Build(deps): Update activesupport requirement from >= 4.2, < 6.2 to >= 4.2, < 7.1

[dependabot]

Updates the requirements on activesupport to permit the latest version.

Release notes

Sourced from activesupport's releases.

7.0.0

Action Cable

• The Action Cable client now ensures successful channel subscriptions:

  • The client maintains a set of pending subscriptions until either the server confirms the subscription or the channel is torn down.
  • Rectifies the race condition where an unsubscribe is rapidly followed by a subscribe (on the same channel identifier) and the requests are handled out of order by the ActionCable server, thereby ignoring the subscribe command.

  Daniel Spinosa

• Compile ESM package that can be used directly in the browser as actioncable.esm.js.

  DHH

• Move action_cable.js to actioncable.js to match naming convention used for other Rails frameworks, and use JS console to communicate the deprecation.

  DHH

• Stop transpiling the UMD package generated as actioncable.js and drop the IE11 testing that relied on that.

  DHH

• Truncate broadcast logging messages.

  J Smith

• OpenSSL constants are now used for Digest computations.

  Dirkjan Bussink

• The Action Cable client now includes safeguards to prevent a "thundering herd" of client reconnects after server connectivity loss:

  • The client will wait a random amount between 1x and 3x of the stale threshold after the server's last ping before making the first reconnection attempt.
  • Subsequent reconnection attempts now use exponential backoff instead of logarithmic backoff. To allow the delay between reconnection attempts to increase slowly at first, the default exponentiation base is < 2.
  • Random jitter is applied to each delay between reconnection attempts.

  Jonathan Hefner

Action Mailbox

• Removed deprecated environment variable MAILGUN_INGRESS_API_KEY.

... (truncated)

Changelog

Sourced from activesupport's changelog.

Rails 7.0.0 (December 15, 2021)

• Fix ActiveSupport::Duration.build to support negative values.

  The algorithm to collect the parts of the ActiveSupport::Duration ignored the sign of the value and accumulated incorrect part values. This impacted ActiveSupport::Duration#sum (which is dependent on parts) but not ActiveSupport::Duration#eql? (which is dependent on value).

  Caleb Buxton, Braden Staudacher

Rails 7.0.0.rc3 (December 14, 2021)

• No changes.

Rails 7.0.0.rc2 (December 14, 2021)

• No changes.

Rails 7.0.0.rc1 (December 06, 2021)

• Deprecate passing a format to #to_s in favor of #to_formatted_s in Array, Range, Date, DateTime, Time, BigDecimal, Float and, Integer.

  Rafael Mendonça França

• Document ActiveSupport::Testing::Deprecation.

  Sam Bostock & Sam Jordan

• Add Pathname#existence.

  Pathname.new("file").existence&.read

  Timo Schilling

• Remove deprecate ActiveSupport::Multibyte::Unicode.default_normalization_form.

  Rafael Mendonça França

• Remove deprecated support to use Range#include? to check the inclusion of a value in a date time range is deprecated.

  Rafael Mendonça França

• Remove deprecated URI.parser.

... (truncated)

Commits

• 984c3ef Preparing for 7.0.0 release
• 2173fba Merge pull request #43857 from ghiculescu/as-mem-flakey
• 797ac0c Merge branch '7-0-sec' into 7-0-stable
• 834cc1a Preparing for 7.0.0.rc3 release
• 8132d7b Merge branch '7-0-sec' into 7-0-stable
• 69e2e89 Preparing for 7.0.0.rc2 release
• 80fda2a fix: equivalent negative durations add to the same time (#43795)
• 15ae45c DescendantsTracker: fix the TruffleRuby implementation
• 7e3bd8b Merge pull request #42919 from jcmfernandes/avoid-double-string-split-message...
• 99f1b64 Merge pull request #43798 from sampatbadhe/remove-duplicate-entries-of-to-for...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)