Update hashie requirement from >= 3.5.4, < 3.7.0 to >= 3.5.4, < 4.2.0

[dependabot-preview]

Updates the requirements on hashie to permit the latest version.

Release notes

Sourced from hashie's releases.

v4.1.0

Added

• #499: Add Hashie::Extensions::Mash::PermissiveRespondTo to make specific subclasses of Mash fully respond to messages for use with SimpleDelegator - @michaelherold.

Fixed

• #467: Fixed DeepMerge#deep_merge mutating nested values within the receiver - @michaelherold.
• #505: Ensure that Hashie::Arrays are not deconverted within Hashie::Mashes to make Mash#dig work properly - @michaelherold.
• #507: Suppress Psych.safe_load arg warn when using Psych 3.1.0+ - @koic.
• #508: Fixed Mash.load no longer uses Rails-only #except - @bobbymcwho.
• #508: Fixed Hashie::Extensions::DeepMerge #deep_merge not correctly dup'ing sub-hashes if active_support hash extensions were not present - @bobbymcwho.
• #500: Do not warn when setting Mash keys that look like underbang, bang, and query methods - @michaelherold.
• #510: Ensure that Hashie::Mash#compact is only defined on Ruby version >= 2.4.0 - @bobbymcwho.
• #511: Suppress keyword arguments warning for Ruby 2.7.0 - @koic.
• #512: Suppress an integer unification warning for using Ruby 2.4.0+ - @koic.
• #513: Suppress a Ruby's warning when using Ruby 2.6.0+ - @koic.

Miscellaneous

• #981: Exclude tests from the gem release to reduce installation size and improve installation speed - @michaelherold.

v4.0.0

Full Changelog

New in 4.0.0:

4.0.0 - 2019-10-30

Added

• #323: Added Hashie::Extensions::Mash::DefineAccessors - @marshall-lee.
• #474: Expose YAML#safe_load options in Mash#load - @riouruma, @dblock.
• #478: Added optional array parameter to Hashie::Mash.disable_warnings - @bobbymcwho.
• #481: Ruby 2.6 - Support Hash#merge and #merge! called with multiple Hashes/Mashes - @bobbymcwho.
• #488: Added ability to create an anonymous Hashie::Mash subclass with key conflict errors silenced using Hashie::Mash.quiet.new - @bobbymcwho.

Changed

• #481: Implement non-destructive standard Hash methods - @bobbymcwho.

Fixed

• #459: Fixed a regression in Mash.load that disallowed aliases - @arekt and @michaelherold.
• #465: Fixed deep_update to call any readers when a key exists - @laertispappas.
• #479: Fixed an issue with Hash#except not returning a Mash in Rails 6 - @bobbymcwho.

... (truncated)

Changelog

Sourced from hashie's changelog.

4.1.0 - 2020-02-01

Added

• #499: Add Hashie::Extensions::Mash::PermissiveRespondTo to make specific subclasses of Mash fully respond to messages for use with SimpleDelegator - @michaelherold.

Fixed

• #467: Fixed DeepMerge#deep_merge mutating nested values within the receiver - @michaelherold.
• #505: Ensure that Hashie::Arrays are not deconverted within Hashie::Mashes to make Mash#dig work properly - @michaelherold.
• #507: Suppress Psych.safe_load arg warn when using Psych 3.1.0+ - @koic.
• #508: Fixed Mash.load no longer uses Rails-only #except - @bobbymcwho.
• #508: Fixed Hashie::Extensions::DeepMerge #deep_merge not correctly dup'ing sub-hashes if active_support hash extensions were not present - @bobbymcwho.
• #500: Do not warn when setting Mash keys that look like underbang, bang, and query methods - @michaelherold.
• #510: Ensure that Hashie::Mash#compact is only defined on Ruby version >= 2.4.0 - @bobbymcwho.
• #511: Suppress keyword arguments warning for Ruby 2.7.0 - @koic.
• #512: Suppress an integer unification warning for using Ruby 2.4.0+ - @koic.
• #513: Suppress a Ruby's warning when using Ruby 2.6.0+ - @koic.

Miscellaneous

• #981: Exclude tests from the gem release to reduce installation size and improve installation speed - @michaelherold.

4.0.0 - 2019-10-30

Added

• #323: Added Hashie::Extensions::Mash::DefineAccessors - @marshall-lee.
• #474: Expose YAML#safe_load options in Mash#load - @riouruma, @dblock.
• #478: Added optional array parameter to Hashie::Mash.disable_warnings - @bobbymcwho.
• #481: Ruby 2.6 - Support Hash#merge and #merge! called with multiple Hashes/Mashes - @bobbymcwho.
• #488: Added ability to create an anonymous Hashie::Mash subclass with key conflict errors silenced using Hashie::Mash.quiet.new - @bobbymcwho.

Changed

• #481: Implement non-destructive standard Hash methods - @bobbymcwho.

Fixed

• #459: Fixed a regression in Mash.load that disallowed aliases - @arekt and @michaelherold.
• #465: Fixed deep_update to call any readers when a key exists - @laertispappas.
• #479: Fixed an issue with Hash#except not returning a Mash in Rails 6 - @bobbymcwho.
• #489: Updated the documentation to exlain the behavior of Mash and keyword arguments - @Bhacaz.

Miscellaneous

... (truncated)

Commits

• bc24532 Preparing for release, 4.1.0
• 505f0fe Merge pull request #513 from koic/suppress_ruby_warning_for_ruby_2_6
• 0dde4b4 Suppress a Ruby's warning when using Ruby 2.6.0+
• 7fa93b1 Merge pull request #512 from koic/suppress_integer_unification_warning_for_ru...
• 4d3d062 Suppress an integer unification warning for Ruby 2.4.0+
• ac15574 Merge pull request #511 from koic/suppress_kwargs_warning_for_ruby_2_7_0
• eb69c58 Don't warn when setting most affixed keys (#500)
• 5704097 Suppress keyword arguments warning for Ruby 2.7.0
• 25fe2f7 Fix except use in Mash#load (#508)
• d2071d8 Merge pull request #510 from BobbyMcWho/fix-compact-definition
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)