From f7a486a53c8f9668011e8476b5f7c7c2c9b81471 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 10 May 2025 01:20:51 +0000 Subject: [PATCH] fix: builders/testdata/ruby/simple_gemfile/Gemfile & builders/testdata/ruby/simple_gemfile/Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-RACK-10074188 --- builders/testdata/ruby/simple_gemfile/Gemfile | 2 +- .../testdata/ruby/simple_gemfile/Gemfile.lock | 33 ++++++++++++------- 2 files changed, 23 insertions(+), 12 deletions(-) diff --git a/builders/testdata/ruby/simple_gemfile/Gemfile b/builders/testdata/ruby/simple_gemfile/Gemfile index e0d23eec9..09a139753 100644 --- a/builders/testdata/ruby/simple_gemfile/Gemfile +++ b/builders/testdata/ruby/simple_gemfile/Gemfile @@ -13,4 +13,4 @@ # limitations under the License. source "https://rubygems.org" -gem "sinatra", "~> 2.0" +gem "sinatra", "~> 4.0", ">= 4.0.0" diff --git a/builders/testdata/ruby/simple_gemfile/Gemfile.lock b/builders/testdata/ruby/simple_gemfile/Gemfile.lock index 30eaa2b3f..bbdf39120 100644 --- a/builders/testdata/ruby/simple_gemfile/Gemfile.lock +++ b/builders/testdata/ruby/simple_gemfile/Gemfile.lock @@ -1,22 +1,33 @@ GEM remote: https://rubygems.org/ specs: - mustermann (1.0.3) - rack (2.0.6) - rack-protection (2.0.4) - rack - sinatra (2.0.4) - mustermann (~> 1.0) - rack (~> 2.0) - rack-protection (= 2.0.4) + base64 (0.2.0) + logger (1.7.0) + mustermann (3.0.3) + ruby2_keywords (~> 0.0.1) + rack (3.1.14) + rack-protection (4.1.1) + base64 (>= 0.1.0) + logger (>= 1.6.0) + rack (>= 3.0.0, < 4) + rack-session (2.1.1) + base64 (>= 0.1.0) + rack (>= 3.0.0) + ruby2_keywords (0.0.5) + sinatra (4.1.1) + logger (>= 1.6.0) + mustermann (~> 3.0) + rack (>= 3.0.0, < 4) + rack-protection (= 4.1.1) + rack-session (>= 2.0.0, < 3) tilt (~> 2.0) - tilt (2.0.8) + tilt (2.6.0) PLATFORMS ruby DEPENDENCIES - sinatra (~> 2.0) + sinatra (~> 4.0, >= 4.0.0) BUNDLED WITH - 1.17.1 + 1.17.3