From 637e65488abbaa8349f4280ff70383d38e2add5b Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 17 Jun 2020 06:12:39 +0000 Subject: [PATCH] fix: Gemfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-RACK-572377 --- Gemfile | 20 ++++++++++---------- 1 file changed, 10 insertions(+), 10 deletions(-) diff --git a/Gemfile b/Gemfile index db203ccd2..10c7204d5 100644 --- a/Gemfile +++ b/Gemfile @@ -2,20 +2,20 @@ # the following line to use "https" source 'http://rubygems.org' -gem "middleman", "~> 3.3.3" +gem "middleman", "~> 4.1.11" # In order to get SASS 3.3, compass 1.0 is needed # FIXME: Remove this once 1.0 is final (very, very soon now -- next week?) gem 'compass', '~> 1.0.0.alpha.19' # Live-reloading plugin -gem "middleman-livereload" +gem "middleman-livereload", ">= 3.4.1" # Debugger / REPL alternative to irb gem 'pry' gem 'pry-debugger' gem 'pry-stack_explorer' -gem 'middleman-pry' +gem 'middleman-pry', '>= 0.0.3' # Cross-templating language block fix for Ruby 1.8 platforms :mri_18 do @@ -30,26 +30,26 @@ gem "wdm", "~> 0.1.0", :platforms => [:mswin, :mingw] # General plugins # Blog plugin -gem "middleman-blog" +gem "middleman-blog", ">= 4.0.0" #gem "middleman-blog-drafts" #gem "middleman-blog-authors" -gem 'middleman-deploy' +gem 'middleman-deploy', '>= 0.2.4' # Piwik tracker -gem 'middleman-piwik' +gem 'middleman-piwik', '>= 0.1.1' # Thumbnailer #gem "middleman-thumbnailer", github: "nhemsley/middleman-thumbnailer" # favicon support (favicon PNG should be 144×144) -gem "middleman-favicon-maker" +gem "middleman-favicon-maker", ">= 3.7" # HTML & XML parsing smarts gem "nokogiri" # Syntax highlighting -gem "middleman-syntax" +gem "middleman-syntax", ">= 2.1.0" # For feed.xml.builder gem "builder", "~> 3.0" @@ -70,7 +70,7 @@ gem "bootstrap-sass" # There's a bug in with bootstrap-sass + sprockets-sass in 3.3.3 # FIXME: When a fix is released (3.3.4?), remove this block # See: https://github.com/middleman/middleman/issues/1265 -gem 'middleman-sprockets', '3.3.2' +gem 'middleman-sprockets', '4.0.0' ##### @@ -94,4 +94,4 @@ gem "kramdown" gem 'open-uri-cached' -gem 'font-awesome-middleman' +gem 'font-awesome-middleman', '>= 4.1.1'