impress/deploy/files/initial-placeholder/Gemfile.lock at 4888a9dcbeb3cc078772d3f538115d9cabf2ec37 - dice/impress - OpenNeo Code

dice/impress

forked from OpenNeo/impress

Matchu 06258b1dd5 Upgrade puma in the initial-placeholder app, to satisfy Dependabot

So, Dependabot correctly reported that this version of puma is
vulernable, which I fixed in the main app already—but I didn't notice we
also use that version in this cute tiny placeholder app we use early in
the deployment process.

There's not a real security need to upgrade this, as this placeholder
app has no access to useful data when it is run, but I think it's better
to resolve this by fixing it than by silencing Dependabot! May as well!

2023-10-26 14:48:21 -07:00

16 lines

210 B

Text

Raw Blame History

 GEM
   remote: https://rubygems.org/
   specs:
     nio4r (2.5.9)
     puma (6.4.0)
       nio4r (~> 2.0)
 PLATFORMS
   x86_64-darwin-21
   x86_64-linux
 DEPENDENCIES
   puma (~> 6.3, >= 6.3.1)
 BUNDLED WITH
 .4.18