From 0f68cc49db64a3eaa33eb3c0bfcd0912a6f52955 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 9 Dec 2024 05:50:44 +0000 Subject: [PATCH] fix: pkgs/development/ruby-modules/solargraph/Gemfile & pkgs/development/ruby-modules/solargraph/Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-8453714 --- .../ruby-modules/solargraph/Gemfile | 2 +- .../ruby-modules/solargraph/Gemfile.lock | 87 +++++++++++-------- 2 files changed, 52 insertions(+), 37 deletions(-) diff --git a/pkgs/development/ruby-modules/solargraph/Gemfile b/pkgs/development/ruby-modules/solargraph/Gemfile index 388f96a59b201..0b44ded9683fa 100644 --- a/pkgs/development/ruby-modules/solargraph/Gemfile +++ b/pkgs/development/ruby-modules/solargraph/Gemfile @@ -1,2 +1,2 @@ source 'https://rubygems.org' -gem 'solargraph' +gem 'solargraph', '>= 0.40.0' diff --git a/pkgs/development/ruby-modules/solargraph/Gemfile.lock b/pkgs/development/ruby-modules/solargraph/Gemfile.lock index 2f455838c93c3..c3669f9305266 100644 --- a/pkgs/development/ruby-modules/solargraph/Gemfile.lock +++ b/pkgs/development/ruby-modules/solargraph/Gemfile.lock @@ -1,59 +1,74 @@ GEM remote: https://rubygems.org/ specs: - ast (2.4.1) - backport (1.1.2) - benchmark (0.1.0) + ast (2.4.2) + backport (1.2.0) + benchmark (0.4.0) + diff-lcs (1.5.1) e2mmap (0.1.0) - jaro_winkler (1.5.4) - maruku (0.7.3) - mini_portile2 (2.4.0) - nokogiri (1.10.10) - mini_portile2 (~> 2.4.0) - parallel (1.19.2) - parser (2.7.2.0) + jaro_winkler (1.6.0) + json (2.9.0) + kramdown (2.5.1) + rexml (>= 3.3.9) + kramdown-parser-gfm (1.1.0) + kramdown (~> 2.0) + language_server-protocol (3.17.0.3) + mini_portile2 (2.8.8) + nokogiri (1.15.7) + mini_portile2 (~> 2.8.2) + racc (~> 1.4) + parallel (1.26.3) + parser (3.3.6.0) ast (~> 2.4.1) - rainbow (3.0.0) - regexp_parser (1.8.1) - reverse_markdown (2.0.0) + racc + racc (1.8.1) + rainbow (3.1.1) + rbs (2.8.4) + regexp_parser (2.9.3) + reverse_markdown (2.1.1) nokogiri - rexml (3.2.4) - rubocop (0.93.0) + rexml (3.3.9) + rubocop (1.69.1) + json (~> 2.3) + language_server-protocol (>= 3.17.0) parallel (~> 1.10) - parser (>= 2.7.1.5) + parser (>= 3.3.0.2) rainbow (>= 2.2.2, < 4.0) - regexp_parser (>= 1.8) - rexml - rubocop-ast (>= 0.6.0) + regexp_parser (>= 2.9.3, < 3.0) + rubocop-ast (>= 1.36.2, < 2.0) ruby-progressbar (~> 1.7) - unicode-display_width (>= 1.4.0, < 2.0) - rubocop-ast (0.7.1) - parser (>= 2.7.1.5) - ruby-progressbar (1.10.1) - solargraph (0.39.17) - backport (~> 1.1) + unicode-display_width (>= 2.4.0, < 4.0) + rubocop-ast (1.36.2) + parser (>= 3.3.1.0) + ruby-progressbar (1.13.0) + solargraph (0.50.0) + backport (~> 1.2) benchmark - bundler (>= 1.17.2) + bundler (~> 2.0) + diff-lcs (~> 1.4) e2mmap jaro_winkler (~> 1.5) - maruku (~> 0.7, >= 0.7.3) - nokogiri (~> 1.9, >= 1.9.1) - parser (~> 2.3) - reverse_markdown (>= 1.0.5, < 3) - rubocop (~> 0.52) + kramdown (~> 2.3) + kramdown-parser-gfm (~> 1.1) + parser (~> 3.0) + rbs (~> 2.0) + reverse_markdown (~> 2.0) + rubocop (~> 1.38) thor (~> 1.0) tilt (~> 2.0) yard (~> 0.9, >= 0.9.24) - thor (1.0.1) - tilt (2.0.10) - unicode-display_width (1.7.0) - yard (0.9.25) + thor (1.3.2) + tilt (2.4.0) + unicode-display_width (3.1.2) + unicode-emoji (~> 4.0, >= 4.0.4) + unicode-emoji (4.0.4) + yard (0.9.37) PLATFORMS ruby DEPENDENCIES - solargraph + solargraph (>= 0.40.0) BUNDLED WITH 2.1.4