From 256c0e3b5b9d4d4befd0fd21594eb1e5d537e562 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 14 Feb 2026 13:34:35 +0000 Subject: [PATCH] fix: pkgs/tools/misc/t/Gemfile & pkgs/tools/misc/t/Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-FARADAY-15253521 --- pkgs/tools/misc/t/Gemfile | 2 +- pkgs/tools/misc/t/Gemfile.lock | 108 +++++++++++++++++++++------------ 2 files changed, 71 insertions(+), 39 deletions(-) diff --git a/pkgs/tools/misc/t/Gemfile b/pkgs/tools/misc/t/Gemfile index 3a31c54c5a780..35e41be641ea8 100644 --- a/pkgs/tools/misc/t/Gemfile +++ b/pkgs/tools/misc/t/Gemfile @@ -1,3 +1,3 @@ source "https://rubygems.org" -gem 't' +gem 't', '>= 3.0.0' diff --git a/pkgs/tools/misc/t/Gemfile.lock b/pkgs/tools/misc/t/Gemfile.lock index d85f5a1a75260..a52ff7b74f3ac 100644 --- a/pkgs/tools/misc/t/Gemfile.lock +++ b/pkgs/tools/misc/t/Gemfile.lock @@ -1,52 +1,84 @@ GEM remote: https://rubygems.org/ specs: - addressable (2.3.7) - buftok (0.2.0) - equalizer (0.0.9) - faraday (0.9.1) - multipart-post (>= 1.2, < 3) - geokit (1.9.0) - multi_json (>= 1.3.2) - htmlentities (4.3.3) - http (0.6.3) - http_parser.rb (~> 0.6.0) - http_parser.rb (0.6.0) - json (1.8.2) - launchy (2.4.3) - addressable (~> 2.3) + addressable (2.8.8) + public_suffix (>= 2.0.2, < 8.0) + base64 (0.3.0) + buftok (0.3.0) + childprocess (5.1.0) + logger (~> 1.5) + domain_name (0.6.20240107) + equalizer (0.0.11) + ffi (1.17.3) + ffi-compiler (1.3.2) + ffi (>= 1.15.5) + rake + geokit (1.14.0) + hashie (5.1.0) + logger + htmlentities (4.4.2) + http (5.3.1) + addressable (~> 2.8) + http-cookie (~> 1.0) + http-form_data (~> 2.2) + llhttp-ffi (~> 0.5.0) + http-cookie (1.1.0) + domain_name (~> 0.5) + http-form_data (2.3.0) + launchy (3.1.1) + addressable (~> 2.8) + childprocess (~> 5.0) + logger (~> 1.6) + llhttp-ffi (0.5.1) + ffi-compiler (~> 1.0) + rake (~> 13.0) + logger (1.7.0) memoizable (0.4.2) thread_safe (~> 0.3, >= 0.3.1) - multi_json (1.11.0) - multipart-post (2.0.0) - naught (1.0.0) - oauth (0.4.7) - retryable (2.0.1) + multipart-post (2.4.1) + naught (1.1.0) + oauth (1.1.3) + base64 (~> 0.1) + oauth-tty (~> 1.0, >= 1.0.6) + snaky_hash (~> 2.0) + version_gem (~> 1.1, >= 1.1.9) + oauth-tty (1.0.6) + version_gem (~> 1.1, >= 1.1.9) + public_suffix (6.0.2) + rake (13.3.1) + retryable (3.0.5) simple_oauth (0.3.1) - t (2.9.0) - geokit (>= 1.8.3, < 2) + snaky_hash (2.0.3) + hashie (>= 0.1.0, < 6) + version_gem (>= 1.1.8, < 3) + t (4.1.1) + geokit (~> 1.14) htmlentities (~> 4.3) - launchy (~> 2.4) - oauth (~> 0.4.7) - retryable (~> 2.0) - thor (>= 0.19.1, < 2) - twitter (~> 5.13) - thor (0.19.1) - thread_safe (0.3.5) - twitter (5.14.0) - addressable (~> 2.3) - buftok (~> 0.2.0) - equalizer (~> 0.0.9) - faraday (~> 0.9.0) - http (~> 0.6.0) - http_parser.rb (~> 0.6.0) - json (~> 1.8) + launchy (~> 3.0) + oauth (~> 1.1) + retryable (~> 3.0) + thor (~> 1.3) + twitter (~> 8.1) + thor (1.5.0) + thread_safe (0.3.6) + twitter (8.1.0) + addressable (~> 2.8) + buftok (~> 0.3.0) + equalizer (~> 0.0.11) + http (~> 5.2) + http-form_data (~> 2.3) + llhttp-ffi (~> 0.5.0) memoizable (~> 0.4.0) - naught (~> 1.0) + multipart-post (~> 2.4) + naught (~> 1.1) simple_oauth (~> 0.3.0) + version_gem (1.1.9) PLATFORMS ruby DEPENDENCIES - t + t (>= 3.0.0) + +BUNDLED WITH + 2.3.27