From 2148bfdf1b31baf4a286a7dcc52b910b72de50b7 Mon Sep 17 00:00:00 2001 From: snyk-test Date: Wed, 14 Aug 2019 01:28:38 +0000 Subject: [PATCH] fix: docs/manual/Gemfile & docs/manual/Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-459107 --- docs/manual/Gemfile | 4 +- docs/manual/Gemfile.lock | 108 +++++++++++++++++++-------------------- 2 files changed, 55 insertions(+), 57 deletions(-) diff --git a/docs/manual/Gemfile b/docs/manual/Gemfile index f4df6bce8a..0c73b9c317 100644 --- a/docs/manual/Gemfile +++ b/docs/manual/Gemfile @@ -5,7 +5,7 @@ gem 'middleman-livereload', '~> 3.4.2' gem 'middleman-autoprefixer' gem 'middleman-minify-html' gem 'middleman-syntax' -gem 'middleman-s3_sync' +gem 'middleman-s3_sync', '>= 3.0.44' gem 'middleman-search_engine_sitemap' gem 'slim' @@ -13,7 +13,7 @@ gem 'therubyracer' gem 'oj' gem 'redcarpet', '>= 3.2.3' gem 'travis' -gem 'nokogiri' +gem 'nokogiri', '>= 1.10.4' gem 'rainbow' gem "bootstrap-sass", require: false diff --git a/docs/manual/Gemfile.lock b/docs/manual/Gemfile.lock index 947840f7b1..59682bf2dc 100644 --- a/docs/manual/Gemfile.lock +++ b/docs/manual/Gemfile.lock @@ -1,7 +1,7 @@ GEM remote: https://rubygems.org/ specs: - activesupport (4.1.10) + activesupport (4.1.16) i18n (~> 0.6, >= 0.6.9) json (~> 1.7, >= 1.7.7) minitest (~> 5.1) @@ -16,7 +16,7 @@ GEM bootstrap-sass (3.3.5.1) autoprefixer-rails (>= 5.0.0.1) sass (>= 3.3.0) - builder (3.2.2) + builder (3.2.3) celluloid (0.16.0) timers (~> 4.0.0) chunky_png (1.3.4) @@ -43,31 +43,29 @@ GEM ethon (0.8.1) ffi (>= 1.3.0) eventmachine (1.0.7) - excon (0.45.1) + excon (0.66.0) execjs (2.6.0) faraday (0.9.2) multipart-post (>= 1.2, < 3) faraday_middleware (0.10.0) faraday (>= 0.7.4, < 0.10) - ffi (1.9.10) - fog-aws (0.1.2) - fog-core (~> 1.27) - fog-json (~> 1.0) + ffi (1.11.1) + fog-aws (3.5.2) + fog-core (~> 2.1) + fog-json (~> 1.1) fog-xml (~> 0.1) ipaddress (~> 0.8) - fog-core (1.30.0) + fog-core (2.1.2) builder - excon (~> 0.45) + excon (~> 0.58) formatador (~> 0.2) mime-types - net-scp (~> 1.1) - net-ssh (>= 2.1.3) - fog-json (1.0.1) - fog-core (~> 1.0) - multi_json (~> 1.0) - fog-xml (0.1.2) + fog-json (1.2.0) + fog-core + multi_json (~> 1.10) + fog-xml (0.1.3) fog-core - nokogiri (~> 1.5, >= 1.5.11) + nokogiri (>= 1.5.11, < 2.0.0) formatador (0.2.5) gh (0.14.0) addressable @@ -80,23 +78,23 @@ GEM tilt highline (1.7.8) hike (1.2.3) - hitimes (1.2.2) - hooks (0.4.0) - uber (~> 0.0.4) + hitimes (1.3.1) + hooks (0.4.1) + uber (~> 0.0.14) htmlcompressor (0.1.2) http_parser.rb (0.6.0) i18n (0.7.0) - ipaddress (0.8.0) - json (1.8.3) + ipaddress (0.8.3) + json (1.8.6) kramdown (1.6.0) launchy (2.4.3) addressable (~> 2.3) libv8 (3.16.14.13) - listen (2.10.0) + listen (2.10.1) celluloid (~> 0.16.0) rb-fsevent (>= 0.9.3) rb-inotify (>= 0.9) - map (6.5.5) + map (6.6.0) middleman (3.3.10) coffee-script (~> 2.2) compass (>= 1.0.0, < 2.0.0) @@ -130,12 +128,13 @@ GEM middleman-minify-html (3.4.0) htmlcompressor (~> 0.1.0) middleman-core (>= 3.2) - middleman-s3_sync (3.0.44) + middleman-s3_sync (3.3.10) ansi (~> 1.5.0) - fog-aws (>= 0.1.1) + fog-aws (>= 0.7.0) map - middleman-core (>= 3.0.0) - pmap + middleman-core (~> 3.3) + mime-types (>= 3.0) + parallel ruby-progressbar unf middleman-search_engine_sitemap (1.3.0) @@ -149,42 +148,41 @@ GEM middleman-syntax (2.0.0) middleman-core (~> 3.2) rouge (~> 1.0) - mime-types (2.4.3) - mini_portile2 (2.0.0) - minitest (5.6.0) - multi_json (1.11.2) + mime-types (3.2.2) + mime-types-data (~> 3.2015) + mime-types-data (3.2019.0331) + mini_portile2 (2.4.0) + minitest (5.11.3) + multi_json (1.13.1) multipart-post (2.0.0) net-http-persistent (2.9.4) net-http-pipeline (1.0.1) - net-scp (1.2.1) - net-ssh (>= 2.6.5) - net-ssh (2.9.2) - nokogiri (1.6.7.2) - mini_portile2 (~> 2.0.0.rc2) + nokogiri (1.10.4) + mini_portile2 (~> 2.4.0) oj (2.15.0) - padrino-helpers (0.12.5) + padrino-helpers (0.12.9) i18n (~> 0.6, >= 0.6.7) - padrino-support (= 0.12.5) - tilt (~> 1.4.1) - padrino-support (0.12.5) + padrino-support (= 0.12.9) + tilt (>= 1.4.1, < 3) + padrino-support (0.12.9) activesupport (>= 3.1) - pmap (1.0.2) + parallel (1.17.0) pusher-client (0.6.2) json websocket (~> 1.0) - rack (1.6.0) + rack (1.6.11) rack-livereload (0.3.15) rack rack-test (0.6.3) rack (>= 1.0) rainbow (2.1.0) - rb-fsevent (0.9.4) - rb-inotify (0.9.5) - ffi (>= 0.5.0) + rb-fsevent (0.10.3) + rb-inotify (0.10.0) + ffi (~> 1.0) redcarpet (3.3.4) ref (2.0.0) rouge (1.8.0) - ruby-progressbar (1.7.5) + ruby-progressbar (1.10.1) sass (3.4.22) slim (3.0.6) temple (~> 0.7.3) @@ -203,10 +201,10 @@ GEM therubyracer (0.12.2) libv8 (~> 3.16.14.0) ref - thor (0.19.1) - thread_safe (0.3.5) + thor (0.20.3) + thread_safe (0.3.6) tilt (1.4.1) - timers (4.0.1) + timers (4.0.4) hitimes travis (1.8.2) backports @@ -219,15 +217,15 @@ GEM typhoeus (~> 0.6, >= 0.6.8) typhoeus (0.8.0) ethon (>= 0.8.0) - tzinfo (1.2.2) + tzinfo (1.2.5) thread_safe (~> 0.1) - uber (0.0.13) + uber (0.0.15) uglifier (2.7.1) execjs (>= 0.3.0) json (>= 1.8.0) unf (0.1.4) unf_ext - unf_ext (0.0.6) + unf_ext (0.0.7.6) websocket (1.2.2) PLATFORMS @@ -239,10 +237,10 @@ DEPENDENCIES middleman-autoprefixer middleman-livereload (~> 3.4.2) middleman-minify-html - middleman-s3_sync + middleman-s3_sync (>= 3.0.44) middleman-search_engine_sitemap middleman-syntax - nokogiri + nokogiri (>= 1.10.4) oj rainbow redcarpet (>= 3.2.3) @@ -253,4 +251,4 @@ DEPENDENCIES wdm (~> 0.1.0) BUNDLED WITH - 1.11.2 + 1.17.3