Bump dependabot-omnibus from 0.253.0 to 0.256.0 in /updater

[dependabot]

Bumps dependabot-omnibus from 0.253.0 to 0.256.0.

Release notes

Sourced from dependabot-omnibus's releases.

v0.256.0

What's Changed

• Bump @​npmcli/arborist from 7.4.2 to 7.5.1 in /npm_and_yarn/helpers in the npm-dependencies group across 1 directory by @​dependabot in dependabot/dependabot-core#9655
• Dependabot core issue npe composer fileparser by @​GarryHurleyJr in dependabot/dependabot-core#9643
• Use pnpm@9 for lockfile >= 9.0 by @​tusbar in dependabot/dependabot-core#9668
• Bump eslint from 9.1.1 to 9.2.0 in /npm_and_yarn/helpers in the dev-dependencies group by @​dependabot in dependabot/dependabot-core#9674
• experimental glob support by @​jakecoffman in dependabot/dependabot-core#9646
• Update bundler module to ruby 3.3.1 by @​DuncSmith in dependabot/dependabot-core#9679
• Bump library/rust from 1.77.2-bookworm to 1.78.0-bookworm in /cargo by @​dependabot in dependabot/dependabot-core#9675
• Bump the sorbet group across 2 directories with 3 updates by @​dependabot in dependabot/dependabot-core#9686
• Bump actions/create-github-app-token from 1.9.3 to 1.10.0 in the all-actions group by @​dependabot in dependabot/dependabot-core#9676
• allow 4 part version numbers for transitive dependencies by @​brettfo in dependabot/dependabot-core#9689
• fix exceptions from integration tests due to no metadata finders by @​jakecoffman in dependabot/dependabot-core#9697
• v0.256.0 by @​dependabot-core-action-automation in dependabot/dependabot-core#9691

New Contributors

• @​GarryHurleyJr made their first contribution in dependabot/dependabot-core#9643
• @​tusbar made their first contribution in dependabot/dependabot-core#9668
• @​DuncSmith made their first contribution in dependabot/dependabot-core#9679

Full Changelog: dependabot/dependabot-core@v0.255.0...v0.256.0

v0.255.0

What's Changed

• Bump composer/composer from 2.7.2 to 2.7.4 in /composer/helpers/v2 in the prod-dependencies group across 1 directory by @​dependabot in dependabot/dependabot-core#9590
• #5246:removing the leading underscore restriction in the package naming. by @​raj-meka in dependabot/dependabot-core#9569
• allow updating package without assemblies from packages.config by @​brettfo in dependabot/dependabot-core#9542
• Bump library/rust from 1.75.0-bookworm to 1.77.2-bookworm in /cargo by @​dependabot in dependabot/dependabot-core#9585
• chore(python): target latest python versions 3.12.3, 3.11.9 by @​nimirium in dependabot/dependabot-core#9526
• Fix error thrown when updating dependencies in poetry non-package mode by @​ewilliamson-patreon in dependabot/dependabot-core#9400
• Update version_resolver to support yarn v4 by @​jpandersen87 in dependabot/dependabot-core#9405
• #9508: Recreating and Handling "Name contains illegal characters" in package.json by @​thavaahariharangit in dependabot/dependabot-core#9611
• don't sent dotnet telemetry by @​brettfo in dependabot/dependabot-core#9614
• Add simplecov to track test coverage by @​JamieMagee in dependabot/dependabot-core#9595
• Add scorecards analysis by @​JamieMagee in dependabot/dependabot-core#9589
• #9555:sorbet error fix by @​raj-meka in dependabot/dependabot-core#9622
• Bump plette from 0.4.4 to 2.0.2 in /python/helpers by @​dependabot in dependabot/dependabot-core#9630
• Bump the sorbet group across 1 directory with 2 updates by @​dependabot in dependabot/dependabot-core#9632
• Sign remaining images with cosign by @​JamieMagee in dependabot/dependabot-core#9615
• Enable Docker content trust by @​JamieMagee in dependabot/dependabot-core#9620
• Bump Ruby to 3.3.1 by @​jurre in dependabot/dependabot-core#9597
• Bump toml-rb from 2.2.0 to 3.0.1 by @​dependabot in dependabot/dependabot-core#9580
• Resolve some Sorbet errors in Terraform by @​JamieMagee in dependabot/dependabot-core#9635
• Strict type Dependabot::NpmAndYarn::FileUpdater::NpmrcBuilder by @​JamieMagee in dependabot/dependabot-core#9637
• Specify patch levels for previous Rubies by @​landongrindheim in dependabot/dependabot-core#9645
• Add support for Cargo private registries by @​CodingAnarchy in dependabot/dependabot-core#8719
• Allow NuGet dependencies to exist with duplicate names but different dependency types by @​DavidBoike in dependabot/dependabot-core#9642
• Bump the pnpm-dependencies group in /npm_and_yarn/helpers with 2 updates by @​dependabot in dependabot/dependabot-core#9562
• Bump the pnpm-dependencies group across 1 directory with 2 updates by @​dependabot in dependabot/dependabot-core#9651
• Improve handling for hashing unknown packages by @​jurre in dependabot/dependabot-core#9556

... (truncated)

Commits

• a249cf2 Merge pull request #9691 from dependabot/bump-to-v0.256.0
• 9ec8695 v0.256.0
• e8f477a fix exceptions from integration tests due to no metadata finders (#9697)
• ac4d094 Merge pull request #9689 from dependabot/dev/brettfo/nuget-4-part-version
• 2c76626 allow 4 part version numbers for transitive dependencies
• e5ec7e9 Merge pull request #9676 from dependabot/dependabot/github_actions/all-action...
• 6c18035 Bump actions/create-github-app-token in the all-actions group
• 22e8af1 Merge pull request #9686 from dependabot/dependabot/bundler/sorbet-6812210d0d
• c03d426 Bump the sorbet group across 2 directories with 3 updates
• 9a32ecc Merge pull request #9675 from dependabot/dependabot/docker/cargo/library/rust...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #1125.