From bb27c0ffd54ba1954164cc63c7ce53f0a329bbd1 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 21 Sep 2024 09:30:43 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-PUMA-8062124
---
 Gemfile      | 2 +-
 Gemfile.lock | 7 ++++---
 2 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/Gemfile b/Gemfile
index 83d0189..7bffe8d 100644
--- a/Gemfile
+++ b/Gemfile
@@ -12,7 +12,7 @@ ruby '2.5.3'
 gem 'rails', '~> 5.1.3'
 # Use sqlite3 as the database for Active Record
 # Use Puma as the app server
-gem 'puma', '~> 3.7'
+gem 'puma', '~> 5.6', '>= 5.6.9'
 # Use SCSS for stylesheets
 gem 'sass-rails', '~> 5.0'
 # Use Uglifier as compressor for JavaScript assets
diff --git a/Gemfile.lock b/Gemfile.lock
index bfd027e..38a83be 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -217,7 +217,8 @@ GEM
       coderay (~> 1.1.0)
       method_source (~> 0.9.0)
     public_suffix (3.0.3)
-    puma (3.12.0)
+    puma (5.6.9)
+      nio4r (~> 2.0)
     rack (2.0.6)
     rack-cache (1.8.0)
       rack (>= 0.4)
@@ -397,7 +398,7 @@ DEPENDENCIES
   listen (>= 3.0.5, < 3.2)
   mailgun-ruby (~> 1.1.6)
   mysql2 (~> 0.3.18)
-  puma (~> 3.7)
+  puma (~> 5.6, >= 5.6.9)
   rails (~> 5.1.3)
   rails_apps_pages
   rails_apps_testing
@@ -424,4 +425,4 @@ RUBY VERSION
    ruby 2.5.3p105
 
 BUNDLED WITH
-   1.17.1
+   1.17.3