From 063ca2817b2eb162820831ba1d94afb2f6a8b1bd Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 3 Aug 2022 08:05:17 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-2960802
---
 Gemfile      |  2 +-
 Gemfile.lock | 48 ++++++++++++++++++++++++------------------------
 2 files changed, 25 insertions(+), 25 deletions(-)

diff --git a/Gemfile b/Gemfile
index d423050..0daf2dc 100644
--- a/Gemfile
+++ b/Gemfile
@@ -1,6 +1,6 @@
 source 'https://rubygems.org'
 
-gem 'activerecord'
+gem 'activerecord', '>= 5.2.8.1'
 gem 'sinatra'
 gem 'sqlite3'
 
diff --git a/Gemfile.lock b/Gemfile.lock
index 4e535d1..d46892e 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -1,20 +1,18 @@
 GEM
   remote: https://rubygems.org/
   specs:
-    activemodel (5.1.4)
-      activesupport (= 5.1.4)
-    activerecord (5.1.4)
-      activemodel (= 5.1.4)
-      activesupport (= 5.1.4)
-      arel (~> 8.0)
-    activesupport (5.1.4)
+    activemodel (7.0.3.1)
+      activesupport (= 7.0.3.1)
+    activerecord (7.0.3.1)
+      activemodel (= 7.0.3.1)
+      activesupport (= 7.0.3.1)
+    activesupport (7.0.3.1)
       concurrent-ruby (~> 1.0, >= 1.0.2)
-      i18n (~> 0.7)
-      minitest (~> 5.1)
-      tzinfo (~> 1.1)
+      i18n (>= 1.6, < 2)
+      minitest (>= 5.1)
+      tzinfo (~> 2.0)
     addressable (2.5.2)
       public_suffix (>= 2.0.2, < 4.0)
-    arel (8.0.0)
     aws-sdk (2.10.53)
       aws-sdk-resources (= 2.10.53)
     aws-sdk-core (2.10.53)
@@ -34,14 +32,15 @@ GEM
       xpath (~> 2.0)
     cliver (0.3.2)
     coderay (1.1.2)
-    concurrent-ruby (1.0.5)
+    concurrent-ruby (1.1.10)
     database_cleaner (1.6.1)
     diff-lcs (1.3)
     dotenv (2.2.1)
     factory_girl (4.8.0)
       activesupport (>= 3.0.0)
     ffi (1.9.18)
-    i18n (0.8.6)
+    i18n (1.12.0)
+      concurrent-ruby (~> 1.0)
     jmespath (1.3.1)
     launchy (2.4.3)
       addressable (~> 2.3)
@@ -52,9 +51,10 @@ GEM
     method_source (0.9.0)
     mini_mime (0.1.4)
     mini_portile2 (2.3.0)
-    minitest (5.10.3)
+    minitest (5.16.2)
     multi_json (1.12.2)
-    mustermann (1.0.1)
+    mustermann (1.1.2)
+      ruby2_keywords (~> 0.0.1)
     nokogiri (1.8.1)
       mini_portile2 (~> 2.3.0)
     poltergeist (1.16.0)
@@ -65,7 +65,7 @@ GEM
       coderay (~> 1.1.0)
       method_source (~> 0.9.0)
     public_suffix (3.0.0)
-    rack (2.0.3)
+    rack (2.2.4)
     rack-protection (2.0.0)
       rack
     rack-test (0.7.0)
@@ -89,14 +89,15 @@ GEM
       diff-lcs (>= 1.2.0, < 2.0)
       rspec-support (~> 3.6.0)
     rspec-support (3.6.0)
+    ruby2_keywords (0.0.5)
     ruby_dep (1.5.0)
     sinatra (2.0.0)
       mustermann (~> 1.0)
       rack (~> 2.0)
       rack-protection (= 2.0.0)
       tilt (~> 2.0)
-    sinatra-activerecord (2.0.13)
-      activerecord (>= 3.2)
+    sinatra-activerecord (2.0.25)
+      activerecord (>= 4.1)
       sinatra (>= 1.0)
     sinatra-contrib (2.0.0)
       backports (>= 2.0)
@@ -112,10 +113,9 @@ GEM
       tilt (>= 1.3.3, < 2.1)
     sqlite3 (1.3.13)
     temple (0.8.0)
-    thread_safe (0.3.6)
-    tilt (2.0.8)
-    tzinfo (1.2.3)
-      thread_safe (~> 0.1)
+    tilt (2.0.11)
+    tzinfo (2.0.5)
+      concurrent-ruby (~> 1.0)
     tzinfo-data (1.2017.2)
       tzinfo (>= 1.0.0)
     validate_url (1.0.2)
@@ -131,7 +131,7 @@ PLATFORMS
   ruby
 
 DEPENDENCIES
-  activerecord
+  activerecord (>= 5.2.8.1)
   aws-sdk (~> 2)
   bigdecimal
   database_cleaner
@@ -153,4 +153,4 @@ DEPENDENCIES
   validate_url
 
 BUNDLED WITH
-   1.15.3
+   1.17.3