From 6b5924623c3bdd1b7da108bda1ce92e6bdcbfdb8 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 20 Dec 2022 23:28:49 -0800 Subject: [PATCH] fix: Gemfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-RACK-1061917 --- Gemfile | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/Gemfile b/Gemfile index dc7861d..ca19e0e 100644 --- a/Gemfile +++ b/Gemfile @@ -4,7 +4,7 @@ git_source(:github) { |repo| "https://github.com/#{repo}.git" } ruby '~> 3.0' # Bundle edge Rails instead: gem 'rails', github: 'rails/rails' -gem 'rails', '~> 6.1' +gem 'rails', '~> 6.1', '>= 6.1.3.1' # Use Puma as the app server gem 'puma', '~> 5.0' # Transpile app-like JavaScript. Read more: https://github.com/rails/webpacker @@ -50,4 +50,4 @@ end # Windows does not include zoneinfo files, so bundle the tzinfo-data gem gem 'tzinfo-data', platforms: [:mingw, :mswin, :x64_mingw, :jruby] gem "twilio-ruby", "~> 5.46" -gem "bootstrap", "~> 4.5" +gem "bootstrap", "~> 4.6", ">= 4.6.0"