From 12282657b9204cb39de235039e4af597a8f97bd9 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 4 Apr 2024 22:36:59 +0000 Subject: [PATCH] fix: Gemfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-6274386 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-6228056 - https://snyk.io/vuln/SNYK-RUBY-RACK-6274383 - https://snyk.io/vuln/SNYK-RUBY-RACK-6274384 - https://snyk.io/vuln/SNYK-RUBY-RACK-6274385 --- Gemfile | 50 +++++++++++++++++++++++++------------------------- 1 file changed, 25 insertions(+), 25 deletions(-) diff --git a/Gemfile b/Gemfile index 533d7665..9070b301 100644 --- a/Gemfile +++ b/Gemfile @@ -2,50 +2,50 @@ source "https://rubygems.org" ruby "2.2.4" -gem "rails", "4.2.5.2" +gem "rails", "7.0.8.1" gem "pg" # assets gem "autoprefixer-rails" -gem "coffee-rails" +gem "coffee-rails", ">= 4.2.2" gem "foundation-icons-sass-rails" -gem "foundation-rails", "~> 5.5.2.1" -gem "jquery-rails" -gem "sass-rails", "~> 5.0.0" +gem "foundation-rails", "~> 5.5.3.1" +gem "jquery-rails", ">= 4.1.1" +gem "sass-rails", "~> 5.0.8" gem "skim", git: "https://github.com/jfirebaugh/skim" gem "therubyracer", platforms: :ruby gem "uglifier", ">= 2.7.2" # views -gem "active_link_to" +gem "active_link_to", ">= 1.0.4" gem "country_select" gem "metamagic" -gem "simple_form" +gem "simple_form", ">= 4.0.0" gem "slim" # all other gems gem "decent_decoration" gem "decent_exposure" -gem "devise" -gem "draper" +gem "devise", ">= 4.7.0" +gem "draper", ">= 3.1.0" gem "flamegraph" gem "geocoder" gem "google-analytics-rails" -gem "health_check" +gem "health_check", ">= 1.7.2" gem "interactor" -gem "kaminari" -gem "local_time" +gem "kaminari", ">= 0.17.0" +gem "local_time", ">= 2.0.0" gem "memory_profiler" gem "pg_search" gem "puma" gem "pundit" -gem "rack-canonical-host" -gem "rack-mini-profiler", require: false -gem "responders" +gem "rack-canonical-host", ">= 0.2.1" +gem "rack-mini-profiler", ">= 0.9.9", require: false +gem "responders", ">= 3.0.0" gem "rollbar" gem "seedbank" gem "stackprof" -gem "stripe-rails" +gem "stripe-rails", ">= 0.4.0" group :staging, :production do gem "dalli" @@ -54,12 +54,12 @@ group :staging, :production do end group :test do - gem "capybara" - gem "capybara-webkit" + gem "capybara", ">= 2.7.0" + gem "capybara-webkit", ">= 1.9.0" gem "codeclimate-test-reporter", require: false gem "database_cleaner" gem "email_spec" - gem "formulaic" + gem "formulaic", ">= 0.4.0" gem "launchy" gem "shoulda-matchers", require: false gem "vcr" @@ -72,15 +72,15 @@ group :development, :test do gem "bundler-audit", require: false gem "byebug" gem "coffeelint" - gem "dotenv-rails" - gem "factory_girl_rails" + gem "dotenv-rails", ">= 2.7.6" + gem "factory_girl_rails", ">= 4.7.0" gem "faker" gem "fuubar", "~> 2.0.0.rc1" - gem "jasmine", "> 2.0" + gem "jasmine", ">= 2.5.0" gem "jasmine-jquery-rails" gem "pry-rails" gem "rails_best_practices", require: false - gem "rspec-rails", "~> 3.0" + gem "rspec-rails", "~> 3.5", ">= 3.5.0" gem "rubocop", require: false gem "rubocop-rspec", require: false gem "scss_lint", require: false @@ -93,8 +93,8 @@ group :development do gem "letter_opener" gem "quiet_assets" gem "rails-erd" - gem "slim-rails" + gem "slim-rails", ">= 3.1.0" gem "spring" gem "spring-commands-rspec" - gem "web-console", "~> 2.0" + gem "web-console", "~> 3.0", ">= 3.0.0" end