[Snyk] Fix for 1 vulnerabilities

[samawad]

Snyk has created this PR to fix 1 vulnerabilities in the rubygems dependencies of this project.

Snyk changed the following file(s):

• Gemfile

⚠️ Warning

Failed to update the Gemfile.lock, please update manually before merging.

---

This upgrade contains major version bumps for the core web framework (Sinatra) and its underlying interface (Rack), introducing significant breaking changes. The Rack 1.x to 2.x upgrade is the most critical, altering the fundamental specification for how web servers and applications communicate.

Top Breaking Changes:

• rack 1.6.0 → 2.2.18 (high): This major upgrade introduces breaking changes to the Rack specification. Applications or middleware directly manipulating the response may fail.

  • Highlights:
    • Response header keys must now be lowercase. Uppercase keys are no longer supported. [7]
    • Rack::File has been renamed to Rack::Files. [11]
  • Recommendation: Audit all middleware and application code that directly interacts with response headers to ensure only lowercase keys are used. Replace any usage of Rack::File.

• sinatra 1.3.2 → 2.0.0 (high): This is a major version update that aligns with Rack 2.x and its breaking changes. [6, 8]

  • Highlights:
    • As Sinatra 2.0 is built on Rack 2, it inherits all of Rack's breaking changes, including the requirement for lowercase response header keys. [7]
    • Support for older Ruby versions is dropped.
  • Recommendation: After addressing the underlying Rack changes, test application functionality thoroughly, as Sinatra's major version policy indicates the potential for backward-incompatible changes. [6]

• unicorn 4.8.3 → 4.9.0 (low): This is a minor feature release to add support for Rack::TempfileReaper and does not contain documented breaking changes. [2, 3]

Notice 🤖: This content was generated using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.

---

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Allocation of Resources Without Limits or Throttling SNYK-RUBY-RACK-13052974	696

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Allocation of Resources Without Limits or Throttling