Bump the bundler group across 1 directory with 8 updates

[dependabot]

Bumps the bundler group with 3 updates in the / directory: RedCloth, activesupport and ffi.

Updates RedCloth from 4.2.9 to 4.3.3

Changelog

Sourced from RedCloth's changelog.

== 4.3.3 / Nov 2nd, 2023

• Add tests for CVE-2023-31606 [Helio Cola]
• Fix rake compile [Helio Cola and Faria Education Group]
• Fix CVE-2023-31606 (ReDOS possible in the sanitize_html function) [Kornelius Kalnbach and Merbin Russel]
• Immutable strings [Matijs van Zuijlen]

== 4.3.2 / May 23rd, 2016

• Fix additional case for CVE-2012-6684 [Joshua Siler]

== 4.3.1 / May 17th, 2016

• Fix additional case for CVE-2012-6684 [Joshua Siler]

== 4.3.0 / April 29th, 2016

• Remove JRuby and Windows cross compilation and support

• Add Ruby 2.2.3 testing and support

• include CVE-2012-6684 fix [Tomas Pospisek]

  • fix by [Antonio Terceiro]
    • see http://sources.debian.net/src/ruby-redcloth/4.2.9-4/debian/patches/0001-Filter-out-javascript-links-when-using-filter_html-o.patch/
  • vulnerability reported by [Kousuke Ebihara]
    • see http://co3k.org/blog/redcloth-unfixed-xss-en

== 4.2.9.1 / February 24, 2015

• Lazy-load latex_entities.yml [Charlie Somerville]

Commits

• 8297da8 4.3.3 release
• 2600d93 Merge pull request #80 from jgarber/tests/CVE-2023-31606
• ac10b68 Add tests for CVE-2023-31606
• 4e85481 Merge pull request #78 from jgarber/fix/build
• ccdd54d Fix rake compile
• 8b13276 Fix CVE-2023-31606 (ReDOS possible in the sanitize_html function) (#75)
• dd7ee6c Merge pull request #47 from greggawatt/patch-1
• 5c9b35c Update README.rdoc
• c34fa19 Update README.rdoc
• 4808b36 Merge pull request #38 from mvz/immutable-strings
• Additional commits viewable in compare view

Updates activesupport from 4.2.1 to 6.1.7.5

Release notes

Sourced from activesupport's releases.

6.1.7.5 Release

Active Support

• Use a temporary file for storing unencrypted files while editing

  [CVE-2023-38037]

Active Model

• No changes.

Active Record

• No changes.

Action View

• No changes.

Action Pack

• No changes.

Active Job

• No changes.

Action Mailer

• No changes.

Action Cable

• No changes.

... (truncated)

Commits

• 3a1b615 Preparing for 6.1.7.5 release
• c2af578 bumping version / changelog
• c85cc66 Use a temporary file for storing unencrypted files while editing
• 7d949d7 Preparing for 6.1.7.4 release
• f09dc7c Preparing for 6.1.7.3 release
• 7167e53 Prepare version 6.1.7.3
• 3cf23c3 Implement SafeBuffer#bytesplice
• 3e0c1a5 Version 6.1.7.2
• c443466 Version 6.1.7.1
• a7cda7e Avoid regex backtracking in Inflector.underscore
• Additional commits viewable in compare view

Updates ffi from 1.9.8 to 1.9.24

Changelog

Sourced from ffi's changelog.

1.9.24 / 2018-06-02

Security Note:

This update addresses vulnerability CVE-2018-1000201: DLL loading issue which can be hijacked on Windows OS, when a Symbol is used as DLL name instead of a String. Found by Matthew Bush.

Added:

• Added a CHANGELOG file
• Add mips64(eb) support, and mips r6 support. (#601)

Changed:

• Update libffi to latest changes on master.
• Don't search in hardcoded /usr paths on Windows.
• Don't treat Symbol args different to Strings in ffi_lib.
• Make sure size_t is defined in Thread.c. Fixes #609

1.9.23 / 2018-02-25

Changed:

• Fix unnecessary rebuild of configure in darwin multi arch. Fixes #605

1.9.22 / 2018-02-22

Changed:

• Update libffi to latest changes on master.
• Update detection of system libffi to match new requirements. Fixes #617
• Prefer bundled libffi over system libffi on Mac OS.
• Do closures via libffi. This removes ClosurePool and fixes compat with PaX. #540
• Use a more deterministic gem packaging.
• Fix unnecessary update of autoconf files at gem install.

1.9.21 / 2018-02-06

Added:

• Ruby-2.5 support by Windows binary gems. Fixes #598
• Add missing win64 types.
• Added support for Bitmask. (#573)
• Add support for MSYS2 (#572) and Sparc64 Linux. (#574)

Changed:

• Fix read_string to not throw an error on length 0.
• Don't use absolute paths for sh and env. Fixes usage on Adroid #528
• Use Ruby implementation for which for better compat with Windows. Fixes #315

... (truncated)

Commits

• 4e1051a Run rspec with dots output only
• e70b13d Fix integer parameter range specs
• 55ae232 Fix several specs where raise_error was called without class
• 8821d4f Specify error class for several raise_error calls
• bf48d44 Fix missing C declarations causing compiler warnings
• f569788 Replace symlinks for mips r6 with plain files
• fedbae0 Update CHANGELOG
• a4d4d19 Merge branch 'master' of github.com:ffi/ffi
• 45d8803 Add a CHANGELOG file
• 2ff1d8f Bump VERSION to 1.9.24
• Additional commits viewable in compare view

Updates i18n from 0.7.0 to 1.14.8

Release notes

Sourced from i18n's releases.

v1.14.8

Full Changelog: ruby-i18n/i18n@v1.14.7...v1.14.8

What's Changed

• Remove unused cgi require for Ruby 3.5 compatibility by @​Earlopain in ruby-i18n/i18n#713
• Explicitly require pathname by @​voxik in ruby-i18n/i18n#708
• CI: Add Ruby 3.4 to CI Matrix by @​taketo1113 in ruby-i18n/i18n#722
• Fix: I18n.locale reset in Fiber context by using Thread#thread_variable by @​lee266 in ruby-i18n/i18n#724
• CI: Use actions/checkout@v5 by @​olleolleolle in ruby-i18n/i18n#721
• Fix compatibility with --enable-frozen-string-literal by @​byroot in ruby-i18n/i18n#726

New Contributors

• @​Earlopain made their first contribution in ruby-i18n/i18n#713
• @​taketo1113 made their first contribution in ruby-i18n/i18n#722
• @​lee266 made their first contribution in ruby-i18n/i18n#724
• @​byroot made their first contribution in ruby-i18n/i18n#726

Full Changelog: ruby-i18n/i18n@v1.14.7...v1.14.8

v1.14.7

What's Changed

• Ruby 3.4 Hash#inspect compatibility. by @​voxik in ruby-i18n/i18n#709
• Removed (annoying) post-install message that was triggering on all Rubies, rather than the specified versions.

Full Changelog: ruby-i18n/i18n@v1.14.6...v1.14.7

v1.14.6

What's Changed

Ruby < 3.2 support will be dropped April 2025. Upgrade now to continue using i18n after that date.

• fix issues with RDoc generation by @​davetron5000 in ruby-i18n/i18n#698
• Fix loading of .rb locale files when load_path is not a string by @​stevegeek in ruby-i18n/i18n#701
• Fixes strings being interpolated multiple times by @​alexpls in ruby-i18n/i18n#699
• Optimize pluralization logic in test data by @​zachmargolis in ruby-i18n/i18n#697
• [FIX] Raise ArgumentError on nil key in exists? by @​KinWang-2013 in ruby-i18n/i18n#696

New Contributors

• @​davetron5000 made their first contribution in ruby-i18n/i18n#698
• @​stevegeek made their first contribution in ruby-i18n/i18n#701
• @​alexpls made their first contribution in ruby-i18n/i18n#699
• @​zachmargolis made their first contribution in ruby-i18n/i18n#697
• @​KinWang-2013 made their first contribution in ruby-i18n/i18n#696

Full Changelog: ruby-i18n/i18n@v1.14.5...v1.14.6

v1.14.5

... (truncated)

Commits

• f2fb6a5 Bump to 1.14.9
• ef62253 Merge pull request #726 from byroot/fstr-compat
• 0022013 Merge branch 'master' into fstr-compat
• dee96b6 Remove testing for EOL Rubies 3.1 + 3.0
• c6873f9 Merge remote-tracking branch 'olleolleolle/patch-1'
• 2134338 Merge pull request #724 from lee266/fix/i18n-locale-thread-variable
• 3f9ae64 Fix compatibility with --enable-frozen-string-literal
• d64a88d Merge pull request #722 from taketo1113/ci-ruby-3.4
• 0e5484f CI: Fix rails version specification in gemfiles to run with the specified min...
• 960ab2b CI: Add ruby 3.4 to CI Matrix
• Additional commits viewable in compare view

Updates json from 1.8.2 to 2.18.1

Release notes

Sourced from json's releases.

v2.18.1

What's Changed

• Fix a potential crash in very specific circumstance if GC triggers during a call to to_json without first invoking a user defined #to_json method.

Full Changelog: ruby/json@v2.18.0...v2.18.1

v2.18.0

What's Changed

• Add :allow_control_characters parser options, to allow JSON strings containing unescaped ASCII control characters (e.g. newlines).

Full Changelog: ruby/json@v2.17.1...v2.18.0

v2.17.1

What's Changed

• Fix a regression in parsing of unicode surogate pairs (\uXX\uXX) that could cause an invalid string to be returned.

Full Changelog: ruby/json@v2.17.0...v2.17.1

v2.17.0

What's Changed

• Improve JSON.load and JSON.unsafe_load to allow passing options as second argument.
• Fix the parser to no longer ignore invalid escapes in strings. Only \", \\, \b, \f, \n, \r, \t and \u are valid JSON escapes.
• Fixed JSON::Coder to use the depth it was initialized with.
• On TruffleRuby, fix the generator to not call to_json on the return value of as_json for Float::NAN.
• Fixed handling of state.depth: when to_json changes state.depth but does not restore it, it is reset automatically to its initial value. In particular, when a NestingError is raised, depth is no longer equal to max_nesting after the call to generate, and is reset to its initial value. Similarly when to_json raises an exception.

Full Changelog: ruby/json@v2.16.0...v2.17.0

v2.16.0

What's Changed

• Deprecate JSON::State#[] and JSON::State#[]=. Consider using JSON::Coder instead.
• JSON::Coder now also yields to the block when encountering strings with invalid encoding.
• Fix GeneratorError messages to be UTF-8 encoded.
• Fix memory leak when Exception is raised, or throw is used during JSON generation.
• Optimized floating point number parsing by integrating the ryu algorithm (thanks to Josef Šimánek).
• Optimized numbers parsing using SWAR (thanks to Scott Myron).
• Optimized parsing of pretty printed documents using SWAR (thanks to Scott Myron).

Full Changelog: ruby/json@v2.15.2...v2.16.0

... (truncated)

Changelog

Sourced from json's changelog.

2026-02-03 (2.18.1)

• Fix a potential crash in very specific circumstance if GC triggers during a call to to_json without first invoking a user defined #to_json method.

2025-12-11 (2.18.0)

• Add :allow_control_characters parser options, to allow JSON strings containing unescaped ASCII control characters (e.g. newlines).

2025-12-04 (2.17.1)

• Fix a regression in parsing of unicode surogate pairs (\uXX\uXX) that could cause an invalid string to be returned.

2025-12-03 (2.17.0)

• Improve JSON.load and JSON.unsafe_load to allow passing options as second argument.
• Fix the parser to no longer ignore invalid escapes in strings. Only \", \\, \b, \f, \n, \r, \t and \u are valid JSON escapes.
• Fixed JSON::Coder to use the depth it was initialized with.
• On TruffleRuby, fix the generator to not call to_json on the return value of as_json for Float::NAN.
• Fixed handling of state.depth: when to_json changes state.depth but does not restore it, it is reset automatically to its initial value. In particular, when a NestingError is raised, depth is no longer equal to max_nesting after the call to generate, and is reset to its initial value. Similarly when to_json raises an exception.

2025-11-07 (2.16.0)

• Deprecate JSON::State#[] and JSON::State#[]=. Consider using JSON::Coder instead.
• JSON::Coder now also yields to the block when encountering strings with invalid encoding.
• Fix GeneratorError messages to be UTF-8 encoded.
• Fix memory leak when Exception is raised, or throw is used during JSON generation.
• Optimized floating point number parsing by integrating the ryu algorithm (thanks to Josef Šimánek).
• Optimized numbers parsing using SWAR (thanks to Scott Myron).
• Optimized parsing of pretty printed documents using SWAR (thanks to Scott Myron).

2025-10-25 (2.15.2)

• Fix JSON::Coder to have one dedicated depth counter per invocation. After encountering a circular reference in JSON::Coder#dump, any further #dump call would raise JSON::NestingError.

2025-10-07 (2.15.1)

• Fix incorrect escaping in the JRuby extension when encoding shared strings.

2025-09-22 (2.15.0)

• JSON::Coder callback now receive a second argument to convey whether the object is a hash key.
• Tuned the floating point number generator to not use scientific notation as aggressively.

2025-09-18 (2.14.1)

... (truncated)

Commits

• 6ec6e7b Release 2.18.1
• fff25c9 fbuffer_append_str: assume string
• 79b6e16 Ensure Generator::State is kept on the stack
• 062fcdd Improve class JSON intro
• 1b276c8 Extract json_fast_memcpy16 for readability
• 643ee11 Use __builtin_memcpy, if available, to copy overlapping byte ranges in copy_r...
• 15eb40d Remove trailing spaces [ci skip]
• 73818b8 initialize search.chunk_end to silence a warning about it being potentially u...
• 86a5cce use a conditional to select SIMD implementation rather than pointer
• a51317c Directly write to the output buffer when converting UTF32 to UTF8.
• Additional commits viewable in compare view

Updates kramdown from 1.5.0 to 2.4.0

Commits

• See full diff in compare view

Updates nokogiri from 1.6.6.2 to 1.19.1

Release notes

Sourced from nokogiri's releases.

v1.19.1 / 2026-02-16

Security

• [CRuby] Address unchecked return value from xmlC14NExecute which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See GHSA-wx95-c6cv-8532 for more information.

cfdb0eafd9a554a88f12ebcc688d2b9005f9fce42b00b970e3dc199587b27f32  nokogiri-1.19.1-aarch64-linux-gnu.gem
1e2150ab43c3b373aba76cd1190af7b9e92103564063e48c474f7600923620b5  nokogiri-1.19.1-aarch64-linux-musl.gem
0a39ed59abe3bf279fab9dd4c6db6fe8af01af0608f6e1f08b8ffa4e5d407fa3  nokogiri-1.19.1-arm-linux-gnu.gem
3a18e559ee499b064aac6562d98daab3d39ba6cbb4074a1542781b2f556db47d  nokogiri-1.19.1-arm-linux-musl.gem
dfe2d337e6700eac47290407c289d56bcf85805d128c1b5a6434ddb79731cb9e  nokogiri-1.19.1-arm64-darwin.gem
1e0bda88b1c6409f0edb9e0c25f1bf9ff4fa94c3958f492a10fcf50dda594365  nokogiri-1.19.1-java.gem
110d92ae57694ae7866670d298a5d04cd150fae5a6a7849957d66f171e6aec9b  nokogiri-1.19.1-x64-mingw-ucrt.gem
7093896778cc03efb74b85f915a775862730e887f2e58d6921e3fa3d981e68bf  nokogiri-1.19.1-x86_64-darwin.gem
1a4902842a186b4f901078e692d12257678e6133858d0566152fe29cdb98456a  nokogiri-1.19.1-x86_64-linux-gnu.gem
4267f38ad4fc7e52a2e7ee28ed494e8f9d8eb4f4b3320901d55981c7b995fc23  nokogiri-1.19.1-x86_64-linux-musl.gem
598b327f36df0b172abd57b68b18979a6e14219353bca87180c31a51a00d5ad3  nokogiri-1.19.1.gem

v1.19.0 / 2025-12-28

Ruby

This release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.

• Introduce native gem support for Ruby 4.0. #3590
• End support for Ruby 3.1, for which upstream support ended 2025-03-26.
• End support for JRuby 9.4 (which targets Ruby 3.1 compatibility).

11a97ecc3c0e7e5edcf395720b10860ef493b768f6aa80c539573530bc933767  nokogiri-1.19.0-aarch64-linux-gnu.gem
eb70507f5e01bc23dad9b8dbec2b36ad0e61d227b42d292835020ff754fb7ba9  nokogiri-1.19.0-aarch64-linux-musl.gem
572a259026b2c8b7c161fdb6469fa2d0edd2b61cd599db4bbda93289abefbfe5  nokogiri-1.19.0-arm-linux-gnu.gem
23ed90922f1a38aed555d3de4d058e90850c731c5b756d191b3dc8055948e73c  nokogiri-1.19.0-arm-linux-musl.gem
0811dfd936d5f6dd3f6d32ef790568bf29b2b7bead9ba68866847b33c9cf5810  nokogiri-1.19.0-arm64-darwin.gem
5f3a70e252be641d8a4099f7fb4cc25c81c632cb594eec9b4b8f2ca8be4374f3  nokogiri-1.19.0-java.gem
05d7ed2d95731edc9bef2811522dc396df3e476ef0d9c76793a9fca81cab056b  nokogiri-1.19.0-x64-mingw-ucrt.gem
1dad56220b603a8edb9750cd95798bffa2b8dd9dd9aa47f664009ee5b43e3067  nokogiri-1.19.0-x86_64-darwin.gem
f482b95c713d60031d48c44ce14562f8d2ce31e3a9e8dd0ccb131e9e5a68b58c  nokogiri-1.19.0-x86_64-linux-gnu.gem
1c4ca6b381622420073ce6043443af1d321e8ed93cc18b08e2666e5bd02ffae4  nokogiri-1.19.0-x86_64-linux-musl.gem
e304d21865f62518e04f2bf59f93bd3a97ca7b07e7f03952946d8e1c05f45695  nokogiri-1.19.0.gem

... (truncated)

Changelog

Sourced from nokogiri's changelog.

v1.19.1 / 2026-02-16

Security

• [CRuby] Address unchecked return value from xmlC14NExecute which was a contributing cause to ruby-saml GHSA-x4h9-gwv3-r4m4. See GHSA-wx95-c6cv-8532 for more information.

v1.19.0 / 2025-12-28

Ruby

This release is focused on changes to Ruby version support, and is otherwise functionally identical to v1.18.10.

• Introduce native gem support for Ruby 4.0. #3590
• End support for Ruby 3.1, for which upstream support ended 2025-03-26.
• End support for JRuby 9.4 (which targets Ruby 3.1 compatibility).

v1.18.10 / 2025-09-15

Dependencies

• [CRuby] Vendored libxml2 is updated to v2.13.9. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.
• [CRuby] [Windows and MacOS] Vendored libiconv is updated to v1.18

v1.18.9 / 2025-07-20

Security

• [CRuby] Applied upstream libxml2 patches to address CVE-2025-6021, CVE-2025-6170, CVE-2025-49794, CVE-2025-49795, and CVE-2025-49796. See GHSA-353f-x4gh-cqq8 for more information.

v1.18.8 / 2025-04-21

Security

• [CRuby] Vendored libxml2 is updated to v2.13.8 to address CVE-2025-32414 and CVE-2025-32415. See GHSA-5w6v-399v-w3cc for more information.

v1.18.7 / 2025-03-31

Dependencies

• [CRuby] Vendored libxml2 is updated to v2.13.7, which is a bugfix release.

v1.18.6 / 2025-03-24

Fixed

... (truncated)

Commits

• d913045 version bump to v1.19.1
• b81cb98 doc: update CHANGELOG for upcoming v1.19.1
• 8e66809 C14n raise on failure (#3600)
• 5b77f3d Raise RuntimeError when canonicalization fails
• edc5595 Thank sponsors in the README
• d4dc245 dep: update rdoc to v7
• d77bfb6 version bump to v1.19.0
• 1eb5c2c dev: convert scripts/test-gem-set to use mise
• 88a120f dep: Add native Ruby 4 support, drop Ruby 3.1 support (v1.19.x) (#3592)
• f8c8f74 Skip the parser compression test for Windows system libs
• Additional commits viewable in compare view

Updates tzinfo from 1.2.2 to 2.0.6

Release notes

Sourced from tzinfo's releases.

v2.0.6

• Eliminate Object#untaint deprecation warnings on JRuby 9.4.0.0. #145.

TZInfo v2.0.6 on RubyGems.org

v2.0.5

• Changed DateTime results to always use the proleptic Gregorian calendar. This affects DateTime results prior to 1582-10-15 and any arithmetic performed on the results that would produce a secondary result prior to 1582-10-15.
• Added support for eager loading all the time zone and country data by calling either TZInfo::DataSource#eager_load! or TZInfo.eager_load!. Compatible with Ruby On Rails' eager_load_namespaces. #129.
• Ignore the SECURITY file from Arch Linux's tzdata package. #134.

TZInfo v2.0.5 on RubyGems.org

v2.0.4

• Fixed an incorrect InvalidTimezoneIdentifier exception raised when loading a zoneinfo file that includes rules specifying an additional transition to the final defined offset (for example, Africa/Casablanca in version 2018e of the Time Zone Database). #123.

TZInfo v2.0.4 on RubyGems.org

v2.0.3

• Added support for handling "slim" format zoneinfo files that are produced by default by zic version 2020b and later. The POSIX-style TZ string is now used calculate DST transition times after the final defined transition in the file. #120.
• Fixed TimeWithOffset#getlocal returning a TimeWithOffset with the timezone_offset still assigned when called with an offset argument on JRuby 9.3.
• Rubinius is no longer supported.

TZInfo v2.0.3 on RubyGems.org

v2.0.2

• Fixed 'wrong number of arguments' errors when running on JRuby 9.0. #114.
• Fixed warnings when running on Ruby 2.8. #113.

TZInfo v2.0.2 on RubyGems.org

v2.0.1

• Fixed "SecurityError: Insecure operation - require" exceptions when loading data with recent Ruby releases in safe mode. #100.
• Fixed warnings when running on Ruby 2.7. #109.
• Added a TZInfo::Timezone#=~ method that performs a regex match on the time zone identifier. #99.
• Added a TZInfo::Country#=~ method that performs a regex match on the country code.

TZInfo v2.0.1 on RubyGems.org

v2.0.0

Added

• to_local and period_for instance methods have been added to TZInfo::Timezone. These are similar to utc_to_local and period_for_utc, but take the UTC offset of the given time into account.
• abbreviation, dst?, base_utc_offset and observed_utc_offset instance methods have been added to TZInfo::Timezone, returning the abbreviation, whether daylight savings time is in effect and the UTC offset of the time zone at a specified time.
• A TZInfo::Timestamp class has been added. It can be used with TZInfo::Timezone in place of a Time or DateTime.
• local_time, local_datetime and local_timestamp instance methods have been added to TZInfo::Timezone. These methods construct local Time, DateTime and TZInfo::Timestamp instances with the correct UTC offset and abbreviation for the time zone.
• Support for a (yet to be released) version 2 of tzinfo-data has been added, in addition to support for version 1. The new version will remove the (no longer needed) DateTime parameters from transition times, reduce memory consumption and improve the efficiency of loading timezone and country indexes.
• A TZInfo::VERSION constant has been added, indicating the TZInfo version number.

Changed

... (truncated)

Changelog

Sourced from tzinfo's changelog.

Version 2.0.6 - 28-Jan-2023

• Eliminate Object#untaint deprecation warnings on JRuby 9.4.0.0. #145.

Version 2.0.5 - 19-Jul-2022

• Changed DateTime results to always use the proleptic Gregorian calendar. This affects DateTime results prior to 1582-10-15 and any arithmetic performed on the results that would produce a secondary result prior to 1582-10-15.
• Added support for eager loading all the time zone and country data by calling either TZInfo::DataSource#eager_load! or TZInfo.eager_load!. Compatible with Ruby On Rails' eager_load_namespaces. #129.
• Ignore the SECURITY file from Arch Linux's tzdata package. #134.

Version 2.0.4 - 16-Dec-2020

• Fixed an incorrect InvalidTimezoneIdentifier exception raised when loading a zoneinfo file that includes rules specifying an additional transition to the final defined offset (for example, Africa/Casablanca in version 2018e of the Time Zone Database). #123.

Version 2.0.3 - 8-Nov-2020

• Added support for handling "slim" format zoneinfo files that are produced by default by zic version 2020b and later. The POSIX-style TZ string is now used calculate DST transition times after the final defined transition in the file. #120.
• Fixed TimeWithOffset#getlocal returning a TimeWithOffset with the timezone_offset still assigned when called with an offset argument on JRuby 9.3.
• Rubinius is no longer supported.

Version 2.0.2 - 2-Apr-2020

• Fixed 'wrong number of arguments' errors when running on JRuby 9.0. #114.
• Fixed warnings when running on Ruby 2.8. #113.

Version 2.0.1 - 24-Dec-2019

• Fixed "SecurityError: Insecure operation - require" exceptions when loading data with recent Ruby releases in safe mode. #100.
• Fixed warnings when running on Ruby 2.7. #109.
• Added a TZInfo::Timezone#=~ method that performs a regex match on the time zone identifier. #99.

... (truncated)

Commits

• d5893c9 Fix formatting.
• 5561942 Preparing v2.0.6.
• ec27c09 Add v1.2.11 from the 1.2 branch.
• d77da3f Update copyright years.
• eac33df Eliminate Object#untaint deprecation warnings on JRuby 9.4.0.0.
• 19f984c Add Ruby 3.2 and JRuby 9.4.
• e9fe818 Update the dependency on actions/checkout.
• f76bc7f Fix include issues with tests on Ruby 3.2.
• 8a781cf Revert "Workaround for 'Permission denied - NUL' errors with JRuby on Windows."
• d9b289e Preparing v2.0.5.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.