Bump the rails_72 group across 1 directory with 19 updates #445

dependabot · 2026-02-01T15:22:33Z

Bumps the rails_72 group with 17 updates in the /gemfiles/rails_72 directory:

Package	From	To
rake	`13.2.1`	`13.3.1`
pundit	`2.5.0`	`2.5.2`
draper	`4.0.4`	`4.0.6`
devise	`4.9.4`	`5.0.0`
ransack	`4.3.0`	`4.4.1`
importmap-rails	`2.1.0`	`2.2.3`
cuprite	`0.15.1`	`0.17`
webrick	`1.9.1`	`1.9.2`
simplecov-cobertura	`2.1.0`	`3.1.0`
cucumber-rails	`3.1.1`	`4.0.0`
cucumber	`9.2.1`	`10.2.0`
database_cleaner-active_record	`2.2.0`	`2.2.2`
rspec-rails	`8.0.0`	`8.0.2`
sqlite3	`2.6.0`	`2.9.0`
i18n-tasks	`1.0.15`	`1.1.2`
arbre	`2.2.0`	`2.2.1`
csv	`3.3.4`	`3.3.5`

Updates rake from 13.2.1 to 13.3.1

Commits

f0001c3 v13.3.1
a644c80 Merge pull request #483 from luke-gru/fix_test_warnings
2465ea5 silence warnings during execution of rake tasks in Rakefile (ex: rake test)
df25fb1 Merge pull request #610 from pvdb/fix_testhelper_require
ec12ac9 Merge pull request #635 from nevans/deconstruct_keys-for-nil-keys
4664a69 Merge pull request #666 from ruby/dependabot/github_actions/ruby/setup-ruby-1...
7a0bf15 Bump ruby/setup-ruby from 1.265.0 to 1.266.0
b3ed789 Merge pull request #665 from ruby/dependabot/github_actions/ruby/setup-ruby-1...
1e7ef52 Bump ruby/setup-ruby from 1.263.0 to 1.265.0
77225e1 Merge pull request #664 from ruby/dependabot/github_actions/ruby/setup-ruby-1...
Additional commits viewable in compare view

Updates pundit from 2.5.0 to 2.5.2

Changelog

Sourced from pundit's changelog.

2.5.2 (2025-09-24)

Fixed

Added config/rubocop-rspec.yml back from accidentally being excluded #866

2.5.1 (2025-09-12)

Fixed

Requiring only pundit/rspec no longer raises an error in Active Support #857

Commits

2d665d6 Merge pull request #867 from varvet/kbs/release-v2.5.2
7ff48a8 Bump to v2.5.2
674abac Merge pull request #866 from varvet/kbs/add-rubocop-back
923eebf Point changelog to PR
4766850 Add rubocop config file back to gem release files
27a840b Merge pull request #863 from varvet/kbs/fix-build-pipeline
381b202 +3.4 -3.1 (EOL)
4bb6a67 Merge pull request #862 from varvet/kbs/fix-build-pipeline
6ceca0d Attempt code quality upload to qlty.sh instead
82d918a Bump to v2.5.1
Additional commits viewable in compare view

Updates draper from 4.0.4 to 4.0.6

Release notes

Sourced from draper's releases.

v4.0.6

What's Changed

Set timeout for GitHub Action Job by @y-yagi in drapergem/draper#954

Temporarily exclude Ruby 3.2 build with Rails 8.1 by @y-yagi in drapergem/draper#956

Release v4.0.6 by @seanlinsley in drapergem/draper#953

Full Changelog: drapergem/draper@v4.0.5...v4.0.6

v4.0.5

What's Changed

Fix broken CI by @y-yagi in drapergem/draper#912

Add Ruby 3.1 and 3.2 to the CI matrix and fix CI failure in Ruby 3 by @mishina2228 in drapergem/draper#916

Replace deprecated/removed File.exists? alias by @jonkerz in drapergem/draper#923

Update README.md with instructions for namespaced decorators by @Aerotune in drapergem/draper#878

Use https for GitHub link by @mishina2228 in drapergem/draper#915

Update README with config to disable generation of decorator files by @chain792 in drapergem/draper#922

Fix CollectionDecorator#respond_to? for non AR collections by @catks in drapergem/draper#920

fix issue with using draper outside of controller/view context by @timdiggins in drapergem/draper#927

Improved integration with Global ID by @Alexander-Senko in drapergem/draper#928

Integration with Turbo::Broadcastable by @Alexander-Senko in drapergem/draper#929

Improve performance of method call via delegate_all by @y-yagi in drapergem/draper#911

Associations: #decorate queries DB every time by @Alexander-Senko in drapergem/draper#932

Revert class spoofing by @Alexander-Senko in drapergem/draper#933

Workflows / CI: fixed & refactored by @Alexander-Senko in drapergem/draper#935

Documentation: updated maintainers list by @Alexander-Senko in drapergem/draper#934

Documentation: fixed CI badge by @Alexander-Senko in drapergem/draper#937

Workflows / CI: updated to Rails 7 by @Alexander-Senko in drapergem/draper#936

CI against Rails 8.0 by @y-yagi in drapergem/draper#938

Use Ubuntu 22.04 image to fix broken Ruby 2.4 build by @y-yagi in drapergem/draper#940

CI against Ruby 3.4 by @y-yagi in drapergem/draper#939

Release version 4.0.4, update changelog by @seanlinsley in drapergem/draper#942

Fix Broken CI by @y-yagi in drapergem/draper#946

Remove unused files from package by @krororo in drapergem/draper#945

Enable transactional fixtures in dummy app's specs by @cgunther in drapergem/draper#943

Support Rails 8.1 by @y-yagi in drapergem/draper#949

Release a new version by @y-yagi in drapergem/draper#950

New Contributors

@mishina2228 made their first contribution in drapergem/draper#916

@jonkerz made their first contribution in drapergem/draper#923

@Aerotune made their first contribution in drapergem/draper#878

@chain792 made their first contribution in drapergem/draper#922

@catks made their first contribution in drapergem/draper#920

@timdiggins made their first contribution in drapergem/draper#927

@Alexander-Senko made their first contribution in drapergem/draper#928

@krororo made their first contribution in drapergem/draper#945

Full Changelog: drapergem/draper@v4.0.2...v4.0.5

Changelog

Sourced from draper's changelog.

4.0.6 - 2025-11-15

Fixes

Revert breaking change from v4.0.5

4.0.5 - 2025-11-12

Fixes

Remove unused files from package #945

Support Rails 8.1 #949

Commits

e8421b7 Merge pull request #953 from drapergem/release-4.0.6
4c3a88f Release v4.0.6
726ac7b Revert "Reverted class spoofing"
0fc2821 Merge pull request #956 from y-yagi/exclude_ruby32_with_rails81
472e7d9 Temporarily exclude Ruby 3.2 with Rails 8.1
d1b17cc Merge pull request #954 from y-yagi/set-timeout-minutes
ee1958b Set timeout for GitHub Action Job
f7a249f Merge pull request #950 from y-yagi/cut_newversion
184f9bb Update CHANGELOG.md
d43537f Use new release of rspec-activerecord-expectations
Additional commits viewable in compare view

Updates devise from 4.9.4 to 5.0.0

Release notes

Sourced from devise's releases.

v5.0.0

https://github.com/heartcombo/devise/blob/v5.0.0/CHANGELOG.md#500---2026-01-23

v5.0.0.rc

https://github.com/heartcombo/devise/blob/v5.0.0.rc/CHANGELOG.md#500rc---2025-12-31

Changelog

Sourced from devise's changelog.

5.0.0 - 2026-01-23

no changes

5.0.0.rc - 2025-12-31
breaking changes
Drop support to Ruby < 2.7

Drop support to Rails < 7.0

Remove deprecated :bypass option from sign_in helper, use bypass_sign_in instead. #5803

Remove deprecated devise_error_messages! helper, use render "devise/shared/error_messages", resource: resource instead. #5803

Remove deprecated scope second argument from sign_in(resource, :admin) controller test helper, use sign_in(resource, scope: :admin) instead. #5803

Remove deprecated Devise::TestHelpers, use Devise::Test::ControllerHelpers instead. #5803

Remove deprecated Devise::Models::Authenticatable::BLACKLIST_FOR_SERIALIZATION #5598

Remove deprecated Devise.activerecord51? method.
Remove SecretKeyFinder and use app.secret_key_base as the default secret key for Devise.secret_key if a custom Devise.secret_key is not provided.

This is potentially a breaking change because Devise previously used the following order to find a secret key:
app.credentials.secret_key_base > app.secrets.secret_key_base > application.config.secret_key_base > application.secret_key_base
Now, it always uses application.secret_key_base. Make sure you're using the same secret key after the upgrade; otherwise, previously generated tokens for recoverable, lockable, and confirmable will be invalid. #5645
Change password instructions button label on devise view from Send me reset password instructions to Send me password reset instructions #5515

Change <br> tags separating form elements to wrapping them in <p> tags #5494

Replace [data-turbo-cache=false] with [data-turbo-temporary] on devise/shared/error_messages partial. This has been deprecated by Turbo since v7.3.0 (released on Mar 1, 2023).

If you are using an older version of Turbo and the default devise template, you'll need to copy it over to your app and change that back to [data-turbo-cache=false].
enhancements
Add Rails 8 support.

Routes are lazy-loaded by default in test and development environments now so Devise loads them before Devise.mappings call. #5728

New apps using Rack 3.1+ will be generated using config.responder.error_status = :unprocessable_content, since :unprocessable_entity has been deprecated by Rack.

Latest versions of Rails transparently convert :unprocessable_entity -> :unprocessable_content, and Devise will use that in the failure app to avoid Rack deprecation warnings for apps that are configured with :unprocessable_entity. They can also simply change their error_status to :unprocessable_content in latest Rack versions to avoid the warning.

Add Ruby 3.4 and 4.0 support.

Reenable Mongoid test suite across all Rails 7+ versions, to ensure we continue supporting it. Changes to dirty tracking to support Mongoid 8.0+. #5568
Password length validator is changed from
validates_length_of :password, within: password_length, allow_blank: true`
to
validates_length_of :password, minimum: proc { password_length.min }, maximum: proc { password_length.max }, allow_blank: true

... (truncated)

Commits

c51da69 Release v5, no changes since RC
e9c534d Fix "Test is missing assertions" warnings
731074b Stop updating copyright every year [ci skip]
35920d2 Exclude Rails main + Ruby 3.2
00a9778 Release v5.0.0.rc
119a40f Fix gemspec and readme, Devise v5 will support Rails >= 7, not 6
1096b60 Remove deprecated Devise.activerecord51? method
fc46631 Ensure auth keys at the start of the i18n msg are properly cased
356b094 Downcase authentication keys and humanize error message (#4834)
9a149ff Return 401 for sessions#destroy action with no user signed in (#4878)
Additional commits viewable in compare view

Updates rails from 7.2.2.1 to 7.2.3

Release notes

Sourced from rails's releases.

7.2.3

Active Support
Fix Enumerable#sole to return the full tuple instead of just the first element of the tuple.

Olivier Bellone

Fix parallel tests hanging when worker processes die abruptly.

Previously, if a worker process was killed (e.g., OOM killed, kill -9) during parallel test execution, the test suite would hang forever waiting for the dead worker.

Joshua Young

ActiveSupport::FileUpdateChecker does not depend on Time.now to prevent unnecessary reloads with time travel test helpers

Jan Grodowski

Fix ActiveSupport::BroadcastLogger from executing a block argument for each logger (tagged, info, etc.).

Jared Armstrong

Fix ActiveSupport::HashWithIndifferentAccess#transform_keys! removing defaults.

Hartley McGuire
Fix ActiveSupport::HashWithIndifferentAccess#tranform_keys! to handle collisions.

If the transformation would result in a key equal to another not yet transformed one, it would result in keys being lost.

Before:
>> {a: 1, b: 2}.with_indifferent_access.transform_keys!(&:succ)
=> {"c" => 1}
After:
>> {a: 1, b: 2}.with_indifferent_access.transform_keys!(&:succ)
=> {"c" => 1, "d" => 2}
Jason T Johnson, Jean Boussier
Fix ActiveSupport::Cache::MemCacheStore#read_multi to handle network errors.

This method specifically wasn't handling network errors like other codepaths.

... (truncated)

Commits

bb2bdef Preparing for 7.2.3 release
fd7d30e Upgrade sigstore gem to 0.2.2
40e5415 Sync CHANGELOG
3245de1 Add sigstore-cli gem to the releaser toolset
35ad36a Merge pull request #55969 from rails/fix-explain-tests-mysql-9.5
3690a3a Merge pull request #55966 from alexanderadam/doc/remove_subclasses_documentat...
33f9043 Disable GCS tests in CI
ebd0cfc Merge pull request #55947 from c0nspiracy/patch-1
c4d7af0 Merge pull request #55948 from zzak/debug-rails-new-docker
1ed5ecc Use NPM trusted publishing for our NPM packages
Additional commits viewable in compare view

Updates ransack from 4.3.0 to 4.4.1

Release notes

Sourced from ransack's releases.

4.4.1

What's Changed

Improve test coverage by @scarroll32 in activerecord-hackery/ransack#1641

Replace blueprints with FactoryBot by @Copilot in activerecord-hackery/ransack#1595

Encourage community to create failing PRs for bugs by @scarroll32 in activerecord-hackery/ransack#1642

Remove Rails 7.1 support by @Copilot in activerecord-hackery/ransack#1585

Revert "Fix enum support" by @scarroll32 in activerecord-hackery/ransack#1645

Full Changelog: activerecord-hackery/ransack@v4.4.0...v4.4.1

4.4.0

What's Changed

Update activerecord and activesupport version by @panacotar in activerecord-hackery/ransack#1551

Allow setting empty sorts by @yujideveloper in activerecord-hackery/ransack#1549

Fix rails 7.2 loading by @jdlubrano in activerecord-hackery/ransack#1534

Add blank lines after last let in RSpec examples by @deivid-rodriguez in activerecord-hackery/ransack#1563

Remove extra blank lines around block bodies by @deivid-rodriguez in activerecord-hackery/ransack#1562

Fix enum support by @matheussilvasantos in activerecord-hackery/ransack#1559

Cast array input to integer node value as nil by @jdufresne in activerecord-hackery/ransack#1565

Add Ukrainian translation locale by @abratashov in activerecord-hackery/ransack#1564

Fix Japanese Locales by @ryoya1122 in activerecord-hackery/ransack#1528

Add changelog_uri metadata to ransack.gemspec by @nfedyashev in activerecord-hackery/ransack#1569

Add alternative documentation links by @scarroll32 in activerecord-hackery/ransack#1574

build: publish to README.md, LICENSE, spec and lib directory only by @hachi-eiji in activerecord-hackery/ransack#1547

Bump micromatch from 4.0.5 to 4.0.8 in /docs by @dependabot[bot] in activerecord-hackery/ransack#1522

Complete Korean translation for boolean and null predicates by @Copilot in activerecord-hackery/ransack#1588

Add _eq_any to Search Matchers by @andyweber-bamf in activerecord-hackery/ransack#1573

Fix ActiveRecord::normalizes breaking LIKE predicates wildcards by @Copilot in activerecord-hackery/ransack#1587

Add changelog_uri to gemspec by @fynsta in activerecord-hackery/ransack#1499

Check type before sending #value message to predicate by @spaghetticode in activerecord-hackery/ransack#1468

Fix NoMethodError in type_for when column doesn't exist in ransackable_attributes by @Copilot in activerecord-hackery/ransack#1616

Fix ArgumentError when filtering by scopes with array arguments by @Copilot in activerecord-hackery/ransack#1590

Check all children of Arel::Nodes::And to extract correlated key by @riseshia in activerecord-hackery/ransack#1572

Fix ransack_alias issue, close #1239 by @itsalongstory in activerecord-hackery/ransack#1512

Fix Rails 7.2.1 compatibility by extending version bounds to cover all 7.2.x releases by @Copilot in activerecord-hackery/ransack#1586

Issue #1472 suggested fix by @abMatGit in activerecord-hackery/ransack#1474

Revert "Fix Rails 7.2.1 compatibility by extending version bounds to cover all 7.2.x releases" by @scarroll32 in activerecord-hackery/ransack#1618

Revert "Issue #1472 suggested fix" by @scarroll32 in activerecord-hackery/ransack#1619

Add turbo_search_form_for helper for Turbo/Hotwire integration by @Copilot in activerecord-hackery/ransack#1611

Add the helper search_form_with by @Copilot in activerecord-hackery/ransack#1599

Fix typo by @scarroll32 in activerecord-hackery/ransack#1624

Fix nested conditions, polymorphic associations handling by @bopm in activerecord-hackery/ransack#1561

Improve RubyGems description by @scarroll32 in activerecord-hackery/ransack#1637

New Contributors

@panacotar made their first contribution in activerecord-hackery/ransack#1551

@matheussilvasantos made their first contribution in activerecord-hackery/ransack#1559

@abratashov made their first contribution in activerecord-hackery/ransack#1564

@ryoya1122 made their first contribution in activerecord-hackery/ransack#1528

... (truncated)

Changelog

Sourced from ransack's changelog.

Change Log

From v4.4.0, the CHANGELOG is captured in the Release info

Historical releases

Commits

383c5dd Version 4.4.1
a6875aa Revert "Fix enum support" (#1645)
0189ed1 Remove Rails 7.1 support (#1585)
9995e09 Encourage community to create failing PRs for bugs (#1642)
6f019e0 Replace blueprints with FactoryBot (#1595)
3d985fd Improve test coverage (#1641)
12df393 Release process notes
2a7cbcc Cleanup
8f8a77e Update release documentation
e4693d6 Version 4.4.0
Additional commits viewable in compare view

Updates importmap-rails from 2.1.0 to 2.2.3

Release notes

Sourced from importmap-rails's releases.

v2.2.3

What's Changed

Fix pin_all_from incorrectly removing "js" substring from filenames by @rafaelfranca in rails/importmap-rails#313

Handle package names with nested paths in import maps by @rafaelfranca in rails/importmap-rails#322

Full Changelog: rails/importmap-rails@v2.2.2...v2.2.3

v2.2.2

What's Changed

Keep options when updating packages in importmap by @rafaelfranca in rails/importmap-rails#310

Make integrity calculation opt-in by @rafaelfranca in rails/importmap-rails#312

Full Changelog: rails/importmap-rails@v2.2.1...v2.2.2

v2.2.1

What's Changed

Improve SRI support by @rafaelfranca in rails/importmap-rails#309

Integrity is now generated by default using the assets pipeline if it is properly configured. pin and update commands don't download the integrity from the npm repository anymore.

Full Changelog: rails/importmap-rails@v2.2.0...v2.2.1

v2.2.0

What's Changed

Add --preload option to pin command by @3v0k4 in rails/importmap-rails#298

Catch failure HTTP responses on calls to the npm registry by @tmeire in rails/importmap-rails#301

Warn about vendored versionless packages by @3v0k4 in rails/importmap-rails#305

Implement SRI support in importmap-rails by @rafaelfranca in rails/importmap-rails#304

New Contributors

@ron-shinall made their first contribution in rails/importmap-rails#296

@3v0k4 made their first contribution in rails/importmap-rails#298

@tmeire made their first contribution in rails/importmap-rails#301

Full Changelog: rails/importmap-rails@v2.1.0...v2.2.0

Commits

6fb2bd5 Prepare for 2.2.3
682e058 Merge pull request #322 from rails/rmf-fix-321
a04dd30 Handle package names with nested paths in import maps
9b0a9e0 Merge pull request #323 from rails/rmf-test-ruby-4
e37bea6 Test with Ruby 4.0 and Rails 8.1
51c1a53 Merge pull request #313 from rails/rm-fix-282
3e94dfa Add some copilot prompts for this project
7ffedcb Fix pin_all_from incorrectly removing "js" substring from filenames
dcdb5fe Bump version for 2.2.2
40d0dc5 Fix update command adding extra new lines
Additional commits viewable in compare view

Updates cuprite from 0.15.1 to 0.17

Release notes

Sourced from cuprite's releases.

0.17

Changed

:inspector option is retired

Fixed

Correctly open devtools page when calling debug [Bump rails from 7.0.4.2 to 7.0.4.3 #296, #297]

0.16

Changed

wait_for_network_idle doesn't raise error, instead simply returns nil

Fixed

Assigning broken unicode to a node directly from JS can lead to JSON::ParserError: incomplete surrogate pair at ... error

Changelog

Sourced from cuprite's changelog.

0,17

Added

Changed

:inspector option is retired

Fixed

Correctly open devtools page when calling debug [Bump rails from 7.0.4.2 to 7.0.4.3 #296, #297]

Removed

0.16 - (May 10, 2025)

Added

Changed

wait_for_network_idle doesn't raise error, instead simply returns nil

Fixed

Assigning broken unicode to a node directly from JS can lead to JSON::ParserError: incomplete surrogate pair at ... error

Removed

Commits

bc06cc0 Bump up
9c5c11c chore: debug was moved to ferrum, inspector is retired
bb70a10 Fix debug_url for the latest version of Chrome (#297)
107bf85 Bump up (#299)
4fa8126 Add support for Node#obscured? (#291)
ec4b49b chore: fix linter
273720e Skip injecting extensions on frame switch to prevent javascript errors (#201)
04becb9 fix: build
a659b03 Update README to refer to blocklist and allowlist (#290)
b4eeaf2 scroll to destination when dragging (#288)
Additional commits viewable in compare view

Updates webrick from 1.9.1 to 1.9.2

Release notes

Sourced from webrick's releases.

v1.9.2

What's Changed

Remove usage of IO#nread by @osyoyu in ruby/webrick#181

Remove assert matching stderr output in test_sni. by @jackorp in ruby/webrick#158

New Contributors

@osyoyu made their first contribution in ruby/webrick#181

@jackorp made their first contribution in ruby/webrick#158

Full Changelog: ruby/webrick@v1.9.1...v1.9.2

Commits

b1684ce v1.9.2
8f979b8 Add GitHub release.yml to exclude dependencies label from changelog
72744d8 Bump ruby/setup-ruby action from v1.190.0 to v1.268.0
b0398af Merge pull request #158 from jackorp/fix_test
6456725 Merge pull request #180 from ruby/dependabot/github_actions/actions/checkout-6
b62f8d8 Bump actions/checkout from 5 to 6
9a59373 Merge pull request #181 from osyoyu/no-nread
daf314a Remove usage of IO#nread
5584117 Merge pull request #178 from ruby/dependabot/github_actions/step-security/har...
b761de1 Bump step-security/harden-runner from 2.13.1 to 2.13.2
Additional commits viewable in compare view

Updates simplecov-cobertura from 2.1.0 to 3.1.0

Release notes

Sourced from simplecov-cobertura's releases.

v3.1.0

What's Changed

Increase precision to match Simplecov results by @aladh in jessebs/simplecov-cobertura#42

Fix failing tests with rexml 3.4.2 by @dalibor in jessebs/simplecov-cobertura#44

New Contributors

@aladh made their first contribution in jessebs/simplecov-cobertura#42

@dalibor made their first contribution in jessebs/simplecov-cobertura#44

Full Changelog: jessebs/simplecov-cobertura@v3.0.0...v3.1.0

v3.0.0

What's Changed

Run new Rubies (3.1..3.3) in CI by @okuramasafumi in jessebs/simplecov-cobertura#28

Fixes by @pboling in jessebs/simplecov-cobertura#32

Update build.yml to include 3.4 by @jessebs in jessebs/simplecov-cobertura#34

Remove rubygem download badge by @jessebs in jessebs/simplecov-cobertura#36

Changed output format to match SimpleCov by @jessebs in jessebs/simplecov-cobertura#37

Use filename as classname by @jessebs in jessebs/simplecov-cobertura#38

39 move ownership by @jessebs in jessebs/simplecov-cobertura#40

New Contributors

@okuramasafumi made their first contribution in jessebs/simplecov-cobertura#28

@pboling made their first contribution in jessebs/simplecov-cobertura#32

Full Changelog: jessebs/simplecov-cobertura@v2.1.0...v3.0.0

Commits

43b010a 3.1.0 release
c15e846 Fix failing tests with rexml 3.4.2 (#44)
1e4c022 Increase precision to match what's provided by Simplecov results (#42)
4f45fbd Bump version to 3.0.1-dev for development
b32552e Bump version for release
89f29e0 39 move ownership (#40)
7d84d5e Use filename as classname (#38)
b72eacd Removed excess coverage.xml
860f141 Changed output format to match SimpleCov (#37)
a74057f Remove rubygem download badge (#36)
Additional commits viewable in compare view

Updates cucumber-rails from 3.1.1 to 4.0.0

Release notes

Sourced from cucumber-rails's releases.

v4.0.0

Changed

In-line with minimum ruby / rails, a lot of internal non-breaking refactors have been done to remove legacy code

Removed

Removed support for Ruby 2.6 - 3.1 (Ruby 3.2 is now the lowest version)

Removed support for Rails 5.2 and 6.0 (6.1 is still supported and 7.0+ is preferred)

Changelog

Sourced from cucumber-rails's changelog.

[4.0.0] - 2025-09-01

Changed

In-line with minimum ruby / rails, a lot of internal non-breaking refactors have been done to remove legacy code

Removed

Removed support for Ruby 2.6 - 3.1 (Ruby 3.2 is now the lowest version)

Removed support for Rails 5.2 and 6.0 (6.1 is still supported and 7.0+ is preferred)

Commits

b4ab57e Prepare release v4.0.0
70bceb6 Bump requirements / minimum version (#596)
86a7bac chore(deps): update actions/checkout action to v5 (#595)
a70a129 Feature/bump minimum ruby (

Bumps the rails_72 group with 17 updates in the /gemfiles/rails_72 directory: | Package | From | To | | --- | --- | --- | | [rake](https://github.com/ruby/rake) | `13.2.1` | `13.3.1` | | [pundit](https://github.com/varvet/pundit) | `2.5.0` | `2.5.2` | | [draper](https://github.com/drapergem/draper) | `4.0.4` | `4.0.6` | | [devise](https://github.com/heartcombo/devise) | `4.9.4` | `5.0.0` | | [ransack](https://github.com/activerecord-hackery/ransack) | `4.3.0` | `4.4.1` | | [importmap-rails](https://github.com/rails/importmap-rails) | `2.1.0` | `2.2.3` | | [cuprite](https://github.com/rubycdp/cuprite) | `0.15.1` | `0.17` | | [webrick](https://github.com/ruby/webrick) | `1.9.1` | `1.9.2` | | [simplecov-cobertura](https://github.com/jessebs/simplecov-cobertura) | `2.1.0` | `3.1.0` | | [cucumber-rails](https://github.com/cucumber/cucumber-rails) | `3.1.1` | `4.0.0` | | [cucumber](https://github.com/cucumber/cucumber-ruby) | `9.2.1` | `10.2.0` | | [database_cleaner-active_record](https://github.com/DatabaseCleaner/database_cleaner-active_record) | `2.2.0` | `2.2.2` | | [rspec-rails](https://github.com/rspec/rspec-rails) | `8.0.0` | `8.0.2` | | [sqlite3](https://github.com/sparklemotion/sqlite3-ruby) | `2.6.0` | `2.9.0` | | [i18n-tasks](https://github.com/glebm/i18n-tasks) | `1.0.15` | `1.1.2` | | [arbre](https://github.com/activeadmin/arbre) | `2.2.0` | `2.2.1` | | [csv](https://github.com/ruby/csv) | `3.3.4` | `3.3.5` | Updates `rake` from 13.2.1 to 13.3.1 - [Release notes](https://github.com/ruby/rake/releases) - [Changelog](https://github.com/ruby/rake/blob/master/History.rdoc) - [Commits](ruby/rake@v13.2.1...v13.3.1) Updates `pundit` from 2.5.0 to 2.5.2 - [Changelog](https://github.com/varvet/pundit/blob/main/CHANGELOG.md) - [Commits](varvet/pundit@v2.5.0...v2.5.2) Updates `draper` from 4.0.4 to 4.0.6 - [Release notes](https://github.com/drapergem/draper/releases) - [Changelog](https://github.com/drapergem/draper/blob/master/CHANGELOG.md) - [Commits](drapergem/draper@v4.0.4...v4.0.6) Updates `devise` from 4.9.4 to 5.0.0 - [Release notes](https://github.com/heartcombo/devise/releases) - [Changelog](https://github.com/heartcombo/devise/blob/main/CHANGELOG.md) - [Commits](heartcombo/devise@v4.9.4...v5.0.0) Updates `rails` from 7.2.2.1 to 7.2.3 - [Release notes](https://github.com/rails/rails/releases) - [Commits](rails/rails@v7.2.2.1...v7.2.3) Updates `ransack` from 4.3.0 to 4.4.1 - [Release notes](https://github.com/activerecord-hackery/ransack/releases) - [Changelog](https://github.com/activerecord-hackery/ransack/blob/main/CHANGELOG.md) - [Commits](activerecord-hackery/ransack@v4.3.0...v4.4.1) Updates `importmap-rails` from 2.1.0 to 2.2.3 - [Release notes](https://github.com/rails/importmap-rails/releases) - [Commits](rails/importmap-rails@v2.1.0...v2.2.3) Updates `cuprite` from 0.15.1 to 0.17 - [Release notes](https://github.com/rubycdp/cuprite/releases) - [Changelog](https://github.com/rubycdp/cuprite/blob/main/CHANGELOG.md) - [Commits](rubycdp/cuprite@v0.15.1...v0.17) Updates `webrick` from 1.9.1 to 1.9.2 - [Release notes](https://github.com/ruby/webrick/releases) - [Commits](ruby/webrick@v1.9.1...v1.9.2) Updates `simplecov-cobertura` from 2.1.0 to 3.1.0 - [Release notes](https://github.com/jessebs/simplecov-cobertura/releases) - [Commits](jessebs/simplecov-cobertura@v2.1.0...v3.1.0) Updates `cucumber-rails` from 3.1.1 to 4.0.0 - [Release notes](https://github.com/cucumber/cucumber-rails/releases) - [Changelog](https://github.com/cucumber/cucumber-rails/blob/main/CHANGELOG.md) - [Commits](cucumber/cucumber-rails@v3.1.1...v4.0.0) Updates `cucumber` from 9.2.1 to 10.2.0 - [Release notes](https://github.com/cucumber/cucumber-ruby/releases) - [Changelog](https://github.com/cucumber/cucumber-ruby/blob/main/CHANGELOG.md) - [Commits](cucumber/cucumber-ruby@v9.2.1...v10.2.0) Updates `database_cleaner-active_record` from 2.2.0 to 2.2.2 - [Changelog](https://github.com/DatabaseCleaner/database_cleaner-active_record/blob/main/CHANGELOG.md) - [Commits](DatabaseCleaner/database_cleaner-active_record@v2.2.0...v2.2.2) Updates `rspec-rails` from 8.0.0 to 8.0.2 - [Changelog](https://github.com/rspec/rspec-rails/blob/main/Changelog.md) - [Commits](rspec/rspec-rails@v8.0.0...v8.0.2) Updates `sqlite3` from 2.6.0 to 2.9.0 - [Release notes](https://github.com/sparklemotion/sqlite3-ruby/releases) - [Changelog](https://github.com/sparklemotion/sqlite3-ruby/blob/main/CHANGELOG.md) - [Commits](sparklemotion/sqlite3-ruby@v2.6.0...v2.9.0) Updates `i18n-tasks` from 1.0.15 to 1.1.2 - [Release notes](https://github.com/glebm/i18n-tasks/releases) - [Changelog](https://github.com/glebm/i18n-tasks/blob/main/CHANGES.md) - [Commits](glebm/i18n-tasks@v1.0.15...v1.1.2) Updates `arbre` from 2.2.0 to 2.2.1 - [Release notes](https://github.com/activeadmin/arbre/releases) - [Changelog](https://github.com/activeadmin/arbre/blob/master/CHANGELOG.md) - [Commits](activeadmin/arbre@v2.2.0...v2.2.1) Updates `csv` from 3.3.4 to 3.3.5 - [Release notes](https://github.com/ruby/csv/releases) - [Changelog](https://github.com/ruby/csv/blob/main/NEWS.md) - [Commits](ruby/csv@v3.3.4...v3.3.5) Updates `railties` from 7.2.2.1 to 7.2.3 - [Release notes](https://github.com/rails/rails/releases) - [Changelog](https://github.com/rails/rails/blob/v8.1.2/railties/CHANGELOG.md) - [Commits](rails/rails@v7.2.2.1...v7.2.3) --- updated-dependencies: - dependency-name: rake dependency-version: 13.3.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: rails_72 - dependency-name: pundit dependency-version: 2.5.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: rails_72 - dependency-name: draper dependency-version: 4.0.6 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: rails_72 - dependency-name: devise dependency-version: 5.0.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: rails_72 - dependency-name: rails dependency-version: 7.2.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: rails_72 - dependency-name: ransack dependency-version: 4.4.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rails_72 - dependency-name: importmap-rails dependency-version: 2.2.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: rails_72 - dependency-name: cuprite dependency-version: '0.17' dependency-type: direct:development update-type: version-update:semver-minor dependency-group: rails_72 - dependency-name: webrick dependency-version: 1.9.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: rails_72 - dependency-name: simplecov-cobertura dependency-version: 3.1.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: rails_72 - dependency-name: cucumber-rails dependency-version: 4.0.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: rails_72 - dependency-name: cucumber dependency-version: 10.2.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: rails_72 - dependency-name: database_cleaner-active_record dependency-version: 2.2.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: rails_72 - dependency-name: rspec-rails dependency-version: 8.0.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: rails_72 - dependency-name: sqlite3 dependency-version: 2.9.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: rails_72 - dependency-name: i18n-tasks dependency-version: 1.1.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: rails_72 - dependency-name: arbre dependency-version: 2.2.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rails_72 - dependency-name: csv dependency-version: 3.3.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rails_72 - dependency-name: railties dependency-version: 7.2.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rails_72 ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Feb 1, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the rails_72 group across 1 directory with 19 updates #445

Bump the rails_72 group across 1 directory with 19 updates #445

Uh oh!

dependabot bot commented on behalf of github Feb 1, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Bump the rails_72 group across 1 directory with 19 updates #445

Are you sure you want to change the base?

Bump the rails_72 group across 1 directory with 19 updates #445

Uh oh!

Conversation

dependabot bot commented on behalf of github Feb 1, 2026

2.5.2 (2025-09-24)

Fixed

2.5.1 (2025-09-12)

Fixed

v4.0.6

What's Changed

v4.0.5

What's Changed

New Contributors

4.0.6 - 2025-11-15

Fixes

4.0.5 - 2025-11-12

Fixes

v5.0.0

v5.0.0.rc

5.0.0 - 2026-01-23

5.0.0.rc - 2025-12-31

7.2.3

Active Support

4.4.1

What's Changed

4.4.0

What's Changed

New Contributors

Change Log

From v4.4.0, the CHANGELOG is captured in the Release info

Historical releases

v2.2.3

What's Changed

v2.2.2

What's Changed

v2.2.1

What's Changed

v2.2.0

What's Changed

New Contributors

0.17

Changed

Fixed

0.16

Changed

Fixed

0,17

Added

Changed

Fixed

Removed

0.16 - (May 10, 2025)

Added

Changed

Fixed

Removed

v1.9.2

What's Changed

New Contributors

v3.1.0

What's Changed

New Contributors

v3.0.0

What's Changed

New Contributors

v4.0.0

Changed

Removed

[4.0.0] - 2025-09-01

Changed

Removed

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development