build: bump puma from 3.11.2 to 3.11.3

[dependabot-preview]

Bumps puma from 3.11.2 to 3.11.3.

Changelog

Sourced from puma's changelog.

3.11.3 / 2018-03-05

• 3 bugfixes:
  • Add closed? to MiniSSL::Socket for use in reactor (#1510)
  • Handle EOFError at the toplevel of the server threads (#1524) (#1507)
  • Deal with zero sized bodies when using SSL (#1483)

Commits

• 4163dd7 Bump to 3.11.3
• 61c875f Deal with zero sized bodies properly when using SSL. Fixes #1483
• b9ff900 Deal with early closes properly. Fixes #1524, #1507
• 1638b2a Add closed to MinSSL. Fixes #1510
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot ignore this [minor|major] version with close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use [this|these] label[s] will set the current labels as the default for future PRs for this repo and language

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)

Finally, you can contact us by mentioning @dependabot.