Skip to content

Commit d8994c1

Browse files
jfedericosnyk-botfarhatahmad
authored
[Snyk] Security upgrade google-cloud-storage from 1.44.0 to 1.45.0 (#6199)
* fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-FARADAY-15253521 * Update Gemfile.lock --------- Co-authored-by: snyk-bot <snyk-bot@snyk.io> Co-authored-by: Ahmad Farhat <ahmad.af.farhat@gmail.com>
1 parent 52da219 commit d8994c1

File tree

2 files changed

+40
-41
lines changed

2 files changed

+40
-41
lines changed

Gemfile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@ gem 'clamby', '~> 1.6.10'
1515
gem 'cssbundling-rails', '>= 1.4.0'
1616
gem 'data_migrate', '>= 11.3.0'
1717
gem 'dotenv-rails', '>= 3.0.0'
18-
gem 'google-cloud-storage', '~> 1.44', require: false
18+
gem 'google-cloud-storage', '~> 1.45', '>= 1.45.0', require: false
1919
gem 'hcaptcha'
2020
gem 'i18n-language-mapping'
2121
gem 'image_processing', '~> 1.2'

Gemfile.lock

Lines changed: 39 additions & 40 deletions
Original file line numberDiff line numberDiff line change
@@ -148,7 +148,7 @@ GEM
148148
reline (>= 0.3.8)
149149
declarative (0.0.20)
150150
diff-lcs (1.6.2)
151-
digest-crc (0.6.5)
151+
digest-crc (0.7.0)
152152
rake (>= 12.0.0, < 14.0.0)
153153
dotenv (3.2.0)
154154
dotenv-rails (3.2.0)
@@ -166,7 +166,7 @@ GEM
166166
railties (>= 6.1.0)
167167
faker (3.1.1)
168168
i18n (>= 1.8.11, < 2)
169-
faraday (2.14.0)
169+
faraday (2.14.1)
170170
faraday-net_http (>= 2.0, < 3.5)
171171
json
172172
logger
@@ -178,46 +178,47 @@ GEM
178178
ffi (1.17.2-x86_64-linux-gnu)
179179
globalid (1.3.0)
180180
activesupport (>= 6.1)
181-
google-apis-core (0.11.0)
182-
addressable (~> 2.5, >= 2.5.1)
183-
googleauth (>= 0.16.2, < 2.a)
184-
httpclient (>= 2.8.1, < 3.a)
185-
mini_mime (~> 1.0)
181+
google-apis-core (1.0.2)
182+
addressable (~> 2.8, >= 2.8.7)
183+
faraday (~> 2.13)
184+
faraday-follow_redirects (~> 0.3)
185+
googleauth (~> 1.14)
186+
mini_mime (~> 1.1)
186187
representable (~> 3.0)
187-
retriable (>= 2.0, < 4.a)
188-
rexml
189-
webrick
190-
google-apis-iamcredentials_v1 (0.17.0)
191-
google-apis-core (>= 0.11.0, < 2.a)
192-
google-apis-storage_v1 (0.19.0)
193-
google-apis-core (>= 0.9.0, < 2.a)
194-
google-cloud-core (1.6.0)
195-
google-cloud-env (~> 1.0)
188+
retriable (~> 3.1)
189+
google-apis-iamcredentials_v1 (0.26.0)
190+
google-apis-core (>= 0.15.0, < 2.a)
191+
google-apis-storage_v1 (0.60.0)
192+
google-apis-core (>= 0.15.0, < 2.a)
193+
google-cloud-core (1.8.0)
194+
google-cloud-env (>= 1.0, < 3.a)
196195
google-cloud-errors (~> 1.0)
197-
google-cloud-env (1.6.0)
198-
faraday (>= 0.17.3, < 3.0)
199-
google-cloud-errors (1.3.1)
200-
google-cloud-storage (1.44.0)
196+
google-cloud-env (2.3.1)
197+
base64 (~> 0.2)
198+
faraday (>= 1.0, < 3.a)
199+
google-cloud-errors (1.5.0)
200+
google-cloud-storage (1.58.0)
201201
addressable (~> 2.8)
202202
digest-crc (~> 0.4)
203-
google-apis-iamcredentials_v1 (~> 0.1)
204-
google-apis-storage_v1 (~> 0.19.0)
203+
google-apis-core (>= 0.18, < 2)
204+
google-apis-iamcredentials_v1 (~> 0.18)
205+
google-apis-storage_v1 (>= 0.42)
205206
google-cloud-core (~> 1.6)
206-
googleauth (>= 0.16.2, < 2.a)
207+
googleauth (~> 1.9)
207208
mini_mime (~> 1.0)
208-
googleauth (1.6.0)
209-
faraday (>= 0.17.3, < 3.a)
210-
jwt (>= 1.4, < 3.0)
211-
memoist (~> 0.16)
209+
google-logging-utils (0.2.0)
210+
googleauth (1.16.1)
211+
faraday (>= 1.0, < 3.a)
212+
google-cloud-env (~> 2.2)
213+
google-logging-utils (~> 0.1)
214+
jwt (>= 1.4, < 4.0)
212215
multi_json (~> 1.11)
213216
os (>= 0.9, < 2.0)
214217
signet (>= 0.16, < 2.a)
215218
hashdiff (1.1.2)
216219
hashie (5.0.0)
217220
hcaptcha (7.1.0)
218221
json
219-
httpclient (2.9.0)
220-
mutex_m
221222
i18n (1.14.7)
222223
concurrent-ruby (~> 1.0)
223224
i18n-language-mapping (0.1.3.1)
@@ -235,7 +236,7 @@ GEM
235236
jmespath (1.6.2)
236237
jsbundling-rails (1.3.1)
237238
railties (>= 6.0.0)
238-
json (2.17.0)
239+
json (2.18.1)
239240
json-jwt (1.17.0)
240241
activesupport (>= 4.2)
241242
aes_key_wrap
@@ -244,7 +245,8 @@ GEM
244245
faraday (~> 2.0)
245246
faraday-follow_redirects
246247
jsonapi-renderer (0.2.2)
247-
jwt (2.7.0)
248+
jwt (3.1.2)
249+
base64
248250
language_server-protocol (3.17.0.5)
249251
lint_roller (1.1.0)
250252
logger (1.7.0)
@@ -264,15 +266,13 @@ GEM
264266
net-smtp
265267
marcel (1.1.0)
266268
matrix (0.4.3)
267-
memoist (0.16.2)
268269
mini_magick (4.12.0)
269270
mini_mime (1.1.5)
270271
mini_portile2 (2.8.9)
271272
minitest (5.26.2)
272273
msgpack (1.6.0)
273-
multi_json (1.15.0)
274-
mutex_m (0.3.0)
275-
net-http (0.8.0)
274+
multi_json (1.19.1)
275+
net-http (0.9.1)
276276
uri (>= 0.11.1)
277277
net-imap (0.5.12)
278278
date
@@ -328,7 +328,7 @@ GEM
328328
psych (5.2.6)
329329
date
330330
stringio
331-
public_suffix (7.0.0)
331+
public_suffix (7.0.2)
332332
puma (6.5.0)
333333
nio4r (~> 2.0)
334334
racc (1.8.1)
@@ -459,10 +459,10 @@ GEM
459459
websocket (~> 1.0)
460460
shoulda-matchers (5.3.0)
461461
activesupport (>= 5.2.0)
462-
signet (0.17.0)
462+
signet (0.21.0)
463463
addressable (~> 2.8)
464464
faraday (>= 0.17.5, < 3.a)
465-
jwt (>= 1.5, < 3.0)
465+
jwt (>= 1.5, < 4.0)
466466
multi_json (~> 1.10)
467467
sprockets (4.2.2)
468468
concurrent-ruby (~> 1.0)
@@ -511,7 +511,6 @@ GEM
511511
addressable (>= 2.8.0)
512512
crack (>= 0.3.2)
513513
hashdiff (>= 0.4.0, < 2.0.0)
514-
webrick (1.8.2)
515514
websocket (1.2.9)
516515
websocket-driver (0.8.0)
517516
base64
@@ -543,7 +542,7 @@ DEPENDENCIES
543542
factory_bot (>= 6.4.1)
544543
factory_bot_rails (>= 6.4.4)
545544
faker
546-
google-cloud-storage (~> 1.44)
545+
google-cloud-storage (~> 1.45, >= 1.45.0)
547546
hcaptcha
548547
i18n-language-mapping
549548
image_processing (~> 1.2)

0 commit comments

Comments
 (0)