Bump the dependencies group in /cosmetics-web with 5 updates

[dependabot]

Bumps the dependencies group in /cosmetics-web with 5 updates:

Package	From	To
aws-sdk-s3	1.176.1	1.177.0
net-imap	0.5.4	0.5.5
rubyzip	2.3.2	2.4.1
scout_apm	5.4.0	5.5.0
rubocop-performance	1.23.0	1.23.1

Updates aws-sdk-s3 from 1.176.1 to 1.177.0

Changelog

Sourced from aws-sdk-s3's changelog.

1.177.0 (2025-01-03)

• Feature - This change is only for updating the model regexp of CopySource which is not for validation but only for documentation and user guide change.

Commits

• See full diff in compare view

Updates net-imap from 0.5.4 to 0.5.5

Release notes

Sourced from net-imap's releases.

v0.5.5

What's Changed

Breaking Changes

• 🐛💥 Remove accidental Data#attributes method by @​nevans in ruby/net-imap#371 For ruby 3.2 and above, this PR is not a breaking change, and it fixes a YAML serialization bug. Net::IMAP::Data#attributes was only available in ruby 3.1, with net-imap v0.5.2 - v0.5.4. It can be replaced by #to_h.

Added

• RFC9586 UIDONLY support by @​avdi in ruby/net-imap#366

Documentation

• 📚 Fix rdoc issues by @​nevans in ruby/net-imap#372
• 📚 Use standard www.rfc-editor.org links for RFCs by @​nevans in ruby/net-imap#374
• 📚 Documentation updates by @​nevans in ruby/net-imap#373

New Contributors

• @​avdi made their first contribution in ruby/net-imap#366

Full Changelog: ruby/net-imap@v0.5.4...v0.5.5

Commits

• e4ef3eb 🔖 Bump version to 0.5.5
• 70742e8 📚💄 Update rdoc attribute heading styles
• 61c35f7 📚 Update Config#responses_without_block rdoc
• 69b240f 📚 Fix rdoc heading levels
• fe87d46 📚 Add RFC9051 link to README
• 1e4e296 📚 Add rdoc for FetchStruct#attr
• 475c5fc 📚 Update StatusData rdoc
• 8ae8882 📚 Update Namespace, Namespaces rdoc
• 87879d6 📚 Update MailboxACLItem rdoc
• 62c91dc 📚 Update MailboxQuota, MailboxQuotaRoot rdoc
• Additional commits viewable in compare view

Updates rubyzip from 2.3.2 to 2.4.1

Changelog

Sourced from rubyzip's changelog.

3.0.0 (Next)

• Fix File#write_buffer to always return the given io.
• Add Entry#absolute_time? and DOSTime#absolute_time? methods.
• Use explicit named parameters for File methods.
• Ensure that entries can be extracted safely without path traversal. #540
• Enable Zip64 by default.
• Rename GPFBit3Error to StreamingError.
• Ensure that Entry.ftype is correct via InputStream. #533
• Add Entry#zip64? as a better way detect Zip64 entries.
• Implement Zip::FileSystem::ZipFsFile#symlink?.
• Remove File::add_buffer from the API.
• Fix OutputStream#put_next_entry to preserve StreamableStreams. #503
• Ensure File.open_buffer doesn't rewrite unchanged data.
• Add CentralDirectory#count_entries and File::count_entries.
• Fix reading unknown extra fields. #505
• Fix reading zip files with max length file comment. #508
• Fix reading zip64 files with max length file comment. #509
• Don't silently alter zip files opened with Zip::sort_entries. #329
• Use named parameters for optional arguments in the public API.
• Raise an error if entry names exceed 65,535 characters. #247
• Remove the ZipXError v1 legacy classes.
• Raise an error on reading a split archive with InputStream. #349
• Ensure InputStream raises GPFBit3Error for OSX Archive files. #493
• Improve documentation and error messages for InputStream. #196
• Fix zip file-level comment is not read from zip64 files. #492
• Fix Zip::OutputStream.write_buffer doesn't work with Tempfiles. #265
• Reinstate normalising pathname separators to /. #487
• Fix restore options consistency. #486
• View and/or preserve original date created, date modified? (Windows). #336
• Fix frozen string literal error. #475
• Set the default Entry time to the file's mtime on Windows. #465
• Ensure that Entry#time= sets times as DOSTime objects. #481
• Replace and deprecate Zip::DOSTime#dos_equals. #464
• Fix loading extra fields. #459
• Set compression level on a per-zipfile basis. #448
• Fix input stream partial read error. #462
• Fix zlib deflate buffer growth. #447

Tooling/internal:

• Only use the Zip64 CDIR end locator if needed.
• Prevent unnecessary Zip64 data being stored.
• Abstract marking various things as 'dirty' into Dirtyable for reuse.
• Properly test File#mkdir.
• Remove unused private method File#directory?.
• Expose the EntrySet more cleanly through CentralDirectory.
• Zip::File no longer subclasses Zip::CentralDirectory.
• Configure Coveralls to not report a failure on minor decreases of test coverage. #491
• Extract the file splitting code out into its own module.

... (truncated)

Commits

• 6c4b7a9 Move to version 2.4.1 due to clash with 2.4.
• 3b4c2bf Opt-in for MFA requirement explicitly on 2.4
• e3eb624 Make sure version number is 2.4.0.
• c09352b Bump version and Changelog for release.
• 71bb069 Update actions with latest rubies.
• bb06f99 Update actions dependencies.
• 3d95a82 Update earliest Ruby version for MacOS builds in CI.
• 56954b0 Suppress "literal string will be frozen in the future" warning
• 6ff40f7 Fix setting and restoring RUBYZIP_V3_API_WARN in tests.
• e05dc9b Improve version 3 API messages.
• Additional commits viewable in compare view

Updates scout_apm from 5.4.0 to 5.5.0

Changelog

Sourced from scout_apm's changelog.

5.5.0

• Fix undeclared logger in grape instruments (#510)
• Drop guaranteed support for Rubies <= 2.4
• Instrument Resque without relying on forking per job (#514)

Commits

• a42f3f4 update changelog and bump version to 5.5.0 (#520)
• 6a3133e Instrument resque without forking (#514)
• 392dbb8 fix deprecation warning Bundler.rubygems.all_specs (#500)
• 3eeb7a2 fix failing test with ruby 3.2 and 3.3 (#516)
• a3e05e8 Remove old ruby support (#517)
• 87cf2e1 Add ruby 3.3 to test matrix (#502)
• 49c798b Fix: Undefined logger in grape instruments (#511)
• See full diff in compare view

Updates rubocop-performance from 1.23.0 to 1.23.1

Release notes

Sourced from rubocop-performance's releases.

RuboCop Performance 1.23.1

Bug fixes

• #478: Fix Performance/RedundantStringChars cop error in case of implicit receiver. (@​viralpraxis)
• #480: Fix Performance/Squeeze cop error on frozen AST string node value. (@​viralpraxis)

Changelog

Sourced from rubocop-performance's changelog.

1.23.1 (2025-01-04)

Bug fixes

• #478: Fix Performance/RedundantStringChars cop error in case of implicit receiver. ([@​viralpraxis][])
• #480: Fix Performance/Squeeze cop error on frozen AST string node value. ([@​viralpraxis][])

Commits

• 2b5c8c6 Cut 1.23.1
• cfc046b Update Changelog
• f0e791c Use RuboCop RSpec 3.3 for development
• f8e9c2b Bump license years to 2025
• 5d78dea Merge pull request #483 from koic/ci_against_ruby_34
• 447e273 CI against Ruby 3.4
• d058c88 Merge pull request #480 from viralpraxis/fix-performance-squeeze-cop-error-on...
• 9fdbe4e Fix Performance/Squeeze cop error on frozen AST string node value
• ad9fd62 Merge pull request #481 from kyanagi/patch-1
• 087843a [DOC] Fix markup of Performance/Count
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions