From 9235d6d578abe8512757409347079432a570dcd1 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 4 Apr 2023 15:19:04 +0000 Subject: [PATCH] fix: Gemfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-3237231 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-3237232 - https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-3237239 - https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-3237242 - https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-3360028 - https://snyk.io/vuln/SNYK-RUBY-GLOBALID-3237234 - https://snyk.io/vuln/SNYK-RUBY-LOOFAH-3168317 - https://snyk.io/vuln/SNYK-RUBY-LOOFAH-3168318 - https://snyk.io/vuln/SNYK-RUBY-LOOFAH-3168649 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-3052880 - https://snyk.io/vuln/SNYK-RUBY-RACK-1061917 - https://snyk.io/vuln/SNYK-RUBY-RACK-3237233 - https://snyk.io/vuln/SNYK-RUBY-RACK-3237237 - https://snyk.io/vuln/SNYK-RUBY-RACK-3237240 - https://snyk.io/vuln/SNYK-RUBY-RACK-3356639 - https://snyk.io/vuln/SNYK-RUBY-RACK-3360233 - https://snyk.io/vuln/SNYK-RUBY-RAILS-5291540 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168316 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168646 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168647 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168648 - https://snyk.io/vuln/SNYK-RUBY-SINATRA-3150405 --- Gemfile | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/Gemfile b/Gemfile index 89bee6d..b8d78fe 100644 --- a/Gemfile +++ b/Gemfile @@ -1,23 +1,23 @@ source 'https://rubygems.org' # Upgraded to Rails 5.0 in October 2017 -gem 'rails', '~> 5.2', '>= 5.2.8.1' +gem 'rails', '~> 6.1', '>= 6.1.7.3' gem 'pg', '~> 0.21' # Allows soft delete of models -gem "paranoia", "~> 2.0" +gem "paranoia", "~> 2.4", ">= 2.4.3" # Authentication and authorization gems gem 'devise', '>= 4.8.1' gem "pundit" # Use SCSS for stylesheets -gem 'sass-rails', '~> 5.1', '>= 5.1.0' +gem 'sass-rails', '~> 6.0', '>= 6.0.0' # Use Uglifier as compressor for JavaScript assets gem 'uglifier', '>= 1.3.0' # Use jquery as the JavaScript library -gem 'jquery-rails', '>= 4.4.0' +gem 'jquery-rails', '>= 4.5.0' gem 'jquery-ui-rails', '>= 6.0.1' # Turbolinks makes following links in your web application faster. Read more: https://github.com/rails/turbolinks @@ -30,7 +30,7 @@ gem 'sdoc', '~> 1.0.0', group: :doc # See https://github.com/rails/execjs#readme for more supported runtimes gem 'therubyracer', platforms: :ruby gem "twitter-bootstrap-rails", ">= 5.0.0" -gem 'tinymce-rails', '>= 5.10.3' +gem 'tinymce-rails', '>= 6.0.3.1' gem 'fastimage' gem 'font-awesome-rails', '>= 4.7.0.8' @@ -39,7 +39,7 @@ gem 'rest-client' # API management gem 'active_model_serializers', '>= 0.10.13' -gem 'apipie-rails', '>= 0.7.1' +gem 'apipie-rails', '>= 0.8.1' gem 'jwt' gem 'rack-cors', :require => 'rack/cors'