build(deps): bump railties from 8.0.1 to 8.0.2 #516

dependabot · 2025-03-17T15:19:15Z

Bumps railties from 8.0.1 to 8.0.2.

Release notes

8.0.2

Active Support
Fix setting to_time_preserves_timezone from new_framework_defaults_8_0.rb.

fatkodima

Fix Active Support Cache fetch_multi when local store is active.

fetch_multi now properly yield to the provided block for missing entries that have been recorded as such in the local store.

Jean Boussier

Fix execution wrapping to report all exceptions, including Exception.

If a more serious error like SystemStackError or NoMemoryError happens, the error reporter should be able to report these kinds of exceptions.

Gannon McGibbon

Fix RedisCacheStore and MemCacheStore to also handle connection pool related errors.

These errors are rescued and reported to Rails.error.

Jean Boussier

Fix ActiveSupport::Cache#read_multi to respect version expiry when using local cache.

zzak
Fix ActiveSupport::MessageVerifier and ActiveSupport::MessageEncryptor configuration of on_rotation callback.
verifier.rotate(old_secret).on_rotation { ... }
Now both work as documented.

Jean Boussier
Fix ActiveSupport::MessageVerifier to always be able to verify both URL-safe and URL-unsafe payloads.

This is to allow transitioning seemlessly from either configuration without immediately invalidating all previously generated signed messages.

Jean Boussier, Florent Beaurain, Ali Sepehri

Fix cache.fetch to honor the provided expiry when :race_condition_ttl is used.

... (truncated)

Changelog

Sourced from railties's changelog.

Rails 8.0.2 (March 12, 2025)

No changes.

Rails 8.0.2 (March 12, 2025)

Fix Rails console to load routes.

Otherwise *_path and *url methods are missing on the app object.

Édouard Chin

Update rails new --minimal option

Extend the --minimal flag to exclude recently added features: skip_brakeman, skip_ci, skip_docker, skip_kamal, skip_rubocop, skip_solid and skip_thruster.

eelcoj

Use secret_key_base from ENV or credentials when present locally.

When ENV["SECRET_KEY_BASE"] or Rails.application.credentials.secret_key_base is set for test or development, it is used for the Rails.config.secret_key_base, instead of generating a tmp/local_secret.txt file.

Petrik de Heus

Commits

3235827 Preparing for 8.0.2 release
ca72d86 Merge pull request #54633 from pvande/patch-1
6644442 Merge pull request #54617 from byroot/move-strict-warnings
096bfcc Merge pull request #54552 from fatkodima/fix-skip-kamal-database_yml-generation
df51214 Merge pull request #54489 from Edouard-chin/ec-readable-error
78dd86f Merge pull request #54488 from byroot/fix-test-runner-squish
f97b866 Use monospace formatting [ci-skip]
68dab21 Clarify indentation and with_indentation docs [ci-skip]
dc63db0 Merge pull request #54380 from Edouard-chin/ec-load-routes-console
9248546 Merge pull request #54313 from eelcoj/update-minimal-flag
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [railties](https://github.com/rails/rails) from 8.0.1 to 8.0.2. - [Release notes](https://github.com/rails/rails/releases) - [Changelog](https://github.com/rails/rails/blob/v8.0.2/railties/CHANGELOG.md) - [Commits](rails/rails@v8.0.1...v8.0.2) --- updated-dependencies: - dependency-name: railties dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

flavorjones · 2025-03-17T21:24:26Z

More than just railties is being updated here, but I'm OK with it.

dependabot bot added dependencies Pull requests that update a dependency file ruby Pull requests that update Ruby code labels Mar 17, 2025

flavorjones merged commit 93b0b4e into main Mar 17, 2025
17 checks passed

dependabot bot deleted the dependabot/bundler/railties-8.0.2 branch March 17, 2025 21:24

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

build(deps): bump railties from 8.0.1 to 8.0.2 #516

build(deps): bump railties from 8.0.1 to 8.0.2 #516

Uh oh!

dependabot bot commented on behalf of github Mar 17, 2025

Uh oh!

flavorjones commented Mar 17, 2025

Uh oh!

Uh oh!

Uh oh!

build(deps): bump railties from 8.0.1 to 8.0.2 #516

build(deps): bump railties from 8.0.1 to 8.0.2 #516

Uh oh!

Conversation

dependabot bot commented on behalf of github Mar 17, 2025

8.0.2

Active Support

Rails 8.0.2 (March 12, 2025)

Rails 8.0.2 (March 12, 2025)

Uh oh!

flavorjones commented Mar 17, 2025

Uh oh!

Uh oh!

Uh oh!