Skip to content

chore(deps): bump the ruby-deps group with 2 updates#2535

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/bundler/ruby-deps-e635d29ad1
Open

chore(deps): bump the ruby-deps group with 2 updates#2535
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/bundler/ruby-deps-e635d29ad1

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 23, 2026

Bumps the ruby-deps group with 2 updates: pagy and icalendar.

Updates pagy from 43.4.1 to 43.4.2

Release notes

Sourced from pagy's releases.

Version 43.4.2

Changes in 43.4.2

  • Fix edge-case for queries with multiple orderings on same column (#888)

CHANGELOG

Version 43

We needed a leap version to unequivocally signal that it's not just a major version: it's a complete redesign of the legacy code at all levels, usage and API included.

Why 43? Because it's exactly one step beyond "The answer to the ultimate question of life, the Universe, and everything." 😉

Improvements

This version introduces several enhancements, such as new :countish and :keynav_js paginators and improved automation and configuration processes, reducing setup requirements by 99%. The update also includes a simpler API and new interactive development tools, making it a comprehensive upgrade from previous versions.

  • New :countish Paginator
    • Faster than OFFSET and supporting the full UI
  • New Keynav Pagination
    • The pagy-exclusive technique using the fastest keyset pagination alongside all frontend helpers.
  • New interactive dev-tools
    • New PagyWand to integrate the pagy CSS with your app themes.
    • New Pagy AI available right inside your own app.
  • Intelligent automation
  • Simpler API
    • You solely need the pagy method and the @​pagy instance to paginate any collection and use any navigation tag and helper.
    • Methods are autoloaded only if used, and consume no memory otherwise.
    • Methods have narrower scopes and can be overridden without deep knowledge.
  • New documentation
    • Very concise, straightforward, and easy to navigate and understand.

Upgrade to 43

See the Upgrade Guide

Changelog

Sourced from pagy's changelog.

Version 43.4.2

  • Fix edge-case for queries with multiple orderings on same column (#888)
Commits
  • b8a23cb Merge branch 'dev'
  • 46413d1 Version 43.4.2
  • 8f1787b Fix and improve docs:
  • 18369ce 💎 Fix edge-case for queries with multiple orderings on same column (#888)
  • 21eb2c0 Fix edge-case for queries with multiple orderings on same column (#888)
  • See full diff in compare view

Updates icalendar from 2.12.1 to 2.12.2

Changelog

Sourced from icalendar's changelog.

2.12.2 - 2026-03-21

  • Fix a potential property injection issue through escaping control characters in URI values - Wes Ring
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the ruby-deps group with 2 updates
5c70b62 
Bumps the ruby-deps group with 2 updates: [pagy](https://github.com/ddnexus/pagy) and [icalendar](https://github.com/icalendar/icalendar).


Updates `pagy` from 43.4.1 to 43.4.2
- [Release notes](https://github.com/ddnexus/pagy/releases)
- [Changelog](https://github.com/ddnexus/pagy/blob/master/CHANGELOG.md)
- [Commits](ddnexus/pagy@43.4.1...43.4.2)

Updates `icalendar` from 2.12.1 to 2.12.2
- [Changelog](https://github.com/icalendar/icalendar/blob/main/CHANGELOG.md)
- [Commits](icalendar/icalendar@v2.12.1...v2.12.2)

---
updated-dependencies:
- dependency-name: pagy
  dependency-version: 43.4.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ruby-deps
- dependency-name: icalendar
  dependency-version: 2.12.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ruby-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies ruby Pull requests that update Ruby code labels Mar 23, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies ruby Pull requests that update Ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants