From a1efc60f94ae5f6ea3cd601f04aa819818ca9b6c Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 9 Mar 2023 22:16:44 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-RACK-3356639
---
 Gemfile      |  4 ++--
 Gemfile.lock | 37 ++++++++++++++++++++++---------------
 2 files changed, 24 insertions(+), 17 deletions(-)

diff --git a/Gemfile b/Gemfile
index aca39a6b..83cf62de 100644
--- a/Gemfile
+++ b/Gemfile
@@ -1,6 +1,6 @@
 source 'https://rubygems.org'
 
-gem 'sinatra', '~> 1.0'
+gem 'sinatra', '~> 2.0', '>= 2.0.0'
 gem 'shotgun', :group => :reloadable
-gem 'thin', :group => :reloadable
+gem 'thin', '>= 1.7.0', :group => :reloadable
 gem 'rake'
diff --git a/Gemfile.lock b/Gemfile.lock
index 8ced3297..7a476779 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -1,23 +1,27 @@
 GEM
   remote: https://rubygems.org/
   specs:
-    daemons (1.1.9)
-    eventmachine (1.0.4)
-    rack (1.6.0)
-    rack-protection (1.5.3)
+    daemons (1.4.1)
+    eventmachine (1.2.7)
+    mustermann (2.0.2)
+      ruby2_keywords (~> 0.0.1)
+    rack (2.2.6.3)
+    rack-protection (2.2.4)
       rack
     rake (10.4.2)
-    shotgun (0.9)
+    ruby2_keywords (0.0.5)
+    shotgun (0.9.2)
       rack (>= 1.0)
-    sinatra (1.4.5)
-      rack (~> 1.4)
-      rack-protection (~> 1.4)
-      tilt (~> 1.3, >= 1.3.4)
-    thin (1.6.3)
+    sinatra (2.2.4)
+      mustermann (~> 2.0)
+      rack (~> 2.2)
+      rack-protection (= 2.2.4)
+      tilt (~> 2.0)
+    thin (1.8.1)
       daemons (~> 1.0, >= 1.0.9)
-      eventmachine (~> 1.0)
-      rack (~> 1.0)
-    tilt (1.4.1)
+      eventmachine (~> 1.0, >= 1.0.4)
+      rack (>= 1, < 3)
+    tilt (2.1.0)
 
 PLATFORMS
   ruby
@@ -25,5 +29,8 @@ PLATFORMS
 DEPENDENCIES
   rake
   shotgun
-  sinatra (~> 1.0)
-  thin
+  sinatra (~> 2.0, >= 2.0.0)
+  thin (>= 1.7.0)
+
+BUNDLED WITH
+   2.1.4