Skip to content

Bump dalli from 5.0.2 to 5.0.4#4639

Merged
CloCkWeRX merged 1 commit into
devfrom
dependabot/bundler/dalli-5.0.4
May 20, 2026
Merged

Bump dalli from 5.0.2 to 5.0.4#4639
CloCkWeRX merged 1 commit into
devfrom
dependabot/bundler/dalli-5.0.4

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 18, 2026
edited
Loading

Bumps dalli from 5.0.2 to 5.0.4.

Changelog

Sourced from dalli's changelog.

5.0.4

Bug fixes:

  • Fix string_fastpath flag collision with compression (#1099)

    • ValueSerializer::FLAG_UTF8 and ValueCompressor::FLAG_COMPRESSED were both 0x2, causing Dalli::UnmarshalError on any UTF-8 string written with string_fastpath: true when compression is enabled, and silent encoding corruption for binary strings
    • Introduces Dalli::Flags to centralise bit flag constants; UTF8 is reassigned to 0x4
    • Adds regression test covering short/long UTF-8, binary, and cross-client read scenarios
    • Thanks to Jean Boussier and Mikael Henriksson for the fix and regression test

  • Fix client-level string_fastpath: true being silently ignored (#1101)

    • Dalli::Client.new(servers, string_fastpath: true) had no effect; the fast path was only taken when string_fastpath: true was passed as a per-request option on each set call
    • Per-request option continues to take precedence over the client-level setting in both directions

5.0.3

Performance:

  • Eliminate double array allocation in Client#perform (#1093)
    • Changed method signature from perform(*all_args) with destructuring to perform(op, key, *args), letting Ruby decompose arguments directly without intermediate array allocations
    • Reduces benchmark time by ~39% across all Dalli operations (get, set, delete, etc.)
    • Thanks to Sam Obeid for this contribution

Features:

  • Support connect_timeout: keyword argument with resolv-replace >= 0.2.0, which now correctly forwards keyword arguments through its TCPSocket patch (#1096)

  • Add Dalli::Instrumentation.disable! to allow disabling OpenTelemetry instrumentation at runtime (#1088)

    • Also exposes Dalli::Instrumentation.tracer= for setting a custom tracer
Commits
  • 988f611 Merge pull request #1102 from petergoldstein/release/5.0.4
  • c0c5aa6 Prepare 5.0.4 release
  • 91e3756 Merge pull request #1101 from petergoldstein/fix/client-level-string-fastpath
  • 8ea68f4 Add CHANGELOG entry for client-level string_fastpath fix
  • 60c9dca Fix client-level string_fastpath: true being silently ignored
  • 5837ca2 Merge pull request #1099 from petergoldstein/fix/string-fastpath-flag-collision
  • a85c980 Add CHANGELOG entry for string_fastpath flag collision fix
  • 6ae5a54 Add regression test for string_fastpath/compression flag collision
  • 3ef5b7b Fix the string_fastpath option to not comflict with compression
  • 405cdda Merge pull request #1097 from petergoldstein/release/5.0.3
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies ruby Pull requests that update Ruby code labels May 18, 2026
@dependabot dependabot Bot force-pushed the dependabot/bundler/dalli-5.0.4 branch 2 times, most recently from 588c752 to 3680c12 Compare May 19, 2026 09:13
@dependabot
Bump dalli from 5.0.2 to 5.0.4
10563c8 
Bumps [dalli](https://github.com/petergoldstein/dalli) from 5.0.2 to 5.0.4.
- [Changelog](https://github.com/petergoldstein/dalli/blob/main/CHANGELOG.md)
- [Commits](petergoldstein/dalli@v5.0.2...v5.0.4)

---
updated-dependencies:
- dependency-name: dalli
  dependency-version: 5.0.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/bundler/dalli-5.0.4 branch from 3680c12 to 10563c8 Compare May 19, 2026 10:27
@CloCkWeRX CloCkWeRX merged commit ee6d5cd into dev May 20, 2026
16 checks passed
@CloCkWeRX CloCkWeRX deleted the dependabot/bundler/dalli-5.0.4 branch May 20, 2026 03:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies ruby Pull requests that update Ruby code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@CloCkWeRX