From a9174a99b1c51f06d7b8023237913c89c521771c Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 16 Jan 2017 15:18:04 +0000 Subject: [PATCH] fix: Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20299 Latest report for fenton-project/fenton_integration_test: https://snyk.io/test/github/fenton-project/fenton_integration_test --- Gemfile.lock | 77 ++++++++++++++++++++++++++-------------------------- 1 file changed, 39 insertions(+), 38 deletions(-) diff --git a/Gemfile.lock b/Gemfile.lock index 5dda5e0..6073bef 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -6,7 +6,7 @@ GEM artifactory (2.5.1) ast (2.3.0) backports (3.6.8) - berkshelf (5.2.0) + berkshelf (5.3.0) addressable (~> 2.3, >= 2.3.4) berkshelf-api-client (>= 2.0.2, < 4.0) buff-config (~> 2.0) @@ -21,7 +21,7 @@ GEM retryable (~> 2.0) ridley (~> 5.0) solve (> 2.0, < 4.0) - thor (~> 0.19) + thor (~> 0.19, < 0.19.2) berkshelf-api-client (3.0.0) faraday (~> 0.9) httpclient (~> 2.7) @@ -34,7 +34,7 @@ GEM buff-ruby_engine (1.0.0) buff-shell_out (1.1.0) buff-ruby_engine (~> 1.0) - builder (3.2.2) + builder (3.2.3) bundler-audit (0.5.0) bundler (~> 1.2) thor (~> 0.18) @@ -43,10 +43,10 @@ GEM celluloid-io (0.16.2) celluloid (>= 0.16.0) nio4r (>= 1.1.0) - chef (12.16.42) + chef (12.17.44) addressable bundler (>= 1.10) - chef-config (= 12.16.42) + chef-config (= 12.17.44) chef-zero (>= 4.8) diff-lcs (~> 1.2, >= 1.2.4) erubis (~> 2.7) @@ -72,12 +72,12 @@ GEM specinfra (~> 2.10) syslog-logger (~> 1.6) uuidtools (~> 2.1.5) - chef-config (12.16.42) + chef-config (12.17.44) addressable fuzzyurl mixlib-config (~> 2.0) mixlib-shellout (~> 2.0) - chef-zero (5.1.0) + chef-zero (5.1.1) ffi-yajl (~> 2.2) hashie (>= 2.0, < 4.0) mixlib-log (~> 1.3) @@ -94,7 +94,7 @@ GEM gherkin (~> 4.0) diff-lcs (1.2.5) docile (1.1.5) - docker-api (1.32.1) + docker-api (1.33.1) excon (>= 0.38.0) json erubis (2.7.0) @@ -103,10 +103,10 @@ GEM multipart-post (>= 1.2, < 3) fauxhai (3.10.0) net-ssh - ffi (1.9.14) + ffi (1.9.17) ffi-yajl (2.3.0) libyajl2 (~> 1.2) - foodcritic (8.1.0) + foodcritic (8.2.0) cucumber-core (>= 1.3) erubis nokogiri (>= 1.5, < 2.0) @@ -123,9 +123,9 @@ GEM hashie (3.4.6) highline (1.7.8) hitimes (1.2.4) - httpclient (2.8.2.4) + httpclient (2.8.3) iniparse (1.4.2) - inspec (1.5.0) + inspec (1.9.0) hashie (~> 3.4) json (>= 1.8, < 3.0) method_source (~> 0.8) @@ -135,17 +135,18 @@ GEM rainbow (~> 2) rspec (~> 3) rspec-its (~> 1.2) + rspec_junit_formatter (~> 0.2.3) rubyzip (~> 1.1) sslshake (~> 1) thor (~> 0.19) - train (>= 0.20.1, < 1.0) + train (>= 0.22.0, < 1.0) ipaddress (0.8.3) - json (2.0.2) - kitchen-inspec (0.16.1) + json (2.0.3) + kitchen-inspec (0.17.0) hashie (~> 3.4) inspec (>= 0.34.0, < 2.0.0) test-kitchen (~> 1.6) - kitchen-vagrant (0.20.0) + kitchen-vagrant (0.21.1) test-kitchen (~> 1.4) libyajl2 (1.2.0) little-plugger (1.1.4) @@ -161,7 +162,7 @@ GEM mixlib-log mixlib-cli (1.7.0) mixlib-config (2.2.4) - mixlib-install (2.1.7) + mixlib-install (2.1.9) artifactory mixlib-shellout mixlib-versioning @@ -169,7 +170,7 @@ GEM mixlib-log (1.7.1) mixlib-shellout (2.2.7) mixlib-versioning (1.1.0) - molinillo (0.5.4) + molinillo (0.5.5) multi_json (1.12.1) multipart-post (2.0.0) net-scp (1.2.1) @@ -183,13 +184,13 @@ GEM net-ssh (>= 2.6.5) net-ssh-gateway (>= 1.2.0) net-telnet (0.1.1) - nio4r (1.2.1) - nokogiri (1.6.8.1) + nio4r (2.0.0) + nokogiri (1.7.0.1) mini_portile2 (~> 2.1.0) nori (2.6.0) octokit (4.6.2) sawyer (~> 0.8.0, >= 0.5.3) - ohai (8.21.0) + ohai (8.22.1) chef-config (>= 12.5.0.alpha.1, < 13) ffi (~> 1.9) ffi-yajl (~> 2.2) @@ -202,7 +203,7 @@ GEM systemu (~> 2.6.4) wmi-lite (~> 1.0) parallel (1.10.0) - parser (2.3.2.0) + parser (2.3.3.1) ast (~> 2.2) plist (3.2.0) polyglot (0.3.5) @@ -212,10 +213,10 @@ GEM coderay (~> 1.1.0) method_source (~> 0.8.1) slop (~> 3.4) - public_suffix (2.0.4) + public_suffix (2.0.5) rack (2.0.1) - rainbow (2.1.0) - rake (11.3.0) + rainbow (2.2.1) + rake (12.0.0) retryable (2.0.4) ridley (5.1.0) addressable @@ -254,8 +255,8 @@ GEM rspec_junit_formatter (0.2.3) builder (< 4) rspec-core (>= 2, < 4, != 2.12.0) - rubocop (0.45.0) - parser (>= 2.3.1.1, < 3.0) + rubocop (0.47.0) + parser (>= 2.3.3.1, < 3.0) powerpack (~> 0.1) rainbow (>= 1.99.1, < 3.0) ruby-progressbar (~> 1.7) @@ -269,7 +270,7 @@ GEM addressable (>= 2.3.5, < 2.6) faraday (~> 0.8, < 1.0) semverse (2.0.0) - serverspec (2.37.2) + serverspec (2.38.0) multi_json rspec (~> 3.0) rspec-its @@ -281,18 +282,18 @@ GEM simplecov-html (~> 0.10.0) simplecov-html (0.10.0) slop (3.6.0) - solve (3.0.1) - molinillo (~> 0.4) + solve (3.1.0) + molinillo (>= 0.5) semverse (>= 1.1, < 3.0) - specinfra (2.66.0) + specinfra (2.66.4) net-scp - net-ssh (>= 2.7, < 4.0) + net-ssh (>= 2.7, < 5.0) net-telnet sfl sslshake (1.0.13) syslog-logger (1.6.8) systemu (2.6.5) - test-kitchen (1.14.0) + test-kitchen (1.14.2) mixlib-install (>= 1.2, < 3.0) mixlib-shellout (>= 1.2, < 3.0) net-scp (~> 1.1) @@ -303,7 +304,7 @@ GEM thor (0.19.1) timers (4.0.4) hitimes - train (0.21.1) + train (0.22.0) docker-api (~> 1.26) json (>= 1.8, < 3.0) mixlib-shellout (~> 2.0) @@ -313,12 +314,12 @@ GEM winrm-fs (~> 1.0) treetop (1.6.8) polyglot (~> 0.3) - unicode-display_width (1.1.1) + unicode-display_width (1.1.3) uuidtools (2.1.5) varia_model (0.6.0) buff-extensions (~> 2.0) hashie (>= 2.0.2, < 4.0.0) - winrm (2.1.0) + winrm (2.1.2) builder (>= 2.1.2) erubis (~> 2.7) gssapi (~> 1.2) @@ -327,7 +328,7 @@ GEM logging (>= 1.6.1, < 3.0) nori (~> 2.0) rubyntlm (~> 0.6.0, >= 0.6.1) - winrm-fs (1.0.0) + winrm-fs (1.0.1) erubis (~> 2.7) logging (>= 1.6.1, < 3.0) rubyzip (~> 1.1) @@ -355,4 +356,4 @@ RUBY VERSION ruby 2.2.3p173 BUNDLED WITH - 1.12.5 + 1.13.6