From 8d1cca08230ae29f3fde7f4e7933c390e3db01f3 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 20 May 2020 16:03:49 +0800 Subject: [PATCH 1/2] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-569598 --- Gemfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Gemfile b/Gemfile index 1a0968b..60e37b0 100644 --- a/Gemfile +++ b/Gemfile @@ -2,7 +2,7 @@ source 'http://rubygems.org' gem 'rspec-core', '>= 3.0.3' gem 'rouge', '1.6.1' -gem 'activesupport', '>= 4.1.4' +gem 'activesupport', '>= 5.2.4.3' # Add dependencies to develop your gem here. # Include everything needed to run rake, tests, features, etc. From f4c31b432f01a5b5151dc544cf4bab210ef21b17 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 20 May 2020 16:03:50 +0800 Subject: [PATCH 2/2] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-569598 --- Gemfile.lock | 23 ++++++++++++----------- 1 file changed, 12 insertions(+), 11 deletions(-) diff --git a/Gemfile.lock b/Gemfile.lock index f8bbf4a..a57ffa1 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -1,14 +1,14 @@ GEM remote: http://rubygems.org/ specs: - activesupport (4.1.4) - i18n (~> 0.6, >= 0.6.9) - json (~> 1.7, >= 1.7.7) + activesupport (5.2.4.3) + concurrent-ruby (~> 1.0, >= 1.0.2) + i18n (>= 0.7, < 2) minitest (~> 5.1) - thread_safe (~> 0.1) tzinfo (~> 1.1) addressable (2.3.6) builder (3.2.2) + concurrent-ruby (1.1.6) descendants_tracker (0.0.4) thread_safe (~> 0.3, >= 0.3.1) diff-lcs (1.2.5) @@ -29,7 +29,8 @@ GEM oauth2 hashie (3.2.0) highline (1.6.21) - i18n (0.6.11) + i18n (1.8.2) + concurrent-ruby (~> 1.0) jeweler (2.0.1) builder bundler (>= 1.0) @@ -39,10 +40,10 @@ GEM nokogiri (>= 1.5.10) rake rdoc - json (1.8.1) + json (1.8.6) jwt (1.0.0) mini_portile (0.6.0) - minitest (5.4.0) + minitest (5.14.1) multi_json (1.10.1) multi_xml (0.5.5) multipart-post (2.0.0) @@ -73,11 +74,11 @@ GEM rspec-mocks (3.0.3) rspec-support (~> 3.0.0) rspec-support (3.0.3) - thread_safe (0.3.4) + thread_safe (0.3.6) turnip (2.1.1) gherkin (~> 2.5) rspec (>= 3.0, < 4.0) - tzinfo (1.2.1) + tzinfo (1.2.7) thread_safe (~> 0.1) PLATFORMS @@ -85,7 +86,7 @@ PLATFORMS x86-mingw32 DEPENDENCIES - activesupport (>= 4.1.4) + activesupport (>= 5.2.4.3) bundler (~> 1.0) jeweler (~> 2.0.1) rdoc (~> 3.12) @@ -95,4 +96,4 @@ DEPENDENCIES turnip (~> 2.0, >= 2.0.2) BUNDLED WITH - 1.16.4 + 1.17.3