From 06b02140b62b93b34f4b089c2e81209920f19f03 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 6 Oct 2023 04:18:49 +0000
Subject: [PATCH] fix: Gemfile to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-3237242
- https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-3360028
- https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-569598
- https://snyk.io/vuln/SNYK-RUBY-ERUBIS-20482
- https://snyk.io/vuln/SNYK-RUBY-GLOBALID-3237234
- https://snyk.io/vuln/SNYK-RUBY-LOOFAH-3168317
- https://snyk.io/vuln/SNYK-RUBY-LOOFAH-3168318
- https://snyk.io/vuln/SNYK-RUBY-LOOFAH-3168649
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1055008
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1293239
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1726792
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2413994
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2620374
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2630623
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2630898
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2840634
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-3052880
- https://snyk.io/vuln/SNYK-RUBY-RACK-1061917
- https://snyk.io/vuln/SNYK-RUBY-RACK-2848599
- https://snyk.io/vuln/SNYK-RUBY-RACK-2848600
- https://snyk.io/vuln/SNYK-RUBY-RACK-3237240
- https://snyk.io/vuln/SNYK-RUBY-RACK-3356639
- https://snyk.io/vuln/SNYK-RUBY-RACK-569066
- https://snyk.io/vuln/SNYK-RUBY-RACK-572377
- https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-2935879
- https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168316
- https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168646
- https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168647
- https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168648
- https://snyk.io/vuln/SNYK-RUBY-TZINFO-2958048
---
 Gemfile | 30 +++++++++++++++---------------
 1 file changed, 15 insertions(+), 15 deletions(-)

diff --git a/Gemfile b/Gemfile
index 515b2330..21bccc08 100644
--- a/Gemfile
+++ b/Gemfile
@@ -10,30 +10,30 @@ def darwin_only(require_as)
   RbConfig::CONFIG['host_os'] =~ /darwin/ ? require_as : false
 end
 
-gem 'acts-as-taggable-on', '~> 5.0', '>= 5.0.0'
+gem 'acts-as-taggable-on', '~> 6.0', '>= 6.0.0'
 gem 'acts_as_commentable', '4.0.2'
 gem 'airbrake', '~> 7.0'
 gem "aws-ses", git: "https://github.com/zebitex/aws-ses.git", ref: "65e1ff1c3c2031b243f773cb9e61df6e49db71dd"
 gem 'brhelper', '3.3.0'
 gem 'cancancan', '~> 2.0'
-gem 'coffee-rails', '~> 4.2', '>= 4.2.2'
-gem 'devise', '~> 4.7', '>= 4.7.1'
+gem 'coffee-rails', '~> 5.0', '>= 5.0.0'
+gem 'devise', '~> 4.7', '>= 4.7.2'
 gem 'devise-encryptable', '0.2.0'
-gem 'devise-i18n', '~> 1.9', '>= 1.9.1'
-gem 'doorkeeper', '~> 4.4', '>= 4.4.3' # TODO: Remove in favor of oauth in another app
+gem 'devise-i18n', '~> 1.9', '>= 1.9.2'
+gem 'doorkeeper', '~> 5.0', '>= 5.0.0' # TODO: Remove in favor of oauth in another app
 gem 'fancybox-rails', '~> 0.3', '>= 0.3.1'
-gem 'formtastic', '3.1.5'
+gem 'formtastic', '4.0.0'
 gem 'goalie', git: 'https://github.com/hugocorbucci/goalie.git'
 gem 'haml', '~> 5.0'
-gem 'jquery-rails', '~> 4.4', '>= 4.4.0'
+gem 'jquery-rails', '~> 4.5', '>= 4.5.0'
 gem 'jquery-ui-rails', '~> 6.0', '>= 6.0.1'
-gem 'localized_country_select', '0.9.11'
+gem 'localized_country_select', '0.10.0'
 gem 'modernizr-rails'
 gem 'mysql2', '< 0.5' # remove restriction once rails supports mysql 0.5+
 gem 'newrelic_rpm'
 gem "kt-paperclip", "~> 6.4", ">= 6.4.1"
-gem 'rails', '~> 4.2', '>= 4.2.11.3' # TODO: Upgrade
-gem 'sass-rails', '~> 5.0', '>= 5.0.7'
+gem 'rails', '~> 7.1', '>= 7.1.0' # TODO: Upgrade
+gem 'sass-rails', '~> 5.0', '>= 5.0.8'
 gem 'seed-fu', '~> 2.3', '>= 2.3.9'
 gem 'state_machine', '1.2.0'
 gem 'therubyracer', '0.12.3'
@@ -54,12 +54,12 @@ group :development do
   gem 'capistrano-git-with-submodules', require: false
   gem 'capistrano-rails', require: false
   gem 'capistrano-rvm', require: false
-  gem 'dotenv-rails', '>= 2.7.5', require: false
+  gem 'dotenv-rails', '>= 2.7.6', require: false
   gem 'foreman'
-  gem 'lol_dba', '>= 2.2.0'
+  gem 'lol_dba', '>= 2.4.0'
   gem 'rack-livereload', '>= 0.3.17'
   gem 'travis-lint', '>= 2.0.0'
-  gem 'web-console', '>= 3.3.0'
+  gem 'web-console', '>= 3.3.1'
 end
 
 group :test do
@@ -71,7 +71,7 @@ end
 
 group :development, :test do
   gem 'brakeman'
-  gem 'factory_bot_rails', '~> 4.11', '>= 4.11.1' # 5 doesn't support rails 4.2
+  gem 'factory_bot_rails', '~> 5.0', '>= 5.0.0' # 5 doesn't support rails 4.2
   gem 'faker'
   gem 'guard-livereload'
   gem 'guard-rspec'
@@ -81,7 +81,7 @@ group :development, :test do
   gem 'rb-readline'
   gem 'rb-fsevent', require: darwin_only('rb-fsevent')
   gem 'rb-inotify', require: linux_only('rb-inotify')
-  gem 'rspec-rails', '>= 3.9.1', '< 4.0'
+  gem 'rspec-rails', '~> 4.0'
   gem 'rspec-its'
   gem 'rspec-collection_matchers'
   gem 'selenium-webdriver'