From e22d9efa38fef2d14f65445097b2a4a02bafd73e Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 16 Mar 2023 06:30:06 +0000
Subject: [PATCH] fix: Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-RACK-3360233
---
 Gemfile.lock | 79 +++++++++++++++++++++++++++++++++++-----------------
 1 file changed, 54 insertions(+), 25 deletions(-)

diff --git a/Gemfile.lock b/Gemfile.lock
index e07e485..8fc9e71 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -1,10 +1,10 @@
 GEM
   remote: https://rubygems.org/
   specs:
-    addressable (2.5.2)
-      public_suffix (>= 2.0.2, < 4.0)
+    addressable (2.8.1)
+      public_suffix (>= 2.0.2, < 6.0)
     backports (3.11.1)
-    builder (3.2.3)
+    builder (3.2.4)
     codeclimate-test-reporter (1.0.7)
       simplecov
     cucumber (3.1.0)
@@ -27,18 +27,41 @@ GEM
       thread_safe (~> 0.3, >= 0.3.1)
     diff-lcs (1.3)
     docile (1.1.5)
-    faraday (0.12.2)
-      multipart-post (>= 1.2, < 3)
+    faraday (1.10.3)
+      faraday-em_http (~> 1.0)
+      faraday-em_synchrony (~> 1.0)
+      faraday-excon (~> 1.1)
+      faraday-httpclient (~> 1.0)
+      faraday-multipart (~> 1.0)
+      faraday-net_http (~> 1.0)
+      faraday-net_http_persistent (~> 1.0)
+      faraday-patron (~> 1.0)
+      faraday-rack (~> 1.0)
+      faraday-retry (~> 1.0)
+      ruby2_keywords (>= 0.0.4)
+    faraday-em_http (1.0.0)
+    faraday-em_synchrony (1.0.0)
+    faraday-excon (1.1.0)
+    faraday-httpclient (1.0.1)
+    faraday-multipart (1.0.4)
+      multipart-post (~> 2)
+    faraday-net_http (1.0.1)
+    faraday-net_http_persistent (1.2.0)
+    faraday-patron (1.0.0)
+    faraday-rack (1.0.0)
+    faraday-retry (1.0.3)
     gherkin (5.0.0)
-    git (1.3.0)
-    github_api (0.18.2)
+    git (1.17.2)
+      addressable (~> 2.8)
+      rchardet (~> 1.8)
+    github_api (0.19.0)
       addressable (~> 2.4)
       descendants_tracker (~> 0.0.4)
-      faraday (~> 0.8)
+      faraday (>= 0.8, < 2)
       hashie (~> 3.5, >= 3.5.2)
       oauth2 (~> 1.0)
-    hashie (3.5.7)
-    highline (1.7.10)
+    hashie (3.6.0)
+    highline (2.1.0)
     json (2.1.0)
     juwelier (2.4.9)
       builder
@@ -52,26 +75,30 @@ GEM
       rake
       rdoc
       semver2
-    jwt (1.5.6)
+    jwt (2.7.0)
     kamelcase (0.0.2)
       semver2 (~> 3)
-    mini_portile2 (2.3.0)
-    multi_json (1.13.1)
+    mini_portile2 (2.8.1)
+    multi_json (1.15.0)
     multi_test (0.1.2)
     multi_xml (0.6.0)
-    multipart-post (2.0.0)
-    nokogiri (1.8.2)
-      mini_portile2 (~> 2.3.0)
-    oauth2 (1.4.0)
-      faraday (>= 0.8, < 0.13)
-      jwt (~> 1.0)
+    multipart-post (2.3.0)
+    nokogiri (1.14.2)
+      mini_portile2 (~> 2.8.0)
+      racc (~> 1.4)
+    oauth2 (1.4.11)
+      faraday (>= 0.17.3, < 3.0)
+      jwt (>= 1.0, < 3.0)
       multi_json (~> 1.3)
       multi_xml (~> 0.5)
-      rack (>= 1.2, < 3)
-    psych (3.0.2)
-    public_suffix (3.0.2)
-    rack (2.0.5)
-    rake (12.3.1)
+      rack (>= 1.2, < 4)
+    psych (5.1.0)
+      stringio
+    public_suffix (5.0.1)
+    racc (1.6.2)
+    rack (3.0.7)
+    rake (13.0.6)
+    rchardet (1.8.0)
     rdoc (6.0.4)
     rspec (3.7.0)
       rspec-core (~> 3.7.0)
@@ -89,12 +116,14 @@ GEM
       diff-lcs (>= 1.2.0, < 2.0)
       rspec-support (~> 3.7.0)
     rspec-support (3.7.1)
+    ruby2_keywords (0.0.5)
     semver2 (3.4.2)
     simplecov (0.15.1)
       docile (~> 1.1.0)
       json (>= 1.8, < 3)
       simplecov-html (~> 0.10.0)
     simplecov-html (0.10.2)
+    stringio (3.0.5)
     thread_safe (0.3.6)
 
 PLATFORMS
@@ -111,4 +140,4 @@ DEPENDENCIES
   simplecov (~> 0.15.1)
 
 BUNDLED WITH
-   1.16.1
+   1.17.3