Skip to content

Bump rubocop-rails from 2.35.0 to 2.35.2 in the rubocop group#463

Merged
chvp merged 1 commit into
mainfrom
dependabot/bundler/rubocop-7583c8f7f3
May 23, 2026
Merged

Bump rubocop-rails from 2.35.0 to 2.35.2 in the rubocop group#463
chvp merged 1 commit into
mainfrom
dependabot/bundler/rubocop-7583c8f7f3

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 23, 2026

Bumps the rubocop group with 1 update: rubocop-rails.

Updates rubocop-rails from 2.35.0 to 2.35.2

Release notes

Sourced from rubocop-rails's releases.

RuboCop Rails v2.35.2

Bug fixes

  • #1625: Fix false positives in Rails/StrongParametersExpect when using collection methods (such as delete, keys, merge, slice, dig, fetch, or transform_values) on params[:key], as well as block-style calls such as params[:key].each { ... } or params[:key].map(&:to_s). (@​koic)
  • #1627: Fix false positives in Rails/StrongParametersExpect for usages like params[:key].try(:method) and params[:key].try!(:method). (@​nicholasdower)

RuboCop Rails v2.35.1

Bug fixes

  • #1616: Fix false positives in Rails/StrongParametersExpect when using nil-safe conversion methods such as to_i, to_s, to_a, to_f, and to_h on params[:key]. (@​koic)
  • #1622: Fix false positives in Rails/StrongParametersExpect when using key-check methods such as key?, has_key?, include?, and member? on params[:key]. (@​koic)
  • #1620: Fix false positives in Rails/StrongParametersExpect when using type-check methods such as is_a?, kind_of?, and instance_of? on params[:key]. (@​koic)
Changelog

Sourced from rubocop-rails's changelog.

2.35.2 (2026-05-19)

Bug fixes

  • #1625: Fix false positives in Rails/StrongParametersExpect when using collection methods (such as delete, keys, merge, slice, dig, fetch, or transform_values) on params[:key], as well as block-style calls such as params[:key].each { ... } or params[:key].map(&:to_s). ([@​koic][])
  • #1627: Fix false positives in Rails/StrongParametersExpect for usages like params[:key].try(:method) and params[:key].try!(:method). ([@​nicholasdower][])

2.35.1 (2026-05-17)

Bug fixes

  • #1616: Fix false positives in Rails/StrongParametersExpect when using nil-safe conversion methods such as to_i, to_s, to_a, to_f, and to_h on params[:key]. ([@​koic][])
  • #1622: Fix false positives in Rails/StrongParametersExpect when using key-check methods such as key?, has_key?, include?, and member? on params[:key]. ([@​koic][])
  • #1620: Fix false positives in Rails/StrongParametersExpect when using type-check methods such as is_a?, kind_of?, and instance_of? on params[:key]. ([@​koic][])
Commits
  • 26f1034 Cut 2.35.2
  • 65841f0 Update Changelog
  • e89ab8e Merge pull request #1626 from koic/fix_false_positives_for_rails_strong_param...
  • e977fb9 [Fix #1625] Fix false positives in Rails/StrongParametersExpect
  • d56c5d7 Merge pull request #1627 from nicholasdower/try
  • 9bb461b Fix false positives for try and try! in Rails/StrongParametersExpect
  • 9585950 Reset the docs version
  • 8bfc91e Cut 2.35.1
  • 90f8242 Update Changelog
  • 1346310 Merge pull request #1624 from koic/fix_false_positives_for_rails_strong_param...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump rubocop-rails from 2.35.0 to 2.35.2 in the rubocop group
07ded5f 
Bumps the rubocop group with 1 update: [rubocop-rails](https://github.com/rubocop/rubocop-rails).


Updates `rubocop-rails` from 2.35.0 to 2.35.2
- [Release notes](https://github.com/rubocop/rubocop-rails/releases)
- [Changelog](https://github.com/rubocop/rubocop-rails/blob/master/CHANGELOG.md)
- [Commits](rubocop/rubocop-rails@v2.35.0...v2.35.2)

---
updated-dependencies:
- dependency-name: rubocop-rails
  dependency-version: 2.35.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: rubocop
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels May 23, 2026
@dependabot dependabot Bot requested a review from chvp as a code owner May 23, 2026 06:02
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels May 23, 2026
@chvp chvp merged commit 174009d into main May 23, 2026
2 checks passed
@chvp chvp deleted the dependabot/bundler/rubocop-7583c8f7f3 branch May 23, 2026 07:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chvp chvp chvp approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@chvp