chore(deps): bump the ruby group with 5 updates

[dependabot]

Bumps the ruby group with 5 updates:

Package	From	To
html2rss	3071d18	2522897
html2rss-configs	d7c60ff	c8799e7
google-protobuf	4.32.0	4.32.1
nokogiri	1.18.9	1.18.10
prism	1.4.0	1.5.1

Updates html2rss from 3071d18 to 2522897

Commits

• 2522897 feat: add RSS feed detection (#284)
• f582b19 perf: comprehensive performance optimizations (#283)
• f7fd824 feat: implement category extraction (#282)
• f12dff5 refactor: remove Utils class (#281)
• edb4132 fix: html boolean value breaks xls rendering (#280)
• 45ad17b docs: add community & resources section (#279)
• See full diff in compare view

Updates html2rss-configs from d7c60ff to c8799e7

Commits

• c8799e7 docs: add community & resources section (#256)
• See full diff in compare view

Updates google-protobuf from 4.32.0 to 4.32.1

Commits

• See full diff in compare view

Updates nokogiri from 1.18.9 to 1.18.10

Release notes

Sourced from nokogiri's releases.

v1.18.10 / 2025-09-15

Dependencies

• [CRuby] Vendored libxml2 is updated to v2.13.9. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.
• [CRuby] [Windows and MacOS] Vendored libiconv is updated to v1.18

7fb87235d729c74a2be635376d82b1d459230cc17c50300f8e4fcaabc6195344  nokogiri-1.18.10-aarch64-linux-gnu.gem
7e74e58314297cc8a8f1b533f7212d1999dbe2639a9ee6d97b483ea2acc18944  nokogiri-1.18.10-aarch64-linux-musl.gem
51f4f25ab5d5ba1012d6b16aad96b840a10b067b93f35af6a55a2c104a7ee322  nokogiri-1.18.10-arm-linux-gnu.gem
1c6ea754e51cecc85c30ee8ab1e6aa4ce6b6e134d01717e9290e79374a9e00aa  nokogiri-1.18.10-arm-linux-musl.gem
c2b0de30770f50b92c9323fa34a4e1cf5a0af322afcacd239cd66ee1c1b22c85  nokogiri-1.18.10-arm64-darwin.gem
cd431a09c45d84a2f870ba0b7e8f571199b3727d530f2b4888a73639f76510b5  nokogiri-1.18.10-java.gem
64f40d4a41af9f7f83a4e236ad0cf8cca621b97e31f727b1bebdae565a653104  nokogiri-1.18.10-x64-mingw-ucrt.gem
536e74bed6db2b5076769cab5e5f5af0cd1dccbbd75f1b3e1fa69d1f5c2d79e2  nokogiri-1.18.10-x86_64-darwin.gem
ff5ba26ba2dbce5c04b9ea200777fd225061d7a3930548806f31db907e500f72  nokogiri-1.18.10-x86_64-linux-gnu.gem
0651fccf8c2ebbc2475c8b1dfd7ccac3a0a6d09f8a41b72db8c21808cb483385  nokogiri-1.18.10-x86_64-linux-musl.gem
d5cc0731008aa3b3a87b361203ea3d19b2069628cb55e46ac7d84a0445e69cc1  nokogiri-1.18.10.gem

Changelog

Sourced from nokogiri's changelog.

v1.18.10 / 2025-09-15

Dependencies

• [CRuby] Vendored libxml2 is updated to v2.13.9. Note that the security fixes published in v2.13.9 were already present in Nokogiri v1.18.9.
• [CRuby] [Windows and MacOS] Vendored libiconv is updated to v1.18

Commits

• 6803740 version bump to v1.18.10
• 93337de dep: bump vendored libxml2 to v2.13.9 (#3555)
• 15dde17 ci: work around repeated bundler deadlocks
• 9906071 dep: bump vendored libxml2 to v2.13.9
• adf72e3 [v1.18.x] backport libiconv upgrade to v1.18 (#3550)
• 92cab09 dep: update vendored libiconv to 1.18
• f1c5ea8 Use mirror site to download libiconv
• dcd2721 ci: stop testing Ruby 3.1 windows source builds
• cf856e6 ci: fix the aarch64 segfault by using a more modern qemu
• 6d77443 Fix errors building Ruby 3.1 on windows
• Additional commits viewable in compare view

Updates prism from 1.4.0 to 1.5.1

Release notes

Sourced from prism's releases.

v1.5.1

Changed

• Revert of a bug introduced with static literal flags on interpolated strings.

v1.5.0

Added

• Add Prism::Translation::ParserCurrent.
• Add Integer::to_u32_digits for the Rust API.
• Add pm_comment_type_t field for the Rust API.
• Support leading logical operators for CRuby 3.5+.

Changed

• Mark Prism as ractor-safe.
• Enforce a minimum version for the parser translation layer.
• Many fixes to the parser translation layer.
• Accept a newline after the defined? keyword.
• Reject true && not true.
• Make it = it assign nil to match parse.y behavior [Bug #21139].
• Some fixes to the ruby parser translation layer.
• Ensure call nodes have the correct ending location.
• Reject foo && return bar.

Changelog

Sourced from prism's changelog.

[1.5.1] - 2025-09-13

Changed

• Revert of a bug introduced with static literal flags on interpolated strings.

[1.5.0] - 2025-09-12

Added

• Add Prism::Translation::ParserCurrent.
• Add Integer::to_u32_digits for the Rust API.
• Add pm_comment_type_t field for the Rust API.
• Support leading logical operators for CRuby 3.5+.

Changed

• Mark Prism as ractor-safe.
• Enforce a minimum version for the parser translation layer.
• Many fixes to the parser translation layer.
• Accept a newline after the defined? keyword.
• Reject true && not true.
• Make it = it assign nil to match parse.y behavior [Bug #21139].
• Some fixes to the ruby parser translation layer.
• Ensure call nodes have the correct ending location.
• Reject foo && return bar.

Commits

• 914883a Merge pull request #3644 from ruby/bump-version
• cac5118 Bump to v1.5.1
• 405d579 Merge pull request #3643 from k0kubun/reverse-sync
• f117ec6 Revert "Merge pull request #3606 from tenderlove/clear-flags"
• b4865f9 Merge pull request #3642 from ruby/bump-version
• 194edab Bump to v1.5.0
• c6ddd5d Merge pull request #3641 from ruby/memberof
• acdfd41 Merge pull request #3639 from ruby/emm
• d1d2161 Add \memberof annotations
• 53ea199 Merge pull request #3640 from ruby/linkify-docs
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions