fix: hooks/ruby/delete-repository-event/Gemfile & hooks/ruby/delete-r…

…epository-event/Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-SINATRA-3150405
jefferycline1 · Jun 19, 2023 · 55de5a0 · 55de5a0
1 parent 74a8069
commit 55de5a0
Show file tree

Hide file tree

Showing 2 changed files with 13 additions and 10 deletions.
diff --git a/hooks/ruby/delete-repository-event/Gemfile b/hooks/ruby/delete-repository-event/Gemfile
@@ -1,4 +1,4 @@
 source "https://rubygems.org"
 
-gem "sinatra"
+gem "sinatra", ">= 2.2.3"
 gem "octokit"
diff --git a/hooks/ruby/delete-repository-event/Gemfile.lock b/hooks/ruby/delete-repository-event/Gemfile.lock
@@ -21,28 +21,31 @@ GEM
     faraday-net_http_persistent (1.2.0)
     faraday-patron (1.0.0)
     multipart-post (2.1.1)
+    mustermann (3.0.0)
+      ruby2_keywords (~> 0.0.1)
     octokit (4.6.2)
       sawyer (~> 0.8.0, >= 0.5.3)
     public_suffix (4.0.6)
-    rack (1.6.13)
-    rack-protection (1.5.5)
+    rack (2.2.7)
+    rack-protection (3.0.6)
       rack
     ruby2_keywords (0.0.4)
     sawyer (0.8.2)
       addressable (>= 2.3.5)
       faraday (> 0.8, < 2.0)
-    sinatra (1.4.8)
-      rack (~> 1.5)
-      rack-protection (~> 1.4)
-      tilt (>= 1.3, < 3)
-    tilt (2.0.6)
+    sinatra (3.0.6)
+      mustermann (~> 3.0)
+      rack (~> 2.2, >= 2.2.4)
+      rack-protection (= 3.0.6)
+      tilt (~> 2.0)
+    tilt (2.2.0)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
   octokit
-  sinatra
+  sinatra (>= 2.2.3)
 
 BUNDLED WITH
-   1.14.6
+   1.17.3