fix: [Snyk] Security upgrade rack-attack from 6.6.1 to 6.7.0 (#7625)

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
2025-10-30 18:47:51 +00:00 · 2023-07-27 09:06:56 +03:00
parent 4c98006837
commit 2d07577731
2 changed files with 4 additions and 4 deletions
--- a/2
+++ b/2
@@ -34,7 +34,7 @@ gem 'commonmarker'
 # Validate Data against JSON Schema
 gem 'json_schemer'
 # Rack middleware for blocking & throttling abusive requests
-gem 'rack-attack'
+gem 'rack-attack', '>= 6.7.0'
 # a utility tool for streaming, flexible and safe downloading of remote files
 gem 'down'
 # authentication type to fetch and send mail over oauth2.0
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -550,8 +550,8 @@ GEM
    raabro (1.4.0)
    racc (1.7.1)
    rack (2.2.7)
-    rack-attack (6.6.1)
-      rack (>= 1.0, < 3)
+    rack-attack (6.7.0)
+      rack (>= 1.0, < 4)
    rack-cors (2.0.1)
      rack (>= 2.0.0)
    rack-mini-profiler (3.1.0)
@@ -903,7 +903,7 @@ DEPENDENCIES
  pry-rails
  puma
  pundit
-  rack-attack
+  rack-attack (>= 6.7.0)
  rack-cors
  rack-mini-profiler
  rack-timeout