Skip to content
This repository has been archived by the owner on Jun 6, 2024. It is now read-only.

Commit

Permalink
fix: Gemfile & Gemfile.lock to reduce vulnerabilities
Browse files Browse the repository at this point in the history 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-CARRIERWAVE-6483299
  • Loading branch information
@snyk-bot
snyk-bot committed Mar 27, 2024
1 parent 3dfa9c6 commit 2178618
Show file tree
Hide file tree
Showing 2 changed files with 12 additions and 12 deletions.
2 changes: 1 addition & 1 deletion Gemfile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@ ruby '3.2.2'
# Bundle edge Rails instead: gem 'rails', github: 'rails/rails'
gem 'rails', '>= 6'
# Picture upload using Carrierwave
gem 'carrierwave', '>= 1.3.1'
gem 'carrierwave', '>= 3.0.7'
# Use Puma as the app server
gem 'puma', '>= 3.12.6'
# Use SCSS for stylesheets
Expand Down
22 changes: 11 additions & 11 deletions Gemfile.lock
View file
Original file line number Diff line number Diff line change
Expand Up @@ -66,7 +66,7 @@ GEM
i18n (>= 1.6, < 2)
minitest (>= 5.1)
tzinfo (~> 2.0)
addressable (2.8.5)
addressable (2.8.6)
public_suffix (>= 2.0.2, < 6.0)
ast (2.4.2)
base64 (0.1.1)
Expand All @@ -77,14 +77,14 @@ GEM
bundler (>= 1.2.0, < 3)
thor (~> 1.0)
byebug (11.1.3)
carrierwave (3.0.3)
carrierwave (3.0.7)
activemodel (>= 6.0.0)
activesupport (>= 6.0.0)
addressable (~> 2.6)
image_processing (~> 1.1)
marcel (~> 1.0.0)
ssrf_filter (~> 1.0)
concurrent-ruby (1.2.2)
concurrent-ruby (1.2.3)
coveralls (0.8.23)
json (>= 1.8, < 3)
simplecov (~> 0.16.1)
Expand All @@ -97,14 +97,14 @@ GEM
docile (1.4.0)
erubi (1.12.0)
execjs (2.9.1)
ffi (1.16.2)
ffi (1.16.3)
figaro (1.2.0)
thor (>= 0.14.0, < 2)
font-awesome-sass (6.4.2)
sassc (~> 2.0)
globalid (1.2.1)
activesupport (>= 6.1)
i18n (1.14.1)
i18n (1.14.4)
concurrent-ruby (~> 1.0)
image_processing (1.12.2)
mini_magick (>= 4.9.5, < 5)
Expand All @@ -129,11 +129,11 @@ GEM
net-imap
net-pop
net-smtp
marcel (1.0.2)
marcel (1.0.4)
method_source (1.0.0)
mini_magick (4.12.0)
mini_mime (1.1.5)
minitest (5.20.0)
minitest (5.22.3)
net-imap (0.3.7)
date
net-protocol
Expand All @@ -153,7 +153,7 @@ GEM
ast (~> 2.4.1)
racc
pg (1.5.4)
public_suffix (5.0.3)
public_suffix (5.0.4)
puma (6.4.0)
nio4r (~> 2.0)
racc (1.7.1)
Expand Down Expand Up @@ -228,7 +228,7 @@ GEM
rubocop-ast (1.29.0)
parser (>= 3.2.1.0)
ruby-progressbar (1.13.0)
ruby-vips (2.1.4)
ruby-vips (2.2.1)
ffi (~> 1.12)
ruby_audit (2.2.0)
bundler-audit (~> 0.9.0)
Expand Down Expand Up @@ -291,7 +291,7 @@ DEPENDENCIES
brakeman
bundler-audit
byebug
carrierwave (>= 1.3.1)
carrierwave (>= 3.0.7)
coveralls (>= 0.8.22)
figaro
font-awesome-sass (>= 5.6.1)
Expand All @@ -316,4 +316,4 @@ RUBY VERSION
ruby 3.2.2p53

BUNDLED WITH
2.4.19
2.4.6

0 comments on commit 2178618

Please sign in to comment.