Skip to content

Bump bootsnap from 1.20.1 to 1.24.4#363

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bundler/bootsnap-1.24.4
Open

Bump bootsnap from 1.20.1 to 1.24.4#363
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bundler/bootsnap-1.24.4

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 18, 2026

Copy link
Copy Markdown
Contributor

Bumps bootsnap from 1.20.1 to 1.24.4.

Release notes

Sourced from bootsnap's releases.

v1.24.4

What's Changed

  • Fix several compatibility issues with Ruby 4.0.4, particularly the should not compile with coverage error. See #547.
  • Fix Bootsnap.enable_frozen_string_literal to work even when coverage is enabled. Unfortunately only possible on Ruby 4.0.4+. On older rubies if coverage is enabled a warning will be issued and the feature won't work.
  • Reduced cache files header size from 64 to 32 bytes, and got rid of the random padding element.
  • Avoid leaking a private method in Object when testing for Parse.y bugs.

Full Changelog: rails/bootsnap@v1.24.3...v1.24.4

v1.24.3

  • Fix the 1.24.2 workaround to parse Ruby files with UTF-8 even when the LANG environment variable is unset or set to C.

Full Changelog: rails/bootsnap@v1.24.2...v1.24.3

v1.24.2

What's Changed

  • Workaround two Ruby bugs in RubyVM::InstructionSequence.compile_file, that were causing files to be loaded with the old Ruby parser instead of Prism, causing issues with some pattern matching syntax. Ref: https://bugs.ruby-lang.org/issues/22023

Full Changelog: rails/bootsnap@v1.24.1...v1.24.2

v1.24.1

What's Changed

  • Fix encoding of Ruby source files loaded when BOOTSNAP_READONLY is set. Files would incorectly be loaded in ASCII-8BIT causing literal strings outside the pure ASCII range to have ASCII-8BIT encoding instead of UTF-8. This bug was introduced in 1.24.0.

Full Changelog: rails/bootsnap@v1.24.0...v1.24.1

v1.24.0

What's Changed

  • Added a hook API to customize Ruby compilation.

Full Changelog: rails/bootsnap@v1.23.0...v1.24.0

v1.23.0

What's Changed

  • Require Ruby 2.7.
  • Fix support for absolute paths in BOOTSNAP_IGNORE_DIRECTORIES.

... (truncated)

Changelog

Sourced from bootsnap's changelog.

1.24.4

  • Fix several compatibility issues with Ruby 4.0.4, particularly the should not compile with coverage error. See #547.
  • Fix Bootsnap.enable_frozen_string_literal to work even when coverage is enabled. Unfortunately only possible on Ruby 4.0.4+. On older rubies if coverage is enabled a warning will be issued and the feature won't work.
  • Reduced cache files header size from 64 to 32 bytes, and got rid of the random padding element.
  • Avoid leaking a private method in Object when testing for Parse.y bugs.

1.24.3

  • Fix the 1.24.2 workaround to parse Ruby files with UTF-8 even when the LANG environment variable is unset or set to C.

1.24.2

  • Workaround two Ruby bugs in RubyVM::InstructionSequence.compile_file, that were causing files to be loaded with the old Ruby parser instead of Prism, causing issues with some pattern matching syntax. Ref: https://bugs.ruby-lang.org/issues/22023

1.24.1

  • Fix encoding of Ruby source files loaded when BOOTSNAP_READONLY is set. Files would incorectly be loaded in ASCII-8BIT causing literal strings outside the pure ASCII range to have ASCII-8BIT encoding instead of UTF-8. This bug was introduced in 1.24.0.

1.24.0

  • Added a hook API to customize Ruby compilation.

1.23.0

  • Require Ruby 2.7.
  • Fix support for absolute paths in BOOTSNAP_IGNORE_DIRECTORIES.

1.22.0

  • Better fix for the opendir crash.
  • Add bootsnap/rake for cleaning the bootsnap cache as part of rake clobber.

1.21.1

  • Prevent a Ruby crash while scanning load path if opendir fails without setting errno. According to the C spec this should not happen, but according to user reports, it did.

1.21.0

  • Fix the require decorator to handle Bootsnap.unload_cache! being called.
  • Minor optimization: Eagerly clear cache buffers to appease the GC.
Commits
  • 0d8a0a6 Release 1.24.4
  • 6ccc5eb Merge pull request #550 from byroot/fstr-and-coverage
  • 86e9586 Make Bootsnap.enable_frozen_string_literal work even with coverage on
  • 36c2224 Merge pull request #549 from byroot/integration-tests
  • 6500a43 Handle Coverage being suspended
  • cf3791e ISeq#input_to_output: just return nil when using default compiler.
  • cabdad9 Only test Ruby [Bug #18250] if on Ruby 3.0.x
  • 490960e Yet another warning emitted from the canary
  • 045beb2 Appease rubocop
  • d37f282 Merge pull request #546 from davidenglishmusic/rubocop-performance
  • Additional commits viewable in compare view

@dependabot dependabot Bot requested a review from alexinslc as a code owner May 18, 2026 12:02
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels May 18, 2026
@socket-security

socket-security Bot commented May 18, 2026

Copy link
Copy Markdown

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security
Vulnerability Quality Maintenance License
Updatedbootsnap@​1.20.1 ⏵ 1.24.491 -1100100100100

View full report

Bumps [bootsnap](https://github.com/rails/bootsnap) from 1.20.1 to 1.24.4.
- [Release notes](https://github.com/rails/bootsnap/releases)
- [Changelog](https://github.com/rails/bootsnap/blob/main/CHANGELOG.md)
- [Commits](rails/bootsnap@v1.20.1...v1.24.4)

---
updated-dependencies:
- dependency-name: bootsnap
  dependency-version: 1.24.4
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/bundler/bootsnap-1.24.4 branch from 32c2b32 to 34ad9f0 Compare May 19, 2026 00:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants