From bc7e11a75cfc3c941a5ed1739793222196a735e1 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 19 Dec 2019 06:58:03 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-EXCON-537866
---
 Gemfile      | 2 +-
 Gemfile.lock | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/Gemfile b/Gemfile
index 2f6a1d3..3f01819 100644
--- a/Gemfile
+++ b/Gemfile
@@ -7,7 +7,7 @@ gem 'pg'
 gem 'activerecord', '~> 6.0.0.beta1'
 
 # Elasticsearch
-gem 'excon' # using excon as faraday adapter (net::http breaks)
+gem 'excon' , '>= 0.71.0' # using excon as faraday adapter (net::http breaks)
 gem 'elasticsearch'
 gem 'elasticsearch-model'
 gem 'elasticsearch-rails'
diff --git a/Gemfile.lock b/Gemfile.lock
index 63f8e42..f9c34a0 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -31,7 +31,7 @@ GEM
     elasticsearch-transport (6.1.0)
       faraday
       multi_json
-    excon (0.62.0)
+    excon (0.71.1)
     faraday (0.15.4)
       multipart-post (>= 1.2, < 3)
     git (1.5.0)
@@ -101,7 +101,7 @@ DEPENDENCIES
   elasticsearch
   elasticsearch-model
   elasticsearch-rails
-  excon
+  excon (>= 0.71.0)
   juwelier (~> 2.1.0)
   pg
   rdoc (~> 3.12)
@@ -109,4 +109,4 @@ DEPENDENCIES
   simplecov
 
 BUNDLED WITH
-   1.17.2
+   1.17.3