From 0cc245c56cccc66bc29c31c091252029fce050fb Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 19 May 2021 01:42:52 +0000 Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1293239 --- Gemfile | 2 +- Gemfile.lock | 59 ++++++++++++++++++++++++++-------------------------- 2 files changed, 31 insertions(+), 30 deletions(-) diff --git a/Gemfile b/Gemfile index d562b1f..3906e73 100644 --- a/Gemfile +++ b/Gemfile @@ -6,4 +6,4 @@ git_source(:github) {|repo_name| "https://github.com/#{repo_name}" } # gem "rails" gem "fastlane" -gem "slather", '>=2.4.6' \ No newline at end of file +gem "slather", ">= 2.4.7" \ No newline at end of file diff --git a/Gemfile.lock b/Gemfile.lock index 44902ee..1b4c1fc 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -1,24 +1,24 @@ GEM remote: https://rubygems.org/ specs: - CFPropertyList (2.3.6) - activesupport (6.0.3.2) + CFPropertyList (3.0.3) + activesupport (6.1.3.2) concurrent-ruby (~> 1.0, >= 1.0.2) - i18n (>= 0.7, < 2) - minitest (~> 5.1) - tzinfo (~> 1.1) - zeitwerk (~> 2.2, >= 2.2.2) + i18n (>= 1.6, < 2) + minitest (>= 5.1) + tzinfo (~> 2.0) + zeitwerk (~> 2.3) addressable (2.6.0) public_suffix (>= 2.0.2, < 4.0) atomos (0.1.3) babosa (1.0.2) - claide (1.0.2) - clamp (0.6.5) + claide (1.0.3) + clamp (1.3.2) colored (1.2) colored2 (3.1.2) commander-fastlane (4.4.6) highline (~> 1.7.2) - concurrent-ruby (1.1.6) + concurrent-ruby (1.1.8) declarative (0.0.10) declarative-option (0.1.0) digest-crc (0.4.1) @@ -101,7 +101,7 @@ GEM http-cookie (1.0.3) domain_name (~> 0.5) httpclient (2.8.3) - i18n (1.8.5) + i18n (1.8.10) concurrent-ruby (~> 1.0) json (2.3.1) jwt (2.1.0) @@ -110,18 +110,20 @@ GEM mime-types-data (~> 3.2015) mime-types-data (3.2018.0812) mini_magick (4.5.1) - mini_portile2 (2.3.0) - minitest (5.14.1) + mini_portile2 (2.5.1) + minitest (5.14.4) multi_json (1.13.1) multi_xml (0.6.0) multipart-post (2.0.0) - nanaimo (0.2.6) + nanaimo (0.3.0) naturally (2.2.0) - nokogiri (1.8.5) - mini_portile2 (~> 2.3.0) + nokogiri (1.11.4) + mini_portile2 (~> 2.5.0) + racc (~> 1.4) os (1.0.0) plist (3.5.0) public_suffix (2.0.5) + racc (1.5.2) representable (3.0.4) declarative (< 0.1.0) declarative-option (< 0.2.0) @@ -139,46 +141,45 @@ GEM CFPropertyList naturally slack-notifier (2.3.2) - slather (2.4.6) - CFPropertyList (~> 2.2) - activesupport (>= 4.0.2) - clamp (~> 0.6) - nokogiri (~> 1.8.2) - xcodeproj (~> 1.4) + slather (2.7.1) + CFPropertyList (>= 2.2, < 4) + activesupport + clamp (~> 1.3) + nokogiri (~> 1.11) + xcodeproj (~> 1.7) terminal-notifier (2.0.0) terminal-table (1.8.0) unicode-display_width (~> 1.1, >= 1.1.1) - thread_safe (0.3.6) tty-cursor (0.6.0) tty-screen (0.6.5) tty-spinner (0.9.0) tty-cursor (~> 0.6.0) - tzinfo (1.2.7) - thread_safe (~> 0.1) + tzinfo (2.0.4) + concurrent-ruby (~> 1.0) uber (0.1.0) unf (0.1.4) unf_ext unf_ext (0.0.7.5) unicode-display_width (1.4.1) word_wrap (1.0.0) - xcodeproj (1.8.1) + xcodeproj (1.19.0) CFPropertyList (>= 2.3.3, < 4.0) atomos (~> 0.1.3) claide (>= 1.0.2, < 2.0) colored2 (~> 3.1) - nanaimo (~> 0.2.6) + nanaimo (~> 0.3.0) xcpretty (0.3.0) rouge (~> 2.0.7) xcpretty-travis-formatter (1.0.0) xcpretty (~> 0.2, >= 0.0.7) - zeitwerk (2.4.0) + zeitwerk (2.4.2) PLATFORMS ruby DEPENDENCIES fastlane - slather (>= 2.4.6) + slather (>= 2.4.7) BUNDLED WITH - 1.17.2 + 1.17.3