Update devise 5.0.0 → 5.0.1 (patch)

[depfu]

Here is everything you need to know about this update. Please take a good look at what changed and the test results before merging this pull request.

What changed?

✳️ devise (5.0.0 → 5.0.1) · Repo · Changelog

Release Notes

5.0.1

https://github.com/heartcombo/devise/blob/v5.0.1/CHANGELOG.md#501---2026-02-13

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 3 commits:

• Release v5.0.1
• Only downcase first letter of each auth key, not the entire string (#5822)
• Fix minitest name (#5821)

↗️ bcrypt (indirect, 3.1.20 → 3.1.21) · Repo · Changelog

Release Notes

3.1.21

What's Changed

• Provide a 'Changelog' link on rubygems.org/gems/bcrypt by @mark-young-atg in #274
• Support ruby 3.3 and 3.4.0-preview1 by @m-nakamura145 in #276
• Mark as ractor-safe by @mohamedhafez in #280
• Add == gotcha that can be unintuitive at first by @federicoaldunate in #279
• Constant compare by @tenderlove in #282
• try to modernize CI by @tenderlove in #287
• Try to deal with flaky tests by @tenderlove in #288
• Configure trusted publishing by @tenderlove in #289
• bump version by @tenderlove in #290

New Contributors

• @mark-young-atg made their first contribution in #274
• @m-nakamura145 made their first contribution in #276
• @mohamedhafez made their first contribution in #280
• @federicoaldunate made their first contribution in #279

Full Changelog: v3.1.20...v3.1.21

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 24 commits:

• Merge pull request #290 from tenderlove/bump
• add bundler tasks
• bump version
• Merge pull request #289 from tenderlove/trusted-publishers
• Configure trusted publishing
• Merge pull request #288 from tenderlove/deal-with-flake
• Try to deal with flaky tests
• Merge pull request #287 from tenderlove/modernize-ci
• Modernize CI
• Declare development dependencies
• Merge pull request #282 from tenderlove/constant-compare
• Lets not allocate anything
• Use a constant-time secure comparison for passwords
• Merge pull request #279 from federicoaldunate/fix-eql-comment
• Merge pull request #280 from mohamedhafez/patch-1
• Mark as ractor-safe
• Add == gotcha that can be unintuitive at first
• Merge pull request #276 from m-nakamura145/support-ruby-3-3-x-and-3-4-0-preview1
• Test old Rubies on older x64 macOS
• Ruby 3.4.0.-preview1 is not available on Windows
• Update README to remove specific Ruby version mentions
• Support ruby 3.3 and 3.4.0-preview1
• Merge pull request #274 from mark-young-atg/provide_changelog_link_on_rubygems
• Provide a 'Changelog' link on rubygems.org/gems/bcrypt

↗️ irb (indirect, 1.16.0 → 1.17.0) · Repo · Changelog

Release Notes

1.17.0

What's Changed

🐛 Bug Fixes

• Support copy command on windows and wsl by @hogelog in #1153
• Fix incorrect history handling in nested session with debug.gem by @st0012 in #1158
• Treat frame.path as nilable in frame filtering by @st0012 in #1161

🛠 Other Changes

• Exclude dependabot updates from release note by @hsbt in #1151
• Fix test_rendering flaky pager test by @tompng in #1152
• Syntax Highlight using Prism by @tompng in #1091
• Nesting analysis using Prism by @tompng in #1092
• Add missing keyword to colorize by @tompng in #1163
• Stop pointing rbs to git source by @st0012 in #1165
• Support slices change in Prism by @tompng in #1168
• Bump version to 1.17.0 by @st0012 in #1169
• Skip tests that are failing on TruffleRuby by @st0012 in #1170

Full Changelog: v1.16.0...v1.17.0

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 12 commits:

• Skip tests that are failing on TruffleRuby (#1170)
• Bump version to 1.17.0 (#1169)
• Support slices change in Prism (#1168)
• Stop pointing rbs to git source (#1165)
• Treat frame.path as nilable in frame filtering (#1161)
• Add missing keyword to colorize (#1163)
• Fix incorrect history handling in nested session with debug.gem (#1158)
• Nesting analysis using Prism (#1092)
• Syntax Highlight using Prism (#1091)
• Support copy command on windows and wsl (#1153)
• Fix test_rendering flaky pager test (#1152)
• Exclude dependabot updates from release note

↗️ json (indirect, 2.18.0 → 2.18.1) · Repo · Changelog

Release Notes

2.18.1

What's Changed

• Fix a potential crash in very specific circumstance if GC triggers during a call to to_json
  without first invoking a user defined #to_json method.

Full Changelog: v2.18.0...v2.18.1

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 17 commits:

• Release 2.18.1
• fbuffer_append_str: assume string
• Ensure `Generator::State` is kept on the stack
• Improve class JSON intro
• Extract json_fast_memcpy16 for readability
• Use __builtin_memcpy, if available, to copy overlapping byte ranges in copy_remaining_bytes to avoid a branch to MEMCPY. Additionally use a space as padding byte instead of an 'X' so it can be represented diretly on AArch64 with a single instruction.
• Remove trailing spaces [ci skip]
• initialize search.chunk_end to silence a warning about it being potentially uninitialized
• use a conditional to select SIMD implementation rather than pointer
• Directly write to the output buffer when converting UTF32 to UTF8.
• Merge pull request #921 from nobu/nonportable-code
• Fix non-portable code
• Simplify unescape_unicode
• Keep track of the the number of additional backslashes to avoid an extra memchr searching the remaining characters when no more backslashes exist.
• Add missing documentation for `allow_control_characters` parsing option
• Update `fpconv_dtoa` definition to use `dest[32]`
• Revert "Skip test failing with JRuby in CI"

↗️ rdoc (indirect, 7.1.0 → 7.2.0) · Repo · Changelog

Release Notes

7.2.0

What's Changed

✨ Enhancements

• Expand GitHub style references in ChangeLog to URL by @nobu in #1547
• Highlight bash commands by @st0012 in #1544

🐛 Bug Fixes

• Replace attribute_manager with a new rdoc-inline-format parser by @tompng in #1559
• Fix not scrolling in search results when ArrowUp or ArrowDown for Aliki by @ccmywish in #1587
• Implement escapes in Markdown to RDoc conversion by @tompng in #1575
• Change PrismRuby not to depend on hack that stores module nesting information to context.parent by @tompng in #1580
• Hide search results on Escape key on desktop too for Aliki by @ccmywish in #1593
• Fix visit_call_node visit arguments twice by @tompng in #1596
• Fix accept_table with incomplete rows by @st0012 in #1599
• Fix sections not displaying their text by @Earlopain in #1600
• Ignore visibility method, attr definition, module_function within block by @tompng in #1595
• Fix broken legacy rdoc-ref labels and duplicate heading IDs by @st0012 in #1602
• Add unique IDs to section headings in Aliki template by @st0012 in #1603
• Fix RDoc::Attr#add_alias handling of aliased attribute accessor by @extern-c in #1605

📚 Documentation

• Fix broken RDoc Markup Reference link in RDoc::Comment by @extern-c in #1566
• Add missing quote for 'unknown' by @p8 in #1589

🛠 Other Changes

• Bump ruby/setup-ruby from 1.281.0 to 1.284.0 by @dependabot[bot] in #1569
• Fix a test that uses invalid syntax by @Earlopain in #1577
• Removed truffleruby from CI by @hsbt in #1586
• Bump ruby/setup-ruby from 1.284.0 to 1.286.0 by @dependabot[bot] in #1582
• Bump step-security/harden-runner from 2.14.0 to 2.14.1 by @dependabot[bot] in #1583
• Bump actions/checkout from 6.0.1 to 6.0.2 by @dependabot[bot] in #1584
• Bump ruby/setup-ruby from 1.286.0 to 1.287.0 by @dependabot[bot] in #1594
• Add /release-check Claude Code skill by @st0012 in #1604
• Bump ruby/setup-ruby from 1.287.0 to 1.288.0 by @dependabot[bot] in #1606
• Bump step-security/harden-runner from 2.14.1 to 2.14.2 by @dependabot[bot] in #1607
• Bump version to 7.2.0 by @st0012 in #1608

New Contributors

• @ccmywish made their first contribution in #1587

Full Changelog: v7.1.0...v7.2.0

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 28 commits:

• Bump version to 7.2.0 (#1608)
• Fix RDoc::Attr#add_alias handling of aliased attribute accessor (#1605)
• Add unique IDs to section headings in Aliki template (#1603)
• Add unique IDs to section headings in Aliki template (#1603)
• Bump step-security/harden-runner from 2.14.1 to 2.14.2 (#1607)
• Bump ruby/setup-ruby from 1.287.0 to 1.288.0 (#1606)
• Add `/release-check` Claude Code skill (#1604)
• Fix broken legacy rdoc-ref labels and duplicate heading IDs (#1602)
• Ignore visibility method, attr definition, module_function within block (#1595)
• Fix sections not displaying their text (#1600)
• Fix accept_table with incomplete rows (#1599)
• Fix visit_call_node visit arguments twice (#1596)
• Hide search results on Escape key on desktop too for `Aliki` (#1593)
• Change PrismRuby not to depend on hack that stores module nesting information to context.parent (#1580)
• Implement escapes in Markdown to RDoc conversion (#1575)
• Bump ruby/setup-ruby from 1.286.0 to 1.287.0 (#1594)
• Add missing quote for 'unknown' (#1589)
• Fix not scrolling in search results when `ArrowUp` or `ArrowDown` for `Aliki` (#1587)
• Bump actions/checkout from 6.0.1 to 6.0.2
• Bump step-security/harden-runner from 2.14.0 to 2.14.1 (#1583)
• Bump ruby/setup-ruby from 1.284.0 to 1.286.0 (#1582)
• Removed truffleruby from CI, because no-one fix failure jobs
• Fix a test that uses invalid syntax (#1577)
• Bump ruby/setup-ruby from 1.281.0 to 1.284.0 (#1569)
• Replace attribute_manager with a new rdoc-inline-format parser (#1559)
• Highlight bash commands (#1544)
• Fix broken RDoc Markup Reference link in RDoc::Comment (#1566)
• Expand GitHub style references in ChangeLog to URL (#1547)

↗️ responders (indirect, 3.1.1 → 3.2.0) · Repo · Changelog

Release Notes

3.2.0

https://github.com/heartcombo/responders/blob/v3.2.0/CHANGELOG.md#320

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 10 commits:

• Release v3.2.0
• Merge pull request #254 from heartcombo/ca-upgrade
• Update Ruby/Rails support
• Update copyright, use new email [ci skip]
• Merge pull request #249 from kianmeng/fix-typo
• Fix typo, compatibilty -> compatibility
• Bump year [ci skip]
• Add support to Ruby 3.3 (no changes required)
• Update to latest gems
• Fix link to old Rails 3 blog post (#247)

---

Depfu will automatically keep this PR conflict-free, as long as you don't add any commits to this branch yourself. You can also trigger a rebase manually by commenting with @depfu rebase.

All Depfu comment commands

@​depfu rebase

Rebases against your default branch and redoes this update

@​depfu recreate

Recreates this PR, overwriting any edits that you've made to it

@​depfu merge

Merges this PR once your tests are passing and conflicts are resolved

@​depfu cancel merge

Cancels automatic merging of this PR

@​depfu close

Closes this PR and deletes the branch

@​depfu reopen

Restores the branch and reopens this PR (if it's closed)

@​depfu pause

Ignores all future updates for this dependency and closes this PR

@​depfu pause [minor|major]

Ignores all future minor/major updates for this dependency and closes this PR

@​depfu resume

Future versions of this dependency will create PRs again (leaves this PR as is)