From 37072eb165c0074502f332c7823ee19446398da3 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 7 Jul 2021 20:24:42 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-ADDRESSABLE-1316242
---
 Gemfile      |  2 +-
 Gemfile.lock | 16 ++++++++++------
 2 files changed, 11 insertions(+), 7 deletions(-)

diff --git a/Gemfile b/Gemfile
index 25efdd9..64c8345 100644
--- a/Gemfile
+++ b/Gemfile
@@ -16,7 +16,7 @@ group :test do
   gem 'terminal-notifier-guard'
   gem 'rb-fsevent', '~> 0.9.1'
   gem 'rack-test'
-  gem 'webmock'
+  gem 'webmock', '>= 1.18.0'
   gem 'vcr'
   gem 'pry-byebug'
 end
diff --git a/Gemfile.lock b/Gemfile.lock
index 6726a43..fa699e7 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -16,7 +16,8 @@ GEM
       minitest (~> 5.1)
       thread_safe (~> 0.1)
       tzinfo (~> 1.1)
-    addressable (2.3.6)
+    addressable (2.8.0)
+      public_suffix (>= 2.0.2, < 5.0)
     aws-eventstream (1.0.3)
     aws-partitions (1.202.0)
     aws-sdk (3.0.1)
@@ -786,8 +787,8 @@ GEM
       timers (~> 1.1.0)
     coderay (1.1.0)
     columnize (0.8.9)
-    crack (0.4.2)
-      safe_yaml (~> 1.0.0)
+    crack (0.4.5)
+      rexml
     debugger-linecache (1.2.0)
     diff-lcs (1.2.5)
     dotenv (0.11.1)
@@ -808,6 +809,7 @@ GEM
     guard-rspec (4.3.1)
       guard (~> 2.1)
       rspec (>= 2.14, < 4.0)
+    hashdiff (1.0.1)
     httparty (0.13.1)
       json (~> 1.8)
       multi_xml (>= 0.5.2)
@@ -845,6 +847,7 @@ GEM
     pry-byebug (1.3.3)
       byebug (~> 2.7)
       pry (~> 0.10)
+    public_suffix (4.0.6)
     rack (1.5.2)
     rack-protection (1.5.3)
       rack
@@ -855,6 +858,7 @@ GEM
     rb-fsevent (0.9.4)
     rb-inotify (0.9.5)
       ffi (>= 0.5.0)
+    rexml (3.2.5)
     rspec (3.0.0)
       rspec-core (~> 3.0.0)
       rspec-expectations (~> 3.0.0)
@@ -867,7 +871,6 @@ GEM
     rspec-mocks (3.0.4)
       rspec-support (~> 3.0.0)
     rspec-support (3.0.4)
-    safe_yaml (1.0.3)
     sinatra (1.4.5)
       rack (~> 1.4)
       rack-protection (~> 1.4)
@@ -892,9 +895,10 @@ GEM
       rack
       raindrops (~> 0.7)
     vcr (2.9.2)
-    webmock (1.18.0)
+    webmock (3.13.0)
       addressable (>= 2.3.6)
       crack (>= 0.3.2)
+      hashdiff (>= 0.4.0, < 2.0.0)
 
 PLATFORMS
   java
@@ -921,7 +925,7 @@ DEPENDENCIES
   timecop
   unicorn
   vcr
-  webmock
+  webmock (>= 1.18.0)
 
 BUNDLED WITH
    1.17.3