What's Changed

• Bump nokogiri from 1.16.4 to 1.16.5 in /updater by @dependabot in https://github.com/dependabot/dependabot-core/pull/9719
• Pin actions in CI workflow to commit SHA by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/9755
• Revert "#6017: Address RSpec/ContextWording Rubocop violations. (#9727)" by @jurre in https://github.com/dependabot/dependabot-core/pull/9756
• Enabling RSpec/RepeatedDescription by @robaiken in https://github.com/dependabot/dependabot-core/pull/9744
• Enabling RSpec/PendingWithoutReason by @robaiken in https://github.com/dependabot/dependabot-core/pull/9739
• Enable RSpec/EmptyExampleGroup by @robaiken in https://github.com/dependabot/dependabot-core/pull/9731
• Enabling RSpec/HookArgument by @robaiken in https://github.com/dependabot/dependabot-core/pull/9742
• test-improvement-6017: Rspec/ContextWording task grouped by ecosystem. by @thavaahariharangit in https://github.com/dependabot/dependabot-core/pull/9758
• restrict C# nuget unit tests to local package feeds by @brettfo in https://github.com/dependabot/dependabot-core/pull/9694
• TICtxtWrd-Cargo: Test Improvement, Context Wording, ecosystem cargo. by @thavaahariharangit in https://github.com/dependabot/dependabot-core/pull/9768
• Pin remaining GitHub actions to SHA hash by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/9761
• Fixes Alias parsing was not enabled issue while loading Psych Lib in safe_load by @sachin-sandhu in https://github.com/dependabot/dependabot-core/pull/9759
• True type Dependabot::NpmAndYarn::UpdateChecker::VersionResolver by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/9754
• Cargo implementation must support Cargo sparse index file format by @honeyankit in https://github.com/dependabot/dependabot-core/pull/9783
• adding documentation to the silent ecosystem by @jakecoffman in https://github.com/dependabot/dependabot-core/pull/9794
• Enable All RSpec empty line cops by @robaiken in https://github.com/dependabot/dependabot-core/pull/9791
• Harry/text improvement, context wording, for ecosystem bundler, review comments of #9758 addressed here. by @thavaahariharangit in https://github.com/dependabot/dependabot-core/pull/9782
• Added support for .tool-versions file in Gemfile for Ruby projects by @kpumuk in https://github.com/dependabot/dependabot-core/pull/9070
• improve NuGet discovery by expanding *.proj and *.sln files by @brettfo in https://github.com/dependabot/dependabot-core/pull/9785
• Monkey patch on Bundler::materialize_for_installation for resolve Bundler::LazySpecification issue by @sachin-sandhu in https://github.com/dependabot/dependabot-core/pull/9807
• Update NuGet.Client from 6.9.1.3 to 6.10.0.100 by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/9801
• fix nuget ignored package version handling by @brettfo in https://github.com/dependabot/dependabot-core/pull/9824
• update to 8.0.300 SDK by @brettfo in https://github.com/dependabot/dependabot-core/pull/9826
• Strict type Dependabot::NpmAndYarn::FileUpdater::PackageJsonUpdater by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/9800
• True type remainder of npm_and_yarn by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/9827
• Fix calloc-transposed-args with prism by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/9810
• Limit top-level permissions for labeler workflow by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/9787
• fix(cargo): handle version range using Less Than Equal by @caspermeijn in https://github.com/dependabot/dependabot-core/pull/9828
• TICtxtWrd-pub: Test Improvements, Context Wording, Ecosystem pub. by @thavaahariharangit in https://github.com/dependabot/dependabot-core/pull/9840
• TICtxtWrd-elm: Test Improvements, Context Wording, ecosystem elm by @thavaahariharangit in https://github.com/dependabot/dependabot-core/pull/9846
• TICtxtWrd-updater: TestImprovements, Context Wording, ecosystem updater by @thavaahariharangit in https://github.com/dependabot/dependabot-core/pull/9844
• TICtxtWrd-tf:Test Improvements, Context Wording, ecosystem terraform. by @thavaahariharangit in https://github.com/dependabot/dependabot-core/pull/9843
• TICtxtWrd-python:Test Improvements, Context Wording, Ecosystem python. by @thavaahariharangit in https://github.com/dependabot/dependabot-core/pull/9842
• Enable RSpec/NamedSubject by @robaiken in https://github.com/dependabot/dependabot-core/pull/9748
• TICtxtWrd-gs: Test Improvements, Context Wording, ecosystem git submodules. by @thavaahariharangit in https://github.com/dependabot/dependabot-core/pull/9849
• Enable RSpec/LeadingSubject by @robaiken in https://github.com/dependabot/dependabot-core/pull/9819
• Replace cargo registry keyword from the credentials to use new keyword registry by @honeyankit in https://github.com/dependabot/dependabot-core/pull/9853
• Enforce true sigil in npm_and_yarn ecosystem by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/9847
• TICtxtWrd-cmn: Test Improvements, Context Wording, ecosystem common. by @thavaahariharangit in https://github.com/dependabot/dependabot-core/pull/9856
• v0.259.0 by @dependabot-core-action-automation in https://github.com/dependabot/dependabot-core/pull/9809

New Contributors

• @sachin-sandhu made their first contribution in https://github.com/dependabot/dependabot-core/pull/9759
• @kpumuk made their first contribution in https://github.com/dependabot/dependabot-core/pull/9070
• @caspermeijn made their first contribution in https://github.com/dependabot/dependabot-core/pull/9828

Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.258.0...v0.259.0