Bump the "all" group with 2 updates across multiple ecosystems

[dependabot]

Bumps the all group with 1 update: docker/login-action.

Updates docker/login-action from 4.0.0 to 4.1.0

Release notes

Sourced from docker/login-action's releases.

v4.1.0

• Fix scoped Docker Hub cleanup path when registry is omitted by @​crazy-max in docker/login-action#945
• Bump @​aws-sdk/client-ecr and @​aws-sdk/client-ecr-public to 3.1020.0 in docker/login-action#930
• Bump @​docker/actions-toolkit from 0.77.0 to 0.86.0 in docker/login-action#932 docker/login-action#936
• Bump brace-expansion from 1.1.12 to 1.1.13 in docker/login-action#952
• Bump fast-xml-parser from 5.3.4 to 5.3.6 in docker/login-action#942
• Bump flatted from 3.3.3 to 3.4.2 in docker/login-action#944
• Bump glob from 10.3.12 to 10.5.0 in docker/login-action#940
• Bump handlebars from 4.7.8 to 4.7.9 in docker/login-action#949
• Bump http-proxy-agent and https-proxy-agent to 8.0.0 in docker/login-action#937
• Bump lodash from 4.17.23 to 4.18.1 in docker/login-action#958
• Bump minimatch from 3.1.2 to 3.1.5 in docker/login-action#941
• Bump picomatch from 4.0.3 to 4.0.4 in docker/login-action#948
• Bump undici from 6.23.0 to 6.24.1 in docker/login-action#938

Full Changelog: docker/login-action@v4.0.0...v4.1.0

Commits

• 4907a6d Merge pull request #930 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...
• 1e233e6 chore: update generated content
• 6c24ead build(deps): bump the aws-sdk-dependencies group with 2 updates
• ee034d7 Merge pull request #958 from docker/dependabot/npm_and_yarn/lodash-4.18.1
• 1527209 Merge pull request #937 from docker/dependabot/npm_and_yarn/proxy-agent-depen...
• d39362a build(deps): bump lodash from 4.17.23 to 4.18.1
• a6f092b chore: update generated content
• 60953f0 build(deps): bump the proxy-agent-dependencies group with 2 updates
• 62c6885 Merge pull request #936 from docker/dependabot/npm_and_yarn/docker/actions-to...
• 102c0e6 chore: update generated content
• Additional commits viewable in compare view

Bumps the all group with 10 updates:

Package	From	To
sorbet-runtime	0.6.13096	0.6.13117
rubocop	1.86.0	1.86.1
sorbet	0.6.13096	0.6.13117
sorbet-static-and-runtime	0.6.13096	0.6.13117
tapioca	0.18.0	0.19.0
parallel	1.28.0	2.0.1
rack-session	2.1.1	2.1.2
regexp_parser	2.11.3	2.12.0
sorbet-static	0.6.13096	0.6.13117
tailwindcss-ruby	4.2.1	4.2.2

Updates sorbet-runtime from 0.6.13096 to 0.6.13117

Release notes

Sourced from sorbet-runtime's releases.

sorbet 0.6.13116.20260410143935-4b2ebed65

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13116', :group => :development
gem 'sorbet-runtime', '0.6.13116'

sorbet 0.6.13115.20260410130632-b4708d351

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13115', :group => :development
gem 'sorbet-runtime', '0.6.13115'

sorbet 0.6.13114.20260409203658-68f0346dc

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13114', :group => :development
gem 'sorbet-runtime', '0.6.13114'

sorbet 0.6.13113.20260409160020-7c1066742

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13113', :group => :development
gem 'sorbet-runtime', '0.6.13113'

sorbet 0.6.13112.20260409111237-1e70d7ace

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13112', :group => :development
gem 'sorbet-runtime', '0.6.13112'

sorbet 0.6.13111.20260409122002-5094c749b

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13111', :group => :development
gem 'sorbet-runtime', '0.6.13111'

sorbet 0.6.13110.20260408172834-794a2c114

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13110', :group => :development
gem 'sorbet-runtime', '0.6.13110'

sorbet 0.6.13109.20260408170404-2179fc0b6

... (truncated)

Commits

• See full diff in compare view

Updates rubocop from 1.86.0 to 1.86.1

Release notes

Sourced from rubocop's releases.

RuboCop v1.86.1

Bug fixes

• #11051: Fix Style/AccessModifierDeclarations inline autocorrect dropping comments between the access modifier and the following method definition. (@​dduugg)
• #14665: Cache plugin integration in CopHelper to avoid repeated loading. (@​55728)
• #15091: Fix Lint/DuplicateMethods false positives for anonymous classes in constant assignments and method return values. (@​eugeneius)
• #15055: Fix Lint/DuplicateMethods false positives with anonymous classes inside blocks (e.g. RSpec let, describe). (@​ShkumbinDelija)
• #15035: Exclude included_modules from Style/ModuleMemberExistenceCheck. (@​koic)
• #15087: Fix false positive for Style/RedundantLineContinuation when using interpolated string literals. (@​koic)
• #14361: Fix false positive in file_to_include? when a relative Include pattern matches a parent directory name in the absolute file path. (@​jonas054)
• #15090: Fix false positives for Layout/EmptyLineAfterGuardClause when consecutive guard clauses use and return. (@​eugeneius)
• #15070: Fix false positive for Lint/RedundantSafeNavigation when chained safe navigation is used in a conditional expression with InferNonNilReceiver enabled. (@​koic)
• #15074: Fix false positives in Style/RedundantParentheses when using parentheses around an endless range in assignment. (@​koic)
• #15048: Fix issue where the url_for is missing for Cops without instance methods. (@​Fryguy)
• #15051: Fix Style/RedundantParentheses handling of beginless ranges. (@​oggy)
• #14980: Fix Lint/Syntax zero-length diagnostic range for syntax errors at EOF. (@​55728)
• #15084: Handle heredocs with methods calls correctly when fixing guard clauses. (@​G-Rath)
• #11398: Fix incorrect Include path adjustment when local config overrides an inherited Include. (@​jonas054)
• #15092: Fix Layout/EndAlignment cop error on an empty begin. (@​viralpraxis)
• #15059: Fix an error in Layout/LineLength when SplitStrings option is enabled and __FILE__ is used. (@​jeromedalbert)
• #5876: Fix Lint/UnusedMethodArgument false positive when block argument is used via yield. (@​dduugg)
• #15093: Return tool execution errors instead of protocol errors in MCP server. (@​koic)

Changes

• #15005: Make Style/OneClassPerFile exclude spec/**/* and test/**/* by default. (@​koic)
• #15081: Relax parallel dependency to >= 1.10. (@​koic)
• #15063: Disable Style/RedundantStructKeywordInit cop by default. (@​koic)

Changelog

Sourced from rubocop's changelog.

1.86.1 (2026-04-09)

Bug fixes

• #11051: Fix Style/AccessModifierDeclarations inline autocorrect dropping comments between the access modifier and the following method definition. ([@​dduugg][])
• #14665: Cache plugin integration in CopHelper to avoid repeated loading. ([@​55728][])
• #15091: Fix Lint/DuplicateMethods false positives for anonymous classes in constant assignments and method return values. ([@​eugeneius][])
• #15055: Fix Lint/DuplicateMethods false positives with anonymous classes inside blocks (e.g. RSpec let, describe). ([@​ShkumbinDelija][])
• #15035: Exclude included_modules from Style/ModuleMemberExistenceCheck. ([@​koic][])
• #15087: Fix false positive for Style/RedundantLineContinuation when using interpolated string literals. ([@​koic][])
• #14361: Fix false positive in file_to_include? when a relative Include pattern matches a parent directory name in the absolute file path. ([@​jonas054][])
• #15090: Fix false positives for Layout/EmptyLineAfterGuardClause when consecutive guard clauses use and return. ([@​eugeneius][])
• #15070: Fix false positive for Lint/RedundantSafeNavigation when chained safe navigation is used in a conditional expression with InferNonNilReceiver enabled. ([@​koic][])
• #15074: Fix false positives in Style/RedundantParentheses when using parentheses around an endless range in assignment. ([@​koic][])
• #15048: Fix issue where the url_for is missing for Cops without instance methods. ([@​Fryguy][])
• #15051: Fix Style/RedundantParentheses handling of beginless ranges. ([@​oggy][])
• #14980: Fix Lint/Syntax zero-length diagnostic range for syntax errors at EOF. ([@​55728][])
• #15084: Handle heredocs with methods calls correctly when fixing guard clauses. ([@​G-Rath][])
• #11398: Fix incorrect Include path adjustment when local config overrides an inherited Include. ([@​jonas054][])
• #15092: Fix Layout/EndAlignment cop error on an empty begin. ([@​viralpraxis][])
• #15059: Fix an error in Layout/LineLength when SplitStrings option is enabled and __FILE__ is used. ([@​jeromedalbert][])
• #5876: Fix Lint/UnusedMethodArgument false positive when block argument is used via yield. ([@​dduugg][])
• #15093: Return tool execution errors instead of protocol errors in MCP server. ([@​koic][])

Changes

• #15005: Make Style/OneClassPerFile exclude spec/**/* and test/**/* by default. ([@​koic][])
• #15081: Relax parallel dependency to >= 1.10. ([@​koic][])
• #15063: Disable Style/RedundantStructKeywordInit cop by default. ([@​koic][])

Commits

• af80266 Cut 1.86.1
• eb504ce Update Changelog
• 9c8fe2c Merge pull request #15085 from G-Rath/fix-style-guard
• 11d796a Merge pull request #15093 from koic/fix_return_tool_execution_errors_instead_...
• 4450067 Return tool execution errors instead of protocol errors in MCP server
• ff64180 Merge pull request #15092 from viralpraxis/fix-an-error-for-layout-end-alignm...
• 11e04c0 Merge pull request #15091 from eugeneius/duplicate_methods_anonymous_classes
• b8deea4 Merge pull request #15090 from eugeneius/guard_clause_and_return
• e130020 Fix Layout/EndAlignment cop error on an empty begin
• 4808594 Fix DuplicateMethods for anonymous classes in constant assignments and methods
• Additional commits viewable in compare view

Updates sorbet from 0.6.13096 to 0.6.13117

Release notes

Sourced from sorbet's releases.

sorbet 0.6.13116.20260410143935-4b2ebed65

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13116', :group => :development
gem 'sorbet-runtime', '0.6.13116'

sorbet 0.6.13115.20260410130632-b4708d351

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13115', :group => :development
gem 'sorbet-runtime', '0.6.13115'

sorbet 0.6.13114.20260409203658-68f0346dc

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13114', :group => :development
gem 'sorbet-runtime', '0.6.13114'

sorbet 0.6.13113.20260409160020-7c1066742

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13113', :group => :development
gem 'sorbet-runtime', '0.6.13113'

sorbet 0.6.13112.20260409111237-1e70d7ace

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13112', :group => :development
gem 'sorbet-runtime', '0.6.13112'

sorbet 0.6.13111.20260409122002-5094c749b

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13111', :group => :development
gem 'sorbet-runtime', '0.6.13111'

sorbet 0.6.13110.20260408172834-794a2c114

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13110', :group => :development
gem 'sorbet-runtime', '0.6.13110'

sorbet 0.6.13109.20260408170404-2179fc0b6

... (truncated)

Commits

• See full diff in compare view

Updates sorbet-static-and-runtime from 0.6.13096 to 0.6.13117

Release notes

Sourced from sorbet-static-and-runtime's releases.

sorbet 0.6.13116.20260410143935-4b2ebed65

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13116', :group => :development
gem 'sorbet-runtime', '0.6.13116'

sorbet 0.6.13115.20260410130632-b4708d351

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13115', :group => :development
gem 'sorbet-runtime', '0.6.13115'

sorbet 0.6.13114.20260409203658-68f0346dc

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13114', :group => :development
gem 'sorbet-runtime', '0.6.13114'

sorbet 0.6.13113.20260409160020-7c1066742

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13113', :group => :development
gem 'sorbet-runtime', '0.6.13113'

sorbet 0.6.13112.20260409111237-1e70d7ace

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13112', :group => :development
gem 'sorbet-runtime', '0.6.13112'

sorbet 0.6.13111.20260409122002-5094c749b

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13111', :group => :development
gem 'sorbet-runtime', '0.6.13111'

sorbet 0.6.13110.20260408172834-794a2c114

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13110', :group => :development
gem 'sorbet-runtime', '0.6.13110'

sorbet 0.6.13109.20260408170404-2179fc0b6

... (truncated)

Commits

• See full diff in compare view

Updates tapioca from 0.18.0 to 0.19.0

Release notes

Sourced from tapioca's releases.

v0.19.0

What's Changed

🎉 This version of Tapioca switches from YARD to Rubydex for documentation which makes gem RBI compilation up to 10x faster and require 4x less memory.

If you have been using --no-doc because the default was too slow, try removing it.

🚧 Breaking Changes

• Use Rubydex to document symbols instead of YARD by @​Morriar in Shopify/tapioca#2524

🐛 Bug Fixes

• Constants defined in C extensions might be attributed other the gems by @​paracycle in Shopify/tapioca#2555
• Include type_parameters declarations in signatures by @​dejmedus in Shopify/tapioca#2550
• AASM events yields block on successful state transition by @​bdewater-thatch in Shopify/tapioca#2560

New Contributors

• @​dejmedus made their first contribution in Shopify/tapioca#2550

Full Changelog: Shopify/tapioca@v0.18.0...v0.19.0

Commits

• 64f98c1 Merge pull request #2562 from Shopify/dependabot/bundler/minor-and-patch-0e16...
• 50ba584 Merge pull request #2563 from Shopify/dependabot/bundler/rubydex-0.1.0.beta11
• e386a67 Merge pull request #2564 from Shopify/dependabot/bundler/rails-8.1.3
• fcbe0bc tapioca gem
• d02755f tapioca gem
• efa6b09 tapioca gem
• cf39bf2 Merge pull request #2561 from Shopify/dependabot/github_actions/ruby/setup-ru...
• 6828ee3 Bump rails from 8.1.2.1 to 8.1.3
• 96b0f5c Bump rubydex from 0.1.0.beta10 to 0.1.0.beta11
• 1e11498 Bump the minor-and-patch group with 3 updates
• Additional commits viewable in compare view

Updates parallel from 1.28.0 to 2.0.1

Changelog

Sourced from parallel's changelog.

2.0.1

Added

• require mfa for gem release

2.0.0

Changed

• Require Ruby >= 3.3
• Add Ruby 4 Ractor support

Commits

• f9c570b v2.0.1
• 45c60ab Merge pull request #366 from tagliala/chore/opt-in-for-mfa-explicitly
• c80ad3c Opt-in for MFA requirement explicitly
• e2ad082 simplify changelog
• 0c27347 Merge pull request #364 from sferik/changelog
• b76538a Add CHANGELOG.md with full release history
• 090b054 v2.0.0
• 704149d Merge pull request #363 from grosser/grosser/rac4
• 6aee485 ruby 4 ractors
• 975c4a9 Merge pull request #362 from brandonzylstra/patch-1
• Additional commits viewable in compare view

Updates rack-session from 2.1.1 to 2.1.2

Release notes

Sourced from rack-session's releases.

v2.1.2

• CVE-2026-39324 Don't fall back to unencrypted coder if encryptors are present.

Changelog

Sourced from rack-session's changelog.

v2.1.2

• CVE-2026-39324 Don't fall back to unencrypted coder if encryptors are present.

Commits

• 504367b Bump patch version.
• f43638c Don't fall back to unencrypted coder if encryptors are present.
• dadcfe6 Bump actions/checkout from 4 to 5 (#54)
• 4eb9ea8 Add top level session spec to validate existing formats.
• 8f94577 Add rails to external tests.
• 38ea47d Allow the v2 encryptor to serialize messages with Marshal (#44)
• 43f2e3a Fix compatibility with older Rubies.
• 6a060b8 Support UTF-8 data when using the JSON serializer (#39)
• 8ce0146 Fix auth_tag retrieval on JRuby (#32)
• 7727185 Add AEAD encryption (#23)
• See full diff in compare view

Updates regexp_parser from 2.11.3 to 2.12.0

Changelog

Sourced from regexp_parser's changelog.

[2.12.0] - 2026-04-04 - Janosch Müller

Added

• support for new unicode properties of Ruby 4.0.0

Commits

• 55f48a1 Release v2.12.0
• 2c97fc7 Disable gouteur for mutant
• 2d2babd Add ruby 4 unicode properties
• See full diff in compare view

Updates sorbet-static from 0.6.13096 to 0.6.13117

Release notes

Sourced from sorbet-static's releases.

sorbet 0.6.13116.20260410143935-4b2ebed65

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13116', :group => :development
gem 'sorbet-runtime', '0.6.13116'

sorbet 0.6.13115.20260410130632-b4708d351

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13115', :group => :development
gem 'sorbet-runtime', '0.6.13115'

sorbet 0.6.13114.20260409203658-68f0346dc

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13114', :group => :development
gem 'sorbet-runtime', '0.6.13114'

sorbet 0.6.13113.20260409160020-7c1066742

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13113', :group => :development
gem 'sorbet-runtime', '0.6.13113'

sorbet 0.6.13112.20260409111237-1e70d7ace

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13112', :group => :development
gem 'sorbet-runtime', '0.6.13112'

sorbet 0.6.13111.20260409122002-5094c749b

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13111', :group => :development
gem 'sorbet-runtime', '0.6.13111'

sorbet 0.6.13110.20260408172834-794a2c114

To use Sorbet add this line to your Gemfile:

gem 'sorbet', '0.6.13110', :group => :development
gem 'sorbet-runtime', '0.6.13110'

sorbet 0.6.13109.20260408170404-2179fc0b6

... (truncated)

Commits

• See full diff in compare view

Updates tailwindcss-ruby from 4.2.1 to 4.2.2

Release notes

Sourced from tailwindcss-ruby's releases.

v4.2.2

• Update to Tailwind CSS v4.2.2

Changelog

Sourced from tailwindcss-ruby's changelog.

v4.2.2

• Update to Tailwind CSS v4.2.2

Commits

• 6c63eab dep: update to Tailwind CSS v4.2.2 (#108)
• 7e64ed4 build(deps): bump the github-actions group across 1 directory with 3 updates ...
• eff96fc build(deps): bump json from 2.19.1 to 2.19.2 (#107)
• f15e100 Merge pull request #99 from flavorjones/automate-shipping
• a1eb07c doc: update CONTRIBUTING.md release instructions
• 4ee202f ci: Add release workflow for publishing gems via trusted publishing
• 07d1325 ci: Add upstream workflow to auto-detect and PR new Tailwind CSS releases
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions