From 5753e8572b0930debc3ac1bc361b17148a478f66 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 12 Nov 2019 02:57:18 +0000 Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-RAILS-472695 - https://snyk.io/vuln/SNYK-RUBY-RAILS-472697 --- Gemfile | 2 +- Gemfile.lock | 89 ++++++++++++++++++++++++++++++++++++++++------------ 2 files changed, 70 insertions(+), 21 deletions(-) diff --git a/Gemfile b/Gemfile index 20e3998..1e85fdf 100644 --- a/Gemfile +++ b/Gemfile @@ -1,6 +1,6 @@ source 'http://rubygems.org' -gem 'rails', '=2.3.10' +gem 'rails', '= 3.0.14' gem 'rspec', '=1.3.1' gem 'rspec-rails', '=1.3.3' gem 'rest-client' diff --git a/Gemfile.lock b/Gemfile.lock index 241d7b1..547cb6c 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -1,36 +1,82 @@ GEM remote: http://rubygems.org/ specs: - actionmailer (2.3.10) - actionpack (= 2.3.10) - actionpack (2.3.10) - activesupport (= 2.3.10) - rack (~> 1.1.0) - activerecord (2.3.10) - activesupport (= 2.3.10) - activeresource (2.3.10) - activesupport (= 2.3.10) - activesupport (2.3.10) + abstract (1.0.0) + actionmailer (3.0.14) + actionpack (= 3.0.14) + mail (~> 2.2.19) + actionpack (3.0.14) + activemodel (= 3.0.14) + activesupport (= 3.0.14) + builder (~> 2.1.2) + erubis (~> 2.6.6) + i18n (~> 0.5.0) + rack (~> 1.2.5) + rack-mount (~> 0.6.14) + rack-test (~> 0.5.7) + tzinfo (~> 0.3.23) + activemodel (3.0.14) + activesupport (= 3.0.14) + builder (~> 2.1.2) + i18n (~> 0.5.0) + activerecord (3.0.14) + activemodel (= 3.0.14) + activesupport (= 3.0.14) + arel (~> 2.0.10) + tzinfo (~> 0.3.23) + activeresource (3.0.14) + activemodel (= 3.0.14) + activesupport (= 3.0.14) + activesupport (3.0.14) addressable (2.2.2) + arel (2.0.10) + builder (2.1.2) crack (0.1.8) + erubis (2.6.6) + abstract (>= 1.0.0) + i18n (0.5.4) json (1.4.6) jsonschema (2.0.0) + mail (2.2.20) + activesupport (>= 2.3.6) + i18n (>= 0.4.0) + mime-types (~> 1.16) + treetop (~> 1.4.8) mime-types (1.16) - rack (1.1.0) - rails (2.3.10) - actionmailer (= 2.3.10) - actionpack (= 2.3.10) - activerecord (= 2.3.10) - activeresource (= 2.3.10) - activesupport (= 2.3.10) - rake (>= 0.8.3) - rake (0.8.7) + polyglot (0.3.5) + rack (1.2.8) + rack-mount (0.6.14) + rack (>= 1.0.0) + rack-test (0.5.7) + rack (>= 1.0) + rails (3.0.14) + actionmailer (= 3.0.14) + actionpack (= 3.0.14) + activerecord (= 3.0.14) + activeresource (= 3.0.14) + activesupport (= 3.0.14) + bundler (~> 1.0) + railties (= 3.0.14) + railties (3.0.14) + actionpack (= 3.0.14) + activesupport (= 3.0.14) + rake (>= 0.8.7) + rdoc (~> 3.4) + thor (~> 0.14.4) + rake (13.0.0) + rdoc (3.12.2) + json (~> 1.4) rest-client (1.6.1) mime-types (>= 1.16) rspec (1.3.1) rspec-rails (1.3.3) rack (>= 1.0.0) rspec (= 1.3.1) + thor (0.14.6) + treetop (1.4.15) + polyglot + polyglot (>= 0.3.1) + tzinfo (0.3.56) webmock (1.4.0) addressable (>= 2.2.2) crack (>= 0.1.7) @@ -41,8 +87,11 @@ PLATFORMS DEPENDENCIES json jsonschema - rails (= 2.3.10) + rails (= 3.0.14) rest-client rspec (= 1.3.1) rspec-rails (= 1.3.3) webmock + +BUNDLED WITH + 1.17.3