From a263a4b360860a0cfb0e6d1c924eaf19892d0594 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 4 Nov 2024 05:34:41 +0000 Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-REXML-8309365 --- Gemfile | 2 +- Gemfile.lock | 30 +++++++++++++++--------------- 2 files changed, 16 insertions(+), 16 deletions(-) diff --git a/Gemfile b/Gemfile index b827ad5b..04c1a330 100644 --- a/Gemfile +++ b/Gemfile @@ -72,7 +72,7 @@ group :development, :test do end group :development do - gem 'rubocop', '~> 1.63', '>= 1.63.0', require: false + gem 'rubocop', '~> 1.66', '>= 1.66.0', require: false gem 'rubocop-rails', '~> 2.25', '>= 2.25.0', require: false # Access an IRB console on exception pages or by using <%= console %> anywhere in the code. gem 'listen', '~> 3.5' diff --git a/Gemfile.lock b/Gemfile.lock index 905ffeaf..f8ae89c6 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -173,7 +173,7 @@ GEM faraday_middleware (1.2.0) faraday (~> 1.0) ffi (1.17.0) - ffi (1.17.0-x86_64-linux-gnu) + ffi (1.17.0-x86_64-linux) ffi-compiler (1.3.2) ffi (>= 1.15.5) rake @@ -201,7 +201,7 @@ GEM rails-dom-testing (>= 1, < 3) railties (>= 4.2.0) thor (>= 0.14, < 2.0) - json (2.7.2) + json (2.7.5) json-jwt (1.15.3.1) activesupport (>= 4.2) aes_key_wrap @@ -262,8 +262,8 @@ GEM faraday (>= 0.9, < 3.0) json rack (>= 1.4, < 4.0) - parallel (1.25.1) - parser (3.3.3.0) + parallel (1.26.3) + parser (3.3.5.1) ast (~> 2.4.1) racc pg (1.5.6) @@ -275,7 +275,7 @@ GEM public_suffix (6.0.0) puma (6.4.2) nio4r (~> 2.0) - racc (1.8.0) + racc (1.8.1) rack (2.2.9) rack-test (2.1.0) rack (>= 1.3) @@ -327,8 +327,7 @@ GEM repost (0.3.8) request_store (1.7.0) rack (>= 1.4) - rexml (3.3.1) - strscan + rexml (3.3.9) rspec (3.13.0) rspec-core (~> 3.13.0) rspec-expectations (~> 3.13.0) @@ -350,18 +349,17 @@ GEM rspec-mocks (~> 3.13) rspec-support (~> 3.13) rspec-support (3.13.1) - rubocop (1.64.1) + rubocop (1.68.0) json (~> 2.3) language_server-protocol (>= 3.17.0) parallel (~> 1.10) parser (>= 3.3.0.2) rainbow (>= 2.2.2, < 4.0) - regexp_parser (>= 1.8, < 3.0) - rexml (>= 3.2.5, < 4.0) - rubocop-ast (>= 1.31.1, < 2.0) + regexp_parser (>= 2.4, < 3.0) + rubocop-ast (>= 1.32.2, < 2.0) ruby-progressbar (~> 1.7) unicode-display_width (>= 2.4.0, < 3.0) - rubocop-ast (1.31.3) + rubocop-ast (1.33.1) parser (>= 3.3.1.0) rubocop-rails (2.25.0) activesupport (>= 4.2.0) @@ -402,7 +400,6 @@ GEM activesupport (>= 6.1) sprockets (>= 3.0.0) stringio (3.1.1) - strscan (3.1.0) sync (0.5.0) syslog_protocol (0.9.2) term-ansicolor (1.10.2) @@ -423,7 +420,7 @@ GEM concurrent-ruby (~> 1.0) tzinfo-data (1.2024.1) tzinfo (>= 1.0.0) - unicode-display_width (2.5.0) + unicode-display_width (2.6.0) web-console (4.2.1) actionview (>= 6.0.0) activemodel (>= 6.0.0) @@ -479,7 +476,7 @@ DEPENDENCIES repost (~> 0.3.8) rspec rspec-rails (>= 6.1.3) - rubocop (~> 1.63, >= 1.63.0) + rubocop (~> 1.66, >= 1.66.0) rubocop-rails (~> 2.25, >= 2.25.0) sass-rails (>= 6.0.0) simple_oauth! @@ -490,3 +487,6 @@ DEPENDENCIES tzinfo-data web-console (>= 4.2.1) webmock (>= 3.23.1) + +BUNDLED WITH + 2.1.4