From 2542df256660036d230af818331d7b63bf5d7bbd Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 5 Apr 2023 02:49:48 +0000
Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-RACK-1061917
- https://snyk.io/vuln/SNYK-RUBY-RACK-20230
- https://snyk.io/vuln/SNYK-RUBY-RACK-20400
- https://snyk.io/vuln/SNYK-RUBY-RACK-2848599
- https://snyk.io/vuln/SNYK-RUBY-RACK-2848600
- https://snyk.io/vuln/SNYK-RUBY-RACK-3237240
- https://snyk.io/vuln/SNYK-RUBY-RACK-3356639
- https://snyk.io/vuln/SNYK-RUBY-RACK-538324
- https://snyk.io/vuln/SNYK-RUBY-RACK-569066
- https://snyk.io/vuln/SNYK-RUBY-RACK-572377
- https://snyk.io/vuln/SNYK-RUBY-RACK-72567
- https://snyk.io/vuln/SNYK-RUBY-RACKPROTECTION-20394
- https://snyk.io/vuln/SNYK-RUBY-RACKPROTECTION-20395
- https://snyk.io/vuln/SNYK-RUBY-RACKPROTECTION-22019
- https://snyk.io/vuln/SNYK-RUBY-RAKE-552000
- https://snyk.io/vuln/SNYK-RUBY-SINATRA-20469
- https://snyk.io/vuln/SNYK-RUBY-SINATRA-20488
- https://snyk.io/vuln/SNYK-RUBY-SINATRA-22027
- https://snyk.io/vuln/SNYK-RUBY-SINATRA-2806372
- https://snyk.io/vuln/SNYK-RUBY-SINATRA-3150405
---
 Gemfile      |  6 +++---
 Gemfile.lock | 41 ++++++++++++++++++++++++-----------------
 2 files changed, 27 insertions(+), 20 deletions(-)

diff --git a/Gemfile b/Gemfile
index aca39a6b..27910fcf 100644
--- a/Gemfile
+++ b/Gemfile
@@ -1,6 +1,6 @@
 source 'https://rubygems.org'
 
-gem 'sinatra', '~> 1.0'
+gem 'sinatra', '~> 2.2', '>= 2.2.3'
 gem 'shotgun', :group => :reloadable
-gem 'thin', :group => :reloadable
-gem 'rake'
+gem 'thin', '>= 1.7.0', :group => :reloadable
+gem 'rake', '>= 12.3.3'
diff --git a/Gemfile.lock b/Gemfile.lock
index 8ced3297..5c3990ec 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -1,29 +1,36 @@
 GEM
   remote: https://rubygems.org/
   specs:
-    daemons (1.1.9)
-    eventmachine (1.0.4)
-    rack (1.6.0)
-    rack-protection (1.5.3)
+    daemons (1.4.1)
+    eventmachine (1.2.7)
+    mustermann (2.0.2)
+      ruby2_keywords (~> 0.0.1)
+    rack (2.2.6.4)
+    rack-protection (2.2.4)
       rack
-    rake (10.4.2)
-    shotgun (0.9)
+    rake (13.0.6)
+    ruby2_keywords (0.0.5)
+    shotgun (0.9.2)
       rack (>= 1.0)
-    sinatra (1.4.5)
-      rack (~> 1.4)
-      rack-protection (~> 1.4)
-      tilt (~> 1.3, >= 1.3.4)
-    thin (1.6.3)
+    sinatra (2.2.4)
+      mustermann (~> 2.0)
+      rack (~> 2.2)
+      rack-protection (= 2.2.4)
+      tilt (~> 2.0)
+    thin (1.8.2)
       daemons (~> 1.0, >= 1.0.9)
-      eventmachine (~> 1.0)
-      rack (~> 1.0)
-    tilt (1.4.1)
+      eventmachine (~> 1.0, >= 1.0.4)
+      rack (>= 1, < 3)
+    tilt (2.1.0)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
-  rake
+  rake (>= 12.3.3)
   shotgun
-  sinatra (~> 1.0)
-  thin
+  sinatra (~> 2.2, >= 2.2.3)
+  thin (>= 1.7.0)
+
+BUNDLED WITH
+   2.1.4