From c47ef46af9b7cf2d598f1202aaf4fd70b88ee3f1 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 12 Sep 2024 01:35:36 +0000 Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-RUBYSAML-7926869 --- Gemfile | 2 +- Gemfile.lock | 16 ++++++++-------- 2 files changed, 9 insertions(+), 9 deletions(-) diff --git a/Gemfile b/Gemfile index 689593b..c8b928d 100644 --- a/Gemfile +++ b/Gemfile @@ -7,7 +7,7 @@ gem 'aws-sdk-s3', '~> 1.30' gem 'dotenv' gem 'hashie' gem 'rexml' -gem 'ruby-saml', '>= 1.9.0' +gem 'ruby-saml', '>= 1.17.0' gem 'rack-test', '>= 2.0.0' gem 'rake' gem 'sinatra', '>= 3.0.4' diff --git a/Gemfile.lock b/Gemfile.lock index 1fd7503..a2eb497 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -31,12 +31,12 @@ GEM concurrent-ruby (~> 1.0) jmespath (1.6.1) method_source (1.0.0) - mini_portile2 (2.8.5) + mini_portile2 (2.8.7) minitest (5.19.0) mustermann (3.0.0) ruby2_keywords (~> 0.0.1) nio4r (2.7.0) - nokogiri (1.16.2) + nokogiri (1.16.7) mini_portile2 (~> 2.8.2) racc (~> 1.4) power_assert (2.0.2) @@ -45,14 +45,14 @@ GEM method_source (~> 1.0) puma (6.4.2) nio4r (~> 2.0) - racc (1.7.3) + racc (1.8.1) rack (2.2.8.1) rack-protection (3.0.4) rack rack-test (2.0.2) rack (>= 1.3) rake (13.0.1) - rexml (3.2.5) + rexml (3.3.7) rspec (3.13.0) rspec-core (~> 3.13.0) rspec-expectations (~> 3.13.0) @@ -66,8 +66,8 @@ GEM diff-lcs (>= 1.2.0, < 2.0) rspec-support (~> 3.13.0) rspec-support (3.13.1) - ruby-saml (1.14.0) - nokogiri (>= 1.10.5) + ruby-saml (1.17.0) + nokogiri (>= 1.13.10) rexml ruby2_keywords (0.0.5) sinatra (3.0.4) @@ -96,7 +96,7 @@ DEPENDENCIES rake rexml rspec - ruby-saml (>= 1.9.0) + ruby-saml (>= 1.17.0) sinatra (>= 3.0.4) test-unit @@ -104,4 +104,4 @@ RUBY VERSION ruby 3.2.2p223 BUNDLED WITH - 2.2.33 + 2.4.6