From 75dc6e7ef6aea83f60f3a933a2646f0fe57a98ae Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 12 Oct 2023 14:03:02 +0000 Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-RACK-1061917 --- Gemfile | 4 ++-- Gemfile.lock | 10 +++++----- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/Gemfile b/Gemfile index ab4c9299..6a0d8b24 100644 --- a/Gemfile +++ b/Gemfile @@ -45,7 +45,7 @@ end ## gem "bundler-audit" gem "pg" -gem "devise" # , git: "https://github.com/heartcombo/devise.git" +gem "devise" , ">= 4.9.3" # , git: "https://github.com/heartcombo/devise.git" # gem 'omniauth-facebook' # gem 'omniauth-google-oauth2' gem "carrierwave" @@ -83,7 +83,7 @@ end ## INTERACTIVITY ## -gem "simple_form" +gem "simple_form", ">= 5.3.0" gem "kramdown" ## diff --git a/Gemfile.lock b/Gemfile.lock index 204073ab..ff6656b0 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -197,7 +197,7 @@ GEM database_cleaner-core (~> 2.0.0) database_cleaner-core (2.0.1) date (3.3.3) - devise (4.9.2) + devise (4.9.3) bcrypt (~> 3.0) orm_adapter (~> 0.1) railties (>= 4.1.0) @@ -429,7 +429,7 @@ GEM regexp_parser (2.8.2) request_store (1.5.1) rack (>= 1.4) - responders (3.1.0) + responders (3.1.1) actionpack (>= 5.2) railties (>= 5.2) rexml (3.2.6) @@ -509,7 +509,7 @@ GEM redis (< 5.0) sidekiq (>= 5.0, < 7.0) thor (>= 0.20, < 3.0) - simple_form (5.2.0) + simple_form (5.3.0) actionpack (>= 5.2) activemodel (>= 5.2) simplecov (0.22.0) @@ -611,7 +611,7 @@ DEPENDENCIES daemons dalli database_cleaner - devise + devise (>= 4.9.3) dotenv-rails elasticsearch-model (~> 7) elasticsearch-rails (~> 7) @@ -654,7 +654,7 @@ DEPENDENCIES sidekiq (~> 6, >= 6.2.1) sidekiq-scheduler (>= 3.1.0) sidekiq-unique-jobs (>= 7.1.5) - simple_form + simple_form (>= 5.3.0) simplecov simplecov-cobertura stackprof