Skip to content
This repository was archived by the owner on May 13, 2025. It is now read-only.

Commit 82992e6

Browse files
snyk-botsnyk-bot
committed
fix: Gemfile & Gemfile.lock to reduce vulnerabilities
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-RACK-8720151
1 parent f3a1f92 commit 82992e6

File tree

2 files changed

+130
-124
lines changed

2 files changed

+130
-124
lines changed

Gemfile

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,7 @@ git_source(:github) { |repo| "https://github.com/#{repo}.git" }
44
ruby '~> 3.0'
55

66
# Bundle edge Rails instead: gem 'rails', github: 'rails/rails'
7-
gem 'rails', '~> 6.1.3'
7+
gem 'rails', '~> 7.0.0'
88
# Use sqlite3 as the database for Active Record
99
gem 'sqlite3', '~> 1.4'
1010
# Use Puma as the app server
@@ -49,4 +49,4 @@ end
4949
# Windows does not include zoneinfo files, so bundle the tzinfo-data gem
5050
gem 'tzinfo-data', platforms: [:mingw, :mswin, :x64_mingw, :jruby]
5151
gem "twilio-ruby", "~> 5.46"
52-
gem "bootstrap", "~> 4.5"
52+
gem "bootstrap", "~> 4.6", ">= 4.6.2.1"

Gemfile.lock

Lines changed: 128 additions & 122 deletions
Original file line numberDiff line numberDiff line change
@@ -1,173 +1,195 @@
11
GEM
22
remote: https://rubygems.org/
33
specs:
4-
actioncable (6.1.3.1)
5-
actionpack (= 6.1.3.1)
6-
activesupport (= 6.1.3.1)
4+
actioncable (7.0.8.7)
5+
actionpack (= 7.0.8.7)
6+
activesupport (= 7.0.8.7)
77
nio4r (~> 2.0)
88
websocket-driver (>= 0.6.1)
9-
actionmailbox (6.1.3.1)
10-
actionpack (= 6.1.3.1)
11-
activejob (= 6.1.3.1)
12-
activerecord (= 6.1.3.1)
13-
activestorage (= 6.1.3.1)
14-
activesupport (= 6.1.3.1)
9+
actionmailbox (7.0.8.7)
10+
actionpack (= 7.0.8.7)
11+
activejob (= 7.0.8.7)
12+
activerecord (= 7.0.8.7)
13+
activestorage (= 7.0.8.7)
14+
activesupport (= 7.0.8.7)
1515
mail (>= 2.7.1)
16-
actionmailer (6.1.3.1)
17-
actionpack (= 6.1.3.1)
18-
actionview (= 6.1.3.1)
19-
activejob (= 6.1.3.1)
20-
activesupport (= 6.1.3.1)
16+
net-imap
17+
net-pop
18+
net-smtp
19+
actionmailer (7.0.8.7)
20+
actionpack (= 7.0.8.7)
21+
actionview (= 7.0.8.7)
22+
activejob (= 7.0.8.7)
23+
activesupport (= 7.0.8.7)
2124
mail (~> 2.5, >= 2.5.4)
25+
net-imap
26+
net-pop
27+
net-smtp
2228
rails-dom-testing (~> 2.0)
23-
actionpack (6.1.3.1)
24-
actionview (= 6.1.3.1)
25-
activesupport (= 6.1.3.1)
26-
rack (~> 2.0, >= 2.0.9)
29+
actionpack (7.0.8.7)
30+
actionview (= 7.0.8.7)
31+
activesupport (= 7.0.8.7)
32+
rack (~> 2.0, >= 2.2.4)
2733
rack-test (>= 0.6.3)
2834
rails-dom-testing (~> 2.0)
2935
rails-html-sanitizer (~> 1.0, >= 1.2.0)
30-
actiontext (6.1.3.1)
31-
actionpack (= 6.1.3.1)
32-
activerecord (= 6.1.3.1)
33-
activestorage (= 6.1.3.1)
34-
activesupport (= 6.1.3.1)
36+
actiontext (7.0.8.7)
37+
actionpack (= 7.0.8.7)
38+
activerecord (= 7.0.8.7)
39+
activestorage (= 7.0.8.7)
40+
activesupport (= 7.0.8.7)
41+
globalid (>= 0.6.0)
3542
nokogiri (>= 1.8.5)
36-
actionview (6.1.3.1)
37-
activesupport (= 6.1.3.1)
43+
actionview (7.0.8.7)
44+
activesupport (= 7.0.8.7)
3845
builder (~> 3.1)
3946
erubi (~> 1.4)
4047
rails-dom-testing (~> 2.0)
4148
rails-html-sanitizer (~> 1.1, >= 1.2.0)
42-
activejob (6.1.3.1)
43-
activesupport (= 6.1.3.1)
49+
activejob (7.0.8.7)
50+
activesupport (= 7.0.8.7)
4451
globalid (>= 0.3.6)
45-
activemodel (6.1.3.1)
46-
activesupport (= 6.1.3.1)
47-
activerecord (6.1.3.1)
48-
activemodel (= 6.1.3.1)
49-
activesupport (= 6.1.3.1)
50-
activestorage (6.1.3.1)
51-
actionpack (= 6.1.3.1)
52-
activejob (= 6.1.3.1)
53-
activerecord (= 6.1.3.1)
54-
activesupport (= 6.1.3.1)
55-
marcel (~> 1.0.0)
56-
mini_mime (~> 1.0.2)
57-
activesupport (6.1.3.1)
52+
activemodel (7.0.8.7)
53+
activesupport (= 7.0.8.7)
54+
activerecord (7.0.8.7)
55+
activemodel (= 7.0.8.7)
56+
activesupport (= 7.0.8.7)
57+
activestorage (7.0.8.7)
58+
actionpack (= 7.0.8.7)
59+
activejob (= 7.0.8.7)
60+
activerecord (= 7.0.8.7)
61+
activesupport (= 7.0.8.7)
62+
marcel (~> 1.0)
63+
mini_mime (>= 1.1.0)
64+
activesupport (7.0.8.7)
5865
concurrent-ruby (~> 1.0, >= 1.0.2)
5966
i18n (>= 1.6, < 2)
6067
minitest (>= 5.1)
6168
tzinfo (~> 2.0)
62-
zeitwerk (~> 2.3)
6369
addressable (2.7.0)
6470
public_suffix (>= 2.0.2, < 5.0)
65-
autoprefixer-rails (10.2.0.0)
66-
execjs
71+
autoprefixer-rails (10.4.19.0)
72+
execjs (~> 2)
73+
base64 (0.2.0)
6774
bindex (0.8.1)
6875
bootsnap (1.5.1)
6976
msgpack (~> 1.0)
70-
bootstrap (4.5.3)
77+
bootstrap (4.6.2.1)
7178
autoprefixer-rails (>= 9.1.0)
72-
popper_js (>= 1.14.3, < 2)
73-
sassc-rails (>= 2.0.0)
74-
builder (3.2.4)
79+
popper_js (>= 1.16.1, < 2)
80+
builder (3.3.0)
7581
byebug (11.1.3)
7682
childprocess (3.0.0)
77-
concurrent-ruby (1.1.8)
83+
concurrent-ruby (1.3.5)
7884
crack (0.4.5)
7985
rexml
8086
crass (1.0.6)
87+
date (3.4.1)
8188
diff-lcs (1.4.4)
8289
dotenv (2.7.6)
8390
dotenv-rails (2.7.6)
8491
dotenv (= 2.7.6)
8592
railties (>= 3.2)
86-
erubi (1.10.0)
87-
execjs (2.7.0)
93+
erubi (1.13.1)
94+
execjs (2.10.0)
8895
faraday (1.3.0)
8996
faraday-net_http (~> 1.0)
9097
multipart-post (>= 1.2, < 3)
9198
ruby2_keywords
9299
faraday-net_http (1.0.1)
93-
ffi (1.14.2)
94-
ffi (1.14.2-x64-mingw32)
95-
globalid (0.4.2)
96-
activesupport (>= 4.2.0)
100+
ffi (1.17.1)
101+
globalid (1.2.1)
102+
activesupport (>= 6.1)
97103
hashdiff (1.0.1)
98-
i18n (1.8.9)
104+
i18n (1.14.7)
99105
concurrent-ruby (~> 1.0)
100106
jbuilder (2.10.1)
101107
activesupport (>= 5.0.0)
102108
jwt (2.2.2)
103109
listen (3.4.1)
104110
rb-fsevent (~> 0.10, >= 0.10.3)
105111
rb-inotify (~> 0.9, >= 0.9.10)
106-
loofah (2.9.0)
112+
loofah (2.24.0)
107113
crass (~> 1.0.2)
108-
nokogiri (>= 1.5.9)
109-
mail (2.7.1)
114+
nokogiri (>= 1.12.0)
115+
mail (2.8.1)
110116
mini_mime (>= 0.1.1)
111-
marcel (1.0.0)
112-
method_source (1.0.0)
113-
mini_mime (1.0.3)
114-
mini_portile2 (2.5.0)
115-
minitest (5.14.4)
117+
net-imap
118+
net-pop
119+
net-smtp
120+
marcel (1.0.4)
121+
method_source (1.1.0)
122+
mini_mime (1.1.5)
123+
mini_portile2 (2.8.8)
124+
minitest (5.25.4)
116125
msgpack (1.4.2)
117126
multipart-post (2.1.1)
118-
nio4r (2.5.7)
119-
nokogiri (1.11.2)
120-
mini_portile2 (~> 2.5.0)
127+
net-imap (0.4.19)
128+
date
129+
net-protocol
130+
net-pop (0.1.2)
131+
net-protocol
132+
net-protocol (0.2.2)
133+
timeout
134+
net-smtp (0.5.1)
135+
net-protocol
136+
nio4r (2.7.4)
137+
nokogiri (1.17.2)
138+
mini_portile2 (~> 2.8.2)
121139
racc (~> 1.4)
122-
nokogiri (1.11.2-arm64-darwin)
140+
nokogiri (1.17.2-arm64-darwin)
123141
racc (~> 1.4)
124-
nokogiri (1.11.2-x64-mingw32)
142+
nokogiri (1.17.2-x64-mingw32)
125143
racc (~> 1.4)
126-
nokogiri (1.11.2-x86_64-linux)
144+
nokogiri (1.17.2-x86_64-darwin)
127145
racc (~> 1.4)
128-
popper_js (1.16.0)
146+
nokogiri (1.17.2-x86_64-linux)
147+
racc (~> 1.4)
148+
popper_js (1.16.1)
129149
public_suffix (4.0.6)
130150
puma (5.1.1)
131151
nio4r (~> 2.0)
132-
racc (1.5.2)
133-
rack (2.2.3)
152+
racc (1.8.1)
153+
rack (2.2.11)
134154
rack-mini-profiler (2.3.0)
135155
rack (>= 1.2.0)
136156
rack-proxy (0.6.5)
137157
rack
138-
rack-test (1.1.0)
139-
rack (>= 1.0, < 3)
140-
rails (6.1.3.1)
141-
actioncable (= 6.1.3.1)
142-
actionmailbox (= 6.1.3.1)
143-
actionmailer (= 6.1.3.1)
144-
actionpack (= 6.1.3.1)
145-
actiontext (= 6.1.3.1)
146-
actionview (= 6.1.3.1)
147-
activejob (= 6.1.3.1)
148-
activemodel (= 6.1.3.1)
149-
activerecord (= 6.1.3.1)
150-
activestorage (= 6.1.3.1)
151-
activesupport (= 6.1.3.1)
158+
rack-test (2.2.0)
159+
rack (>= 1.3)
160+
rails (7.0.8.7)
161+
actioncable (= 7.0.8.7)
162+
actionmailbox (= 7.0.8.7)
163+
actionmailer (= 7.0.8.7)
164+
actionpack (= 7.0.8.7)
165+
actiontext (= 7.0.8.7)
166+
actionview (= 7.0.8.7)
167+
activejob (= 7.0.8.7)
168+
activemodel (= 7.0.8.7)
169+
activerecord (= 7.0.8.7)
170+
activestorage (= 7.0.8.7)
171+
activesupport (= 7.0.8.7)
152172
bundler (>= 1.15.0)
153-
railties (= 6.1.3.1)
154-
sprockets-rails (>= 2.0.0)
173+
railties (= 7.0.8.7)
155174
rails-controller-testing (1.0.5)
156175
actionpack (>= 5.0.1.rc1)
157176
actionview (>= 5.0.1.rc1)
158177
activesupport (>= 5.0.1.rc1)
159-
rails-dom-testing (2.0.3)
160-
activesupport (>= 4.2.0)
178+
rails-dom-testing (2.2.0)
179+
activesupport (>= 5.0.0)
180+
minitest
161181
nokogiri (>= 1.6)
162-
rails-html-sanitizer (1.3.0)
163-
loofah (~> 2.3)
164-
railties (6.1.3.1)
165-
actionpack (= 6.1.3.1)
166-
activesupport (= 6.1.3.1)
182+
rails-html-sanitizer (1.6.2)
183+
loofah (~> 2.21)
184+
nokogiri (>= 1.15.7, != 1.16.7, != 1.16.6, != 1.16.5, != 1.16.4, != 1.16.3, != 1.16.2, != 1.16.1, != 1.16.0.rc1, != 1.16.0)
185+
railties (7.0.8.7)
186+
actionpack (= 7.0.8.7)
187+
activesupport (= 7.0.8.7)
167188
method_source
168-
rake (>= 0.8.7)
189+
rake (>= 12.2)
169190
thor (~> 1.0)
170-
rake (13.0.3)
191+
zeitwerk (~> 2.5)
192+
rake (13.2.1)
171193
rb-fsevent (0.10.4)
172194
rb-inotify (0.10.1)
173195
ffi (~> 1.0)
@@ -191,39 +213,22 @@ GEM
191213
rspec-support (3.10.1)
192214
ruby2_keywords (0.0.4)
193215
rubyzip (2.3.0)
194-
sassc (2.4.0)
195-
ffi (~> 1.9)
196-
sassc (2.4.0-x64-mingw32)
197-
ffi (~> 1.9)
198-
sassc-rails (2.1.2)
199-
railties (>= 4.0.0)
200-
sassc (>= 2.0)
201-
sprockets (> 3.0)
202-
sprockets-rails
203-
tilt
204216
selenium-webdriver (3.142.7)
205217
childprocess (>= 0.5, < 4.0)
206218
rubyzip (>= 1.2.2)
207219
semantic_range (2.3.1)
208220
spring (2.1.1)
209-
sprockets (4.0.2)
210-
concurrent-ruby (~> 1.0)
211-
rack (> 1, < 3)
212-
sprockets-rails (3.2.2)
213-
actionpack (>= 4.0)
214-
activesupport (>= 4.0)
215-
sprockets (>= 3.0.0)
216221
sqlite3 (1.4.2)
217-
thor (1.1.0)
218-
tilt (2.0.10)
222+
thor (1.3.2)
223+
timeout (0.4.3)
219224
turbolinks (5.2.1)
220225
turbolinks-source (~> 5.2)
221226
turbolinks-source (5.2.0)
222227
twilio-ruby (5.46.0)
223228
faraday (>= 0.9, < 2.0)
224229
jwt (>= 1.5, <= 2.5)
225230
nokogiri (>= 1.6, < 2.0)
226-
tzinfo (2.0.4)
231+
tzinfo (2.0.6)
227232
concurrent-ruby (~> 1.0)
228233
tzinfo-data (1.2020.6)
229234
tzinfo (>= 1.0.0)
@@ -246,10 +251,11 @@ GEM
246251
rack-proxy (>= 0.6.1)
247252
railties (>= 5.2)
248253
semantic_range (>= 2.3.0)
249-
websocket-driver (0.7.3)
254+
websocket-driver (0.7.7)
255+
base64
250256
websocket-extensions (>= 0.1.0)
251257
websocket-extensions (0.1.5)
252-
zeitwerk (2.4.2)
258+
zeitwerk (2.6.18)
253259

254260
PLATFORMS
255261
ruby
@@ -259,14 +265,14 @@ PLATFORMS
259265

260266
DEPENDENCIES
261267
bootsnap (>= 1.4.4)
262-
bootstrap (~> 4.5)
268+
bootstrap (~> 4.6, >= 4.6.2.1)
263269
byebug
264270
dotenv-rails
265271
jbuilder (~> 2.7)
266272
listen (~> 3.3)
267273
puma (~> 5.0)
268274
rack-mini-profiler (~> 2.0)
269-
rails (~> 6.1.3)
275+
rails (~> 7.0.0)
270276
rails-controller-testing
271277
rspec-rails
272278
spring
@@ -284,4 +290,4 @@ RUBY VERSION
284290
ruby 3.0.0p0
285291

286292
BUNDLED WITH
287-
2.2.6
293+
2.2.3

0 commit comments

Comments
 (0)