From 47a45a35c5fdf7cdc226c524474802796a86eaea Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 9 Jan 2024 18:24:28 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-PUMA-6146928
---
 Gemfile      | 2 +-
 Gemfile.lock | 8 +++++---
 2 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/Gemfile b/Gemfile
index dc59d39..50c5f9b 100644
--- a/Gemfile
+++ b/Gemfile
@@ -28,7 +28,7 @@ gem 'jquery-turbolinks'
 # gem 'jbuilder', '~> 2.0'
 # bundle exec rake doc:rails generates the API under doc/api.
 # gem 'sdoc', '~> 0.4.0', group: :doc
-gem 'puma'
+gem 'puma', '>= 5.6.8'
 gem 'active_model_serializers', '>= 0.10.14'
 gem 'bootstrap-sass'
 gem 'font-awesome-rails', '>= 4.7.0.8'
diff --git a/Gemfile.lock b/Gemfile.lock
index 3160135..bfc9ff8 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -198,12 +198,14 @@ GEM
       timeout
     net-smtp (0.3.3)
       net-protocol
-    nio4r (2.5.9)
+    nio4r (2.7.0)
     nokogiri (1.15.4)
       mini_portile2 (~> 2.8.2)
       racc (~> 1.4)
+    nokogiri (1.15.4-x86_64-linux)
+      racc (~> 1.4)
     public_suffix (5.0.0)
-    puma (5.6.7)
+    puma (6.4.2)
       nio4r (~> 2.0)
     racc (1.7.1)
     rack (2.2.8)
@@ -347,7 +349,7 @@ DEPENDENCIES
   mysql2 (~> 0.5.0)
   net-ldap
   pmb-client (= 0.1.0)!
-  puma
+  puma (>= 5.6.8)
   rails (~> 6.1.7, >= 6.1.7.5)
   rails-controller-testing
   rake