Bump mini_magick from 4.13.1 to 5.0.0

[dependabot]

Bumps mini_magick from 4.13.1 to 5.0.0.

Release notes

Sourced from mini_magick's releases.

v5.0.0

Improvements

• New class method shorthands were added for the tool API:

  # BEFORE
  MiniMagick::Tool::Convert.new { |convert| ... }
  MiniMagick::Tool::Identify.new { |convert| ... }
  # ...
  AFTER
  MiniMagick.convert { |convert| ... }
  MiniMagick.identify { |identify| ... }
  ...

• Image#write now deletes the underlying tempfile if Image.open was used, instead of relying on the tempfile to eventually be garbage collected.

Backwards compatibility

• Removed official GraphicsMagick support. GraphicsMagick can be used by setting cli_prefix:

  MiniMagick.configure do |config|
    config.cli_prefix = "gm"
  end

  Some features won't be supported, such as MiniMagick.timeout (GraphicsMagick doesn't support time limits), Image#data (GraphicsMagick doesn't support JSON image details) and Image#exif (returns different format).

  As a result, MiniMagick.cli and MiniMagick.processor configuration has been removed as well.

• MiniMagick::Image and MiniMagick.convert now use magick instead of the deprecated magick convert on ImageMagick 7. This should be backwards compatible, but there might be small differences in options and behavior.

• Removed deprecated posix-spawn shell backend, along with MiniMagick.shell_api configuration.

  Ruby 2.x has long used vfork, so there is no performance advantage of using posix-spawn. Additionally, Ruby 3.x has switched to non-blocking pipes, which should resolve deadlocks people experienced with Open3. See minimagick/minimagick#558 for more details.

• Removed obsolete Image#run_command.

• Removed deprecated Image#mime_type, as it wasn't accurate.

  MIME type from file content should be determined either using Marcel or MimeMagic, or mime-types or MiniMime using Image#type.

• The MiniMagick::Tool::* classes have been deprecated in favor of the class-level interface.

• The MiniMagick.timeout configuration now uses the native ImageMagick timeout environment variable $MAGICK_TIME_LIMIT. This variable doesn't support timeouts lower than 1 second.

• The MiniMagick.whiny configuration has been renamed to MiniMagick.errors.

... (truncated)

Commits

• bbb9619 Bump to 5.0.0
• bb772cc README tweaks
• 9a96b6c Delete tempfile after Image#write
• 272857b Branch URL and path once in Image.open
• c943f22 Require keyword arguments for Image.open
• e12ed86 Reuse Image.read in Image.import_pixels
• e10b382 Silence stderr in spec
• 74fafc6 Improve ergonomics of using tools directly
• f3def2d Change implementation of restricting #format
• c283ee6 Use native ImageMagick time limit for timeout
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #144.