consul/nairobi
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
20,288 Commits 1 Branch 0 Tags
cd6122879005e9cede839568ea2b7fb9cb8909b3
Commit Graph

922 Commits

Author SHA1 Message Date
dependabot[bot]
cd72bf42da Bump capistrano3-puma from 5.2.0 to 6.0.0 
Note we aren't updating concurrent-ruby (which Dependabot would have
updated) due to an incompatibility with Rails 7.0.

Bumps [capistrano3-puma](https://github.com/seuros/capistrano-puma) from 5.2.0 to 6.0.0.
- [Changelog](https://github.com/seuros/capistrano-puma/blob/master/CHANGELOG.md)
- [Commits](https://github.com/seuros/capistrano-puma/compare/v5.2.0...v6.0.0)

---
updated-dependencies:
- dependency-name: capistrano3-puma
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-30 15:56:28 +02:00
dependabot[bot]
39fd024b22 Bump paranoia from 3.0.0 to 3.0.1 
Bumps [paranoia](https://github.com/rubysherpas/paranoia) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/rubysherpas/paranoia/releases)
- [Changelog](https://github.com/rubysherpas/paranoia/blob/core/CHANGELOG.md)
- [Commits](https://github.com/rubysherpas/paranoia/compare/v3.0.0...v3.0.1)

---
updated-dependencies:
- dependency-name: paranoia
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-26 13:25:34 +00:00
Sebastia
f607048fd0 Merge pull request #5862 from consuldemocracy/dependabot/bundler/ahoy_matey-5.3.0 
Bump ahoy_matey from 5.2.0 to 5.4.0
 2025-05-26 15:24:02 +02:00
Sebastia
932222f8ea Merge pull request #5837 from consuldemocracy/dependabot/bundler/caxlsx-4.2.0 
Bump caxlsx from 4.1.0 to 4.2.0
 2025-05-26 15:11:46 +02:00
dependabot[bot]
252780635d Bump ahoy_matey from 5.2.0 to 5.3.0 
Bumps [ahoy_matey](https://github.com/ankane/ahoy) from 5.2.0 to 5.3.0.
- [Changelog](https://github.com/ankane/ahoy/blob/master/CHANGELOG.md)
- [Commits](https://github.com/ankane/ahoy/compare/v5.2.0...v5.3.0)

---
updated-dependencies:
- dependency-name: ahoy_matey
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-23 14:17:45 +00:00
Sebastia
9bad768ccb Merge pull request #5831 from consuldemocracy/dependabot/bundler/airbrake-13.0.5 
Bump airbrake from 13.0.4 to 13.0.5
 2025-05-23 16:12:30 +02:00
dependabot[bot]
a1f3cedb44 Bump caxlsx from 4.1.0 to 4.2.0 
Bumps [caxlsx](https://github.com/caxlsx/caxlsx) from 4.1.0 to 4.2.0.
- [Changelog](https://github.com/caxlsx/caxlsx/blob/master/CHANGELOG.md)
- [Commits](https://github.com/caxlsx/caxlsx/compare/v4.1.0...v4.2.0)

---
updated-dependencies:
- dependency-name: caxlsx
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-23 14:06:53 +00:00
Sebastia
aa9ab0f079 Merge pull request #5804 from consuldemocracy/dependabot/bundler/delayed_job_active_record-4.1.11 
Bump delayed_job_active_record from 4.1.10 to 4.1.11
 2025-05-23 16:04:36 +02:00
dependabot[bot]
814a12a048 Bump delayed_job_active_record from 4.1.10 to 4.1.11 
Bumps [delayed_job_active_record](https://github.com/collectiveidea/delayed_job_active_record) from 4.1.10 to 4.1.11.
- [Release notes](https://github.com/collectiveidea/delayed_job_active_record/releases)
- [Commits](https://github.com/collectiveidea/delayed_job_active_record/compare/v4.1.10...v4.1.11)

---
updated-dependencies:
- dependency-name: delayed_job_active_record
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-23 13:44:15 +00:00
dependabot[bot]
d35dcf4725 Bump audited from 5.7.0 to 5.8.0 
Bumps [audited](https://github.com/collectiveidea/audited) from 5.7.0 to 5.8.0.
- [Changelog](https://github.com/collectiveidea/audited/blob/main/CHANGELOG.md)
- [Commits](https://github.com/collectiveidea/audited/compare/v5.7.0...v5.8.0)

---
updated-dependencies:
- dependency-name: audited
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-23 13:23:36 +00:00
Sebastia
2156fe5e27 Merge pull request #5785 from consuldemocracy/dependabot/bundler/pg-1.5.9 
Bump pg from 1.5.8 to 1.5.9
 2025-05-23 15:22:06 +02:00
dependabot[bot]
eac1776a1c Bump pg from 1.5.8 to 1.5.9 
Bumps [pg](https://github.com/ged/ruby-pg) from 1.5.8 to 1.5.9.
- [Changelog](https://github.com/ged/ruby-pg/blob/master/History.md)
- [Commits](https://github.com/ged/ruby-pg/compare/v1.5.8...v1.5.9)

---
updated-dependencies:
- dependency-name: pg
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-23 12:56:14 +00:00
dependabot[bot]
56d0cbe690 Bump view_component from 3.11.0 to 3.22.0 
Bumps [view_component](https://github.com/viewcomponent/view_component) from 3.11.0 to 3.22.0.
- [Release notes](https://github.com/viewcomponent/view_component/releases)
- [Changelog](https://github.com/ViewComponent/view_component/blob/main/docs/CHANGELOG.md)
- [Commits](https://github.com/viewcomponent/view_component/compare/v3.11.0...v3.22.0)

---
updated-dependencies:
- dependency-name: view_component
  dependency-version: 3.22.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-23 11:36:51 +00:00
dependabot[bot]
b930a40a4b Bump wicked_pdf from 2.8.1 to 2.8.2 
Bumps [wicked_pdf](https://github.com/mileszs/wicked_pdf) from 2.8.1 to 2.8.2.
- [Release notes](https://github.com/mileszs/wicked_pdf/releases)
- [Changelog](https://github.com/mileszs/wicked_pdf/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mileszs/wicked_pdf/commits)

---
updated-dependencies:
- dependency-name: wicked_pdf
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-21 12:14:51 +00:00
Javi Martín
0b1cfcd5da Upgrade to Rails 7.1 
We're disabling `action_controller.raise_on_missing_callback_actions`
because sometimes we include `before_action :something, only: actions`
in concerns, and we include these concerns in controllers that don't
have all these actions.

Note that Rails 7.1 logs to STDOUT by default [1]; we're re-adding the
condition `if ENV["RAILS_LOG_TO_STDOUT"].present?` because we're still
using files and we're rotating the logs to avoid running out of space.

Also note that the GraphQL controller test (which is actually a request
test, since it's got `type: :request`) that was raising an exception no
longer does it thanks to the new default value for the
`config.action_dispatch.show_exceptions` configuration option. So we're
updating the test accordingly. This option doesn't affect regular
controller tests (without the `type: :request` option), so in other
tests we're still checking exceptions.

[1] Pull request 47138 in https://github.com/rails/rails
 2025-05-20 13:12:29 +02:00
taitus
e662c704ac Vendor Foundation form builder to remove gem dependency 
The "foundation_rails_helper" gem is no longer maintained and is
incompatible with Rails 7.1. To avoid blocking the upgrade, we've vendored
the vendor/foundation_rails_helper/form_builder.rb as a copy of the
original FormBuilder class.

To mantain compatibility with auto_labels and button_class variables, that
are used in the original builder, we are overwriting in the foundation
form builder initializer.

The gem has been removed from the Gemfile and replaced with this vendored
fallback. This workaround is safe to remove once legacy Foundation CSS
support is dropped.

All vendored code retains the original MIT license and attribution.
 2025-05-06 17:07:08 +02:00
Sebastia
e93d303b1e Merge pull request #5867 from consuldemocracy/dependabot/bundler/ros-apartment-3.2.0 
Bump ros-apartment from 2.11.0 to 3.2.0
 2025-05-05 16:42:04 +02:00
taitus
b07e429356 Remove monkey patch for connected_to in Rails 7 
ros-apartment 3.0.0+ includes official support for connection handling in Rails 7,
so we no longer need to override `ActiveRecord::ConnectionHandling#connected_to`.

References: PR #194 and #243 in ros-apartment
 2025-04-11 15:41:59 +02:00
dependabot[bot]
4d256b8a4e Bump ros-apartment from 2.11.0 to 3.2.0 
Note we aren't updating concurrent-ruby (which Dependabot would have
updated) due to an incompatibility with Rails 7.0.

Bumps [ros-apartment](https://github.com/rails-on-services/apartment) from 2.11.0 to 3.2.0.
- [Release notes](https://github.com/rails-on-services/apartment/releases)
- [Changelog](https://github.com/rails-on-services/apartment/blob/development/legacy_CHANGELOG.md)
- [Commits](https://github.com/rails-on-services/apartment/compare/2.11.0...v3.2.0)

---
updated-dependencies:
- dependency-name: ros-apartment
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-11 15:41:45 +02:00
dependabot[bot]
6e90b0cdf4 Bump globalize from 6.3.0 to 7.0.0 
Note we aren't updating concurrent-ruby (which Dependabot would have
updated) due to an incompatibility with Rails 7.0.

Bumps [globalize](https://github.com/globalize/globalize) from 6.3.0 to 7.0.0.
- [Release notes](https://github.com/globalize/globalize/releases)
- [Changelog](https://github.com/globalize/globalize/blob/main/CHANGELOG.md)
- [Commits](https://github.com/globalize/globalize/compare/v6.3.0...v7.0.0)

---
updated-dependencies:
- dependency-name: globalize
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-11 15:20:37 +02:00
dependabot[bot]
bedabb5f5c Bump graphql from 2.4.11 to 2.4.13 
Bumps [graphql](https://github.com/rmosolgo/graphql-ruby) from 2.4.11 to 2.4.13.
- [Release notes](https://github.com/rmosolgo/graphql-ruby/releases)
- [Changelog](https://github.com/rmosolgo/graphql-ruby/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rmosolgo/graphql-ruby/compare/v2.4.11...v2.4.13)

---
updated-dependencies:
- dependency-name: graphql
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-01 17:24:43 +02:00
dependabot[bot]
17fb1529d6 Bump selenium-webdriver from 4.25.0 to 4.29.1 
Bumps [selenium-webdriver](https://github.com/SeleniumHQ/selenium) from 4.25.0 to 4.29.1.
- [Release notes](https://github.com/SeleniumHQ/selenium/releases)
- [Changelog](https://github.com/SeleniumHQ/selenium/blob/trunk/rb/CHANGES)
- [Commits](https://github.com/SeleniumHQ/selenium/compare/selenium-4.25.0...selenium-4.29.1)

---
updated-dependencies:
- dependency-name: selenium-webdriver
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-01 15:42:50 +02:00
dependabot[bot]
0777bb917f Bump graphql from 2.3.18 to 2.4.11 
Bumps [graphql](https://github.com/rmosolgo/graphql-ruby) from 2.3.18 to 2.4.11.
- [Release notes](https://github.com/rmosolgo/graphql-ruby/releases)
- [Changelog](https://github.com/rmosolgo/graphql-ruby/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rmosolgo/graphql-ruby/compare/v2.3.18...v2.4.11)

---
updated-dependencies:
- dependency-name: graphql
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-03-07 16:19:05 +00:00
Javi Martín
c04dac38bd Merge pull request #5892 from consuldemocracy/html_indentation 
Add a linter to check indentation in ERB+HTML files
 2025-03-07 17:17:30 +01:00
Javi Martín
b51aa31e6a Use HTML beautifier to indent ERB files 
We had inconsistent indentation in many places. Now we're fixing them
and adding a linter to our CI so we don't accidentally introduce
inconsistent indentations again.
 2025-03-07 16:31:08 +01:00
dependabot[bot]
50f57c2376 Bump launchy from 3.1.0 to 3.1.1 
Bumps [launchy](https://github.com/copiousfreetime/launchy) from 3.1.0 to 3.1.1.
- [Changelog](https://github.com/copiousfreetime/launchy/blob/main/HISTORY.md)
- [Commits](https://github.com/copiousfreetime/launchy/compare/v3.1.0...v3.1.1)

---
updated-dependencies:
- dependency-name: launchy
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-03-06 22:13:31 +00:00
dependabot[bot]
74e543e2c8 Bump recipient_interceptor from 0.3.2 to 0.3.3 
Bumps [recipient_interceptor](https://github.com/croaky/recipient_interceptor) from 0.3.2 to 0.3.3.
- [Release notes](https://github.com/croaky/recipient_interceptor/releases)
- [Commits](https://github.com/croaky/recipient_interceptor/commits)

---
updated-dependencies:
- dependency-name: recipient_interceptor
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-03-06 18:05:54 +00:00
Javi Martín
dc05ff0fd6 Downgrade Sass to version 1.77.5 
In commit 64bcedc8b, we upgraded Sass from version 1.70 to version 1.80.
However, since then we've noticed a couple of inconvenient things.

First, we're getting some deprecation warnings when compiling the
assets, related to a usage of `map-has-key` in Foundation which is
deprecated since Sass 1.80. Even with the `quiet_deps` flag, these
warnings aren't silenced.

Second, version 1.79 changed the way color functions work [1]. In
particular, functions like `color.adjust` or `darken` would now generate
RGB colors that include float numbers [2]. Browser support for float values
in RGB colors is about 98% at the time of writing [3], meaning some
browsers that are at least 5 or 6 years old will not render these
colors, sometimes resulting in white text over a white background, which
is of course impossible to read.

Finally, we get some deprecation warnings in our code when we remove the
`quiet_deps` flag, caused by the breaking change in mixed declaration
[4] from version 1.77.7 [5]. This warning is tricky; consider the following
code:

```
@mixin normal-selection {
  &::selection,
  *::selection {
    @include background-with-text-contrast($brand, brand, $check-invert-selection: false);
  }
}

.button.hollow {
  @include normal-selection;
  border: 1px solid;
}
```

In this scenario, since normal-selection is a mixin that generates a
nested rule, we're doing a declaration after a nested rule, which is now
deprecated.

The situation gets even more complicated when we define mixins that have
both nested rules and rules that apply to the element itself. Currently,
we sometimes include a mixin and then override some of the properties
the mixin defines, but we wouldn't be able to do so if we can't define
properties after including the mixin.

Right now, the solution seems to be adding `& { }` selectors
after including a mixin, like this:

```
.button.hollow {
  @include normal-selection;

  & {
    border: 1px solid;
  }
}
```

Which is incredibly cumbersome.

So, for now, we're downgrading to version 1.77.5 (we would downgrade to
version 1.77.6, but the sass-embedded gem skipped that version). That
version was released in June 2024, so it isn't very old yet. In the
future, we'll see what to do about the issues mentioned above, since
we'll have to upgrade at some point.

Note we're removing the `silence_deprecations` flag because Sass 1.77
doesn't raise warnings about using `import`.

[1] https://sass-lang.com/documentation/breaking-changes/color-functions/
[2] https://sass-lang.com/documentation/modules/color/#adjust
[3] https://caniuse.com/mdn-css_types_color_rgb_float_values
[4] https://sass-lang.com/documentation/breaking-changes/mixed-decls/
[5] https://sass-lang.com/documentation/js-api/interfaces/deprecations/#mixed_decls
 2025-03-05 15:40:03 +01:00
dependabot[bot]
3035855f4e Bump rspec-rails from 7.0.1 to 7.1.1 
Note we aren't updating concurrent-ruby (which Dependabot would have
updated) due to an incompatibility with Rails 7.0.

Bumps [rspec-rails](https://github.com/rspec/rspec-rails) from 7.0.1 to 7.1.1.
- [Changelog](https://github.com/rspec/rspec-rails/blob/main/Changelog.md)
- [Commits](https://github.com/rspec/rspec-rails/compare/v7.0.1...v7.1.1)

---
updated-dependencies:
- dependency-name: rspec-rails
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-03-05 15:23:35 +01:00
dependabot[bot]
204704da06 Bump rubocop from 1.66.1 to 1.71.2 
Bumps [rubocop](https://github.com/rubocop/rubocop) from 1.66.1 to 1.71.2.
- [Release notes](https://github.com/rubocop/rubocop/releases)
- [Changelog](https://github.com/rubocop/rubocop/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rubocop/rubocop/compare/v1.66.1...v1.71.2)

---
updated-dependencies:
- dependency-name: rubocop
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Note:
Fix SafeNavigation offense detected by RuboCop 1.67.0
Remove redundant condition that became unnecessary
after updating RuboCop.
 2025-03-05 11:42:44 +01:00
dependabot[bot]
203b659de8 Bump rubocop-rspec from 3.1.0 to 3.4.0 
Note we're renaming the RSpec/StringAsInstanceDoubleConstant rule to
RSpec/VerifiedDoubleReference because its name changed in version 3.4.0

Bumps [rubocop-rspec](https://github.com/rubocop/rubocop-rspec) from 3.1.0 to 3.4.0.
- [Release notes](https://github.com/rubocop/rubocop-rspec/releases)
- [Changelog](https://github.com/rubocop/rubocop-rspec/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rubocop/rubocop-rspec/compare/v3.1.0...v3.4.0)

---
updated-dependencies:
- dependency-name: rubocop-rspec
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-03-04 17:38:40 +01:00
dependabot[bot]
18a7167d2a Bump rubocop-rails from 2.26.2 to 2.29.1 
Note we aren't updating concurrent-ruby (which Dependabot would have
updated) due to an incompatibility with Rails 7.0.

Bumps [rubocop-rails](https://github.com/rubocop/rubocop-rails) from 2.26.2 to 2.29.1.
- [Release notes](https://github.com/rubocop/rubocop-rails/releases)
- [Changelog](https://github.com/rubocop/rubocop-rails/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rubocop/rubocop-rails/compare/v2.26.2...v2.29.1)

---
updated-dependencies:
- dependency-name: rubocop-rails
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-03-02 15:19:12 +01:00
dependabot[bot]
a3265b3f5b Bump rubocop-performance from 1.22.1 to 1.23.1 
Bumps [rubocop-performance](https://github.com/rubocop/rubocop-performance) from 1.22.1 to 1.23.1.
- [Release notes](https://github.com/rubocop/rubocop-performance/releases)
- [Changelog](https://github.com/rubocop/rubocop-performance/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rubocop/rubocop-performance/compare/v1.22.1...v1.23.1)

---
updated-dependencies:
- dependency-name: rubocop-performance
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-03-01 23:51:41 +00:00
dependabot[bot]
194a8dae59 Bump pdf-reader from 2.12.0 to 2.14.1 
Bumps [pdf-reader](https://github.com/yob/pdf-reader) from 2.12.0 to 2.14.1.
- [Changelog](https://github.com/yob/pdf-reader/blob/main/CHANGELOG)
- [Commits](https://github.com/yob/pdf-reader/compare/v2.12.0...v2.14.1)

---
updated-dependencies:
- dependency-name: pdf-reader
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-03-01 23:30:47 +00:00
dependabot[bot]
b71bf4a1ef Bump capistrano-rails from 1.6.3 to 1.7.0 
Note we aren't updating concurrent-ruby (which Dependabot would have
updated) due to an incompatibility with Rails 7.0.

Bumps [capistrano-rails](https://github.com/capistrano/rails) from 1.6.3 to 1.7.0.
- [Release notes](https://github.com/capistrano/rails/releases)
- [Commits](https://github.com/capistrano/rails/compare/v1.6.3...v1.7.0)

---
updated-dependencies:
- dependency-name: capistrano-rails
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-03-02 00:07:06 +01:00
dependabot[bot]
f4ea8137e5 Bump capistrano from 3.19.1 to 3.19.2 
Note we aren't updating concurrent-ruby (which Dependabot would have
updated) due to an incompatibility with Rails 7.0.

Bumps [capistrano](https://github.com/capistrano/capistrano) from 3.19.1 to 3.19.2.
- [Release notes](https://github.com/capistrano/capistrano/releases)
- [Commits](https://github.com/capistrano/capistrano/compare/v3.19.1...v3.19.2)

---
updated-dependencies:
- dependency-name: capistrano
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-03-01 23:10:56 +01:00
dependabot[bot]
06f0aa0c61 Bump faker from 3.4.2 to 3.5.1 
Note we aren't updating concurrent-ruby (which Dependabot would have
updated) due to an incompatibility with Rails 7.0.

Bumps [faker](https://github.com/faker-ruby/faker) from 3.4.2 to 3.5.1.
- [Release notes](https://github.com/faker-ruby/faker/releases)
- [Changelog](https://github.com/faker-ruby/faker/blob/main/CHANGELOG.md)
- [Commits](https://github.com/faker-ruby/faker/compare/v3.4.2...v3.5.1)

---
updated-dependencies:
- dependency-name: faker
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-03-01 22:24:49 +01:00
dependabot[bot]
bdc2fb0fbc Bump factory_bot_rails from 6.4.3 to 6.4.4 
Note we aren't updating concurrent-ruby (which Dependabot would have
updated) due to an incompatibility with Rails 7.0.

Bumps [factory_bot_rails](https://github.com/thoughtbot/factory_bot_rails) from 6.4.3 to 6.4.4.
- [Release notes](https://github.com/thoughtbot/factory_bot_rails/releases)
- [Changelog](https://github.com/thoughtbot/factory_bot_rails/blob/main/NEWS.md)
- [Commits](https://github.com/thoughtbot/factory_bot_rails/compare/v6.4.3...v6.4.4)

---
updated-dependencies:
- dependency-name: factory_bot_rails
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-03-01 22:08:52 +01:00
dependabot[bot]
9bfc365a76 Bump erb_lint from 0.6.0 to 0.9.0 
Note we aren't bumping the concurrent-ruby gem (which Dependabot
automatically did) because it causes that our workflows/db_schema.yml
fails.

Bumps [erb_lint](https://github.com/Shopify/erb-lint) from 0.6.0 to 0.9.0.
- [Release notes](https://github.com/Shopify/erb-lint/releases)
- [Commits](https://github.com/Shopify/erb-lint/compare/v0.6.0...v0.9.0)

---
updated-dependencies:
- dependency-name: erb_lint
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-02-14 12:43:57 +01:00
dependabot[bot]
2768263faf Bump pronto-stylelint from 0.10.3 to 0.11.0 
Note we aren't bumping the rugged gem (which Dependabot automatically
did) because it causes Pronto to stop working with GitHub Actions.

Bumps [pronto-stylelint](https://github.com/kevinjalbert/pronto-stylelint) from 0.10.3 to 0.11.0.
- [Commits](https://github.com/kevinjalbert/pronto-stylelint/compare/v0.10.3...v0.11.0)

---
updated-dependencies:
- dependency-name: pronto-stylelint
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-02-14 09:48:26 +01:00
dependabot[bot]
686055da27 Bump launchy from 2.5.2 to 3.1.0 
Bumps [launchy](https://github.com/copiousfreetime/launchy) from 2.5.2 to 3.1.0.
- [Changelog](https://github.com/copiousfreetime/launchy/blob/main/HISTORY.md)
- [Commits](https://github.com/copiousfreetime/launchy/compare/v2.5.2...v3.1.0)

---
updated-dependencies:
- dependency-name: launchy
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-02-01 22:39:10 +00:00
taitus
d8381204f1 Add faraday-retry gem 
In order to remove an information text related to Faraday every time we
execute `pronto run`:
> To use retry middleware with Faraday v2.0+, install faraday-retry gem
 2025-01-27 13:42:29 +01:00
taitus
211b3263dc Bump pronto-rubocop from 0.11.5 to 0.11.6 
Bumps [pronto-rubocop](https://github.com/mmozuras/pronto-rubocop) from 0.11.5 to 0.11.6.
- [Release notes](https://github.com/mmozuras/pronto-rubocop/releases)
- [Commits](prontolabs/pronto-rubocop@v0.11.5...v0.11.6)

NOTE:
Keeping the current version of the rugged gem instead of upgrading seems to solve the issue,
as mentioned in prontolabs/pronto#447.
 2025-01-22 16:29:13 +01:00
Javi Martín
cf6d9ce753 Add Ruby version to Gemfile 
Since Bundler 2.4.19, including in Ruby 3.2.3, it's possible to define
the Ruby version in the Gemfile by indicating which file contains the
version [1].

There are at least two practical cases where this is an advantage.

First, people using RVM in development will no longer accidentally run
the application using the wrong Ruby version (which, before these
changes, might happen if they switch to a branch using a different Ruby
version and forget to run `rvm use` or exit the current folder and enter
it again) because they will get an error when trying to do so.

Second, people using services like Heroku no longer need to modify the
Gemfile.

The disadvantage is that, now, every time we update the Ruby version, we
have to remember to run `bundle` so our `Gemfile.lock` gets the new
version.

[1] https://github.com/rubygems/rubygems/releases/tag/bundler-v2.4.19
 2025-01-09 17:14:42 +01:00
dependabot[bot]
e561225653 Bump airbrake from 13.0.4 to 13.0.5 
Bumps [airbrake](https://github.com/airbrake/airbrake) from 13.0.4 to 13.0.5.
- [Changelog](https://github.com/airbrake/airbrake/blob/master/CHANGELOG.md)
- [Commits](https://github.com/airbrake/airbrake/compare/v.13.0.4...v13.0.5)

---
updated-dependencies:
- dependency-name: airbrake
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-01 23:01:00 +00:00
dependabot[bot]
4373cca6f8 Bump rails from 7.0.8.6 to 7.0.8.7 
Bumps [rails](https://github.com/rails/rails) from 7.0.8.6 to 7.0.8.7.
- [Release notes](https://github.com/rails/rails/releases)
- [Commits](https://github.com/rails/rails/compare/v7.0.8.6...v7.0.8.7)

---
updated-dependencies:
- dependency-name: rails
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-01 23:00:30 +00:00
Sebastia
04356accb9 Merge pull request #5737 from consuldemocracy/dependabot/bundler/graphql-2.3.18 
Bump graphql from 2.0.31 to 2.3.18
 2024-11-06 13:48:34 +01:00
Sebastia
1c684c3daf Merge pull request #5752 from consuldemocracy/dependabot/bundler/sassc-embedded-1.80.1 
Bump sassc-embedded from 1.70.1 to 1.80.1
 2024-11-06 13:16:42 +01:00
dependabot[bot]
64bcedc8b2 Bump sassc-embedded from 1.70.1 to 1.80.1 
Note: Since we update to 1.80.1 deprecation warnings are appear when execute the assets:precompile command.
In order to silence this deprecation, we add silence_deprecation option in sass.rb initializer.

The code has also been updated to remove the deprecation warnings that appeared related to the function
darken(), lighten() and "Using / for division" instead of the function calc().

Bumps [sassc-embedded](https://github.com/sass-contrib/sassc-embedded-shim-ruby) from 1.70.1 to 1.80.1.
- [Commits](https://github.com/sass-contrib/sassc-embedded-shim-ruby/compare/v1.70.1...v1.80.1)

---
updated-dependencies:
- dependency-name: sassc-embedded
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-06 13:01:58 +01:00
dependabot[bot]
6b80e80680 Bump rails from 7.0.8.4 to 7.0.8.6 
Bumps [rails](https://github.com/rails/rails) from 7.0.8.4 to 7.0.8.6.
- [Release notes](https://github.com/rails/rails/releases)
- [Commits](https://github.com/rails/rails/compare/v7.0.8.4...v7.0.8.6)

---
updated-dependencies:
- dependency-name: rails
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-01 22:05:09 +00:00