From da1d64b5016348c4724c011d3400826374249599 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 28 Jun 2018 21:36:51 +0000 Subject: [PATCH] fix: Gemfile.lock & Gemfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-FFI-22037 --- Gemfile | 6 +-- Gemfile.lock | 105 +++++++++++++++++++++++++++++++-------------------- 2 files changed, 68 insertions(+), 43 deletions(-) diff --git a/Gemfile b/Gemfile index 02bdaeb..e7614ef 100644 --- a/Gemfile +++ b/Gemfile @@ -7,8 +7,8 @@ gem 'repomen', ">= 0.1.4" gem 'inch', ">= 0.4.6" gem 'inch-badge', ">= 0.2.1" -gem 'jekyll' -gem 'jekyll-haml' -gem 'jekyll-markdown-block' +gem 'jekyll', '>= 1.5.1' +gem 'jekyll-haml', '>= 0.1.1' +gem 'jekyll-markdown-block', '>= 1.0.0' gem 'pry' diff --git a/Gemfile.lock b/Gemfile.lock index f388edb..3fbca4b 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -4,20 +4,23 @@ GEM addressable (2.3.6) blankslate (2.1.2.4) chunky_png (1.3.1) - classifier (1.3.4) - fast-stemmer (>= 1.0.0) + classifier-reborn (2.2.0) + fast-stemmer (~> 1.0) coderay (1.1.0) + coffee-script (2.4.1) + coffee-script-source + execjs + coffee-script-source (1.11.1) colorator (0.1) - commander (4.1.6) - highline (~> 1.6.11) + execjs (2.7.0) faraday (0.9.0) multipart-post (>= 1.2, < 3) fast-stemmer (1.0.2) - ffi (1.9.3) + ffi (1.9.25) gems (0.8.3) - haml (4.0.5) + haml (5.0.4) + temple (>= 0.8.0) tilt - highline (1.6.21) inch (0.4.6) pry sparkr (>= 0.2.0) @@ -25,62 +28,81 @@ GEM yard (~> 0.8.7) inch-badge (0.2.1) chunky_png - jekyll (1.5.1) - classifier (~> 1.3) + jekyll (2.5.3) + classifier-reborn (~> 2.0) colorator (~> 0.1) - commander (~> 4.1.3) - liquid (~> 2.5.5) - listen (~> 1.3) - maruku (= 0.7.0) - pygments.rb (~> 0.5.0) - redcarpet (~> 2.3.0) + jekyll-coffeescript (~> 1.0) + jekyll-gist (~> 1.0) + jekyll-paginate (~> 1.0) + jekyll-sass-converter (~> 1.0) + jekyll-watch (~> 1.1) + kramdown (~> 1.3) + liquid (~> 2.6.1) + mercenary (~> 0.3.3) + pygments.rb (~> 0.6.0) + redcarpet (~> 3.1) safe_yaml (~> 1.0) toml (~> 0.1.0) - jekyll-haml (0.1.1) + jekyll-coffeescript (1.1.1) + coffee-script (~> 2.2) + coffee-script-source (~> 1.11.1) + jekyll-gist (1.3.5) + jekyll-haml (0.1.4) haml (>= 3.0.0) jekyll (>= 0.10.0) - jekyll-markdown-block (1.0.0) - jekyll (~> 1.0) - liquid (2.5.5) - listen (1.3.1) - rb-fsevent (>= 0.9.3) - rb-inotify (>= 0.9) - rb-kqueue (>= 0.2) - maruku (0.7.0) + jekyll-markdown-block (1.1.0) + jekyll (~> 2.0) + jekyll-paginate (1.1.0) + jekyll-sass-converter (1.5.2) + sass (~> 3.4) + jekyll-watch (1.5.1) + listen (~> 3.0) + kramdown (1.17.0) + liquid (2.6.3) + listen (3.1.5) + rb-fsevent (~> 0.9, >= 0.9.4) + rb-inotify (~> 0.9, >= 0.9.7) + ruby_dep (~> 1.2) + mercenary (0.3.6) method_source (0.8.2) multipart-post (2.0.0) octokit (3.1.0) sawyer (~> 0.5.3) parslet (1.5.0) blankslate (~> 2.0) - posix-spawn (0.3.8) + posix-spawn (0.3.13) pry (0.9.12.6) coderay (~> 1.0) method_source (~> 0.8) slop (~> 3.4) - pygments.rb (0.5.4) + pygments.rb (0.6.3) posix-spawn (~> 0.3.6) - yajl-ruby (~> 1.1.0) - rb-fsevent (0.9.4) - rb-inotify (0.9.4) - ffi (>= 0.5.0) - rb-kqueue (0.2.2) - ffi (>= 0.5.0) - redcarpet (2.3.0) + yajl-ruby (~> 1.2.0) + rb-fsevent (0.10.3) + rb-inotify (0.9.10) + ffi (>= 0.5.0, < 2) + redcarpet (3.4.0) repomen (0.1.4) - safe_yaml (1.0.3) + ruby_dep (1.5.0) + safe_yaml (1.0.4) + sass (3.5.6) + sass-listen (~> 4.0.0) + sass-listen (4.0.0) + rb-fsevent (~> 0.9, >= 0.9.4) + rb-inotify (~> 0.9, >= 0.9.7) sawyer (0.5.4) addressable (~> 2.3.5) faraday (~> 0.8, < 0.10) slop (3.5.0) sparkr (0.4.1) + temple (0.8.0) term-ansicolor (1.3.0) tins (~> 1.0) - tilt (2.0.1) + tilt (2.0.8) tins (1.3.0) - toml (0.1.1) + toml (0.1.2) parslet (~> 1.5.0) - yajl-ruby (1.1.0) + yajl-ruby (1.2.3) yard (0.8.7.4) PLATFORMS @@ -90,9 +112,12 @@ DEPENDENCIES gems inch (>= 0.4.6) inch-badge (>= 0.2.1) - jekyll - jekyll-haml - jekyll-markdown-block + jekyll (>= 1.5.1) + jekyll-haml (>= 0.1.1) + jekyll-markdown-block (>= 1.0.0) octokit pry repomen (>= 0.1.4) + +BUNDLED WITH + 1.16.1