanhelix\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/811\"\u003ejnunemaker/httparty#811\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.22.0...v0.23.0\"\u003ehttps://github.com/jnunemaker/httparty/compare/v0.22.0...v0.23.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.22.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix typo in example name by \u003ca href=\"https://github.com/xymbol\"\u003e\u003ccode\u003e@​xymbol\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/780\"\u003ejnunemaker/httparty#780\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExtract request building method by \u003ca href=\"https://github.com/aliismayilov\"\u003e\u003ccode\u003e@​aliismayilov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/786\"\u003ejnunemaker/httparty#786\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: Tell dependabot to update GH Actions by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/791\"\u003ejnunemaker/httparty#791\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd CSV gem as a dependency for Ruby 3.4 by \u003ca href=\"https://github.com/ngan\"\u003e\u003ccode\u003e@​ngan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/796\"\u003ejnunemaker/httparty#796\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClear body when redirecting to a GET  by \u003ca href=\"https://github.com/rhett-inbox\"\u003e\u003ccode\u003e@​rhett-inbox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/783\"\u003ejnunemaker/httparty#783\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI against Ruby 3.3 by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/798\"\u003ejnunemaker/httparty#798\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/792\"\u003ejnunemaker/httparty#792\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jnunemaker/httparty/blob/main/Changelog.md\"\u003ehttparty's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003cp\u003eAll notable \u003ca href=\"https://github.com/jnunemaker/httparty/releases\"\u003echanges since 0.22 are documented in GitHub Releases\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e0.21.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/cdb45a678c43e44570b4e73f84b1abeb5ec22b8e\"\u003eescape filename in the multipart/form-data Content-Disposition header\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/767\"\u003eFix request marshaling\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/769\"\u003eReplace \u003ccode\u003emime-types\u003c/code\u003e with \u003ccode\u003emini_mime\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.20.0\u003c/h2\u003e\n\u003cp\u003eBreaking changes\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Ruby \u0026gt;= 2.3.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFixes\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/714\"\u003e\u003ccode\u003eMarshal.dump\u003c/code\u003e fails on response objects when request option \u003ccode\u003e:logger\u003c/code\u003e is set or \u003ccode\u003e:parser\u003c/code\u003e is a proc\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/720\"\u003eSwitch \u003ccode\u003e:pem\u003c/code\u003e option to to \u003ccode\u003eOpenSSL::PKey.read\u003c/code\u003e to support other algorithms\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.19.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/4416141d37fd71bdba4f37589ec265f55aa446ce\"\u003eRemove use of unary + method for creating non-frozen string to increase compatibility with older versions of ruby\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.19.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/709\"\u003eMultipart/Form-Data: rewind files after read\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/711\"\u003eadd frozen_string_literal pragma to all files\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Better handling of Accept-Encoding / Content-Encoding decompression (fixes \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/562\"\u003e#562\u003c/a\u003e)](\u003ca href=\"https://redirect.github.com/jnunemaker/httparty/pull/729\"\u003ejnunemaker/httparty#729\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/55ec76e8d1df7903eab3f7c2367991400d3cf65e\"\u003e\u003ccode\u003e55ec76e\u003c/code\u003e\u003c/a\u003e Release 0.24.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/ddfbc8ddfca03d4f4026b01763ee906071ca558b\"\u003e\u003ccode\u003eddfbc8d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/830\"\u003e#830\u003c/a\u003e from jnunemaker/fix-ssrf-base-uri-bypass\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/0529bcd6309c9fd9bfdd50ae211843b10054c240\"\u003e\u003ccode\u003e0529bcd\u003c/code\u003e\u003c/a\u003e fix: prevent SSRF via absolute URL bypassing base_uri (GHSA-hm5p-x4rq-38w4)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/05f38fd35d8088b9770513c2eaecce671f0940ec\"\u003e\u003ccode\u003e05f38fd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/829\"\u003e#829\u003c/a\u003e from jnunemaker/memory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/8901c238c00d0aca8920271314c4c5d7dd2701fb\"\u003e\u003ccode\u003e8901c23\u003c/code\u003e\u003c/a\u003e feat: stream multipart file uploads to reduce memory usage\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/091bd6aa909e38822b72f8ce2383385cf8eeb302\"\u003e\u003ccode\u003e091bd6a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/828\"\u003e#828\u003c/a\u003e from jnunemaker/issue-826\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/59c0ac5f3d906fb6be2133c1b89d75329755af8f\"\u003e\u003ccode\u003e59c0ac5\u003c/code\u003e\u003c/a\u003e feat: set Content-Type for Hash body in requests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/5c8b45e6297d181d99a56f5297dade3e358cc6f9\"\u003e\u003ccode\u003e5c8b45e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jnunemaker/httparty/issues/823\"\u003e#823\u003c/a\u003e from jnunemaker/mixed-encodings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/6419cb307dd435572963e4ab40cd96b41389efcf\"\u003e\u003ccode\u003e6419cb3\u003c/code\u003e\u003c/a\u003e Force binary encoding throughout\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jnunemaker/httparty/commit/c74571f7925c8e142d02c2b7d6ebeedf923b1dd1\"\u003e\u003ccode\u003ec74571f\u003c/code\u003e\u003c/a\u003e Release 0.23.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jnunemaker/httparty/compare/v0.18.1...v0.24.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.2.5 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.g...\n\n_Description has been truncated_","html_url":"https://github.com/danwdart/nixpkgs/pull/27","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/danwdart%2Fnixpkgs/issues/27","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/27/packages"}},{"old_version":"3.3.9","new_version":"3.4.2","update_type":"minor","path":null,"pr_created_at":"2026-04-02T18:52:05.000Z","version_change":"3.3.9 → 3.4.2","issue":{"uuid":"4196377004","node_id":"PR_kwDOPJd-3c7PpLmd","number":3,"state":"closed","title":"Bump the bundler group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-08T08:44:17.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-02T18:52:05.000Z","updated_at":"2026-04-08T08:44:19.000Z","time_to_close":481932,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":5,"packages":[{"name":"faraday","old_version":"2.12.1","new_version":"2.14.1","repository_url":"https://github.com/lostisland/faraday"},{"name":"ruby-lsp","old_version":"0.19.1","new_version":"0.26.9","repository_url":"https://github.com/Shopify/ruby-lsp"},{"name":"rack","old_version":"3.0.16","new_version":"3.1.21","repository_url":"https://github.com/rack/rack"},{"name":"rexml","old_version":"3.3.9","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"},{"name":"uri","old_version":"1.0.3","new_version":"1.1.1","repository_url":"https://github.com/ruby/uri"}],"path":null,"ecosystem":"rubygems"},"body":"Updates the requirements on [faraday](https://github.com/lostisland/faraday), [ruby-lsp](https://github.com/Shopify/ruby-lsp), [rack](https://github.com/rack/rack), [rexml](https://github.com/ruby/rexml) and [uri](https://github.com/ruby/uri) to permit the latest version.\nUpdates `faraday` from 2.12.1 to 2.14.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003efaraday's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.14.1\u003c/h2\u003e\n\u003ch2\u003eSecurity Note\u003c/h2\u003e\n\u003cp\u003eThis release contains a security fix, we recommend all users to upgrade as soon as possible.\nA Security Advisory with more details will be posted shortly.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd RFC document for Options architecture refactoring plan by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1644\"\u003elostisland/faraday#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1655\"\u003elostisland/faraday#1655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExplicit top-level namespace reference by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1657\"\u003elostisland/faraday#1657\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\"\u003ehttps://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eNew features ✨\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUse newer \u003ccode\u003eUnprocessableContent\u003c/code\u003e naming for 422 by \u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes 🐞\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eConvert strings to UTF-8 by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eResponse#to_hash\u003c/code\u003e when response not finished yet by \u003ca href=\"https://github.com/yykamei\"\u003e\u003ccode\u003e@​yykamei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1639\"\u003elostisland/faraday#1639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMisc/Docs 📄\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eLint: use \u003ccode\u003efilter_map\u003c/code\u003e by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1637\"\u003elostisland/faraday#1637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003eactions/checkout\u003c/code\u003e from v4 to v5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1636\"\u003elostisland/faraday#1636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes documentation by \u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove error handling logic and add missing test coverage by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1633\"\u003elostisland/faraday#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix type assumption in \u003ccode\u003eFaraday::Error\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1630\"\u003elostisland/faraday#1630\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/16cbd38ef252d25dedf416a4d2510a2f3db10c87\"\u003e\u003ccode\u003e16cbd38\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/a6d3a3a0bf59c2ab307d0abd91bc126aef5561bc\"\u003e\u003ccode\u003ea6d3a3a\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/b23f710d28c0dba169470f568df4017a1e8beea7\"\u003e\u003ccode\u003eb23f710\u003c/code\u003e\u003c/a\u003e Explicit top-level namespace reference (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1657\"\u003e#1657\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/49ba4ac3a7359baed634c12a82386f6c8c717ea8\"\u003e\u003ccode\u003e49ba4ac\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1655\"\u003e#1655\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/51a49bc99d7df6f724d250d64771e1d710576df7\"\u003e\u003ccode\u003e51a49bc\u003c/code\u003e\u003c/a\u003e Ensure Claude reads the guidelines and allow to plan in a gitignored .ai/PLAN...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/894f65cab8f04bcf35e84a2dfd9fc0286dbce340\"\u003e\u003ccode\u003e894f65c\u003c/code\u003e\u003c/a\u003e Add RFC document for Options architecture refactoring plan (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1644\"\u003e#1644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/397e3ded0c5166313bb22f1c0221b36b6023fd0f\"\u003e\u003ccode\u003e397e3de\u003c/code\u003e\u003c/a\u003e Add comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/d98c65cfc254ea2898386e4359428527122abec3\"\u003e\u003ccode\u003ed98c65c\u003c/code\u003e\u003c/a\u003e Update Faraday-specific AI agent guidelines\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/56c18ecb718e30c5a3a0dea9bd2361912af9013c\"\u003e\u003ccode\u003e56c18ec\u003c/code\u003e\u003c/a\u003e Add AI agent guidelines specific to Faraday repository\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/3201a42957d37efc968ee8834ba9b50ed5dde54a\"\u003e\u003ccode\u003e3201a42\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.12.1...v2.14.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ruby-lsp` from 0.19.1 to 0.26.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Shopify/ruby-lsp/releases\"\u003eruby-lsp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev0.26.9\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent workspace_dependencies failing if directory gets removed during execution (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3980\"\u003eShopify/ruby-lsp#3980\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix semantic token \u003ccode\u003edefaultLibrary\u003c/code\u003e modifier casing (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/4005\"\u003eShopify/ruby-lsp#4005\u003c/a\u003e) by \u003ca href=\"https://github.com/a-lavis\"\u003e\u003ccode\u003e@​a-lavis\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix document links for source comments above sig blocks (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/4018\"\u003eShopify/ruby-lsp#4018\u003c/a\u003e) by \u003ca href=\"https://github.com/KaanOzkan\"\u003e\u003ccode\u003e@​KaanOzkan\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.8\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix send_log_message ignoring type parameter (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3969\"\u003eShopify/ruby-lsp#3969\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eProperly reset state after leaving a regex capture (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3970\"\u003eShopify/ruby-lsp#3970\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClean up cancelled requests after processing them (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3971\"\u003eShopify/ruby-lsp#3971\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApply lower bound \u003ccode\u003eruby-lsp\u003c/code\u003e version constraint in composed bundle (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3985\"\u003eShopify/ruby-lsp#3985\u003c/a\u003e) by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnsure the original CLI arguments are used when updating (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3986\"\u003eShopify/ruby-lsp#3986\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnsure bundle is re-composed when CLI arguments change (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3987\"\u003eShopify/ruby-lsp#3987\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Other Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eStart accepting --beta flag to install beta server version (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3976\"\u003eShopify/ruby-lsp#3976\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.7\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSkip disable line action for self-resolving cops (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3945\"\u003eShopify/ruby-lsp#3945\u003c/a\u003e) by \u003ca href=\"https://github.com/sucicfilip\"\u003e\u003ccode\u003e@​sucicfilip\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix test runner silent failure on dual-stack IPv4/IPv6 systems (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3953\"\u003eShopify/ruby-lsp#3953\u003c/a\u003e) by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix Bundler::GemNotFound error introduced in 0.26.5 (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3961\"\u003eShopify/ruby-lsp#3961\u003c/a\u003e) by \u003ca href=\"https://github.com/jesse-shopify\"\u003e\u003ccode\u003e@​jesse-shopify\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix incompatible addon version activation when Bundler.setup fails after retry (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3963\"\u003eShopify/ruby-lsp#3963\u003c/a\u003e) by \u003ca href=\"https://github.com/KaanOzkan\"\u003e\u003ccode\u003e@​KaanOzkan\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid failing if \u003ccode\u003eneeds_update\u003c/code\u003e file is deleted by concurrent process (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3964\"\u003eShopify/ruby-lsp#3964\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Other Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport IPv4 and IPv6 for LSP reporter connection (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3965\"\u003eShopify/ruby-lsp#3965\u003c/a\u003e) by \u003ca href=\"https://github.com/vinistock\"\u003e\u003ccode\u003e@​vinistock\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDecouple test reporter IO from test execution (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3962\"\u003eShopify/ruby-lsp#3962\u003c/a\u003e) by \u003ca href=\"https://github.com/alexcrocha\"\u003e\u003ccode\u003e@​alexcrocha\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.6\u003c/h1\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix infinite loop when collecting transitive excluded gems (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3913\"\u003eShopify/ruby-lsp#3913\u003c/a\u003e) by \u003ca href=\"https://github.com/rafaelfranca\"\u003e\u003ccode\u003e@​rafaelfranca\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDon't include test files in the gem package (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3916\"\u003eShopify/ruby-lsp#3916\u003c/a\u003e) by \u003ca href=\"https://github.com/rafaelfranca\"\u003e\u003ccode\u003e@​rafaelfranca\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd rbs to composed bundle update commands (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3938\"\u003eShopify/ruby-lsp#3938\u003c/a\u003e) by \u003ca href=\"https://github.com/modille\"\u003e\u003ccode\u003e@​modille\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExtract GEMS_TO_UPDATE constant and fix missing prism in command path (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3939\"\u003eShopify/ruby-lsp#3939\u003c/a\u003e) by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Other Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[DOC] Add security documentation (\u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/pull/3928\"\u003eShopify/ruby-lsp#3928\u003c/a\u003e) by \u003ca href=\"https://github.com/st0012\"\u003e\u003ccode\u003e@​st0012\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev0.26.5\u003c/h1\u003e\n\u003ch2\u003e✨ Enhancements\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/29ecc8d29dde87e6157a75bc2f0a3eb62db02ea3\"\u003e\u003ccode\u003e29ecc8d\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/f6d9ee44200cb2c0bd3feeb75ff9b7547accd6ad\"\u003e\u003ccode\u003ef6d9ee4\u003c/code\u003e\u003c/a\u003e Bump version to v0.26.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/97f817d489a212faa6dd876bf129b300ea492fbc\"\u003e\u003ccode\u003e97f817d\u003c/code\u003e\u003c/a\u003e Remove --branch flag from server\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/9e53e7e8366a13e44079f252ee8e5d5000803fe2\"\u003e\u003ccode\u003e9e53e7e\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/eb746d3554f8666e980fa3cffc0d03d7aa062fdd\"\u003e\u003ccode\u003eeb746d3\u003c/code\u003e\u003c/a\u003e Bump extension version to v0.10.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/8834520c7d4ebd067527bc9ba0db3aff586e5df8\"\u003e\u003ccode\u003e8834520\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/issues/4030\"\u003e#4030\u003c/a\u003e from Shopify/use-prism-parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/e4026eac5293387aa1e77a62253ae5dc5a9806b5\"\u003e\u003ccode\u003ee4026ea\u003c/code\u003e\u003c/a\u003e Use Prism parser for Sorbet\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/81843e7a15f2b5428dbe73d87ef3a3ceccb6c411\"\u003e\u003ccode\u003e81843e7\u003c/code\u003e\u003c/a\u003e Bump Sorbet to 0.6.13055\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/b61a59498b70e864ac67c87bafbf72851ecb2ba7\"\u003e\u003ccode\u003eb61a594\u003c/code\u003e\u003c/a\u003e Remove rubyLsp.branch setting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shopify/ruby-lsp/commit/8c1e9b6b3f69a45dd6853d43d3dfae158f9e555d\"\u003e\u003ccode\u003e8c1e9b6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/Shopify/ruby-lsp/issues/4028\"\u003e#4028\u003c/a\u003e from Shopify/dependabot/npm_and_yarn/vscode/minor-an...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Shopify/ruby-lsp/compare/v0.19.1...v0.26.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rack` from 3.0.16 to 3.1.21\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.1.21] - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-7mqq-6cf9-v2qp\"\u003eCVE-2026-34763\u003c/a\u003e Root directory disclosure via unescaped regex interpolation in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v569-hp3g-36wr\"\u003eCVE-2026-34230\u003c/a\u003e Avoid O(n^2) algorithm in \u003ccode\u003eRack::Utils.select_best_encoding\u003c/code\u003e which could lead to denial of service.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qfgr-crr9-7r49\"\u003eCVE-2026-32762\u003c/a\u003e Forwarded header semicolon injection enables Host and Scheme spoofing.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-vgpv-f759-9wx3\"\u003eCVE-2026-26961\u003c/a\u003e Raise error for multipart requests with multiple boundary parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q4qf-9j86-f5mh\"\u003eCVE-2026-34786\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e \u003ccode\u003eheader_rules\u003c/code\u003e bypass via URL-encoded path mismatch.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q2ww-5357-x388\"\u003eCVE-2026-34831\u003c/a\u003e \u003ccode\u003eContent-Length\u003c/code\u003e mismatch in \u003ccode\u003eRack::Files\u003c/code\u003e error responses.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-x8cg-fq8g-mxfx\"\u003eCVE-2026-34826\u003c/a\u003e Multipart byte range processing allows denial of service via excessive overlapping ranges.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-g2pf-xv49-m2h5\"\u003eCVE-2026-34835\u003c/a\u003e \u003ccode\u003eRack::Request\u003c/code\u003e accepts invalid Host characters, enabling host allowlist bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qv7j-4883-hwh7\"\u003eCVE-2026-34830\u003c/a\u003e \u003ccode\u003eRack::Sendfile\u003c/code\u003e header-based \u003ccode\u003eX-Accel-Mapping\u003c/code\u003e regex injection enables unauthorized \u003ccode\u003eX-Accel-Redirect\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-h2jq-g4cq-5ppq\"\u003eCVE-2026-34785\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e prefix matching can expose unintended files under the static root.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-8vqr-qjwx-82mw\"\u003eCVE-2026-34829\u003c/a\u003e Multipart parsing without \u003ccode\u003eContent-Length\u003c/code\u003e header allows unbounded chunked file uploads.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v6x5-cg8r-vv6x\"\u003eCVE-2026-34827\u003c/a\u003e Multipart header parsing allows denial of service via escape-heavy quoted parameters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.20] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-whrj-4476-wvmp\"\u003eCVE-2026-25500\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-mxw3-3hh2-x2mh\"\u003eCVE-2026-22860\u003c/a\u003e Directory traversal via root prefix bypass in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.19] - 2025-11-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.18] - 2025-10-10\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.17] - 2025-10-07\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-wpv5-97wm-hp9c\"\u003eCVE-2025-61772\u003c/a\u003e Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-w9pc-fmgc-vxvw\"\u003eCVE-2025-61771\u003c/a\u003e Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-p543-xpfm-54cp\"\u003eCVE-2025-61770\u003c/a\u003e Unbounded multipart preamble buffering enables DoS (memory exhaustion)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.16] - 2025-06-04\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-47m2-26rw-j2jw\"\u003eCVE-2025-49007\u003c/a\u003e Fix ReDoS in multipart request.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/ae8431120e66e92d1885ab8ec0a553d9cad5ec13\"\u003e\u003ccode\u003eae84311\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/87961c306df1894fb5efaa57d29179091b4bc194\"\u003e\u003ccode\u003e87961c3\u003c/code\u003e\u003c/a\u003e Fix typo in test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/fd1c23dc762225e68b50d392142e6a6bf54bf9af\"\u003e\u003ccode\u003efd1c23d\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003elogger\u003c/code\u003e to gemfile.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/c59d924f215e41ae8ce1bae1633c34f1ca64b182\"\u003e\u003ccode\u003ec59d924\u003c/code\u003e\u003c/a\u003e Fix test expectation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/176f468e0d575e2f4d7583ff95f30bb53360e3fe\"\u003e\u003ccode\u003e176f468\u003c/code\u003e\u003c/a\u003e Add Ruby v4.0 to the test matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/28569342665fee07f161f0974826eb85c1244533\"\u003e\u003ccode\u003e2856934\u003c/code\u003e\u003c/a\u003e Drop EOL Rubies from external tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/17ce7836be1523a7b453f3c06fe070ad7c954708\"\u003e\u003ccode\u003e17ce783\u003c/code\u003e\u003c/a\u003e Limit the number of quoted escapes during multipart parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/367a2a0ec6fbef605c9412dadfd5763b7867441f\"\u003e\u003ccode\u003e367a2a0\u003c/code\u003e\u003c/a\u003e Add Content-Length size check in Rack::Multipart::Parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/a17cb99b3440a4db09fb920407adf5ead127704c\"\u003e\u003ccode\u003ea17cb99\u003c/code\u003e\u003c/a\u003e Fix root prefix bug in Rack::Static\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/59a0966a484f2903833fa3e4c81919d3c645738d\"\u003e\u003ccode\u003e59a0966\u003c/code\u003e\u003c/a\u003e Only do a simple substitution on the x-accel-mapping paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/v3.0.16...v3.1.21\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.3.9 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.3.9...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uri` from 1.0.3 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/uri/releases\"\u003euri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRe-allow consecutive, leading and trailing dots in EMAIL_REGEXP by \u003ca href=\"https://github.com/osyoyu\"\u003e\u003ccode\u003e@​osyoyu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/189\"\u003eruby/uri#189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/osyoyu\"\u003e\u003ccode\u003e@​osyoyu\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/189\"\u003eruby/uri#189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/uri/compare/v1.1.0...v1.1.1\"\u003ehttps://github.com/ruby/uri/compare/v1.1.0...v1.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.1.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate to use the latest version of setup-ruby and bump up to Ruby 3.4 by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/158\"\u003eruby/uri#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix the mention to removed \u003ccode\u003eURI.escape/URI::Escape\u003c/code\u003e by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/146\"\u003eruby/uri#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse a fully qualified name in warning messages by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/150\"\u003eruby/uri#150\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport \u003ccode\u003eRactor#value\u003c/code\u003e by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/163\"\u003eruby/uri#163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved unnecessary workaround  by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/164\"\u003eruby/uri#164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEscape reserved characters in scheme name by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/148\"\u003eruby/uri#148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[DOC] State that uri library is needed to call Kernel#URI by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/167\"\u003eruby/uri#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrefer dedicated assertion methods by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/169\"\u003eruby/uri#169\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix the message for unexpected argument by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/171\"\u003eruby/uri#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake URI::regexp schemes case sensitive (\u003ca href=\"https://redirect.github.com/ruby/uri/issues/38\"\u003e#38\u003c/a\u003e) by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/170\"\u003eruby/uri#170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe local part should not contain leading or trailing dots in the EMAIL_REGEXP by \u003ca href=\"https://github.com/nlevchuk\"\u003e\u003ccode\u003e@​nlevchuk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/124\"\u003eruby/uri#124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMore checks in \u003ccode\u003eEMAIL_REGEXP\u003c/code\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/172\"\u003eruby/uri#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not allow empty host names, as they are not allowed by RFC 3986 by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/116\"\u003eruby/uri#116\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove performance of \u003ccode\u003eURI::MailTo::EMAIL_REGEXP\u003c/code\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/173\"\u003eruby/uri#173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePerformance test stability by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/174\"\u003eruby/uri#174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate documents that used \u003ccode\u003eURI::Parser\u003c/code\u003e by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/175\"\u003eruby/uri#175\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a workflow to sync commits to ruby/ruby by \u003ca href=\"https://github.com/k0kubun\"\u003e\u003ccode\u003e@​k0kubun\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/183\"\u003eruby/uri#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eirb\u003c/code\u003e to the Gemfile to fix the warning by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/182\"\u003eruby/uri#182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace reference to the obsolete URI.escape with URI::RFC2396_PARSER.escape by \u003ca href=\"https://github.com/vivshaw\"\u003e\u003ccode\u003e@​vivshaw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/166\"\u003eruby/uri#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch a parsing behavior completely when switching a parser by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/161\"\u003eruby/uri#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove error message by \u003ca href=\"https://github.com/soda92\"\u003e\u003ccode\u003e@​soda92\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/130\"\u003eruby/uri#130\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse generic version number to VERSION by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/187\"\u003eruby/uri#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/146\"\u003eruby/uri#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nlevchuk\"\u003e\u003ccode\u003e@​nlevchuk\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/124\"\u003eruby/uri#124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vivshaw\"\u003e\u003ccode\u003e@​vivshaw\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/166\"\u003eruby/uri#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/soda92\"\u003e\u003ccode\u003e@​soda92\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/uri/pull/130\"\u003eruby/uri#130\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/uri/compare/v1.0.4...v1.1.0\"\u003ehttps://github.com/ruby/uri/compare/v1.0.4...v1.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.0.4\u003c/h2\u003e\n\u003ch3\u003eSecurity fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.ruby-lang.org/en/news/2025/10/07/uri-cve-2025-61594/\"\u003eCVE-2025-61594\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/f1b05c89ab38667e7564896f994d4d6cfbc67149\"\u003e\u003ccode\u003ef1b05c8\u003c/code\u003e\u003c/a\u003e v1.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/8557e8d470ad7b969ba11d210e33b9570919661d\"\u003e\u003ccode\u003e8557e8d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/189\"\u003e#189\u003c/a\u003e from osyoyu/restore-whatwg-email-regexp\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/c551d7020bba3cf452e696d55c451ae951d0f24b\"\u003e\u003ccode\u003ec551d70\u003c/code\u003e\u003c/a\u003e Re-allow consecutive, leading and trailing dots in EMAIL_REGEXP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/c41903b3e4df8ba2ceba16a80d3156a97a81e038\"\u003e\u003ccode\u003ec41903b\u003c/code\u003e\u003c/a\u003e v1.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/b433f3499202b2abc27c5211554195243d083f88\"\u003e\u003ccode\u003eb433f34\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/187\"\u003e#187\u003c/a\u003e from ruby/switch-version-code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/1fc4f0496a2d44f4af317d8f786a50e9f6918656\"\u003e\u003ccode\u003e1fc4f04\u003c/code\u003e\u003c/a\u003e Use generic version number to VERSION and generate VERSION_CODE from that\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/e8306800d9b58f37f3847e8d598599cb1ef36f3c\"\u003e\u003ccode\u003ee830680\u003c/code\u003e\u003c/a\u003e Exclude dependabot updates from release note\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/70d245fa46786b9aa4970c4b815cfe8b1b823bf6\"\u003e\u003ccode\u003e70d245f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/130\"\u003e#130\u003c/a\u003e from soda92/improve-error-message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/d629c8c1541330e4fc50879fbafc0701728e447f\"\u003e\u003ccode\u003ed629c8c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/161\"\u003e#161\u003c/a\u003e from y-yagi/fix_changing_parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/uri/commit/fec6733919edb140bbdc429ed4b0492776ebc4a2\"\u003e\u003ccode\u003efec6733\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ruby/uri/issues/166\"\u003e#166\u003c/a\u003e from vivshaw/vivshaw/correct-obsolete-parse\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/uri/compare/v1.0.3...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Lynquatiq/entitlements-github-plugin/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Lynquatiq/entitlements-github-plugin/pull/3","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Lynquatiq%2Fentitlements-github-plugin/issues/3","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/3/packages"}},{"old_version":"3.2.8","new_version":"3.4.2","update_type":"minor","path":null,"pr_created_at":"2026-04-02T18:46:13.000Z","version_change":"3.2.8 → 3.4.2","issue":{"uuid":"4196345500","node_id":"PR_kwDOQ8iWSs7PpFDK","number":13,"state":"open","title":"Bump the bundler group across 3 directories with 7 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-02T18:46:13.000Z","updated_at":"2026-04-02T18:49:33.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"bundler","update_count":7,"packages":[{"name":"rack","old_version":"3.0.10","new_version":"3.1.21","repository_url":"https://github.com/rack/rack"},{"name":"puma","old_version":"6.4.2","new_version":"6.4.3","repository_url":"https://github.com/puma/puma"},{"name":"google-protobuf","old_version":"4.26.1","new_version":"4.27.5","repository_url":"https://github.com/protocolbuffers/protobuf"},{"name":"rexml","old_version":"3.2.8","new_version":"3.4.2","repository_url":"https://github.com/ruby/rexml"},{"name":"webrick","old_version":"1.8.1","new_version":"1.8.2","repository_url":"https://github.com/ruby/webrick"}],"path":null,"ecosystem":"rubygems"},"body":"Bumps the bundler group with 2 updates in the /bundler/multi-dir/bar directory: [rack](https://github.com/rack/rack) and [nokogiri](https://github.com/sparklemotion/nokogiri).\nBumps the bundler group with 5 updates in the /bundler/security-subdep directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [rack](https://github.com/rack/rack) | `3.0.10` | `3.1.21` |\n| [puma](https://github.com/puma/puma) | `6.4.2` | `6.4.3` |\n| [google-protobuf](https://github.com/protocolbuffers/protobuf) | `4.26.1` | `4.27.5` |\n| [rexml](https://github.com/ruby/rexml) | `3.2.8` | `3.4.2` |\n| [webrick](https://github.com/ruby/webrick) | `1.8.1` | `1.8.2` |\n\nBumps the bundler group with 2 updates in the /bundler/multi-dir/foo directory: [nokogiri](https://github.com/sparklemotion/nokogiri) and [sinatra](https://github.com/sinatra/sinatra).\n\nUpdates `rack` from 3.0.0 to 3.1.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/releases\"\u003erack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.9.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed ReDoS in Accept header parsing [CVE-2024-26146]\u003c/li\u003e\n\u003cli\u003eFixed ReDoS in Content Type header parsing [CVE-2024-25126]\u003c/li\u003e\n\u003cli\u003eReject Range headers which are too large [CVE-2024-26141]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.9...v3.0.9.1\"\u003ehttps://github.com/rack/rack/compare/v3.0.9...v3.0.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix content-length calcuation in Rack:Response#write \u003ca href=\"https://redirect.github.com/rack/rack/issues/2150\"\u003e#2150\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.8...v3.0.9\"\u003ehttps://github.com/rack/rack/compare/v3.0.8...v3.0.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u0026quot;Fix some unused variable verbose warnings\u0026quot; by \u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2084\"\u003erack/rack#2084\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2084\"\u003erack/rack#2084\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.7...v3.0.8\"\u003ehttps://github.com/rack/rack/compare/v3.0.7...v3.0.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u0026quot;Make query parameters without = have nil values\u0026quot;. by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2060\"\u003erack/rack#2060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.6.1...v3.0.7\"\u003ehttps://github.com/rack/rack/compare/v3.0.6.1...v3.0.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.6.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev3.0.4.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.4...v3.0.4.1\"\u003ehttps://github.com/rack/rack/compare/v3.0.4...v3.0.4.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.4\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.3...v3.0.4\"\u003ehttps://github.com/rack/rack/compare/v3.0.3...v3.0.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRelease v3.0.3 by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2000\"\u003erack/rack#2000\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.2...v3.0.3\"\u003ehttps://github.com/rack/rack/compare/v3.0.2...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.2\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.1...v3.0.2\"\u003ehttps://github.com/rack/rack/compare/v3.0.1...v3.0.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.1.21] - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-7mqq-6cf9-v2qp\"\u003eCVE-2026-34763\u003c/a\u003e Root directory disclosure via unescaped regex interpolation in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v569-hp3g-36wr\"\u003eCVE-2026-34230\u003c/a\u003e Avoid O(n^2) algorithm in \u003ccode\u003eRack::Utils.select_best_encoding\u003c/code\u003e which could lead to denial of service.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qfgr-crr9-7r49\"\u003eCVE-2026-32762\u003c/a\u003e Forwarded header semicolon injection enables Host and Scheme spoofing.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-vgpv-f759-9wx3\"\u003eCVE-2026-26961\u003c/a\u003e Raise error for multipart requests with multiple boundary parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q4qf-9j86-f5mh\"\u003eCVE-2026-34786\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e \u003ccode\u003eheader_rules\u003c/code\u003e bypass via URL-encoded path mismatch.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q2ww-5357-x388\"\u003eCVE-2026-34831\u003c/a\u003e \u003ccode\u003eContent-Length\u003c/code\u003e mismatch in \u003ccode\u003eRack::Files\u003c/code\u003e error responses.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-x8cg-fq8g-mxfx\"\u003eCVE-2026-34826\u003c/a\u003e Multipart byte range processing allows denial of service via excessive overlapping ranges.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-g2pf-xv49-m2h5\"\u003eCVE-2026-34835\u003c/a\u003e \u003ccode\u003eRack::Request\u003c/code\u003e accepts invalid Host characters, enabling host allowlist bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qv7j-4883-hwh7\"\u003eCVE-2026-34830\u003c/a\u003e \u003ccode\u003eRack::Sendfile\u003c/code\u003e header-based \u003ccode\u003eX-Accel-Mapping\u003c/code\u003e regex injection enables unauthorized \u003ccode\u003eX-Accel-Redirect\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-h2jq-g4cq-5ppq\"\u003eCVE-2026-34785\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e prefix matching can expose unintended files under the static root.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-8vqr-qjwx-82mw\"\u003eCVE-2026-34829\u003c/a\u003e Multipart parsing without \u003ccode\u003eContent-Length\u003c/code\u003e header allows unbounded chunked file uploads.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v6x5-cg8r-vv6x\"\u003eCVE-2026-34827\u003c/a\u003e Multipart header parsing allows denial of service via escape-heavy quoted parameters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.20] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-whrj-4476-wvmp\"\u003eCVE-2026-25500\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-mxw3-3hh2-x2mh\"\u003eCVE-2026-22860\u003c/a\u003e Directory traversal via root prefix bypass in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.19] - 2025-11-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.18] - 2025-10-10\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.17] - 2025-10-07\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-wpv5-97wm-hp9c\"\u003eCVE-2025-61772\u003c/a\u003e Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-w9pc-fmgc-vxvw\"\u003eCVE-2025-61771\u003c/a\u003e Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-p543-xpfm-54cp\"\u003eCVE-2025-61770\u003c/a\u003e Unbounded multipart preamble buffering enables DoS (memory exhaustion)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.16] - 2025-06-04\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-47m2-26rw-j2jw\"\u003eCVE-2025-49007\u003c/a\u003e Fix ReDoS in multipart request.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/ae8431120e66e92d1885ab8ec0a553d9cad5ec13\"\u003e\u003ccode\u003eae84311\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/87961c306df1894fb5efaa57d29179091b4bc194\"\u003e\u003ccode\u003e87961c3\u003c/code\u003e\u003c/a\u003e Fix typo in test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/fd1c23dc762225e68b50d392142e6a6bf54bf9af\"\u003e\u003ccode\u003efd1c23d\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003elogger\u003c/code\u003e to gemfile.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/c59d924f215e41ae8ce1bae1633c34f1ca64b182\"\u003e\u003ccode\u003ec59d924\u003c/code\u003e\u003c/a\u003e Fix test expectation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/176f468e0d575e2f4d7583ff95f30bb53360e3fe\"\u003e\u003ccode\u003e176f468\u003c/code\u003e\u003c/a\u003e Add Ruby v4.0 to the test matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/28569342665fee07f161f0974826eb85c1244533\"\u003e\u003ccode\u003e2856934\u003c/code\u003e\u003c/a\u003e Drop EOL Rubies from external tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/17ce7836be1523a7b453f3c06fe070ad7c954708\"\u003e\u003ccode\u003e17ce783\u003c/code\u003e\u003c/a\u003e Limit the number of quoted escapes during multipart parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/367a2a0ec6fbef605c9412dadfd5763b7867441f\"\u003e\u003ccode\u003e367a2a0\u003c/code\u003e\u003c/a\u003e Add Content-Length size check in Rack::Multipart::Parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/a17cb99b3440a4db09fb920407adf5ead127704c\"\u003e\u003ccode\u003ea17cb99\u003c/code\u003e\u003c/a\u003e Fix root prefix bug in Rack::Static\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/59a0966a484f2903833fa3e4c81919d3c645738d\"\u003e\u003ccode\u003e59a0966\u003c/code\u003e\u003c/a\u003e Only do a simple substitution on the x-accel-mapping paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/3.0.0...v3.1.21\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nokogiri` from 1.11.0 to 1.19.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/releases\"\u003enokogiri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003ecfdb0eafd9a554a88f12ebcc688d2b9005f9fce42b00b970e3dc199587b27f32  nokogiri-1.19.1-aarch64-linux-gnu.gem\r\n1e2150ab43c3b373aba76cd1190af7b9e92103564063e48c474f7600923620b5  nokogiri-1.19.1-aarch64-linux-musl.gem\r\n0a39ed59abe3bf279fab9dd4c6db6fe8af01af0608f6e1f08b8ffa4e5d407fa3  nokogiri-1.19.1-arm-linux-gnu.gem\r\n3a18e559ee499b064aac6562d98daab3d39ba6cbb4074a1542781b2f556db47d  nokogiri-1.19.1-arm-linux-musl.gem\r\ndfe2d337e6700eac47290407c289d56bcf85805d128c1b5a6434ddb79731cb9e  nokogiri-1.19.1-arm64-darwin.gem\r\n1e0bda88b1c6409f0edb9e0c25f1bf9ff4fa94c3958f492a10fcf50dda594365  nokogiri-1.19.1-java.gem\r\n110d92ae57694ae7866670d298a5d04cd150fae5a6a7849957d66f171e6aec9b  nokogiri-1.19.1-x64-mingw-ucrt.gem\r\n7093896778cc03efb74b85f915a775862730e887f2e58d6921e3fa3d981e68bf  nokogiri-1.19.1-x86_64-darwin.gem\r\n1a4902842a186b4f901078e692d12257678e6133858d0566152fe29cdb98456a  nokogiri-1.19.1-x86_64-linux-gnu.gem\r\n4267f38ad4fc7e52a2e7ee28ed494e8f9d8eb4f4b3320901d55981c7b995fc23  nokogiri-1.19.1-x86_64-linux-musl.gem\r\n598b327f36df0b172abd57b68b18979a6e14219353bca87180c31a51a00d5ad3  nokogiri-1.19.1.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e11a97ecc3c0e7e5edcf395720b10860ef493b768f6aa80c539573530bc933767  nokogiri-1.19.0-aarch64-linux-gnu.gem\r\neb70507f5e01bc23dad9b8dbec2b36ad0e61d227b42d292835020ff754fb7ba9  nokogiri-1.19.0-aarch64-linux-musl.gem\r\n572a259026b2c8b7c161fdb6469fa2d0edd2b61cd599db4bbda93289abefbfe5  nokogiri-1.19.0-arm-linux-gnu.gem\r\n23ed90922f1a38aed555d3de4d058e90850c731c5b756d191b3dc8055948e73c  nokogiri-1.19.0-arm-linux-musl.gem\r\n0811dfd936d5f6dd3f6d32ef790568bf29b2b7bead9ba68866847b33c9cf5810  nokogiri-1.19.0-arm64-darwin.gem\r\n5f3a70e252be641d8a4099f7fb4cc25c81c632cb594eec9b4b8f2ca8be4374f3  nokogiri-1.19.0-java.gem\r\n05d7ed2d95731edc9bef2811522dc396df3e476ef0d9c76793a9fca81cab056b  nokogiri-1.19.0-x64-mingw-ucrt.gem\r\n1dad56220b603a8edb9750cd95798bffa2b8dd9dd9aa47f664009ee5b43e3067  nokogiri-1.19.0-x86_64-darwin.gem\r\nf482b95c713d60031d48c44ce14562f8d2ce31e3a9e8dd0ccb131e9e5a68b58c  nokogiri-1.19.0-x86_64-linux-gnu.gem\r\n1c4ca6b381622420073ce6043443af1d321e8ed93cc18b08e2666e5bd02ffae4  nokogiri-1.19.0-x86_64-linux-musl.gem\r\ne304d21865f62518e04f2bf59f93bd3a97ca7b07e7f03952946d8e1c05f45695  nokogiri-1.19.0.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md\"\u003enokogiri's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.10 / 2025-09-15\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.9\"\u003ev2.13.9\u003c/a\u003e. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.\u003c/li\u003e\n\u003cli\u003e[CRuby] [Windows and MacOS] Vendored libiconv is updated to \u003ca href=\"https://savannah.gnu.org/news/?id=10703\"\u003ev1.18\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.9 / 2025-07-20\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Applied upstream libxml2 patches to address CVE-2025-6021, CVE-2025-6170, CVE-2025-49794, CVE-2025-49795, and CVE-2025-49796. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-353f-x4gh-cqq8\"\u003eGHSA-353f-x4gh-cqq8\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.8 / 2025-04-21\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.8\"\u003ev2.13.8\u003c/a\u003e to address CVE-2025-32414 and CVE-2025-32415. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-5w6v-399v-w3cc\"\u003eGHSA-5w6v-399v-w3cc\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.7 / 2025-03-31\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.7\"\u003ev2.13.7\u003c/a\u003e, which is a bugfix release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.6 / 2025-03-24\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d9130457369de8a6efcb764e6da2cb80d5d3b6dd\"\u003e\u003ccode\u003ed913045\u003c/code\u003e\u003c/a\u003e version bump to v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/b81cb9869e8ed7d1785da3363ef490f455da96eb\"\u003e\u003ccode\u003eb81cb98\u003c/code\u003e\u003c/a\u003e doc: update CHANGELOG for upcoming v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/8e668095c6147def4a3ec044df5f2a478c8161c3\"\u003e\u003ccode\u003e8e66809\u003c/code\u003e\u003c/a\u003e C14n raise on failure (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3600\"\u003e#3600\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/5b77f3d1c48cc09c92d10046c448a0866380eb4a\"\u003e\u003ccode\u003e5b77f3d\u003c/code\u003e\u003c/a\u003e Raise RuntimeError when canonicalization fails\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/edc559565819459d92f6db609f068f50491a57f9\"\u003e\u003ccode\u003eedc5595\u003c/code\u003e\u003c/a\u003e Thank sponsors in the README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d4dc245dfafd7ba42538051b0979306c8e5dc6f2\"\u003e\u003ccode\u003ed4dc245\u003c/code\u003e\u003c/a\u003e dep: update rdoc to v7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d77bfb66302532b90c0f340ed6b4ae74f275dde8\"\u003e\u003ccode\u003ed77bfb6\u003c/code\u003e\u003c/a\u003e version bump to v1.19.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/1eb5c2c035b360fd1195de0b274e901b6e0c12dd\"\u003e\u003ccode\u003e1eb5c2c\u003c/code\u003e\u003c/a\u003e dev: convert scripts/test-gem-set to use mise\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/88a120fd8198cd49b7cbe6388c92cd92d776407d\"\u003e\u003ccode\u003e88a120f\u003c/code\u003e\u003c/a\u003e dep: Add native Ruby 4 support, drop Ruby 3.1 support (v1.19.x) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3592\"\u003e#3592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/f8c8f74e846ea49d2cb221710cc08618842ba21e\"\u003e\u003ccode\u003ef8c8f74\u003c/code\u003e\u003c/a\u003e Skip the parser compression test for Windows system libs\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sparklemotion/nokogiri/compare/v1.11.0...v1.19.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rack` from 3.0.10 to 3.1.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/releases\"\u003erack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.9.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed ReDoS in Accept header parsing [CVE-2024-26146]\u003c/li\u003e\n\u003cli\u003eFixed ReDoS in Content Type header parsing [CVE-2024-25126]\u003c/li\u003e\n\u003cli\u003eReject Range headers which are too large [CVE-2024-26141]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.9...v3.0.9.1\"\u003ehttps://github.com/rack/rack/compare/v3.0.9...v3.0.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix content-length calcuation in Rack:Response#write \u003ca href=\"https://redirect.github.com/rack/rack/issues/2150\"\u003e#2150\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.8...v3.0.9\"\u003ehttps://github.com/rack/rack/compare/v3.0.8...v3.0.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u0026quot;Fix some unused variable verbose warnings\u0026quot; by \u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2084\"\u003erack/rack#2084\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/skipkayhil\"\u003e\u003ccode\u003e@​skipkayhil\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2084\"\u003erack/rack#2084\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.7...v3.0.8\"\u003ehttps://github.com/rack/rack/compare/v3.0.7...v3.0.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u0026quot;Make query parameters without = have nil values\u0026quot;. by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2060\"\u003erack/rack#2060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.6.1...v3.0.7\"\u003ehttps://github.com/rack/rack/compare/v3.0.6.1...v3.0.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.6.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev3.0.4.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.4...v3.0.4.1\"\u003ehttps://github.com/rack/rack/compare/v3.0.4...v3.0.4.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.4\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.3...v3.0.4\"\u003ehttps://github.com/rack/rack/compare/v3.0.3...v3.0.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRelease v3.0.3 by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rack/rack/pull/2000\"\u003erack/rack#2000\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.2...v3.0.3\"\u003ehttps://github.com/rack/rack/compare/v3.0.2...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.2\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rack/rack/compare/v3.0.1...v3.0.2\"\u003ehttps://github.com/rack/rack/compare/v3.0.1...v3.0.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rack/rack/blob/main/CHANGELOG.md\"\u003erack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.1.21] - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-7mqq-6cf9-v2qp\"\u003eCVE-2026-34763\u003c/a\u003e Root directory disclosure via unescaped regex interpolation in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v569-hp3g-36wr\"\u003eCVE-2026-34230\u003c/a\u003e Avoid O(n^2) algorithm in \u003ccode\u003eRack::Utils.select_best_encoding\u003c/code\u003e which could lead to denial of service.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qfgr-crr9-7r49\"\u003eCVE-2026-32762\u003c/a\u003e Forwarded header semicolon injection enables Host and Scheme spoofing.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-vgpv-f759-9wx3\"\u003eCVE-2026-26961\u003c/a\u003e Raise error for multipart requests with multiple boundary parameters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q4qf-9j86-f5mh\"\u003eCVE-2026-34786\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e \u003ccode\u003eheader_rules\u003c/code\u003e bypass via URL-encoded path mismatch.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-q2ww-5357-x388\"\u003eCVE-2026-34831\u003c/a\u003e \u003ccode\u003eContent-Length\u003c/code\u003e mismatch in \u003ccode\u003eRack::Files\u003c/code\u003e error responses.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-x8cg-fq8g-mxfx\"\u003eCVE-2026-34826\u003c/a\u003e Multipart byte range processing allows denial of service via excessive overlapping ranges.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-g2pf-xv49-m2h5\"\u003eCVE-2026-34835\u003c/a\u003e \u003ccode\u003eRack::Request\u003c/code\u003e accepts invalid Host characters, enabling host allowlist bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-qv7j-4883-hwh7\"\u003eCVE-2026-34830\u003c/a\u003e \u003ccode\u003eRack::Sendfile\u003c/code\u003e header-based \u003ccode\u003eX-Accel-Mapping\u003c/code\u003e regex injection enables unauthorized \u003ccode\u003eX-Accel-Redirect\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-h2jq-g4cq-5ppq\"\u003eCVE-2026-34785\u003c/a\u003e \u003ccode\u003eRack::Static\u003c/code\u003e prefix matching can expose unintended files under the static root.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-8vqr-qjwx-82mw\"\u003eCVE-2026-34829\u003c/a\u003e Multipart parsing without \u003ccode\u003eContent-Length\u003c/code\u003e header allows unbounded chunked file uploads.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-v6x5-cg8r-vv6x\"\u003eCVE-2026-34827\u003c/a\u003e Multipart header parsing allows denial of service via escape-heavy quoted parameters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.20] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-whrj-4476-wvmp\"\u003eCVE-2026-25500\u003c/a\u003e XSS injection via malicious filename in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-mxw3-3hh2-x2mh\"\u003eCVE-2026-22860\u003c/a\u003e Directory traversal via root prefix bypass in \u003ccode\u003eRack::Directory\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.19] - 2025-11-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMultipart parser: limit MIME header size check to the unread buffer region to avoid false \u003ccode\u003emultipart mime part header too large\u003c/code\u003e errors when previously read data accumulates in the scan buffer. (\u003ca href=\"https://redirect.github.com/rack/rack/pull/2392\"\u003e#2392\u003c/a\u003e, \u003ca href=\"https://github.com/alpaca-tc\"\u003e\u003ccode\u003e@​alpaca-tc\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/willnet\"\u003e\u003ccode\u003e@​willnet\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/krororo\"\u003e\u003ccode\u003e@​krororo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.18] - 2025-10-10\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-r657-rxjc-j557\"\u003eCVE-2025-61780\u003c/a\u003e Improper handling of headers in \u003ccode\u003eRack::Sendfile\u003c/code\u003e may allow proxy bypass.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-6xw4-3v39-52mm\"\u003eCVE-2025-61919\u003c/a\u003e Unbounded read in \u003ccode\u003eRack::Request\u003c/code\u003e form parsing can lead to memory exhaustion.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.17] - 2025-10-07\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-wpv5-97wm-hp9c\"\u003eCVE-2025-61772\u003c/a\u003e Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-w9pc-fmgc-vxvw\"\u003eCVE-2025-61771\u003c/a\u003e Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-p543-xpfm-54cp\"\u003eCVE-2025-61770\u003c/a\u003e Unbounded multipart preamble buffering enables DoS (memory exhaustion)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.1.16] - 2025-06-04\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/advisories/GHSA-47m2-26rw-j2jw\"\u003eCVE-2025-49007\u003c/a\u003e Fix ReDoS in multipart request.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/ae8431120e66e92d1885ab8ec0a553d9cad5ec13\"\u003e\u003ccode\u003eae84311\u003c/code\u003e\u003c/a\u003e Bump patch version.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/87961c306df1894fb5efaa57d29179091b4bc194\"\u003e\u003ccode\u003e87961c3\u003c/code\u003e\u003c/a\u003e Fix typo in test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/fd1c23dc762225e68b50d392142e6a6bf54bf9af\"\u003e\u003ccode\u003efd1c23d\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003elogger\u003c/code\u003e to gemfile.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/c59d924f215e41ae8ce1bae1633c34f1ca64b182\"\u003e\u003ccode\u003ec59d924\u003c/code\u003e\u003c/a\u003e Fix test expectation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/176f468e0d575e2f4d7583ff95f30bb53360e3fe\"\u003e\u003ccode\u003e176f468\u003c/code\u003e\u003c/a\u003e Add Ruby v4.0 to the test matrix.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/28569342665fee07f161f0974826eb85c1244533\"\u003e\u003ccode\u003e2856934\u003c/code\u003e\u003c/a\u003e Drop EOL Rubies from external tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/17ce7836be1523a7b453f3c06fe070ad7c954708\"\u003e\u003ccode\u003e17ce783\u003c/code\u003e\u003c/a\u003e Limit the number of quoted escapes during multipart parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/367a2a0ec6fbef605c9412dadfd5763b7867441f\"\u003e\u003ccode\u003e367a2a0\u003c/code\u003e\u003c/a\u003e Add Content-Length size check in Rack::Multipart::Parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/a17cb99b3440a4db09fb920407adf5ead127704c\"\u003e\u003ccode\u003ea17cb99\u003c/code\u003e\u003c/a\u003e Fix root prefix bug in Rack::Static\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rack/rack/commit/59a0966a484f2903833fa3e4c81919d3c645738d\"\u003e\u003ccode\u003e59a0966\u003c/code\u003e\u003c/a\u003e Only do a simple substitution on the x-accel-mapping paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rack/rack/compare/3.0.0...v3.1.21\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `puma` from 6.4.2 to 6.4.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/puma/puma/releases\"\u003epuma's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e6.4.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity\n\u003cul\u003e\n\u003cli\u003eDiscards any headers using underscores if the non-underscore version also exists. Without this, an attacker could overwrite values set by intermediate proxies (e.g. X-Forwarded-For). (\u003ca href=\"https://github.com/puma/puma/security/advisories/GHSA-9hf4-67fc-4vf4\"\u003eCVE-2024-45614\u003c/a\u003e/GHSA-9hf4-67fc-4vf4)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/puma/puma/blob/main/History.md\"\u003epuma's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e6.4.3 / 2024-09-19\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity\n\u003cul\u003e\n\u003cli\u003eDiscards any headers using underscores if the non-underscore version also exists. Without this, an attacker could overwrite values set by intermediate proxies (e.g. X-Forwarded-For). (\u003ca href=\"https://github.com/puma/puma/security/advisories/GHSA-9hf4-67fc-4vf4\"\u003eCVE-2024-45614\u003c/a\u003e/GHSA-9hf4-67fc-4vf4)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/puma/puma/commit/e867e53aa4e7df91fa97d8995a80fc2f9466a080\"\u003e\u003ccode\u003ee867e53\u003c/code\u003e\u003c/a\u003e 6.4.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/puma/puma/commit/63a27b5b5bc333bb123d34359fb0a10488bf7392\"\u003e\u003ccode\u003e63a27b5\u003c/code\u003e\u003c/a\u003e 5.6.9 release note [ci skip]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/puma/puma/commit/cac3fd18cf29ed43719ff5d52d9cfec215f0a043\"\u003e\u003ccode\u003ecac3fd1\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/puma/puma/compare/v6.4.2...v6.4.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google-protobuf` from 4.26.1 to 4.27.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/protocolbuffers/protobuf/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rexml` from 3.2.8 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/releases\"\u003erexml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eREXML 3.4.2 - 2025-08-26\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/rexml/blob/master/NEWS.md\"\u003erexml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.4.2 - 2025-08-26 {#version-3-4-2}\u003c/h2\u003e\n\u003ch3\u003eImprovement\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eImproved performance.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/244\"\u003eGH-244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/245\"\u003eGH-245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/246\"\u003eGH-246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/249\"\u003eGH-249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/256\"\u003eGH-256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRaise appropriate exception when failing to match start tag in DOCTYPE\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/247\"\u003eGH-247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeprecate accepting array as an element in XPath.match, first and each\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/252\"\u003eGH-252\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by tomoya ishida\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDon't call needless encoding_updated\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/259\"\u003eGH-259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by Sutou Kouhei\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eReuse XPath::match\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/263\"\u003eGH-263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCache redundant calls for doctype\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003eGH-264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUse Safe Navigation (\u0026amp;.) from Ruby 2.3\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003eGH-265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eRemove redundant return statements\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003eGH-266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by pboling\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded XML declaration check \u0026amp; Source#skip_spaces method\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003eGH-282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by NAITOH Jun\u003c/li\u003e\n\u003cli\u003eReported by Sofi Aberegg\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix docs typo\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/248\"\u003eGH-248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePatch by James Coleman\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/f36916fe1c66b8cdc1fe482263115625e084d8fe\"\u003e\u003ccode\u003ef36916f\u003c/code\u003e\u003c/a\u003e Add 3.4.2 entry (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23\"\u003e\u003ccode\u003e5859bde\u003c/code\u003e\u003c/a\u003e Added XML declaration check \u0026amp; \u003ccode\u003eSource#skip_spaces\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/1d876e3bf658b7b4ec7c3372867521695e8eb023\"\u003e\u003ccode\u003e1d876e3\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c87bda8bb8773da7e5a0faf9f16ff165eb052a35\"\u003e\u003ccode\u003ec87bda8\u003c/code\u003e\u003c/a\u003e Remove ostruct from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/281\"\u003e#281\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/c60ae027a3c20f359fdf76fa41ae64d22313f482\"\u003e\u003ccode\u003ec60ae02\u003c/code\u003e\u003c/a\u003e Remove bundler from dev deps (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/277\"\u003e#277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/9b084d78708638cedff54743edc0907c4bd6574a\"\u003e\u003ccode\u003e9b084d7\u003c/code\u003e\u003c/a\u003e Fix \u0026amp; Deprecate REXML::Text#text_indent (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/04a589a61bf4e366abee8764ee74b03f4aecc4aa\"\u003e\u003ccode\u003e04a589a\u003c/code\u003e\u003c/a\u003e Fix a bug that XPath can't be used for no document element (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/66232eaf680d0937ae59bea285cdb8e4d3d88a93\"\u003e\u003ccode\u003e66232ea\u003c/code\u003e\u003c/a\u003e Remove redundant return statements (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/266\"\u003e#266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/63f3e9772595a64b036953f0ab026d2ea5560a3b\"\u003e\u003ccode\u003e63f3e97\u003c/code\u003e\u003c/a\u003e Use Safe Navigation (\u0026amp;.) from Ruby 2.3 (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/rexml/commit/d427fc5914fcc17d7247c5ff9099ee38639d6702\"\u003e\u003ccode\u003ed427fc5\u003c/code\u003e\u003c/a\u003e Avoid redundant calls for doctype (\u003ca href=\"https://redirect.github.com/ruby/rexml/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/rexml/compare/v3.2.8...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `webrick` from 1.8.1 to 1.8.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby/webrick/releases\"\u003ewebrick's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop commented-out line by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/108\"\u003eruby/webrick#108\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Ruby 3.1 \u0026amp; 3.2 to CI matrix by \u003ca href=\"https://github.com/tricknotes\"\u003e\u003ccode\u003e@​tricknotes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/109\"\u003eruby/webrick#109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix/redos by \u003ca href=\"https://github.com/ooooooo-q\"\u003e\u003ccode\u003e@​ooooooo-q\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/114\"\u003eruby/webrick#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRaise HTTPStatus::BadRequest for requests with invalid/duplicate content-length headers by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/120\"\u003eruby/webrick#120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/121\"\u003eruby/webrick#121\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove CI by \u003ca href=\"https://github.com/hsbt\"\u003e\u003ccode\u003e@​hsbt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/123\"\u003eruby/webrick#123\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix WEBrick::TestFileHandler#test_short_filename test not working on mswin by \u003ca href=\"https://github.com/KJTsanaktsidis\"\u003e\u003ccode\u003e@​KJTsanaktsidis\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/128\"\u003eruby/webrick#128\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix bug chunk extension detection by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/125\"\u003eruby/webrick#125\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI. by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/131\"\u003eruby/webrick#131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMerge multiple cookie headers, preserving semantic correctness. by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/130\"\u003eruby/webrick#130\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTest on macos-latest by \u003ca href=\"https://github.com/byroot\"\u003e\u003ccode\u003e@​byroot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/132\"\u003eruby/webrick#132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire CRLF line endings in request line and headers by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/138\"\u003eruby/webrick#138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrefer squigly heredocs. by \u003ca href=\"https://github.com/ioquatix\"\u003e\u003ccode\u003e@​ioquatix\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/143\"\u003eruby/webrick#143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly strip space and horizontal tab in headers by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/141\"\u003eruby/webrick#141\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTreat missing CRLF separator after headers as an EOFError by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/142\"\u003eruby/webrick#142\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReturn 400 response for chunked requests with unexpected data after chunk by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/136\"\u003eruby/webrick#136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix reference to URI::REGEXP::PATTERN::HOST by \u003ca href=\"https://github.com/casperisfine\"\u003e\u003ccode\u003e@​casperisfine\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/144\"\u003eruby/webrick#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrevent request smuggling by \u003ca href=\"https://github.com/jeremyevans\"\u003e\u003ccode\u003e@​jeremyevans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/146\"\u003eruby/webrick#146\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tricknotes\"\u003e\u003ccode\u003e@​tricknotes\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/109\"\u003eruby/webrick#109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ooooooo-q\"\u003e\u003ccode\u003e@​ooooooo-q\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/114\"\u003eruby/webrick#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KJTsanaktsidis\"\u003e\u003ccode\u003e@​KJTsanaktsidis\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/128\"\u003eruby/webrick#128\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/byroot\"\u003e\u003ccode\u003e@​byroot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/132\"\u003eruby/webrick#132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/casperisfine\"\u003e\u003ccode\u003e@​casperisfine\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby/webrick/pull/144\"\u003eruby/webrick#144\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby/webrick/compare/v1.8.1...v1.8.2\"\u003ehttps://github.com/ruby/webrick/compare/v1.8.1...v1.8.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/0fb9de6788a3ba5fe903e63d778a0fb8c1dce786\"\u003e\u003ccode\u003e0fb9de6\u003c/code\u003e\u003c/a\u003e Bump up v1.8.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/b9a4c81ea94dec02a750c6b34092c55234519bf1\"\u003e\u003ccode\u003eb9a4c81\u003c/code\u003e\u003c/a\u003e Removed trailing spaces\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/f5faca9222541591e1a7c3c97552ebb0c92733c7\"\u003e\u003ccode\u003ef5faca9\u003c/code\u003e\u003c/a\u003e Prevent request smuggling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/0c600e169bd4ae267cb5eeb6197277c848323bbe\"\u003e\u003ccode\u003e0c600e1\u003c/code\u003e\u003c/a\u003e Fix reference to URI::REGEXP::PATTERN::HOST\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/15a93914782789520837c334e0c302702aec34e2\"\u003e\u003ccode\u003e15a9391\u003c/code\u003e\u003c/a\u003e Return 400 response for chunked requests with unexpected data after chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/2b38d5614e876d313fe981e87c4e35b91556d226\"\u003e\u003ccode\u003e2b38d56\u003c/code\u003e\u003c/a\u003e Treat missing CRLF separator after headers as an EOFError\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/e4efb4a2300540f14f93c09c06bf0357ac1597dc\"\u003e\u003ccode\u003ee4efb4a\u003c/code\u003e\u003c/a\u003e Remove unnecessary gsub calls in test_httprequest.rb\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/426e214532bb0be5e4ab8b3c9cef328432012d0d\"\u003e\u003ccode\u003e426e214\u003c/code\u003e\u003c/a\u003e Only strip space and horizontal tab in headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/e72cb697836e2ff201a4a74c108fdca9d3d2d0ed\"\u003e\u003ccode\u003ee72cb69\u003c/code\u003e\u003c/a\u003e Prefer squigly heredocs. (\u003ca href=\"https://redirect.github.com/ruby/webrick/issues/143\"\u003e#143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby/webrick/commit/ee60354bcb84ec33b9245e1d1aa6e1f7e8132101\"\u003e\u003ccode\u003eee60354\u003c/code\u003e\u003c/a\u003e Require CRLF line endings in request line and headers\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby/webrick/compare/v1.8.1...v1.8.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nokogiri` from 1.11.0 to 1.19.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/releases\"\u003enokogiri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003ecfdb0eafd9a554a88f12ebcc688d2b9005f9fce42b00b970e3dc199587b27f32  nokogiri-1.19.1-aarch64-linux-gnu.gem\r\n1e2150ab43c3b373aba76cd1190af7b9e92103564063e48c474f7600923620b5  nokogiri-1.19.1-aarch64-linux-musl.gem\r\n0a39ed59abe3bf279fab9dd4c6db6fe8af01af0608f6e1f08b8ffa4e5d407fa3  nokogiri-1.19.1-arm-linux-gnu.gem\r\n3a18e559ee499b064aac6562d98daab3d39ba6cbb4074a1542781b2f556db47d  nokogiri-1.19.1-arm-linux-musl.gem\r\ndfe2d337e6700eac47290407c289d56bcf85805d128c1b5a6434ddb79731cb9e  nokogiri-1.19.1-arm64-darwin.gem\r\n1e0bda88b1c6409f0edb9e0c25f1bf9ff4fa94c3958f492a10fcf50dda594365  nokogiri-1.19.1-java.gem\r\n110d92ae57694ae7866670d298a5d04cd150fae5a6a7849957d66f171e6aec9b  nokogiri-1.19.1-x64-mingw-ucrt.gem\r\n7093896778cc03efb74b85f915a775862730e887f2e58d6921e3fa3d981e68bf  nokogiri-1.19.1-x86_64-darwin.gem\r\n1a4902842a186b4f901078e692d12257678e6133858d0566152fe29cdb98456a  nokogiri-1.19.1-x86_64-linux-gnu.gem\r\n4267f38ad4fc7e52a2e7ee28ed494e8f9d8eb4f4b3320901d55981c7b995fc23  nokogiri-1.19.1-x86_64-linux-musl.gem\r\n598b327f36df0b172abd57b68b18979a6e14219353bca87180c31a51a00d5ad3  nokogiri-1.19.1.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e11a97ecc3c0e7e5edcf395720b10860ef493b768f6aa80c539573530bc933767  nokogiri-1.19.0-aarch64-linux-gnu.gem\r\neb70507f5e01bc23dad9b8dbec2b36ad0e61d227b42d292835020ff754fb7ba9  nokogiri-1.19.0-aarch64-linux-musl.gem\r\n572a259026b2c8b7c161fdb6469fa2d0edd2b61cd599db4bbda93289abefbfe5  nokogiri-1.19.0-arm-linux-gnu.gem\r\n23ed90922f1a38aed555d3de4d058e90850c731c5b756d191b3dc8055948e73c  nokogiri-1.19.0-arm-linux-musl.gem\r\n0811dfd936d5f6dd3f6d32ef790568bf29b2b7bead9ba68866847b33c9cf5810  nokogiri-1.19.0-arm64-darwin.gem\r\n5f3a70e252be641d8a4099f7fb4cc25c81c632cb594eec9b4b8f2ca8be4374f3  nokogiri-1.19.0-java.gem\r\n05d7ed2d95731edc9bef2811522dc396df3e476ef0d9c76793a9fca81cab056b  nokogiri-1.19.0-x64-mingw-ucrt.gem\r\n1dad56220b603a8edb9750cd95798bffa2b8dd9dd9aa47f664009ee5b43e3067  nokogiri-1.19.0-x86_64-darwin.gem\r\nf482b95c713d60031d48c44ce14562f8d2ce31e3a9e8dd0ccb131e9e5a68b58c  nokogiri-1.19.0-x86_64-linux-gnu.gem\r\n1c4ca6b381622420073ce6043443af1d321e8ed93cc18b08e2666e5bd02ffae4  nokogiri-1.19.0-x86_64-linux-musl.gem\r\ne304d21865f62518e04f2bf59f93bd3a97ca7b07e7f03952946d8e1c05f45695  nokogiri-1.19.0.gem\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md\"\u003enokogiri's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.1 / 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Address unchecked return value from \u003ccode\u003exmlC14NExecute\u003c/code\u003e which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532\"\u003eGHSA-wx95-c6cv-8532\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.19.0 / 2025-12-28\u003c/h2\u003e\n\u003ch4\u003eRuby\u003c/h4\u003e\n\u003cp\u003eThis release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce native gem support for Ruby 4.0. \u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3590\"\u003e#3590\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnd support for Ruby 3.1, for which \u003ca href=\"https://www.ruby-lang.org/en/downloads/branches/\"\u003eupstream support ended 2025-03-26\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnd support for JRuby 9.4 (which targets Ruby 3.1 compatibility).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.10 / 2025-09-15\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.9\"\u003ev2.13.9\u003c/a\u003e. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.\u003c/li\u003e\n\u003cli\u003e[CRuby] [Windows and MacOS] Vendored libiconv is updated to \u003ca href=\"https://savannah.gnu.org/news/?id=10703\"\u003ev1.18\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.9 / 2025-07-20\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Applied upstream libxml2 patches to address CVE-2025-6021, CVE-2025-6170, CVE-2025-49794, CVE-2025-49795, and CVE-2025-49796. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-353f-x4gh-cqq8\"\u003eGHSA-353f-x4gh-cqq8\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.8 / 2025-04-21\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.8\"\u003ev2.13.8\u003c/a\u003e to address CVE-2025-32414 and CVE-2025-32415. See \u003ca href=\"https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-5w6v-399v-w3cc\"\u003eGHSA-5w6v-399v-w3cc\u003c/a\u003e for more information.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.7 / 2025-03-31\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[CRuby] Vendored libxml2 is updated to \u003ca href=\"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.7\"\u003ev2.13.7\u003c/a\u003e, which is a bugfix release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.18.6 / 2025-03-24\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d9130457369de8a6efcb764e6da2cb80d5d3b6dd\"\u003e\u003ccode\u003ed913045\u003c/code\u003e\u003c/a\u003e version bump to v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/b81cb9869e8ed7d1785da3363ef490f455da96eb\"\u003e\u003ccode\u003eb81cb98\u003c/code\u003e\u003c/a\u003e doc: update CHANGELOG for upcoming v1.19.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/8e668095c6147def4a3ec044df5f2a478c8161c3\"\u003e\u003ccode\u003e8e66809\u003c/code\u003e\u003c/a\u003e C14n raise on failure (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3600\"\u003e#3600\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/5b77f3d1c48cc09c92d10046c448a0866380eb4a\"\u003e\u003ccode\u003e5b77f3d\u003c/code\u003e\u003c/a\u003e Raise RuntimeError when canonicalization fails\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/edc559565819459d92f6db609f068f50491a57f9\"\u003e\u003ccode\u003eedc5595\u003c/code\u003e\u003c/a\u003e Thank sponsors in the README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d4dc245dfafd7ba42538051b0979306c8e5dc6f2\"\u003e\u003ccode\u003ed4dc245\u003c/code\u003e\u003c/a\u003e dep: update rdoc to v7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/d77bfb66302532b90c0f340ed6b4ae74f275dde8\"\u003e\u003ccode\u003ed77bfb6\u003c/code\u003e\u003c/a\u003e version bump to v1.19.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/1eb5c2c035b360fd1195de0b274e901b6e0c12dd\"\u003e\u003ccode\u003e1eb5c2c\u003c/code\u003e\u003c/a\u003e dev: convert scripts/test-gem-set to use mise\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/88a120fd8198cd49b7cbe6388c92cd92d776407d\"\u003e\u003ccode\u003e88a120f\u003c/code\u003e\u003c/a\u003e dep: Add native Ruby 4 support, drop Ruby 3.1 support (v1.19.x) (\u003ca href=\"https://redirect.github.com/sparklemotion/nokogiri/issues/3592\"\u003e#3592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sparklemotion/nokogiri/commit/f8c8f74e846ea49d2cb221710cc08618842ba21e\"\u003e\u003ccode\u003ef8c8f74\u003c/code\u003e\u003c/a\u003e Skip the parser compression test for Windows system libs\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sparklemotion/nokogiri/compare/v1.11.0...v1.19.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sinatra` from 1.2.2 to 4.2.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sinatra/sinatra/blob/main/CHANGELOG.md\"\u003esinatra's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.2.0 / 2025-10-08\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew: Add \u003ccode\u003e:static_headers\u003c/code\u003e setting for custom headers in static file responses (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2089\"\u003e#2089\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Fix regex in \u003ccode\u003eetag_matches?\u003c/code\u003e to prevent ReDoS (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2121\"\u003e#2121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: \u003ccode\u003ePATH_INFO\u003c/code\u003e can never be empty (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2114\"\u003e#2114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Fix malformed Content-Type headers (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2081\"\u003e#2081\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Avoid crash for integer values in \u003ccode\u003econtent_type\u003c/code\u003e parameters (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2078\"\u003e#2078\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.1.1 / 2024-11-20\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix: Restore WEBrick support (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2067\"\u003e#2067\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.1.0 / 2024-11-18\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew: Add \u003ccode\u003ehost_authorization\u003c/code\u003e setting (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2053\"\u003e#2053\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eDefaults to \u003ccode\u003e.localhost\u003c/code\u003e, \u003ccode\u003e.test\u003c/code\u003e and any IP address in development mode.\u003c/li\u003e\n\u003cli\u003eSecurity: addresses \u003ca href=\"https://github.com/advisories/GHSA-hxx2-7vcw-mqr3\"\u003eCVE-2024-21510\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eFix: Return an instance of \u003ccode\u003eSinatra::IndifferentHash\u003c/code\u003e when calling \u003ccode\u003e#except\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2044\"\u003e#2044\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Address warning from \u003ccode\u003eURI\u003c/code\u003e for Ruby 3.4 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2060\"\u003e#2060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: \u003ccode\u003erackup\u003c/code\u003e no longer depends on WEBrick, recommend Puma instead (\u003ca href=\"https://github.com/sinatra/sinatra/commit/4a558503a0ee41f26d4ebc07b478340e8a8a5ed6\"\u003e\u003ccode\u003e4a558503\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Zeitwerk 2.7.0+ compatibility (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2050\"\u003e#2050\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Address warning about Hash construction for Ruby 3.4 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2028\"\u003e#2028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Declare missing dependencies for Ruby 3.5 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2032\"\u003e#2032\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Compatibility with \u003ccode\u003e--enable-frozen-string-literal\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2033\"\u003e#2033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix: Rack 3.1 compatibility (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2035\"\u003e#2035\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eDon't depend on \u003ccode\u003eRack::Logger\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDon't delete \u003ccode\u003econtent-length\u003c/code\u003e header when \u003ccode\u003eRack::Files\u003c/code\u003e is used\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.1 / 2025-05-24\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eRack 3.1 compatibility (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2035\"\u003e#2035\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix malformed Content-Type headers (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2081\"\u003e#2081\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAvoid crash for integer values in \u003ccode\u003econtent_type\u003c/code\u003e parameters (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2078\"\u003e#2078\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix compatibility with --enable-frozen-string-literal (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2033\"\u003e#2033\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDeclare missing dependencies for Ruby 3.5 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2032\"\u003e#2032\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix warning about Hash construction. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2028\"\u003e#2028\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSupport Zeitwerk 2.7.0+ (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2050\"\u003e#2050\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAddress URI depreciation (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2060\"\u003e#2060\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2035\"\u003e#2035\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2035\"\u003esinatra/sinatra#2035\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2081\"\u003e#2081\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2081\"\u003esinatra/sinatra#2081\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2078\"\u003e#2078\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2078\"\u003esinatra/sinatra#2078\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2033\"\u003e#2033\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sinatra/sinatra/pull/2033\"\u003esinatra/sinatra#2033\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/f2ad45f7d2456172974a30d300e9f82424336e09\"\u003e\u003ccode\u003ef2ad45f\u003c/code\u003e\u003c/a\u003e 4.2.0 release (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2122\"\u003e#2122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/3fe8c38dc405586f7ad8f2ac748aa53e9c3615bd\"\u003e\u003ccode\u003e3fe8c38\u003c/code\u003e\u003c/a\u003e Fix regex in \u003ccode\u003eetag_matches?\u003c/code\u003e to prevent ReDoS (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2121\"\u003e#2121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/fa99a21461d4f1f5337b9b9d7a38a1b51c8f4e55\"\u003e\u003ccode\u003efa99a21\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ePATH_INFO\u003c/code\u003e can never be empty. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2114\"\u003e#2114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/ea0d3fae36d8bba330c1d1f88ef1be2e9e54516a\"\u003e\u003ccode\u003eea0d3fa\u003c/code\u003e\u003c/a\u003e Skip broken tests. (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2115\"\u003e#2115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/5e1598501eb23a8673d61034df7be7d50c228400\"\u003e\u003ccode\u003e5e15985\u003c/code\u003e\u003c/a\u003e Sync changelog for v4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/91cfb548c9e50a65324a9ce9e4ea5f10cd897027\"\u003e\u003ccode\u003e91cfb54\u003c/code\u003e\u003c/a\u003e Add :static_headers setting for custom headers in static file responses (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2089\"\u003e#2089\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/c918134b0a520cb80b8b4cc3ab222cb6bbd9c827\"\u003e\u003ccode\u003ec918134\u003c/code\u003e\u003c/a\u003e Set \u003ccode\u003erubygems_mfa_required\u003c/code\u003e for the \u003ccode\u003esinatra\u003c/code\u003e gem (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2087\"\u003e#2087\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/ac3ff2363b6dfc61d2b438c4dfccc515bc6bf48c\"\u003e\u003ccode\u003eac3ff23\u003c/code\u003e\u003c/a\u003e README: Remove duplicate mention of installing puma (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2091\"\u003e#2091\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/cfcc70dee1133690207b5a3dc6000426ec04e250\"\u003e\u003ccode\u003ecfcc70d\u003c/code\u003e\u003c/a\u003e CI: don't use \u003ccode\u003eRack::Lint\u003c/code\u003e on invalid hostname (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2086\"\u003e#2086\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sinatra/sinatra/commit/c235249abaafa2780b540aca1813dfcf3d17c2dd\"\u003e\u003ccode\u003ec235249\u003c/code\u003e\u003c/a\u003e CI: Test with Ruby 3.4 (\u003ca href=\"https://redirect.github.com/sinatra/sinatra/issues/2083\"\u003e#2083\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sinatra/sinatra/compare/1.2.2...v4.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Trancendos/smoke-tests/network/alerts).\n\n\u003c/details\u003e\n\n\u003c!-- This is an auto-generated description by cubic. --\u003e\n---\n## Summary by cubic\nUpgrade the Ruby web stack across three bundler directories to pick up security fixes and align on Rack 3.x. This includes a major `sinatra` update and refreshed versions of core HTTP/XML gems.\n\n- **Dependencies**\n  - /bundler/multi-dir/bar: `rack` → 3.1.21, `nokogiri` → 1.19.1\n  - /bundler/multi-dir/foo: `sinatra` → 4.2.0 (adds `rack-protection` 4.2.0 and `rack-session` 2.1.1; uses `rack` 3.2.6), `nokogiri` → 1.19.1\n  - /bundler/security-subdep: `rack` → 3.1.21, `puma` → 6.4.3 (Gemfile constraint set to `~\u003e 6.4`), `google-protobuf` → 4.27.5, `rexml` → 3.4.2, `webrick` → 1.8.2\n\n- **Migration**\n  - Run `bundle install` in each updated directory.\n  - `sinatra` 4 requires Rack 3; review routes/middleware for 1.x → 4.x breaking changes.\n  - `nokogiri` 1.19 drops Ruby 3.1; ensure the Ruby version in use is supported.\n\n\u003csup\u003eWritten for commit 887ddced2c839581394eee7e6fb0f904e5d0193f. Summary will update on new commits.\u003c/sup\u003e\n\n\u003c!-- End of auto-generated description by cubic. --\u003e\n\n","html_url":"https://github.com/Trancendos/smoke-tests/pull/13","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Trancendos%2Fsmoke-tests/issues/13","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13/packages"}},{"old_version":"3.2.5","new_version":"3.4.4","update_type":"minor","path":"/site","pr_created_at":"2026-03-27T22:40:35.000Z","version_change":"3.2.5 → 3.4.4","issue":{"uuid":"4156303746","node_id":"PR_kwDOJaZ_ts7OLUpd","number":340,"state":"closed","title":"Bump the all group in /site with 35 updates","user":"dependabot[bot]","labels":["dependencies","ruby"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-27T22:48:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-27T22:40:35.000Z","updated_at":"2026-03-27T22:48:51.000Z","time_to_close":494,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"all","update_count":35,"packages":[{"name":"github-pages","old_version":"228","new_version":"232","repository_url":"https://github.com/github/pages-gem"},{"name":"activesupport","old_version":"7.0.5","new_version":"8.1.3","repository_url":"https://github.com/rails/rails"},{"name":"addressable","old_version":"2.8.4","new_version":"2.8.9","repository_url":"https://github.com/sporkmonger/addressable"},{"name":"coffee-script-source","old_version":"1.11.1","new_version":"1.12.2"},{"name":"commonmarker","old_version":"0.23.9","new_version":"0.23.12","repository_url":"https://github.com/gjtorikian/commonmarker"},{"name":"concurrent-ruby","old_version":"1.2.2","new_version":"1.3.6","repository_url":"https://github.com/ruby-concurrency/concurrent-ruby"},{"name":"dnsruby","old_version":"1.70.0","new_version":"1.73.1","repository_url":"https://github.com/alexdalitz/dnsruby"},{"name":"ethon","old_version":"0.16.0","new_version":"0.18.0","repository_url":"https://github.com/typhoeus/ethon"},{"name":"execjs","old_version":"2.8.1","new_version":"2.10.0","repository_url":"https://github.com/rails/execjs"},{"name":"faraday","old_version":"2.7.6","new_version":"2.14.1","repository_url":"https://github.com/lostisland/faraday"},{"name":"faraday-net_http","old_version":"3.0.2","new_version":"3.4.2","repository_url":"https://github.com/lostisland/faraday-net_http"},{"name":"gemoji","old_version":"3.0.1","new_version":"4.1.0","repository_url":"https://github.com/github/gemoji"},{"name":"github-pages-health-check","old_version":"1.17.9","new_version":"1.18.2","repository_url":"https://github.com/github/github-pages-health-check"},{"name":"http_parser.rb","old_version":"0.8.0","new_version":"0.8.1","repository_url":"https://github.com/tmm1/http_parser.rb"},{"name":"i18n","old_version":"1.14.1","new_version":"1.14.8","repository_url":"https://github.com/ruby-i18n/i18n"},{"name":"jekyll","old_version":"3.9.3","new_version":"3.10.0","repository_url":"https://github.com/jekyll/jekyll"},{"name":"jekyll-avatar","old_version":"0.7.0","new_version":"0.8.0","repository_url":"https://github.com/jekyll/jekyll-avatar"},{"name":"jekyll-coffeescript","old_version":"1.1.1","new_version":"1.2.2","repository_url":"https://github.com/jekyll/jekyll-coffeescript"},{"name":"jekyll-commonmark-ghpages","old_version":"0.4.0","new_version":"0.5.1","repository_url":"https://github.com/github/jekyll-commonmark-ghpages"},{"name":"jekyll-default-layout","old_version":"0.1.4","new_version":"0.1.5","repository_url":"https://github.com/benbalter/jekyll-default-layout"},{"name":"jekyll-feed","old_version":"0.15.1","new_version":"0.17.0","repository_url":"https://github.com/jekyll/jekyll-feed"},{"name":"jekyll-github-metadata","old_version":"2.13.0","new_version":"2.16.1","repository_url":"https://github.com/jekyll/github-metadata"},{"name":"jemoji","old_version":"0.12.0","new_version":"0.13.0","repository_url":"https://github.com/jekyll/jemoji"},{"name":"kramdown","old_version":"2.3.2","new_version":"2.4.0","repository_url":"https://github.com/gettalong/kramdown"},{"name":"listen","old_version":"3.8.0","new_version":"3.10.0","repository_url":"https://github.com/guard/listen"},{"name":"minitest","old_version":"5.18.0","new_version":"6.0.2","repository_url":"https://github.com/minitest/minitest"},{"name":"nokogiri","old_version":"1.15.2","new_version":"1.19.2","repository_url":"https://github.com/sparklemotion/nokogiri"},{"name":"public_suffix","old_version":"4.0.7","new_version":"5.1.1","repository_url":"https://github.com/weppos/publicsuffix-ruby"},{"name":"racc","old_version":"1.7.0","new_version":"1.8.1","repository_url":"https://github.com/ruby/racc"},{"name":"rexml","old_version":"3.2.5","new_version":"3.4.4","repository_url":"https://github.com/ruby/rexml"},{"name":"rouge","old_version":"3.26.0","new_version":"3.30.0","repository_url":"https://github.com/rouge-ruby/rouge"},{"name":"rubyzip","old_version":"2.3.2","new_version":"2.4.1","repository_url":"https://github.com/rubyzip/rubyzip"},{"name":"sawyer","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/lostisland/sawyer"},{"name":"simpleidn","old_version":"0.2.1","new_version":"0.2.3","repository_url":"https://github.com/mmriis/simpleidn"},{"name":"typhoeus","old_version":"1.4.0","new_version":"1.6.0","repository_url":"https://github.com/typhoeus/typhoeus"}],"path":"/site","ecosystem":"rubygems"},"body":"Bumps the all group in /site with 35 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github-pages](https://github.com/github/pages-gem) | `228` | `232` |\n| [activesupport](https://github.com/rails/rails) | `7.0.5` | `8.1.3` |\n| [addressable](https://github.com/sporkmonger/addressable) | `2.8.4` | `2.8.9` |\n| [coffee-script-source](http://coffeescript.org) | `1.11.1` | `1.12.2` |\n| [commonmarker](https://github.com/gjtorikian/commonmarker) | `0.23.9` | `0.23.12` |\n| [concurrent-ruby](https://github.com/ruby-concurrency/concurrent-ruby) | `1.2.2` | `1.3.6` |\n| [dnsruby](https://github.com/alexdalitz/dnsruby) | `1.70.0` | `1.73.1` |\n| [ethon](https://github.com/typhoeus/ethon) | `0.16.0` | `0.18.0` |\n| [execjs](https://github.com/rails/execjs) | `2.8.1` | `2.10.0` |\n| [faraday](https://github.com/lostisland/faraday) | `2.7.6` | `2.14.1` |\n| [faraday-net_http](https://github.com/lostisland/faraday-net_http) | `3.0.2` | `3.4.2` |\n| [gemoji](https://github.com/github/gemoji) | `3.0.1` | `4.1.0` |\n| [github-pages-health-check](https://github.com/github/github-pages-health-check) | `1.17.9` | `1.18.2` |\n| [http_parser.rb](https://github.com/tmm1/http_parser.rb) | `0.8.0` | `0.8.1` |\n| [i18n](https://github.com/ruby-i18n/i18n) | `1.14.1` | `1.14.8` |\n| [jekyll](https://github.com/jekyll/jekyll) | `3.9.3` | `3.10.0` |\n| [jekyll-avatar](https://github.com/jekyll/jekyll-avatar) | `0.7.0` | `0.8.0` |\n| [jekyll-coffeescript](https://github.com/jekyll/jekyll-coffeescript) | `1.1.1` | `1.2.2` |\n| [jekyll-commonmark-ghpages](https://github.com/github/jekyll-commonmark-ghpages) | `0.4.0` | `0.5.1` |\n| [jekyll-default-layout](https://github.com/benbalter/jekyll-default-layout) | `0.1.4` | `0.1.5` |\n| [jekyll-feed](https://github.com/jekyll/jekyll-feed) | `0.15.1` | `0.17.0` |\n| [jekyll-github-metadata](https://github.com/jekyll/github-metadata) | `2.13.0` | `2.16.1` |\n| [jemoji](https://github.com/jekyll/jemoji) | `0.12.0` | `0.13.0` |\n| [kramdown](https://github.com/gettalong/kramdown) | `2.3.2` | `2.4.0` |\n| [listen](https://github.com/guard/listen) | `3.8.0` | `3.10.0` |\n| [minitest](https://github.com/minitest/minitest) | `5.18.0` | `6.0.2` |\n| [nokogiri](https://github.com/sparklemotion/nokogiri) | `1.15.2` | `1.19.2` |\n| [public_suffix](https://github.com/weppos/publicsuffix-ruby) | `4.0.7` | `5.1.1` |\n| [racc](https://github.com/ruby/racc) | `1.7.0` | `1.8.1` |\n| [rexml](https://github.com/ruby/rexml) | `3.2.5` | `3.4.4` |\n| [rouge](https://github.com/rouge-ruby/rouge) | `3.26.0` | `3.30.0` |\n| [rubyzip](https://github.com/rubyzip/rubyzip) | `2.3.2` | `2.4.1` |\n| [sawyer](https://github.com/lostisland/sawyer) | `0.9.2` | `0.9.3` |\n| [simpleidn](https://github.com/mmriis/simpleidn) | `0.2.1` | `0.2.3` |\n| [typhoeus](https://github.com/typhoeus/typhoeus) | `1.4.0` | `1.6.0` |\n\nUpdates `github-pages` from 228 to 232\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/github/pages-gem/releases\"\u003egithub-pages's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev232\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump docker/build-push-action from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/916\"\u003egithub/pages-gem#916\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix obscured gemfile issue by \u003ca href=\"https://github.com/mrmanc\"\u003e\u003ccode\u003e@​mrmanc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/912\"\u003egithub/pages-gem#912\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd webrick as Ruby 3 doesn’t include it by \u003ca href=\"https://github.com/mrmanc\"\u003e\u003ccode\u003e@​mrmanc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/914\"\u003egithub/pages-gem#914\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate nokogiri CVE-2024-25062 by \u003ca href=\"https://github.com/naxhh\"\u003e\u003ccode\u003e@​naxhh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/911\"\u003egithub/pages-gem#911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eParkr jekyll3.10 by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/919\"\u003egithub/pages-gem#919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix improperly bound regex by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/921\"\u003egithub/pages-gem#921\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrep 232 by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/923\"\u003egithub/pages-gem#923\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/naxhh\"\u003e\u003ccode\u003e@​naxhh\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/911\"\u003egithub/pages-gem#911\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/github/pages-gem/compare/v231...v232\"\u003ehttps://github.com/github/pages-gem/compare/v231...v232\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev231\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRevert jekyll-relative-links to 0.6.1 and add a test by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/910\"\u003egithub/pages-gem#910\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/github/pages-gem/compare/v230...v231\"\u003ehttps://github.com/github/pages-gem/compare/v230...v231\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev230\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump docker/login-action from 2 to 3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/907\"\u003egithub/pages-gem#907\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump docker/build-push-action from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/905\"\u003egithub/pages-gem#905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump docker/setup-buildx-action from 2 to 3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/906\"\u003egithub/pages-gem#906\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Jekyll to 3.9.5 by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/908\"\u003egithub/pages-gem#908\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/github/pages-gem/compare/v229...v230\"\u003ehttps://github.com/github/pages-gem/compare/v229...v230\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev229\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump docker/metadata-action from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/889\"\u003egithub/pages-gem#889\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/888\"\u003egithub/pages-gem#888\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes \u003ccode\u003e$github-pages health-check\u003c/code\u003e NoMethodError by \u003ca href=\"https://github.com/edward\"\u003e\u003ccode\u003e@​edward\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/878\"\u003egithub/pages-gem#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport Ruby 3.2+, fixes \u003ca href=\"https://redirect.github.com/github/pages-gem/issues/879\"\u003e#879\u003c/a\u003e by \u003ca href=\"https://github.com/fulldecent\"\u003e\u003ccode\u003e@​fulldecent\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/880\"\u003egithub/pages-gem#880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCreate publish-gem.yml by \u003ca href=\"https://github.com/tsusdere\"\u003e\u003ccode\u003e@​tsusdere\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/898\"\u003egithub/pages-gem#898\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/900\"\u003egithub/pages-gem#900\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable multi arch docker image build by \u003ca href=\"https://github.com/rngtng\"\u003e\u003ccode\u003e@​rngtng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/884\"\u003egithub/pages-gem#884\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBring back proper support for Ruby 3.x by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/901\"\u003egithub/pages-gem#901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump dependencies (patch and minor only) by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/902\"\u003egithub/pages-gem#902\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix release script by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/903\"\u003egithub/pages-gem#903\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnother publish script fix by \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/904\"\u003egithub/pages-gem#904\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/edward\"\u003e\u003ccode\u003e@​edward\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/878\"\u003egithub/pages-gem#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fulldecent\"\u003e\u003ccode\u003e@​fulldecent\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/880\"\u003egithub/pages-gem#880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tsusdere\"\u003e\u003ccode\u003e@​tsusdere\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/github/pages-gem/pull/898\"\u003egithub/pages-gem#898\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/c34277c8ff6a2c86bfb19f17f35de573e796f030\"\u003e\u003ccode\u003ec34277c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/pages-gem/issues/923\"\u003e#923\u003c/a\u003e from github/prep-232\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/4565c456bab6bbea3d1f618e7ff7f333571e4951\"\u003e\u003ccode\u003e4565c45\u003c/code\u003e\u003c/a\u003e Prep 232\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/0d149e93f9a1cde29d77052ddc981510c51e9a5a\"\u003e\u003ccode\u003e0d149e9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/pages-gem/issues/921\"\u003e#921\u003c/a\u003e from github/regex\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/fdf1e16adb69567277abd5a5fc9ec4e4f9d7d03c\"\u003e\u003ccode\u003efdf1e16\u003c/code\u003e\u003c/a\u003e Escape all the dots\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/1c47cb2cfdac3f3070093f601ea096970899afb2\"\u003e\u003ccode\u003e1c47cb2\u003c/code\u003e\u003c/a\u003e Fix improperly bound regex\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/43aa23e95ff311daf09da36ee9c6aec9963cd26d\"\u003e\u003ccode\u003e43aa23e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/pages-gem/issues/919\"\u003e#919\u003c/a\u003e from github/parkr-jekyll3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/0a6fecc6683a7780fa9840389d3b49bc9cd18b73\"\u003e\u003ccode\u003e0a6fecc\u003c/code\u003e\u003c/a\u003e Attempt to move webrick to the gemspec instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/f430f404e8863be299ef39a0d6032c5d71da9193\"\u003e\u003ccode\u003ef430f40\u003c/code\u003e\u003c/a\u003e nil webrick test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/48dca23c8ce904c9235ef38915ad067f43cc24ff\"\u003e\u003ccode\u003e48dca23\u003c/code\u003e\u003c/a\u003e cosmetic\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/pages-gem/commit/7b839b231b0a8e753951ebb370bd1ad184281e85\"\u003e\u003ccode\u003e7b839b2\u003c/code\u003e\u003c/a\u003e Add webrick to core\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/github/pages-gem/compare/v228...v232\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `activesupport` from 7.0.5 to 8.1.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/releases\"\u003eactivesupport's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.1.3\u003c/h2\u003e\n\u003ch2\u003eActive Support\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\r\n  inflect.acronym \u0026quot;USD\u0026quot;\r\n  inflect.acronym \u0026quot;USDC\u0026quot;\r\nend\r\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eActive Model\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix Ruby 4.0 delegator warning when calling inspect on attributes.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eHammad Khan\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eNoMethodError\u003c/code\u003e when deserialising \u003ccode\u003eType::Integer\u003c/code\u003e objects marshalled under Rails 8.0.\u003c/p\u003e\n\u003cp\u003eThe performance optimisation that replaced \u003ccode\u003e@range\u003c/code\u003e with \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e\nbroke Marshal compatibility. Objects serialised under 8.0 (with \u003ccode\u003e@range\u003c/code\u003e)\nand deserialised under 8.1 (expecting \u003ccode\u003e@max\u003c/code\u003e/\u003ccode\u003e@min\u003c/code\u003e) would crash with\n\u003ccode\u003eundefined method '\u0026lt;=' for nil\u003c/code\u003e because \u003ccode\u003eMarshal.load\u003c/code\u003e restores instance\nvariables without calling \u003ccode\u003einitialize\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/rails/blob/v8.1.3/activesupport/CHANGELOG.md\"\u003eactivesupport's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRails 8.1.3 (March 24, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eJSONGemCoderEncoder\u003c/code\u003e to correctly serialize custom object hash keys.\u003c/p\u003e\n\u003cp\u003eWhen hash keys are custom objects whose \u003ccode\u003eas_json\u003c/code\u003e returns a Hash,\nthe encoder now calls \u003ccode\u003eto_s\u003c/code\u003e on the original key object instead of\non the \u003ccode\u003eas_json\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eBefore:\nhash = {CustomKey.new(123) =\u0026gt; \u0026quot;value\u0026quot;}\nhash.to_json  # =\u0026gt; {\u0026quot;{:id=\u0026gt;123}\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003eAfter:\nhash.to_json  # =\u0026gt; {\u0026quot;custom_123\u0026quot;:\u0026quot;value\u0026quot;}\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eDan Sharp\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix inflections to better handle overlapping acronyms.\u003c/p\u003e\n\u003cpre lang=\"ruby\"\u003e\u003ccode\u003eActiveSupport::Inflector.inflections(:en) do |inflect|\n  inflect.acronym \u0026quot;USD\u0026quot;\n  inflect.acronym \u0026quot;USDC\u0026quot;\nend\n\u003cp\u003e\u0026quot;USDC\u0026quot;.underscore # =\u0026gt; \u0026quot;usdc\u0026quot;\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eSaid Kaldybaev\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSilence Dalli 4.0+ warning when using \u003ccode\u003eActiveSupport::Cache::MemCacheStore\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003ezzak\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRails 8.1.2.1 (March 23, 2026)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eReject scientific notation in NumberConverter\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33176]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/p\u003e\n\u003cp\u003e[CVE-2026-33170]\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eJean Boussier\u003c/em\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImprove performance of NumberToDelimitedConverter\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/fa8f0812160665bff083a089d2bb2fc1817ea03e\"\u003e\u003ccode\u003efa8f081\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/63cef3de3bd88d5973837ea268dc710e7dbf7b8e\"\u003e\u003ccode\u003e63cef3d\u003c/code\u003e\u003c/a\u003e Merge branch '8-1-sec' into 8-1-stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1db4b89687cc18311fc3f92623136705df24e671\"\u003e\u003ccode\u003e1db4b89\u003c/code\u003e\u003c/a\u003e Preparing for 8.1.2.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/1c7d1cf0a1ab4142eb20ef30fe2062aad6f72e21\"\u003e\u003ccode\u003e1c7d1cf\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/ec1a0e215efd27a3b3911aae6df978a80f456a49\"\u003e\u003ccode\u003eec1a0e2\u003c/code\u003e\u003c/a\u003e Improve performance of NumberToDelimitedConverter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/50d732af3b7c8aaf63cbcca0becbc00279b215b7\"\u003e\u003ccode\u003e50d732a\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003eSafeBuffer#%\u003c/code\u003e to preserve unsafe status\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/19dbab51ca086a657bb86458042bc44314916bcb\"\u003e\u003ccode\u003e19dbab5\u003c/code\u003e\u003c/a\u003e NumberConverter: reject scientific notation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/c315744f2001bdd5cba32d43274adca50b71e289\"\u003e\u003ccode\u003ec315744\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56889\"\u003e#56889\u003c/a\u003e from alpaca-tc/support-spring-on-test-environment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/2ac86a8a9e32fff6bfaacd199957ba4ace0a2256\"\u003e\u003ccode\u003e2ac86a8\u003c/code\u003e\u003c/a\u003e Revert benchmark.rb to a silent shim (\u003ca href=\"https://redirect.github.com/rails/rails/issues/56832\"\u003e#56832\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/rails/commit/8e8c95511610c6316084ccd9bc098acfd5e163b8\"\u003e\u003ccode\u003e8e8c955\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/rails/issues/56785\"\u003e#56785\u003c/a\u003e from drsharp/dan/fix-json-encoder-bug\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/rails/compare/v7.0.5...v8.1.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `addressable` from 2.8.4 to 2.8.9\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md\"\u003eaddressable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAddressable 2.8.9 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNo need for bundler as development dependency (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e, \u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d93\"\u003e5fc1d93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eidna/pure: stop building the useless \u003ccode\u003eCOMPOSITION_TABLE\u003c/code\u003e (removes the \u003ccode\u003eAddressable::IDNA::COMPOSITION_TABLE\u003c/code\u003e constant) (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/569\"\u003esporkmonger/addressable#569\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/571\"\u003e#571\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/571\"\u003esporkmonger/addressable#571\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/564\"\u003e#564\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/564\"\u003esporkmonger/addressable#564\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.8 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003eunicode.data\u003c/code\u003e blob by a ruby constant (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 7 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/561\"\u003e#561\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/561\"\u003esporkmonger/addressable#561\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/558\"\u003e#558\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/558\"\u003esporkmonger/addressable#558\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.7 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003epublic_suffix\u003c/code\u003e 6 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/535\"\u003e#535\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/535\"\u003esporkmonger/addressable#535\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.6 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMemoize regexps for common character classes (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/524\"\u003e#524\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/524\"\u003e#524\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/524\"\u003esporkmonger/addressable#524\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAddressable 2.8.5 \u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix thread safety issue with encoding tables (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDefine URI::NONE as a module to avoid serialization issues (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/509\"\u003e#509\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix YAML serialization (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/508\"\u003e#508\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/508\"\u003e#508\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/508\"\u003esporkmonger/addressable#508\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/509\"\u003e#509\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/509\"\u003esporkmonger/addressable#509\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/515\"\u003e#515\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/sporkmonger/addressable/pull/515\"\u003esporkmonger/addressable#515\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/0d7e9b259fb0940d1a85064b04f678a7984409a5\"\u003e\u003ccode\u003e0d7e9b2\u003c/code\u003e\u003c/a\u003e Fix links for 2.8.9 in CHANGELOG (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/e2091200b31553f19248eb871f071852409796f8\"\u003e\u003ccode\u003ee209120\u003c/code\u003e\u003c/a\u003e Update version, gemspec, and CHANGELOG for 2.8.9 (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/572\"\u003e#572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/387587492b6536748ed12a11c3fdb44a48885f28\"\u003e\u003ccode\u003e3875874\u003c/code\u003e\u003c/a\u003e Reduce gem size by excluding test files (\u003ca href=\"https://redirect.github.com/sporkmonger/addressable/issues/569\"\u003e#569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/3e57cc6018f94231aabb47fd341acd1b40f1e71a\"\u003e\u003ccode\u003e3e57cc6\u003c/code\u003e\u003c/a\u003e CI: back to \u003ccode\u003ewindows-2022\u003c/code\u003e for MRI job\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/c4f92fc45a018268c6a204aa0b13017d1e0f49ec\"\u003e\u003ccode\u003ec4f92fc\u003c/code\u003e\u003c/a\u003e CI: skip \u003ccode\u003eRactor\u003c/code\u003e test on Windows to avoid job timeout\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/6aa115f47b5f2e26e5a1dc04d28a9b5663c39a95\"\u003e\u003ccode\u003e6aa115f\u003c/code\u003e\u003c/a\u003e CI: add public_suffix v7 job\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/b860736521cd3b46481db63ed5a3fcc4e1bee1f7\"\u003e\u003ccode\u003eb860736\u003c/code\u003e\u003c/a\u003e CI: drop macos-14, add macos-26\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/45dd2d3e581cb6fece8829534a1d14826b27e6b2\"\u003e\u003ccode\u003e45dd2d3\u003c/code\u003e\u003c/a\u003e CI: Use Windows 2025 (\u003ccode\u003ewindows-latest\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/6b5a7d6588d8e3a9740cb5916a182eda260a95cf\"\u003e\u003ccode\u003e6b5a7d6\u003c/code\u003e\u003c/a\u003e CI: timeouts for all jobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sporkmonger/addressable/commit/5fc1d931e7fdc79d878f240fa4706b89cb01e171\"\u003e\u003ccode\u003e5fc1d93\u003c/code\u003e\u003c/a\u003e No need for bundler as development dependency\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sporkmonger/addressable/compare/addressable-2.8.4...addressable-2.8.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `coffee-script-source` from 1.11.1 to 1.12.2\n\nUpdates `commonmarker` from 0.23.9 to 0.23.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gjtorikian/commonmarker/releases\"\u003ecommonmarker's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.23.12\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gjtorikian/commonmarker/compare/v0.23.11...v0.23.12\"\u003ehttps://github.com/gjtorikian/commonmarker/compare/v0.23.11...v0.23.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.23.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[0.x] Fix memory leaks of string buffers by \u003ca href=\"https://github.com/jhawthorn\"\u003e\u003ccode\u003e@​jhawthorn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gjtorikian/commonmarker/pull/320\"\u003egjtorikian/commonmarker#320\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jhawthorn\"\u003e\u003ccode\u003e@​jhawthorn\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gjtorikian/commonmarker/pull/320\"\u003egjtorikian/commonmarker#320\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gjtorikian/commonmarker/compare/v0.23.10...v0.23.11\"\u003ehttps://github.com/gjtorikian/commonmarker/compare/v0.23.10...v0.23.11\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.23.10\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate to 0.29.0.gfm.13 by \u003ca href=\"https://github.com/anticomputer\"\u003e\u003ccode\u003e@​anticomputer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gjtorikian/commonmarker/pull/247\"\u003egjtorikian/commonmarker#247\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gjtorikian/commonmarker/compare/v0.23.9...v0.23.10\"\u003ehttps://github.com/gjtorikian/commonmarker/compare/v0.23.9...v0.23.10\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/cd435f7bb1a2c53e9ca3bb95b389c7d777083921\"\u003e\u003ccode\u003ecd435f7\u003c/code\u003e\u003c/a\u003e Support GCC15\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/1d6e5ebe031c7b11012039340d079d4eb60f61cd\"\u003e\u003ccode\u003e1d6e5eb\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eappend_cflags\u003c/code\u003e instead of modifying \u003ccode\u003eCFLAGS\u003c/code\u003e directly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/5d9976be667491db7bcbad2840e448ce67ce438f\"\u003e\u003ccode\u003e5d9976b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gjtorikian/commonmarker/issues/320\"\u003e#320\u003c/a\u003e from jhawthorn/c-api-stable-memory-leaks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/b0df48c5bd8e3512b5ce32b421d13650760f7ce4\"\u003e\u003ccode\u003eb0df48c\u003c/code\u003e\u003c/a\u003e Bump version to 0.23.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/36b34b90d7b4924da5c81fcfb029dbd79b09ca5c\"\u003e\u003ccode\u003e36b34b9\u003c/code\u003e\u003c/a\u003e Fix memory leaks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/db8cd377b54541f7fd484d168b7682a282a680f7\"\u003e\u003ccode\u003edb8cd37\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gjtorikian/commonmarker/issues/247\"\u003e#247\u003c/a\u003e from anticomputer/update-to-0.29.0.gfm.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/e1e450c381e1fac5021a08bdc5f72bbac9cf6038\"\u003e\u003ccode\u003ee1e450c\u003c/code\u003e\u003c/a\u003e :gem: release 0.23.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/08b7c4b96c2835edcc2f14e978f758f6ac58b158\"\u003e\u003ccode\u003e08b7c4b\u003c/code\u003e\u003c/a\u003e Update cmark-upstream to \u003ca href=\"https://github.com/github/cmark-gfm/commit/587a12bb5\"\u003ehttps://github.com/github/cmark-gfm/commit/587a12bb5\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gjtorikian/commonmarker/commit/d0e81e2392861ad3f6f27e895080cdfc6a8e72e7\"\u003e\u003ccode\u003ed0e81e2\u003c/code\u003e\u003c/a\u003e I've used this version of the update_submodules script for several releases, ...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/gjtorikian/commonmarker/compare/v0.23.9...v0.23.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `concurrent-ruby` from 1.2.2 to 1.3.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/releases\"\u003econcurrent-ruby's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.3.6\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRun tests without the C extension in CI by \u003ca href=\"https://github.com/eregon\"\u003e\u003ccode\u003e@​eregon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1081\"\u003eruby-concurrency/concurrent-ruby#1081\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix typo in Promise docs by \u003ca href=\"https://github.com/danieldiekmeier\"\u003e\u003ccode\u003e@​danieldiekmeier\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1083\"\u003eruby-concurrency/concurrent-ruby#1083\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect word in readme by \u003ca href=\"https://github.com/wwahammy\"\u003e\u003ccode\u003e@​wwahammy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1084\"\u003eruby-concurrency/concurrent-ruby#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix mistakes in MVar documentation by \u003ca href=\"https://github.com/trinistr\"\u003e\u003ccode\u003e@​trinistr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1087\"\u003eruby-concurrency/concurrent-ruby#1087\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix multi require concurrent/executor/cached_thread_pool by \u003ca href=\"https://github.com/OuYangJinTing\"\u003e\u003ccode\u003e@​OuYangJinTing\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1085\"\u003eruby-concurrency/concurrent-ruby#1085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse typed data APIs by \u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1096\"\u003eruby-concurrency/concurrent-ruby#1096\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Joshua Young to the list of maintainers by \u003ca href=\"https://github.com/eregon\"\u003e\u003ccode\u003e@​eregon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1097\"\u003eruby-concurrency/concurrent-ruby#1097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAsynchronous pruning for RubyThreadPoolExecutor by \u003ca href=\"https://github.com/joshuay03\"\u003e\u003ccode\u003e@​joshuay03\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1082\"\u003eruby-concurrency/concurrent-ruby#1082\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMark RubySingleThreadExecutor as a SerialExecutorService by \u003ca href=\"https://github.com/meineerde\"\u003e\u003ccode\u003e@​meineerde\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1070\"\u003eruby-concurrency/concurrent-ruby#1070\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow TimerTask to be safely restarted after shutdown and avoid duplicate tasks by \u003ca href=\"https://github.com/bensheldon\"\u003e\u003ccode\u003e@​bensheldon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1001\"\u003eruby-concurrency/concurrent-ruby#1001\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFlaky test fix: allow ThreadPool to shutdown before asserting completed_task_count by \u003ca href=\"https://github.com/bensheldon\"\u003e\u003ccode\u003e@​bensheldon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1098\"\u003eruby-concurrency/concurrent-ruby#1098\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eThreadPoolExecutor#kill\u003c/code\u003e will \u003ccode\u003ewait_for_termination\u003c/code\u003e in JRuby; ensure \u003ccode\u003eTimerSet\u003c/code\u003e timer thread shuts down cleanly by \u003ca href=\"https://github.com/bensheldon\"\u003e\u003ccode\u003e@​bensheldon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1044\"\u003eruby-concurrency/concurrent-ruby#1044\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/danieldiekmeier\"\u003e\u003ccode\u003e@​danieldiekmeier\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1083\"\u003eruby-concurrency/concurrent-ruby#1083\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wwahammy\"\u003e\u003ccode\u003e@​wwahammy\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1084\"\u003eruby-concurrency/concurrent-ruby#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trinistr\"\u003e\u003ccode\u003e@​trinistr\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1087\"\u003eruby-concurrency/concurrent-ruby#1087\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/OuYangJinTing\"\u003e\u003ccode\u003e@​OuYangJinTing\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1085\"\u003eruby-concurrency/concurrent-ruby#1085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nobu\"\u003e\u003ccode\u003e@​nobu\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1096\"\u003eruby-concurrency/concurrent-ruby#1096\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/joshuay03\"\u003e\u003ccode\u003e@​joshuay03\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1082\"\u003eruby-concurrency/concurrent-ruby#1082\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/compare/v1.3.5...v1.3.6\"\u003ehttps://github.com/ruby-concurrency/concurrent-ruby/compare/v1.3.5...v1.3.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.3.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove dependency on logger by \u003ca href=\"https://github.com/eregon\"\u003e\u003ccode\u003e@​eregon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1062\"\u003eruby-concurrency/concurrent-ruby#1062\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid error when member is present on ancestor class by \u003ca href=\"https://github.com/francesmcmullin\"\u003e\u003ccode\u003e@​francesmcmullin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1068\"\u003eruby-concurrency/concurrent-ruby#1068\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet rake-compiler source and target to Java 8 by \u003ca href=\"https://github.com/headius\"\u003e\u003ccode\u003e@​headius\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1071\"\u003eruby-concurrency/concurrent-ruby#1071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix typos by \u003ca href=\"https://github.com/chenrui333\"\u003e\u003ccode\u003e@​chenrui333\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1076\"\u003eruby-concurrency/concurrent-ruby#1076\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/francesmcmullin\"\u003e\u003ccode\u003e@​francesmcmullin\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1068\"\u003eruby-concurrency/concurrent-ruby#1068\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chenrui333\"\u003e\u003ccode\u003e@​chenrui333\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1076\"\u003eruby-concurrency/concurrent-ruby#1076\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/compare/v1.3.4...v1.3.5\"\u003ehttps://github.com/ruby-concurrency/concurrent-ruby/compare/v1.3.4...v1.3.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.3.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate comment for JRuby variant of processor_count to reality by \u003ca href=\"https://github.com/meineerde\"\u003e\u003ccode\u003e@​meineerde\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1054\"\u003eruby-concurrency/concurrent-ruby#1054\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eConcurrent.cpu_requests\u003c/code\u003e that is cgroups aware. by \u003ca href=\"https://github.com/heka1024\"\u003e\u003ccode\u003e@​heka1024\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1058\"\u003eruby-concurrency/concurrent-ruby#1058\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix the doc of \u003ccode\u003eConcurrent.available_processor_count\u003c/code\u003e by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1059\"\u003eruby-concurrency/concurrent-ruby#1059\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix the return value of \u003ccode\u003eConcurrent.available_processor_count\u003c/code\u003e when \u003ccode\u003ecpu.cfs_quota_us\u003c/code\u003e is -1 by \u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1060\"\u003eruby-concurrency/concurrent-ruby#1060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/heka1024\"\u003e\u003ccode\u003e@​heka1024\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1058\"\u003eruby-concurrency/concurrent-ruby#1058\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/y-yagi\"\u003e\u003ccode\u003e@​y-yagi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/pull/1059\"\u003eruby-concurrency/concurrent-ruby#1059\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/blob/master/CHANGELOG.md\"\u003econcurrent-ruby's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v1.3.6 (13 December 2025)\u003c/h2\u003e\n\u003cp\u003econcurrent-ruby:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eSee the \u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/releases/tag/v1.3.6\"\u003erelease notes on GitHub\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.3.5, edge v0.7.2 (15 January 2025)\u003c/h2\u003e\n\u003cp\u003econcurrent-ruby:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1062\"\u003e#1062\u003c/a\u003e) Remove dependency on logger.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003econcurrent-ruby-edge:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1062\"\u003e#1062\u003c/a\u003e) Remove dependency on logger.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.3.4 (10 August 2024)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1060\"\u003e#1060\u003c/a\u003e) Fix bug with return value of \u003ccode\u003eConcurrent.available_processor_count\u003c/code\u003e when \u003ccode\u003ecpu.cfs_quota_us\u003c/code\u003e is -1.\u003c/li\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1058\"\u003e#1058\u003c/a\u003e) Add \u003ccode\u003eConcurrent.cpu_shares\u003c/code\u003e that is cgroups aware.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.3.3 (9 June 2024)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1053\"\u003e#1053\u003c/a\u003e) Improve the speed of \u003ccode\u003eConcurrent.physical_processor_count\u003c/code\u003e on Windows.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.3.2, edge v0.7.1 (7 June 2024)\u003c/h2\u003e\n\u003cp\u003econcurrent-ruby:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1051\"\u003e#1051\u003c/a\u003e) Remove dependency on \u003ccode\u003ewin32ole\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003econcurrent-ruby-edge:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1052\"\u003e#1052\u003c/a\u003e) Fix dependency on \u003ccode\u003econcurrent-ruby\u003c/code\u003e to allow the latest release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.3.1 (29 May 2024)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRelease 1.3.0 was broken when pushed to RubyGems. 1.3.1 is a packaging fix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.3.0 (28 May 2024)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1042\"\u003e#1042\u003c/a\u003e) Align Java Executor Service behavior for \u003ccode\u003eshuttingdown?\u003c/code\u003e, \u003ccode\u003eshutdown?\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e(\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1038\"\u003e#1038\u003c/a\u003e) Add \u003ccode\u003eConcurrent.available_processor_count\u003c/code\u003e that is cgroups aware.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.2.3 (16 Jan 2024)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSee \u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/releases/tag/v1.2.3\"\u003ethe GitHub release\u003c/a\u003e for details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/dba776697b17b564f5cd9c6f2597adbc9b698724\"\u003e\u003ccode\u003edba7766\u003c/code\u003e\u003c/a\u003e Release 1.3.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/49b7552025d0be5c30181478170d699be2c1d494\"\u003e\u003ccode\u003e49b7552\u003c/code\u003e\u003c/a\u003e Exclude dependabot updates from release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/048f5d05ba8dee915ed96d4b87a54d4ee233d1b5\"\u003e\u003ccode\u003e048f5d0\u003c/code\u003e\u003c/a\u003e ThreadPoolExecutor \u003ccode\u003ekill\u003c/code\u003e will \u003ccode\u003ewait_for_termination\u003c/code\u003e in JRuby; ensure TimerS...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/4e340ede6a0104d6e4e2bd0dc3c8f1cd4cdac483\"\u003e\u003ccode\u003e4e340ed\u003c/code\u003e\u003c/a\u003e Flaky test fix: allow ThreadPool to shutdown before asserting completed_task_...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/4dc8de3f57d81e1c6cade7386c417770ba5d39bc\"\u003e\u003ccode\u003e4dc8de3\u003c/code\u003e\u003c/a\u003e Allow TimerTask to be safely restarted after shutdown and avoid duplicate tas...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/47cf3a1955725c56bb411db65c0862e80816d306\"\u003e\u003ccode\u003e47cf3a1\u003c/code\u003e\u003c/a\u003e Mark RubySingleThreadExecutor as a SerialExecutorService\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/572d44c46e3cb5baae4551754526eb7aeaaf34a1\"\u003e\u003ccode\u003e572d44c\u003c/code\u003e\u003c/a\u003e Asynchronous pruning for RubyThreadPoolExecutor (\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1082\"\u003e#1082\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/e25e34cbff1e6647621ea03d6208ef5cf55df28c\"\u003e\u003ccode\u003ee25e34c\u003c/code\u003e\u003c/a\u003e Add Joshua Young to the list of maintainers (\u003ca href=\"https://redirect.github.com/ruby-concurrency/concurrent-ruby/issues/1097\"\u003e#1097\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/978eed6c317c523a5ce31769bdf46c0f947e6fdb\"\u003e\u003ccode\u003e978eed6\u003c/code\u003e\u003c/a\u003e Use typed data APIs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/commit/eacd77a07c65c2d9ad6eb0a197222da118cb68d1\"\u003e\u003ccode\u003eeacd77a\u003c/code\u003e\u003c/a\u003e Use stdatomic.h on recent macOS\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ruby-concurrency/concurrent-ruby/compare/v1.2.2...v1.3.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dnsruby` from 1.70.0 to 1.73.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alexdalitz/dnsruby/blob/master/RELEASE_NOTES.md\"\u003ednsruby's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.73.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(caa): add support for issuevmc (\u003ca href=\"https://redirect.github.com/alexdalitz/dnsruby/issues/214\"\u003e#214\u003c/a\u003e) - thanks Mark McDonnell!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.73.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRuby 3.4 updates - thanks \u003ca href=\"https://github.com/zarqman\"\u003e\u003ccode\u003e@​zarqman\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eEnable setting up a custom UDP size when DNSSEC validation is disabled\u003c/li\u003e\n\u003cli\u003eEDNS OPT RR for udp_size \u0026gt; 512 - thanks \u003ca href=\"https://github.com/mrideout\"\u003e\u003ccode\u003e@​mrideout\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eTest code improvements - thanks \u003ca href=\"https://github.com/mrideout\"\u003e\u003ccode\u003e@​mrideout\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003ebase64 gem version fixes\u003c/li\u003e\n\u003cli\u003eFix for file descriptor leak on truncated UDP messages\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.72.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eallow parsing case insensitive property tags for CAA records - thanks ruby-dev!\u003c/li\u003e\n\u003cli\u003eAdd logger as a dependency for Ruby 3.5.0+ support - thanks Alexandre ZANNI!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.72.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix cached answer response time - thanks Andre Meij!\u003c/li\u003e\n\u003cli\u003eAdd base64 as a dependency for Ruby 3.4.0+ support - thanks Alexandre ZANNI!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.72.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eInvalid CAA handling fixes - thanks Noah Smethwick and Ryan Doherty!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev.1.72.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd issuemail CAA record support - thanks Ryan Doherty!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev.1.72.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix compatibility with the \u003ccode\u003e--enable-string-literal\u003c/code\u003e Ruby option - thanks Jean byroot Boussier!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev.1.71.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix assigning public_key in ECDSA - thanks Jiří Kubíček!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev.1.70.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenSSL 3 support\u003c/li\u003e\n\u003cli\u003eResource record hashes no longer include the rdata\u003c/li\u003e\n\u003cli\u003eRemoved requite to title-cased Digest - thanks jhawthron\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev.1.61.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove unused net-ftp dependency\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev.1.61.8\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/alexdalitz/dnsruby/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ethon` from 0.16.0 to 0.18.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typhoeus/ethon/blob/master/CHANGELOG.md\"\u003eethon's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.18.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/typhoeus/ethon/compare/v0.17.0...v0.18.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFixed verbose mode attempting to print binary SSL data by replacing it with a summary.\n(\u003ca href=\"https://github.com/felipedmesquita\"\u003eFelipe Mesquita\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFixed \u003ccode\u003eon_headers\u003c/code\u003e callbacks being called once per header line instead of once for all headers.\n(\u003ca href=\"https://github.com/felipedmesquita\"\u003eFelipe Mesquita\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eStabilized test server boot on macOS by fixing IPv6/IPv4 localhost resolution and preventing orphaned processes.\n(\u003ca href=\"https://github.com/tagliala\"\u003eGeremia Taglialatela\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003elogger\u003c/code\u003e to runtime dependencies for Ruby 3.5+ compatibility.\n(\u003ca href=\"https://github.com/tagliala\"\u003eGeremia Taglialatela\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eOpted-in for MFA requirement explicitly by adding \u003ccode\u003erubygems_mfa_required\u003c/code\u003e metadata.\n(\u003ca href=\"https://github.com/tagliala\"\u003eGeremia Taglialatela\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemoved redundant encoding and require_relative checks.\n(\u003ca href=\"https://github.com/tagliala\"\u003eGeremia Taglialatela\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/258\"\u003e#258\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.17.0\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/typhoeus/ethon/compare/v0.16.0...v0.17.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Ruby 2.6+ and simplify Gemfile.\n(\u003ca href=\"https://github.com/felipedmesquita\"\u003eFelipe Mesquita\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFixed mismatched libcurl error codes in \u003ccode\u003eeasy_codes\u003c/code\u003e array.\n(\u003ca href=\"https://github.com/felipedmesquita\"\u003eFelipe Mesquita\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd Ruby 3.3 and 3.4, remove Ruby 2.5 from CI matrix.\n(\u003ca href=\"https://github.com/felipedmesquita\"\u003eFelipe Mesquita\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSkip test due to libcurl 8.7.x bug in CURLINFO_REQUEST_SIZE.\n(\u003ca href=\"https://github.com/felipedmesquita\"\u003eFelipe Mesquita\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/251\"\u003e#251\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003eRackup::Handler.default\u003c/code\u003e for Rack 3 compatibility.\n(\u003ca href=\"https://github.com/voxik\"\u003eVít Ondruch\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/244\"\u003e#244\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd Ruby 3.1 and 3.2 to the test matrix.\n(\u003ca href=\"https://github.com/orien\"\u003eOrien Madgwick\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/228\"\u003e#228\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove development and test files from the gem package.\n(\u003ca href=\"https://github.com/orien\"\u003eOrien Madgwick\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/227\"\u003e#227\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing parenthesis in example.\n(\u003ca href=\"https://github.com/atsalolikhin-spokeo\"\u003eAleksey Tsalolikhin\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/typhoeus/ethon/pull/226\"\u003e#226\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/d48d24a01b16a65a377d5cc801e9c422f2932615\"\u003e\u003ccode\u003ed48d24a\u003c/code\u003e\u003c/a\u003e release v0.18.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/f3def840644edaaff2d08074c886053bf3766583\"\u003e\u003ccode\u003ef3def84\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/typhoeus/ethon/issues/265\"\u003e#265\u003c/a\u003e from felipedmesquita/fix-verbose-mode-attempting-to-p...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/1765b2474b5012928029457a89afe245d4e208f3\"\u003e\u003ccode\u003e1765b24\u003c/code\u003e\u003c/a\u003e replace broken ssl data with a summary inspired by curl cli\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/4a1700c2856de9e139cbd2c91a787c1ff88edd36\"\u003e\u003ccode\u003e4a1700c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/typhoeus/ethon/issues/264\"\u003e#264\u003c/a\u003e from felipedmesquita/fix-on_headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/715d3959d70f50c8ff8d40c1c5b8cb38c135fc8f\"\u003e\u003ccode\u003e715d395\u003c/code\u003e\u003c/a\u003e keep support for :abort from on_headers by aborting on_body\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/4be2cef9bd06567fbafbd3be6c62bd737ca28517\"\u003e\u003ccode\u003e4be2cef\u003c/code\u003e\u003c/a\u003e can't run user callbacks here, libcurl calls this once per header line\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/a7af5c2143259bbe73472025b0e7023bccbca5df\"\u003e\u003ccode\u003ea7af5c2\u003c/code\u003e\u003c/a\u003e mutable reference prevented this test from breaking when it should have\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/b5f755dd7889af8fbc3f97c1c846f0ab0720ba20\"\u003e\u003ccode\u003eb5f755d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/typhoeus/ethon/issues/261\"\u003e#261\u003c/a\u003e from tagliala/chore/260-allow-specs-to-run-on-mac\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/3d7a9ca586f2da6a14b443e6d94e7390b110645d\"\u003e\u003ccode\u003e3d7a9ca\u003c/code\u003e\u003c/a\u003e Stabilize test server boot on macOS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typhoeus/ethon/commit/0e80211ddedfe626c862fa16afd2e021290861bb\"\u003e\u003ccode\u003e0e80211\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/typhoeus/ethon/issues/259\"\u003e#259\u003c/a\u003e from tagliala/feature/242-add-logger\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/typhoeus/ethon/compare/v0.16.0...v0.18.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `execjs` from 2.8.1 to 2.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rails/execjs/releases\"\u003eexecjs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.9.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle Bun priting loaded env variables on STDERR by \u003ca href=\"https://github.com/byroot\"\u003e\u003ccode\u003e@​byroot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/131\"\u003erails/execjs#131\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/execjs/compare/v2.9.0...v2.9.1\"\u003ehttps://github.com/rails/execjs/compare/v2.9.0...v2.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd runtime using GraalJS on TruffleRuby by \u003ca href=\"https://github.com/eregon\"\u003e\u003ccode\u003e@​eregon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/107\"\u003erails/execjs#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove \u003ccode\u003eEncoding\u003c/code\u003e handling by \u003ca href=\"https://github.com/casperisfine\"\u003e\u003ccode\u003e@​casperisfine\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/111\"\u003erails/execjs#111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdapt ExecJS::GraalJSRuntime to foreign exception changes in TruffleRuby by \u003ca href=\"https://github.com/eregon\"\u003e\u003ccode\u003e@​eregon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/112\"\u003erails/execjs#112\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove outdated Encoding workaround by \u003ca href=\"https://github.com/byroot\"\u003e\u003ccode\u003e@​byroot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/113\"\u003erails/execjs#113\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConvert Symbol explicitly to a JS String and add test by \u003ca href=\"https://github.com/eregon\"\u003e\u003ccode\u003e@​eregon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/117\"\u003erails/execjs#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSkip \u003ccode\u003eeval code@\u003c/code\u003e line thrown by Apple JavaScriptCore by \u003ca href=\"https://github.com/amatsuda\"\u003e\u003ccode\u003e@​amatsuda\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/124\"\u003erails/execjs#124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Bun as an available runtime by \u003ca href=\"https://github.com/terracatta\"\u003e\u003ccode\u003e@​terracatta\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/127\"\u003erails/execjs#127\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eregon\"\u003e\u003ccode\u003e@​eregon\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/107\"\u003erails/execjs#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tisba\"\u003e\u003ccode\u003e@​tisba\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/123\"\u003erails/execjs#123\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amatsuda\"\u003e\u003ccode\u003e@​amatsuda\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/124\"\u003erails/execjs#124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terracatta\"\u003e\u003ccode\u003e@​terracatta\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rails/execjs/pull/127\"\u003erails/execjs#127\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rails/execjs/compare/v2.8.1...v2.9.0\"\u003ehttps://github.com/rails/execjs/compare/v2.8.1...v2.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/06feba503e961f0c1613e0b66a69937e3ce02e95\"\u003e\u003ccode\u003e06feba5\u003c/code\u003e\u003c/a\u003e Release 2.10.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/86cb852dc4c66f7616a97b1d8c97a487c3889534\"\u003e\u003ccode\u003e86cb852\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/execjs/issues/143\"\u003e#143\u003c/a\u003e from noesya/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/7594b6bb38ac3e8fff82ef5d00a3b22e53ebb4a2\"\u003e\u003ccode\u003e7594b6b\u003c/code\u003e\u003c/a\u003e autodetect runtime for tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/3ecf76890d973bb2c217cf80f88378f7ae6d0c4b\"\u003e\u003ccode\u003e3ecf768\u003c/code\u003e\u003c/a\u003e prevent runtime autodetect on require\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/ea4731de8b7b68de8404029c2f3d52eacefabec7\"\u003e\u003ccode\u003eea4731d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/execjs/issues/135\"\u003e#135\u003c/a\u003e from reesericci/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/3ab72a6224c1624d965116da63e55dc2dbbafb3f\"\u003e\u003ccode\u003e3ab72a6\u003c/code\u003e\u003c/a\u003e refactor and add test case\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/45043f1c2db1af330dbf8972af517688b24975a3\"\u003e\u003ccode\u003e45043f1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/execjs/issues/141\"\u003e#141\u003c/a\u003e from mattmenefee/update-coffeescript-link\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/4dd71a27fcb7a1d3dd5be42c18e36147fe98cd1b\"\u003e\u003ccode\u003e4dd71a2\u003c/code\u003e\u003c/a\u003e Update link to CoffeeScript source in README.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/e630a1f7c9347c1ba118a1e7ac028ca6e35fc5aa\"\u003e\u003ccode\u003ee630a1f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rails/execjs/issues/140\"\u003e#140\u003c/a\u003e from m-nakamura145/update-actions-checkout\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rails/execjs/commit/46f73426dcf64362d197f6d1241e9907f40719a3\"\u003e\u003ccode\u003e46f7342\u003c/code\u003e\u003c/a\u003e Bump actions/checkout\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rails/execjs/compare/v2.8.1...v2.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `faraday` from 2.7.6 to 2.14.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday/releases\"\u003efaraday's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.14.1\u003c/h2\u003e\n\u003ch2\u003eSecurity Note\u003c/h2\u003e\n\u003cp\u003eThis release contains a security fix, we recommend all users to upgrade as soon as possible.\nA Security Advisory with more details will be posted shortly.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd RFC document for Options architecture refactoring plan by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1644\"\u003elostisland/faraday#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1655\"\u003elostisland/faraday#1655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExplicit top-level namespace reference by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1657\"\u003elostisland/faraday#1657\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1642\"\u003elostisland/faraday#1642\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\"\u003ehttps://github.com/lostisland/faraday/compare/v2.14.0...v2.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eNew features ✨\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUse newer \u003ccode\u003eUnprocessableContent\u003c/code\u003e naming for 422 by \u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes 🐞\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eConvert strings to UTF-8 by \u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eResponse#to_hash\u003c/code\u003e when response not finished yet by \u003ca href=\"https://github.com/yykamei\"\u003e\u003ccode\u003e@​yykamei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1639\"\u003elostisland/faraday#1639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMisc/Docs 📄\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eLint: use \u003ccode\u003efilter_map\u003c/code\u003e by \u003ca href=\"https://github.com/olleolleolle\"\u003e\u003ccode\u003e@​olleolleolle\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1637\"\u003elostisland/faraday#1637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003eactions/checkout\u003c/code\u003e from v4 to v5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1636\"\u003elostisland/faraday#1636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes documentation by \u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/c960657\"\u003e\u003ccode\u003e@​c960657\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1624\"\u003elostisland/faraday#1624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dharamgollapudi\"\u003e\u003ccode\u003e@​dharamgollapudi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1635\"\u003elostisland/faraday#1635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tylerhunt\"\u003e\u003ccode\u003e@​tylerhunt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1638\"\u003elostisland/faraday#1638\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.4...v2.14.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove error handling logic and add missing test coverage by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1633\"\u003elostisland/faraday#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\"\u003ehttps://github.com/lostisland/faraday/compare/v2.13.3...v2.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.13.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix type assumption in \u003ccode\u003eFaraday::Error\u003c/code\u003e by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday/pull/1630\"\u003elostisland/faraday#1630\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/16cbd38ef252d25dedf416a4d2510a2f3db10c87\"\u003e\u003ccode\u003e16cbd38\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/a6d3a3a0bf59c2ab307d0abd91bc126aef5561bc\"\u003e\u003ccode\u003ea6d3a3a\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/b23f710d28c0dba169470f568df4017a1e8beea7\"\u003e\u003ccode\u003eb23f710\u003c/code\u003e\u003c/a\u003e Explicit top-level namespace reference (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1657\"\u003e#1657\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/49ba4ac3a7359baed634c12a82386f6c8c717ea8\"\u003e\u003ccode\u003e49ba4ac\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1655\"\u003e#1655\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/51a49bc99d7df6f724d250d64771e1d710576df7\"\u003e\u003ccode\u003e51a49bc\u003c/code\u003e\u003c/a\u003e Ensure Claude reads the guidelines and allow to plan in a gitignored .ai/PLAN...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/894f65cab8f04bcf35e84a2dfd9fc0286dbce340\"\u003e\u003ccode\u003e894f65c\u003c/code\u003e\u003c/a\u003e Add RFC document for Options architecture refactoring plan (\u003ca href=\"https://redirect.github.com/lostisland/faraday/issues/1644\"\u003e#1644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/397e3ded0c5166313bb22f1c0221b36b6023fd0f\"\u003e\u003ccode\u003e397e3de\u003c/code\u003e\u003c/a\u003e Add comprehensive AI agent guidelines for Claude, Cursor, and GitHub Copilot ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/d98c65cfc254ea2898386e4359428527122abec3\"\u003e\u003ccode\u003ed98c65c\u003c/code\u003e\u003c/a\u003e Update Faraday-specific AI agent guidelines\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/56c18ecb718e30c5a3a0dea9bd2361912af9013c\"\u003e\u003ccode\u003e56c18ec\u003c/code\u003e\u003c/a\u003e Add AI agent guidelines specific to Faraday repository\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lostisland/faraday/commit/3201a42957d37efc968ee8834ba9b50ed5dde54a\"\u003e\u003ccode\u003e3201a42\u003c/code\u003e\u003c/a\u003e Version bump to 2.14.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lostisland/faraday/compare/v2.7.6...v2.14.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `faraday-net_http` from 3.0.2 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lostisland/faraday-net_http/releases\"\u003efaraday-net_http's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.4.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse more conservative net-http version constraint by \u003ca href=\"https://github.com/RDeckard\"\u003e\u003ccode\u003e@​RDeckard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/53\"\u003elostisland/faraday-net_http#53\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RDeckard\"\u003e\u003ccode\u003e@​RDeckard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/53\"\u003elostisland/faraday-net_http#53\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday-net_http/compare/v3.4.1...v3.4.2\"\u003ehttps://github.com/lostisland/faraday-net_http/compare/v3.4.1...v3.4.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.4.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare Trusted Publisher by \u003ca href=\"https://github.com/djsmentya\"\u003e\u003ccode\u003e@​djsmentya\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/50\"\u003elostisland/faraday-net_http#50\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/djsmentya\"\u003e\u003ccode\u003e@​djsmentya\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/50\"\u003elostisland/faraday-net_http#50\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday-net_http/compare/v3.4.0...v3.4.1\"\u003ehttps://github.com/lostisland/faraday-net_http/compare/v3.4.0...v3.4.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd HTTPS Proxy support by \u003ca href=\"https://github.com/richardmarbach\"\u003e\u003ccode\u003e@​richardmarbach\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/47\"\u003elostisland/faraday-net_http#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix HTTPS proxy support by \u003ca href=\"https://github.com/richardmarbach\"\u003e\u003ccode\u003e@​richardmarbach\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/48\"\u003elostisland/faraday-net_http#48\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/richardmarbach\"\u003e\u003ccode\u003e@​richardmarbach\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/47\"\u003elostisland/faraday-net_http#47\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday-net_http/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/lostisland/faraday-net_http/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpt-in for MFA requirement explicitly by \u003ca href=\"https://github.com/tagliala\"\u003e\u003ccode\u003e@​tagliala\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/43\"\u003elostisland/faraday-net_http#43\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun CI against \u003ccode\u003emain\u003c/code\u003e branch of Faraday by \u003ca href=\"https://github.com/iMacTia\"\u003e\u003ccode\u003e@​iMacTia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/46\"\u003elostisland/faraday-net_http#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eciphers\u003c/code\u003e SSLOptions by \u003ca href=\"https://github.com/womblep\"\u003e\u003ccode\u003e@​womblep\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/45\"\u003elostisland/faraday-net_http#45\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tagliala\"\u003e\u003ccode\u003e@​tagliala\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/43\"\u003elostisland/faraday-net_http#43\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/womblep\"\u003e\u003ccode\u003e@​womblep\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/lostisland/faraday-net_http/pull/45\"\u003elostisland/faraday-net_http#45\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lostisland/faraday-net_http/compare/v3.2.0...v3.3.0\"\u003ehttps://github.com/lostisland/faraday-net_http/compare/v3.2.0...v3.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded: Support setting SSL client cert as a an ar...\n\n_Description has been truncated_","html_url":"https://github.com/plule/vox-uristi/pull/340","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/plule%2Fvox-uristi/issues/340","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/340/packages"}}]}