deps(deps): Bump the production-dependencies group across 1 directory with 7 updates

[dependabot]

Bumps the production-dependencies group with 5 updates in the / directory:

Package	From	To
rubocop	1.76.1	1.78.0
io-console	0.8.0	0.8.1
rdoc	6.14.0	6.14.2
reline	0.6.1	0.6.2
rspec-core	3.13.4	3.13.5

Updates rubocop from 1.76.1 to 1.78.0

Release notes

Sourced from rubocop's releases.

RuboCop v1.78.0

New features

• #14331: Enhance Naming/MethodName cop to detect offenses within define_method calls. (@​viralpraxis)
• #14325: Enhance Naming/MethodName cop to handle offenses within Struct members. (@​viralpraxis)
• #14335: Enhance Security/Eval cop to detect Kernel.eval calls. (@​viralpraxis)

Bug fixes

• #14343: Fix autocorrect code for Style/HashConversion to avoid syntax error. (@​koic)
• #14346: Avoid requiring parentheses for Style/SingleLineMethods. (@​koic)
• #14339: Fix bug where specifying --format disables parallelization. (@​r7kamura)
• #14300: Fix false positives for Lint/DuplicateMethods cop when self-alias trick is used. (@​viralpraxis)
• #14329: Fix false positives for Lint/LiteralAsCondition when a literal is used inside || in case condition. (@​koic)
• #14326: Fix additional autocorrection errors in Style/HashConversion for nested Hash[] calls. (@​dvandersluis)
• #14031: Honor --config options on server mode. (@​steiley)
• #14319: Fix the following incorrect autocorrect for Lint/RedundantTypeConversion when using parentheses with no arguments or any arguments. (@​koic)
• #14336: Fix incorrect autocorrect for Style/ItBlockParameter when using a single numbered parameter after multiple numbered parameters in a method chain. (@​koic)
• #11782: Move pending cops warning out of ConfigLoader. (@​nobuyo)

Changes

• #14318: Add WaywardPredicates config to Naming/PredicateMethod to handle methods that look like predicates but aren't. (@​dvandersluis)

RuboCop v1.77.0

New features

• #14223: Add new Gemspec/AttributeAssignment cop. (@​viralpraxis)
• #14128: Allow long fully-qualified namespace strings to exceed max length. ([@​niranjan-patil][])
• #14288: Add new cop Style/CollectionQuerying. ([@​lovro-bikic][])
• #14165: Add new DefaultToNil option to Style/FetchEnvVar cop. ([@​Yuhi-Sato][])
• #14314: Enhance Gemspec/RequireMFA cop autocorrect to insert MFA directive after last metadata assignment. (@​viralpraxis)
• #14159: Enhance Layout/SpaceInsideArrayLiteralBrackets cop to analyze nested constant patterns. (@​viralpraxis)

Bug fixes

• #14306: Fix an error for Style/HashConversion when using nested Hash[]. (@​koic)
• #14298: Fix an error for Style/SoleNestedConditional when autocorrecting nested if/unless/if. ([@​ssagara00][])
• #14313: Fix a false positive for Layout/SpaceBeforeBrackets when call desugared Hash#[] to lvar receiver with a space around the dot. (@​koic)
• #14292: Fix false positives for Style/RedundantParentheses when assigning a parenthesized one-line in pattern matching. (@​koic)
• #14296: Fix false positives for Style/RedundantSelf when receiver and lvalue have the same name in or-assignment. (@​koic)
• #14303: Fix Lint/SelfAssignment to allow inline RBS comments. ([@​Morriar][])
• #14307: Fix Style/MethodCallWithArgsParentheses false positive on forwarded keyword argument with additional arguments. (@​viralpraxis)

... (truncated)

Changelog

Sourced from rubocop's changelog.

1.78.0 (2025-07-08)

New features

• #14331: Enhance Naming/MethodName cop to detect offenses within define_method calls. ([@​viralpraxis][])
• #14325: Enhance Naming/MethodName cop to handle offenses within Struct members. ([@​viralpraxis][])
• #14335: Enhance Security/Eval cop to detect Kernel.eval calls. ([@​viralpraxis][])

Bug fixes

• #14343: Fix autocorrect code for Style/HashConversion to avoid syntax error. ([@​koic][])
• #14346: Avoid requiring parentheses for Style/SingleLineMethods. ([@​koic][])
• #14339: Fix bug where specifying --format disables parallelization. ([@​r7kamura][])
• #14300: Fix false positives for Lint/DuplicateMethods cop when self-alias trick is used. ([@​viralpraxis][])
• #14329: Fix false positives for Lint/LiteralAsCondition when a literal is used inside || in case condition. ([@​koic][])
• #14326: Fix additional autocorrection errors in Style/HashConversion for nested Hash[] calls. ([@​dvandersluis][])
• #14031: Honor --config options on server mode. ([@​steiley][])
• #14319: Fix the following incorrect autocorrect for Lint/RedundantTypeConversion when using parentheses with no arguments or any arguments. ([@​koic][])
• #14336: Fix incorrect autocorrect for Style/ItBlockParameter when using a single numbered parameter after multiple numbered parameters in a method chain. ([@​koic][])
• #11782: Move pending cops warning out of ConfigLoader. ([@​nobuyo][])

Changes

• #14318: Add WaywardPredicates config to Naming/PredicateMethod to handle methods that look like predicates but aren't. ([@​dvandersluis][])

1.77.0 (2025-06-20)

New features

• #14223: Add new Gemspec/AttributeAssignment cop. ([@​viralpraxis][])
• #14128: Allow long fully-qualified namespace strings to exceed max length. ([@​niranjan-patil][])
• #14288: Add new cop Style/CollectionQuerying. ([@​lovro-bikic][])
• #14165: Add new DefaultToNil option to Style/FetchEnvVar cop. ([@​Yuhi-Sato][])
• #14314: Enhance Gemspec/RequireMFA cop autocorrect to insert MFA directive after last metadata assignment. ([@​viralpraxis][])
• #14159: Enhance Layout/SpaceInsideArrayLiteralBrackets cop to analyze nested constant patterns. ([@​viralpraxis][])

Bug fixes

• #14306: Fix an error for Style/HashConversion when using nested Hash[]. ([@​koic][])
• #14298: Fix an error for Style/SoleNestedConditional when autocorrecting nested if/unless/if. ([@​ssagara00][])
• #14313: Fix a false positive for Layout/SpaceBeforeBrackets when call desugared Hash#[] to lvar receiver with a space around the dot. ([@​koic][])
• #14292: Fix false positives for Style/RedundantParentheses when assigning a parenthesized one-line in pattern matching. ([@​koic][])
• #14296: Fix false positives for Style/RedundantSelf when receiver and lvalue have the same name in or-assignment. ([@​koic][])
• #14303: Fix Lint/SelfAssignment to allow inline RBS comments. ([@​Morriar][])
• #14307: Fix Style/MethodCallWithArgsParentheses false positive on forwarded keyword argument with additional arguments. ([@​viralpraxis][])
• #14301: Fix autocorrection syntax error for multiline expressions in Style/RedundantParentheses. ([@​lovro-bikic][])

Changes

• #14295: Update Naming/PredicateMethod to consider negation (!/not) as boolean values. ([@​dvandersluis][])

... (truncated)

Commits

• dd441f4 Cut 1.78
• 0687f04 Update Changelog
• 9322c7d Tweak docstring
• 2508d94 Fix false positives for Lint/DuplicateMethods when the self-alias trick is used
• 9582c40 [Fix #11782] Move pending cops warning out of ConfigLoader
• 6c863b3 [Fix #14346] Avoid requiring parentheses for Style/SingleLineMethods
• 0b08bb8 Merge pull request #14343 from koic/fix_autocorrect_for_style_hash_conversion
• 0ef54b5 Fix autocorrect for Style/HashConversion to avoid syntax error
• 01fdcbb Remove redundant method call in def_node_matcher
• a80d92b [Doc] Remove redundant blank line
• Additional commits viewable in compare view

Updates io-console from 0.8.0 to 0.8.1

Release notes

Sourced from io-console's releases.

v0.8.1

What's Changed

• Bump step-security/harden-runner from 2.10.2 to 2.10.3 by @​dependabot[bot] in ruby/io-console#84
• Bump step-security/harden-runner from 2.10.3 to 2.10.4 by @​dependabot[bot] in ruby/io-console#85
• Bump step-security/harden-runner from 2.10.4 to 2.11.0 by @​dependabot[bot] in ruby/io-console#86
• Bump step-security/harden-runner from 2.11.0 to 2.11.1 by @​dependabot[bot] in ruby/io-console#87
• Bump step-security/harden-runner from 2.11.1 to 2.12.0 by @​dependabot[bot] in ruby/io-console#89
• Alias value or join to take in old Ruby by @​hsbt in ruby/io-console#91
• Bump step-security/harden-runner from 2.12.0 to 2.12.1 by @​dependabot[bot] in ruby/io-console#92
• Ignore ^C at interrupt test by @​nobu in ruby/io-console#93
• Bump step-security/harden-runner from 2.12.1 to 2.12.2 by @​dependabot[bot] in ruby/io-console#94
• Bump rubygems/release-gem from 1.1.0 to 1.1.1 by @​dependabot[bot] in ruby/io-console#83
• Use host_os in RbConfig instead of RUBY_PLATFORM for JRuby by @​nobu in ruby/io-console#95
• Fix removing unexpected control chars by @​nobu in ruby/io-console#96
• Run have_func with the header providing the declarations by @​nobu in ruby/io-console#97

Full Changelog: ruby/io-console@v0.8.0...v0.8.1

Commits

• 01071a1 Bump up 0.8.1
• dd01303 Run have_func with the header providing the declarations
• 65c9266 Fix removing unexpected control chars
• f8b33f3 Use host_os in RbConfig instead of RUBY_PLATFORM for JRuby
• ad92638 Bump rubygems/release-gem from 1.1.0 to 1.1.1
• 7c3625e Bump step-security/harden-runner from 2.12.1 to 2.12.2
• e0398ac Fix a name error
• c5e47a9 Ignore printed control char
• 2e0e012 Revert "Ignore ^C at interrupt"
• f0646b2 Ignore ^C at interrupt
• Additional commits viewable in compare view

Updates json from 2.12.2 to 2.13.0

Release notes

Sourced from json's releases.

v2.13.0

What's Changed

• Add new allow_duplicate_key parsing options. By default a warning is now emitted when a duplicated key is encountered. In json 3.0 an error will be raised.
• Optimize parsing further using SIMD to scan strings.

Full Changelog: ruby/json@v2.12.2...v2.13.0

Changelog

Sourced from json's changelog.

2025-05-23 (2.13.0)

• Add new allow_duplicate_key parsing options. By default a warning is now emitted when a duplicated key is encountered. In json 3.0 an error will be raised.
• Optimize parsing further using SIMD to scan strings.

Commits

• 8d08494 Release 2.13.0
• 37e6890 Fix mistake in jruby Rakefile
• 9b6ac43 Merge pull request #825 from samyron/fix-jruby-java-build
• 90680fa Use File::PATH_SEPARATOR instead of java.lang.System.getProperty.
• b362c08 Use the platform native path.separator when building using JRuby.
• a497c71 Improve consistency of code style
• c5af1b6 Merge pull request #823 from nobu/have_func-headers
• 95fb084 Run have_func with the header providing the declarations
• 829f4bc Merge pull request #822 from byroot/simd-remove-cpu-init
• d3317b9 Stop calling __builtin_cpu_init
• Additional commits viewable in compare view

Updates rdoc from 6.14.0 to 6.14.2

Release notes

Sourced from rdoc's releases.

v6.14.2

What's Changed

🐛 Bug Fixes

• Support markdown syntax in table cells by @​st0012 in ruby/rdoc#1386

🛠 Other Changes

• Fixup to usage of cgi/escape for Windows CI by @​hsbt in ruby/rdoc#1378
• Added gemspec file to gem package by @​hsbt in ruby/rdoc#1379
• Use GITHUB_TOKEN instead of admin credential by @​hsbt in ruby/rdoc#1380
• Bump step-security/harden-runner from 2.12.0 to 2.12.1 by @​dependabot in ruby/rdoc#1377
• test/lib/helper.rb is only for ruby/rdoc repository by @​hsbt in ruby/rdoc#1372
• Refactor PR preview workflow for improved approval process by @​st0012 in ruby/rdoc#1370
• Use repository_dispatch for previewing instead by @​st0012 in ruby/rdoc#1384
• Bump step-security/harden-runner from 2.12.1 to 2.12.2 by @​dependabot in ruby/rdoc#1385
• Fix template files location by @​nobu in ruby/rdoc#1383
• Bump version to 6.14.2 by @​st0012 in ruby/rdoc#1387

Full Changelog: ruby/rdoc@v6.14.0...v6.14.2

v6.14.1

What's Changed

🛠 Other Changes

• Fixup to usage of cgi/escape for Windows CI by @​hsbt in ruby/rdoc#1378
• Added gemspec file to gem package by @​hsbt in ruby/rdoc#1379

Full Changelog: ruby/rdoc@v6.14.0...v6.14.1

Commits

• e0e24f2 Bump version to 6.14.2 (#1387)
• eaac67d Support markdown syntax in table cells (#1386)
• 70301b8 Fix template files location
• fcfab0f Bump step-security/harden-runner from 2.12.1 to 2.12.2 (#1385)
• f3204b7 Pass PR info through artifacts to fork preview deploy
• f4592db Use repository_dispatch for previewing instead (#1384)
• 552d1c4 Refactor PR preview workflow for improved approval process (#1370)
• 1d26a15 test/lib/helper.rb is only for ruby/rdoc repo
• aa74823 Bump step-security/harden-runner from 2.12.0 to 2.12.1
• e5162fe Use bot credential for preview page generated by dependabot
• Additional commits viewable in compare view

Updates reline from 0.6.1 to 0.6.2

Release notes

Sourced from reline's releases.

v0.6.2

What's Changed

✨ Enhancements

• Implement end-of-history by @​etiennebarrie in ruby/reline#826

🐛 Bug Fixes

• Rescue more errors in get/set_screen_size by @​tompng in ruby/reline#824
• Fix cursor positioning for invalid halfwidth dakuten/handakuten combinations by @​moznion in ruby/reline#832
• Fix quoted insert with invalid byte input by @​tompng in ruby/reline#836
• Don't print useless prompt before escape sequence by @​tompng in ruby/reline#839

🛠 Other Changes

• Enabled trusted publisher for rubygems.org by @​hsbt in ruby/reline#828
• Bump step-security/harden-runner from 2.12.0 to 2.12.1 by @​dependabot[bot] in ruby/reline#830
• Add validation for Encoding.default_external by @​ksaito422 in ruby/reline#829
• Bump step-security/harden-runner from 2.12.1 to 2.12.2 by @​dependabot[bot] in ruby/reline#831
• Add a test for non-ascii char input escaped with C-v by @​tompng in ruby/reline#835
• Update grapheme cluster width calculation by @​tompng in ruby/reline#837
• Support grapheme cluster that has width >= 3 by @​tompng in ruby/reline#834
• Bump version to 0.6.2 by @​ima1zumi in ruby/reline#843

New Contributors

• @​ksaito422 made their first contribution in ruby/reline#829
• @​moznion made their first contribution in ruby/reline#832

Full Changelog: ruby/reline@v0.6.1...v0.6.2

Commits

• 274850e Bump version to 0.6.2 (#843)
• af08aec Support grapheme cluster that has width >= 3 (#834)
• 5a0d2c0 Don't print useless prompt before escape sequence (#839)
• 5f0327e Fix quoted insert with invalid byte input (#836)
• d0f09ee Update grapheme cluster width calculation (#837)
• 13d11df Fix cursor positioning for invalid halfwidth dakuten/handakuten combinations ...
• 148b744 Add a test for non-ascii char input escaped with C-v (#835)
• 93f38cc Merge pull request #831 from ruby/dependabot/github_actions/step-security/har...
• 7181276 Bump step-security/harden-runner from 2.12.1 to 2.12.2
• d4d0700 Add validation for Encoding.default_external (#829)
• Additional commits viewable in compare view

Updates rspec-core from 3.13.4 to 3.13.5

Changelog

Sourced from rspec-core's changelog.

3.13.5 / 2025-06-25

Full Changelog

Bug Fixes:

• Fix finding failed lines from frozen backtrace arrays. (Jon Rowe, #225)

Commits

• a59dfa0 v3.13.5
• 6ef5b2d Changelog for #225
• e4332c7 Merge pull request #225 from rspec/rspec-core-fix-frozen-backtrace
• 6ceb263 Merge pull request #226 from rspec/general-lint-fixes
• See full diff in compare view

Updates rubocop-ast from 1.45.1 to 1.46.0

Release notes

Sourced from rubocop-ast's releases.

RuboCop AST v1.46.0

New features

• #379: Support RuboCop::AST::ComplexNode. ([@​koic][])

Bug fixes

• #380: Fix RuboCop::AST::NumericNode#sign? to return boolean. ([@​viralpraxis][])

Changelog

Sourced from rubocop-ast's changelog.

1.46.0 (2025-07-16)

New features

• #379: Support RuboCop::AST::ComplexNode. ([@​koic][])

Bug fixes

• #380: Fix RuboCop::AST::NumericNode#sign? to return boolean. ([@​viralpraxis][])

Commits

• 9cba9c7 Cut 1.46.0
• b3469e4 Update Changelog
• 745ae82 Support RuboCop::AST::ComplexNode
• c8a2a52 Fix RuboCop::AST::NumericNode#sign? to return boolean
• 8c26dbb Suppress a RuboCop's offense
• 4f97e54 Suppress RuboCop's offenses
• 993e9ea Add release notes
• 73ad40b Restore docs/antora.yml
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: automated, bot: dependabot, dependencies, lang: ruby, size: sm, status: needs-review, type: maintenance. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[dependabot]

The reviewers field in the dependabot.yml file will be removed soon. Please use the code owners file to specify reviewers for Dependabot PRs. For more information, see this blog post.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.