From e3e78d9872af32c4d8bc81a255bb72b63199ef9e Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 8 Jul 2020 07:56:58 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/snyk:lic:rubygems:domain_name:(BSD-2-Clause_OR_MPL-1.1_OR_GPL-2.0_OR_LGPL-2.1)
- https://snyk.io/vuln/snyk:lic:rubygems:mime-types:(MIT_OR_Artistic-2.0_OR_GPL-2.0)
---
 Gemfile      |  2 +-
 Gemfile.lock | 99 +++++++++++++++++++++++++++++-----------------------
 2 files changed, 56 insertions(+), 45 deletions(-)

diff --git a/Gemfile b/Gemfile
index e1e6f36..1ee9301 100644
--- a/Gemfile
+++ b/Gemfile
@@ -33,5 +33,5 @@ group :test do
   gem 'rspec-mocks', '~> 3.2.0'
   gem 'factory_girl_rails', '~> 4.5.0'
   gem 'database_cleaner', '~> 1.2.0'
-  gem 'airborne', '~> 0.1.15'
+  gem 'airborne', '~> 0.2.6'
 end
diff --git a/Gemfile.lock b/Gemfile.lock
index 508d4a5..caca753 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -40,12 +40,13 @@ GEM
       minitest (~> 5.1)
       thread_safe (~> 0.3, >= 0.3.4)
       tzinfo (~> 1.1)
-    airborne (0.1.15)
-      activesupport (>= 3.0.0)
+    airborne (0.2.13)
+      activesupport
+      rack
       rack-test (~> 0.6, >= 0.6.2)
-      rest-client (~> 1.7, >= 1.7.3)
-      rspec (~> 3.1, >= 3.1.0)
-    arel (6.0.2)
+      rest-client (>= 1.7.3, < 3.0)
+      rspec (~> 3.1)
+    arel (6.0.4)
     ast (2.0.0)
     astrolabe (1.3.1)
       parser (~> 2.2)
@@ -53,17 +54,19 @@ GEM
       descendants_tracker (~> 0.0.4)
       ice_nine (~> 0.11.0)
       thread_safe (~> 0.3, >= 0.3.1)
-    builder (3.2.2)
+    builder (3.2.4)
     byebug (5.0.0)
       columnize (= 0.9.0)
     coercible (1.0.0)
       descendants_tracker (~> 0.0.1)
     columnize (0.9.0)
+    concurrent-ruby (1.1.6)
+    crass (1.0.6)
     database_cleaner (1.2.0)
     descendants_tracker (0.0.4)
       thread_safe (~> 0.3, >= 0.3.1)
-    diff-lcs (1.2.5)
-    domain_name (0.5.24)
+    diff-lcs (1.4.4)
+    domain_name (0.5.20190701)
       unf (>= 0.0.5, < 1.0.0)
     equalizer (0.0.11)
     erubis (2.7.0)
@@ -76,8 +79,8 @@ GEM
       i18n (~> 0.5)
     foreman (0.78.0)
       thor (~> 0.19.1)
-    globalid (0.3.5)
-      activesupport (>= 4.1.0)
+    globalid (0.4.2)
+      activesupport (>= 4.2.0)
     grape (0.12.0)
       activesupport
       builder
@@ -94,28 +97,34 @@ GEM
     hashie (3.4.2)
     hashie-forbidden_attributes (0.1.1)
       hashie (>= 3.0)
-    http-cookie (1.0.2)
+    http-accept (1.7.0)
+    http-cookie (1.0.3)
       domain_name (~> 0.5)
-    i18n (0.7.0)
+    i18n (0.9.5)
+      concurrent-ruby (~> 1.0)
     ice_nine (0.11.1)
-    json (1.8.3)
-    loofah (2.0.2)
+    json (1.8.6)
+    loofah (2.6.0)
+      crass (~> 1.0.2)
       nokogiri (>= 1.5.9)
-    mail (2.6.3)
-      mime-types (>= 1.16, < 3)
-    mime-types (2.6.1)
-    mini_portile (0.6.2)
-    minitest (5.7.0)
+    mail (2.7.1)
+      mini_mime (>= 0.1.1)
+    mime-types (3.3.1)
+      mime-types-data (~> 3.2015)
+    mime-types-data (3.2020.0512)
+    mini_mime (1.0.2)
+    mini_portile2 (2.4.0)
+    minitest (5.14.1)
     multi_json (1.11.2)
     multi_xml (0.5.5)
-    netrc (0.10.3)
-    nokogiri (1.6.6.2)
-      mini_portile (~> 0.6.0)
+    netrc (0.11.0)
+    nokogiri (1.10.10)
+      mini_portile2 (~> 2.4.0)
     parser (2.2.2.6)
       ast (>= 1.1, < 3.0)
     pg (0.18.2)
     powerpack (0.1.1)
-    rack (1.6.4)
+    rack (1.6.13)
     rack-accept (0.4.5)
       rack (>= 0.4)
     rack-mount (0.8.3)
@@ -138,23 +147,24 @@ GEM
       railties (>= 3.2.11)
     rails-deprecated_sanitizer (1.0.3)
       activesupport (>= 4.2.0.alpha)
-    rails-dom-testing (1.0.6)
-      activesupport (>= 4.2.0.beta, < 5.0)
-      nokogiri (~> 1.6.0)
+    rails-dom-testing (1.0.9)
+      activesupport (>= 4.2.0, < 5.0)
+      nokogiri (~> 1.6)
       rails-deprecated_sanitizer (>= 1.0.1)
-    rails-html-sanitizer (1.0.2)
-      loofah (~> 2.0)
+    rails-html-sanitizer (1.3.0)
+      loofah (~> 2.3)
     railties (4.2.3)
       actionpack (= 4.2.3)
       activesupport (= 4.2.3)
       rake (>= 0.8.7)
       thor (>= 0.18.1, < 2.0)
     rainbow (2.0.0)
-    rake (10.4.2)
-    rest-client (1.8.0)
+    rake (13.0.1)
+    rest-client (2.1.0)
+      http-accept (>= 1.7.0, < 2.0)
       http-cookie (>= 1.0.2, < 2.0)
-      mime-types (>= 1.16, < 3.0)
-      netrc (~> 0.7)
+      mime-types (>= 1.16, < 4.0)
+      netrc (~> 0.8)
     rspec (3.2.0)
       rspec-core (~> 3.2.0)
       rspec-expectations (~> 3.2.0)
@@ -186,19 +196,20 @@ GEM
     spring (1.3.6)
     spring-commands-rspec (1.0.4)
       spring (>= 0.9.1)
-    sprockets (3.2.0)
-      rack (~> 1.0)
-    sprockets-rails (2.3.2)
-      actionpack (>= 3.0)
-      activesupport (>= 3.0)
-      sprockets (>= 2.8, < 4.0)
-    thor (0.19.1)
-    thread_safe (0.3.5)
-    tzinfo (1.2.2)
+    sprockets (3.7.2)
+      concurrent-ruby (~> 1.0)
+      rack (> 1, < 3)
+    sprockets-rails (3.2.1)
+      actionpack (>= 4.0)
+      activesupport (>= 4.0)
+      sprockets (>= 3.0.0)
+    thor (0.19.4)
+    thread_safe (0.3.6)
+    tzinfo (1.2.7)
       thread_safe (~> 0.1)
     unf (0.1.4)
       unf_ext
-    unf_ext (0.0.7.1)
+    unf_ext (0.0.7.7)
     virtus (1.0.5)
       axiom-types (~> 0.1)
       coercible (~> 1.0)
@@ -211,7 +222,7 @@ PLATFORMS
 DEPENDENCIES
   active_model_serializers (= 0.9.3)
   activerecord-import
-  airborne (~> 0.1.15)
+  airborne (~> 0.2.6)
   byebug
   database_cleaner (~> 1.2.0)
   factory_girl_rails (~> 4.5.0)
@@ -231,4 +242,4 @@ DEPENDENCIES
   spring-commands-rspec (~> 1.0.2)
 
 BUNDLED WITH
-   1.10.5
+   1.17.3