From aece2be093a95528b547e46d1cf614dd4e071678 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 10 Sep 2020 02:12:55 +0000 Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-CUCUMBER-20442 --- Gemfile | 4 +-- Gemfile.lock | 86 +++++++++++++++++++++++++++++++++++++--------------- 2 files changed, 64 insertions(+), 26 deletions(-) diff --git a/Gemfile b/Gemfile index cfe43f76c..a8aff964b 100644 --- a/Gemfile +++ b/Gemfile @@ -1,6 +1,6 @@ source 'https://rubygems.org' -gem 'aruba', '~> 0.5.3' -gem 'cucumber', '~> 1.3.9' +gem 'aruba', '~> 0.5.4' +gem 'cucumber', '~> 4.0.0' gem 'sinatra' gem 'ronn' diff --git a/Gemfile.lock b/Gemfile.lock index f38ffb94b..1424fd380 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -1,30 +1,61 @@ GEM remote: https://rubygems.org/ specs: + activesupport (5.2.4.4) + concurrent-ruby (~> 1.0, >= 1.0.2) + i18n (>= 0.7, < 2) + minitest (~> 5.1) + tzinfo (~> 1.1) aruba (0.5.4) childprocess (>= 0.3.6) cucumber (>= 1.1.1) rspec-expectations (>= 2.7.0) - builder (3.2.2) - childprocess (0.5.3) - ffi (~> 1.0, >= 1.0.11) - cucumber (1.3.15) - builder (>= 2.1.2) - diff-lcs (>= 1.1.3) - gherkin (~> 2.12) - multi_json (>= 1.7.5, < 2.0) - multi_test (>= 0.1.1) - diff-lcs (1.2.5) - ffi (1.9.3) - ffi (1.9.3-java) - gherkin (2.12.2) - multi_json (~> 1.3) - gherkin (2.12.2-java) - multi_json (~> 1.3) + builder (3.2.4) + childprocess (4.0.0) + concurrent-ruby (1.1.7) + cucumber (4.0.1) + builder (~> 3.2, >= 3.2.3) + cucumber-core (~> 7.0, >= 7.0.0) + cucumber-cucumber-expressions (~> 10.1, >= 10.1.0) + cucumber-gherkin (~> 13.0, >= 13.0.0) + cucumber-html-formatter (~> 6.0, >= 6.0.1) + cucumber-messages (~> 12.1, >= 12.1.1) + cucumber-wire (~> 3.0, >= 3.0.0) + diff-lcs (~> 1.3, >= 1.3, < 1.4) + multi_test (~> 0.1, >= 0.1.2) + sys-uname (~> 1.0, >= 1.0.2) + cucumber-core (7.0.0) + cucumber-gherkin (~> 13.0, >= 13.0.0) + cucumber-messages (~> 12.1, >= 12.1.1) + cucumber-tag-expressions (~> 2.0, >= 2.0.4) + cucumber-cucumber-expressions (10.3.0) + cucumber-gherkin (13.0.0) + cucumber-messages (~> 12.0, >= 12.0.0) + cucumber-html-formatter (6.0.3) + cucumber-messages (~> 12.1, >= 12.1.1) + cucumber-messages (12.4.0) + protobuf-cucumber (~> 3.10, >= 3.10.8) + cucumber-tag-expressions (2.0.4) + cucumber-wire (3.0.0) + cucumber-core (~> 7.0, >= 7.0.0) + cucumber-cucumber-expressions (~> 10.1, >= 10.1.0) + cucumber-messages (~> 12.1, >= 12.1.1) + diff-lcs (1.3) + ffi (1.13.1) + ffi (1.13.1-java) hpricot (0.8.4) - multi_json (1.10.1) - multi_test (0.1.1) + hpricot (0.8.4-java) + i18n (1.8.5) + concurrent-ruby (~> 1.0) + middleware (0.1.0) + minitest (5.14.2) + multi_test (0.1.2) mustache (0.99.4) + protobuf-cucumber (3.10.8) + activesupport (>= 3.2) + middleware + thor + thread_safe rack (1.4.1) rack-protection (1.2.0) rack @@ -33,25 +64,32 @@ GEM hpricot (>= 0.8.2) mustache (>= 0.7.0) rdiscount (>= 1.5.8) - rspec-expectations (3.0.2) + rspec-expectations (3.9.2) diff-lcs (>= 1.2.0, < 2.0) - rspec-support (~> 3.0.0) - rspec-support (3.0.2) + rspec-support (~> 3.9.0) + rspec-support (3.9.3) sinatra (1.3.2) rack (~> 1.3, >= 1.3.6) rack-protection (~> 1.2) tilt (~> 1.3, >= 1.3.3) + sys-uname (1.2.1) + ffi (>= 1.0.0) + thor (1.0.1) + thread_safe (0.3.6) + thread_safe (0.3.6-java) tilt (1.3.3) + tzinfo (1.2.7) + thread_safe (~> 0.1) PLATFORMS java ruby DEPENDENCIES - aruba (~> 0.5.3) - cucumber (~> 1.3.9) + aruba (~> 0.5.4) + cucumber (~> 4.0.0) ronn sinatra BUNDLED WITH - 1.11.2 + 1.17.3