htwkmooc/codeocean
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: Gemfile & Gemfile.lock to reduce vulnerabilities

Browse Source 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-ACTIONVIEW-173783
- https://snyk.io/vuln/SNYK-RUBY-ACTIONVIEW-173784
- https://snyk.io/vuln/SNYK-RUBY-RAILTIES-173785
This commit is contained in:
snyk-bot
2019-03-14 23:43:38 +00:00
parent 951171743d
commit c9713a0cc8
2 changed files with 64 additions and 64 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
Gemfile
View File

@ -5,11 +5,11 @@ gem 'bootstrap-will_paginate'
gem 'carrierwave'
gem 'concurrent-ruby'
gem 'docker-api', require: 'docker'
gem 'factory_bot_rails'
gem 'factory_bot_rails', '>= 5.0.1'
gem 'forgery'
gem 'highline'
gem 'jbuilder'
gem 'jquery-rails'
gem 'jquery-rails', '>= 4.3.3'
gem 'ims-lti', '< 2.0.0'
gem 'kramdown'
gem 'newrelic_rpm'
@ -17,14 +17,14 @@ gem 'pg'
gem 'pry-byebug'
gem 'puma'
gem 'pundit'
gem 'rails', '5.2.2'
gem 'rails-i18n'
gem 'rails', '5.2.2.1'
gem 'rails-i18n', '>= 5.1.3'
gem 'i18n-js'
gem 'ransack'
gem 'ransack', '>= 2.1.1'
gem 'rubytree'
gem 'sass-rails'
gem 'slim-rails'
gem 'pagedown-bootstrap-rails'
gem 'sass-rails', '>= 5.0.7'
gem 'slim-rails', '>= 3.2.0'
gem 'pagedown-bootstrap-rails', '>= 2.1.4'
gem 'sorcery'
gem 'turbolinks'
gem 'uglifier'
@ -32,12 +32,12 @@ gem 'tubesock', git: 'https://github.com/gosukiwi/tubesock', branch: 'patch-1' #
gem 'faye-websocket'
gem 'eventmachine', '1.0.9.1' # explicitly added, this is used by faye-websocket, newer versions might crash or
gem 'nokogiri'
gem 'webpacker'
gem 'webpacker', '>= 4.0.2'
gem 'rest-client'
gem 'rubyzip'
gem 'mnemosyne-ruby'
gem 'whenever', require: false
gem 'rails-timeago'
gem 'rails-timeago', '>= 2.17.1'
group :development, :staging do
gem 'bootsnap', require: false
@ -52,7 +52,7 @@ group :development, :staging do
gem 'rack-mini-profiler'
gem 'rubocop', require: false
gem 'rubocop-rspec'
gem 'web-console'
gem 'web-console', '>= 3.7.0'
end
group :development, :test, :staging do
@ -60,7 +60,7 @@ group :development, :test, :staging do
end
group :test do
gem 'rails-controller-testing'
gem 'rails-controller-testing', '>= 1.0.4'
gem 'autotest-rails'
gem 'capybara'
gem 'selenium-webdriver'
@ -68,6 +68,6 @@ group :test do
gem 'database_cleaner'
gem 'nyan-cat-formatter'
gem 'rspec-autotest'
gem 'rspec-rails'
gem 'rspec-rails', '>= 3.8.2'
gem 'simplecov', require: false
end

102
Gemfile.lock
View File

@ -11,43 +11,43 @@ GEM
remote: https://rubygems.org/
specs:
ZenTest (4.11.2)
actioncable (5.2.2)
actionpack (= 5.2.2)
actioncable (5.2.2.1)
actionpack (= 5.2.2.1)
nio4r (~> 2.0)
websocket-driver (>= 0.6.1)
actionmailer (5.2.2)
actionpack (= 5.2.2)
actionview (= 5.2.2)
activejob (= 5.2.2)
actionmailer (5.2.2.1)
actionpack (= 5.2.2.1)
actionview (= 5.2.2.1)
activejob (= 5.2.2.1)
mail (~> 2.5, >= 2.5.4)
rails-dom-testing (~> 2.0)
actionpack (5.2.2)
actionview (= 5.2.2)
activesupport (= 5.2.2)
actionpack (5.2.2.1)
actionview (= 5.2.2.1)
activesupport (= 5.2.2.1)
rack (~> 2.0)
rack-test (>= 0.6.3)
rails-dom-testing (~> 2.0)
rails-html-sanitizer (~> 1.0, >= 1.0.2)
actionview (5.2.2)
activesupport (= 5.2.2)
actionview (5.2.2.1)
activesupport (= 5.2.2.1)
builder (~> 3.1)
erubi (~> 1.4)
rails-dom-testing (~> 2.0)
rails-html-sanitizer (~> 1.0, >= 1.0.3)
activejob (5.2.2)
activesupport (= 5.2.2)
activejob (5.2.2.1)
activesupport (= 5.2.2.1)
globalid (>= 0.3.6)
activemodel (5.2.2)
activesupport (= 5.2.2)
activerecord (5.2.2)
activemodel (= 5.2.2)
activesupport (= 5.2.2)
activemodel (5.2.2.1)
activesupport (= 5.2.2.1)
activerecord (5.2.2.1)
activemodel (= 5.2.2.1)
activesupport (= 5.2.2.1)
arel (>= 9.0)
activestorage (5.2.2)
actionpack (= 5.2.2)
activerecord (= 5.2.2)
activestorage (5.2.2.1)
actionpack (= 5.2.2.1)
activerecord (= 5.2.2.1)
marcel (~> 0.3.1)
activesupport (5.2.2)
activesupport (5.2.2.1)
concurrent-ruby (~> 1.0, >= 1.0.2)
i18n (>= 0.7, < 2)
minitest (~> 5.1)
@ -112,7 +112,7 @@ GEM
ffi (~> 1.0, >= 1.0.11)
chronic (0.10.2)
coderay (1.1.2)
concurrent-ruby (1.1.4)
concurrent-ruby (1.1.5)
crass (1.0.4)
database_cleaner (1.7.0)
debug_inspector (0.0.3)
@ -231,18 +231,18 @@ GEM
rack
rack-test (1.1.0)
rack (>= 1.0, < 3)
rails (5.2.2)
actioncable (= 5.2.2)
actionmailer (= 5.2.2)
actionpack (= 5.2.2)
actionview (= 5.2.2)
activejob (= 5.2.2)
activemodel (= 5.2.2)
activerecord (= 5.2.2)
activestorage (= 5.2.2)
activesupport (= 5.2.2)
rails (5.2.2.1)
actioncable (= 5.2.2.1)
actionmailer (= 5.2.2.1)
actionpack (= 5.2.2.1)
actionview (= 5.2.2.1)
activejob (= 5.2.2.1)
activemodel (= 5.2.2.1)
activerecord (= 5.2.2.1)
activestorage (= 5.2.2.1)
activesupport (= 5.2.2.1)
bundler (>= 1.3.0)
railties (= 5.2.2)
railties (= 5.2.2.1)
sprockets-rails (>= 2.0.0)
rails-controller-testing (1.0.4)
actionpack (>= 5.0.1.x)
@ -259,9 +259,9 @@ GEM
rails-timeago (2.17.1)
actionpack (>= 3.1)
activesupport (>= 3.1)
railties (5.2.2)
actionpack (= 5.2.2)
activesupport (= 5.2.2)
railties (5.2.2.1)
actionpack (= 5.2.2.1)
activesupport (= 5.2.2.1)
method_source
rake (>= 0.8.7)
thor (>= 0.19.0, < 2.0)
@ -418,7 +418,7 @@ DEPENDENCIES
database_cleaner
docker-api
eventmachine (= 1.0.9.1)
factory_bot_rails
factory_bot_rails (>= 5.0.1)
faye-websocket
forgery
headless
@ -426,43 +426,43 @@ DEPENDENCIES
i18n-js
ims-lti (< 2.0.0)
jbuilder
jquery-rails
jquery-rails (>= 4.3.3)
kramdown
listen
mnemosyne-ruby
newrelic_rpm
nokogiri
nyan-cat-formatter
pagedown-bootstrap-rails
pagedown-bootstrap-rails (>= 2.1.4)
pg
pry-byebug
puma
pundit
rack-mini-profiler
rails (= 5.2.2)
rails-controller-testing
rails-i18n
rails-timeago
ransack
rails (= 5.2.2.1)
rails-controller-testing (>= 1.0.4)
rails-i18n (>= 5.1.3)
rails-timeago (>= 2.17.1)
ransack (>= 2.1.1)
rest-client
rspec-autotest
rspec-rails
rspec-rails (>= 3.8.2)
rubocop
rubocop-rspec
rubytree
rubyzip
sass-rails
sass-rails (>= 5.0.7)
selenium-webdriver
simplecov
slim-rails
slim-rails (>= 3.2.0)
sorcery
spring
tubesock!
turbolinks
uglifier
web-console
webpacker
web-console (>= 3.7.0)
webpacker (>= 4.0.2)
whenever
BUNDLED WITH
1.17.2
1.17.3