Skip to content

Commit aa92962

Browse files
lmrodriguezrlmrodriguezr
committed
Upgrade packages
Also: Log CSRF issues with additional data
1 parent c89b800 commit aa92962

3 files changed

Lines changed: 111 additions & 87 deletions

File tree

Gemfile.lock

Lines changed: 102 additions & 87 deletions
Original file line numberDiff line numberDiff line change
@@ -64,18 +64,18 @@ GEM
6464
addressable (2.8.7)
6565
public_suffix (>= 2.0.2, < 7.0)
6666
afm (0.2.2)
67-
ast (2.4.2)
68-
autoprefixer-rails (10.4.19.0)
67+
ast (2.4.3)
68+
autoprefixer-rails (10.4.21.0)
6969
execjs (~> 2)
70-
base64 (0.2.0)
70+
base64 (0.3.0)
7171
bcrypt (3.1.20)
72-
bigdecimal (3.1.8)
72+
bigdecimal (3.2.2)
7373
bindex (0.8.1)
7474
bootstrap (4.6.2.1)
7575
autoprefixer-rails (>= 9.1.0)
7676
popper_js (>= 1.16.1, < 2)
7777
builder (3.3.0)
78-
byebug (11.1.3)
78+
byebug (12.0.0)
7979
capybara (2.18.0)
8080
addressable
8181
mini_mime (>= 0.1.3)
@@ -91,15 +91,15 @@ GEM
9191
coffee-script-source
9292
execjs
9393
coffee-script-source (1.12.2)
94-
concurrent-ruby (1.3.4)
94+
concurrent-ruby (1.3.5)
9595
crass (1.0.6)
96-
csv (3.3.4)
96+
csv (3.3.5)
9797
d3-rails (7.8.5)
9898
railties (>= 3.1)
9999
daemons (1.4.1)
100-
dartsass-sprockets (3.1.0)
100+
dartsass-sprockets (3.2.1)
101101
railties (>= 4.0.0)
102-
sassc-embedded (~> 1.69)
102+
sassc-embedded (~> 1.80.1)
103103
sprockets (> 3.0)
104104
sprockets-rails
105105
tilt
@@ -111,38 +111,38 @@ GEM
111111
responders
112112
warden (~> 1.2.3)
113113
dkim (1.1.0)
114-
erubi (1.13.0)
114+
erubi (1.13.1)
115115
execjs (2.10.0)
116-
faraday (2.12.0)
117-
faraday-net_http (>= 2.0, < 3.4)
116+
faraday (2.13.4)
117+
faraday-net_http (>= 2.0, < 3.5)
118118
json
119119
logger
120-
faraday-follow_redirects (0.1.0)
121-
faraday (>= 2, < 3)
122-
faraday-net_http (3.3.0)
123-
net-http
124-
ffi (1.17.0)
125-
ffi (1.17.0-x86_64-darwin)
126-
ffi (1.17.0-x86_64-linux-gnu)
120+
faraday-follow_redirects (0.3.0)
121+
faraday (>= 1, < 3)
122+
faraday-net_http (3.4.1)
123+
net-http (>= 0.5.0)
124+
ffi (1.17.2)
125+
ffi (1.17.2-x86_64-darwin)
126+
ffi (1.17.2-x86_64-linux-gnu)
127127
font_awesome5_rails (1.5.0)
128128
nokogiri (>= 1.11.3)
129129
railties (>= 4.2)
130130
globalid (1.2.1)
131131
activesupport (>= 6.1)
132-
google-protobuf (4.28.3)
132+
google-protobuf (4.31.1)
133133
bigdecimal
134134
rake (>= 13)
135-
google-protobuf (4.28.3-x86_64-darwin)
135+
google-protobuf (4.31.1-x86_64-darwin)
136136
bigdecimal
137137
rake (>= 13)
138-
google-protobuf (4.28.3-x86_64-linux)
138+
google-protobuf (4.31.1-x86_64-linux-gnu)
139139
bigdecimal
140140
rake (>= 13)
141141
hashery (2.1.2)
142-
i18n (1.14.6)
142+
i18n (1.14.7)
143143
concurrent-ruby (~> 1.0)
144-
image_processing (1.13.0)
145-
mini_magick (>= 4.9.5, < 5)
144+
image_processing (1.14.0)
145+
mini_magick (>= 4.9.5, < 6)
146146
ruby-vips (>= 2.0.17, < 3)
147147
inline_svg (1.10.0)
148148
activesupport (>= 3.0)
@@ -154,13 +154,14 @@ GEM
154154
rails-dom-testing (>= 1, < 3)
155155
railties (>= 4.2.0)
156156
thor (>= 0.14, < 2.0)
157-
json (2.10.2)
158-
language_server-protocol (3.17.0.3)
157+
json (2.13.2)
158+
language_server-protocol (3.17.0.5)
159+
lint_roller (1.1.0)
159160
listen (3.0.8)
160161
rb-fsevent (~> 0.9, >= 0.9.4)
161162
rb-inotify (~> 0.9, >= 0.9.7)
162-
logger (1.6.1)
163-
loofah (2.23.1)
163+
logger (1.7.0)
164+
loofah (2.24.1)
164165
crass (~> 1.0.2)
165166
nokogiri (>= 1.12.0)
166167
mail (2.8.1)
@@ -170,63 +171,67 @@ GEM
170171
net-smtp
171172
marcel (1.0.4)
172173
method_source (1.1.0)
173-
miga-base (1.3.22.5)
174+
miga-base (1.3.22.6)
174175
daemons (~> 1.3)
175176
json (~> 2)
176177
net-ftp
177178
net-http
178179
rubyzip (~> 2.3)
179180
sqlite3 (~> 1.3)
180-
mini_magick (4.13.2)
181+
mini_magick (5.3.0)
182+
logger
181183
mini_mime (1.1.5)
182-
mini_portile2 (2.8.8)
183-
minitest (5.25.1)
184-
multi_json (1.15.0)
184+
mini_portile2 (2.8.9)
185+
minitest (5.25.5)
186+
multi_json (1.17.0)
185187
mutex_m (0.3.0)
186188
net-ftp (0.3.8)
187189
net-protocol
188190
time
189191
net-http (0.6.0)
190192
uri
191-
net-imap (0.5.0)
193+
net-imap (0.5.9)
192194
date
193195
net-protocol
194196
net-pop (0.1.2)
195197
net-protocol
196198
net-protocol (0.2.2)
197199
timeout
198-
net-smtp (0.5.0)
200+
net-smtp (0.5.1)
199201
net-protocol
200202
nio4r (2.7.4)
201-
nokogiri (1.16.7)
203+
nokogiri (1.18.9)
202204
mini_portile2 (~> 2.8.2)
203205
racc (~> 1.4)
204-
nokogiri (1.16.7-x86_64-darwin)
206+
nokogiri (1.18.9-x86_64-darwin)
205207
racc (~> 1.4)
206-
nokogiri (1.16.7-x86_64-linux)
208+
nokogiri (1.18.9-x86_64-linux-gnu)
207209
racc (~> 1.4)
208210
orm_adapter (0.5.0)
209-
ostruct (0.6.0)
210-
parallel (1.26.3)
211-
parser (3.3.5.1)
211+
ostruct (0.6.3)
212+
parallel (1.27.0)
213+
parser (3.3.9.0)
212214
ast (~> 2.4.1)
213215
racc
214-
pdf-reader (2.13.0)
216+
pdf-reader (2.14.1)
215217
Ascii85 (>= 1.0, < 3.0, != 2.0.0)
216218
afm (~> 0.2.1)
217219
hashery (~> 2.0)
218220
ruby-rc4
219221
ttfunk
220-
pg (1.5.9)
222+
pg (1.6.0)
223+
pg (1.6.0-x86_64-darwin)
224+
pg (1.6.0-x86_64-linux)
221225
popper_js (1.16.1)
222-
public_suffix (6.0.1)
226+
prism (1.4.0)
227+
public_suffix (6.0.2)
223228
puma (5.6.9)
224229
nio4r (~> 2.0)
225230
racc (1.8.1)
226-
rack (2.2.10)
231+
rack (2.2.17)
227232
rack-proxy (0.7.7)
228233
rack
229-
rack-test (2.1.0)
234+
rack-test (2.2.0)
230235
rack (>= 1.3)
231236
rails (6.1.7.10)
232237
actioncable (= 6.1.7.10)
@@ -243,73 +248,79 @@ GEM
243248
bundler (>= 1.15.0)
244249
railties (= 6.1.7.10)
245250
sprockets-rails (>= 2.0.0)
246-
rails-dom-testing (2.2.0)
251+
rails-dom-testing (2.3.0)
247252
activesupport (>= 5.0.0)
248253
minitest
249254
nokogiri (>= 1.6)
250-
rails-html-sanitizer (1.6.0)
255+
rails-html-sanitizer (1.6.2)
251256
loofah (~> 2.21)
252-
nokogiri (~> 1.14)
257+
nokogiri (>= 1.15.7, != 1.16.7, != 1.16.6, != 1.16.5, != 1.16.4, != 1.16.3, != 1.16.2, != 1.16.1, != 1.16.0.rc1, != 1.16.0)
253258
railties (6.1.7.10)
254259
actionpack (= 6.1.7.10)
255260
activesupport (= 6.1.7.10)
256261
method_source
257262
rake (>= 12.2)
258263
thor (~> 1.0)
259264
rainbow (3.1.1)
260-
rake (13.2.1)
265+
rake (13.3.0)
261266
rb-fsevent (0.11.2)
262267
rb-inotify (0.11.1)
263268
ffi (~> 1.0)
264-
redcarpet (3.6.0)
269+
redcarpet (3.6.1)
265270
redirect_safely (1.0.0)
266271
activemodel
267272
redis (4.8.1)
268-
regexp_parser (2.9.2)
273+
regexp_parser (2.10.0)
269274
responders (3.1.1)
270275
actionpack (>= 5.2)
271276
railties (>= 5.2)
272-
rexml (3.3.9)
277+
rexml (3.4.1)
273278
roo (2.9.0)
274279
nokogiri (~> 1)
275280
rubyzip (>= 1.3.0, < 3.0.0)
276-
rubocop (1.68.0)
281+
rubocop (1.79.0)
277282
json (~> 2.3)
278-
language_server-protocol (>= 3.17.0)
283+
language_server-protocol (~> 3.17.0.2)
284+
lint_roller (~> 1.1.0)
279285
parallel (~> 1.10)
280286
parser (>= 3.3.0.2)
281287
rainbow (>= 2.2.2, < 4.0)
282-
regexp_parser (>= 2.4, < 3.0)
283-
rubocop-ast (>= 1.32.2, < 2.0)
288+
regexp_parser (>= 2.9.3, < 3.0)
289+
rubocop-ast (>= 1.46.0, < 2.0)
284290
ruby-progressbar (~> 1.7)
285-
unicode-display_width (>= 2.4.0, < 3.0)
286-
rubocop-ast (1.34.0)
287-
parser (>= 3.3.1.0)
288-
rubocop-packaging (0.5.2)
289-
rubocop (>= 1.33, < 2.0)
290-
rubocop-performance (1.22.1)
291-
rubocop (>= 1.48.1, < 2.0)
292-
rubocop-ast (>= 1.31.1, < 2.0)
293-
rubocop-rails (2.27.0)
291+
tsort (>= 0.2.0)
292+
unicode-display_width (>= 2.4.0, < 4.0)
293+
rubocop-ast (1.46.0)
294+
parser (>= 3.3.7.2)
295+
prism (~> 1.4)
296+
rubocop-packaging (0.6.0)
297+
lint_roller (~> 1.1.0)
298+
rubocop (>= 1.72.1, < 2.0)
299+
rubocop-performance (1.25.0)
300+
lint_roller (~> 1.1)
301+
rubocop (>= 1.75.0, < 2.0)
302+
rubocop-ast (>= 1.38.0, < 2.0)
303+
rubocop-rails (2.32.0)
294304
activesupport (>= 4.2.0)
305+
lint_roller (~> 1.1)
295306
rack (>= 1.1)
296-
rubocop (>= 1.52.0, < 2.0)
297-
rubocop-ast (>= 1.31.1, < 2.0)
307+
rubocop (>= 1.75.0, < 2.0)
308+
rubocop-ast (>= 1.44.0, < 2.0)
298309
ruby-progressbar (1.13.0)
299310
ruby-rc4 (0.1.5)
300-
ruby-vips (2.2.2)
311+
ruby-vips (2.2.4)
301312
ffi (~> 1.12)
302313
logger
303314
rubyzip (2.4.1)
304315
sass (3.7.4)
305316
sass-listen (~> 4.0.0)
306-
sass-embedded (1.80.6)
307-
google-protobuf (~> 4.28)
317+
sass-embedded (1.89.2)
318+
google-protobuf (~> 4.31)
308319
rake (>= 13)
309-
sass-embedded (1.80.6-x86_64-darwin)
310-
google-protobuf (~> 4.28)
311-
sass-embedded (1.80.6-x86_64-linux-gnu)
312-
google-protobuf (~> 4.28)
320+
sass-embedded (1.89.2-x86_64-darwin)
321+
google-protobuf (~> 4.31)
322+
sass-embedded (1.89.2-x86_64-linux-gnu)
323+
google-protobuf (~> 4.31)
313324
sass-listen (4.0.0)
314325
rb-fsevent (~> 0.9, >= 0.9.4)
315326
rb-inotify (~> 0.9, >= 0.9.7)
@@ -319,18 +330,18 @@ GEM
319330
sprockets (>= 2.8, < 4.0)
320331
sprockets-rails (>= 2.0, < 4.0)
321332
tilt (>= 1.1, < 3)
322-
sassc-embedded (1.80.1)
333+
sassc-embedded (1.80.5)
323334
sass-embedded (~> 1.80)
324-
selenium-webdriver (4.26.0)
335+
selenium-webdriver (4.34.0)
325336
base64 (~> 0.2)
326337
logger (~> 1.4)
327338
rexml (~> 3.2, >= 3.2.5)
328339
rubyzip (>= 1.2.2, < 3.0)
329340
websocket (~> 1.0)
330341
semantic_range (3.1.0)
331-
serrano (1.4)
332-
faraday (~> 2.2)
333-
faraday-follow_redirects (~> 0.1.0)
342+
serrano (1.6)
343+
faraday (~> 2.13, >= 2.13.1)
344+
faraday-follow_redirects (>= 0.1, < 0.4)
334345
multi_json (~> 1.15)
335346
rexml (~> 3.2, >= 3.2.5)
336347
thor (~> 1.2, >= 1.2.1)
@@ -353,12 +364,13 @@ GEM
353364
mini_portile2 (~> 2.8.0)
354365
sqlite3 (1.7.3-x86_64-darwin)
355366
sqlite3 (1.7.3-x86_64-linux)
356-
strain-code (0.3.5)
357-
thor (1.3.2)
358-
tilt (2.4.0)
367+
strain-code (0.3.6)
368+
thor (1.4.0)
369+
tilt (2.6.1)
359370
time (0.4.1)
360371
date
361372
timeout (0.4.3)
373+
tsort (0.2.0)
362374
ttfunk (1.8.0)
363375
bigdecimal (~> 3.1)
364376
turbolinks (5.2.1)
@@ -368,7 +380,9 @@ GEM
368380
concurrent-ruby (~> 1.0)
369381
uglifier (4.2.1)
370382
execjs (>= 0.3.0, < 3)
371-
unicode-display_width (2.6.0)
383+
unicode-display_width (3.1.4)
384+
unicode-emoji (~> 4.0, >= 4.0.4)
385+
unicode-emoji (4.0.4)
372386
uri (1.0.3)
373387
warden (1.2.9)
374388
rack (>= 2.0.9)
@@ -383,7 +397,8 @@ GEM
383397
railties (>= 5.2)
384398
semantic_range (>= 2.3.0)
385399
websocket (1.2.11)
386-
websocket-driver (0.7.6)
400+
websocket-driver (0.8.0)
401+
base64
387402
websocket-extensions (>= 0.1.0)
388403
websocket-extensions (0.1.5)
389404
whenever (1.0.0)
@@ -398,7 +413,7 @@ GEM
398413
xpath (3.2.0)
399414
nokogiri (~> 1.8)
400415
yui-compressor (0.12.0)
401-
zeitwerk (2.7.1)
416+
zeitwerk (2.7.3)
402417

403418
PLATFORMS
404419
ruby

app/controllers/application_controller.rb

Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -5,6 +5,14 @@ class ApplicationController < ActionController::Base
55
before_action(:check_api!)
66
before_action(:store_user_location!, if: :storable_location?)
77

8+
rescue_from ActionController::InvalidAuthenticityToken do |exception|
9+
logger.error "[CSRF ERROR] IP: #{request.remote_ip}, " \
10+
"UA: #{request.user_agent}, " \
11+
"Params: #{params.to_unsafe_h}, " \
12+
"Session: #{session.to_hash}"
13+
raise
14+
end
15+
816
@@search_obj = {
917
publications: [
1018
Publication, %i[title doi journal abstract journal_date], {

0 commit comments

Comments
 (0)