From 3afea5ca558bfacf8d54f22a5f9601aca4343d50 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 31 May 2024 20:59:05 +0000 Subject: [PATCH] fix: Gemfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-7164639 --- Gemfile | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git a/Gemfile b/Gemfile index b792c19..0ce5fa8 100644 --- a/Gemfile +++ b/Gemfile @@ -2,29 +2,29 @@ source 'https://rubygems.org' ruby '2.2.3' -gem 'rails', '4.2.4' +gem 'rails', '4.2.5' gem 'pg', '~> 0.18.3' -gem 'sass-rails', '~> 5.0' +gem 'sass-rails', '~> 5.0', '>= 5.0.5' gem 'uglifier', '>= 1.3.0' -gem 'coffee-rails', '~> 4.1.0' -gem 'jquery-rails', '~> 4.0.5' +gem 'coffee-rails', '~> 4.1.1' +gem 'jquery-rails', '~> 4.1.0' gem 'sdoc', '~> 0.4.0', group: :doc -gem 'devise', '~> 3.5.2' +gem 'devise', '~> 3.5.3' gem 'haml', '~>4.0.7' gem 'multi_json', '~> 1.2' gem 'active_model_serializers', '~> 0.9.3' gem 'rack-cors', require: 'rack/cors' -gem 'kaminari', '~> 0.16.3' +gem 'kaminari', '~> 0.17.0' gem 'paper_trail', '~> 4.0.0' gem 'delayed_job_active_record', '~> 4.1.0' gem 'delayed_job_web', '~> 1.2.10' -gem 'mandrill_mailer', '~> 1.1.0' +gem 'mandrill_mailer', '~> 1.2.0' gem 'aasm', '~> 4.3.0' gem 'liquid', '~> 2.6.1' gem 'unicorn', '~> 5.0.0' gem 'bundler' -gem 'angular-rails-templates', '~> 0.1.5' +gem 'angular-rails-templates', '~> 0.2.0' source 'https://rails-assets.org' do gem 'rails-assets-angular' @@ -46,7 +46,7 @@ end # I tried to put this in assets group # but it does not work for that reason # this libraries are here :( -gem 'less-rails', '~> 2.7.0' +gem 'less-rails', '~> 2.7.1' gem 'railsstrap', '~> 3.3.4' group :development, :test do