Skip to content

Bump the ruby group with 8 updates #420

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
chadlwilson merged 1 commit into from
Oct 1, 2025
Merged

Bump the ruby group with 8 updates #420

chadlwilson merged 1 commit into from
Oct 1, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 1, 2025

Bumps the ruby group with 8 updates:

Package From To
rubyzip 3.0.2 3.1.1
grpc 1.74.1 1.75.0
grpc-tools 1.74.1 1.75.0
bigdecimal 3.2.2 3.2.3
google-protobuf 4.32.0 4.32.1
googleapis-common-protos-types 1.20.0 1.21.0
prism 1.4.0 1.5.1
rspec-support 3.13.5 3.13.6

Updates rubyzip from 3.0.2 to 3.1.1

Release notes

Sourced from rubyzip's releases.

v3.1.1

Version 3.1.1

The 3.1.x line adds AES decryption.

⚠️ There are breaking changes in the 3.x series ⚠️

Please see the README and Updating to version 3.x in the wiki for help upgrading from version 2.4.x to version 3.x.

v3.1.0

Version 3.1.0

This version adds AES decryption.

⚠️ There are breaking changes in the 3.x series ⚠️

Please see the README and Updating to version 3.x in the wiki for help upgrading from version 2.4.x to version 3.x.

Changelog

Sourced from rubyzip's changelog.

3.1.1 (2025-09-26)

  • Improve the IO pipeline when decompressing. #649 (which also fixes #647)

Tooling/internal:

  • Improve the DecryptedIo class with various updates and optimizations.
  • Remove the NullDecrypter class.
  • Properly convert the test suite to use minitest.
  • Move all test helper code into separate files.
  • Updates to the Actions CI, including new OS versions.
  • Update rubocop versions and fix resultant cop failures. #646

3.1.0 (2025-09-06)

Tooling/internal:

  • Add various useful zip specification documents to the repo for ease of finding them in the future. These are not included in the gem release.
Commits
  • f87340d Update version number and Changelog for release.
  • 813d96d Add a Rubocop badge to the README.
  • 61c25b0 Reduce the number of YJIT test runs in CI.
  • 69dcb8e Allow Windows CI builds to fail.
  • da44b2c Update OS versions in the Actions CI.
  • fd78455 Use require_relative when pulling in test_helper.
  • 78848c5 Only require test helpers where they are needed.
  • e55f7c9 Move all test helper code into separate files.
  • 5f1fcb2 Remove unnecessary perms from gentestfiles.rb.
  • ceabd03 Remove unnecessary requires from test_helper.rb.
  • Additional commits viewable in compare view

Updates grpc from 1.74.1 to 1.75.0

Release notes

Sourced from grpc's releases.

Release v1.75.0

This is release 1.75.0 (gemini) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

  • [Security] Cherry Pick Spiffe Verification. (#40515)
  • [Python][Typeguard] Part 3 - Add Typeguard to AIO stack in tests. (#40217)
  • [c-ares] update version to 1.34.5. (#39508)
  • [pick_first] fix bug that caused us to stop attempting to connect. (#40162)

C++

  • [OTel C++] Implement retry metrics. (#39195)

Objective-C

  • Fix data race by adding custom getter for state property with @synchronized locking. (#40146)

Python

  • gRPC Python (grpcio) now depends on typing-extensions~=4.13. (#40137)
  • Update musllinux wheels from musllinux_1_1 to musllinux_1_2. (#40317)
    • Dropping musllinux_1_1 because it reached EOL in November 2024
    • Reference on musllinux platform tags: PEP 656
  • grpc.aio typehint fixes. (#40215, #40217)
    • Metadata type validation: Fixed metadata handling to support all sequence types (not just tuples), preventing runtime errors. Enhanced metadata type validation: isinstance(metadata, Sequence) instead of isinstance(metadata, tuple)
    • Serializer parameters: Changed to Optional[SerializingFunction] for more accurate type representation
    • Fixing the error in public API: ClientCallDetails.method was declared as str but always called with bytes, see InterceptedUnaryUnaryCall.
  • Fixes issue #40325 with grpcio failing to install on all non-Mac Apple devices internal builds. (#40347)

Ruby

  • Ruby: Mark credential object in channel. (#40394)
  • [Ruby] Add rubygems support for linux-gnu and linux-musl platforms. (#39549)

Release v1.75.0-pre1

This is a prerelease of gRPC Core 1.75.0 (gemini).

For gRPC documentation, see grpc.io. For previous releases, see Releases.

... (truncated)

Commits
  • 093085c [build] Fix objc boringssl build backport (#40689)
  • 8c45613 [release] Bump release version on v1.75.x branch to v1.75.0 (#40644)
  • 8f36086 [Security] Cherry Pick Spiffe Verification (#40515)
  • 5b393ee [release] Bump release version on v1.75.x to v1.75.0-pre1 (#40485)
  • e8715ed Bump core version to 50.0.0 for upcoming release (#40422)
  • 509f9fb [PH2] WritePath Integration (#40404)
  • 8a66132 [PH2][Settings] Adding documentation
  • e410980 [PH2][Settings] Setting max_header_list_size
  • c2e8096 [gemini] Document gRPC Core's coding style regarding exceptions.
  • abddbff Automated rollback of commit 303b395b9780e1ff0939a576efe14b5b168c8d40.
  • Additional commits viewable in compare view

Updates grpc-tools from 1.74.1 to 1.75.0

Release notes

Sourced from grpc-tools's releases.

Release v1.75.0

This is release 1.75.0 (gemini) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

  • [Security] Cherry Pick Spiffe Verification. (#40515)
  • [Python][Typeguard] Part 3 - Add Typeguard to AIO stack in tests. (#40217)
  • [c-ares] update version to 1.34.5. (#39508)
  • [pick_first] fix bug that caused us to stop attempting to connect. (#40162)

C++

  • [OTel C++] Implement retry metrics. (#39195)

Objective-C

  • Fix data race by adding custom getter for state property with @synchronized locking. (#40146)

Python

  • gRPC Python (grpcio) now depends on typing-extensions~=4.13. (#40137)
  • Update musllinux wheels from musllinux_1_1 to musllinux_1_2. (#40317)
    • Dropping musllinux_1_1 because it reached EOL in November 2024
    • Reference on musllinux platform tags: PEP 656
  • grpc.aio typehint fixes. (#40215, #40217)
    • Metadata type validation: Fixed metadata handling to support all sequence types (not just tuples), preventing runtime errors. Enhanced metadata type validation: isinstance(metadata, Sequence) instead of isinstance(metadata, tuple)
    • Serializer parameters: Changed to Optional[SerializingFunction] for more accurate type representation
    • Fixing the error in public API: ClientCallDetails.method was declared as str but always called with bytes, see InterceptedUnaryUnaryCall.
  • Fixes issue #40325 with grpcio failing to install on all non-Mac Apple devices internal builds. (#40347)

Ruby

  • Ruby: Mark credential object in channel. (#40394)
  • [Ruby] Add rubygems support for linux-gnu and linux-musl platforms. (#39549)

Release v1.75.0-pre1

This is a prerelease of gRPC Core 1.75.0 (gemini).

For gRPC documentation, see grpc.io. For previous releases, see Releases.

... (truncated)

Commits
  • 8c45613 [release] Bump release version on v1.75.x branch to v1.75.0 (#40644)
  • 8f36086 [Security] Cherry Pick Spiffe Verification (#40515)
  • 5b393ee [release] Bump release version on v1.75.x to v1.75.0-pre1 (#40485)
  • 368c313 Revert "[Security][XDS] Support Verification with SPIFFE Bundle Maps … (#40445)
  • 65cdfba [Security][XDS] Support Verification with SPIFFE Bundle Maps (#40321)
  • a86826d Ruby: Mark credential object in channel (#40394)
  • 58022c6 [Release] Bump version to 1.75.0-dev (on master branch) (#40120)
  • See full diff in compare view

Updates bigdecimal from 3.2.2 to 3.2.3

Release notes

Sourced from bigdecimal's releases.

v3.2.3

What's Changed

... (truncated)

Changelog

Sourced from bigdecimal's changelog.

3.2.3

Commits
  • dd7738c Bump version to 3.2.3 (#419)
  • b458f94 Add JRuby minimum ci (#418)
  • 6177f46 In JRuby, don't add sqrt, exp, log, power implemented in ruby (#417)
  • b946e79 Implement BigDecimal#_decimal_shift for internal use (#324)
  • 6253bef Update bigdecimal version used in benchmark from 3.0.0 to 3.1.1 (#416)
  • 3d8b9be Rewrite BigDecimal#sqrt in ruby with improved Newton's method (#381)
  • 99cc2d5 Add BigMath::E and BigMath::PI precision test (#414)
  • 4fe723c Simplify to_i logic (#413)
  • f6bfd2f Calculate exp, log, pow with the given prec even if prec limit is set (#411)
  • c18bacb Fix x / y precision when prec limit is huge (#412)
  • Additional commits viewable in compare view

Updates google-protobuf from 4.32.0 to 4.32.1

Commits

Updates googleapis-common-protos-types from 1.20.0 to 1.21.0

Release notes

Sourced from googleapis-common-protos-types's releases.

googleapis-common-protos-types: v1.21.0

1.21.0 (2025-09-04)

Features

  • update minimum google-protobuf version to 4.26 (#388)
Commits
  • e6bbadd chore(main): release googleapis-common-protos-types 1.21.0 (#389)
  • 5245c6b chore(config): migrate renovate config (#390)
  • b19531d feat: update minimum google-protobuf version to 4.26 (#388)
  • 5bb32fc chore(deps): update actions/checkout action to v5 (#386)
  • 009fdcb chore: Remove dazuma@ from blunderbuss (#387)
  • 94c668b chore(main): release google-apps-card-v1 1.1.0 (#379)
  • 0be0688 chore(main): release google-apps-script-type 1.7.0 (#380)
  • 1baac71 chore(main): release google-cloud-common 1.9.0 (#381)
  • 08e2436 chore(main): release google-geo-type 1.1.0 (#382)
  • b1108bd chore(main): release grpc-google-iam-v1 1.11.0 (#384)
  • Additional commits viewable in compare view

Updates prism from 1.4.0 to 1.5.1

Release notes

Sourced from prism's releases.

v1.5.1

Changed

  • Revert of a bug introduced with static literal flags on interpolated strings.

v1.5.0

Added

  • Add Prism::Translation::ParserCurrent.
  • Add Integer::to_u32_digits for the Rust API.
  • Add pm_comment_type_t field for the Rust API.
  • Support leading logical operators for CRuby 3.5+.

Changed

  • Mark Prism as ractor-safe.
  • Enforce a minimum version for the parser translation layer.
  • Many fixes to the parser translation layer.
  • Accept a newline after the defined? keyword.
  • Reject true && not true.
  • Make it = it assign nil to match parse.y behavior [Bug #21139].
  • Some fixes to the ruby parser translation layer.
  • Ensure call nodes have the correct ending location.
  • Reject foo && return bar.
Changelog

Sourced from prism's changelog.

[1.5.1] - 2025-09-13

Changed

  • Revert of a bug introduced with static literal flags on interpolated strings.

[1.5.0] - 2025-09-12

Added

  • Add Prism::Translation::ParserCurrent.
  • Add Integer::to_u32_digits for the Rust API.
  • Add pm_comment_type_t field for the Rust API.
  • Support leading logical operators for CRuby 3.5+.

Changed

  • Mark Prism as ractor-safe.
  • Enforce a minimum version for the parser translation layer.
  • Many fixes to the parser translation layer.
  • Accept a newline after the defined? keyword.
  • Reject true && not true.
  • Make it = it assign nil to match parse.y behavior [Bug #21139].
  • Some fixes to the ruby parser translation layer.
  • Ensure call nodes have the correct ending location.
  • Reject foo && return bar.
Commits

Updates rspec-support from 3.13.5 to 3.13.6

Changelog

Sourced from rspec-support's changelog.

3.13.6

Full Changelog

Bug Fixes:

  • Change RSpec::Support::HunkGenerator to autoload rather than manual require, avoids a load order issue. (Jon Rowe, rspec/rspec#249)
Commits

Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
grpc [>= 1.65.0.a, < 1.65.1]
grpc [>= 1.65.1.a, < 1.65.2]
grpc [>= 1.65.2.a, < 1.65.3]
grpc [>= 1.67.a, < 1.68]
grpc [>= 1.66.a, < 1.67]
grpc [>= 1.68.a, < 1.69]
grpc [>= 1.69.a, < 1.70]
grpc [>= 1.70.a, < 1.71]
grpc [>= 1.71.a, < 1.72]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the ruby group with 8 updates
406da63 
Bumps the ruby group with 8 updates:

| Package | From | To |
| --- | --- | --- |
| [rubyzip](https://github.com/rubyzip/rubyzip) | `3.0.2` | `3.1.1` |
| [grpc](https://github.com/google/grpc) | `1.74.1` | `1.75.0` |
| [grpc-tools](https://github.com/google/grpc) | `1.74.1` | `1.75.0` |
| [bigdecimal](https://github.com/ruby/bigdecimal) | `3.2.2` | `3.2.3` |
| [google-protobuf](https://github.com/protocolbuffers/protobuf) | `4.32.0` | `4.32.1` |
| [googleapis-common-protos-types](https://github.com/googleapis/common-protos-ruby) | `1.20.0` | `1.21.0` |
| [prism](https://github.com/ruby/prism) | `1.4.0` | `1.5.1` |
| [rspec-support](https://github.com/rspec/rspec) | `3.13.5` | `3.13.6` |


Updates `rubyzip` from 3.0.2 to 3.1.1
- [Release notes](https://github.com/rubyzip/rubyzip/releases)
- [Changelog](https://github.com/rubyzip/rubyzip/blob/main/Changelog.md)
- [Commits](rubyzip/rubyzip@v3.0.2...v3.1.1)

Updates `grpc` from 1.74.1 to 1.75.0
- [Release notes](https://github.com/google/grpc/releases)
- [Changelog](https://github.com/grpc/grpc/blob/master/doc/grpc_release_schedule.md)
- [Commits](grpc/grpc@v1.74.1...v1.75.0)

Updates `grpc-tools` from 1.74.1 to 1.75.0
- [Release notes](https://github.com/google/grpc/releases)
- [Changelog](https://github.com/grpc/grpc/blob/master/doc/grpc_release_schedule.md)
- [Commits](grpc/grpc@v1.74.1...v1.75.0)

Updates `bigdecimal` from 3.2.2 to 3.2.3
- [Release notes](https://github.com/ruby/bigdecimal/releases)
- [Changelog](https://github.com/ruby/bigdecimal/blob/master/CHANGES.md)
- [Commits](ruby/bigdecimal@v3.2.2...v3.2.3)

Updates `google-protobuf` from 4.32.0 to 4.32.1
- [Release notes](https://github.com/protocolbuffers/protobuf/releases)
- [Changelog](https://github.com/protocolbuffers/protobuf/blob/main/protobuf_release.bzl)
- [Commits](https://github.com/protocolbuffers/protobuf/commits)

Updates `googleapis-common-protos-types` from 1.20.0 to 1.21.0
- [Release notes](https://github.com/googleapis/common-protos-ruby/releases)
- [Changelog](https://github.com/googleapis/common-protos-ruby/blob/main/release-please-config.json)
- [Commits](googleapis/common-protos-ruby@googleapis-common-protos-types/v1.20.0...googleapis-common-protos-types/v1.21.0)

Updates `prism` from 1.4.0 to 1.5.1
- [Release notes](https://github.com/ruby/prism/releases)
- [Changelog](https://github.com/ruby/prism/blob/main/CHANGELOG.md)
- [Commits](ruby/prism@v1.4.0...v1.5.1)

Updates `rspec-support` from 3.13.5 to 3.13.6
- [Changelog](https://github.com/rspec/rspec/blob/rspec-support-v3.13.6/rspec-support/Changelog.md)
- [Commits](rspec/rspec@rspec-support-v3.13.5...rspec-support-v3.13.6)

---
updated-dependencies:
- dependency-name: rubyzip
  dependency-version: 3.1.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: ruby
- dependency-name: grpc
  dependency-version: 1.75.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ruby
- dependency-name: grpc-tools
  dependency-version: 1.75.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: ruby
- dependency-name: bigdecimal
  dependency-version: 3.2.3
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: ruby
- dependency-name: google-protobuf
  dependency-version: 4.32.1
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: ruby
- dependency-name: googleapis-common-protos-types
  dependency-version: 1.21.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: ruby
- dependency-name: prism
  dependency-version: 1.5.1
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: ruby
- dependency-name: rspec-support
  dependency-version: 3.13.6
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: ruby
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Oct 1, 2025
@chadlwilson chadlwilson merged commit e31bf45 into master Oct 1, 2025
25 of 29 checks passed
@dependabot dependabot bot deleted the dependabot/bundler/ruby-b86e110b00 branch October 1, 2025 08:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chadlwilson chadlwilson chadlwilson approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@chadlwilson