build(deps): bump govuk-components and view_component

[dependabot]

Bumps govuk-components and view_component. These dependencies needed to be updated together.
Updates govuk-components from 5.0.1 to 5.0.2

Release notes

Sourced from govuk-components's releases.

v5.0.2

• Massive update to the guide, huge thanks to @​paulrobertlloyd for taking it on #486, #490
• Add cannot_start_yet argument to task list status component, which marks rows as not being startable and greys the action out #488
• Bump ViewComponent to 3.9.0 which adds some extra safety around dealing with raw HTML, thanks @​benilovj for raising and dealing with this

Commits

• b2424bb Release version 5.0.2
• ea993ca Upgrade to rubocop-govuk 4.13.0 (#493)
• c95cf76 Upgrade to rubocop-govuk 4.13.0
• 1d7c7b6 Bump ViewComponent to v3.9.0 (#492)
• eef1e42 HTML escape text in GovukComponent::TabComponent::Tab
• 984cd31 Fix guide build to work with ViewComponent 3.9.0
• 2913217 Bump ViewComponent to v3.9.0
• a9e260d Add cannot_start_yet argument to the task list status component (#488)
• 5fa1e33 Fail when there's both a href and cannot_start_yet
• 4c1b49d Add cannot_start_yet argument to task list status
• Additional commits viewable in compare view

Updates view_component from 3.8.0 to 3.9.0

Release notes

Sourced from view_component's releases.

v3.9.0

• Don’t break rails stats if ViewComponent path is missing.

  Claudio Baccigalupo

• Add deprecation warnings for EOL ruby and Rails versions and patches associated with them.

  Reegan Viljoen

• Add support for Ruby 3.3.

  *Reegan Viljoen*
  

• Allow translations to be inherited and overridden in subclasses.

  Elia Schito

• Resolve console warnings when running test suite.

  Joel Hawksley

• Fix spelling in a local variable.

  Olle Jonsson

• Avoid duplicating rendered string when output_postamble is blank.

  Mitchell Henke

• Ensure HTML output safety.

  Cameron Dutro

Changelog

Sourced from view_component's changelog.

3.9.0

• Don’t break rails stats if ViewComponent path is missing.

  Claudio Baccigalupo

• Add deprecation warnings for EOL ruby and Rails versions and patches associated with them.

  Reegan Viljoen

• Add support for Ruby 3.3.

  *Reegan Viljoen*
  

• Allow translations to be inherited and overridden in subclasses.

  Elia Schito

• Resolve console warnings when running test suite.

  Joel Hawksley

• Fix spelling in a local variable.

  Olle Jonsson

• Avoid duplicating rendered string when output_postamble is blank.

  Mitchell Henke

• Ensure HTML output safety.

  Cameron Dutro

Commits

• c8462c2 release 3.9.0 (#1952)
• 0d26944 Ensure HTML output safety (#1950)
• 78dbac2 Don't break "rails stats" if app/components is missing (#1927)
• 31fafe3 Avoid allocating new string when output_postamble is blank (#1911)
• d5f2544 Add deprecation warnings for EOL Rails and Ruby and the associated work aroun...
• a5ccdef Add support for ruby3.3 (#1948)
• 6ae727f Bump standard from 1.32.1 to 1.33.0 (#1949)
• 782fed3 Bump net-imap from 0.4.8 to 0.4.9 (#1946)
• b194b4e Bump debug from 1.9.0 to 1.9.1 (#1947)
• ff46909 Adding example for 3.x migration (#1876)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[sonarqubecloud]

Quality Gate passed

Kudos, no new issues were introduced!

0 New issues
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarCloud

[colinbruce]

As this updates the task list component to:

Add cannot_start_yet argument to task list status component, which marks rows as not being startable and greys the action

Should we create a ticket to see if it can simplify our code?