From ec8978f4e8457b248623b32fb632fba3f3e3f3f8 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 4 Apr 2023 15:45:59 +0000
Subject: [PATCH] fix: Gemfile to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-1290051
- https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-1290052
- https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-20255
- https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-20256
- https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-20258
- https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-20264
- https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-2400638
- https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-3237231
- https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-3237232
- https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-569599
- https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-569600
- https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-20259
- https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-2960802
- https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-3237239
- https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-20229
- https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-3237242
- https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-3360028
- https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-569598
- https://snyk.io/vuln/SNYK-RUBY-ADDRESSABLE-1316242
- https://snyk.io/vuln/SNYK-RUBY-BETTERERRORS-1583446
- https://snyk.io/vuln/SNYK-RUBY-BOOTSTRAPSASS-174549
- https://snyk.io/vuln/SNYK-RUBY-BOOTSTRAPSASS-450237
- https://snyk.io/vuln/SNYK-RUBY-BOOTSTRAPSASS-450238
- https://snyk.io/vuln/SNYK-RUBY-BOOTSTRAPSASS-450239
- https://snyk.io/vuln/SNYK-RUBY-CARRIERWAVE-1070797
- https://snyk.io/vuln/SNYK-RUBY-CARRIERWAVE-1070798
- https://snyk.io/vuln/SNYK-RUBY-CARRIERWAVE-20417
- https://snyk.io/vuln/SNYK-RUBY-DOORKEEPER-20272
- https://snyk.io/vuln/SNYK-RUBY-DOORKEEPER-20484
- https://snyk.io/vuln/SNYK-RUBY-FFI-22037
- https://snyk.io/vuln/SNYK-RUBY-GON-1012440
- https://snyk.io/vuln/SNYK-RUBY-GRAPE-22042
- https://snyk.io/vuln/SNYK-RUBY-JQUERYRAILS-450225
- https://snyk.io/vuln/SNYK-RUBY-JQUERYRAILS-565439
- https://snyk.io/vuln/SNYK-RUBY-JSON-560838
- https://snyk.io/vuln/SNYK-RUBY-KAMINARI-570586
- https://snyk.io/vuln/SNYK-RUBY-KRAMDOWN-585939
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1055008
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1293239
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1583442
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1726792
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20299
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20432
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-22013
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-22014
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2413994
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2620374
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2630623
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2630898
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2840634
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-3052880
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-3357692
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-3357693
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-459107
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-534637
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-552159
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-72433
- https://snyk.io/vuln/SNYK-RUBY-OMNIAUTH-174820
- https://snyk.io/vuln/SNYK-RUBY-OMNIAUTH-22012
- https://snyk.io/vuln/SNYK-RUBY-OMNIAUTH-2987513
- https://snyk.io/vuln/SNYK-RUBY-RACK-1061917
- https://snyk.io/vuln/SNYK-RUBY-RACK-20399
- https://snyk.io/vuln/SNYK-RUBY-RACK-2848599
- https://snyk.io/vuln/SNYK-RUBY-RACK-2848600
- https://snyk.io/vuln/SNYK-RUBY-RACK-3237240
- https://snyk.io/vuln/SNYK-RUBY-RACK-3356639
- https://snyk.io/vuln/SNYK-RUBY-RACK-538324
- https://snyk.io/vuln/SNYK-RUBY-RACK-569066
- https://snyk.io/vuln/SNYK-RUBY-RACK-572377
- https://snyk.io/vuln/SNYK-RUBY-RACK-72567
- https://snyk.io/vuln/SNYK-RUBY-RACKATTACK-20246
- https://snyk.io/vuln/SNYK-RUBY-RAILTIES-20454
- https://snyk.io/vuln/SNYK-RUBY-RAKE-552000
- https://snyk.io/vuln/SNYK-RUBY-REDISSTORE-20452
- https://snyk.io/vuln/SNYK-RUBY-RESTCLIENT-20204
- https://snyk.io/vuln/SNYK-RUBY-RESTCLIENT-20211
- https://snyk.io/vuln/SNYK-RUBY-RUBYZIP-22039
- https://snyk.io/vuln/SNYK-RUBY-RUBYZIP-469156
- https://snyk.io/vuln/SNYK-RUBY-SIMPLEFORM-469443
- https://snyk.io/vuln/SNYK-RUBY-SPROCKETS-22032
- https://snyk.io/vuln/SNYK-RUBY-TZINFO-2958048
- https://snyk.io/vuln/SNYK-RUBY-WEBSOCKETEXTENSIONS-570830
---
 Gemfile | 54 +++++++++++++++++++++++++++---------------------------
 1 file changed, 27 insertions(+), 27 deletions(-)

diff --git a/Gemfile b/Gemfile
index 4319d26be2..beab39a339 100644
--- a/Gemfile
+++ b/Gemfile
@@ -1,10 +1,10 @@
 source 'https://rubygems.org'
 
-gem 'rails', '~> 4.0.12'
-gem 'rails-i18n'
+gem 'rails', '~> 6.1.7', '>= 6.1.7.3'
+gem 'rails-i18n', '>= 6.0.0'
 if defined?(JRUBY_VERSION)
   gem 'jdbc-mysql', platform: :jruby
-  gem 'activerecord-jdbc-adapter', platform: :jruby
+  gem 'activerecord-jdbc-adapter', '>= 61.0', platform: :jruby
 else
   gem 'mysql2', '~> 0.3.21'
 end
@@ -12,13 +12,13 @@ gem 'daemons-rails'
 gem 'redis-rails'
 
 gem 'rotp'
-gem 'json'
+gem 'json', '>= 2.3.0'
 gem 'jbuilder'
 gem 'bcrypt-ruby', '~> 3.1.2'
 
-gem 'doorkeeper', '~> 1.4.1'
-gem 'omniauth', '~> 1.2.1'
-gem 'omniauth-identity', '~> 1.1.1'
+gem 'doorkeeper', '~> 4.2.6'
+gem 'omniauth', '~> 2.1.0'
+gem 'omniauth-identity', '~> 2.0.0'
 
 gem 'figaro'
 gem 'hashie'
@@ -27,31 +27,31 @@ gem 'aasm', '~> 3.4.0'
 gem 'amqp', '~> 1.3.0'
 gem 'bunny', '~> 1.2.1'
 gem 'cancancan'
-gem 'enumerize', '~> 1.0'
+gem 'enumerize', '~> 1.1', '>= 1.1.1'
 gem 'datagrid'
 gem 'acts-as-taggable-on'
-gem 'kaminari'
+gem 'kaminari', '>= 1.2.1'
 gem 'paranoid2'
 gem 'active_hash'
 gem 'http_accept_language'
-gem "globalize", "~> 4.0.0"
-gem 'paper_trail', '~> 3.0.1'
+gem "globalize", "~> 6.0.0"
+gem 'paper_trail', '~> 10.3.1'
 gem 'rails-observers'
 gem 'country_select', '~> 2.1.0'
 
-gem 'gon', '~> 5.2.0'
+gem 'gon', '~> 6.4.0'
 gem 'pusher'
 gem 'eventmachine', '~> 1.0.4'
 gem 'em-websocket', '~> 0.5.1'
 
-gem 'simple_form', '~> 3.1.0'
+gem 'simple_form', '~> 5.0.0'
 gem 'slim-rails'
-gem 'sass-rails'
+gem 'sass-rails', '>= 6.0.0'
 gem 'coffee-rails'
 gem 'uglifier'
-gem "jquery-rails"
+gem "jquery-rails", ">= 4.4.0"
 gem "angularjs-rails"
-gem 'bootstrap-sass', '~> 3.2.0.2'
+gem 'bootstrap-sass', '~> 3.4.0.0'
 gem 'bootstrap-wysihtml5-rails'
 gem 'font-awesome-sass'
 gem 'bourbon'
@@ -60,17 +60,17 @@ gem 'eco'
 gem 'browser', '~> 0.8.0'
 gem 'liability-proof', '0.0.9'
 gem 'whenever', '~> 0.9.2'
-gem 'grape', '~> 0.7.0'
-gem 'grape-entity', '~> 0.4.2'
+gem 'grape', '~> 1.1.0'
+gem 'grape-entity', '~> 0.4.8'
 gem 'grape-swagger', '~> 0.7.2'
-gem 'rack-attack', '~> 3.0.0'
-gem 'easy_table'
+gem 'rack-attack', '~> 4.3.1'
+gem 'easy_table', '>= 0.0.8'
 gem 'phonelib', '~> 0.3.5'
 gem 'twilio-ruby', '~> 3.11'
 gem 'unread', github: 'peatio/unread'
-gem 'carrierwave', '~> 0.10.0'
-gem 'simple_captcha2', require: 'simple_captcha'
-gem 'rest-client', '~> 1.6.8'
+gem 'carrierwave', '~> 1.3.2'
+gem 'simple_captcha2', '>= 0.3.0', require: 'simple_captcha'
+gem 'rest-client', '~> 1.8.0'
 
 
 group :development, :test do
@@ -78,14 +78,14 @@ group :development, :test do
   gem 'faker', '~> 1.4.3'
   gem 'mina'
   gem 'mina-slack', github: 'peatio/mina-slack'
-  gem 'meta_request'
-  gem 'better_errors'
+  gem 'meta_request', '>= 0.7.0'
+  gem 'better_errors', '>= 2.8.0'
   # gem 'binding_of_caller'
   gem 'pry-rails'
   gem 'quiet_assets'
   gem 'mails_viewer'
   gem 'timecop'
-  gem 'dotenv-rails'
+  gem 'dotenv-rails', '>= 2.7.6'
   gem 'rspec-rails'
   unless defined?(JRUBY_VERSION)
     gem 'byebug'
@@ -100,7 +100,7 @@ group :test do
   gem 'mocha', :require => false
   gem 'shoulda-matchers'
   gem 'capybara'
-  gem 'launchy'
+  gem 'launchy', '>= 2.4.3'
   gem 'selenium-webdriver'
   gem 'poltergeist'