Skip to content

Bump bigdecimal from 3.3.1 to 4.0.1#13932

Closed
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/bundler/bigdecimal-4.0.1
Closed

Bump bigdecimal from 3.3.1 to 4.0.1#13932
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/bundler/bigdecimal-4.0.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Feb 17, 2026

Copy link
Copy Markdown
Contributor

Bumps bigdecimal from 3.3.1 to 4.0.1.

Release notes

Sourced from bigdecimal's releases.

v4.0.1

What's Changed

Full Changelog: ruby/bigdecimal@v4.0.0...v4.0.1

v4.0.0

What's Changed

New Contributors

Full Changelog: ruby/bigdecimal@v3.3.1...v4.0.0

Changelog

Sourced from bigdecimal's changelog.

4.0.1

4.0.0

Commits
  • 6d01c36 Bump version to v4.0.1 (#477)
  • 4914cc3 Remove "Which version should you select" section (#476)
  • 4120325 Remove unused variable (and add test for it) (#475)
  • f0bf63f Merge pull request #474 from ruby/exclude-dependabot-update
  • d93ef2b Exclude dependabot updates from release note
  • d9914c9 Bump version to v4.0.0 (#472)
  • 45d203a Deprecate ludcmp, jacobian and newton (#471)
  • 8146336 Remove deprecated method BigDecimal#precs (#470)
  • b7e93bf Better rounding of BigMath.atan(nearly_one, prec) (#469)
  • cef76eb Merge pull request #468 from ruby/dependabot/github_actions/step-security/har...
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot added dependencies ruby Pull requests that update Ruby code labels Feb 17, 2026
@github-project-automation github-project-automation Bot moved this to All the things 💤 in OFN Delivery board Feb 17, 2026
@dependabot-pr-automation dependabot-pr-automation Bot moved this from All the things 💤 to Code review 🔎 in OFN Delivery board Feb 17, 2026
Comment thread Gemfile.lock
link_header (~> 0.0, >= 0.0.8)
logger (~> 1.5)
ostruct (~> 0.6)
readline (~> 0.0)

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not sure why this is downgrading the rdf gem. I don't think that this update is worth trading in another update.

@github-project-automation github-project-automation Bot moved this from Code review 🔎 to In Progress ⚙ in OFN Delivery board Feb 17, 2026
@mkllnk

mkllnk commented Feb 18, 2026

Copy link
Copy Markdown
Member

It turns out that rdf lost its beloved maintainer:

Nobody has stepped up yet to continue the work.

@mkllnk mkllnk self-assigned this Feb 18, 2026
@dependabot dependabot Bot force-pushed the dependabot/bundler/bigdecimal-4.0.1 branch 2 times, most recently from 1d69ee9 to 5c01a95 Compare March 12, 2026 01:47
@mkllnk

mkllnk commented Mar 18, 2026

Copy link
Copy Markdown
Member

Once month ago, I opened a pull request to start untangling the dependency issues here:

But there hasn't been any reaction. The loss of the maintainer created a big void. Gregg Kellogg was not just the sole maintainer but also the main developer. Nobody else is stepping up. I guess that the next step for us would be to fork the code. 😢

@mkllnk

mkllnk commented Apr 7, 2026

Copy link
Copy Markdown
Member

@dependabot recreate

Bumps [bigdecimal](https://github.com/ruby/bigdecimal) from 3.3.1 to 4.0.1.
- [Release notes](https://github.com/ruby/bigdecimal/releases)
- [Changelog](https://github.com/ruby/bigdecimal/blob/master/CHANGES.md)
- [Commits](ruby/bigdecimal@v3.3.1...v4.0.1)

---
updated-dependencies:
- dependency-name: bigdecimal
  dependency-version: 4.0.1
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/bundler/bigdecimal-4.0.1 branch from 5c01a95 to 0d73e86 Compare April 7, 2026 03:31
@dependabot @github

dependabot Bot commented on behalf of github Apr 7, 2026

Copy link
Copy Markdown
Contributor Author

Superseded by #14141.

@dependabot dependabot Bot closed this Apr 7, 2026
@dependabot dependabot Bot deleted the dependabot/bundler/bigdecimal-4.0.1 branch April 7, 2026 09:57
@github-project-automation github-project-automation Bot moved this from In Progress ⚙ to Done in OFN Delivery board Apr 7, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies ruby Pull requests that update Ruby code

Projects

Status: Done

Development

Successfully merging this pull request may close these issues.

1 participant