fix: Gemfile & Gemfile.lock to reduce vulnerabilities

snyk-bot · snyk-bot · commit b60c2d48393f · 2024-08-12T04:06:54.000Z
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-REXML-7577227
diff --git a/Gemfile b/Gemfile
@@ -37,7 +37,7 @@ group :development, :test do
   gem 'byebug', platforms: [:mri, :mingw, :x64_mingw]
   # Adds support for Capybara system testing and selenium driver
   gem 'capybara', '3.39.0'
-  gem 'selenium-webdriver', '4.8.6'
+  gem 'selenium-webdriver', '4.9.0'
 end
 
 group :development do
diff --git a/Gemfile.lock b/Gemfile.lock
@@ -218,7 +218,7 @@ GEM
     regexp_parser (2.9.2)
     reline (0.5.9)
       io-console (~> 0.5)
-    rexml (3.3.0)
+    rexml (3.3.5)
       strscan
     rubyzip (2.3.2)
     sass-rails (6.0.0)
@@ -231,7 +231,7 @@ GEM
       sprockets (> 3.0)
       sprockets-rails
       tilt
-    selenium-webdriver (4.8.6)
+    selenium-webdriver (4.9.0)
       rexml (~> 3.2, >= 3.2.5)
       rubyzip (>= 1.2.2, < 3.0)
       websocket (~> 1.0)
@@ -265,7 +265,7 @@ GEM
       bindex (>= 0.4.0)
       railties (>= 6.0.0)
     webrick (1.8.1)
-    websocket (1.2.10)
+    websocket (1.2.11)
     websocket-driver (0.7.6)
       websocket-extensions (>= 0.1.0)
     websocket-extensions (0.1.5)
@@ -291,7 +291,7 @@ DEPENDENCIES
   puma (= 6.4.2)
   rails (= 7.1.3.4)
   sass-rails (>= 5.0.5)
-  selenium-webdriver (= 4.8.6)
+  selenium-webdriver (= 4.9.0)
   spring (= 2.0.2)
   spring-watcher-listen (= 2.0.1)
   turbolinks (= 5.0.1)
@@ -303,4 +303,4 @@ RUBY VERSION
    ruby 3.1.4p223
 
 BUNDLED WITH
-   2.5.6
+   2.3.26
