From 2c868e26c969cc517f2ca4988dc049e7ab18326b Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 22 Apr 2021 18:16:43 +0000
Subject: [PATCH] fix: Gemfile to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- http://localhost:8000/vuln/SNYK-RUBY-ACTIONPACK-20255
- http://localhost:8000/vuln/SNYK-RUBY-ACTIONPACK-20256
- http://localhost:8000/vuln/SNYK-RUBY-ACTIONPACK-20258
- http://localhost:8000/vuln/SNYK-RUBY-ACTIONPACK-20264
- http://localhost:8000/vuln/SNYK-RUBY-ACTIONPACK-569599
- http://localhost:8000/vuln/SNYK-RUBY-ACTIONPACK-569600
- http://localhost:8000/vuln/SNYK-RUBY-ACTIONVIEW-20262
- http://localhost:8000/vuln/SNYK-RUBY-ACTIONVIEW-20271
- http://localhost:8000/vuln/SNYK-RUBY-ACTIONVIEW-560837
- http://localhost:8000/vuln/SNYK-RUBY-ACTIONVIEW-569156
- http://localhost:8000/vuln/SNYK-RUBY-ACTIONVIEW-569601
- http://localhost:8000/vuln/SNYK-RUBY-ACTIONVIEW-632514
- http://localhost:8000/vuln/SNYK-RUBY-ACTIVEJOB-72640
- http://localhost:8000/vuln/SNYK-RUBY-ACTIVEMODEL-20260
- http://localhost:8000/vuln/SNYK-RUBY-ACTIVERECORD-1080913
- http://localhost:8000/vuln/SNYK-RUBY-ACTIVERECORD-20259
- http://localhost:8000/vuln/SNYK-RUBY-ACTIVERECORD-20270
- http://localhost:8000/vuln/SNYK-RUBY-ACTIVESUPPORT-569598
- http://localhost:8000/vuln/SNYK-RUBY-ADMINISTRATE-20265
- http://localhost:8000/vuln/SNYK-RUBY-ADMINISTRATE-560317
- http://localhost:8000/vuln/SNYK-RUBY-AUTHLOGIC-20043
- http://localhost:8000/vuln/SNYK-RUBY-BOOTSTRAPSASS-174549
- http://localhost:8000/vuln/SNYK-RUBY-BOOTSTRAPSASS-450237
- http://localhost:8000/vuln/SNYK-RUBY-BOOTSTRAPSASS-450238
- http://localhost:8000/vuln/SNYK-RUBY-BOOTSTRAPSASS-450239
- http://localhost:8000/vuln/SNYK-RUBY-DEVISE-173787
- http://localhost:8000/vuln/SNYK-RUBY-DEVISE-465098
- http://localhost:8000/vuln/SNYK-RUBY-DEVISEINVITABLE-20356
- http://localhost:8000/vuln/SNYK-RUBY-I18N-72582
- http://localhost:8000/vuln/SNYK-RUBY-JQUERYRAILS-450225
- http://localhost:8000/vuln/SNYK-RUBY-JQUERYRAILS-565439
- http://localhost:8000/vuln/SNYK-RUBY-JQUERYUIRAILS-449592
- http://localhost:8000/vuln/SNYK-RUBY-JSON-560838
- http://localhost:8000/vuln/SNYK-RUBY-KAMINARI-570586
- http://localhost:8000/vuln/SNYK-RUBY-LOOFAH-22023
- http://localhost:8000/vuln/SNYK-RUBY-LOOFAH-474102
- http://localhost:8000/vuln/SNYK-RUBY-LOOFAH-72548
- http://localhost:8000/vuln/SNYK-RUBY-NOKOGIRI-1055008
- http://localhost:8000/vuln/SNYK-RUBY-NOKOGIRI-20277
- http://localhost:8000/vuln/SNYK-RUBY-NOKOGIRI-20299
- http://localhost:8000/vuln/SNYK-RUBY-NOKOGIRI-20367
- http://localhost:8000/vuln/SNYK-RUBY-NOKOGIRI-20368
- http://localhost:8000/vuln/SNYK-RUBY-NOKOGIRI-20432
- http://localhost:8000/vuln/SNYK-RUBY-NOKOGIRI-22013
- http://localhost:8000/vuln/SNYK-RUBY-NOKOGIRI-22014
- http://localhost:8000/vuln/SNYK-RUBY-NOKOGIRI-459107
- http://localhost:8000/vuln/SNYK-RUBY-NOKOGIRI-534637
- http://localhost:8000/vuln/SNYK-RUBY-NOKOGIRI-552159
- http://localhost:8000/vuln/SNYK-RUBY-NOKOGIRI-72433
- http://localhost:8000/vuln/SNYK-RUBY-PAPERCLIP-22001
- http://localhost:8000/vuln/SNYK-RUBY-PUMA-536835
- http://localhost:8000/vuln/SNYK-RUBY-PUMA-559020
- http://localhost:8000/vuln/SNYK-RUBY-PUMA-559100
- http://localhost:8000/vuln/SNYK-RUBY-PUMA-570205
- http://localhost:8000/vuln/SNYK-RUBY-PUMA-570206
- http://localhost:8000/vuln/SNYK-RUBY-RACK-538324
- http://localhost:8000/vuln/SNYK-RUBY-RACK-569066
- http://localhost:8000/vuln/SNYK-RUBY-RACK-572377
- http://localhost:8000/vuln/SNYK-RUBY-RACK-72567
- http://localhost:8000/vuln/SNYK-RUBY-RAILS-1071903
- http://localhost:8000/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-22025
- http://localhost:8000/vuln/SNYK-RUBY-RAILTIES-20454
- http://localhost:8000/vuln/SNYK-RUBY-RAKE-552000
- http://localhost:8000/vuln/SNYK-RUBY-SINATRA-20468
- http://localhost:8000/vuln/SNYK-RUBY-SINATRA-20488
- http://localhost:8000/vuln/SNYK-RUBY-SINATRA-22027
- http://localhost:8000/vuln/SNYK-RUBY-SPREE-1083229
- http://localhost:8000/vuln/SNYK-RUBY-SPROCKETS-22032
- http://localhost:8000/vuln/SNYK-RUBY-TURBOLINKS-20429
---
 Gemfile | 24 ++++++++++++------------
 1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/Gemfile b/Gemfile
index 7a1bbe4..566091b 100644
--- a/Gemfile
+++ b/Gemfile
@@ -2,7 +2,7 @@ source 'https://rubygems.org'
 
 
 # Bundle edge Rails instead: gem 'rails', github: 'rails/rails'
-gem 'rails', '4.2.5'
+gem 'rails', '5.2.4.5'
 # Use sqlite3 as the database for Active Record
 gem 'sqlite3'
 # Use Uglifier as compressor for JavaScript assets
@@ -11,14 +11,14 @@ gem 'uglifier', '>= 1.3.0'
 # gem 'therubyracer', platforms: :ruby
 
 # Use jquery as the JavaScript library
-gem 'jquery-rails'
+gem 'jquery-rails', '>= 4.4.0'
 # Turbolinks makes following links in your web application faster. Read more: https://github.com/rails/turbolinks
-gem 'turbolinks'
+gem 'turbolinks', '>= 5.0.0'
 # Build JSON APIs with ease. Read more: https://github.com/rails/jbuilder
-gem 'jbuilder', '~> 2.0'
+gem 'jbuilder', '~> 2.6', '>= 2.6.4'
 # Use Puma as the app server
-gem 'puma'
-gem 'lingq'
+gem 'puma', '>= 3.12.6'
+gem 'lingq', '>= 0.3.1'
 # Use ActiveModel has_secure_password
 # gem 'bcrypt', '~> 3.1.7'
 
@@ -32,7 +32,7 @@ end
 
 group :development do
   # Access an IRB console on exception pages or by using <%= console %> in views
-  gem 'web-console'
+  gem 'web-console', '>= 3.1.1'
   # Spring speeds up development by keeping your application running in the background. Read more: https://github.com/rails/spring
   gem 'spring'
 end
@@ -40,10 +40,10 @@ end
 # Windows does not include zoneinfo files, so bundle the tzinfo-data gem
 gem 'tzinfo-data', platforms: [:mingw, :mswin, :x64_mingw, :jruby]
 
-gem 'administrate', '0.1.4'
+gem 'administrate', '0.13.0'
 
-gem 'sinatra', '1.1.4'
+gem 'sinatra', '2.0.2'
 gem 'festivaltts4r', '0.2.0'
-gem 'spree', '3.0.7'
-gem 'authlogic', '1.4.3'
-gem 'devise_invitable', '1.3.4'
+gem 'spree', '4.2.0'
+gem 'authlogic', '3.3.0'
+gem 'devise_invitable', '1.6.0'