From e856b166ec06e5cfe17f9fbbaa196e837d9a1037 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 5 Apr 2023 02:23:38 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-ADDRESSABLE-1316242
- https://snyk.io/vuln/SNYK-RUBY-RAKE-552000
- https://snyk.io/vuln/SNYK-RUBY-REDCARPET-1059089
- https://snyk.io/vuln/SNYK-RUBY-RUBYZIP-22039
- https://snyk.io/vuln/SNYK-RUBY-RUBYZIP-469156
- https://snyk.io/vuln/SNYK-RUBY-YARD-455636
---
 Gemfile      |  8 ++++----
 Gemfile.lock | 40 +++++++++++++++++++++-------------------
 2 files changed, 25 insertions(+), 23 deletions(-)

diff --git a/Gemfile b/Gemfile
index d8344bf29d..1bc1d430ec 100644
--- a/Gemfile
+++ b/Gemfile
@@ -1,14 +1,14 @@
 source 'https://rubygems.org'
 
 group :development do
-  gem 'rake'
-  gem 'redcarpet'
+  gem 'rake', '>= 12.3.3'
+  gem 'redcarpet', '>= 3.5.1'
   gem 'rspec'
   gem 'rubocop'
   gem 'rubocop-rspec'
-  gem 'rubyzip'
+  gem 'rubyzip', '>= 1.3.0'
   gem 'tee'
   gem 'terminal-table'
   gem 'webmock'
-  gem 'yard'
+  gem 'yard', '>= 0.9.20'
 end
diff --git a/Gemfile.lock b/Gemfile.lock
index 532e18b9f3..ecbf6b0493 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -1,21 +1,22 @@
 GEM
   remote: https://rubygems.org/
   specs:
-    addressable (2.5.2)
-      public_suffix (>= 2.0.2, < 4.0)
+    addressable (2.8.3)
+      public_suffix (>= 2.0.2, < 6.0)
     ast (2.4.0)
-    crack (0.4.3)
-      safe_yaml (~> 1.0.0)
+    crack (0.4.5)
+      rexml
     diff-lcs (1.3)
-    hashdiff (0.3.7)
+    hashdiff (1.0.1)
     parallel (1.12.1)
     parser (2.5.0.5)
       ast (~> 2.4.0)
     powerpack (0.1.1)
-    public_suffix (3.0.2)
+    public_suffix (5.0.1)
     rainbow (3.0.0)
-    rake (12.3.1)
-    redcarpet (3.4.0)
+    rake (13.0.6)
+    redcarpet (3.6.0)
+    rexml (3.2.5)
     rspec (3.7.0)
       rspec-core (~> 3.7.0)
       rspec-expectations (~> 3.7.0)
@@ -39,32 +40,33 @@ GEM
     rubocop-rspec (1.24.0)
       rubocop (>= 0.53.0)
     ruby-progressbar (1.9.0)
-    rubyzip (1.2.1)
-    safe_yaml (1.0.4)
+    rubyzip (2.3.2)
     tee (1.0.0)
     terminal-table (1.8.0)
       unicode-display_width (~> 1.1, >= 1.1.1)
     unicode-display_width (1.3.0)
-    webmock (3.3.0)
-      addressable (>= 2.3.6)
+    webmock (3.18.1)
+      addressable (>= 2.8.0)
       crack (>= 0.3.2)
-      hashdiff
-    yard (0.9.12)
+      hashdiff (>= 0.4.0, < 2.0.0)
+    webrick (1.7.0)
+    yard (0.9.28)
+      webrick (~> 1.7.0)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
-  rake
-  redcarpet
+  rake (>= 12.3.3)
+  redcarpet (>= 3.5.1)
   rspec
   rubocop
   rubocop-rspec
-  rubyzip
+  rubyzip (>= 1.3.0)
   tee
   terminal-table
   webmock
-  yard
+  yard (>= 0.9.20)
 
 BUNDLED WITH
-   1.16.1
+   1.17.3