From 8fa2e422460163df966d94f242d174e6f97c8683 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 15 Jul 2025 23:39:37 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-GIT-2421270
- https://snyk.io/vuln/SNYK-RUBY-GIT-3227617
---
 Gemfile      |  2 +-
 Gemfile.lock | 73 +++++++++++++++++++++++++++++++++++++++++++++-------
 2 files changed, 65 insertions(+), 10 deletions(-)

diff --git a/Gemfile b/Gemfile
index 7fea739..3d93a57 100644
--- a/Gemfile
+++ b/Gemfile
@@ -1,7 +1,7 @@
 source :gemcutter
 
 gem 'rake'
-gem 'jeweler'
+gem 'jeweler', '>= 1.5.0'
 gem 'activesupport', '>=2.3.9'
 gem 'i18n', '>=0.4.1'
 gem 'test-unit'
diff --git a/Gemfile.lock b/Gemfile.lock
index 40fe4c2..fcb356f 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -2,18 +2,70 @@ GEM
   remote: http://rubygems.org/
   specs:
     activesupport (3.0.0)
-    gemcutter (0.6.1)
-    git (1.2.5)
+    addressable (2.4.0)
+    base64 (0.3.0)
+    builder (3.3.0)
+    cgi (0.5.0)
+    date (3.4.1)
+    descendants_tracker (0.0.4)
+      thread_safe (~> 0.3, >= 0.3.1)
+    erb (4.0.4)
+      cgi (>= 0.3.3)
+    faraday (0.9.2)
+      multipart-post (>= 1.2, < 3)
+    git (1.11.0)
+      rchardet (~> 1.8)
+    github_api (0.16.0)
+      addressable (~> 2.4.0)
+      descendants_tracker (~> 0.0.4)
+      faraday (~> 0.8, < 0.10)
+      hashie (>= 3.4)
+      mime-types (>= 1.16, < 3.0)
+      oauth2 (~> 1.0)
+    hashie (5.0.0)
+    highline (2.1.0)
     i18n (0.4.1)
-    jeweler (1.4.0)
-      gemcutter (>= 0.1.0)
+    jeweler (2.3.9)
+      builder
+      bundler
       git (>= 1.2.5)
-      rubyforge (>= 2.0.0)
-    json_pure (1.4.6)
+      github_api (~> 0.16.0)
+      highline (>= 1.6.15)
+      nokogiri (>= 1.5.10)
+      psych
+      rake
+      rdoc
+      semver2
+    jwt (2.10.2)
+      base64
+    mime-types (2.99.3)
+    mini_portile2 (2.8.9)
+    multi_json (1.15.0)
+    multi_xml (0.6.0)
+    multipart-post (2.4.1)
+    nokogiri (1.15.7)
+      mini_portile2 (~> 2.8.2)
+      racc (~> 1.4)
+    oauth2 (1.4.8)
+      faraday (>= 0.8, < 3.0)
+      jwt (>= 1.0, < 3.0)
+      multi_json (~> 1.3)
+      multi_xml (~> 0.5)
+      rack (>= 1.2, < 3)
+    psych (5.2.6)
+      date
+      stringio
+    racc (1.8.1)
+    rack (2.2.17)
     rake (0.9.2)
-    rubyforge (2.0.4)
-      json_pure (>= 1.1.7)
+    rchardet (1.8.0)
+    rdoc (6.14.2)
+      erb
+      psych (>= 4.0.0)
+    semver2 (3.4.2)
+    stringio (3.1.7)
     test-unit (2.1.1)
+    thread_safe (0.3.6)
 
 PLATFORMS
   ruby
@@ -21,6 +73,9 @@ PLATFORMS
 DEPENDENCIES
   activesupport (>= 2.3.9)
   i18n (>= 0.4.1)
-  jeweler
+  jeweler (>= 1.5.0)
   rake
   test-unit
+
+BUNDLED WITH
+   2.1.4