Skip to content
This repository was archived by the owner on May 13, 2025. It is now read-only.

Commit 9970f4b

Browse files
snyk-botsnyk-bot
committed
fix: Gemfile & Gemfile.lock to reduce vulnerabilities
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-8732769 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-8732779
1 parent f97f55a commit 9970f4b

File tree

2 files changed

+126
-100
lines changed

2 files changed

+126
-100
lines changed

Gemfile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,7 @@ git_source(:github) { |repo| "https://github.com/#{repo}.git" }
44
ruby ' ~> 3.0'
55

66
# Bundle edge Rails instead: gem 'rails', github: 'rails/rails'
7-
gem 'rails', '~> 6.1.3'
7+
gem 'rails', '~> 7.0.0'
88
# Use postgresql as the database for Active Record
99
gem 'sqlite3'
1010
# Use Puma as the app server

Gemfile.lock

Lines changed: 125 additions & 99 deletions
Original file line numberDiff line numberDiff line change
@@ -1,84 +1,92 @@
11
GEM
22
remote: https://rubygems.org/
33
specs:
4-
actioncable (6.1.3.1)
5-
actionpack (= 6.1.3.1)
6-
activesupport (= 6.1.3.1)
4+
actioncable (7.0.8.7)
5+
actionpack (= 7.0.8.7)
6+
activesupport (= 7.0.8.7)
77
nio4r (~> 2.0)
88
websocket-driver (>= 0.6.1)
9-
actionmailbox (6.1.3.1)
10-
actionpack (= 6.1.3.1)
11-
activejob (= 6.1.3.1)
12-
activerecord (= 6.1.3.1)
13-
activestorage (= 6.1.3.1)
14-
activesupport (= 6.1.3.1)
9+
actionmailbox (7.0.8.7)
10+
actionpack (= 7.0.8.7)
11+
activejob (= 7.0.8.7)
12+
activerecord (= 7.0.8.7)
13+
activestorage (= 7.0.8.7)
14+
activesupport (= 7.0.8.7)
1515
mail (>= 2.7.1)
16-
actionmailer (6.1.3.1)
17-
actionpack (= 6.1.3.1)
18-
actionview (= 6.1.3.1)
19-
activejob (= 6.1.3.1)
20-
activesupport (= 6.1.3.1)
16+
net-imap
17+
net-pop
18+
net-smtp
19+
actionmailer (7.0.8.7)
20+
actionpack (= 7.0.8.7)
21+
actionview (= 7.0.8.7)
22+
activejob (= 7.0.8.7)
23+
activesupport (= 7.0.8.7)
2124
mail (~> 2.5, >= 2.5.4)
25+
net-imap
26+
net-pop
27+
net-smtp
2228
rails-dom-testing (~> 2.0)
23-
actionpack (6.1.3.1)
24-
actionview (= 6.1.3.1)
25-
activesupport (= 6.1.3.1)
26-
rack (~> 2.0, >= 2.0.9)
29+
actionpack (7.0.8.7)
30+
actionview (= 7.0.8.7)
31+
activesupport (= 7.0.8.7)
32+
rack (~> 2.0, >= 2.2.4)
2733
rack-test (>= 0.6.3)
2834
rails-dom-testing (~> 2.0)
2935
rails-html-sanitizer (~> 1.0, >= 1.2.0)
30-
actiontext (6.1.3.1)
31-
actionpack (= 6.1.3.1)
32-
activerecord (= 6.1.3.1)
33-
activestorage (= 6.1.3.1)
34-
activesupport (= 6.1.3.1)
36+
actiontext (7.0.8.7)
37+
actionpack (= 7.0.8.7)
38+
activerecord (= 7.0.8.7)
39+
activestorage (= 7.0.8.7)
40+
activesupport (= 7.0.8.7)
41+
globalid (>= 0.6.0)
3542
nokogiri (>= 1.8.5)
36-
actionview (6.1.3.1)
37-
activesupport (= 6.1.3.1)
43+
actionview (7.0.8.7)
44+
activesupport (= 7.0.8.7)
3845
builder (~> 3.1)
3946
erubi (~> 1.4)
4047
rails-dom-testing (~> 2.0)
4148
rails-html-sanitizer (~> 1.1, >= 1.2.0)
42-
activejob (6.1.3.1)
43-
activesupport (= 6.1.3.1)
49+
activejob (7.0.8.7)
50+
activesupport (= 7.0.8.7)
4451
globalid (>= 0.3.6)
45-
activemodel (6.1.3.1)
46-
activesupport (= 6.1.3.1)
47-
activerecord (6.1.3.1)
48-
activemodel (= 6.1.3.1)
49-
activesupport (= 6.1.3.1)
50-
activestorage (6.1.3.1)
51-
actionpack (= 6.1.3.1)
52-
activejob (= 6.1.3.1)
53-
activerecord (= 6.1.3.1)
54-
activesupport (= 6.1.3.1)
55-
marcel (~> 1.0.0)
56-
mini_mime (~> 1.0.2)
57-
activesupport (6.1.3.1)
52+
activemodel (7.0.8.7)
53+
activesupport (= 7.0.8.7)
54+
activerecord (7.0.8.7)
55+
activemodel (= 7.0.8.7)
56+
activesupport (= 7.0.8.7)
57+
activestorage (7.0.8.7)
58+
actionpack (= 7.0.8.7)
59+
activejob (= 7.0.8.7)
60+
activerecord (= 7.0.8.7)
61+
activesupport (= 7.0.8.7)
62+
marcel (~> 1.0)
63+
mini_mime (>= 1.1.0)
64+
activesupport (7.0.8.7)
5865
concurrent-ruby (~> 1.0, >= 1.0.2)
5966
i18n (>= 1.6, < 2)
6067
minitest (>= 5.1)
6168
tzinfo (~> 2.0)
62-
zeitwerk (~> 2.3)
6369
addressable (2.7.0)
6470
public_suffix (>= 2.0.2, < 5.0)
71+
base64 (0.2.0)
6572
bcrypt (3.1.16)
6673
bindex (0.8.1)
6774
bootsnap (1.5.1)
6875
msgpack (~> 1.0)
69-
builder (3.2.4)
76+
builder (3.3.0)
7077
byebug (11.1.3)
7178
childprocess (3.0.0)
72-
concurrent-ruby (1.1.8)
79+
concurrent-ruby (1.3.5)
7380
crack (0.4.5)
7481
rexml
7582
crass (1.0.6)
83+
date (3.4.1)
7684
diff-lcs (1.4.4)
7785
dotenv (2.7.6)
7886
dotenv-rails (2.7.6)
7987
dotenv (= 2.7.6)
8088
railties (>= 3.2)
81-
erubi (1.10.0)
89+
erubi (1.13.1)
8290
execjs (2.7.0)
8391
factory_bot (6.1.0)
8492
activesupport (>= 5.0.0)
@@ -92,10 +100,10 @@ GEM
92100
faraday-net_http (1.0.1)
93101
ffi (1.14.2)
94102
ffi (1.14.2-x64-mingw32)
95-
globalid (0.4.2)
96-
activesupport (>= 4.2.0)
103+
globalid (1.2.1)
104+
activesupport (>= 6.1)
97105
hashdiff (1.0.1)
98-
i18n (1.8.9)
106+
i18n (1.14.7)
99107
concurrent-ruby (~> 1.0)
100108
jbuilder (2.10.1)
101109
activesupport (>= 5.0.0)
@@ -107,68 +115,84 @@ GEM
107115
listen (3.4.1)
108116
rb-fsevent (~> 0.10, >= 0.10.3)
109117
rb-inotify (~> 0.9, >= 0.9.10)
110-
loofah (2.9.0)
118+
loofah (2.24.0)
111119
crass (~> 1.0.2)
112-
nokogiri (>= 1.5.9)
113-
mail (2.7.1)
120+
nokogiri (>= 1.12.0)
121+
mail (2.8.1)
114122
mini_mime (>= 0.1.1)
115-
marcel (1.0.0)
116-
method_source (1.0.0)
117-
mini_mime (1.0.3)
118-
mini_portile2 (2.5.0)
119-
minitest (5.14.4)
123+
net-imap
124+
net-pop
125+
net-smtp
126+
marcel (1.0.4)
127+
method_source (1.1.0)
128+
mini_mime (1.1.5)
129+
mini_portile2 (2.8.8)
130+
minitest (5.25.4)
120131
msgpack (1.4.2)
121132
multipart-post (2.1.1)
122-
nio4r (2.5.7)
123-
nokogiri (1.11.2)
124-
mini_portile2 (~> 2.5.0)
133+
net-imap (0.4.19)
134+
date
135+
net-protocol
136+
net-pop (0.1.2)
137+
net-protocol
138+
net-protocol (0.2.2)
139+
timeout
140+
net-smtp (0.5.1)
141+
net-protocol
142+
nio4r (2.7.4)
143+
nokogiri (1.17.2)
144+
mini_portile2 (~> 2.8.2)
125145
racc (~> 1.4)
126-
nokogiri (1.11.2-arm64-darwin)
146+
nokogiri (1.17.2-arm64-darwin)
127147
racc (~> 1.4)
128-
nokogiri (1.11.2-x64-mingw32)
148+
nokogiri (1.17.2-x64-mingw32)
129149
racc (~> 1.4)
130-
nokogiri (1.11.2-x86_64-linux)
150+
nokogiri (1.17.2-x86_64-darwin)
151+
racc (~> 1.4)
152+
nokogiri (1.17.2-x86_64-linux)
131153
racc (~> 1.4)
132154
public_suffix (4.0.6)
133155
puma (5.1.1)
134156
nio4r (~> 2.0)
135-
racc (1.5.2)
136-
rack (2.2.3)
157+
racc (1.8.1)
158+
rack (2.2.11)
137159
rack-mini-profiler (2.3.0)
138160
rack (>= 1.2.0)
139-
rack-test (1.1.0)
140-
rack (>= 1.0, < 3)
141-
rails (6.1.3.1)
142-
actioncable (= 6.1.3.1)
143-
actionmailbox (= 6.1.3.1)
144-
actionmailer (= 6.1.3.1)
145-
actionpack (= 6.1.3.1)
146-
actiontext (= 6.1.3.1)
147-
actionview (= 6.1.3.1)
148-
activejob (= 6.1.3.1)
149-
activemodel (= 6.1.3.1)
150-
activerecord (= 6.1.3.1)
151-
activestorage (= 6.1.3.1)
152-
activesupport (= 6.1.3.1)
161+
rack-test (2.2.0)
162+
rack (>= 1.3)
163+
rails (7.0.8.7)
164+
actioncable (= 7.0.8.7)
165+
actionmailbox (= 7.0.8.7)
166+
actionmailer (= 7.0.8.7)
167+
actionpack (= 7.0.8.7)
168+
actiontext (= 7.0.8.7)
169+
actionview (= 7.0.8.7)
170+
activejob (= 7.0.8.7)
171+
activemodel (= 7.0.8.7)
172+
activerecord (= 7.0.8.7)
173+
activestorage (= 7.0.8.7)
174+
activesupport (= 7.0.8.7)
153175
bundler (>= 1.15.0)
154-
railties (= 6.1.3.1)
155-
sprockets-rails (>= 2.0.0)
176+
railties (= 7.0.8.7)
156177
rails-controller-testing (1.0.5)
157178
actionpack (>= 5.0.1.rc1)
158179
actionview (>= 5.0.1.rc1)
159180
activesupport (>= 5.0.1.rc1)
160-
rails-dom-testing (2.0.3)
161-
activesupport (>= 4.2.0)
181+
rails-dom-testing (2.2.0)
182+
activesupport (>= 5.0.0)
183+
minitest
162184
nokogiri (>= 1.6)
163-
rails-html-sanitizer (1.3.0)
164-
loofah (~> 2.3)
165-
railties (6.1.3.1)
166-
actionpack (= 6.1.3.1)
167-
activesupport (= 6.1.3.1)
185+
rails-html-sanitizer (1.6.2)
186+
loofah (~> 2.21)
187+
nokogiri (>= 1.15.7, != 1.16.7, != 1.16.6, != 1.16.5, != 1.16.4, != 1.16.3, != 1.16.2, != 1.16.1, != 1.16.0.rc1, != 1.16.0)
188+
railties (7.0.8.7)
189+
actionpack (= 7.0.8.7)
190+
activesupport (= 7.0.8.7)
168191
method_source
169-
rake (>= 0.8.7)
192+
rake (>= 12.2)
170193
thor (~> 1.0)
171-
rake (13.0.3)
194+
zeitwerk (~> 2.5)
195+
rake (13.2.1)
172196
rb-fsevent (0.10.4)
173197
rb-inotify (0.10.1)
174198
ffi (~> 1.0)
@@ -208,24 +232,25 @@ GEM
208232
childprocess (>= 0.5, < 4.0)
209233
rubyzip (>= 1.2.2)
210234
spring (2.1.1)
211-
sprockets (4.0.2)
235+
sprockets (4.2.1)
212236
concurrent-ruby (~> 1.0)
213-
rack (> 1, < 3)
214-
sprockets-rails (3.2.2)
215-
actionpack (>= 4.0)
216-
activesupport (>= 4.0)
237+
rack (>= 2.2.4, < 4)
238+
sprockets-rails (3.5.2)
239+
actionpack (>= 6.1)
240+
activesupport (>= 6.1)
217241
sprockets (>= 3.0.0)
218242
sqlite3 (1.4.2)
219-
thor (1.1.0)
243+
thor (1.3.2)
220244
tilt (2.0.10)
245+
timeout (0.4.3)
221246
turbolinks (5.2.1)
222247
turbolinks-source (~> 5.2)
223248
turbolinks-source (5.2.0)
224249
twilio-ruby (5.46.0)
225250
faraday (>= 0.9, < 2.0)
226251
jwt (>= 1.5, <= 2.5)
227252
nokogiri (>= 1.6, < 2.0)
228-
tzinfo (2.0.4)
253+
tzinfo (2.0.6)
229254
concurrent-ruby (~> 1.0)
230255
tzinfo-data (1.2020.6)
231256
tzinfo (>= 1.0.0)
@@ -245,10 +270,11 @@ GEM
245270
addressable (>= 2.3.6)
246271
crack (>= 0.3.2)
247272
hashdiff (>= 0.4.0, < 2.0.0)
248-
websocket-driver (0.7.3)
273+
websocket-driver (0.7.7)
274+
base64
249275
websocket-extensions (>= 0.1.0)
250276
websocket-extensions (0.1.5)
251-
zeitwerk (2.4.2)
277+
zeitwerk (2.6.18)
252278

253279
PLATFORMS
254280
ruby
@@ -267,7 +293,7 @@ DEPENDENCIES
267293
listen (~> 3.3)
268294
puma (~> 5.0)
269295
rack-mini-profiler (~> 2.0)
270-
rails (~> 6.1.3)
296+
rails (~> 7.0.0)
271297
rails-controller-testing
272298
rspec-rails (~> 4.0)
273299
sass-rails
@@ -286,4 +312,4 @@ RUBY VERSION
286312
ruby 3.0.0p0
287313

288314
BUNDLED WITH
289-
2.2.6
315+
2.2.3

0 commit comments

Comments
 (0)