From a642dbf53f518f3ba35bc557297ce9e3b08a347a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 9 Sep 2020 04:02:18 +0000 Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-CUCUMBER-20442 --- Gemfile | 2 +- Gemfile.lock | 73 ++++++++++++++++++++++++++++++++++++++++++---------- 2 files changed, 61 insertions(+), 14 deletions(-) diff --git a/Gemfile b/Gemfile index 213eec9..0613a06 100644 --- a/Gemfile +++ b/Gemfile @@ -2,4 +2,4 @@ source 'https://rubygems.org' gem 'octokit' gem 'rspec' -gem 'cucumber' +gem 'cucumber', '>= 4.0.0' diff --git a/Gemfile.lock b/Gemfile.lock index 29b22a0..673ff48 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -1,24 +1,62 @@ GEM remote: https://rubygems.org/ specs: + activesupport (5.2.4.3) + concurrent-ruby (~> 1.0, >= 1.0.2) + i18n (>= 0.7, < 2) + minitest (~> 5.1) + tzinfo (~> 1.1) addressable (2.3.5) - builder (3.2.2) - cucumber (1.3.10) - builder (>= 2.1.2) - diff-lcs (>= 1.1.3) - gherkin (~> 2.12) - multi_json (>= 1.7.5, < 2.0) - multi_test (>= 0.0.2) - diff-lcs (1.2.5) + builder (3.2.4) + concurrent-ruby (1.1.7) + cucumber (4.1.0) + builder (~> 3.2, >= 3.2.3) + cucumber-core (~> 7.1, >= 7.1.0) + cucumber-create-meta (~> 1.0.0, >= 1.0.0) + cucumber-cucumber-expressions (~> 10.1, >= 10.1.0) + cucumber-gherkin (~> 14.0, >= 14.0.1) + cucumber-html-formatter (~> 7.0, >= 7.0.0) + cucumber-messages (~> 12.2, >= 12.2.0) + cucumber-wire (~> 3.1, >= 3.1.0) + diff-lcs (~> 1.3, >= 1.3, < 1.4) + multi_test (~> 0.1, >= 0.1.2) + sys-uname (~> 1.0, >= 1.0.2) + cucumber-core (7.1.0) + cucumber-gherkin (~> 14.0, >= 14.0.1) + cucumber-messages (~> 12.2, >= 12.2.0) + cucumber-tag-expressions (~> 2.0, >= 2.0.4) + cucumber-create-meta (1.0.0) + cucumber-messages (~> 12.2, >= 12.2.0) + sys-uname (~> 1.2, >= 1.2.1) + cucumber-cucumber-expressions (10.3.0) + cucumber-gherkin (14.2.0) + cucumber-messages (~> 12.4, >= 12.4.0) + cucumber-html-formatter (7.2.0) + cucumber-messages (~> 12.4, >= 12.4.0) + cucumber-messages (12.4.0) + protobuf-cucumber (~> 3.10, >= 3.10.8) + cucumber-tag-expressions (2.0.4) + cucumber-wire (3.1.0) + cucumber-core (~> 7.1, >= 7.1.0) + cucumber-cucumber-expressions (~> 10.1, >= 10.1.0) + cucumber-messages (~> 12.2, >= 12.2.0) + diff-lcs (1.3) faraday (0.9.0) multipart-post (>= 1.2, < 3) - gherkin (2.12.2) - multi_json (~> 1.3) - multi_json (1.9.0) - multi_test (0.0.3) + ffi (1.13.1) + i18n (1.8.5) + concurrent-ruby (~> 1.0) + middleware (0.1.0) + minitest (5.14.2) + multi_test (0.1.2) multipart-post (2.0.0) octokit (2.7.1) sawyer (~> 0.5.2) + protobuf-cucumber (3.10.8) + activesupport (>= 3.2) + middleware + thor + thread_safe rspec (2.14.1) rspec-core (~> 2.14.0) rspec-expectations (~> 2.14.0) @@ -30,11 +68,20 @@ GEM sawyer (0.5.3) addressable (~> 2.3.5) faraday (~> 0.8, < 0.10) + sys-uname (1.2.1) + ffi (>= 1.0.0) + thor (1.0.1) + thread_safe (0.3.6) + tzinfo (1.2.7) + thread_safe (~> 0.1) PLATFORMS ruby DEPENDENCIES - cucumber + cucumber (>= 4.0.0) octokit rspec + +BUNDLED WITH + 1.17.3