From d8f91eabd5d2ab2dd5f641f31d220a81fe4bf7d5 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 12 Jul 2025 07:29:33 +0000
Subject: [PATCH] fix: docs/Gemfile & docs/Gemfile.lock to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-8732769
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-8732779
- https://snyk.io/vuln/SNYK-RUBY-FFI-22037
- https://snyk.io/vuln/SNYK-RUBY-JEKYLL-451462
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-9510795
- https://snyk.io/vuln/SNYK-RUBY-KRAMDOWN-585939
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-9510789
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-9789079
---
 docs/Gemfile      |   6 +--
 docs/Gemfile.lock | 117 ++++++++++++++++++++++++++++------------------
 2 files changed, 74 insertions(+), 49 deletions(-)

diff --git a/docs/Gemfile b/docs/Gemfile
index 4f4991e3b2a6..8f7f48b419b0 100644
--- a/docs/Gemfile
+++ b/docs/Gemfile
@@ -4,10 +4,10 @@ gem 'rake'
 
 # jekyll, which builds it all
 # 2.0 includes sass processing
-gem 'jekyll', '~>2.0'
+gem 'jekyll', '~> 2.3', '>= 2.3.0'
 
 # Auto redirect pages
-gem 'jekyll-redirect-from'
+gem 'jekyll-redirect-from', '>= 0.7.0'
 
 # JSON
 gem 'json'
@@ -16,4 +16,4 @@ gem 'json'
 gem 'rb-fsevent'
 
 # For markdown header cleanup
-gem 'sanitize', '~>2.0'
+gem 'sanitize', '~> 2.1', '>= 2.1.0'
diff --git a/docs/Gemfile.lock b/docs/Gemfile.lock
index e423b54711bd..47dc5fe643dc 100644
--- a/docs/Gemfile.lock
+++ b/docs/Gemfile.lock
@@ -1,27 +1,34 @@
 GEM
   remote: https://rubygems.org/
   specs:
+    addressable (2.8.7)
+      public_suffix (>= 2.0.2, < 7.0)
+    base64 (0.3.0)
     blankslate (2.1.2.4)
-    celluloid (0.15.2)
-      timers (~> 1.1.0)
-    classifier (1.3.4)
-      fast-stemmer (>= 1.0.0)
-    coffee-script (2.3.0)
+    classifier-reborn (2.3.0)
+      fast-stemmer (~> 1.0)
+      matrix (~> 0.4)
+    coffee-script (2.4.1)
       coffee-script-source
       execjs
-    coffee-script-source (1.7.1)
+    coffee-script-source (1.12.2)
     colorator (0.1)
-    execjs (2.2.1)
+    execjs (2.10.0)
+    faraday (2.8.1)
+      base64
+      faraday-net_http (>= 2.0, < 3.1)
+      ruby2_keywords (>= 0.0.4)
+    faraday-net_http (3.0.2)
     fast-stemmer (1.0.2)
-    ffi (1.9.3)
-    jekyll (2.2.0)
-      classifier (~> 1.3)
+    ffi (1.17.2)
+    jekyll (2.5.3)
+      classifier-reborn (~> 2.0)
       colorator (~> 0.1)
       jekyll-coffeescript (~> 1.0)
       jekyll-gist (~> 1.0)
       jekyll-paginate (~> 1.0)
       jekyll-sass-converter (~> 1.0)
-      jekyll-watch (~> 1.0)
+      jekyll-watch (~> 1.1)
       kramdown (~> 1.3)
       liquid (~> 2.6.1)
       mercenary (~> 0.3.3)
@@ -29,54 +36,72 @@ GEM
       redcarpet (~> 3.1)
       safe_yaml (~> 1.0)
       toml (~> 0.1.0)
-    jekyll-coffeescript (1.0.0)
+    jekyll-coffeescript (1.2.2)
       coffee-script (~> 2.2)
-    jekyll-gist (1.1.0)
-    jekyll-paginate (1.0.0)
-    jekyll-redirect-from (0.5.0)
-      jekyll (~> 2.0)
-    jekyll-sass-converter (1.2.0)
-      sass (~> 3.2)
-    jekyll-watch (1.1.0)
-      listen (~> 2.7)
+      coffee-script-source (~> 1.12)
+    jekyll-gist (1.5.0)
+      octokit (~> 4.2)
+    jekyll-paginate (1.1.0)
+    jekyll-redirect-from (0.11.0)
+      jekyll (>= 2.0)
+    jekyll-sass-converter (1.5.2)
+      sass (~> 3.4)
+    jekyll-watch (1.5.1)
+      listen (~> 3.0)
     json (1.8.1)
-    kramdown (1.4.1)
-    liquid (2.6.1)
-    listen (2.7.9)
-      celluloid (>= 0.15.2)
-      rb-fsevent (>= 0.9.3)
-      rb-inotify (>= 0.9)
-    mercenary (0.3.4)
-    mini_portile (0.6.0)
-    nokogiri (1.6.3.1)
-      mini_portile (= 0.6.0)
+    kramdown (1.17.0)
+    liquid (2.6.3)
+    listen (3.9.0)
+      rb-fsevent (~> 0.10, >= 0.10.3)
+      rb-inotify (~> 0.9, >= 0.9.10)
+    matrix (0.4.3)
+    mercenary (0.3.6)
+    mini_portile2 (2.8.9)
+    nokogiri (1.15.7)
+      mini_portile2 (~> 2.8.2)
+      racc (~> 1.4)
+    octokit (4.25.1)
+      faraday (>= 1, < 3)
+      sawyer (~> 0.9)
     parslet (1.5.0)
       blankslate (~> 2.0)
-    posix-spawn (0.3.9)
-    pygments.rb (0.6.0)
+    posix-spawn (0.3.15)
+    public_suffix (5.1.1)
+    pygments.rb (0.6.3)
       posix-spawn (~> 0.3.6)
-      yajl-ruby (~> 1.1.0)
+      yajl-ruby (~> 1.2.0)
+    racc (1.8.1)
     rake (10.3.2)
-    rb-fsevent (0.9.4)
-    rb-inotify (0.9.5)
-      ffi (>= 0.5.0)
-    redcarpet (3.1.2)
-    safe_yaml (1.0.4)
-    sanitize (2.0.6)
+    rb-fsevent (0.11.2)
+    rb-inotify (0.11.1)
+      ffi (~> 1.0)
+    redcarpet (3.6.1)
+    ruby2_keywords (0.0.5)
+    safe_yaml (1.0.5)
+    sanitize (2.1.1)
       nokogiri (>= 1.4.4)
-    sass (3.3.14)
-    timers (1.1.0)
-    toml (0.1.1)
+    sass (3.7.4)
+      sass-listen (~> 4.0.0)
+    sass-listen (4.0.0)
+      rb-fsevent (~> 0.9, >= 0.9.4)
+      rb-inotify (~> 0.9, >= 0.9.7)
+    sawyer (0.9.2)
+      addressable (>= 2.3.5)
+      faraday (>= 0.17.3, < 3)
+    toml (0.1.2)
       parslet (~> 1.5.0)
-    yajl-ruby (1.1.0)
+    yajl-ruby (1.2.3)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
-  jekyll (~> 2.0)
-  jekyll-redirect-from
+  jekyll (~> 2.3, >= 2.3.0)
+  jekyll-redirect-from (>= 0.7.0)
   json
   rake
   rb-fsevent
-  sanitize (~> 2.0)
+  sanitize (~> 2.1, >= 2.1.0)
+
+BUNDLED WITH
+   2.1.4