Skip to content

Commit

Permalink
[security] update sinatra dev dependency to resolve dependabot alert (
Browse files Browse the repository at this point in the history 
#21709)

* Sync Gemfile.lock with Gemfile

* Update rack to >= 2.2.6.3 (dependenbot)

* Update sinatra to >= 2.2.3 (dependenbot)

* Restrict to a non major sinatra upgrade for now
  • Loading branch information
@lacostej
lacostej committed Dec 15, 2023
1 parent 07c62c5 commit 6654107
Show file tree
Hide file tree
Showing 2 changed files with 12 additions and 12 deletions.
22 changes: 11 additions & 11 deletions Gemfile.lock
View file
Expand Up @@ -28,7 +28,7 @@ PATH
mini_magick (>= 4.9.4, < 5.0.0)
multipart-post (>= 2.0.0, < 3.0.0)
naturally (~> 2.2)
optparse (~> 0.1.1)
optparse (>= 0.1.1)
plist (>= 3.1.0, < 4.0.0)
rubyzip (>= 2.0.0, < 3.0.0)
security (= 0.1.3)
Expand Down Expand Up @@ -204,7 +204,7 @@ GEM
mini_mime (1.1.5)
multi_json (1.15.0)
multipart-post (2.0.0)
mustermann (1.1.1)
mustermann (2.0.2)
ruby2_keywords (~> 0.0.1)
nanaimo (0.3.0)
nap (1.1.0)
Expand Down Expand Up @@ -237,8 +237,8 @@ GEM
pry (~> 0.13)
public_suffix (5.0.4)
racc (1.7.1)
rack (2.2.3.1)
rack-protection (2.0.8.1)
rack (2.2.8)
rack-protection (2.2.4)
rack
rainbow (3.1.1)
rake (13.0.3)
Expand Down Expand Up @@ -290,7 +290,7 @@ GEM
rubocop-require_tools (0.1.2)
rubocop (>= 0.49.1)
ruby-progressbar (1.13.0)
ruby2_keywords (0.0.4)
ruby2_keywords (0.0.5)
rubyzip (2.3.2)
sawyer (0.9.2)
addressable (>= 2.3.5)
Expand All @@ -309,10 +309,10 @@ GEM
json (>= 1.8, < 3)
simplecov-html (~> 0.10.0)
simplecov-html (0.10.2)
sinatra (2.0.8.1)
mustermann (~> 1.0)
rack (~> 2.0)
rack-protection (= 2.0.8.1)
sinatra (2.2.4)
mustermann (~> 2.0)
rack (~> 2.2)
rack-protection (= 2.2.4)
tilt (~> 2.0)
slack-notifier (2.3.2)
sync (0.5.0)
Expand All @@ -322,7 +322,7 @@ GEM
terminal-table (3.0.2)
unicode-display_width (>= 1.1.1, < 3)
thor (1.1.0)
tilt (2.0.10)
tilt (2.3.0)
tins (1.28.0)
sync
trailblazer-option (0.1.2)
Expand Down Expand Up @@ -389,7 +389,7 @@ DEPENDENCIES
rubocop (= 1.50.2)
rubocop-performance
rubocop-require_tools
sinatra (~> 2.0.8)
sinatra (>= 2.2.3, < 3.0)
webmock (~> 3.18)
xcode-install (>= 2.6.7)
xcov (~> 1.4.1)
Expand Down
2 changes: 1 addition & 1 deletion fastlane.gemspec
View file
Expand Up @@ -125,7 +125,7 @@ Gem::Specification.new do |spec|
spec.add_development_dependency('rubocop-performance')
spec.add_development_dependency('rubocop-require_tools')
spec.add_development_dependency('rubocop', Fastlane::RUBOCOP_REQUIREMENT)
spec.add_development_dependency('sinatra', '~> 2.0.8') # Used for mock servers
spec.add_development_dependency('sinatra', ['>= 2.2.3', '< 3.0']) # Used for mock servers
spec.add_development_dependency('webmock', '~> 3.18')
spec.add_development_dependency('xcov', '~> 1.4.1') # Used for xcov's parameters generation: https://github.com/fastlane/fastlane/pull/12416
spec.add_development_dependency('yard', '~> 0.9.11')
Expand Down

0 comments on commit 6654107

Please sign in to comment.