From 0c11d36f90174f63917c868b3ccec5d9c321fd34 Mon Sep 17 00:00:00 2001 From: snyk-test Date: Wed, 14 Aug 2019 07:24:44 +0000 Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-459107 --- Gemfile | 2 +- Gemfile.lock | 238 ++++++++++++++++++++++++++++++++++++++++++++------- 2 files changed, 206 insertions(+), 34 deletions(-) mode change 100755 => 100644 Gemfile diff --git a/Gemfile b/Gemfile old mode 100755 new mode 100644 index cad6326..927a4e9 --- a/Gemfile +++ b/Gemfile @@ -8,6 +8,6 @@ gem 'puppet', ENV['PUPPET_VERSION'] || '~> 3.2.0' gem 'rake' gem 'puppet-lint' gem 'rspec-puppet' -gem 'rspec-system-puppet' +gem 'rspec-system-puppet', '>= 2.2.1' gem 'puppetlabs_spec_helper' gem 'puppet-syntax' diff --git a/Gemfile.lock b/Gemfile.lock index 89eb329..c113fd8 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -1,34 +1,191 @@ GEM remote: https://rubygems.org/ specs: - builder (3.2.2) - diff-lcs (1.2.5) - excon (0.28.0) + CFPropertyList (2.3.6) + builder (3.2.3) + diff-lcs (1.3) + domain_name (0.5.20190701) + unf (>= 0.0.5, < 1.0.0) + dry-inflector (0.1.2) + excon (0.66.0) facter (1.7.3) - fog (1.18.0) - builder - excon (~> 0.28.0) - formatador (~> 0.2.0) + fission (0.5.0) + CFPropertyList (~> 2.2) + fog (1.42.1) + fog-aliyun (>= 0.1.0) + fog-atmos + fog-aws (>= 0.6.0) + fog-brightbox (~> 0.4) + fog-cloudatcost (~> 0.1.0) + fog-core (~> 1.45) + fog-digitalocean (>= 0.3.0) + fog-dnsimple (~> 1.0) + fog-dynect (~> 0.0.2) + fog-ecloud (~> 0.1) + fog-google (<= 0.1.0) + fog-internet-archive + fog-joyent + fog-json + fog-local + fog-openstack + fog-ovirt + fog-powerdns (>= 0.1.1) + fog-profitbricks + fog-rackspace + fog-radosgw (>= 0.0.2) + fog-riakcs + fog-sakuracloud (>= 0.0.4) + fog-serverlove + fog-softlayer + fog-storm_on_demand + fog-terremark + fog-vmfusion + fog-voxel + fog-vsphere (>= 0.4.0) + fog-xenserver + fog-xml (~> 0.1.1) + ipaddress (~> 0.5) + json (~> 2.0) + fog-aliyun (0.3.4) + fog-core + fog-json + ipaddress (~> 0.8) + xml-simple (~> 1.1) + fog-atmos (0.1.0) + fog-core + fog-xml + fog-aws (2.0.1) + fog-core (~> 1.38) + fog-json (~> 1.0) + fog-xml (~> 0.1) + ipaddress (~> 0.8) + fog-brightbox (0.16.1) + dry-inflector + fog-core + fog-json mime-types - multi_json (~> 1.0) - net-scp (~> 1.1) - net-ssh (>= 2.1.3) - nokogiri (~> 1.5) - ruby-hmac - formatador (0.2.4) + fog-cloudatcost (0.1.2) + fog-core (~> 1.36) + fog-json (~> 1.0) + fog-xml (~> 0.1) + ipaddress (~> 0.8) + fog-core (1.45.0) + builder + excon (~> 0.58) + formatador (~> 0.2) + fog-digitalocean (0.4.0) + fog-core + fog-json + fog-xml + ipaddress (>= 0.5) + fog-dnsimple (1.0.0) + fog-core (~> 1.38) + fog-json (~> 1.0) + fog-dynect (0.0.3) + fog-core + fog-json + fog-xml + fog-ecloud (0.3.0) + fog-core + fog-xml + fog-google (0.1.0) + fog-core + fog-json + fog-xml + fog-internet-archive (0.0.1) + fog-core + fog-json + fog-xml + fog-joyent (0.0.1) + fog-core (~> 1.42) + fog-json (>= 1.0) + fog-json (1.2.0) + fog-core + multi_json (~> 1.10) + fog-local (0.6.0) + fog-core (>= 1.27, < 3.0) + fog-openstack (0.3.10) + fog-core (>= 1.45, <= 2.1.0) + fog-json (>= 1.0) + ipaddress (>= 0.8) + fog-ovirt (1.2.0) + fog-core + fog-json + fog-xml + ovirt-engine-sdk (>= 4.1.3) + rbovirt (~> 0.1.5) + fog-powerdns (0.2.0) + fog-core + fog-json + fog-xml + fog-profitbricks (4.1.1) + fog-core (~> 1.42) + fog-json (~> 1.0) + fog-rackspace (0.1.6) + fog-core (>= 1.35) + fog-json (>= 1.0) + fog-xml (>= 0.1) + ipaddress (>= 0.8) + fog-radosgw (0.0.5) + fog-core (>= 1.21.0) + fog-json + fog-xml (>= 0.0.1) + fog-riakcs (0.1.0) + fog-core + fog-json + fog-xml + fog-sakuracloud (1.7.5) + fog-core + fog-json + fog-serverlove (0.1.2) + fog-core + fog-json + fog-softlayer (1.1.4) + fog-core + fog-json + fog-storm_on_demand (0.1.1) + fog-core + fog-json + fog-terremark (0.1.0) + fog-core + fog-xml + fog-vmfusion (0.1.0) + fission + fog-core + fog-voxel (0.1.0) + fog-core + fog-xml + fog-vsphere (3.2.0) + fog-core + rbvmomi (>= 1.9, < 3) + fog-xenserver (1.0.0) + fog-core + fog-xml + xmlrpc + fog-xml (0.1.3) + fog-core + nokogiri (>= 1.5.11, < 2.0.0) + formatador (0.2.5) hiera (1.3.0) json_pure + http-cookie (1.0.3) + domain_name (~> 0.5) + ipaddress (0.8.3) + json (2.2.0) json_pure (1.8.1) kwalify (0.7.2) metaclass (0.0.1) - mime-types (1.25) + mime-types (1.25.1) mocha (0.14.0) metaclass (~> 0.0.1) - multi_json (1.8.2) - net-scp (1.1.2) + multi_json (1.13.1) + net-scp (1.2.1) net-ssh (>= 2.6.5) - net-ssh (2.7.0) - nokogiri (1.5.10) + net-ssh (2.9.4) + netrc (0.11.0) + nokogiri (1.5.11) + ovirt-engine-sdk (4.3.0) + json (>= 1, < 3) puppet (3.2.4) facter (~> 1.6) hiera (~> 1.0) @@ -43,19 +200,27 @@ GEM rspec (>= 2.9.0) rspec-puppet (>= 0.1.1) rake (10.1.0) - rbvmomi (1.6.0) - builder - nokogiri (>= 1.4.1) - trollop + rbovirt (0.1.7) + nokogiri + rest-client (> 1.7.0) + rbvmomi (1.13.0) + builder (~> 3.0) + json (>= 1.8) + nokogiri (~> 1.5) + trollop (~> 2.1) + rest-client (2.0.2) + http-cookie (>= 1.0.2, < 2.0) + mime-types (>= 1.16, < 4.0) + netrc (~> 0.8) rgen (0.6.6) - rspec (2.14.1) - rspec-core (~> 2.14.0) - rspec-expectations (~> 2.14.0) - rspec-mocks (~> 2.14.0) - rspec-core (2.14.7) - rspec-expectations (2.14.4) + rspec (2.99.0) + rspec-core (~> 2.99.0) + rspec-expectations (~> 2.99.0) + rspec-mocks (~> 2.99.0) + rspec-core (2.99.2) + rspec-expectations (2.99.2) diff-lcs (>= 1.1.3, < 2.0) - rspec-mocks (2.14.4) + rspec-mocks (2.99.4) rspec-puppet (0.1.6) rspec rspec-system (2.8.0) @@ -70,9 +235,13 @@ GEM systemu (~> 2.5) rspec-system-puppet (2.2.1) rspec-system (~> 2.0) - ruby-hmac (0.4.0) - systemu (2.5.2) - trollop (2.0) + systemu (2.6.5) + trollop (2.9.9) + unf (0.1.4) + unf_ext + unf_ext (0.0.7.6) + xml-simple (1.1.5) + xmlrpc (0.3.0) PLATFORMS ruby @@ -84,4 +253,7 @@ DEPENDENCIES puppetlabs_spec_helper rake rspec-puppet - rspec-system-puppet + rspec-system-puppet (>= 2.2.1) + +BUNDLED WITH + 1.17.3