From 4e4f06528dd687a4664d0d2b49e42d4c711fe892 Mon Sep 17 00:00:00 2001
From: snyk-bot <admin+snyk-bot@snyk.io>
Date: Wed, 13 Sep 2017 09:30:14 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20157
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20214
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20245
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20253
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20268
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20277
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20292
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20367
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20368
- https://snyk.io/vuln/SNYK-RUBY-RACK-20230
- https://snyk.io/vuln/SNYK-RUBY-RACK-20399
- https://snyk.io/vuln/SNYK-RUBY-RACK-20400

Latest report for telegraph/cti:
https://snyk.io/test/github/telegraph/cti
---
 Gemfile      |  2 +-
 Gemfile.lock | 70 +++++++++++++++++++++++++++++-----------------------
 2 files changed, 40 insertions(+), 32 deletions(-)

diff --git a/Gemfile b/Gemfile
index ee62b03..c76423c 100644
--- a/Gemfile
+++ b/Gemfile
@@ -3,5 +3,5 @@ source "http://rubygems.org"
 group :development do
   gem "rdoc", "~> 3.12"
   gem "bundler", "~> 1.0"
-  gem "jeweler", '~> 2.0', '>= 2.0.1'
+  gem "jeweler", "~> 2.0", ">= 2.0.1"
 end
diff --git a/Gemfile.lock b/Gemfile.lock
index 08a4436..ab707da 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -1,50 +1,55 @@
 GEM
   remote: http://rubygems.org/
   specs:
-    addressable (2.3.5)
-    builder (3.2.2)
-    descendants_tracker (0.0.3)
-    faraday (0.9.0)
+    addressable (2.4.0)
+    builder (3.2.3)
+    descendants_tracker (0.0.4)
+      thread_safe (~> 0.3, >= 0.3.1)
+    faraday (0.9.2)
       multipart-post (>= 1.2, < 3)
-    git (1.2.6)
-    github_api (0.11.3)
-      addressable (~> 2.3)
-      descendants_tracker (~> 0.0.1)
+    git (1.3.0)
+    github_api (0.16.0)
+      addressable (~> 2.4.0)
+      descendants_tracker (~> 0.0.4)
       faraday (~> 0.8, < 0.10)
-      hashie (>= 1.2)
-      multi_json (>= 1.7.5, < 2.0)
-      nokogiri (~> 1.6.0)
-      oauth2
-    hashie (2.0.5)
-    highline (1.6.21)
-    jeweler (2.0.1)
+      hashie (>= 3.4)
+      mime-types (>= 1.16, < 3.0)
+      oauth2 (~> 1.0)
+    hashie (3.5.6)
+    highline (1.7.8)
+    jeweler (2.3.7)
       builder
-      bundler (>= 1.0)
+      bundler (>= 1)
       git (>= 1.2.5)
-      github_api
+      github_api (~> 0.16.0)
       highline (>= 1.6.15)
       nokogiri (>= 1.5.10)
+      psych (~> 2.2)
       rake
       rdoc
-    json (1.8.1)
-    jwt (0.1.11)
-      multi_json (>= 1.5)
-    mini_portile (0.5.2)
-    multi_json (1.8.4)
-    multi_xml (0.5.5)
+      semver2
+    json (1.8.6)
+    jwt (1.5.6)
+    mime-types (2.99.3)
+    mini_portile2 (2.2.0)
+    multi_json (1.12.2)
+    multi_xml (0.6.0)
     multipart-post (2.0.0)
-    nokogiri (1.6.1)
-      mini_portile (~> 0.5.0)
-    oauth2 (0.9.3)
-      faraday (>= 0.8, < 0.10)
-      jwt (~> 0.1.8)
+    nokogiri (1.8.0)
+      mini_portile2 (~> 2.2.0)
+    oauth2 (1.4.0)
+      faraday (>= 0.8, < 0.13)
+      jwt (~> 1.0)
       multi_json (~> 1.3)
       multi_xml (~> 0.5)
-      rack (~> 1.2)
-    rack (1.5.2)
-    rake (10.1.1)
+      rack (>= 1.2, < 3)
+    psych (2.2.4)
+    rack (2.0.3)
+    rake (12.1.0)
     rdoc (3.12.2)
       json (~> 1.4)
+    semver2 (3.4.2)
+    thread_safe (0.3.6)
 
 PLATFORMS
   ruby
@@ -53,3 +58,6 @@ DEPENDENCIES
   bundler (~> 1.0)
   jeweler (~> 2.0, >= 2.0.1)
   rdoc (~> 3.12)
+
+BUNDLED WITH
+   1.13.6