From c0b68c401aecd3a057247034b644ba7ce4772d71 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 30 May 2024 18:43:42 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-7164639
---
 Gemfile      |  2 +-
 Gemfile.lock | 68 ++++++++++++++++++++++++++++------------------------
 2 files changed, 38 insertions(+), 32 deletions(-)

diff --git a/Gemfile b/Gemfile
index 835eddb..0b1f648 100644
--- a/Gemfile
+++ b/Gemfile
@@ -4,7 +4,7 @@ group :development do
   gem "shoulda", ">= 3.5.0"
   gem "rdoc", "~> 6.3"
   gem "bundler"
-  gem "jeweler", "~> 2.0.1"
+  gem "jeweler", "~> 2.1.1"
   gem "activemodel", "~> 6.1"
   gem "rack", ">= 2.1.3"
   gem "rake"
diff --git a/Gemfile.lock b/Gemfile.lock
index 2b3acbd..2be3240 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -9,60 +9,66 @@ GEM
       minitest (>= 5.1)
       tzinfo (~> 2.0)
       zeitwerk (~> 2.3)
-    addressable (2.8.0)
-      public_suffix (>= 2.0.2, < 5.0)
+    addressable (2.8.6)
+      public_suffix (>= 2.0.2, < 6.0)
     builder (3.2.4)
     concurrent-ruby (1.1.9)
     descendants_tracker (0.0.4)
       thread_safe (~> 0.3, >= 0.3.1)
-    faraday (0.17.3)
+    faraday (0.9.2)
       multipart-post (>= 1.2, < 3)
-    git (1.7.0)
+    git (1.19.1)
+      addressable (~> 2.8)
       rchardet (~> 1.8)
-    github_api (0.18.2)
-      addressable (~> 2.4)
-      descendants_tracker (~> 0.0.4)
-      faraday (~> 0.8)
-      hashie (~> 3.5, >= 3.5.2)
-      oauth2 (~> 1.0)
-    hashie (3.6.0)
-    highline (2.0.3)
+    github_api (0.11.3)
+      addressable (~> 2.3)
+      descendants_tracker (~> 0.0.1)
+      faraday (~> 0.8, < 0.10)
+      hashie (>= 1.2)
+      multi_json (>= 1.7.5, < 2.0)
+      nokogiri (~> 1.6.0)
+      oauth2
+    hashie (5.0.0)
+    highline (2.1.0)
+    httpauth (0.2.1)
     i18n (1.8.10)
       concurrent-ruby (~> 1.0)
-    jeweler (2.0.1)
+    jeweler (2.1.2)
       builder
       bundler (>= 1.0)
       git (>= 1.2.5)
-      github_api
+      github_api (~> 0.11.0)
       highline (>= 1.6.15)
       nokogiri (>= 1.5.10)
       rake
       rdoc
-    jwt (2.2.1)
-    mini_portile2 (2.4.0)
+      semver
+    mini_portile2 (2.1.0)
     minitest (5.13.0)
-    multi_json (1.14.1)
-    multi_xml (0.6.0)
-    multipart-post (2.1.1)
-    nokogiri (1.10.9)
-      mini_portile2 (~> 2.4.0)
-    oauth2 (1.4.4)
-      faraday (>= 0.8, < 2.0)
-      jwt (>= 1.0, < 3.0)
+    multi_json (1.15.0)
+    multipart-post (2.4.1)
+    nokogiri (1.6.8.1)
+      mini_portile2 (~> 2.1.0)
+    oauth2 (0.6.1)
+      faraday (~> 0.7)
+      httpauth (~> 0.1)
       multi_json (~> 1.3)
-      multi_xml (~> 0.5)
-      rack (>= 1.2, < 3)
-    public_suffix (4.0.6)
-    rack (2.2.3)
-    rake (13.0.1)
+    psych (5.1.2)
+      stringio
+    public_suffix (5.0.5)
+    rack (3.0.11)
+    rake (13.2.1)
     rchardet (1.8.0)
-    rdoc (6.3.3)
+    rdoc (6.7.0)
+      psych (>= 4.0.0)
+    semver (1.0.1)
     shoulda (3.6.0)
       shoulda-context (~> 1.0, >= 1.0.1)
       shoulda-matchers (~> 3.0)
     shoulda-context (1.2.2)
     shoulda-matchers (3.1.3)
       activesupport (>= 4.0.0)
+    stringio (3.1.0)
     thread_safe (0.3.6)
     tzinfo (2.0.4)
       concurrent-ruby (~> 1.0)
@@ -74,7 +80,7 @@ PLATFORMS
 DEPENDENCIES
   activemodel (~> 6.1)
   bundler
-  jeweler (~> 2.0.1)
+  jeweler (~> 2.1.1)
   minitest
   rack (>= 2.1.3)
   rake