[Snyk] Security upgrade puma from 5.2.2 to 5.3.1 (#381)

* fix: api/Gemfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-PUMA-1291014 * Fix lockfiles Co-authored-by: Jonathan Sharpe <j.r.sharpe+github@gmail.com>
vmware-archive · May 13, 2021 · 1741858 · 1741858
1 parent c723a0f
commit 1741858
Show file tree

Hide file tree

Showing 3 changed files with 5 additions and 5 deletions.
diff --git a/api/Gemfile b/api/Gemfile
@@ -43,7 +43,7 @@ gem 'friendly_id', '5.1.0'
 gem 'inherited_resources', '>= 1.11.0'
 gem 'jbuilder', '>= 2.10.0'
 gem 'premailer-rails', '>= 1.11.1'
-gem 'puma', '>= 3.12.4'
+gem 'puma', '>= 5.3.1'
 gem 'rack-cors', '>= 1.1.1', require: 'rack/cors'
 gem 'rack-ssl', '>= 1.4.1'
 gem 'rest-client'

diff --git a/api/Gemfile.lock b/api/Gemfile.lock
@@ -191,7 +191,7 @@ GEM
       byebug (~> 11.0)
       pry (~> 0.13.0)
     public_suffix (4.0.6)
-    puma (5.2.2)
+    puma (5.3.1)
       nio4r (~> 2.0)
     racc (1.5.2)
     rack (2.2.3)
@@ -347,7 +347,7 @@ DEPENDENCIES
   premailer-rails (>= 1.11.1)
   pry
   pry-byebug
-  puma (>= 3.12.4)
+  puma (>= 5.3.1)
   rack-cors (>= 1.1.1)
   rack-ssl (>= 1.4.1)
   rails (>= 6.1.3.1)
@@ -367,4 +367,4 @@ RUBY VERSION
    ruby 2.7.3p183
 
 BUNDLED WITH
-   2.1.4
+   2.2.16
diff --git a/e2e/Gemfile.lock b/e2e/Gemfile.lock
@@ -72,4 +72,4 @@ RUBY VERSION
    ruby 2.7.3p183
 
 BUNDLED WITH
-   2.1.4
+   2.2.16