Skip to content

Bump net-ssh from 7.3.2 to 7.3.3#186

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bundler/main/net-ssh-7.3.3
Open

Bump net-ssh from 7.3.2 to 7.3.3#186
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bundler/main/net-ssh-7.3.3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 29, 2026

Copy link
Copy Markdown
Contributor

Bumps net-ssh from 7.3.2 to 7.3.3.

Changelog

Sourced from net-ssh's changelog.

=== 7.3.3

  • Support .pub file as IdentityFile to filter/prioritize agent keys (1Password SSH agent use case) #942
  • Fix cert signing regression when using a .pub companion file without an agent #1006
  • Fix unreadable .pub IdentityFile silently skipped instead of raising #1006
  • Allow multiple UserKnownHostsFile entries (space-separated, matching ssh_config(5)) #979
  • Stop mutating ENV['HOME'] at require time #997
  • Fix ED25519 loader with frozen string literals #995
Commits
  • b991e88 Update CHANGES.txt for 7.3.3
  • e7c4afc bump version
  • 9698668 Fix rubocop offenses introduced by #979 and #951
  • 4be06b0 Merge pull request #1006 from net-ssh/pub-key-identity
  • 81b2e89 Fix rubocop offenses: hash brace spacing and empty block comments
  • 60490df Fix cert signing regression and unreadable .pub file error handling
  • 11243f2 Merge pull request #951 from usiegj00/patch-1
  • 491660f Merge pull request #979 from andrewdotn/main
  • 6f01d90 Merge pull request #995 from G-Rath/patch-1
  • 1aa9ea6 Merge pull request #997 from net-ssh/fix/remove-env-home-mutation
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [net-ssh](https://github.com/net-ssh/net-ssh) from 7.3.2 to 7.3.3.
- [Changelog](https://github.com/net-ssh/net-ssh/blob/master/CHANGES.txt)
- [Commits](net-ssh/net-ssh@v7.3.2...v7.3.3)

---
updated-dependencies:
- dependency-name: net-ssh
  dependency-version: 7.3.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot requested review from a team and jaymzh as code owners June 29, 2026 23:34
Comment thread Gemfile.lock
specs:
abbrev (0.1.2)
activesupport (8.1.3)
activesupport (7.2.3.1)

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

hey @tpowell-progress and @Stromweld , this is a downgrade of activesupport for an upgrade of net-ssh. Seems like a good trade-off, but wanna check with you

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant