From edfc1a736376c6366ea9ad850c3cced7b21a381c Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 30 May 2024 22:33:00 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-7164639
---
 Gemfile      |  2 +-
 Gemfile.lock | 70 ++++++++++++++++++++++++++++------------------------
 2 files changed, 39 insertions(+), 33 deletions(-)

diff --git a/Gemfile b/Gemfile
index d2eec93..111f054 100644
--- a/Gemfile
+++ b/Gemfile
@@ -12,7 +12,7 @@ gem 'multi_xml', '>= 0.5.2'
 group :development do
   gem 'bundler', '>= 1.0.0'
   gem 'coveralls', require: false
-  gem 'jeweler', '>= 1.8.4'
+  gem 'jeweler', '>= 2.3.6'
   gem 'rdoc', '~> 3.12'
   gem 'shoulda', '>= 0'
   gem 'simplecov', '>= 0'
diff --git a/Gemfile.lock b/Gemfile.lock
index aba0e8b..bfe08a5 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -6,9 +6,9 @@ GEM
       i18n (~> 0.7)
       minitest (~> 5.1)
       tzinfo (~> 1.1)
-    addressable (2.5.0)
-      public_suffix (~> 2.0, >= 2.0.2)
-    builder (3.2.3)
+    addressable (2.4.0)
+    base64 (0.2.0)
+    builder (3.2.4)
     concurrent-ruby (1.0.5)
     coveralls (0.8.19)
       json (>= 1.8, < 3)
@@ -23,52 +23,57 @@ GEM
     docile (1.1.5)
     faraday (0.9.2)
       multipart-post (>= 1.2, < 3)
-    git (1.3.0)
-    github_api (0.11.3)
-      addressable (~> 2.3)
-      descendants_tracker (~> 0.0.1)
+    git (1.11.0)
+      rchardet (~> 1.8)
+    github_api (0.16.0)
+      addressable (~> 2.4.0)
+      descendants_tracker (~> 0.0.4)
       faraday (~> 0.8, < 0.10)
-      hashie (>= 1.2)
-      multi_json (>= 1.7.5, < 2.0)
-      nokogiri (~> 1.6.0)
-      oauth2
+      hashie (>= 3.4)
+      mime-types (>= 1.16, < 3.0)
+      oauth2 (~> 1.0)
     hashdiff (0.3.2)
-    hashie (3.5.5)
-    highline (1.7.8)
+    hashie (5.0.0)
+    highline (2.1.0)
     httparty (0.14.0)
       multi_xml (>= 0.5.2)
     i18n (0.8.1)
-    jeweler (2.3.3)
+    jeweler (2.3.9)
       builder
-      bundler (>= 1.0)
+      bundler
       git (>= 1.2.5)
-      github_api (~> 0.11.0)
+      github_api (~> 0.16.0)
       highline (>= 1.6.15)
       nokogiri (>= 1.5.10)
-      psych (~> 2.2)
+      psych
       rake
       rdoc
       semver2
     json (1.8.6)
-    jwt (1.5.6)
-    mini_portile2 (2.1.0)
+    jwt (2.8.1)
+      base64
+    mime-types (2.99.3)
+    mini_portile2 (2.8.6)
     minitest (5.10.1)
-    multi_json (1.12.1)
+    multi_json (1.15.0)
     multi_xml (0.6.0)
-    multipart-post (2.0.0)
-    nokogiri (1.6.8.1)
-      mini_portile2 (~> 2.1.0)
-    oauth2 (1.3.1)
-      faraday (>= 0.8, < 0.12)
-      jwt (~> 1.0)
+    multipart-post (2.4.1)
+    nokogiri (1.15.6)
+      mini_portile2 (~> 2.8.2)
+      racc (~> 1.4)
+    oauth2 (1.4.8)
+      faraday (>= 0.8, < 3.0)
+      jwt (>= 1.0, < 3.0)
       multi_json (~> 1.3)
       multi_xml (~> 0.5)
       rack (>= 1.2, < 3)
     power_assert (1.1.3)
-    psych (2.2.4)
-    public_suffix (2.0.5)
-    rack (2.0.1)
-    rake (12.0.0)
+    psych (5.1.2)
+      stringio
+    racc (1.8.0)
+    rack (2.2.9)
+    rake (13.2.1)
+    rchardet (1.8.0)
     rdoc (3.12.2)
       json (~> 1.4)
     safe_yaml (1.0.4)
@@ -84,6 +89,7 @@ GEM
       json (>= 1.8, < 3)
       simplecov-html (~> 0.10.0)
     simplecov-html (0.10.0)
+    stringio (3.1.0)
     term-ansicolor (1.4.0)
       tins (~> 1.0)
     test-unit (3.2.8)
@@ -105,7 +111,7 @@ DEPENDENCIES
   bundler (>= 1.0.0)
   coveralls
   httparty
-  jeweler (>= 1.8.4)
+  jeweler (>= 2.3.6)
   json (>= 1.7.7)
   multi_xml (>= 0.5.2)
   rdoc (~> 3.12)
@@ -115,4 +121,4 @@ DEPENDENCIES
   webmock
 
 BUNDLED WITH
-   1.14.3
+   1.17.3