From 85b060831b7b2c1367231d8fc2e6a78238738b52 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 24 Aug 2023 14:08:10 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-5851458
---
 Gemfile      |  2 +-
 Gemfile.lock | 43 +++++++++++++++++++++----------------------
 2 files changed, 22 insertions(+), 23 deletions(-)

diff --git a/Gemfile b/Gemfile
index 00b1150..4158a38 100644
--- a/Gemfile
+++ b/Gemfile
@@ -5,7 +5,7 @@ ruby File.read(__dir__ + '/.ruby-version').strip
 gem 'sinatra', require: false
 gem 'tilt'
 gem 'builder'
-gem 'mongoid'
+gem 'mongoid', '>= 7.2.1'
 gem 'nokogiri'
 gem 'puma'
 gem 'rake'
diff --git a/Gemfile.lock b/Gemfile.lock
index e2deb99..010c62b 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -1,26 +1,26 @@
 GEM
   remote: https://rubygems.org/
   specs:
-    activemodel (6.0.3.4)
-      activesupport (= 6.0.3.4)
-    activesupport (6.0.3.4)
+    activemodel (6.1.7.6)
+      activesupport (= 6.1.7.6)
+    activesupport (6.1.7.6)
       concurrent-ruby (~> 1.0, >= 1.0.2)
-      i18n (>= 0.7, < 2)
-      minitest (~> 5.1)
-      tzinfo (~> 1.1)
-      zeitwerk (~> 2.2, >= 2.2.2)
-    bson (4.11.1)
+      i18n (>= 1.6, < 2)
+      minitest (>= 5.1)
+      tzinfo (~> 2.0)
+      zeitwerk (~> 2.3)
+    bson (4.15.0)
     builder (3.2.4)
-    concurrent-ruby (1.1.7)
+    concurrent-ruby (1.2.2)
     diff-lcs (1.4.4)
-    i18n (1.8.7)
+    i18n (1.14.1)
       concurrent-ruby (~> 1.0)
     mini_portile2 (2.5.0)
-    minitest (5.14.3)
-    mongo (2.14.0)
-      bson (>= 4.8.2, < 5.0.0)
-    mongoid (7.2.0)
-      activemodel (>= 5.1, < 6.1)
+    minitest (5.19.0)
+    mongo (2.19.1)
+      bson (>= 4.14.1, < 5.0.0)
+    mongoid (7.3.1)
+      activemodel (>= 5.1, < 6.2)
       mongo (>= 2.10.5, < 3.0.0)
     mustermann (1.1.1)
       ruby2_keywords (~> 0.0.1)
@@ -57,11 +57,10 @@ GEM
       rack (~> 2.2)
       rack-protection (= 2.1.0)
       tilt (~> 2.0)
-    thread_safe (0.3.6)
     tilt (2.0.10)
-    tzinfo (1.2.9)
-      thread_safe (~> 0.1)
-    zeitwerk (2.4.2)
+    tzinfo (2.0.6)
+      concurrent-ruby (~> 1.0)
+    zeitwerk (2.6.11)
 
 PLATFORMS
   ruby
@@ -69,7 +68,7 @@ PLATFORMS
 DEPENDENCIES
   builder
   mongo
-  mongoid
+  mongoid (>= 7.2.1)
   nokogiri
   puma
   rake
@@ -79,7 +78,7 @@ DEPENDENCIES
   tilt
 
 RUBY VERSION
-   ruby 3.0.0p0
+   ruby 2.7.8p225
 
 BUNDLED WITH
-   2.2.3
+   2.1.4