From 0144823a93014f5c4b68e08fe3d58f8eb160346a Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 20 Sep 2024 10:34:55 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-PUMA-8062124
---
 Gemfile      | 2 +-
 Gemfile.lock | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/Gemfile b/Gemfile
index 3c3565e0..31235a11 100644
--- a/Gemfile
+++ b/Gemfile
@@ -9,7 +9,7 @@ ruby '3.0.0'
 gem 'rails', '~> 6.1.3.2'
 
 # Use Puma as the app server
-gem 'puma', '~> 4.3.11'
+gem 'puma', '~> 5.6.9'
 
 # Transpile app-like JavaScript. Read more: https://github.com/rails/webpacker
 gem 'sass-rails', '~> 6.0.0'
diff --git a/Gemfile.lock b/Gemfile.lock
index 220b0f8a..e376c9ee 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -172,7 +172,7 @@ GEM
     multi_json (1.15.0)
     multipart-post (2.1.1)
     ngrok-tunnel (2.1.1)
-    nio4r (2.5.8)
+    nio4r (2.7.3)
     nokogiri (1.11.7)
       mini_portile2 (~> 2.5.0)
       racc (~> 1.4)
@@ -188,7 +188,7 @@ GEM
     pry-rails (0.3.9)
       pry (>= 0.10.4)
     public_suffix (4.0.6)
-    puma (4.3.11)
+    puma (5.6.9)
       nio4r (~> 2.0)
     puma-ngrok-tunnel (1.2.0)
       ngrok-tunnel (~> 2.1, >= 2.1.1)
@@ -344,7 +344,7 @@ DEPENDENCIES
   parallel
   pg
   pry-rails
-  puma (~> 4.3.11)
+  puma (~> 5.6.9)
   puma-ngrok-tunnel (>= 1.2.0)
   rack-cors
   rails (~> 6.1.3.2)
@@ -370,4 +370,4 @@ RUBY VERSION
    ruby 3.0.0p0
 
 BUNDLED WITH
-   2.2.24
+   2.2.3