From a16e87a96e4294e65fc0fea525a8b154e9f4c2f2 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 7 Aug 2024 06:54:02 +0000 Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-BOOTSTRAP-7640980 - https://snyk.io/vuln/SNYK-RUBY-BOOTSTRAP-7640987 --- Gemfile | 2 +- Gemfile.lock | 48 ++++++++++++++++++++++++------------------------ 2 files changed, 25 insertions(+), 25 deletions(-) diff --git a/Gemfile b/Gemfile index 563bad2..277492e 100644 --- a/Gemfile +++ b/Gemfile @@ -5,7 +5,7 @@ ruby "2.7.8" gem "rubocop" gem "slack-ruby-bot", "~> 0.16.1" gem "async-websocket", "~> 0.8.0" -gem "bootstrap", "~> 4.5.0" +gem "bootstrap", "~> 5.0.0" gem "font-awesome-rails", ">= 4.7.0.8" gem "jquery-rails", ">= 4.6.0" gem "json" diff --git a/Gemfile.lock b/Gemfile.lock index cd51592..4d09100 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -74,17 +74,17 @@ GEM async-websocket (0.8.0) async-io websocket-driver (~> 0.7.0) - autoprefixer-rails (10.4.15.0) + autoprefixer-rails (10.4.19.0) execjs (~> 2) base64 (0.1.1) bindex (0.8.1) bootsnap (1.16.0) msgpack (~> 1.2) - bootstrap (4.5.3) + bootstrap (5.0.2) autoprefixer-rails (>= 9.1.0) - popper_js (>= 1.14.3, < 2) + popper_js (>= 2.9.2, < 3) sassc-rails (>= 2.0.0) - builder (3.2.4) + builder (3.3.0) byebug (11.1.3) capybara (3.39.2) addressable @@ -106,13 +106,13 @@ GEM coffee-script-source execjs coffee-script-source (1.12.2) - concurrent-ruby (1.2.2) + concurrent-ruby (1.3.3) console (1.19.0) fiber-annotation fiber-local crass (1.0.6) date (3.3.3) - erubi (1.12.0) + erubi (1.13.0) execjs (2.9.1) faraday (2.7.11) base64 @@ -124,7 +124,7 @@ GEM faraday-multipart (1.0.4) multipart-post (~> 2) faraday-net_http (3.0.2) - ffi (1.16.2) + ffi (1.17.0) fiber-annotation (0.2.0) fiber-local (1.0.0) font-awesome-rails (4.7.0.8) @@ -133,7 +133,7 @@ GEM globalid (1.2.1) activesupport (>= 6.1) hashie (5.0.0) - i18n (1.14.1) + i18n (1.14.5) concurrent-ruby (~> 1.0) io-like (0.3.1) jbuilder (2.11.5) @@ -150,7 +150,7 @@ GEM rb-fsevent (~> 0.9, >= 0.9.4) rb-inotify (~> 0.9, >= 0.9.7) ruby_dep (~> 1.2) - loofah (2.21.3) + loofah (2.22.0) crass (~> 1.0.2) nokogiri (>= 1.12.0) mail (2.8.1) @@ -160,10 +160,10 @@ GEM net-smtp marcel (1.0.2) matrix (0.4.2) - method_source (1.0.0) + method_source (1.1.0) mini_mime (1.1.5) - mini_portile2 (2.8.4) - minitest (5.20.0) + mini_portile2 (2.8.7) + minitest (5.24.1) msgpack (1.7.2) multipart-post (2.3.0) net-imap (0.3.7) @@ -176,19 +176,19 @@ GEM net-smtp (0.4.0) net-protocol nio4r (2.5.9) - nokogiri (1.15.4) + nokogiri (1.15.6) mini_portile2 (~> 2.8.2) racc (~> 1.4) parallel (1.23.0) parser (3.2.2.4) ast (~> 2.4.1) racc - popper_js (1.16.1) + popper_js (2.11.8) public_suffix (5.0.3) puma (5.6.8) nio4r (~> 2.0) - racc (1.7.1) - rack (2.2.8) + racc (1.8.1) + rack (2.2.9) rack-test (2.1.0) rack (>= 1.3) rails (6.1.7.6) @@ -220,7 +220,7 @@ GEM rake (>= 12.2) thor (~> 1.0) rainbow (3.1.1) - rake (13.0.6) + rake (13.2.1) rb-fsevent (0.11.2) rb-inotify (0.10.1) ffi (~> 1.0) @@ -278,9 +278,9 @@ GEM sprockets (4.2.1) concurrent-ruby (~> 1.0) rack (>= 2.2.4, < 4) - sprockets-rails (3.4.2) - actionpack (>= 5.2) - activesupport (>= 5.2) + sprockets-rails (3.5.2) + actionpack (>= 6.1) + activesupport (>= 6.1) sprockets (>= 3.0.0) sqlite3 (1.6.6) mini_portile2 (~> 2.8.0) @@ -296,8 +296,8 @@ GEM standard-performance (1.2.0) lint_roller (~> 1.1) rubocop-performance (~> 1.19.0) - thor (1.2.2) - tilt (2.3.0) + thor (1.3.1) + tilt (2.4.0) timeout (0.4.0) timers (4.3.5) turbolinks (5.2.1) @@ -321,7 +321,7 @@ GEM chronic (>= 0.6.3) xpath (3.2.0) nokogiri (~> 1.8) - zeitwerk (2.6.12) + zeitwerk (2.6.17) PLATFORMS ruby @@ -334,7 +334,7 @@ DEPENDENCIES activesupport (>= 6.1.7.3) async-websocket (~> 0.8.0) bootsnap (>= 1.1.0) - bootstrap (~> 4.5.0) + bootstrap (~> 5.0.0) byebug capybara (>= 3.37.1) chromedriver-helper (>= 2.1.1)