From ea80f81b9754872a3b893abb9077cf9ed08ae7e7 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 21 Nov 2024 14:51:20 +0000 Subject: [PATCH] fix: samples/server/petstore/ruby-sinatra/Gemfile & samples/server/petstore/ruby-sinatra/Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-SINATRA-6483832 --- samples/server/petstore/ruby-sinatra/Gemfile | 2 +- .../server/petstore/ruby-sinatra/Gemfile.lock | 35 ++++++++++++++----- 2 files changed, 27 insertions(+), 10 deletions(-) diff --git a/samples/server/petstore/ruby-sinatra/Gemfile b/samples/server/petstore/ruby-sinatra/Gemfile index 90d7b0e3bcdc..5d1f522bd33b 100644 --- a/samples/server/petstore/ruby-sinatra/Gemfile +++ b/samples/server/petstore/ruby-sinatra/Gemfile @@ -1,5 +1,5 @@ source 'https://rubygems.org' gem "webrick" -gem "sinatra" +gem "sinatra", ">= 4.1.0" gem "sinatra-cross_origin" diff --git a/samples/server/petstore/ruby-sinatra/Gemfile.lock b/samples/server/petstore/ruby-sinatra/Gemfile.lock index 3b7c05b4083f..3a17a2c1df3b 100644 --- a/samples/server/petstore/ruby-sinatra/Gemfile.lock +++ b/samples/server/petstore/ruby-sinatra/Gemfile.lock @@ -1,19 +1,36 @@ GEM remote: https://rubygems.org/ specs: - rack (1.6.4) - rack-protection (1.5.3) - rack - sinatra (1.4.6) - rack (~> 1.4) - rack-protection (~> 1.4) - tilt (>= 1.3, < 3) + base64 (0.2.0) + logger (1.6.1) + mustermann (3.0.3) + ruby2_keywords (~> 0.0.1) + rack (3.1.8) + rack-protection (4.1.1) + base64 (>= 0.1.0) + logger (>= 1.6.0) + rack (>= 3.0.0, < 4) + rack-session (2.0.0) + rack (>= 3.0.0) + ruby2_keywords (0.0.5) + sinatra (4.1.1) + logger (>= 1.6.0) + mustermann (~> 3.0) + rack (>= 3.0.0, < 4) + rack-protection (= 4.1.1) + rack-session (>= 2.0.0, < 3) + tilt (~> 2.0) sinatra-cross_origin (0.3.2) - tilt (2.0.1) + tilt (2.4.0) + webrick (1.9.0) PLATFORMS ruby DEPENDENCIES - sinatra + sinatra (>= 4.1.0) sinatra-cross_origin + webrick + +BUNDLED WITH + 2.1.4