Update bundler requirement from ~> 1.16 to ~> 2.5

[dependabot]

Updates the requirements on bundler to permit the latest version.

Release notes

Sourced from bundler's releases.

bundler-v2.5.1

Bug fixes:

• Fix ruby Gemfile DSL with file: parameter no longer working #7288

Performance:

• Save array allocation for every dependency in Gemfile #7270

Changelog

Sourced from bundler's changelog.

2.5.1 (December 15, 2023)

Bug fixes:

• Fix ruby Gemfile DSL with file: parameter no longer working #7288

Performance:

• Save array allocation for every dependency in Gemfile #7270

2.5.0 (December 15, 2023)

Breaking changes:

• Drop ruby 2.6 and 2.7 support #7116
• The :mswin, :mswin64, :mingw, and :x64_mingw Gemfile platform values are soft-deprecated and aliased to :windows #6391

Features:

• Leverage ruby feature to warn when requiring default gems not included in the bundle that will be turned into bundled gems in the future #6831
• Introduce bundle config set version feature to choose the version of Bundler that should be used and potentially disable using the lockfile version by setting it to system #6817

Performance:

• Use match? when regexp match data is unused #7263
• Avoid some allocations when evaluating ruby Gemfile DSL #7251
• Reduce array allocations when loading definition #7199
• Avoid re-compiling static regexp in a loop #7198
• Reduce allocations when installing gems with bundler #6977
• Use a shared connection pool for fetching gems #7079
• Reduce allocations when parsing compact index #6971

Enhancements:

• Add 3.4 as a supported ruby version in Gemfile DSL #7264
• Improve install advice when some gems are not found #7265
• Vendor net-http, net-protocol, resolv, and timeout to reduce conflicts between Gemfile gems and internal dependencies #6793
• Allow bundle pristine to run in parallel #6927
• Make bundle lock always touch the lockfile in non-frozen mode #7220
• Use Minitest::TestTask in a template file for minitest #7234
• Add missing services to CI detection and make it consistent between RubyGems and Bundler #7205
• Allow auto-install to install missing git gems #7197
• Stop remembering cli flags like --jobs or --retry in configuration #7191
• Simplify remembered flags deprecation message #7189
• Make sure to require "rubygems" explicitly #7139
• Handle development dependencies duplicated in gemspec vs Gemfile #6014
• Make lockfiles generated on macOS include a lock for Linux by default #5700
• Only add a dummy bundler spec to the metadata source when necessary #4443

Bug fixes:

... (truncated)

Commits

• a0091ac Bump Bundler version to 2.5.1
• c6ccf0c Changelog for Bundler version 2.5.1
• db72ba2 Merge pull request #7283 from rubygems/checksum-mutex
• 886781f Merge pull request #7288 from rubygems/fix-ruby-dsl
• e161e18 Merge pull request #7269 from rubygems/segiddins/use-mkdir_p-helper-in-bundle...
• d05e09c Merge pull request #7270 from rubygems/segiddins/save-array-allocation-for-ev...
• 742b795 Merge pull request #7285 from rubygems/segiddins/verify-vendored-code
• 153ed73 Bump Bundler version to 2.5.0
• 258d09a Changelog for Bundler version 2.5.0
• 0ae1510 Merge pull request #7280 from rubygems/pass-on-release-docs
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)