fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-RACK-1061917
qkunst · Jan 7, 2024 · c93a7fa · c93a7fa
1 parent 3e1a21c
commit c93a7fa
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 4 deletions.
diff --git a/Gemfile b/Gemfile
@@ -139,6 +139,6 @@ gem "annotate", group: [:development]
 gem "branding_repo", git: "https://github.com/murb/branding_repo.git"
 gem "omniauth-central_login", git: "https://gitlab.com/murb-org/omniauth-centrallogin.git"
 gem "invisible_captcha"
-gem "jsbundling-rails", "~> 1.0"
+gem "jsbundling-rails", "~> 1.2", ">= 1.2.2"
 gem "pupprb", git: "https://gitlab.com/murb/pupprb.git"
 gem "stimulus-rails"
diff --git a/Gemfile.lock b/Gemfile.lock
@@ -278,7 +278,7 @@ GEM
     jbuilder (2.11.5)
       actionview (>= 5.0.0)
       activesupport (>= 5.0.0)
-    jsbundling-rails (1.2.1)
+    jsbundling-rails (1.2.2)
       railties (>= 6.0.0)
     json (2.7.1)
     jwt (2.2.3)
@@ -325,7 +325,7 @@ GEM
       net-protocol
     net-ssh (7.2.1)
     nio4r (2.7.0)
-    nokogiri (1.16.0)
+    nokogiri (1.15.5)
       mini_portile2 (~> 2.8.2)
       racc (~> 1.4)
     oauth2 (2.0.9)
@@ -636,7 +636,7 @@ DEPENDENCIES
   highline
   invisible_captcha
   jbuilder
-  jsbundling-rails (~> 1.0)
+  jsbundling-rails (~> 1.2, >= 1.2.2)
   keyword_finder
   kramdown
   letter_opener