From b2bc77879a267a29bdcc8acd80076da24c41a61b Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 5 Apr 2024 03:15:58 +0000
Subject: [PATCH] fix: Gemfile to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-6274386
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-6228056
- https://snyk.io/vuln/SNYK-RUBY-RACK-6274383
- https://snyk.io/vuln/SNYK-RUBY-RACK-6274384
- https://snyk.io/vuln/SNYK-RUBY-RACK-6274385
- https://snyk.io/vuln/SNYK-RUBY-YARD-6305193
---
 Gemfile | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/Gemfile b/Gemfile
index f4e8b7829..daf14333f 100644
--- a/Gemfile
+++ b/Gemfile
@@ -11,13 +11,13 @@ gem 'activerecord-nulldb-adapter'
 gem 'alphabetical_paginate'
 
 # Authentication and cross origin
-gem 'angular_rails_csrf', '2.1.1'
+gem 'angular_rails_csrf', '5.0.0'
 
 gem 'anemone', path: 'components/anemone'
 gem 'aquadoc', path: 'components/aquadoc'
 
 # For uploads and cloud storage
-gem 'aws-sdk', '>= 1.67.0', '< 2.0'
+gem 'aws-sdk', '~> 2.0', '>= 2.0.22'
 gem 'aws-sdk-s3'
 
 # For email
@@ -41,10 +41,10 @@ gem 'paperclip', '~> 6.1', '>= 6.1.0'
 # Needed for rails 3.2 => 4.0 upgrade
 gem 'protected_attributes_continued'
 
-gem 'rack-cors', '~> 1.0.5', require: 'rack/cors'
+gem 'rack-cors', '~> 1.1.0', require: 'rack/cors'
 
-gem 'rails', '4.2.11.3'
-gem 'mimemagic', '>= 0.3.10'
+gem 'rails', '7.0.8.1'
+gem 'mimemagic', '>= 0.4.2'
 
 gem 'redcarpet', '>= 3.5.1'
 
@@ -60,16 +60,16 @@ gem 'where-or'
 gem 'will_paginate'
 
 group :development do
-  gem 'factory_bot_rails', '>= 5.2.0'
+  gem 'factory_bot_rails', '>= 6.0.0'
   gem 'ipaddress' # used to determine subnet for docker containers for web-console
-  gem 'rspec-rails', '>= 4.1.2'
+  gem 'rspec-rails', '>= 5.0.0'
   gem 'rspec-sorbet'
   gem 'rubocop'
-  gem 'rubocop-rails'
+  gem 'rubocop-rails', '>= 2.12.0'
   gem 'rubocop-sorbet'
   gem 'simplecov', require: false
-  gem 'web-console', '~> 3.3', '>= 3.3.0'
-  gem 'yard', '>= 0.9.20'
+  gem 'web-console', '~> 3.3', '>= 3.3.1'
+  gem 'yard', '>= 0.9.35'
   gem 'yard-activerecord'
 end