fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-8454495 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-8453714 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-8447886 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-8448218 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-8448407 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-8448516
bigbluebutton · Dec 8, 2024 · a5f2e33 · a5f2e33
1 parent 5d2aca1
commit a5f2e33
Show file tree

Hide file tree

Showing 2 changed files with 129 additions and 96 deletions.
diff --git a/Gemfile b/Gemfile
@@ -4,7 +4,7 @@ source 'http://rubygems.org'
 git_source(:github) { |repo| "https://github.com/#{repo}.git" }
 
 # Bundle edge Rails instead: gem 'rails', github: 'rails/rails'
-gem 'rails', '~> 6.1', '>= 6.1.7.8'
+gem 'rails', '~> 7.0', '>= 7.0.0'
 # Use sqlite3 as the database for Active Record
 # gem 'sqlite3', '~> 1.3'
 # Use postgres as the database for Active Record
@@ -56,7 +56,7 @@ gem 'simple_oauth', git: 'https://github.com/blindsidenetworks/simple_oauth.git'
 gem 'activerecord-session_store', '>= 2.1.0'
 
 # frontend
-gem 'bootstrap', '~> 5.0.0'
+gem 'bootstrap', '~> 5.3.2'
 gem 'font-awesome-sass', '~> 6.4.0'
 gem 'popper_js', '>= 1.16'