From eccbbc229eed8de682a01c8e7b9f77675a725497 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 30 Apr 2023 20:58:26 +0000 Subject: [PATCH] fix: test/acceptance/workspaces/ruby-app-policy/Gemfile & test/acceptance/workspaces/ruby-app-policy/Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-SANITIZE-572473 --- .../workspaces/ruby-app-policy/Gemfile | 2 +- .../workspaces/ruby-app-policy/Gemfile.lock | 24 ++++++++++--------- 2 files changed, 14 insertions(+), 12 deletions(-) diff --git a/test/acceptance/workspaces/ruby-app-policy/Gemfile b/test/acceptance/workspaces/ruby-app-policy/Gemfile index 88d27cc9f0..f6fd9bb4ff 100644 --- a/test/acceptance/workspaces/ruby-app-policy/Gemfile +++ b/test/acceptance/workspaces/ruby-app-policy/Gemfile @@ -1,5 +1,5 @@ source :rubygems -gem "sanitize", "4.6.2" +gem "sanitize", "5.2.1" gem "yard", "0.8.0" gem "lynx", "0.4.0" diff --git a/test/acceptance/workspaces/ruby-app-policy/Gemfile.lock b/test/acceptance/workspaces/ruby-app-policy/Gemfile.lock index 1471006e88..2d4e0dcbbe 100644 --- a/test/acceptance/workspaces/ruby-app-policy/Gemfile.lock +++ b/test/acceptance/workspaces/ruby-app-policy/Gemfile.lock @@ -1,17 +1,19 @@ GEM remote: http://rubygems.org/ specs: - crass (1.0.4) + crass (1.0.6) lynx (0.4.0) - mini_portile2 (2.3.0) - nokogiri (1.8.5) - mini_portile2 (~> 2.3.0) - nokogumbo (1.5.0) - nokogiri - sanitize (4.6.2) + mini_portile2 (2.8.2) + nokogiri (1.14.3) + mini_portile2 (~> 2.8.0) + racc (~> 1.4) + nokogumbo (2.0.5) + nokogiri (~> 1.8, >= 1.8.4) + racc (1.6.2) + sanitize (5.2.1) crass (~> 1.0.2) - nokogiri (>= 1.4.4) - nokogumbo (~> 1.4) + nokogiri (>= 1.8.0) + nokogumbo (~> 2.0) yard (0.8.0) PLATFORMS @@ -19,8 +21,8 @@ PLATFORMS DEPENDENCIES lynx (= 0.4.0) - sanitize (= 4.6.2) + sanitize (= 5.2.1) yard (= 0.8.0) BUNDLED WITH - 1.16.5 + 1.17.3