From 22788fa235d5b42e13864cb0a634da5463198163 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 18 May 2021 23:07:15 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1293239
---
 Gemfile      |  6 ++--
 Gemfile.lock | 79 ++++++++++++++++++++++++++++------------------------
 2 files changed, 46 insertions(+), 39 deletions(-)

diff --git a/Gemfile b/Gemfile
index b126b2f..795da47 100644
--- a/Gemfile
+++ b/Gemfile
@@ -1,8 +1,8 @@
 source 'https://rubygems.org'
 
-gem 'html-proofer', '>= 3.11.1'
+gem 'html-proofer', '>= 3.14.1'
 gem 'jekyll', '>= 3.6.3'
-gem 'jekyll-assets', '>= 2.4.0'
+gem 'jekyll-assets', '>= 3.0.12'
 gem 'jekyll-avatar', '>= 0.4.0'
 gem 'jekyll-coffeescript'
 gem 'jekyll-feed'
@@ -14,4 +14,4 @@ gem 'jekyll-scholar-extras', :github => 'jgoodall/jekyll-scholar-extras'
 gem 'jekyll-seo-tag', '>= 2.0.0'
 gem 'jekyll-sitemap'
 gem 'jemoji', '>= 0.11.1'
-gem 'nokogiri', '>= 1.10.5'
+gem 'nokogiri', '>= 1.11.4'
diff --git a/Gemfile.lock b/Gemfile.lock
index 8330a04..25eac17 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -11,7 +11,7 @@ GIT
 GEM
   remote: https://rubygems.org/
   specs:
-    activesupport (5.2.3)
+    activesupport (5.2.6)
       concurrent-ruby (~> 1.0, >= 1.0.2)
       i18n (>= 0.7, < 2)
       minitest (~> 5.1)
@@ -30,34 +30,34 @@ GEM
       execjs
     coffee-script-source (1.10.0)
     colorator (1.1.0)
-    concurrent-ruby (1.1.5)
+    concurrent-ruby (1.1.8)
     csl (1.5.0)
       namae (~> 1.0)
     csl-styles (1.0.1.9)
       csl (~> 1.0)
-    em-websocket (0.5.1)
+    em-websocket (0.5.2)
       eventmachine (>= 0.12.9)
       http_parser.rb (~> 0.6.0)
-    ethon (0.12.0)
-      ffi (>= 1.3.0)
+    ethon (0.14.0)
+      ffi (>= 1.15.0)
     eventmachine (1.2.7)
-    execjs (2.7.0)
+    execjs (2.8.1)
     extras (0.3.0)
       forwardable-extended (~> 2.5)
-    fastimage (2.1.7)
-    ffi (1.11.3)
+    fastimage (2.2.3)
+    ffi (1.15.0)
     forwardable-extended (2.6.0)
     gemoji (3.0.1)
     haml (5.1.1)
       temple (>= 0.8.0)
       tilt
-    html-pipeline (2.12.2)
+    html-pipeline (2.14.0)
       activesupport (>= 2)
       nokogiri (>= 1.4)
-    html-proofer (3.14.1)
+    html-proofer (3.19.1)
       addressable (~> 2.3)
       mercenary (~> 0.3)
-      nokogiri (~> 1.10)
+      nokogumbo (~> 2.0)
       parallel (~> 1.3)
       rainbow (~> 3.0)
       typhoeus (~> 1.3)
@@ -65,14 +65,14 @@ GEM
     http_parser.rb (0.6.0)
     i18n (0.9.5)
       concurrent-ruby (~> 1.0)
-    jekyll (3.8.6)
+    jekyll (3.9.1)
       addressable (~> 2.4)
       colorator (~> 1.0)
       em-websocket (~> 0.5)
       i18n (~> 0.7)
       jekyll-sass-converter (~> 1.0)
       jekyll-watch (~> 2.0)
-      kramdown (~> 1.14)
+      kramdown (>= 1.17, < 3)
       liquid (~> 4.0)
       mercenary (~> 0.3.3)
       pathutil (~> 0.9)
@@ -98,11 +98,12 @@ GEM
       haml (>= 3.0.0)
       jekyll (>= 3.3.0)
     jekyll-language-plugin (1.3.2)
-    jekyll-mentions (1.5.1)
+    jekyll-mentions (1.6.0)
       html-pipeline (~> 2.3)
       jekyll (>= 3.7, < 5.0)
-    jekyll-sanity (1.2.0)
-      jekyll (~> 3.1)
+    jekyll-sanity (1.6.0)
+      jekyll (>= 3.1, < 5.0)
+      pathutil (~> 0.16)
     jekyll-sass-converter (1.5.2)
       sass (~> 3.4)
     jekyll-scholar (5.14.2)
@@ -115,60 +116,66 @@ GEM
     jekyll-sitemap (0.10.0)
     jekyll-watch (2.2.1)
       listen (~> 3.0)
-    jemoji (0.11.1)
+    jemoji (0.12.0)
       gemoji (~> 3.0)
       html-pipeline (~> 2.2)
       jekyll (>= 3.0, < 5.0)
-    kramdown (1.17.0)
+    kramdown (2.3.1)
+      rexml
     latex-decode (0.3.1)
     liquid (4.0.3)
     liquid-tag-parser (1.9.0)
       extras (~> 0.3)
       liquid (>= 3.0, < 5.0)
-    listen (3.2.1)
+    listen (3.5.1)
       rb-fsevent (~> 0.10, >= 0.10.3)
       rb-inotify (~> 0.9, >= 0.9.10)
     mercenary (0.3.6)
-    mini_portile2 (2.4.0)
-    minitest (5.13.0)
+    mini_portile2 (2.5.1)
+    minitest (5.14.4)
     namae (1.0.1)
-    nokogiri (1.10.5)
-      mini_portile2 (~> 2.4.0)
-    parallel (1.19.0)
+    nokogiri (1.11.4)
+      mini_portile2 (~> 2.5.0)
+      racc (~> 1.4)
+    nokogumbo (2.0.5)
+      nokogiri (~> 1.8, >= 1.8.4)
+    parallel (1.20.1)
     pathutil (0.16.2)
       forwardable-extended (~> 2.6)
-    public_suffix (4.0.1)
-    rack (2.0.8)
+    public_suffix (4.0.6)
+    racc (1.5.2)
+    rack (2.2.3)
     rainbow (3.0.0)
-    rb-fsevent (0.10.3)
-    rb-inotify (0.10.0)
+    rb-fsevent (0.11.0)
+    rb-inotify (0.10.1)
       ffi (~> 1.0)
-    rouge (3.14.0)
+    rexml (3.2.5)
+    rouge (3.26.0)
     safe_yaml (1.0.5)
     sass (3.7.4)
       sass-listen (~> 4.0.0)
     sass-listen (4.0.0)
       rb-fsevent (~> 0.9, >= 0.9.4)
       rb-inotify (~> 0.9, >= 0.9.7)
-    sprockets (3.7.2)
+    sprockets (4.0.2)
       concurrent-ruby (~> 1.0)
       rack (> 1, < 3)
     temple (0.8.1)
     thread_safe (0.3.6)
     tilt (2.0.9)
-    typhoeus (1.3.1)
+    typhoeus (1.4.0)
       ethon (>= 0.9.0)
-    tzinfo (1.2.5)
+    tzinfo (1.2.9)
       thread_safe (~> 0.1)
-    yell (2.2.0)
+    yell (2.2.2)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
-  html-proofer (>= 3.11.1)
+  html-proofer (>= 3.14.1)
   jekyll (>= 3.6.3)
-  jekyll-assets (>= 2.4.0)
+  jekyll-assets (>= 3.0.12)
   jekyll-avatar (>= 0.4.0)
   jekyll-coffeescript
   jekyll-feed
@@ -180,7 +187,7 @@ DEPENDENCIES
   jekyll-seo-tag (>= 2.0.0)
   jekyll-sitemap
   jemoji (>= 0.11.1)
-  nokogiri (>= 1.10.5)
+  nokogiri (>= 1.11.4)
 
 BUNDLED WITH
    1.17.3