Skip to content

Commit 9e0e44d

Browse files
timfrazeetimfrazee
committed
[C] Apply dependency security patches
- Patches Ruby gems nokogiri and job-iteration - Patches NPM packages form-data and sha.js
1 parent 240ae2b commit 9e0e44d

File tree

3 files changed

+21
-11
lines changed

3 files changed

+21
-11
lines changed

api/Gemfile

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -64,7 +64,7 @@ gem "hashie", "~> 3.0"
6464
gem "has_scope", "~> 0.8.1"
6565
gem "httparty", "~> 0.21.0"
6666
gem "image_processing", "~> 1.12"
67-
gem "job-iteration", "~> 1.10.0"
67+
gem "job-iteration", "~> 1.11.0"
6868
gem "jsonb_accessor", "~> 1.0"
6969
gem "jwt", "~> 1.5"
7070
gem "kaminari", "~> 1.2"
@@ -80,7 +80,7 @@ gem "namae", "~>1.0"
8080
gem "naught", "~> 1.0"
8181
gem "net-sftp", "~> 2.1.2"
8282
gem "net-ssh", "~> 5.2.0"
83-
gem "nokogiri", "~> 1.15.4"
83+
gem "nokogiri", "~> 1.19.1"
8484
gem "oauth2", "~> 1.3"
8585
gem "oj", "~> 3.16"
8686
gem "omniauth", "~> 2.1.3"

client/yarn.lock

Lines changed: 18 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -4889,13 +4889,14 @@ foreground-child@^3.1.0:
48894889
signal-exit "^4.0.1"
48904890

48914891
form-data@^4.0.0:
4892-
version "4.0.2"
4893-
resolved "https://registry.yarnpkg.com/form-data/-/form-data-4.0.2.tgz#35cabbdd30c3ce73deb2c42d3c8d3ed9ca51794c"
4894-
integrity sha512-hGfm/slu0ZabnNt4oaRZ6uREyfCj6P4fT/n6A1rGV+Z0VdGXjfOhVUpkn6qVQONHGIFwmveGXyDs75+nr6FM8w==
4892+
version "4.0.4"
4893+
resolved "https://registry.yarnpkg.com/form-data/-/form-data-4.0.4.tgz#784cdcce0669a9d68e94d11ac4eea98088edd2c4"
4894+
integrity sha512-KrGhL9Q4zjj0kiUt5OO4Mr/A/jlI2jDYs5eHBpYHPcBEVSiipAvn2Ko2HnPe20rmcuuvMHNdZFp+4IlGTMF0Ow==
48954895
dependencies:
48964896
asynckit "^0.4.0"
48974897
combined-stream "^1.0.8"
48984898
es-set-tostringtag "^2.1.0"
4899+
hasown "^2.0.2"
48994900
mime-types "^2.1.12"
49004901

49014902
format@^0.2.0:
@@ -5504,7 +5505,7 @@ inflight@^1.0.4:
55045505
once "^1.3.0"
55055506
wrappy "1"
55065507

5507-
inherits@2, inherits@2.0.4, inherits@^2.0.1, inherits@^2.0.3, inherits@~2.0.1, inherits@~2.0.3, inherits@~2.0.4:
5508+
inherits@2, inherits@2.0.4, inherits@^2.0.1, inherits@^2.0.3, inherits@^2.0.4, inherits@~2.0.1, inherits@~2.0.3, inherits@~2.0.4:
55085509
version "2.0.4"
55095510
resolved "https://registry.yarnpkg.com/inherits/-/inherits-2.0.4.tgz#0fa2c64f932917c3433a0ded55363aae37416b7c"
55105511
integrity sha512-k/vGaX4/Yla3WzyMCvTQOXYeIHvqOKtnqBduzTHpzpQZzAskKMhZ2K+EnBiSM9zGSoIFeMpXKxa4dYeZIQqewQ==
@@ -8598,7 +8599,7 @@ safe-buffer@5.1.2, safe-buffer@~5.1.0, safe-buffer@~5.1.1:
85988599
resolved "https://registry.yarnpkg.com/safe-buffer/-/safe-buffer-5.1.2.tgz#991ec69d296e0313747d59bdfd2b745c35f8828d"
85998600
integrity sha512-Gd2UZBJDkXlY7GbJxfsE8/nvKkUEU1G38c1siN6QP6a9PT9MmHB8GnpscSmMJSoF8LOIrt8ud/wPtojys4G6+g==
86008601

8601-
safe-buffer@5.2.1, safe-buffer@>=5.1.0, safe-buffer@^5.0.1, safe-buffer@^5.1.0, safe-buffer@~5.2.0:
8602+
safe-buffer@5.2.1, safe-buffer@>=5.1.0, safe-buffer@^5.1.0, safe-buffer@^5.2.1, safe-buffer@~5.2.0:
86028603
version "5.2.1"
86038604
resolved "https://registry.yarnpkg.com/safe-buffer/-/safe-buffer-5.2.1.tgz#1eaf9fa9bdb1fdd4ec75f58f9cdb4e6b7827eec6"
86048605
integrity sha512-rp3So07KcdmmKbGvgaNxQSJr7bGVSVk5S9Eq1F+ppbRo70+YeaDxkw5Dd8NPN+GD6bjnYm2VuPuCXmpuYvmCXQ==
@@ -8794,9 +8795,9 @@ setprototypeof@1.2.0:
87948795
integrity sha512-E5LDX7Wrp85Kil5bhZv46j8jOeboKq5JMmYM3gVGdGH8xFpPWXUMsNrlODCrkoxMEeNi/XZIwuRvY4XNwYMJpw==
87958796

87968797
sha.js@^2.4.11:
8797-
version "2.4.11"
8798-
resolved "https://registry.yarnpkg.com/sha.js/-/sha.js-2.4.11.tgz#37a5cf0b81ecbc6943de109ba2960d1b26584ae7"
8799-
integrity sha512-QMEp5B7cftE7APOjk5Y6xgrbWu+WkLVQwk8JNjZ8nKRciZaByEW6MubieAiToS7+dwvrjGhH8jRXz3MVd0AYqQ==
8798+
version "2.4.12"
8799+
resolved "https://registry.yarnpkg.com/sha.js/-/sha.js-2.4.12.tgz#eb8b568bf383dfd1867a32c3f2b74eb52bdbf23f"
8800+
integrity sha512-8LzC5+bvI45BjpfXU8V5fdU2mfeKiQe1D1gIMn7XUlF3OTUrpdJpPPH4EMAnF0DsHHdSZqCdSss5qCmJKuiO3w==
88008801
dependencies:
88018802
inherits "^2.0.1"
88028803
safe-buffer "^5.0.1"
@@ -9576,6 +9577,15 @@ tmp@^0.0.33:
95769577
dependencies:
95779578
os-tmpdir "~1.0.2"
95789579

9580+
to-buffer@^1.2.0:
9581+
version "1.2.1"
9582+
resolved "https://registry.yarnpkg.com/to-buffer/-/to-buffer-1.2.1.tgz#2ce650cdb262e9112a18e65dc29dcb513c8155e0"
9583+
integrity sha512-tB82LpAIWjhLYbqjx3X4zEeHN6M8CiuOEy2JY8SEQVdYRe3CCHOFaqrBW1doLDrfpWhplcW7BL+bO3/6S3pcDQ==
9584+
dependencies:
9585+
isarray "^2.0.5"
9586+
safe-buffer "^5.2.1"
9587+
typed-array-buffer "^1.0.3"
9588+
95799589
to-camel-case@^1.0.0:
95809590
version "1.0.0"
95819591
resolved "https://registry.yarnpkg.com/to-camel-case/-/to-camel-case-1.0.0.tgz#1a56054b2f9d696298ce66a60897322b6f423e46"

docker-compose.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -82,7 +82,7 @@ services:
8282
stdin_open: true
8383
build:
8484
context: client
85-
target: dev
85+
target: development
8686
ports:
8787
- "13100:13100" # Rescue
8888
- "13101:13101" # SSR

0 commit comments

Comments
 (0)