fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-AUDITED-5490134
2025-10-31 19:17:48 +00:00 · 2023-05-02 15:44:37 +00:00
parent 847d7ea082
commit 08b5a714a1
2 changed files with 6 additions and 5 deletions
--- a/2
+++ b/2
@@ -155,7 +155,7 @@ gem 'lograge', '~> 0.12.0', require: false
 # worked with microsoft refresh token
 gem 'omniauth-oauth2'

-gem 'audited', '~> 5.2'
+gem 'audited', '~> 5.3', '>= 5.3.3'

 # need for google auth
 gem 'omniauth'
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -90,8 +90,9 @@ GEM
      rake (>= 10.4, < 14.0)
    ast (2.4.2)
    attr_extras (6.2.5)
-    audited (5.2.0)
+    audited (5.3.3)
      activerecord (>= 5.0, < 7.1)
+      request_store (~> 1.2)
    aws-eventstream (1.2.0)
    aws-partitions (1.605.0)
    aws-sdk-core (3.131.2)
@@ -355,7 +356,7 @@ GEM
      mini_mime (>= 1.0.0)
      multi_xml (>= 0.5.2)
    httpclient (2.8.3)
-    i18n (1.12.0)
+    i18n (1.13.0)
      concurrent-ruby (~> 1.0)
    image_processing (1.12.2)
      mini_magick (>= 4.9.5, < 5)
@@ -764,7 +765,7 @@ GEM
    working_hours (1.4.1)
      activesupport (>= 3.2)
      tzinfo
-    zeitwerk (2.6.7)
+    zeitwerk (2.6.8)

 PLATFORMS
  arm64-darwin-20
@@ -781,7 +782,7 @@ DEPENDENCIES
  administrate
  annotate
  attr_extras
-  audited (~> 5.2)
+  audited (~> 5.3, >= 5.3.3)
  aws-sdk-s3
  azure-storage-blob
  barnes