From 6ae8f7a1cbced92386f36b7bf3d6b4d076bff701 Mon Sep 17 00:00:00 2001 From: Helio Cola Date: Fri, 22 Sep 2023 13:50:59 +0800 Subject: [PATCH] Update puma, grpc, and commonmarker to include CVE fixes --- Gemfile | 2 +- Gemfile.lock | 18 +++++++++--------- 2 files changed, 10 insertions(+), 10 deletions(-) diff --git a/Gemfile b/Gemfile index 1b254052a6..c7f2d89e43 100644 --- a/Gemfile +++ b/Gemfile @@ -21,7 +21,7 @@ gem 'grpc', '>= 1.53.0' gem 'crawler_detect' # Serving requests -gem 'puma', '~> 4.3' +gem 'puma', '~> 5.6' gem 'rack-cors' # Helper gems for Rails diff --git a/Gemfile.lock b/Gemfile.lock index f70e10cba5..29822a8893 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -143,7 +143,7 @@ GEM rack-test (>= 0.6.3) regexp_parser (>= 1.5, < 3.0) xpath (~> 3.2) - commonmarker (0.23.8) + commonmarker (0.23.10) concurrent-ruby (1.2.2) connection_pool (2.4.1) crack (0.4.5) @@ -215,11 +215,11 @@ GEM geocoder (1.8.1) globalid (1.1.0) activesupport (>= 5.0) - google-protobuf (3.22.2) - googleapis-common-protos-types (1.5.0) - google-protobuf (~> 3.14) - grpc (1.53.0) - google-protobuf (~> 3.21) + google-protobuf (3.24.3) + googleapis-common-protos-types (1.9.0) + google-protobuf (~> 3.18) + grpc (1.58.0) + google-protobuf (~> 3.23) googleapis-common-protos-types (~> 1.0) haml (6.1.1) temple (>= 0.8.2) @@ -312,7 +312,7 @@ GEM net-smtp (0.3.3) net-protocol netrc (0.11.0) - nio4r (2.5.8) + nio4r (2.5.9) nokogiri (1.15.4) mini_portile2 (~> 2.8.2) racc (~> 1.4) @@ -359,7 +359,7 @@ GEM propshaft (0.4.0) rails (>= 7.0.0.alpha2) public_suffix (5.0.3) - puma (4.3.12) + puma (5.6.7) nio4r (~> 2.0) qonfig (0.28.0) raabro (1.4.0) @@ -595,7 +595,7 @@ DEPENDENCIES opensearch-ruby propshaft (= 0.4.0) public_suffix - puma (~> 4.3) + puma (~> 5.6) rack-attack (~> 6.6) rack-cors rails (~> 7.0.1)