From f9ad1ce3cd8c4ac9e3804306adacf7ed6db25791 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 19 Feb 2025 08:33:22 +0000 Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-REXML-7577227 - https://snyk.io/vuln/SNYK-RUBY-REXML-7814166 - https://snyk.io/vuln/SNYK-RUBY-REXML-7577228 - https://snyk.io/vuln/SNYK-RUBY-REXML-8309365 - https://snyk.io/vuln/SNYK-RUBY-REXML-6861566 - https://snyk.io/vuln/SNYK-RUBY-REXML-7462086 --- Gemfile | 2 +- Gemfile.lock | 47 ++++++++++++++++++++++++++++------------------- 2 files changed, 29 insertions(+), 20 deletions(-) diff --git a/Gemfile b/Gemfile index eb304f645578..bfc851501d96 100644 --- a/Gemfile +++ b/Gemfile @@ -7,6 +7,6 @@ group :test do gem "pry", require: false gem "rake" gem "rubocop", ">= 0.92.0" - gem "rubocop-performance", ">= 1.8.1" + gem "rubocop-performance", ">= 1.24.0" gem "safe_yaml" end diff --git a/Gemfile.lock b/Gemfile.lock index 9cf10f36c48f..e210c47f3091 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -23,44 +23,53 @@ GEM faraday-net_http_persistent (1.2.0) faraday-patron (1.0.0) fastimage (2.2.0) + json (2.10.1) + language_server-protocol (3.17.0.4) + lint_roller (1.1.0) method_source (1.0.0) minitest (5.14.2) multipart-post (2.1.1) octokit (4.21.0) faraday (>= 0.9) sawyer (~> 0.8.0, >= 0.5.3) - parallel (1.20.1) - parser (3.0.1.1) + parallel (1.26.3) + parser (3.3.7.1) ast (~> 2.4.1) + racc pry (0.13.1) coderay (~> 1.1) method_source (~> 1.0) public_suffix (4.0.6) - rainbow (3.0.0) + racc (1.8.1) + rainbow (3.1.1) rake (13.0.1) - regexp_parser (2.1.1) - rexml (3.2.5) - rubocop (1.14.0) + regexp_parser (2.10.0) + rubocop (1.72.2) + json (~> 2.3) + language_server-protocol (~> 3.17.0.2) + lint_roller (~> 1.1.0) parallel (~> 1.10) - parser (>= 3.0.0.0) + parser (>= 3.3.0.2) rainbow (>= 2.2.2, < 4.0) - regexp_parser (>= 1.8, < 3.0) - rexml - rubocop-ast (>= 1.5.0, < 2.0) + regexp_parser (>= 2.9.3, < 3.0) + rubocop-ast (>= 1.38.0, < 2.0) ruby-progressbar (~> 1.7) - unicode-display_width (>= 1.4.0, < 3.0) - rubocop-ast (1.5.0) - parser (>= 3.0.1.1) - rubocop-performance (1.11.3) - rubocop (>= 1.7.0, < 2.0) - rubocop-ast (>= 0.4.0) - ruby-progressbar (1.11.0) + unicode-display_width (>= 2.4.0, < 4.0) + rubocop-ast (1.38.0) + parser (>= 3.3.1.0) + rubocop-performance (1.24.0) + lint_roller (~> 1.1) + rubocop (>= 1.72.1, < 2.0) + rubocop-ast (>= 1.38.0, < 2.0) + ruby-progressbar (1.13.0) ruby2_keywords (0.0.5) safe_yaml (1.0.5) sawyer (0.8.2) addressable (>= 2.3.5) faraday (> 0.8, < 2.0) - unicode-display_width (2.0.0) + unicode-display_width (3.1.4) + unicode-emoji (~> 4.0, >= 4.0.4) + unicode-emoji (4.0.4) PLATFORMS ruby @@ -72,7 +81,7 @@ DEPENDENCIES pry rake rubocop (>= 0.92.0) - rubocop-performance (>= 1.8.1) + rubocop-performance (>= 1.24.0) safe_yaml BUNDLED WITH