Skip to content

[bundler] Bump the monthly group with 2 updates#195

Merged
ahaverbuch merged 2 commits into
mainfrom
dependabot/bundler/monthly-e18f09b7e2
Apr 17, 2026
Merged

[bundler] Bump the monthly group with 2 updates#195
ahaverbuch merged 2 commits into
mainfrom
dependabot/bundler/monthly-e18f09b7e2

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 16, 2026
edited by cursor Bot
Loading

Bumps the monthly group with 2 updates: rake and sqlite3.

Updates rake from 13.4.1 to 13.4.2

Commits
  • 503b8ec v13.4.2
  • 46038e7 Merge pull request #723 from ruby/fix/testopts-preserve-existing-value
  • 604a3d9 Isolate TESTOPTS env in TestRakeTestTask setup/teardown
  • 5886caa Preserve ENV["TESTOPTS"] when verbose is enabled
  • See full diff in compare view

Updates sqlite3 from 2.9.2 to 2.9.3

Release notes

Sourced from sqlite3's releases.

2.9.3 / 2026-04-15

SHA256 Checksums

ca6dd1cf6c037ccc8d3e5837190cc61ef15466092014951235641b5c4c8ab4ee  sqlite3-2.9.3-aarch64-linux-gnu.gem
ff017a36c463d02e9f0be7a6224521371128024e6a05ed16994afa5c037afbba  sqlite3-2.9.3-aarch64-linux-musl.gem
fd8b74337a66bdaf746b97d65e6c9a2faff803c8f72d6b107fb880972815d072  sqlite3-2.9.3-arm-linux-gnu.gem
792ae9a786bb37dbdc4c443c527bc91df423aac10e472f76d5cf5a9ac6d51980  sqlite3-2.9.3-arm-linux-musl.gem
76b265d3d57362d3e38338f24f50a0c9cd47a4599c9cfbb578fac125d2299906  sqlite3-2.9.3-arm64-darwin.gem
61edb2ce7a58e800478602e88b67e99f029b44747405c94c0cce7d165b0d0a96  sqlite3-2.9.3-x64-mingw-ucrt.gem
ceb2417f01563a2800836fbbc6d59aa0ca591882c99f6c50fdc0c8090da7a03b  sqlite3-2.9.3-x86-linux-gnu.gem
1688e37da36a4513a1a1d6e9abb643f68723599abbe564cb1a1bf496c9ae8dca  sqlite3-2.9.3-x86-linux-musl.gem
087e7cc4efc73d83e76354f028c4d1dc14552a05acc74f60e77a55f1bee6ef22  sqlite3-2.9.3-x86_64-darwin.gem
85200a10c6cf5c60085fcca411a3168c5fba8fda3e2b1b0109ec277d7c226d46  sqlite3-2.9.3-x86_64-linux-gnu.gem
b6d0437046d9180335dea1aa0592802e65c4f7b57409d63f14408211bf28536b  sqlite3-2.9.3-x86_64-linux-musl.gem
e5ca871c87241bfdaf0e4a90d5177f4e4fe7af5f6951f88b4644339cc76e47ae  sqlite3-2.9.3.gem
Changelog

Sourced from sqlite3's changelog.

2.9.3 / 2026-04-15

Commits
  • 2e8172c version bump to v2.9.3
  • 3dee3f2 Merge pull request #696 from sparklemotion/dep-sqlite-3.53.0
  • 6d1ae38 build(deps): update vendored sqlite to 3.53.0
  • 45611fd build(deps): bump the actions group with 3 updates (#695)
  • c1724fc build(deps): bump vmactions/freebsd-vm in the actions group (#694)
  • 8a7709e build(deps-dev): update minitest requirement from 6.0.2 to 6.0.3 (#693)
  • b7c076d build(deps): bump the actions group with 3 updates (#692)
  • 704beb8 build(deps): bump the actions group with 2 updates (#691)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Note

Medium Risk
While changes are limited to lockfile version bumps, updating sqlite3 (and its vendored SQLite) can affect local/test DB behavior across platforms.

Overview
Updates dependency lockfiles to bump rake from 13.4.1 to 13.4.2 and sqlite3 from 2.9.2 to 2.9.3 (across the root Gemfile.lock and the Rails appraisal lockfiles).

Reviewed by Cursor Bugbot for commit a6f92ca. Bugbot is set up for automated code reviews on this repo. Configure here.

@dependabot
[bundler] Bump the monthly group with 2 updates
ac743d9 
Bumps the monthly group with 2 updates: [rake](https://github.com/ruby/rake) and [sqlite3](https://github.com/sparklemotion/sqlite3-ruby).


Updates `rake` from 13.4.1 to 13.4.2
- [Release notes](https://github.com/ruby/rake/releases)
- [Changelog](https://github.com/ruby/rake/blob/master/History.rdoc)
- [Commits](ruby/rake@v13.4.1...v13.4.2)

Updates `sqlite3` from 2.9.2 to 2.9.3
- [Release notes](https://github.com/sparklemotion/sqlite3-ruby/releases)
- [Changelog](https://github.com/sparklemotion/sqlite3-ruby/blob/main/CHANGELOG.md)
- [Commits](sparklemotion/sqlite3-ruby@v2.9.2...v2.9.3)

---
updated-dependencies:
- dependency-name: rake
  dependency-version: 13.4.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: monthly
- dependency-name: sqlite3
  dependency-version: 2.9.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: monthly
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Apr 16, 2026
@socket-security
Copy link
Copy Markdown

socket-security Bot commented Apr 16, 2026
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Updatedsqlite3@​2.9.2-aarch64-linux-gnu ⏵ 2.9.3-aarch64-linux-gnu10010090100100
Updatedrake@​13.4.1 ⏵ 13.4.290 +1100100100100

View full report

@ahaverbuch ahaverbuch merged commit b12db0b into main Apr 17, 2026
9 checks passed
@ahaverbuch ahaverbuch deleted the dependabot/bundler/monthly-e18f09b7e2 branch April 17, 2026 12:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ahaverbuch ahaverbuch ahaverbuch approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ahaverbuch