From 71362a65988e3eb60f60362a44518e5a5d3bf2d7 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 19 Jan 2023 23:39:44 +0000 Subject: [PATCH] fix: Gemfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-3237231 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-3237232 - https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-3237239 - https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-3237242 - https://snyk.io/vuln/SNYK-RUBY-GLOBALID-3237234 - https://snyk.io/vuln/SNYK-RUBY-RACK-3237233 - https://snyk.io/vuln/SNYK-RUBY-RACK-3237237 - https://snyk.io/vuln/SNYK-RUBY-RACK-3237240 --- Gemfile | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/Gemfile b/Gemfile index 89bee6d..6a6060a 100644 --- a/Gemfile +++ b/Gemfile @@ -1,11 +1,11 @@ source 'https://rubygems.org' # Upgraded to Rails 5.0 in October 2017 -gem 'rails', '~> 5.2', '>= 5.2.8.1' +gem 'rails', '~> 6.1', '>= 6.1.7.1' gem 'pg', '~> 0.21' # Allows soft delete of models -gem "paranoia", "~> 2.0" +gem "paranoia", "~> 2.4", ">= 2.4.3" # Authentication and authorization gems gem 'devise', '>= 4.8.1' @@ -17,7 +17,7 @@ gem 'sass-rails', '~> 5.1', '>= 5.1.0' gem 'uglifier', '>= 1.3.0' # Use jquery as the JavaScript library -gem 'jquery-rails', '>= 4.4.0' +gem 'jquery-rails', '>= 4.5.0' gem 'jquery-ui-rails', '>= 6.0.1' # Turbolinks makes following links in your web application faster. Read more: https://github.com/rails/turbolinks @@ -30,7 +30,7 @@ gem 'sdoc', '~> 1.0.0', group: :doc # See https://github.com/rails/execjs#readme for more supported runtimes gem 'therubyracer', platforms: :ruby gem "twitter-bootstrap-rails", ">= 5.0.0" -gem 'tinymce-rails', '>= 5.10.3' +gem 'tinymce-rails', '>= 6.0.3.1' gem 'fastimage' gem 'font-awesome-rails', '>= 4.7.0.8' @@ -39,7 +39,7 @@ gem 'rest-client' # API management gem 'active_model_serializers', '>= 0.10.13' -gem 'apipie-rails', '>= 0.7.1' +gem 'apipie-rails', '>= 0.8.1' gem 'jwt' gem 'rack-cors', :require => 'rack/cors'