From 5399ef7706bf61519188cbb81ce3f91e9e139d9a Mon Sep 17 00:00:00 2001 From: "dependabot-preview[bot]" <27856297+dependabot-preview[bot]@users.noreply.github.com> Date: Tue, 18 May 2021 01:37:36 +0000 Subject: [PATCH] [Security] Bump puma from 3.12.0 to 4.3.8 Bumps [puma](https://github.com/puma/puma) from 3.12.0 to 4.3.8. **This update includes security fixes.** - [Release notes](https://github.com/puma/puma/releases) - [Changelog](https://github.com/puma/puma/blob/master/History.md) - [Commits](https://github.com/puma/puma/compare/v3.12.0...v4.3.8) Signed-off-by: dependabot-preview[bot] --- Gemfile | 2 +- Gemfile.lock | 9 ++++++--- 2 files changed, 7 insertions(+), 4 deletions(-) diff --git a/Gemfile b/Gemfile index 21de501..bccd416 100644 --- a/Gemfile +++ b/Gemfile @@ -7,7 +7,7 @@ gem "rails", "~> 5.2.2" gem "pg", ">= 0.18", "< 2.0" -gem "puma", "~> 3.11" +gem "puma", "~> 4.3" gem "sass-rails", "~> 5.0" gem "uglifier", ">= 1.3.0" gem "webpacker" diff --git a/Gemfile.lock b/Gemfile.lock index 41a344c..137feee 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -780,7 +780,9 @@ GEM marcel (0.3.3) mimemagic (~> 0.3.2) method_source (0.9.2) - mimemagic (0.3.3) + mimemagic (0.3.10) + nokogiri (~> 1) + rake mini_mime (1.0.2) mini_portile2 (2.4.0) minitest (5.12.2) @@ -798,7 +800,8 @@ GEM bundler trollop pg (1.1.4) - puma (3.12.0) + puma (4.3.8) + nio4r (~> 2.0) rack (2.0.7) rack-mini-profiler (1.0.2) rack (>= 1.2.0) @@ -934,7 +937,7 @@ DEPENDENCIES pagy (~> 3.5) pessimize (~> 0.4) pg (>= 0.18, < 2.0) - puma (~> 3.11) + puma (~> 4.3) rack-mini-profiler (~> 1.0) rails (~> 5.2.2) responders