From a8e1640214f4605dc29946707089cb2b6fa5e767 Mon Sep 17 00:00:00 2001
From: Sarah Wiechers <sarah.wiechers@uni-muenster.de>
Date: Mon, 13 Mar 2023 10:45:07 +0100
Subject: [PATCH] Updated Rack because of security issue

---
 Gemfile      | 3 ++-
 Gemfile.lock | 5 +++--
 2 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/Gemfile b/Gemfile
index 582204bc..78da3788 100644
--- a/Gemfile
+++ b/Gemfile
@@ -13,7 +13,7 @@ gem 'pg_search'
 # Web server and background processing
 gem 'puma'
 gem 'redis-rails'
-gem 'sidekiq'
+gem 'sidekiq', '~> 6.5'
 gem 'sidekiq-client-cli'
 gem 'sidekiq-limit_fetch'
 gem 'sinatra', require: false # Needed to monitor sidekiq jobs
@@ -57,6 +57,7 @@ gem 'net-scp'
 gem 'net-sftp'
 gem 'net-ssh'
 gem 'roo-xls' # Handle excel files
+gem "rack", ">= 2.2.6.3"
 gem 'rubyzip', '~> 2.3.0' # Handle zip files
 gem 'simple_form'
 gem 'sprockets-rails', require: 'sprockets/railtie'
diff --git a/Gemfile.lock b/Gemfile.lock
index 45017a87..b9c272f5 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -289,7 +289,7 @@ GEM
     puma (5.6.4)
       nio4r (~> 2.0)
     racc (1.6.0)
-    rack (2.2.4)
+    rack (2.2.6.3)
     rack-contrib (2.3.0)
       rack (~> 2.0)
     rack-protection (2.2.1)
@@ -524,6 +524,7 @@ DEPENDENCIES
   pg
   pg_search
   puma
+  rack (>= 2.2.6.3)
   rails (= 5.2.8.1)
   redis-rails
   roo-xls
@@ -533,7 +534,7 @@ DEPENDENCIES
   select2-rails
   shoulda-callback-matchers
   shoulda-matchers
-  sidekiq
+  sidekiq (~> 6.5)
   sidekiq-client-cli
   sidekiq-limit_fetch
   simple_form