fix a potential vulnerability

Didier Lafforgue committed Mar 31, 2018

commit 60c268a8115c98c836a99809cbf5e3e25aa492a3

Showing 2 changed files with 9 additions and 9 deletions

Gemfile.lock +8 -8

@@	@@ -23,7 +23,7 @@ PATH
	rack-cache (~> 1.7.0)
	rack-rewrite (~> 1.5.1)
	rack_csrf (~> 2.6.0)
-	sanitize (~> 4.6.0)
+	sanitize (~> 4.6.4)
	sass (~> 3.4.25)
	sprockets (~> 3.7.1)
	uglifier (~> 4.1.3)
@@	@@ -32,9 +32,9 @@ GEM
	remote: https://rubygems.org/
	specs:
	RedCloth (4.3.2)
-	activesupport (5.1.5)
+	activesupport (5.1.6)
	concurrent-ruby (~> 1.0, >= 1.0.2)
-	i18n (~> 0.7)
+	i18n (>= 0.7, < 2)
	minitest (~> 5.1)
	tzinfo (~> 1.1)
	addressable (2.5.2)
@@	@@ -75,7 +75,7 @@ GEM
	crass (1.0.3)
	diff-lcs (1.3)
	docile (1.1.5)
-	dragonfly (1.1.4)
+	dragonfly (1.1.5)
	addressable (~> 2.3)
	multi_json (~> 1.0)
	rack (>= 1.3)
@@	@@ -86,7 +86,7 @@ GEM
	haml (5.0.4)
	temple (>= 0.8.0)
	tilt
-	httparty (0.16.0)
+	httparty (0.16.2)
	multi_xml (>= 0.5.2)
	i18n (0.9.5)
	concurrent-ruby (~> 1.0)
@@	@@ -159,7 +159,7 @@ GEM
	diff-lcs (>= 1.2.0, < 2.0)
	rspec-support (~> 3.7.0)
	rspec-support (3.7.1)
-	sanitize (4.6.0)
+	sanitize (4.6.4)
	crass (~> 1.0.2)
	nokogiri (>= 1.4.4)
	nokogumbo (~> 1.4)
@@	@@ -173,7 +173,7 @@ GEM
	concurrent-ruby (~> 1.0)
	rack (> 1, < 3)
	stackprof (0.2.11)
-	stringex (2.8.2)
+	stringex (2.8.4)
	temple (0.8.0)
	term-ansicolor (1.6.0)
	tins (~> 1.0)
@@	@@ -184,7 +184,7 @@ GEM
	tins (1.16.3)
	tzinfo (1.2.5)
	thread_safe (~> 0.1)
-	uglifier (4.1.6)
+	uglifier (4.1.8)
	execjs (>= 0.3.0, < 3)

	PLATFORMS

locomotivecms_steam.gemspec +1 -1

@@	@@ -22,7 +22,7 @@ Gem::Specification.new do \|spec\|
	spec.add_development_dependency 'origin', '~> 2.3.1'

	spec.add_dependency 'nokogiri', '~> 1.8.2'
-	spec.add_dependency 'sanitize', '~> 4.6.0'
+	spec.add_dependency 'sanitize', '~> 4.6.4'
	spec.add_dependency 'morphine', '~> 0.1.1'
	spec.add_dependency 'httparty', '~> 0.16.0'
	spec.add_dependency 'chronic', '~> 0.10.2'