From 2d07577731c2bc66f6b06a5a10d414a9b05e865e Mon Sep 17 00:00:00 2001
From: Sojan Jose <sojan@pepalo.com>
Date: Thu, 27 Jul 2023 09:06:56 +0300
Subject: [PATCH] fix: [Snyk] Security upgrade rack-attack from 6.6.1 to 6.7.0
 (#7625)

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
---
 Gemfile      | 2 +-
 Gemfile.lock | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/Gemfile b/Gemfile
index bc92fae31..c47985166 100644
--- a/Gemfile
+++ b/Gemfile
@@ -34,7 +34,7 @@ gem 'commonmarker'
 # Validate Data against JSON Schema
 gem 'json_schemer'
 # Rack middleware for blocking & throttling abusive requests
-gem 'rack-attack'
+gem 'rack-attack', '>= 6.7.0'
 # a utility tool for streaming, flexible and safe downloading of remote files
 gem 'down'
 # authentication type to fetch and send mail over oauth2.0
diff --git a/Gemfile.lock b/Gemfile.lock
index 462eff774..cbe05bfc0 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -550,8 +550,8 @@ GEM
     raabro (1.4.0)
     racc (1.7.1)
     rack (2.2.7)
-    rack-attack (6.6.1)
-      rack (>= 1.0, < 3)
+    rack-attack (6.7.0)
+      rack (>= 1.0, < 4)
     rack-cors (2.0.1)
       rack (>= 2.0.0)
     rack-mini-profiler (3.1.0)
@@ -903,7 +903,7 @@ DEPENDENCIES
   pry-rails
   puma
   pundit
-  rack-attack
+  rack-attack (>= 6.7.0)
   rack-cors
   rack-mini-profiler
   rack-timeout