fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-PUMA-8062124
sanger · Sep 20, 2024 · 777350d · 777350d
1 parent 02ed6c6
commit 777350d
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 4 deletions.
diff --git a/Gemfile b/Gemfile
@@ -28,7 +28,7 @@ gem 'jquery-turbolinks'
 # gem 'jbuilder', '~> 2.0'
 # bundle exec rake doc:rails generates the API under doc/api.
 # gem 'sdoc', '~> 0.4.0', group: :doc
-gem 'puma'
+gem 'puma', '>= 5.6.9'
 gem 'active_model_serializers', '>= 0.10.14'
 gem 'bootstrap-sass'
 gem 'font-awesome-rails', '>= 4.7.0.8'

diff --git a/Gemfile.lock b/Gemfile.lock
@@ -198,14 +198,14 @@ GEM
       timeout
     net-smtp (0.3.3)
       net-protocol
-    nio4r (2.7.0)
+    nio4r (2.7.3)
     nokogiri (1.15.5)
       mini_portile2 (~> 2.8.2)
       racc (~> 1.4)
     nokogiri (1.15.5-x86_64-linux)
       racc (~> 1.4)
     public_suffix (5.0.0)
-    puma (5.6.8)
+    puma (6.4.3)
       nio4r (~> 2.0)
     racc (1.7.3)
     rack (2.2.8)
@@ -349,7 +349,7 @@ DEPENDENCIES
   mysql2 (~> 0.5.0)
   net-ldap
   pmb-client (= 0.1.0)!
-  puma
+  puma (>= 5.6.9)
   rails (~> 6.1.7, >= 6.1.7.5)
   rails-controller-testing
   rake