From 7e80f6d509eca9b40ad9f86d2893cafec3fc8fd2 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 13 May 2020 20:12:58 -0600 Subject: [PATCH 1/2] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-RACK-569066 --- Gemfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Gemfile b/Gemfile index cfe43f76c..e44e07d2d 100644 --- a/Gemfile +++ b/Gemfile @@ -2,5 +2,5 @@ source 'https://rubygems.org' gem 'aruba', '~> 0.5.3' gem 'cucumber', '~> 1.3.9' -gem 'sinatra' +gem 'sinatra', '>= 2.0.0' gem 'ronn' From 22913913ecdd212ab4575c346036fb68f768bcc7 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 13 May 2020 20:12:59 -0600 Subject: [PATCH 2/2] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-RACK-569066 --- Gemfile.lock | 23 ++++++++++++++--------- 1 file changed, 14 insertions(+), 9 deletions(-) diff --git a/Gemfile.lock b/Gemfile.lock index f38ffb94b..438c2d8f4 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -22,11 +22,14 @@ GEM gherkin (2.12.2-java) multi_json (~> 1.3) hpricot (0.8.4) + hpricot (0.8.4-java) multi_json (1.10.1) multi_test (0.1.1) mustache (0.99.4) - rack (1.4.1) - rack-protection (1.2.0) + mustermann (1.1.1) + ruby2_keywords (~> 0.0.1) + rack (2.2.2) + rack-protection (2.0.8.1) rack rdiscount (1.6.8) ronn (0.7.3) @@ -37,11 +40,13 @@ GEM diff-lcs (>= 1.2.0, < 2.0) rspec-support (~> 3.0.0) rspec-support (3.0.2) - sinatra (1.3.2) - rack (~> 1.3, >= 1.3.6) - rack-protection (~> 1.2) - tilt (~> 1.3, >= 1.3.3) - tilt (1.3.3) + ruby2_keywords (0.0.2) + sinatra (2.0.8.1) + mustermann (~> 1.0) + rack (~> 2.0) + rack-protection (= 2.0.8.1) + tilt (~> 2.0) + tilt (2.0.10) PLATFORMS java @@ -51,7 +56,7 @@ DEPENDENCIES aruba (~> 0.5.3) cucumber (~> 1.3.9) ronn - sinatra + sinatra (>= 2.0.0) BUNDLED WITH - 1.11.2 + 1.17.3