From f00c9fe8d0daf4e5a940762e6c1d4aec5e327b53 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 29 Sep 2021 04:56:13 +0000 Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1726792 --- Gemfile | 2 +- Gemfile.lock | 48 ++++++++++++++++++++++++++---------------------- 2 files changed, 27 insertions(+), 23 deletions(-) diff --git a/Gemfile b/Gemfile index d423050..7440c0f 100644 --- a/Gemfile +++ b/Gemfile @@ -20,7 +20,7 @@ gem 'tzinfo-data' group :development do gem 'rspec' - gem 'poltergeist' + gem 'poltergeist', '>= 1.16.0' gem 'factory_girl' gem 'database_cleaner' gem 'launchy' diff --git a/Gemfile.lock b/Gemfile.lock index 4e535d1..65e6999 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -12,8 +12,8 @@ GEM i18n (~> 0.7) minitest (~> 5.1) tzinfo (~> 1.1) - addressable (2.5.2) - public_suffix (>= 2.0.2, < 4.0) + addressable (2.8.0) + public_suffix (>= 2.0.2, < 5.0) arel (8.0.0) aws-sdk (2.10.53) aws-sdk-resources (= 2.10.53) @@ -25,13 +25,14 @@ GEM aws-sigv4 (1.0.2) backports (3.8.0) bigdecimal (1.3.2) - capybara (2.15.1) + capybara (3.35.3) addressable mini_mime (>= 0.1.3) - nokogiri (>= 1.3.3) - rack (>= 1.0.0) - rack-test (>= 0.5.4) - xpath (~> 2.0) + nokogiri (~> 1.8) + rack (>= 1.6.0) + rack-test (>= 0.6.3) + regexp_parser (>= 1.5, < 3.0) + xpath (~> 3.2) cliver (0.3.2) coderay (1.1.2) concurrent-ruby (1.0.5) @@ -50,30 +51,33 @@ GEM rb-inotify (~> 0.9, >= 0.9.7) ruby_dep (~> 1.2) method_source (0.9.0) - mini_mime (0.1.4) - mini_portile2 (2.3.0) + mini_mime (1.1.1) + mini_portile2 (2.6.1) minitest (5.10.3) multi_json (1.12.2) mustermann (1.0.1) - nokogiri (1.8.1) - mini_portile2 (~> 2.3.0) - poltergeist (1.16.0) - capybara (~> 2.1) + nokogiri (1.12.5) + mini_portile2 (~> 2.6.1) + racc (~> 1.4) + poltergeist (1.18.1) + capybara (>= 2.1, < 4) cliver (~> 0.3.1) websocket-driver (>= 0.2.0) pry (0.11.1) coderay (~> 1.1.0) method_source (~> 0.9.0) - public_suffix (3.0.0) - rack (2.0.3) + public_suffix (4.0.6) + racc (1.5.2) + rack (2.2.3) rack-protection (2.0.0) rack - rack-test (0.7.0) + rack-test (1.1.0) rack (>= 1.0, < 3) rake (12.1.0) rb-fsevent (0.10.2) rb-inotify (0.9.10) ffi (>= 0.5.0, < 2) + regexp_parser (2.1.1) rerun (0.11.0) listen (~> 3.0) rspec (3.6.0) @@ -121,11 +125,11 @@ GEM validate_url (1.0.2) activemodel (>= 3.0.0) addressable - websocket-driver (0.7.0) + websocket-driver (0.7.5) websocket-extensions (>= 0.1.0) - websocket-extensions (0.1.2) - xpath (2.1.0) - nokogiri (~> 1.3) + websocket-extensions (0.1.5) + xpath (3.2.0) + nokogiri (~> 1.8) PLATFORMS ruby @@ -138,7 +142,7 @@ DEPENDENCIES dotenv factory_girl launchy - poltergeist + poltergeist (>= 1.16.0) pry rake rerun @@ -153,4 +157,4 @@ DEPENDENCIES validate_url BUNDLED WITH - 1.15.3 + 1.17.3