build(deps): bump the most-gems group across 1 directory with 3 updates

[dependabot]

Bumps the most-gems group with 3 updates in the / directory: addressable, google-protobuf and rspec-mocks.

Updates addressable from 2.8.8 to 2.8.9

Changelog

Sourced from addressable's changelog.

Addressable 2.8.9

• Reduce gem size by excluding test files (#569)
• No need for bundler as development dependency (#571, 5fc1d93)
• idna/pure: stop building the useless COMPOSITION_TABLE (removes the Addressable::IDNA::COMPOSITION_TABLE constant) (#564)

#569: sporkmonger/addressable#569 #571: sporkmonger/addressable#571 #564: sporkmonger/addressable#564

Commits

• 0d7e9b2 Fix links for 2.8.9 in CHANGELOG (#573)
• e209120 Update version, gemspec, and CHANGELOG for 2.8.9 (#572)
• 3875874 Reduce gem size by excluding test files (#569)
• 3e57cc6 CI: back to windows-2022 for MRI job
• c4f92fc CI: skip Ractor test on Windows to avoid job timeout
• 6aa115f CI: add public_suffix v7 job
• b860736 CI: drop macos-14, add macos-26
• 45dd2d3 CI: Use Windows 2025 (windows-latest)
• 6b5a7d6 CI: timeouts for all jobs
• 5fc1d93 No need for bundler as development dependency
• Additional commits viewable in compare view

Updates google-protobuf from 4.33.5 to 4.34.0

Commits

• See full diff in compare view

Updates rspec-mocks from 3.13.7 to 3.13.8

Changelog

Sourced from rspec-mocks's changelog.

3.13.8 / 2026-02-27

Full Changelog

Bug Fixes:

• Improve thread safety of mocks invocation recording. (Chad Wilson, #286)
• Expand any_instance warning about prepended methods to private/protected methods. (Alex Dean, #297)

Commits

• 712e3ca rspec-mocks-v3.13.8
• 77e3082 Changelog for #297
• efd3f6a Merge pull request #297 from alexdean/any_instance_of_prepend_fix
• 27fe84e Changelog for #286
• b3ef9b1 Tidy up rspec-mocks/spec/rspec/mocks/order_group_spec.rb
• 7ed9f38 Improve thread safety of OrderGroups within mocks
• 0404d76 Ignore a spec file which issues warnings
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions