Skip to content

chore(deps): bump the ruby group with 6 updates#1180

Merged
mergify[bot] merged 1 commit into
mainfrom
dependabot/bundler/ruby-1ae511223a
Jun 15, 2026
Merged

chore(deps): bump the ruby group with 6 updates#1180
mergify[bot] merged 1 commit into
mainfrom
dependabot/bundler/ruby-1ae511223a

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 15, 2026

Copy link
Copy Markdown
Contributor

Bumps the ruby group with 6 updates:

Package From To
html2rss c133c1b 510ba84
async-websocket 0.30.0 0.30.1
io-event 1.16.1 1.16.2
io-stream 0.13.0 0.13.1
json 2.19.8 2.19.9
rss 0.3.2 0.3.3

Updates html2rss from c133c1b to 510ba84

Commits
  • 510ba84 chore(release): bump version to v0.21.0 (#385)
  • a1209bf perf: optimize EnclosureExtractor (Allocations -6k) (#384)
  • 21e8335 perf: optimize auto_source extraction path (Allocations -6k) (#383)
  • 817d9bd perf: optimize auto_source extraction path (Walltime -68%, Allocations -17%) ...
  • d4e2e59 perf: optimize auto_source extraction path (#381)
  • 079045e perf: optimize auto_source extraction path (#380)
  • de1f7e9 perf: optimize AutoSource walltime and allocations (#379)
  • 3b7b6bf perf: address shape warning in Article and reduce allocations (#378)
  • 7667bf9 feat: bump minimum required ruby to 3.3 and modernize (#377)
  • 150be6c chore(release): bump version to v0.20.1 (#376)
  • Additional commits viewable in compare view

Updates async-websocket from 0.30.0 to 0.30.1

Changelog

Sourced from async-websocket's changelog.

v0.30.1

Commits

Updates io-event from 1.16.1 to 1.16.2

Release notes

Sourced from io-event's releases.

v1.16.2

  • Improve timer heap performance by batching scheduled timer insertion, compacting cancelled timers during flush, and avoiding unnecessary heap rebuilds for small incremental inserts.
Changelog

Sourced from io-event's changelog.

v1.16.2

  • Improve timer heap performance by batching scheduled timer insertion, compacting cancelled timers during flush, and avoiding unnecessary heap rebuilds for small incremental inserts.
Commits

Updates io-stream from 0.13.0 to 0.13.1

Release notes

Sourced from io-stream's releases.

v0.13.1

  • Set minimum Ruby verison to 3.3.6 to avoid hanging close issue in older Ruby versions.
Changelog

Sourced from io-stream's changelog.

v0.13.1

  • Set minimum Ruby verison to 3.3.6 to avoid hanging close issue in older Ruby versions.
Commits

Updates json from 2.19.8 to 2.19.9

Release notes

Sourced from json's releases.

v2.19.9

  • Fix buffer overflow that could lead to a crash when writing JSON directly into an IO with JSON.generate(object, io). [CVE-PENDING].

Full Changelog: ruby/json@v2.19.8...v2.19.9

Changelog

Sourced from json's changelog.

2026-06-11 (2.19.9)

  • Fix buffer overflow that could lead to a crash when writing JSON directly into an IO with JSON.generate(object, io). [CVE-PENDING].
Commits

Updates rss from 0.3.2 to 0.3.3

Release notes

Sourced from rss's releases.

rss 0.3.3 - 2026-06-10

Improvements

  • Improved PI content parse performance.

Thanks

  • Connor Shea
Changelog

Sourced from rss's changelog.

0.3.3 - 2026-06-10

Improvements

  • Improved PI content parse performance.

Thanks

  • Connor Shea
Commits
  • a59a464 Add 0.3.3 entry
  • 4bef4c2 fix: Improve the performance of the CONTENT_PATTERN regex in RSS parser to av...
  • 7ce2fd5 Bump rubygems/configure-rubygems-credentials from 1.0.0 to 2.0.0 (#65)
  • 359dcb5 Use trusted publishing
  • 540235b Bump version
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the ruby group with 6 updates
9b2cb5f 
Bumps the ruby group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [html2rss](https://github.com/html2rss/html2rss) | ``c133c1b`` | ``510ba84`` |
| [async-websocket](https://github.com/socketry/async-websocket) | `0.30.0` | `0.30.1` |
| [io-event](https://github.com/socketry/io-event) | `1.16.1` | `1.16.2` |
| [io-stream](https://github.com/socketry/io-stream) | `0.13.0` | `0.13.1` |
| [json](https://github.com/ruby/json) | `2.19.8` | `2.19.9` |
| [rss](https://github.com/ruby/rss) | `0.3.2` | `0.3.3` |


Updates `html2rss` from `c133c1b` to `510ba84`
- [Release notes](https://github.com/html2rss/html2rss/releases)
- [Commits](html2rss/html2rss@c133c1b...510ba84)

Updates `async-websocket` from 0.30.0 to 0.30.1
- [Release notes](https://github.com/socketry/async-websocket/releases)
- [Changelog](https://github.com/socketry/async-websocket/blob/main/releases.md)
- [Commits](socketry/async-websocket@v0.30.0...v0.30.1)

Updates `io-event` from 1.16.1 to 1.16.2
- [Release notes](https://github.com/socketry/io-event/releases)
- [Changelog](https://github.com/socketry/io-event/blob/main/releases.md)
- [Commits](socketry/io-event@v1.16.1...v1.16.2)

Updates `io-stream` from 0.13.0 to 0.13.1
- [Release notes](https://github.com/socketry/io-stream/releases)
- [Changelog](https://github.com/socketry/io-stream/blob/main/releases.md)
- [Commits](socketry/io-stream@v0.13.0...v0.13.1)

Updates `json` from 2.19.8 to 2.19.9
- [Release notes](https://github.com/ruby/json/releases)
- [Changelog](https://github.com/ruby/json/blob/master/CHANGES.md)
- [Commits](ruby/json@v2.19.8...v2.19.9)

Updates `rss` from 0.3.2 to 0.3.3
- [Release notes](https://github.com/ruby/rss/releases)
- [Changelog](https://github.com/ruby/rss/blob/master/NEWS.md)
- [Commits](ruby/rss@0.3.2...0.3.3)

---
updated-dependencies:
- dependency-name: html2rss
  dependency-version: 510ba8436b5910cf0a760a47a14e0922efe74c94
  dependency-type: direct:production
  dependency-group: ruby
- dependency-name: async-websocket
  dependency-version: 0.30.1
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: ruby
- dependency-name: io-event
  dependency-version: 1.16.2
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: ruby
- dependency-name: io-stream
  dependency-version: 0.13.1
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: ruby
- dependency-name: json
  dependency-version: 2.19.9
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: ruby
- dependency-name: rss
  dependency-version: 0.3.3
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: ruby
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Jun 15, 2026
@mergify mergify Bot added the queued label Jun 15, 2026
@mergify

mergify Bot commented Jun 15, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Merge Queue Status

This pull request spent 1 minute 24 seconds in the queue, including 1 minute 2 seconds running CI.

Required conditions to merge
  • author=dependabot[bot]
  • base=main
  • status-success=build
  • any of [🛡 GitHub repository ruleset rule main]:
    • check-success = build
    • check-neutral = build
    • check-skipped = build
  • any of [🛡 GitHub repository ruleset rule main]:
    • check-success = lint
    • check-neutral = lint
    • check-skipped = lint

mergify Bot added a commit that referenced this pull request Jun 15, 2026
@mergify
Merge of #1180
fe4764b
@mergify mergify Bot mentioned this pull request Jun 15, 2026
Closed
20 tasks
@mergify mergify Bot merged commit 74156e1 into main Jun 15, 2026
6 checks passed
@mergify mergify Bot deleted the dependabot/bundler/ruby-1ae511223a branch June 15, 2026 07:24
@mergify mergify Bot removed the queued label Jun 15, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants