From 2d719fcfd66c92c2420ccef445feb46003bc308a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 28 Jun 2023 19:50:14 +0000 Subject: [PATCH] fix: Gemfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-5741907 --- Gemfile | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/Gemfile b/Gemfile index b3cebf9..4c43550 100644 --- a/Gemfile +++ b/Gemfile @@ -4,13 +4,13 @@ git_source(:github) { |repo| "https://github.com/#{repo}.git" } ruby '2.5.0' # Bundle edge Rails instead: gem 'rails', github: 'rails/rails' -gem 'rails', '~> 5.2.2' +gem 'rails', '~> 6.1.7', '>= 6.1.7.4' # Use sqlite3 as the database for Active Record gem 'sqlite3', '1.3.11' # Use Puma as the app server gem 'puma', '~> 3.11' # Use SCSS for stylesheets -gem 'sass-rails', '~> 5.0' +gem 'sass-rails', '~> 6.0', '>= 6.0.0' # Use Uglifier as compressor for JavaScript assets gem 'uglifier', '>= 1.3.0' # See https://github.com/rails/execjs#readme for more supported runtimes @@ -19,7 +19,7 @@ gem 'pg' # Use CoffeeScript for .coffee assets and views gem 'cocaine', '0.4.0' gem 'travis' -gem 'coffee-rails', '~> 4.2' +gem 'coffee-rails', '~> 5.0', '>= 5.0.0' # Turbolinks makes navigating your web application faster. Read more: https://github.com/turbolinks/turbolinks gem 'turbolinks', '~> 5' # Build JSON APIs with ease. Read more: https://github.com/rails/jbuilder @@ -51,7 +51,7 @@ group :development do gem 'capistrano-bundler', '~> 1.1', require: false gem 'capistrano-passenger', '~> 0.1.1', require: false gem 'capistrano-slackify', require: false - gem 'web-console', '>= 3.3.0' + gem 'web-console', '>= 4.0.0' gem 'listen', '>= 3.0.5', '< 3.2' # Spring speeds up development by keeping your application running in the background. Read more: https://github.com/rails/spring gem 'spring'