[Security] Bump nokogiri from 1.10.5 to 1.10.8

Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.10.5 to 1.10.8. **This update includes a security fix.** - [Release notes](https://github.com/sparklemotion/nokogiri/releases) - [Changelog](https://github.com/sparklemotion/nokogiri/blob/master/CHANGELOG.md) - [Commits](sparklemotion/nokogiri@v1.10.5...v1.10.8) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
ucsdlib · Feb 24, 2020 · aeeb795 · aeeb795
1 parent e18f35e
commit aeeb795
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 3 deletions.
diff --git a/Gemfile b/Gemfile
@@ -39,7 +39,7 @@ gem "i18n", '~> 0.8.1'
 gem "bootstrap-sass", '~> 2.3.2.2' # locked because blacklight 4.7
 gem "bower-rails", "~> 0.11.0"
 gem "responders", "~> 2.4.0"
-gem 'nokogiri', '1.10.5'
+gem 'nokogiri', '1.10.8'
 
 gem 'uglifier', '~> 3.2.0'
 gem 'rspec-mocks', '3.6.0'

diff --git a/Gemfile.lock b/Gemfile.lock
@@ -242,7 +242,7 @@ GEM
       net-ssh (>= 2.6.5)
     net-ssh (4.1.0)
     netrc (0.10.3)
-    nokogiri (1.10.5)
+    nokogiri (1.10.8)
       mini_portile2 (~> 2.4.0)
     nom-xml (0.5.3)
       activesupport (>= 3.2.18)
@@ -482,7 +482,7 @@ DEPENDENCIES
   lograge (= 0.5.1)
   logstash-event (= 1.2.02)
   minitest (~> 5.10.2)
-  nokogiri (= 1.10.5)
+  nokogiri (= 1.10.8)
   omniauth (~> 1.7.1)
   omniauth-shibboleth (~> 1.2.1)
   pg (~> 0.18.2)