Bump trestle from 0.9.4 to 0.9.5

[dependabot-preview[bot]]

Bumps trestle from 0.9.4 to 0.9.5.

Release notes

Sourced from trestle's releases.

v0.9.5

• Add support for scope groups (#322)

scopes do
  scope :first, group: "Group Name"
  scope :second, group: "Group Name"
scope :third, group: "Another Group"
end
Default layout is :row. Scope groups will automatically stack for mobile devices.
scopes layout: :columns do ...
Disable grouping regardless of scope definitions
scopes group: false do ...
Specify custom classes on the scopes container div
scopes class: "scope-tags" do ...

• Allow default navigation group state to be set to collapsed (#332)

menu do
  group :configuration, collapse: true do
    item ...
  end
end

• Update to Bootstrap 4.6.0, FontAwesome 5.15.2, Flatpickr 4.6.9, rails-ujs 6.1.2
• Update form field error state to show all error messages (#331)
• Fix incorrect admin controller parent class autoloading issues (#329)
• Fix potential XSS cookie injection vulnerability (#341)
• Fix keyword argument forwarding for Ruby 3 (#342)
• Added Rails 6.1 and Ruby 3 to Travis CI tests

Commits

• 4898d98 Increment version to 0.9.5
• 01dce4c Update remaining JS dependencies
• d88cf4a Update FontAwesome to 5.15.2
• d6a16a5 Update Flatpickr to 4.6.9
• f30ba11 Update Bootstrap to 4.6.0
• 3f3fc3c Update JS pipeline dependencies
• 25b25c2 Hide empty scope group when rendering for mobile
• e8dfeb1 Add specs for scope group updates
• 0335026 Add scope class layout/class options to DSL
• 79049ab Work on revised design for scope groups
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)