From bcbca44a64498ff3d2398f93efd0a2aa7a63f0c3 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 30 Nov 2019 02:57:24 +0000 Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-536100 - https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-536101 - https://snyk.io/vuln/SNYK-RUBY-RAILS-536099 --- Gemfile | 2 +- Gemfile.lock | 39 +++++++++++++++++++++------------------ 2 files changed, 22 insertions(+), 19 deletions(-) diff --git a/Gemfile b/Gemfile index 20e3998..1f5ee12 100644 --- a/Gemfile +++ b/Gemfile @@ -1,6 +1,6 @@ source 'http://rubygems.org' -gem 'rails', '=2.3.10' +gem 'rails', '= 2.3.14' gem 'rspec', '=1.3.1' gem 'rspec-rails', '=1.3.3' gem 'rest-client' diff --git a/Gemfile.lock b/Gemfile.lock index 241d7b1..7d51ab8 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -1,30 +1,30 @@ GEM remote: http://rubygems.org/ specs: - actionmailer (2.3.10) - actionpack (= 2.3.10) - actionpack (2.3.10) - activesupport (= 2.3.10) + actionmailer (2.3.14) + actionpack (= 2.3.14) + actionpack (2.3.14) + activesupport (= 2.3.14) rack (~> 1.1.0) - activerecord (2.3.10) - activesupport (= 2.3.10) - activeresource (2.3.10) - activesupport (= 2.3.10) - activesupport (2.3.10) + activerecord (2.3.14) + activesupport (= 2.3.14) + activeresource (2.3.14) + activesupport (= 2.3.14) + activesupport (2.3.14) addressable (2.2.2) crack (0.1.8) json (1.4.6) jsonschema (2.0.0) mime-types (1.16) - rack (1.1.0) - rails (2.3.10) - actionmailer (= 2.3.10) - actionpack (= 2.3.10) - activerecord (= 2.3.10) - activeresource (= 2.3.10) - activesupport (= 2.3.10) + rack (1.1.6) + rails (2.3.14) + actionmailer (= 2.3.14) + actionpack (= 2.3.14) + activerecord (= 2.3.14) + activeresource (= 2.3.14) + activesupport (= 2.3.14) rake (>= 0.8.3) - rake (0.8.7) + rake (13.0.1) rest-client (1.6.1) mime-types (>= 1.16) rspec (1.3.1) @@ -41,8 +41,11 @@ PLATFORMS DEPENDENCIES json jsonschema - rails (= 2.3.10) + rails (= 2.3.14) rest-client rspec (= 1.3.1) rspec-rails (= 1.3.3) webmock + +BUNDLED WITH + 1.17.3