build(deps): bump the bundler group across 1 directory with 10 updates

[dependabot]

Bumps the bundler group with 5 updates in the /Library/Homebrew directory:

Package	From	To
yard	0.9.37	0.9.38
minitest	5.26.2	5.27.0
json_schemer	2.4.0	2.5.0
sorbet-static-and-runtime	0.6.12815	0.6.12845
tapioca	0.17.9	0.17.10

Updates yard from 0.9.37 to 0.9.38

Release notes

Sourced from yard's releases.

Release v0.9.38

• Add support for complex constant assignment (#1599)
• Add support for Data type structs (#1600)
• Support multi method duck type syntax in type explainer (#1631)
• Improve Ruby 3.5 compatibility (#1616)
• Update documentation for various type annotations (#1615)
• JavaScript frontend updates (resizer, JS bugs, reduce console verbosity) for default template
• Fix beginless/endless range errors (#1549, #1625)
• Fix path structure in Templates.md documentation (#1588)
• Fix signature handling in overload (#1590)
• Fix handling of **nil with named block (#1623)
• Fix directives in empty class bodies (#1624)
• Fix parsing of array within array syntax (#1604)
• Fix parsing of visibility keywords in front of class methods (#1632)

Changelog

Sourced from yard's changelog.

0.9.38 - December 5th, 2025

• Add support for complex constant assignment (#1599)
• Add support for Data type structs (#1600)
• Support multi method duck type syntax in type explainer (#1631)
• Improve Ruby 3.5 compatibility (#1616)
• Update documentation for various type annotations (#1615)
• JavaScript frontend updates (resizer, JS bugs, reduce console verbosity) for default template
• Fix beginless/endless range errors (#1549, #1625)
• Fix path structure in Templates.md documentation (#1588)
• Fix signature handling in overload (#1590)
• Fix handling of **nil with named block (#1623)
• Fix directives in empty class bodies (#1624)
• Fix parsing of array within array syntax (#1604)
• Fix parsing of visibility keywords in front of class methods (#1632)

Commits

• 34796c5 Update version / changelog
• e946455 Add support for duck types with multiple methods to TypesExplainer (#1631)
• 2aedf50 Respect Ruby semantics for bare visibility with singleton defs (#1632)
• c29c0cd Fix directives in empty class bodies (#1624)
• d4c6174 Handle **nil with named block without errors (#1623)
• 1a4f63d Fix unexpected empty source map stacks (#1625)
• c92f02a Fix frozen string literal mutation
• 63e7995 Respect Ruby semantics for bare visibility with singleton defs
• 3987200 Support duck types with multiple methods
• c6b0b16 Fix unexpected empty source map stacks
• Additional commits viewable in compare view

Updates minitest from 5.26.2 to 5.27.0

Changelog

Sourced from minitest's changelog.

=== 5.27.0 / 2025-12-11

• 1 major enhancement:

  • Adding post install message announcing the EOL for minitest 5!

• 2 minor enhancements:

  • Removed TestTask::Work#initialize since Queue can now initialize with an Enumerable! AMAZING!
  • Use Kernel#warn uplevel argument for nicer warnings. (byroot)

• 5 bug fixes:

  • Cleaned up option aliasing a tad.
  • Removed obsolete conditional for prerecord
  • Removed obsolete guards around Warning.
  • Removed obsolete version guards for pattern matching assertions.
  • Switched all internal requires to require_relative.

Commits

• 819e9b5 Branching minitest to version 5.27.0
• e9a9fc3 ! Adding post install message announcing the EOL for minitest 5.
• 4525c88 REVERTED: Removed obsolete conditional for prerecord. For now... Wait for MT6.
• 6b3fb6c - Removed obsolete guards around Warning.
• 72b90c3 - Removed obsolete version guards for pattern matching assertions.
• a8143f2 - Removed obsolete conditional for prerecord
• f6fffa1 + Use Kernel#warn uplevel argument for nicer warnings. (byroot)
• a0e9289 Fixed reporter test shape variation warning. (havenwood)
• 15394fc + Removed TestTask::Work#initialize since Queue can now initialize with an En...
• 8a4d7ee - Switched all internal requires to require_relative.
• Additional commits viewable in compare view

Updates json_schemer from 2.4.0 to 2.5.0

Changelog

Sourced from json_schemer's changelog.

2.5.0 - 2025-12-08

Bug Fixes

• Apply discriminator before unevaluated keywords: davishmcclurg/json_schemer#220
• Disallow trailing dots in hostname formats: davishmcclurg/json_schemer#226
• Limit overall size in hostname formats: davishmcclurg/json_schemer#226
• Support extended set of separators in hostname formats: davishmcclurg/json_schemer#226

Features

• More interpolation variables for custom error messages: davishmcclurg/json_schemer#211

Commits

• 7f1b816 Merge pull request #226 from davishmcclurg/2.5.0
• 847b2d3 2.5.0
• 70af1d4 Update fixtures for json-schema-test-suite pull
• ef7e9fb Support all RFC 3490 label separators
• 3e0157f Limit full hostname size
• 88a8771 Disallow trailing dot in hostname format
• 572d413 Update hostname character classes
• 0aa5b7c Temporarily(?) add openssl as dev dependency
• a86a975 Merge commit 'fcba99761dcab691a56fc4bba1e23a72df9f7c82'
• fcba997 Squashed 'JSON-Schema-Test-Suite/' changes from 48461fc3..d69537ac
• Additional commits viewable in compare view

Updates sorbet-static-and-runtime from 0.6.12815 to 0.6.12845

Release notes

Sourced from sorbet-static-and-runtime's releases.

sorbet 0.6.12844.20251211165921-6f1095091

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12844', :group => :development
gem 'sorbet-runtime', '0.6.12844'

sorbet 0.6.12843.20251211151720-b7a517c80

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12843', :group => :development
gem 'sorbet-runtime', '0.6.12843'

sorbet 0.6.12842.20251211150809-c00a614d9

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12842', :group => :development
gem 'sorbet-runtime', '0.6.12842'

sorbet 0.6.12838.20251210171322-3c55af646

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12838', :group => :development
gem 'sorbet-runtime', '0.6.12838'

sorbet 0.6.12837.20251210160434-36e0a7097

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12837', :group => :development
gem 'sorbet-runtime', '0.6.12837'

sorbet 0.6.12836.20251210153612-171707271

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12836', :group => :development
gem 'sorbet-runtime', '0.6.12836'

sorbet 0.6.12835.20251210151200-0319404a5

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12835', :group => :development
gem 'sorbet-runtime', '0.6.12835'

sorbet 0.6.12834.20251210144948-a5c1796e0

... (truncated)

Commits

• See full diff in compare view

Updates tapioca from 0.17.9 to 0.17.10

Release notes

Sourced from tapioca's releases.

v0.17.10

What's Changed

🐛 Bug Fixes

• Stop generating RBI for insert/upsert related methods by @​st0012 in Shopify/tapioca#2446

🛠 Other Changes

• Add optional CI step to run Sorbet with Prism by @​thomasmarshall in Shopify/tapioca#2427

New Contributors

• @​thomasmarshall made their first contribution in Shopify/tapioca#2427

Full Changelog: Shopify/tapioca@v0.17.9...v0.17.10

Commits

• 0e35b26 Bump version to 0.17.10
• 841044d Merge pull request #2446 from Shopify/stop-generating-rbi-for-insert-methods
• 2bd8e5a Stop generating RBI for insert/upsert related methods
• 1d0e62c Merge pull request #2440 from Shopify/dependabot/bundler/minor-and-patch-6873...
• d11443d Update gem rbis for connection_pool and sidekiq
• f88f645 Bump the minor-and-patch group with 2 updates
• cbf46a3 Merge pull request #2428 from Shopify/dependabot/github_actions/ruby/setup-ru...
• bafc911 Merge pull request #2438 from Shopify/Alex/drop-T-prefix-in-RBS
• 6b4fa23 Drop T:: prefixes from RBS comments
• fcabf6b Bump ruby/setup-ruby from 1.267.0 to 1.268.0
• Additional commits viewable in compare view

Updates sorbet-runtime from 0.6.12815 to 0.6.12845

Release notes

Sourced from sorbet-runtime's releases.

sorbet 0.6.12844.20251211165921-6f1095091

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12844', :group => :development
gem 'sorbet-runtime', '0.6.12844'

sorbet 0.6.12843.20251211151720-b7a517c80

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12843', :group => :development
gem 'sorbet-runtime', '0.6.12843'

sorbet 0.6.12842.20251211150809-c00a614d9

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12842', :group => :development
gem 'sorbet-runtime', '0.6.12842'

sorbet 0.6.12838.20251210171322-3c55af646

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12838', :group => :development
gem 'sorbet-runtime', '0.6.12838'

sorbet 0.6.12837.20251210160434-36e0a7097

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12837', :group => :development
gem 'sorbet-runtime', '0.6.12837'

sorbet 0.6.12836.20251210153612-171707271

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12836', :group => :development
gem 'sorbet-runtime', '0.6.12836'

sorbet 0.6.12835.20251210151200-0319404a5

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12835', :group => :development
gem 'sorbet-runtime', '0.6.12835'

sorbet 0.6.12834.20251210144948-a5c1796e0

... (truncated)

Commits

• See full diff in compare view

Updates bigdecimal from 3.3.1 to 4.0.1

Release notes

Sourced from bigdecimal's releases.

v4.0.1

What's Changed

• Exclude dependabot updates from release note by @​hsbt in ruby/bigdecimal#474
• Remove unused variable (and add test for it) by @​tompng in ruby/bigdecimal#475
• Remove "Which version should you select" section by @​tompng in ruby/bigdecimal#476
• Bump version to v4.0.1 by @​tompng in ruby/bigdecimal#477

Full Changelog: ruby/bigdecimal@v4.0.0...v4.0.1

v4.0.0

What's Changed

• Fix x**y, x.power(y, 0) and x.sqrt(0) calculates huge digits if precision limit is huge by @​tompng in ruby/bigdecimal#445
• Implement major math functions by @​tompng in ruby/bigdecimal#336
• Fix fast-path of frac and _decimal_shift affected by BigDecimal.limit by @​tompng in ruby/bigdecimal#447
• Update the latest versions of actions by @​hsbt in ruby/bigdecimal#449
• Add missing bigmath precision test, add missing indent by @​tompng in ruby/bigdecimal#450
• Make BigMath.exp and log also a module_method by @​tompng in ruby/bigdecimal#452
• Fix incorrect exception when exponent is fractional for Infinity base by @​troy-dunamu in ruby/bigdecimal#453
• Bump step-security/harden-runner from 2.13.1 to 2.13.2 by @​dependabot[bot] in ruby/bigdecimal#454
• Don't use assert_separatly if not needed by @​tompng in ruby/bigdecimal#455
• Bump actions/checkout from 5.0.0 to 6.0.0 by @​dependabot[bot] in ruby/bigdecimal#456
• Bump actions/checkout from 5.0.1 to 6.0.0 by @​dependabot[bot] in ruby/bigdecimal#457
• Add missing BigMath test for jruby by @​tompng in ruby/bigdecimal#459
• Change remainder/modulo/divmod test of +0/-0 type tolerant by @​tompng in ruby/bigdecimal#460
• Cast divmod quotient to int by @​mrzasa in ruby/bigdecimal#312
• Bump actions/checkout from 6.0.0 to 6.0.1 by @​dependabot[bot] in ruby/bigdecimal#462
• Bump step-security/harden-runner from 2.13.2 to 2.13.3 by @​dependabot[bot] in ruby/bigdecimal#461
• Implement BigMath.erf(x, prec) and BigMath.erfc(x, prec) by @​tompng in ruby/bigdecimal#357
• Implement BigMath.gamma and BigMath.lgamma by @​tompng in ruby/bigdecimal#451
• Fix typos + improve copy/paste in readme by @​tas50 in ruby/bigdecimal#463
• Fix inaccurate calculation (last digit) and add a workaround for add/sub hang bug by @​tompng in ruby/bigdecimal#465
• Fix lgamma precision around 1 and 2 by @​tompng in ruby/bigdecimal#466
• Fix lgamma precision when gamma(negative_x).abs nearly equals 1 by @​tompng in ruby/bigdecimal#467
• Implement BigMath.frexp and ldexp with exponent of 10 by @​tompng in ruby/bigdecimal#448
• Bump step-security/harden-runner from 2.13.3 to 2.14.0 by @​dependabot[bot] in ruby/bigdecimal#468
• Better rounding of BigMath.atan(nearly_one, prec) by @​tompng in ruby/bigdecimal#469
• Remove deprecated method BigDecimal#precs by @​tompng in ruby/bigdecimal#470
• Deprecate ludcmp, jacobian and newton by @​tompng in ruby/bigdecimal#471
• Bump version to v4.0.0 by @​tompng in ruby/bigdecimal#472

New Contributors

• @​troy-dunamu made their first contribution in ruby/bigdecimal#453
• @​tas50 made their first contribution in ruby/bigdecimal#463

Full Changelog: ruby/bigdecimal@v3.3.1...v4.0.0

Changelog

Sourced from bigdecimal's changelog.

4.0.1

• Fix warning GH-475

  @​tompng

4.0.0

• BigDecimal#divmod return value changed to [Integer, BigDecimal] GH-312

  @​mrzasa

• Remove BigDecimal#precs GH-470

  @​tompng

• BigMath now supports all functions defined in Math module GH-336 GH-357 GH-451 GH-448

  @​tompng

• Fix incorrect exception when exponent is fractional for Infinity base GH-453

  @​troy-dunamu

• Deprecate bigdecimal/jacobian, bigdecimal/ludcmp and bigdecimal/newton GH-471

  @​tompng

Commits

• 6d01c36 Bump version to v4.0.1 (#477)
• 4914cc3 Remove "Which version should you select" section (#476)
• 4120325 Remove unused variable (and add test for it) (#475)
• f0bf63f Merge pull request #474 from ruby/exclude-dependabot-update
• d93ef2b Exclude dependabot updates from release note
• d9914c9 Bump version to v4.0.0 (#472)
• 45d203a Deprecate ludcmp, jacobian and newton (#471)
• 8146336 Remove deprecated method BigDecimal#precs (#470)
• b7e93bf Better rounding of BigMath.atan(nearly_one, prec) (#469)
• cef76eb Merge pull request #468 from ruby/dependabot/github_actions/step-security/har...
• Additional commits viewable in compare view

Updates prism from 1.6.0 to 1.7.0

Release notes

Sourced from prism's releases.

v1.7.0

Added

• Support 4.1 as a version option.
• Add equal_loc to CallNode.
• Add len()/is_empty() to ConstantList and NodeList in the Rust API.

Changed

• Rename version 3.5 to version 4.0.
• Fix compiling the gem from source on Windows.
• Fix parsing of unary method calls like 42.~@.
• Reject def f a, (b) = 1.
• Reject endless method as a block parameter default.
• Reject variable capture in alternative pattern.
• Many fixes in regards to memory safety, found through fuzzing.
• Many fixes to better handle invalid syntax, also found through fuzzing.
• Fix the ruby version used by the ripper translator.
• Fix ruby_parser translation comment processing.

Changelog

Sourced from prism's changelog.

[1.7.0] - 2025-12-18

Added

• Support 4.1 as a version option.
• Add equal_loc to CallNode.
• Add len()/is_empty() to ConstantList and NodeList in the Rust API.

Changed

• Rename version 3.5 to version 4.0.
• Fix compiling the gem from source on Windows.
• Fix parsing of unary method calls like 42.~@.
• Reject def f a, (b) = 1.
• Reject endless method as a block parameter default.
• Reject variable capture in alternative pattern.
• Many fixes in regards to memory safety, found through fuzzing.
• Many fixes to better handle invalid syntax, also found through fuzzing.
• Fix the ruby version used by the ripper translator.
• Fix ruby_parser translation comment processing.

Commits

• df55403 Merge pull request #3819 from ruby/bump-version
• 21c499d Bump to v1.7.0
• 0fa754e Merge pull request #3743 from Earlopain/bare-hash-command-call-v2
• 48b403e Reject p(p a, &block => value) and similar
• 61e45d5 Merge pull request #3817 from Earlopain/target-4.1
• 849f726 Merge pull request #3813 from ruby/dependabot/maven/java-wasm/java-deps-6679a...
• 095115f Merge pull request #3814 from ruby/dependabot/github_actions/action-deps-35b2...
• 3b0b771 Merge pull request #3815 from ruby/dependabot/bundler/gemfiles/2.7/ruby-deps-...
• 66e99e0 Merge pull request #3816 from eregon/fix-location_test
• 138db9c Add Ruby 4.1 as a version specifier
• Additional commits viewable in compare view

Updates sorbet from 0.6.12815 to 0.6.12845

Release notes

Sourced from sorbet's releases.

sorbet 0.6.12844.20251211165921-6f1095091

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12844', :group => :development
gem 'sorbet-runtime', '0.6.12844'

sorbet 0.6.12843.20251211151720-b7a517c80

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12843', :group => :development
gem 'sorbet-runtime', '0.6.12843'

sorbet 0.6.12842.20251211150809-c00a614d9

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12842', :group => :development
gem 'sorbet-runtime', '0.6.12842'

sorbet 0.6.12838.20251210171322-3c55af646

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12838', :group => :development
gem 'sorbet-runtime', '0.6.12838'

sorbet 0.6.12837.20251210160434-36e0a7097

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12837', :group => :development
gem 'sorbet-runtime', '0.6.12837'

sorbet 0.6.12836.20251210153612-171707271

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12836', :group => :development
gem 'sorbet-runtime', '0.6.12836'

sorbet 0.6.12835.20251210151200-0319404a5

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12835', :group => :development
gem 'sorbet-runtime', '0.6.12835'

sorbet 0.6.12834.20251210144948-a5c1796e0

... (truncated)

Commits

• See full diff in compare view

Updates sorbet-static from 0.6.12815 to 0.6.12845

Release notes

Sourced from sorbet-static's releases.

sorbet 0.6.12844.20251211165921-6f1095091

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12844', :group => :development
gem 'sorbet-runtime', '0.6.12844'

sorbet 0.6.12843.20251211151720-b7a517c80

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12843', :group => :development
gem 'sorbet-runtime', '0.6.12843'

sorbet 0.6.12842.20251211150809-c00a614d9

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12842', :group => :development
gem 'sorbet-runtime', '0.6.12842'

sorbet 0.6.12838.20251210171322-3c55af646

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12838', :group => :development
gem 'sorbet-runtime', '0.6.12838'

sorbet 0.6.12837.20251210160434-36e0a7097

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12837', :group => :development
gem 'sorbet-runtime', '0.6.12837'

sorbet 0.6.12836.20251210153612-171707271

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12836', :group => :development
gem 'sorbet-runtime', '0.6.12836'

sorbet 0.6.12835.20251210151200-0319404a5

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.12835', :group => :development
gem 'sorbet-runtime', '0.6.12835'

sorbet 0.6.12834.20251210144948-a5c1796e0

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions