fix: hooks/ruby/delete-repository-event/Gemfile & hooks/ruby/delete-r…

…epository-event/Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-RACK-6274383 - https://snyk.io/vuln/SNYK-RUBY-RACK-6274384 - https://snyk.io/vuln/SNYK-RUBY-RACK-6274385
jefferycline1 · Apr 5, 2024 · 343e8b9 · 343e8b9
1 parent 74a8069
commit 343e8b9
Show file tree

Hide file tree

Showing 2 changed files with 19 additions and 11 deletions.
diff --git a/hooks/ruby/delete-repository-event/Gemfile b/hooks/ruby/delete-repository-event/Gemfile
@@ -1,4 +1,4 @@
 source "https://rubygems.org"
 
-gem "sinatra"
+gem "sinatra", ">= 2.0.0"
 gem "octokit"
diff --git a/hooks/ruby/delete-repository-event/Gemfile.lock b/hooks/ruby/delete-repository-event/Gemfile.lock
@@ -3,6 +3,7 @@ GEM
   specs:
     addressable (2.8.0)
       public_suffix (>= 2.0.2, < 5.0)
+    base64 (0.2.0)
     faraday (1.5.1)
       faraday-em_http (~> 1.0)
       faraday-em_synchrony (~> 1.0)
@@ -21,28 +22,35 @@ GEM
     faraday-net_http_persistent (1.2.0)
     faraday-patron (1.0.0)
     multipart-post (2.1.1)
+    mustermann (3.0.0)
+      ruby2_keywords (~> 0.0.1)
     octokit (4.6.2)
       sawyer (~> 0.8.0, >= 0.5.3)
     public_suffix (4.0.6)
-    rack (1.6.13)
-    rack-protection (1.5.5)
-      rack
+    rack (3.0.10)
+    rack-protection (4.0.0)
+      base64 (>= 0.1.0)
+      rack (>= 3.0.0, < 4)
+    rack-session (2.0.0)
+      rack (>= 3.0.0)
     ruby2_keywords (0.0.4)
     sawyer (0.8.2)
       addressable (>= 2.3.5)
       faraday (> 0.8, < 2.0)
-    sinatra (1.4.8)
-      rack (~> 1.5)
-      rack-protection (~> 1.4)
-      tilt (>= 1.3, < 3)
-    tilt (2.0.6)
+    sinatra (4.0.0)
+      mustermann (~> 3.0)
+      rack (>= 3.0.0, < 4)
+      rack-protection (= 4.0.0)
+      rack-session (>= 2.0.0, < 3)
+      tilt (~> 2.0)
+    tilt (2.3.0)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
   octokit
-  sinatra
+  sinatra (>= 2.0.0)
 
 BUNDLED WITH
-   1.14.6
+   1.17.3