From 2a3aba05083c6ba3921b1f27ff161b306cc2a409 Mon Sep 17 00:00:00 2001 From: "Andrey \"Zed\" Zaikin" Date: Thu, 26 Feb 2026 09:13:31 +0200 Subject: [PATCH] update rack due to CVE-2026-25500 --- Gemfile | 2 +- Gemfile.lock | 5 +++-- 2 files changed, 4 insertions(+), 3 deletions(-) diff --git a/Gemfile b/Gemfile index 7f0970c8..57880c97 100644 --- a/Gemfile +++ b/Gemfile @@ -74,7 +74,7 @@ group :test do end group :development, :test do - gem 'rack', '~> 2.2.20' + gem 'rack', '~> 2.2.22' gem 'httpclient' gem 'pry', '~> 0.14.2', platform: :jruby gem 'factory_bot', '~> 6.2.0', require: false diff --git a/Gemfile.lock b/Gemfile.lock index b07c1d64..6f25d5d7 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -81,7 +81,7 @@ GEM public_suffix (6.0.1) raabro (1.4.0) racc (1.7.3-java) - rack (2.2.20) + rack (2.2.22) rack-mount (0.8.3) rack (>= 1.0.0) rainbow (3.1.1) @@ -154,6 +154,7 @@ PLATFORMS universal-java-21 universal-java-22 universal-java-23 + universal-java-25 DEPENDENCIES activesupport (= 6.1.7.7) @@ -175,7 +176,7 @@ DEPENDENCIES pry-nav pry-remote racc (~> 1.7.3) - rack (~> 2.2.20) + rack (~> 2.2.22) rexml (~> 3.4.2) rspec (~> 3.13.0) rubocop (~> 1.63)