Build(deps-dev): bump the development-dependencies group with 2 updates

[dependabot]

Bumps the development-dependencies group with 2 updates: brakeman and selenium-webdriver.

Updates brakeman from 8.0.4 to 8.0.5

Release notes

Sourced from brakeman's releases.

8.0.5

• Add quote_schema_name to safe quote method list (changes by Zsolt Kozaroczy)
• Fix SQL injection false positive for compact_blank/compact on permitted params (changes by Arpit Jain)
• Fix inline render false positive for local named text (changes by Arpit Jain)
• Fix HAML crash on .raw calls (changes by Federico Franco)
• Fix Ruby version parsing - especially for non-CRuby versions (changes by Chris Southerland Jr)
• Fix TemplateAliasProcessor#template_name arity (changes by viralpraxis)
• Reduce false positives when using shell escaping (changes)

Changelog

Sourced from brakeman's changelog.

8.0.5 - 2026-06-12

• Add quote_schema_name to safe quote method list (Zsolt Kozaroczy)
• Fix SQL injection false positive for compact_blank/compact on permitted params (Arpit Jain)
• Fix inline render false positive for local named text (Arpit Jain)
• Fix HAML crash on .raw calls (Federico Franco)
• Fix Ruby version parsing - especially for non-CRuby versions (Chris Southerland Jr)
• Fix TemplateAliasProcessor#template_name arity (viralpraxis)
• Reduce false positives when using shell escaping

Commits

• 104443e Bump to 8.0.5
• 8e61e2a Update CHANGES
• f014c15 Merge pull request #2028 from kiskoza/fix/quote_schema_name
• 9227822 Merge pull request #2027 from arpitjain099/fix/brakeman-1915-render-partial-t...
• 6788d28 Merge pull request #2025 from arpitjain099/fix/sql-fp-compact-blank
• b7c3906 Add quote_schema_name to safe quote method list
• f95c500 test: update line number for still-warns SQL injection case after fixture shift
• 4fba779 base_processor: skip hash render-type extraction when type set positionally
• 1e63a41 Fix SQL injection false positive for compact_blank/compact on permitted params
• 7ff9e49 Merge pull request #2023 from FFederi/fix-haml-chained-raw-crash
• Additional commits viewable in compare view

Updates selenium-webdriver from 4.44.0 to 4.45.0

Release notes

Sourced from selenium-webdriver's releases.

Selenium 4.45.0

Detailed Changelogs by Component

Java     |     Python     |     DotNet     |     Ruby     |     JavaScript

What's Changed

• [build] derive PR diff base from HEAD^1 instead of trunk tip by @​titusfortner in SeleniumHQ/selenium#17438
• [build] setup trusted publishing from Github to npmrc by @​titusfortner in SeleniumHQ/selenium#17445
• [build] generate release notes from previous minor release tag by @​titusfortner in SeleniumHQ/selenium#17449
• [build] fix when to update lock files during the release process by @​titusfortner in SeleniumHQ/selenium#17450
• [java] remove deprecated logging classes by @​titusfortner in SeleniumHQ/selenium#17453
• [grid] Close pre-handshake race in WebSocket proxy by @​shs96c in SeleniumHQ/selenium#17435
• [JavaScript] Correct handling for older browsers and missing casing by @​AutomatedTester in SeleniumHQ/selenium#17451
• Use pyproject for Python runtime deps lock input by @​titusfortner in SeleniumHQ/selenium#17452
• [rb] deprecate curb http client support by @​titusfortner in SeleniumHQ/selenium#17443
• [javascript] Migrate find-elements atom from Closure to TypeScript by @​AutomatedTester in SeleniumHQ/selenium#17458
• [py] replace rules_python sphinxdocs with local sphinx_docs rule by @​titusfortner in SeleniumHQ/selenium#17461
• [build] Configure Renovate dashboard approval by @​titusfortner in SeleniumHQ/selenium#17464
• [js] update vulnerable dependency with a range by @​titusfortner in SeleniumHQ/selenium#17466
• [build] remove duplicated grid ui tests by @​titusfortner in SeleniumHQ/selenium#17468
• [build] update java graphpql dependency by filtering out bad reference by @​titusfortner in SeleniumHQ/selenium#17469
• [rb] upgrade to steep 2.0 by @​titusfortner in SeleniumHQ/selenium#17470
• [rust] update dependencies by @​titusfortner in SeleniumHQ/selenium#17472
• [build] update GitHub Actions to latest major versions by @​titusfortner in SeleniumHQ/selenium#17475
• [dotnet] update dev dependencies by @​titusfortner in SeleniumHQ/selenium#17474
• [dotnet] fix template caching by @​titusfortner in SeleniumHQ/selenium#17476
• [dotnet] update system.text.json to 8.0.6 by @​titusfortner in SeleniumHQ/selenium#17477
• [js] update dev dependencies by @​titusfortner in SeleniumHQ/selenium#17479
• [dotnet] upgrade paket from v9 to v10 by @​titusfortner in SeleniumHQ/selenium#17481
• [build] bump bazel version to 9.1 by @​titusfortner in SeleniumHQ/selenium#17480
• [rust] update zip to v8 by @​titusfortner in SeleniumHQ/selenium#17485
• [js] update eslint to v10 with fixes by @​titusfortner in SeleniumHQ/selenium#17482
• [rb] Update ruby to 3.3.9 by @​aguspe in SeleniumHQ/selenium#17484
• [dotnet] include snupkg files when packaging things up and allow the use of sourcelink by @​AutomatedTester in SeleniumHQ/selenium#17467
• [build] update download-artifact to v8 by @​titusfortner in SeleniumHQ/selenium#17493
• [dotnet] run format against slnx instead of looping csproj by @​titusfortner in SeleniumHQ/selenium#17483
• [build] bump low-risk Bazel module dependencies by @​titusfortner in SeleniumHQ/selenium#17494
• [rust] update reqwest to 0.13 by @​titusfortner in SeleniumHQ/selenium#17488
• [dotnet] [build] Fix remote linkage in SourceLink by @​nvborisenko in SeleniumHQ/selenium#17495
• [build] remove renovate update requests pending work done in #17427 by @​titusfortner in SeleniumHQ/selenium#17498
• [dotnet] [build] Support deterministic build output by @​nvborisenko in SeleniumHQ/selenium#17497
• [build] bump ruby versions to latest patch releases by @​titusfortner in SeleniumHQ/selenium#17496
• [js] remove npm dependency by using bazel for everything by @​titusfortner in SeleniumHQ/selenium#17499
• [build] bump rules_jvm_external by @​titusfortner in SeleniumHQ/selenium#17501
• [build] bump rules_closure version by @​titusfortner in SeleniumHQ/selenium#17500
• [build] clarify dependency pin and update tasks by @​titusfortner in SeleniumHQ/selenium#17463

... (truncated)

Changelog

Sourced from selenium-webdriver's changelog.

4.45.0 (2026-06-15)

• Support CDP versions: v147, v148, v149
• deprecate curb http client support (#17443)
• move Ruby bindings to use typescript get attribute atom (#17524)
• Move atoms to use the typescript versions (#17532)
• deprecate Chromium Profile classes (#17557)
• update bazel test tags (#17558)
• separate concerns between Service, DriverFinder, and Options (#17564)
• fix using environment variables to set drivers (#17571)
• create more obvious test guard keywords as aliases (#17636)

Commits

• cd6a3cd [build] Prepare for release of selenium-4.45.0 (#17680)
• bb741bd [build] Automated Browser Version Update (#17658)
• f53de51 [rb] run minimize test on linux now that #17644 fixed fluxbox startup
• 3f37cce [rb] set window state before each window test instead of resetting driver
• 2bfb990 [rb] skip Safari double_click action tests
• 6008ae6 [rb] skip double_click action test on Safari
• bf0edc8 [rb] create more obvious test guard keywords as aliases (#17636)
• c474d76 [build] Automated Browser Version Update (#17609)
• 13c5344 [rb] streamline tests on github actions runners (#17550)
• 79af12b [rb] stabilize tests and remove driver-restart workaround in manager spec
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions