chore(deps): update all non-major bundler dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
bcrypt	'~> 3.1.0' -> '~> 3.1.20'
bootsnap	'~> 1.12.0' -> '~> 1.18.4'
browser (changelog)	'~> 5.3.0' -> '~> 5.3.1'
devise (changelog)	'~>4.8.0' -> '~>4.9.4'
devise-i18n	'~>1.10.0' -> '~>1.12.1'
dotenv-rails	'~> 2.7.0' -> '~> 2.8.1'
factory_bot_rails (changelog)	'~> 6.2.0' -> '~> 6.4.4'
faker (changelog)	'~> 3.1.1' -> '~> 3.5.1'
font-awesome-rails	'~> 4.7.0.0' -> '~> 4.7.0.9'
guard-livereload (source)	'~> 2.5.0' -> '~> 2.5.2'
http (changelog)	'~> 5.0.0' -> '~> 5.2.0'
jbuilder (changelog)	'~> 2.11.0' -> '~> 2.13.0'
jquery-rails	'~> 4.5.0' -> '~> 4.6.0'
kaminari	'~> 1.2.0' -> '~> 1.2.2'
mina (source)	'~> 1.2.0' -> '~> 1.2.5'
mini_racer	'~> 0.6.0' -> '~> 0.16.0'
mollie-api-ruby (changelog)	'~> 4.7.0' -> '~> 4.15.0'
omniauth	'~> 2.0.0' -> '~> 2.1.2'
omniauth-oauth2	'~> 1.7.0' -> '~> 1.8.0'
omniauth-rails_csrf_protection	'~> 1.0' -> '~> 1.0', '>= 1.0.2'
pg	'~> 1.3.0' -> '~> 1.5.9'
puma	'~> 6.4.0' -> '~> 6.5.0'
pundit	'~> 2.2.0' -> '~> 2.4.0'
rack-attack (changelog)	'~> 6.6.0' -> '~> 6.7.0'
rails (source, changelog)	'~> 7.0.4', '>= 7.0.4.3' -> '~> 7.2.2'
rails-controller-testing	'~> 1.0.0' -> '~> 1.0.5'
rails-i18n	'~> 7.0.0' -> '~> 7.0.10'
redis-rails (source)	'~> 5.0.0' -> '~> 5.0.2'
rubocop (source, changelog)	'~> 1.30.0' -> '~> 1.69.1'
sassc-rails	'~> 2.1.0' -> '~> 2.1.2'
sentry-rails (source, changelog)	'~> 5.5' -> '~> 5.22'
sentry-ruby (source, changelog)	'~> 5.5' -> '~> 5.22'
sentry-sidekiq (source, changelog)	'~> 5.5' -> '~> 5.22'
sidekiq-scheduler (source)	'~> 5.0.2' -> '~> 5.0.6'
simple_form (changelog)	'~> 5.1.0' -> '~> 5.3.1'
turbolinks (source)	'~> 5.2.0' -> '~> 5.2.1'
uglifier	'~> 4.2.0' -> '~> 4.2.1'
validates_timeliness (changelog)	'~> 7.0.0.beta2' -> '~> 7.0.0'
web-console	'~> 4.2.0' -> '~> 4.2.1'
webpacker (changelog)	'~> 5.4.0' -> '~> 5.4.4'

---

Release Notes

heartcombo/devise (devise)

v4.9.4

Compare Source

https://github.com/heartcombo/devise/blob/v4.9.4/CHANGELOG.md#494---2024-04-10

v4.9.3

Compare Source

• enhancements
  • Add support for Rails 7.1.
  • Add Devise.deprecator to integrate with new application deprecators in Rails 7.1. (@​soartec-lab, @​etiennebarrie)

v4.9.2

Compare Source

• deprecations
  • Bring back Devise.activerecord51? and deprecate it, in order to avoid breakage with some libraries that apparently relied on it.

v4.9.1

Compare Source

• enhancements

  • Allow resource class scopes to override the global configuration for sign_in_after_reset_password behaviour. #​5429 @​mattr
  • Refactor conditional dirty tracking logic to a centralized module to simplify usage throughout the codebase. #​5575
  • Improve support for Devise in apps with Active Record and Mongoid ORMs loaded, so it does not incorrectly uses new Active Record dirty tracking APIs with a Mongoid Devise model. #​5576

• bug fixes

  • Failure app will respond with configured redirect_status instead of error_status if the recall app returns a redirect status (300..399) #​5573
  • Fix frozen string exception in validatable. #​5563 #​5465 @​mameier

v4.9.0

Compare Source

• enhancements
  • Add support for Ruby 3.1/3.2.
  • Add support for Hotwire + Turbo, default in Rails 7+.

    • Devise uses the latest responders version (v3.1.0 or higher), which allows configuring the status used for validation error responses (error_status) and for redirects after POST/PUT/PATCH/DELETE requests (redirect_status). For backwards compatibility, Devise keeps error_status as :ok which returns a 200 OK response, and redirect_status to :found which returns a 302 Found response, but you can configure it to return 422 Unprocessable Entity and 303 See Other respectively, to match the behavior expected by Hotwire/Turbo:

config/initializers/devise.rb

  Devise.setup do |config|

...

    config.responder.error_status = :unprocessable_entity
    config.responder.redirect_status = :see_other

...

  end
  ```

  These configs are already generated by default with new apps, and existing apps may opt-in as described above. Trying to set these with an older version of `responders` will issue a warning and have no effect, so please upgrade the `responders` version if you're upgrading Devise for this integration. Note that these defaults may change in future versions of Devise, to better match the Rails + Hotwire/Turbo defaults across the board.
* If you have a custom responder set on your application and expect it to affect Devise as well, you may need to override the Devise responder entirely with `config.responder = MyApplicationResponder`, so that it uses your custom one. The main reason Devise uses a custom responder is to be able to configure the statuses as described above, but you can also change that config on your own responder if you want. Check the `responders` readme for more info on that.
* If you have created a custom responder and/or failure app just to customize responses for better Hotwire/Turbo integration, they should no longer be necessary.
* `:turbo_stream` is now treated as a navigational format, so it works like HTML navigation when using Turbo. Note: if you relied on `:turbo_stream` to be treated as a non-navigational format before, you can reconfigure your `navigational_formats` in the Devise initializer file to exclude it.
* OmniAuth "Sign in with" links were changed to buttons that generate HTML forms with method=POST, instead of using link + method=POST that required rails-ujs to work. Since rails-ujs is no longer the default for new Rails apps, this allows the OmniAuth buttons to work in any scenario, with or without rails-ujs and/or Turbo. This only affects apps that are using the default `devise/shared/_links.html.erb` partial from Devise with OmniAuth enabled.
* The "Cancel my account" button was changed to include the `data-turbo-confirm` option, so that it works with both rails-ujs and Turbo by default.
* Devise does not provide "sign out" links/buttons in its shared views, but if you're using `sign_out_via` with `:delete` (the default), and are using links with `method: :delete`, those need to be updated with `data: { turbo_method: :delete }` instead for Turbo.
* Check [this upgrade guide](https://redirect.github.com/heartcombo/devise/wiki/How-To:-Upgrade-to-Devise-4.9.0-[Hotwire-Turbo-integration]) for more detailed information.

tigrish/devise-i18n (devise-i18n)

v1.12.1

Compare Source

• Updated bn, et, fr, and ru translations.
• Added Ruby 3.3 to test matrix.

v1.12.0

Compare Source

• Fixed a regression that broke API-based controllers.
• Dropped Ruby 2.6 from test matrix.

v1.11.1

Compare Source

• Fixed a regression where model names were not translated.
• Fixed the model name being inappropriately downcased in the errors partial in German.
• Updated ar, cs, da, de, and en-GB translations.

v1.11.0

Compare Source

• Updated views for devise 4.9 per:
  • heartcombo/devise@f08e0ad
  • heartcombo/devise@88625d4
  • heartcombo/devise@49ed129
• Adjust how the resource name is looked up in registrations/edit.html.erb to match devise's lookup.

v1.10.3

Compare Source

• Updated ar (Arabic), es (Spanish), es-CO (Spanish - Columbia), es-MX (Spanish - Mexico), fr (French), th (Thai), and uk (Ukrainian) translations.
• Added es-CL (Spanish - Chile) and eo (Esperanto) translation.
• Fixed a bug with relative paths when creating scoped views - https://github.com/tigrish/devise-i18n/pull/318

bkeepers/dotenv (dotenv-rails)

v2.8.1

Compare Source

• Restore support for EOL'd Ruby versions (2.5, 2.6) (#​458)[https://github.com/bkeepers/dotenv/pull/458](https://redirect.github.com/bkeepers/dotenv/pull/458)8]

v2.8.0

Compare Source

• Drop support for Ruby 2.4, 2.5, and 2.6, which are EOL
• Fix template (-t) handling of export declarations #​416
• Unescape escaped characters when value is not quoted #​421
• Add overload option for the CLI ($ dotenv --overload -f .env.local) #​445

thoughtbot/factory_bot_rails (factory_bot_rails)

v6.4.4: 6.4.4

Compare Source

What's Changed

• Update CI to run Ruby 3.3 by @​aberkakis in https://github.com/thoughtbot/factory_bot_rails/pull/464
• Ignore Standard Style/ArgumentsForwarding violations temporarily by @​sarahraqueld in https://github.com/thoughtbot/factory_bot_rails/pull/489
• Bump standard from 1.32.1 to 1.40.0 by @​dependabot in https://github.com/thoughtbot/factory_bot_rails/pull/487
• Bump rspec-rails from 6.1.0 to 6.1.4 by @​dependabot in https://github.com/thoughtbot/factory_bot_rails/pull/490
• Bump factory_bot from 6.4.0 to 6.5.0 by @​dependabot in https://github.com/thoughtbot/factory_bot_rails/pull/492
• Bump rake from 13.1.0 to 13.2.1 by @​dependabot in https://github.com/thoughtbot/factory_bot_rails/pull/491
• Update Bundler to v2.5.21 by @​smaboshe in https://github.com/thoughtbot/factory_bot_rails/pull/499
• Update Bundler to v2.5.22 by @​smaboshe in https://github.com/thoughtbot/factory_bot_rails/pull/500

New Contributors

• @​stefannibrasil made their first contribution in https://github.com/thoughtbot/factory_bot_rails/pull/463
• @​aberkakis made their first contribution in https://github.com/thoughtbot/factory_bot_rails/pull/464
• @​smaboshe made their first contribution in https://github.com/thoughtbot/factory_bot_rails/pull/469
• @​sarahraqueld made their first contribution in https://github.com/thoughtbot/factory_bot_rails/pull/481

Full Changelog: thoughtbot/factory_bot_rails@v6.4.3...v6.4.4

v6.4.3: 6.4.3

Compare Source

• Changed: allow sequence definitions for ActiveRecord primary keys (Mike Burns).
• Changed: Support Ruby 3.0+, Rails 6.1+ (Mike Burns)
• Documentation improvements (obregonia1).
• Internal: GitHub Actions improvements (Lorenzo Zabot, ydah).
• Internal: RubyGems points to changelog (Tilo Sloboda).
• Internal: Bump standard, rake, activerecord, appraisal, rspec-rails (Mike Burns).

v6.4.2

Compare Source

• Fixed: Fix Rails 7.1.2 + monkey-patched ActiveRecord compatibility (Adif Sgaid, Benoit Tigeot)
• Internal: Test against Rails 7.1 (y-yagi)
• Internal: Fix links to old files after renaming the main branch to main (y-yagi)

v6.4.0: 6.4.0

Compare Source

v6.3.0: 6.3.0

Compare Source

• Changed: reject sequence definitions for ActiveRecord primary keys (Sean Doyle).
• Changed: factory_bot dependency to ~> 6.4 (Mike Burns).
• Changed: upgrade dependencies (Daniel Colson).
• Add: projections.json for Rails.vim (Caleb Hearth).
• Docs: fix broken link (Edu Depetris).
• Docs: mention Rails generator in docs (Edu Depetris).
• Docs: fix typo (Yudai Takada).
• Internal: skip Spring version 2.1.1 due to a bug in that release (Christina
  Entcheva, Daniel Colson).
• Internal: test against Rails 6.1 (Antonis Berkakis).
• Internal: test against Ruby 3 (Daniel Colson).
• Internal: fewer warnings in Cucumber tests (Daniel Colson).
• Internal: use GitHub Actions for CI (Mathieu Jobin).
• Internal: a whole bunch of cleanup (Daniel Colson).
• Internal: fix CI due to a Bundler output change (Mike Burns).

faker-ruby/faker (faker)

v3.5.1

Compare Source

Happy October! 🎃

This version drops support for Ruby < 3.0. We only support one EOL Ruby version at a time. Please upgrade to Ruby 3.0 to update to this and future versions of faker-ruby.

Besides that, this version removes deprecated generators, fixes some bugs, and adds a Security Policy.

Thanks to all contributors!

v3.4.2

Compare Source

Happy July with a new faker-ruby release.

This version:

• introduces a breaking change for Faker::NationalHealthService.british_number (more details below)
• adds translation for some generators
• fixes bugs

Breaking changes

The NHS sets aside a range of numbers from 999 000 0000 to 999 999 9999 for test purposes. The old range could
produce NHS numbers that were in use by real patients in the UK/England and Wales. In this version, Faker::NationalHealthService.british_number uses the test range for creating NHS numbers rather than the previous 400 000 0010 to 499 999 9999 range.

Breaking change was introduced in "Add test range param to NHS numbers" by @​neanias in https://github.com/faker-ruby/faker/pull/2947

Improvements & Bug fixes

• Add Bank and Sport to Swedish locale by @​twk-mn in https://github.com/faker-ruby/faker/pull/2961
• docs: update with notes about validity for zips by @​garrettgregor in https://github.com/faker-ruby/faker/pull/2963
• Faker::Games::Dota missing quotes and new heroes by @​arthurka-o in https://github.com/faker-ruby/faker/pull/2907
• Add phone_number.country_code and address.full_address in locale sv by @​larkro in https://github.com/faker-ruby/faker/pull/2965
• Fix typo by @​fynsta in https://github.com/faker-ruby/faker/pull/2968
• fix: Faker::Internet.username should not generate duplicated punctuation by @​thdaraujo in https://github.com/faker-ruby/faker/pull/2970
• Update dog breed names for en-US locale by @​mononoken in https://github.com/faker-ruby/faker/pull/2972
• Add Deprecator.skip_warning? ability to silence deprecators on tests by @​keshavbiswa in https://github.com/faker-ruby/faker/pull/2956

Update local dependencies

• Bump timecop from 0.9.9 to 0.9.10 by @​dependabot in https://github.com/faker-ruby/faker/pull/2969
• Bump minitest from 5.23.1 to 5.24.1 by @​dependabot in https://github.com/faker-ruby/faker/pull/2975
• Bump bundler version to 2.4.22 by @​thdaraujo in https://github.com/faker-ruby/faker/pull/2978
• Bump rubocop from 1.64.1 to 1.65.0 by @​dependabot in https://github.com/faker-ruby/faker/pull/2979
• Bump rubocop-minitest from 0.35.0 to 0.35.1 by @​dependabot in https://github.com/faker-ruby/faker/pull/2980

v3.4.1

Compare Source

What's changed

• Performance: Sample arrays instead of performing shuffle and slice by @​alextaujenis in https://github.com/faker-ruby/faker/pull/2940
• Performance: Reduce the time complexity of Faker::Crypto generators by @​alextaujenis in https://github.com/faker-ruby/faker/pull/2938
• Remove tzinfo dependency by @​stefannibrasil in https://github.com/faker-ruby/faker/pull/2952

Bug fixes

• Fix invalid IANA time zone identifier for Atlantic/Cape_Verde by @​andrelaszlo in https://github.com/faker-ruby/faker/pull/2927
• Fix entry in faker.food.ingredients by @​matthewmayer in https://github.com/faker-ruby/faker/pull/2933
• Docs: add absolute links to CONTRIBUTING from README by @​matthewmayer in https://github.com/faker-ruby/faker/pull/2934
• Fix: Faker::Number.hexadecimal should include characters within the range of [0-9a-f] by @​alextaujenis in https://github.com/faker-ruby/faker/pull/2942
• Username splits names by space and doesn't regex match them by @​keshavbiswa in https://github.com/faker-ruby/faker/pull/2950

Features

• Add animals, desserts, foods, hobbies, house, and k-pop translations to the Korean locale file by @​connie-feng in https://github.com/faker-ruby/faker/pull/2935
• Add adjectives to Korean locale file by @​connie-feng in https://github.com/faker-ruby/faker/pull/2930
• Add emotions, movies, Pokemon, and Studio Ghibli to the Korean locale by @​connie-feng in https://github.com/faker-ruby/faker/pull/2941
• Add Japanese translations for Faker::Sports::Football. by @​yamat47 in https://github.com/faker-ruby/faker/pull/2903

Update local dependencies

• Bump rake from 13.1.0 to 13.2.1 by @​dependabot in https://github.com/faker-ruby/faker/pull/2929
• Bump i18n from 1.14.4 to 1.14.5 by @​dependabot in https://github.com/faker-ruby/faker/pull/2949
• Bump minitest from 5.22.3 to 5.23.1 by @​dependabot in https://github.com/faker-ruby/faker/pull/2957
• Bump rubocop from 1.63.4 to 1.64.0 by @​dependabot in https://github.com/faker-ruby/faker/pull/2958

v3.3.1

Compare Source

Bug fixes

• Fix bug on phone number generator for en-US locale caused by incorrect .yml file structure by @​aprescott in https://github.com/faker-ruby/faker/pull/2924

What's Changed

• Added docs for Deprecator in CONTRIBUTING.md by @​keshavbiswa in https://github.com/faker-ruby/faker/pull/2919
• Rename Faker::show to Faker::Theater by @​keshavbiswa in https://github.com/faker-ruby/faker/pull/2921
• renamed nhs to national_health_service by @​keshavbiswa in https://github.com/faker-ruby/faker/pull/2923

New Contributors

• @​aprescott made their first contribution in https://github.com/faker-ruby/faker/pull/2924

Full Changelog: faker-ruby/faker@v3.3.0...v3.3.1

---

v3.3.0

Compare Source

Bug Fixes

• Remove the duplicate method Faker::Commerce.material description by @​mmarusyk in https://github.com/faker-ruby/faker/pull/2914

Features

• Add Kenya to supported countries by @​AndrewNduati in https://github.com/faker-ruby/faker/pull/2871
• Benchmarking loading JSON file vs YML file by @​salochara in https://github.com/faker-ruby/faker/pull/2897

What's changed

• Fix/Deprecate Faker::IDNumber to Faker::IdNumber to be more consistent with other generator's naming convention. by @​Jamal-A-Mohamed in https://github.com/faker-ruby/faker/pull/2858
• Fix/Deprecate FmaBrotherhood Generator by @​kirkkwang in https://github.com/faker-ruby/faker/pull/2856
• Fix/Deprecate Faker::Australia to Faker::Locations::Australia by @​keshavbiswa in https://github.com/faker-ruby/faker/pull/2869
• Add note about EOL dependencies by @​stefannibrasil in https://github.com/faker-ruby/faker/pull/2890

Update local dependencies

• Bump test-unit from 3.6.1 to 3.6.2 by @​dependabot in https://github.com/faker-ruby/faker/pull/2906
• Bump i18n from 1.14.1 to 1.14.4 by @​dependabot in https://github.com/faker-ruby/faker/pull/2913
• Bump rubocop from 1.60.2 to 1.62.1 by @​dependabot in https://github.com/faker-ruby/faker/pull/2916
• Bump yard from 0.9.34 to 0.9.36 by @​dependabot in https://github.com/faker-ruby/faker/pull/2909
• Bump minitest from 5.22.2 to 5.22.3 by @​dependabot in https://github.com/faker-ruby/faker/pull/2917

New Contributors

• @​AndrewNduati made their first contribution in https://github.com/faker-ruby/faker/pull/2871
• @​Jamal-A-Mohamed made their first contribution in https://github.com/faker-ruby/faker/pull/2858
• @​mmarusyk made their first contribution in https://github.com/faker-ruby/faker/pull/2914

Full Changelog: faker-ruby/faker@v3.2.3...v3.3.0

---

[v3.2.3](https://redirect.github.com/faker-ruby/faker/blob/HEAD/CHANGELOG.md#

---

Configuration

📅 Schedule: Branch creation - "* 0-3 * * 1" in timezone Europe/Amsterdam, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codecov]

Codecov Report

Attention: Patch coverage is 0% with 1 line in your changes missing coverage. Please review.

Project coverage is 52.37%. Comparing base (56e54e6) to head (e98c127).

Files with missing lines	Patch %	Lines
app/jobs/credit_insufficient_notification_job.rb	0.00%	1 Missing ⚠️

Additional details and impacted files

@@           Coverage Diff            @@
##           staging     #745   +/-   ##
========================================
  Coverage    52.37%   52.37%           
========================================
  Files           55       55           
  Lines         1178     1178           
========================================
  Hits           617      617           
  Misses         561      561           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.