Bump the development-dependencies group with 2 updates

[dependabot]

Bumps the development-dependencies group with 2 updates: html-proofer and activerecord.

Updates html-proofer from 5.2.0 to 5.2.1

Release notes

Sourced from html-proofer's releases.

v5.2.1

What's Changed

• [skip test] Release v5.2.0 by @​github-actions[bot] in gjtorikian/html-proofer#872
• Fix XPath syntax errors and hash validation false positives by @​ZoeLeBlanc in gjtorikian/html-proofer#873
• [skip test] Release v5.2.1 by @​github-actions[bot] in gjtorikian/html-proofer#874

New Contributors

• @​ZoeLeBlanc made their first contribution in gjtorikian/html-proofer#873

Full Changelog: gjtorikian/html-proofer@v5.2.0...v5.2.1

Changelog

Sourced from html-proofer's changelog.

[v5.2.1] - 29-03-2026

What's Changed

• [skip test] Release v5.2.0 by @​github-actions[bot] in gjtorikian/html-proofer#872
• Fix XPath syntax errors and hash validation false positives by @​ZoeLeBlanc in gjtorikian/html-proofer#873

New Contributors

• @​ZoeLeBlanc made their first contribution in gjtorikian/html-proofer#873

Full Changelog: gjtorikian/html-proofer@v5.2.0...v5.2.1

Commits

• 68a8936 Merge pull request #874 from gjtorikian/release/v5.2.1
• e78eb51 [skip test] update changelog
• 53a456f Merge pull request #873 from ZoeLeBlanc/fix-internal-hash-validation
• 3bb7947 bump to 5.2.1
• dc3907c correct rubocop again
• f0e8f8c correct Rubocop issues
• 06d6fe4 Revert "Fix Rubocop offenses"
• 07495d8 Fix Rubocop offenses
• 68b1812 Add test for hash validation on index URLs
• 1e53fb0 Fix XPath syntax errors and hash validation false positives
• Additional commits viewable in compare view

Updates activerecord from 8.1.2 to 8.1.3

Release notes

Sourced from activerecord's releases.

8.1.3

Active Support

• Fix JSONGemCoderEncoder to correctly serialize custom object hash keys.

  When hash keys are custom objects whose as_json returns a Hash, the encoder now calls to_s on the original key object instead of on the as_json result.

  Before: hash = {CustomKey.new(123) => "value"} hash.to_json # => {"{:id=>123}":"value"}

  After: hash.to_json # => {"custom_123":"value"}

  Dan Sharp

• Fix inflections to better handle overlapping acronyms.

  ActiveSupport::Inflector.inflections(:en) do |inflect|
    inflect.acronym "USD"
    inflect.acronym "USDC"
  end
  "USDC".underscore # => "usdc"

  Said Kaldybaev

• Silence Dalli 4.0+ warning when using ActiveSupport::Cache::MemCacheStore.

  zzak

Active Model

• Fix Ruby 4.0 delegator warning when calling inspect on attributes.

  Hammad Khan

• Fix NoMethodError when deserialising Type::Integer objects marshalled under Rails 8.0.

  The performance optimisation that replaced @range with @max/@min broke Marshal compatibility. Objects serialised under 8.0 (with @range) and deserialised under 8.1 (expecting @max/@min) would crash with undefined method '<=' for nil because Marshal.load restores instance variables without calling initialize.

... (truncated)

Changelog

Sourced from activerecord's changelog.

Rails 8.1.3 (March 24, 2026)

• Fix insert_all and upsert_all log message when called on anonymous classes.

  Gabriel Sobrinho

• Respect ActiveRecord::SchemaDumper.ignore_tables when dumping SQLite virtual tables.

  Hans Schnedlitz

• Restore previous instrumenter after execute_or_skip

  FutureResult#execute_or_skip replaces the thread's instrumenter with an EventBuffer to collect events published during async query execution. If the global async executor is saturated and the caller_runs fallback executes the task on the calling thread, we need to make sure the previous instrumenter is restored or the stale EventBuffer would stay in place and permanently swallow all subsequent sql.active_record notifications on that thread.

  Rosa Gutierrez

• Bump the minimum PostgreSQL version to 9.5, due to usage of array_position function.

  Ivan Kuchin

• Fix Ruby 4.0 delegator warning when calling inspect on ActiveRecord::Type::Serialized.

  Hammad Khan

• Fix support for table names containing hyphens.

  Evgeniy Demin

• Fix column deduplication for SQLite3 and PostgreSQL virtual (generated) columns.

  Column#== and Column#hash now account for virtual? so that the Deduplicable registry does not treat a generated column and a regular column with the same name and type as identical. Previously, if a generated column was registered first, a regular column on a different table could be deduplicated to the generated instance, silently excluding it from INSERT/UPDATE statements.

  Jay Huber

• Fix PostgreSQL schema dumping to handle schema-qualified table names in foreign_key references that span different schemas.

  # before
  add_foreign_key "hst.event_log_attributes", "hst.event_logs" # emits correctly because they're in the same schema (hst)
  add_foreign_key "hst.event_log_attributes", "hst.usr.user_profiles", column: "created_by_id" # emits hst.user.* when user.* is expected
  

... (truncated)

Commits

• fa8f081 Preparing for 8.1.3 release
• 63cef3d Merge branch '8-1-sec' into 8-1-stable
• 1db4b89 Preparing for 8.1.2.1 release
• e449905 Merge pull request #57022 from byroot/sobrinho-main
• 7d8eeea Merge pull request #56977 from hschne/26-03-fix-ignore-virtual-tables
• 148e4d8 Merge pull request #56970 from nicolasva/fix_spatia_lite
• 004eb65 Restore previous instrumenter after execute_or_skip
• b8b23c0 Merge pull request #56932 from eglitobias/fix-dbconsole-notimplemented-message
• 2250b16 Merge pull request #56951 from r-plus/patch-1
• 635841a Merge pull request #56911 from toy/postgresql-9.5-required
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions