gitlab-styles 13.1.0 → 14.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 5e57fcdf2fdb535c445887ec28fe2c32809c24b90cf0202a27cf04f086c32fbc
-  data.tar.gz: '074834caba51bf818e60afdffe2260f644d270d065af3eb46dd256d6deb90d5c'
+  metadata.gz: 97c5d02f5527dfe3cfecf408460d9613ca6b2d820d21ebd95d39dbc79f3b94b8
+  data.tar.gz: 92ade99f8c31fa1617d47c80a575fe572d67a03f113c2aff9417932bca74b305
 SHA512:
-  metadata.gz: 60c696ef6dcde1baac7ff18ba02267f1d275182cf4ffa0bdfe400c7144ae8100bfc9f15e3faea4597e45afc3dd18e3445fda8b55ce1b9251ca57b985f682ab40
-  data.tar.gz: 980a9c08bf84a10dc151c188b66cc60d3e42a953aea058955ad65bc6d8ad32d7498f154ce74257b71a1ef620d58cd3ef1f28c0025f2547c17eb5b5be02e60bb8
+  metadata.gz: 3d189c88f35cf67f0c211f40a27cd2bcac2b6964e0719279bcb4ae28601c98381150752332a0f894aedd1c7e0a57a3160ca44cc1877629594fa1eea737668e36
+  data.tar.gz: 30b2281cdb5ec7b966065ed926cdacbbcd7bdd9de66b85be0e7eb1758057759add13080e7a7c4c0c63ba5f2603c6ad8f863e8b7ccc44e412bb40bd2e0fc27ccf

data/.gitlab/merge_request_templates/New Static Analysis Check.md

@@ -11,11 +11,37 @@ Please describe the proposal and add a link to the source (for example, http://w
   - CHOICE_A: :a:
   - CHOICE_B: :b:
   - Vote yourself for both choices so that people know these are the choices
+- [ ] Provide the impact of the proposal on `gitlab-org/gitlab`
 - [ ] The MR doesn't have significant objections, and is getting a majority of :+1: vs :-1: (remember that [we don't need to reach a consensus](https://about.gitlab.com/handbook/values/#collaboration-is-not-consensus))
 - [ ] (If applicable) One style is getting a majority of vote (compared to the other choice)
 - [ ] (If applicable) Update the MR with the chosen style
 - [ ] Follow the [review process](https://docs.gitlab.com/ee/development/code_review.html) as usual
 
+### Impact on gitlab-org/gitlab>
+
+<!--
+
+1. In monolith's Gemfile, point `gitlab-styles` gem to this very MR branch.
+
+    For example, in Gemfile:
+
+        ...
+        gem 'gitlab-styles', '~> 13.1.0', require: false,
+            git: 'https://gitlab.com/gitlab-org/ruby/gems/gitlab-styles.git',
+            ref: '<MR branch>' # rubocop:disable Cop/GemFetcher
+        ...
+
+2. Run `bundle update`
+3. Run `bundle exec rubocop --only <cop/rule> | pbcopy`
+4. Paste the output below
+
+-->
+
+```
+[Paste the output here]
+```
+
+
 /label ~"Engineering Productivity" ~"development guidelines" ~"static code analysis"
 
 /cc @gitlab-org/maintainers/rails-backend

data/.gitlab-ci.yml

@@ -16,7 +16,7 @@ default:
     - gitlab-org
 
 .base-ruby-job:
-  image: "ruby:${RUBY_VERSION}"
+  image: "${GITLAB_DEPENDENCY_PROXY}ruby:${RUBY_VERSION}"
   before_script:
     - bundle_version=$(grep -A 1 "BUNDLED WITH" Gemfile.lock | grep -oE '[[:digit:].]+')
     - gem install bundler --version "$bundle_version" --no-document  # Bundler is not installed with the image

data/.rubocop_todo.yml

@@ -1,27 +1,11 @@
 # This configuration was generated by
 # `rubocop --auto-gen-config --exclude-limit 10000`
-# on 2025-02-02 02:50:28 UTC using RuboCop version 1.71.0.
+# on 2026-01-26 16:12:08 UTC using RuboCop version 1.81.7.
 # The point is for the user to remove these configuration records
 # one by one as the offenses are removed from the code base.
 # Note that changes in the inspected code, or installation of new
 # versions of RuboCop, may require this file to be generated again.
 
-# Offense count: 11
-# This cop supports safe autocorrection (--autocorrect).
-InternalAffairs/CopDescriptionWithExample:
-  Exclude:
-    - 'lib/rubocop/cop/fips/md5.rb'
-    - 'lib/rubocop/cop/fips/open_ssl.rb'
-    - 'lib/rubocop/cop/fips/sha1.rb'
-    - 'lib/rubocop/cop/gem_fetcher.rb'
-    - 'lib/rubocop/cop/gitlab_security/deep_munge.rb'
-    - 'lib/rubocop/cop/in_batches.rb'
-    - 'lib/rubocop/cop/internal_affairs/deprecate_cop_helper.rb'
-    - 'lib/rubocop/cop/line_break_around_conditional_block.rb'
-    - 'lib/rubocop/cop/migration/update_large_table.rb'
-    - 'lib/rubocop/cop/performance/rubyzip.rb'
-    - 'lib/rubocop/cop/polymorphic_associations.rb'
-
 # Offense count: 10
 InternalAffairs/MissingCopDepartment:
   Exclude:

data/Gemfile.lock

@@ -1,15 +1,15 @@
 PATH
   remote: .
   specs:
-    gitlab-styles (13.1.0)
-      rubocop (= 1.71.1)
-      rubocop-capybara (~> 2.21.0)
-      rubocop-factory_bot (~> 2.26.1)
-      rubocop-graphql (~> 1.5.4)
-      rubocop-performance (~> 1.21.1)
-      rubocop-rails (~> 2.26.0)
-      rubocop-rspec (~> 3.0.4)
-      rubocop-rspec_rails (~> 2.30.0)
+    gitlab-styles (14.1.0)
+      rubocop (= 1.81.7)
+      rubocop-capybara (= 2.21.0)
+      rubocop-factory_bot (= 2.26.1)
+      rubocop-graphql (= 1.5.4)
+      rubocop-performance (= 1.23.1)
+      rubocop-rails (= 2.29.1)
+      rubocop-rspec (= 3.4.0)
+      rubocop-rspec_rails (= 2.30.0)
 
 GEM
   remote: https://rubygems.org/
@@ -101,6 +101,7 @@ GEM
       kramdown (~> 2.0)
     language_server-protocol (3.17.0.3)
     lefthook (1.3.13)
+    lint_roller (1.1.0)
     method_source (1.0.0)
     mini_mime (1.1.5)
     minitest (5.18.0)
@@ -113,9 +114,10 @@ GEM
       sawyer (~> 0.9)
     open4 (1.3.4)
     parallel (1.24.0)
-    parser (3.3.1.0)
+    parser (3.3.10.0)
       ast (~> 2.4.1)
       racc
+    prism (1.6.0)
     proc_to_ast (0.1.0)
       coderay
       parser
@@ -156,35 +158,37 @@ GEM
       binding_of_caller
       rspec-parameterized-core (< 2)
     rspec-support (3.12.0)
-    rubocop (1.71.1)
+    rubocop (1.81.7)
       json (~> 2.3)
-      language_server-protocol (>= 3.17.0)
+      language_server-protocol (~> 3.17.0.2)
+      lint_roller (~> 1.1.0)
       parallel (~> 1.10)
       parser (>= 3.3.0.2)
       rainbow (>= 2.2.2, < 4.0)
       regexp_parser (>= 2.9.3, < 3.0)
-      rubocop-ast (>= 1.38.0, < 2.0)
+      rubocop-ast (>= 1.47.1, < 2.0)
       ruby-progressbar (~> 1.7)
       unicode-display_width (>= 2.4.0, < 4.0)
-    rubocop-ast (1.38.0)
-      parser (>= 3.3.1.0)
+    rubocop-ast (1.48.0)
+      parser (>= 3.3.7.2)
+      prism (~> 1.4)
     rubocop-capybara (2.21.0)
       rubocop (~> 1.41)
     rubocop-factory_bot (2.26.1)
       rubocop (~> 1.61)
     rubocop-graphql (1.5.4)
       rubocop (>= 1.50, < 2)
-    rubocop-performance (1.21.1)
+    rubocop-performance (1.23.1)
       rubocop (>= 1.48.1, < 2.0)
       rubocop-ast (>= 1.31.1, < 2.0)
-    rubocop-rails (2.26.0)
+    rubocop-rails (2.29.1)
       activesupport (>= 4.2.0)
       rack (>= 1.1)
       rubocop (>= 1.52.0, < 2.0)
       rubocop-ast (>= 1.31.1, < 2.0)
     rubocop-rake (0.6.0)
       rubocop (~> 1.0)
-    rubocop-rspec (3.0.4)
+    rubocop-rspec (3.4.0)
       rubocop (~> 1.61)
     rubocop-rspec_rails (2.30.0)
       rubocop (~> 1.61)

data/README.md

@@ -19,6 +19,19 @@ Or install it yourself as:
 
     $ gem install gitlab-styles
 
+## Why We Pin Gem Versions
+
+`gitlab-styles` pins specific versions of RuboCop and related gems (e.g., `rubocop-rails`, `rubocop-rspec`, `rubocop-performance`) to ensure **consistent rule configuration and behavior across all GitLab projects**.
+
+When gems are left unpinned, minor or patch version updates can introduce:
+
+- **New or modified RuboCop rules** that may conflict with your project's configuration
+- **Inconsistent linting results** across different environments and CI/CD pipelines
+- **Unexpected build failures** when developers or CI systems install different versions
+- **Configuration drift** between projects using `gitlab-styles`
+
+By pinning versions, we guarantee that all projects using `gitlab-styles` enforce the same coding standards and rules, regardless of when they install the gem.
+
 ## Usage
 
 ### Inherit all rules

data/gitlab-styles.gemspec

@@ -22,14 +22,14 @@ Gem::Specification.new do |spec|
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ['lib']
 
-  spec.add_dependency 'rubocop', '1.71.1'
-  spec.add_dependency 'rubocop-capybara', '~> 2.21.0'
-  spec.add_dependency 'rubocop-factory_bot', '~> 2.26.1'
-  spec.add_dependency 'rubocop-graphql', '~> 1.5.4'
-  spec.add_dependency 'rubocop-performance', '~> 1.21.1'
-  spec.add_dependency 'rubocop-rails', '~> 2.26.0'
-  spec.add_dependency 'rubocop-rspec', '~> 3.0.4'
-  spec.add_dependency 'rubocop-rspec_rails', '~> 2.30.0'
+  spec.add_dependency 'rubocop', '1.81.7'
+  spec.add_dependency 'rubocop-capybara', '2.21.0'
+  spec.add_dependency 'rubocop-factory_bot', '2.26.1'
+  spec.add_dependency 'rubocop-graphql', '1.5.4'
+  spec.add_dependency 'rubocop-performance', '1.23.1'
+  spec.add_dependency 'rubocop-rails', '2.29.1'
+  spec.add_dependency 'rubocop-rspec', '3.4.0'
+  spec.add_dependency 'rubocop-rspec_rails', '2.30.0'
 
   spec.add_development_dependency 'bundler', '~> 2.1'
   spec.add_development_dependency 'gitlab-dangerfiles', '~> 4.6.0'

data/lib/gitlab/styles/version.rb

@@ -2,6 +2,6 @@
 
 module Gitlab
   module Styles
-    VERSION = '13.1.0'
+    VERSION = '14.1.0'
   end
 end

data/lib/rubocop/cop/avoid_return_from_blocks.rb

@@ -67,8 +67,7 @@ module Rubocop
       end
 
       def def?(node)
-        node.type?(:def, :defs) ||
-          (node.block_type? && DEF_METHODS.include?(node.method_name))
+        node.any_def_type? || (node.block_type? && DEF_METHODS.include?(node.method_name))
       end
 
       def allowed?(block_node)

data/lib/rubocop/cop/fips/md5.rb

@@ -5,6 +5,16 @@ require_relative '../../../gitlab/styles/common/banned_constants'
 module Rubocop
   module Cop
     module Fips
+      # Checks for the usage of MD5, which is not FIPS-compliant.
+      # It suggests using a FIPS-compliant alternative like SHA256.
+      #
+      # @example
+      #   # bad
+      #   OpenSSL::Digest::MD5.hexdigest('foo')
+      #   Digest::MD5.hexdigest('foo')
+      #
+      #   # good
+      #   OpenSSL::Digest::SHA256.hexdigest('foo')
       class MD5 < RuboCop::Cop::Base
         include Gitlab::Styles::Common::BannedConstants
 

data/lib/rubocop/cop/fips/open_ssl.rb

@@ -5,6 +5,17 @@ require_relative '../../../gitlab/styles/common/banned_constants'
 module Rubocop
   module Cop
     module Fips
+      # Flags usage of the Digest class (which is not FIPS-compliant) and suggests replacing it with OpenSSL::Digest
+      # (which is FIPS-compliant).
+      #
+      # @example
+      #   # bad
+      #   Digest::SHA1.hexdigest('foo')
+      #   Digest::SHA512('foo')
+      #
+      #   # good
+      #   OpenSSL::Digest::SHA1.hexdigest('foo')
+      #   OpenSSL::Digest::SHA512.hexdigest('foo')
       class OpenSSL < RuboCop::Cop::Base
         extend RuboCop::Cop::AutoCorrector
         include Gitlab::Styles::Common::BannedConstants

data/lib/rubocop/cop/fips/sha1.rb

@@ -5,6 +5,14 @@ require_relative '../../../gitlab/styles/common/banned_constants'
 module Rubocop
   module Cop
     module Fips
+      # Cop that denies the use of Digest::SHA1
+      # @example
+      #   # bad
+      #   OpenSSL::Digest::SHA1.hexdigest('foo')
+      #   Digest::SHA1('ABC')
+      #
+      #   # good
+      #   OpenSSL::Digest::SHA256.hexdigest('foo')
       class SHA1 < RuboCop::Cop::Base
         include Gitlab::Styles::Common::BannedConstants
 

data/lib/rubocop/cop/gem_fetcher.rb

@@ -5,6 +5,12 @@ module Rubocop
     # Prevents usage of the `git` and `github` arguments to `gem` in a
     # `Gemfile` in order to avoid additional points of failure beyond
     # rubygems.org.
+    # @example
+    #   # bad
+    #   gem 'rack', git: 'https://github.com/rack/rack'
+    #
+    #   # good
+    #   gem "rack"
     class GemFetcher < RuboCop::Cop::Base
       MSG = 'Do not use gems from git repositories, only use gems from RubyGems or vendored gems. ' \
         'See https://docs.gitlab.com/ee/development/gemfile.html#no-gems-fetched-from-git-repositories'

data/lib/rubocop/cop/gitlab_security/deep_munge.rb

@@ -13,7 +13,17 @@ module RuboCop
       #   # bad
       #   config.action_dispatch.perform_deep_munge = false
       #
+      #   # bad
+      #   config.action_dispatch.perform_deep_munge = !true
+      #
+      #   # good
+      #   config.action_dispatch.perform_deep_munge = true
+      #
+      #   # good
+      #   # Deep munge is not explicitly disabled
+      #
       # See CVE-2012-2660, CVE-2012-2694, and CVE-2013-0155.
+
       class DeepMunge < RuboCop::Cop::Base
         MSG = 'Never disable the deep munge security option.'
 

data/lib/rubocop/cop/in_batches.rb

@@ -3,6 +3,14 @@
 module Rubocop
   module Cop
     # Cop that prevents the use of `in_batches`
+    # @example
+    #   # bad
+    #   Foo.in_batches do |relation|
+    #   end
+    #
+    #   # good
+    #   Foo.each_batch do |relation|
+    #   end
     class InBatches < RuboCop::Cop::Base
       MSG = 'Do not use `in_batches`, use `each_batch` from the EachBatch module instead'
 

data/lib/rubocop/cop/internal_affairs/cop_description_with_example.rb

@@ -81,7 +81,7 @@ module Rubocop
           index_of_example = lines.index { |line| line.text.match?(/# @example( |$)/) }
           return false unless index_of_example
 
-          lines_after_example = lines[index_of_example + 1..]
+          lines_after_example = lines[(index_of_example + 1)..]
 
           lines_after_example.any? { |line| line.text.downcase.match?(/#   # good( |$)/) } &&
             lines_after_example.any? { |line| line.text.downcase.match?(/#   # bad( |$)/) }

data/lib/rubocop/cop/internal_affairs/deprecate_cop_helper.rb

@@ -4,6 +4,18 @@ module Rubocop
   module Cop
     module InternalAffairs
       # Cop that denies the use of CopHelper.
+      # @example
+      #   # bad
+      #   include CopHelper
+      #
+      #   inspect_source(<<~RUBY)
+      #     #....
+      #   RUBY
+      #
+      #   # good
+      #   expect_offense(<<~RUBY)
+      #     # ....
+      #   RUBY
       class DeprecateCopHelper < RuboCop::Cop::Base
         MSG = 'Do not use `CopHelper` or methods from it, use improved patterns described in https://www.rubydoc.info/gems/rubocop/RuboCop/RSpec/ExpectOffense'
 

data/lib/rubocop/cop/internal_affairs/use_restrict_on_send.rb

@@ -45,37 +45,35 @@ module RuboCop
         MSG = 'Define constant `RESTRICT_ON_SEND` to speed up calls to `on_send`. ' \
           'The following line is then no longer necessary:'
 
-        # @!method method_name_plain(node)
+        # @!method method_name_plain(node, send_param)
         def_node_matcher :method_name_plain, <<~PATTERN
           {
-            (send _ :method_name _ ...)       # method_name(node)
-            (send
-              (send _ :children) :[] (int 1)  # node.children[1]
-            )
+            (send _ :method_name (lvar %1) ...)           # method_name(on_send_param)
+            (send (send (lvar %1) :children) :[] (int 1)) # on_send_param.children[1]
           }
         PATTERN
 
-        # @!method method_name_call(node)
+        # @!method method_name_call(node, send_param, local_assignments)
         def_node_matcher :method_name_call, <<~PATTERN
           {
-            #method_name_plain
-            (lvar %1)
+            #method_name_plain(%1)  # direct method_name/children[1] call on the on_send param
+            (lvar %2)               # local variable previously assigned from such a call
           }
         PATTERN
 
-        # @!method method_name_assignment(node)
+        # @!method method_name_assignment(node, send_param)
         def_node_search :method_name_assignment, <<~PATTERN
-          (lvasgn $_name #method_name_plain)
+          (lvasgn $_ #method_name_plain(%1))
         PATTERN
 
-        # @!method method_name_check(node)
+        # @!method method_name_check(node, send_param, local_assignments)
         def_node_search :method_name_check, <<~PATTERN
           (if
             ${
-              (send #method_name_call(%1) {:== :!=} _) # method_name(node) == foo
-              (send _ :include? #method_name_call(%1)) # a.include?(method_name(node))
+              (send #method_name_call(%1, %2) {:== :!=} _) # method_name(on_send_param) == foo
+              (send _ :include? #method_name_call(%1, %2)) # a.include?(method_name(on_send_param))
             }
-            {!nil? nil? | nil? !nil?}                  # has either `if` or `else` branch - not both
+            {!nil? nil? | nil? !nil?}                      # has either `if` or `else` branch - not both
           )
         PATTERN
 
@@ -83,9 +81,12 @@ module RuboCop
           return unless node.method?(:on_send)
           return if @restrict_on_send_set
 
-          local_assignments = method_name_assignment(node).to_set
+          send_param = node.first_argument&.name
+          return unless send_param
 
-          method_name_check(node, local_assignments) do |call_node|
+          local_assignments = method_name_assignment(node, send_param).to_set
+
+          method_name_check(node, send_param, local_assignments) do |call_node|
             add_offense(call_node)
           end
         end

data/lib/rubocop/cop/line_break_around_conditional_block.rb

@@ -5,43 +5,43 @@ module Rubocop
     # Ensures a line break around conditional blocks.
     #
     # @example
-    #    # bad
-    #    do_something
-    #    if condition
-    #      do_extra_stuff
-    #    end
-    #    do_something_more
+    #   # bad
+    #   do_something
+    #   if condition
+    #     do_extra_stuff
+    #   end
+    #   do_something_more
     #
-    #    # good
-    #    do_something
+    #   # good
+    #   do_something
     #
-    #    if condition
-    #      do_extra_stuff
-    #    end
+    #   if condition
+    #     do_extra_stuff
+    #   end
     #
-    #    do_something_more
+    #   do_something_more
     #
-    #    # bad
-    #    do_something
-    #    unless condition
-    #      do_extra_stuff
-    #    end
+    #   # bad
+    #   do_something
+    #   unless condition
+    #     do_extra_stuff
+    #   end
     #
-    #    do_something_more
+    #   do_something_more
     #
-    #    # good
-    #    def a_method
-    #      if condition
-    #        do_something
-    #      end
-    #    end
+    #   # good
+    #   def a_method
+    #     if condition
+    #       do_something
+    #     end
+    #   end
     #
-    #    # good
-    #    on_block do
-    #      if condition
-    #        do_something
-    #      end
-    #    end
+    #   # good
+    #   on_block do
+    #     if condition
+    #       do_something
+    #     end
+    #   end
     class LineBreakAroundConditionalBlock < RuboCop::Cop::Base
       extend RuboCop::Cop::AutoCorrector
       include RuboCop::Cop::RangeHelp
@@ -100,7 +100,7 @@ module Rubocop
       end
 
       def end_clause_line?(line)
-        line =~ /^\s*(#|rescue|else|elsif|when)/
+        line =~ /^\s*(#|rescue|else|elsif|when|ensure)/
       end
 
       def begin_line?(line)

data/lib/rubocop/cop/migration/update_large_table.rb

@@ -8,10 +8,33 @@ module Rubocop
       # Checks for methods that may lead to batch type issues on a table that's been
       # explicitly denied because of its size.
       #
-      # Even though though these methods perform functions to avoid
+      # Even though these methods perform functions to avoid
       # downtime, using it with tables with millions of rows still causes a
       # significant delay in the deploy process and is best avoided.
       #
+      # @example
+      #
+      #   # bad
+      #   class ExampleMigration < ActiveRecord::Migration[7.0]
+      #     def change
+      #       denied_method(:denied_table, column: :value)
+      #     end
+      #   end
+      #
+      #   # good
+      #   class ExampleMigration < ActiveRecord::Migration[7.0]
+      #     def change
+      #       denied_method(:allowed_table, column: :value)
+      #     end
+      #   end
+      #
+      #   # good
+      #   class ExampleMigration < ActiveRecord::Migration[7.0]
+      #     def change
+      #       allowed_method(:denied_table, column: :value)
+      #     end
+      #   end
+      #
       # See https://gitlab.com/gitlab-com/infrastructure/issues/1602 for more
       # information.
       class UpdateLargeTable < RuboCop::Cop::Base

data/lib/rubocop/cop/performance/rubyzip.rb

@@ -8,6 +8,12 @@ module Rubocop
       # files and directories, this can be very expensive even when the archive's size
       # in bytes is small.
       #
+      # @example
+      #   # bad
+      #   Zip::File.open('file_path.zip', &block)
+      #
+      #   # good
+      #   Zip::InputStream.open('file_path.zip')
       # See also:
       # - https://github.com/rubyzip/rubyzip/issues/506
       # - https://github.com/rubyzip/rubyzip#notes-on-zipinputstream

data/lib/rubocop/cop/polymorphic_associations.rb

@@ -3,6 +3,17 @@
 module Rubocop
   module Cop
     # Cop that prevents the use of polymorphic associations
+    # @example
+    #   # bad
+    #   class Comment < ApplicationRecord
+    #     belongs_to :commentable, polymorphic: true
+    #   end
+    #
+    #   # good
+    #   class Comment < ApplicationRecord
+    #     belongs_to :post
+    #     belongs_to :article
+    #   end
     class PolymorphicAssociations < RuboCop::Cop::Base
       MSG = 'Do not use polymorphic associations, use separate tables instead'
 

data/lib/rubocop/cop/rspec/feature_spec_max_examples.rb

@@ -0,0 +1,45 @@
+# frozen_string_literal: true
+
+require 'rubocop-rspec'
+require_relative 'base'
+
+module Rubocop
+  module Cop
+    module RSpec
+      # Limits the number of examples in feature spec files.
+      #
+      # Feature specs with too many examples are slow to run, hard to maintain,
+      # and often indicate the file should be split into smaller, focused specs.
+      #
+      # The maximum number of examples can be configured with the `Max` option
+      # (default: 25).
+      #
+      # @example Max: 25 (default)
+      #
+      #   # bad
+      #   # A feature spec file with more than 25 examples.
+      #
+      #   # good
+      #   # A feature spec file with 25 or fewer examples.
+      class FeatureSpecMaxExamples < Base
+        MSG = 'Feature spec file has %<count>d examples, which exceeds the maximum of %<max>d. ' \
+          'Consider splitting into smaller, focused files grouped by user flow or feature area.'
+
+        def on_new_investigation
+          super
+          @example_count = 0
+          @max = cop_config['Max'] || 25
+        end
+
+        def on_block(node)
+          @example_count += 1 if example?(node)
+        end
+        alias_method :on_numblock, :on_block
+
+        def on_investigation_end
+          add_global_offense(format(MSG, count: @example_count, max: @max)) if @example_count > @max
+        end
+      end
+    end
+  end
+end

data/lib/rubocop/cop/tailwind/max_width_media_queries.rb

@@ -14,7 +14,8 @@ module Rubocop
       #   css_classes = ["gl-mt-3", "md:gl-mt-5"]
       #   %div{ class: ["gl-mt-3", "md:gl-mt-5"] }
       class MaxWidthMediaQueries < RuboCop::Cop::Base
-        TAILWIND_CSS_CLASS = /max-(sm|md|lg|xl):gl-/
+        ALLOWLIST = ['hidden'].freeze
+        TAILWIND_CSS_CLASS = /max-(sm|md|lg|xl):gl-(?!#{ALLOWLIST.join('|')})/
         MSG = 'Do not use max-width media query utility classes unless absolutely necessary. ' \
           'Use min-width media query utility classes instead.'
 

data/rubocop-naming.yml

@@ -48,7 +48,7 @@ Naming/MethodParameterName:
 # NamePrefix: is_, has_, have_
 # NamePrefixBlacklist: is_, has_, have_
 # NameWhitelist: is_a?
-Naming/PredicateName:
+Naming/PredicatePrefix:
   Enabled: true
   ForbiddenPrefixes:
     - is_

data/rubocop-rspec.yml

@@ -96,6 +96,12 @@ RSpec/ExpectChange:
 RSpec/ExpectOutput:
   Enabled: true
 
+# Limits the number of examples in feature spec files to encourage splitting
+# large specs into smaller, focused files.
+RSpec/FeatureSpecMaxExamples:
+  Enabled: false
+  Max: 25
+
 # Checks if there are focused specs.
 RSpec/Focus:
   Enabled: true

data/rubocop-style.yml

@@ -475,6 +475,10 @@ Style/TrailingCommaInArguments:
   Enabled: true
   EnforcedStyleForMultiline: no_comma
 
+# Checks for the use of logical operators in an unless condition.
+Style/UnlessLogicalOperators:
+  Enabled: true
+
 # Don't interpolate global, instance and class variables directly in strings.
 Style/VariableInterpolation:
   Enabled: true

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: gitlab-styles
 version: !ruby/object:Gem::Version
-  version: 13.1.0
+  version: 14.1.0
 platform: ruby
 authors:
 - GitLab
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2025-02-10 00:00:00.000000000 Z
+date: 2026-05-18 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rubocop
@@ -16,110 +16,110 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.71.1
+        version: 1.81.7
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.71.1
+        version: 1.81.7
 - !ruby/object:Gem::Dependency
   name: rubocop-capybara
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
         version: 2.21.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
         version: 2.21.0
 - !ruby/object:Gem::Dependency
   name: rubocop-factory_bot
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
         version: 2.26.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
         version: 2.26.1
 - !ruby/object:Gem::Dependency
   name: rubocop-graphql
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
         version: 1.5.4
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
         version: 1.5.4
 - !ruby/object:Gem::Dependency
   name: rubocop-performance
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
-        version: 1.21.1
+        version: 1.23.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
-        version: 1.21.1
+        version: 1.23.1
 - !ruby/object:Gem::Dependency
   name: rubocop-rails
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
-        version: 2.26.0
+        version: 2.29.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
-        version: 2.26.0
+        version: 2.29.1
 - !ruby/object:Gem::Dependency
   name: rubocop-rspec
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
-        version: 3.0.4
+        version: 3.4.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
-        version: 3.0.4
+        version: 3.4.0
 - !ruby/object:Gem::Dependency
   name: rubocop-rspec_rails
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
         version: 2.30.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
         version: 2.30.0
 - !ruby/object:Gem::Dependency
@@ -357,6 +357,7 @@ files:
 - lib/rubocop/cop/rspec/empty_line_after_let_block.rb
 - lib/rubocop/cop/rspec/empty_line_after_shared_example.rb
 - lib/rubocop/cop/rspec/example_starting_character.rb
+- lib/rubocop/cop/rspec/feature_spec_max_examples.rb
 - lib/rubocop/cop/rspec/have_link_parameters.rb
 - lib/rubocop/cop/rspec/rails_controller_testing.rb
 - lib/rubocop/cop/rspec/single_line_hook.rb
@@ -409,7 +410,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.27
+rubygems_version: 3.5.22
 signing_key:
 specification_version: 4
 summary: GitLab style guides and shared style configs.