Commit e3c195f6 authored by Stan Hu's avatar Stan Hu

Update Nokogiri to v1.12.5

This addresses a CVE that is only relevant to JRuby users
(https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md), but
this gem is still flagged by security scanners.

Some other dependency updates:

* ruby-magic https://my.diffend.io/gems/ruby-magic/0.4.0/0.5.3
* racc diff: https://my.diffend.io/gems/racc/1.5.2/1.6.0
* mini_portile2: https://my.diffend.io/gems/mini_portile2/2.5.0/2.6.1

Changelog: changed
parent 50df24e4
...@@ -170,7 +170,7 @@ gem 'asciidoctor-kroki', '~> 0.5.0', require: false ...@@ -170,7 +170,7 @@ gem 'asciidoctor-kroki', '~> 0.5.0', require: false
gem 'rouge', '~> 3.27.0' gem 'rouge', '~> 3.27.0'
gem 'truncato', '~> 0.7.11' gem 'truncato', '~> 0.7.11'
gem 'bootstrap_form', '~> 4.2.0' gem 'bootstrap_form', '~> 4.2.0'
gem 'nokogiri', '~> 1.11.4' gem 'nokogiri', '~> 1.12'
gem 'escape_utils', '~> 1.1' gem 'escape_utils', '~> 1.1'
# Calendar rendering # Calendar rendering
...@@ -277,7 +277,7 @@ gem 'licensee', '~> 9.14.1' ...@@ -277,7 +277,7 @@ gem 'licensee', '~> 9.14.1'
gem 'charlock_holmes', '~> 0.7.7' gem 'charlock_holmes', '~> 0.7.7'
# Detect mime content type from content # Detect mime content type from content
gem 'ruby-magic', '~> 0.4' gem 'ruby-magic', '~> 0.5'
# Faster blank # Faster blank
gem 'fast_blank' gem 'fast_blank'
......
...@@ -754,7 +754,7 @@ GEM ...@@ -754,7 +754,7 @@ GEM
mini_histogram (0.3.1) mini_histogram (0.3.1)
mini_magick (4.10.1) mini_magick (4.10.1)
mini_mime (1.1.1) mini_mime (1.1.1)
mini_portile2 (2.5.3) mini_portile2 (2.6.1)
minitest (5.11.3) minitest (5.11.3)
mixlib-cli (2.1.8) mixlib-cli (2.1.8)
mixlib-config (3.0.9) mixlib-config (3.0.9)
...@@ -792,8 +792,8 @@ GEM ...@@ -792,8 +792,8 @@ GEM
netrc (0.11.0) netrc (0.11.0)
nio4r (2.5.8) nio4r (2.5.8)
no_proxy_fix (0.1.2) no_proxy_fix (0.1.2)
nokogiri (1.11.7) nokogiri (1.12.5)
mini_portile2 (~> 2.5.0) mini_portile2 (~> 2.6.1)
racc (~> 1.4) racc (~> 1.4)
nokogumbo (2.0.2) nokogumbo (2.0.2)
nokogiri (~> 1.8, >= 1.8.4) nokogiri (~> 1.8, >= 1.8.4)
...@@ -954,7 +954,7 @@ GEM ...@@ -954,7 +954,7 @@ GEM
puma (>= 2.7) puma (>= 2.7)
pyu-ruby-sasl (0.0.3.3) pyu-ruby-sasl (0.0.3.3)
raabro (1.1.6) raabro (1.1.6)
racc (1.5.2) racc (1.6.0)
rack (2.2.3) rack (2.2.3)
rack-accept (0.4.5) rack-accept (0.4.5)
rack (>= 0.4) rack (>= 0.4)
...@@ -1126,8 +1126,8 @@ GEM ...@@ -1126,8 +1126,8 @@ GEM
rubocop-ast (>= 0.7.1) rubocop-ast (>= 0.7.1)
ruby-fogbugz (0.2.1) ruby-fogbugz (0.2.1)
crack (~> 0.4) crack (~> 0.4)
ruby-magic (0.4.0) ruby-magic (0.5.3)
mini_portile2 (~> 2.5.0) mini_portile2 (~> 2.6)
ruby-prof (1.3.1) ruby-prof (1.3.1)
ruby-progressbar (1.11.0) ruby-progressbar (1.11.0)
ruby-saml (1.13.0) ruby-saml (1.13.0)
...@@ -1549,7 +1549,7 @@ DEPENDENCIES ...@@ -1549,7 +1549,7 @@ DEPENDENCIES
net-ldap (~> 0.16.3) net-ldap (~> 0.16.3)
net-ntp net-ntp
net-ssh (~> 6.0) net-ssh (~> 6.0)
nokogiri (~> 1.11.4) nokogiri (~> 1.12)
oauth2 (~> 1.4) oauth2 (~> 1.4)
octokit (~> 4.15) octokit (~> 4.15)
ohai (~> 16.10) ohai (~> 16.10)
...@@ -1617,7 +1617,7 @@ DEPENDENCIES ...@@ -1617,7 +1617,7 @@ DEPENDENCIES
rspec_junit_formatter rspec_junit_formatter
rspec_profiling (~> 0.0.6) rspec_profiling (~> 0.0.6)
ruby-fogbugz (~> 0.2.1) ruby-fogbugz (~> 0.2.1)
ruby-magic (~> 0.4) ruby-magic (~> 0.5)
ruby-prof (~> 1.3.0) ruby-prof (~> 1.3.0)
ruby-progressbar (~> 1.10) ruby-progressbar (~> 1.10)
ruby-saml (~> 1.13.0) ruby-saml (~> 1.13.0)
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment