chore(deps): Bump actionpack from 7.1.3.4 to 7.2.1

[dependabot]

Bumps actionpack from 7.1.3.4 to 7.2.1.

Release notes

Sourced from actionpack's releases.

7.2.1

Active Support

• No changes.

Active Model

• No changes.

Active Record

• Fix detection for enum columns with parallelized tests and PostgreSQL.

  Rafael Mendonça França

• Allow to eager load nested nil associations.

  fatkodima

• Fix swallowing ignore order warning when batching using BatchEnumerator.

  fatkodima

• Fix memory bloat on the connection pool when using the Fiber IsolatedExecutionState.

  Jean Boussier

• Restore inferred association class with the same modularized name.

  Justin Ko

• Fix ActiveRecord::Base.inspect to properly explain how to load schema information.

  Jean Boussier

• Check invalid enum options for the new syntax.

  The options using _ prefix in the old syntax are invalid in the new syntax.

  Rafael Mendonça França

• Fix ActiveRecord::Encryption::EncryptedAttributeType#type to return actual cast type.

  Vasiliy Ermolovich

... (truncated)

Changelog

Sourced from actionpack's changelog.

Rails 7.2.1 (August 22, 2024)

• Fix Request#raw_post raising NoMethodError when rack.input is nil.

  Hartley McGuire

Rails 7.2.0 (August 09, 2024)

• Allow bots to ignore allow_browser.

  Matthew Nguyen

• Include the HTTP Permissions-Policy on non-HTML Content-Types [CVE-2024-28103]

  Aaron Patterson, Zack Deveau

• Fix Mime::Type.parse handling type parameters for HTTP Accept headers.

  Taylor Chaparro

• Fix the error page that is displayed when a view template is missing to account for nested controller paths in the suggested correct location for the missing template.

  Joshua Young

• Add save_and_open_page helper to IntegrationTest.

  save_and_open_page is a helpful helper to keep a short feedback loop when working on system tests. A similar helper with matching signature has been added to integration tests.

  Joé Dupuis

• Fix a regression in 7.1.3 passing a to: option without a controller when the controller is already defined by a scope.

  Rails.application.routes.draw do
    controller :home do
      get "recent", to: "recent_posts"
    end
  end

  Étienne Barrié

• Request Forgery takes relative paths into account.

  Stefan Wienert

... (truncated)

Commits

• a11f0a6 Preparing for 7.2.1 release
• 90d9e12 Merge pull request #52138 from skipkayhil/hm-rack-input-is-optional
• f42a784 Move the rewind code closer to the reason why we need to rewind
• fb6c430 Preparing for 7.2.0 release
• 0b3404e Merge pull request #52531 from n-studio/allow-bots
• 41d50f4 Preparing for 7.2.0.rc1 release
• 3ce715b Don't claim compatibility with unknown future Rack releases
• 9b63450 Preparing for 7.2.0.beta3 release
• 850d692 Merge pull request #50063 from skipkayhil/hm-doc-metal
• a38f2dc Merge pull request #52225 from Earlopain/rdoc-hanging
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)