Skip to content

PC-135: Bump sprockets from 3.7.5 to 4.2.2#73

Merged
Maryna-Harasko merged 5 commits into
masterfrom
dependabot/bundler/sprockets-4.2.2
May 2, 2025
Merged

PC-135: Bump sprockets from 3.7.5 to 4.2.2#73
Maryna-Harasko merged 5 commits into
masterfrom
dependabot/bundler/sprockets-4.2.2

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 28, 2025
edited by PivtoranisV
Loading

PC-135 Powered by Pull Request Badge

Hello Team, please review PR

Description

  • Dependabot is proposing to upgrade the sprockets gem from 3.7.5 to 4.2.2. However, upgrading to v4 introduces conflicts with our current Sass setup, specifically with our asset pipeline, which relies on the older Sprockets architecture.
  • Pin sprockets to v3 in Gemfile and prevent updates
  • Configure the dependabot.yml file to ignore updates for the sprockets gem.

@dependabot
Bump sprockets from 3.7.5 to 4.2.2
e0b0819 
Bumps [sprockets](https://github.com/rails/sprockets) from 3.7.5 to 4.2.2.
- [Release notes](https://github.com/rails/sprockets/releases)
- [Changelog](https://github.com/rails/sprockets/blob/main/CHANGELOG.md)
- [Commits](rails/sprockets@v3.7.5...v4.2.2)

---
updated-dependencies:
- dependency-name: sprockets
  dependency-version: 4.2.2
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Apr 28, 2025
@PivtoranisV PivtoranisV changed the title Bump sprockets from 3.7.5 to 4.2.2 PC-135: Bump sprockets from 3.7.5 to 4.2.2 May 1, 2025
@PivtoranisV PivtoranisV self-assigned this May 1, 2025
@PivtoranisV PivtoranisV added the review needed Code reviews needed by the minimum number of developers required label May 1, 2025
@rogergraves rogergraves added review done Code reviews are completed by the minimum number of developers required ready for testing Ready for QA to test locally or on a test server review needed Code reviews needed by the minimum number of developers required and removed review needed Code reviews needed by the minimum number of developers required ruby Pull requests that update Ruby code dependencies Pull requests that update a dependency file review done Code reviews are completed by the minimum number of developers required labels May 1, 2025
@mariiapopova22 mariiapopova22 added in testing The QA team is testing this branch and removed ready for testing Ready for QA to test locally or on a test server labels May 1, 2025
@Maryna-Harasko Maryna-Harasko added review done Code reviews are completed by the minimum number of developers required and removed review needed Code reviews needed by the minimum number of developers required labels May 1, 2025
@PivtoranisV PivtoranisV temporarily deployed to clever-calculator-pr-73 May 1, 2025 13:39 Inactive
@mariiapopova22 mariiapopova22 added qa done QA completed testing successfully and removed in testing The QA team is testing this branch labels May 1, 2025
@rogergraves rogergraves temporarily deployed to clever-calculator-pr-73 May 2, 2025 12:38 Inactive
@Maryna-Harasko Maryna-Harasko merged commit 89fae93 into master May 2, 2025
4 checks passed
@dependabot dependabot Bot deleted the dependabot/bundler/sprockets-4.2.2 branch May 2, 2025 12:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rogergraves rogergraves rogergraves approved these changes

@valvolyk valvolyk valvolyk approved these changes

@Maryna-Harasko Maryna-Harasko Maryna-Harasko approved these changes

Assignees

@PivtoranisV PivtoranisV

Labels

qa done QA completed testing successfully review done Code reviews are completed by the minimum number of developers required

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@rogergraves @valvolyk @Maryna-Harasko @PivtoranisV @mariiapopova22