Update Rails to 6.0.3.2.
Fixes CVE-2020-8185: Untrusted users able to run pending migrations in production.
This commit is contained in:
evazion
102
Gemfile.lock
102
Gemfile.lock
@@ -8,63 +8,63 @@ GIT
|
|||||||
GEM
|
GEM
|
||||||
remote: https://rubygems.org/
|
remote: https://rubygems.org/
|
||||||
specs:
|
specs:
|
||||||
actioncable (6.0.3.1)
|
actioncable (6.0.3.2)
|
||||||
actionpack (= 6.0.3.1)
|
actionpack (= 6.0.3.2)
|
||||||
nio4r (~> 2.0)
|
nio4r (~> 2.0)
|
||||||
websocket-driver (>= 0.6.1)
|
websocket-driver (>= 0.6.1)
|
||||||
actionmailbox (6.0.3.1)
|
actionmailbox (6.0.3.2)
|
||||||
actionpack (= 6.0.3.1)
|
actionpack (= 6.0.3.2)
|
||||||
activejob (= 6.0.3.1)
|
activejob (= 6.0.3.2)
|
||||||
activerecord (= 6.0.3.1)
|
activerecord (= 6.0.3.2)
|
||||||
activestorage (= 6.0.3.1)
|
activestorage (= 6.0.3.2)
|
||||||
activesupport (= 6.0.3.1)
|
activesupport (= 6.0.3.2)
|
||||||
mail (>= 2.7.1)
|
mail (>= 2.7.1)
|
||||||
actionmailer (6.0.3.1)
|
actionmailer (6.0.3.2)
|
||||||
actionpack (= 6.0.3.1)
|
actionpack (= 6.0.3.2)
|
||||||
actionview (= 6.0.3.1)
|
actionview (= 6.0.3.2)
|
||||||
activejob (= 6.0.3.1)
|
activejob (= 6.0.3.2)
|
||||||
mail (~> 2.5, >= 2.5.4)
|
mail (~> 2.5, >= 2.5.4)
|
||||||
rails-dom-testing (~> 2.0)
|
rails-dom-testing (~> 2.0)
|
||||||
actionpack (6.0.3.1)
|
actionpack (6.0.3.2)
|
||||||
actionview (= 6.0.3.1)
|
actionview (= 6.0.3.2)
|
||||||
activesupport (= 6.0.3.1)
|
activesupport (= 6.0.3.2)
|
||||||
rack (~> 2.0, >= 2.0.8)
|
rack (~> 2.0, >= 2.0.8)
|
||||||
rack-test (>= 0.6.3)
|
rack-test (>= 0.6.3)
|
||||||
rails-dom-testing (~> 2.0)
|
rails-dom-testing (~> 2.0)
|
||||||
rails-html-sanitizer (~> 1.0, >= 1.2.0)
|
rails-html-sanitizer (~> 1.0, >= 1.2.0)
|
||||||
actiontext (6.0.3.1)
|
actiontext (6.0.3.2)
|
||||||
actionpack (= 6.0.3.1)
|
actionpack (= 6.0.3.2)
|
||||||
activerecord (= 6.0.3.1)
|
activerecord (= 6.0.3.2)
|
||||||
activestorage (= 6.0.3.1)
|
activestorage (= 6.0.3.2)
|
||||||
activesupport (= 6.0.3.1)
|
activesupport (= 6.0.3.2)
|
||||||
nokogiri (>= 1.8.5)
|
nokogiri (>= 1.8.5)
|
||||||
actionview (6.0.3.1)
|
actionview (6.0.3.2)
|
||||||
activesupport (= 6.0.3.1)
|
activesupport (= 6.0.3.2)
|
||||||
builder (~> 3.1)
|
builder (~> 3.1)
|
||||||
erubi (~> 1.4)
|
erubi (~> 1.4)
|
||||||
rails-dom-testing (~> 2.0)
|
rails-dom-testing (~> 2.0)
|
||||||
rails-html-sanitizer (~> 1.1, >= 1.2.0)
|
rails-html-sanitizer (~> 1.1, >= 1.2.0)
|
||||||
activejob (6.0.3.1)
|
activejob (6.0.3.2)
|
||||||
activesupport (= 6.0.3.1)
|
activesupport (= 6.0.3.2)
|
||||||
globalid (>= 0.3.6)
|
globalid (>= 0.3.6)
|
||||||
activemodel (6.0.3.1)
|
activemodel (6.0.3.2)
|
||||||
activesupport (= 6.0.3.1)
|
activesupport (= 6.0.3.2)
|
||||||
activemodel-serializers-xml (1.0.2)
|
activemodel-serializers-xml (1.0.2)
|
||||||
activemodel (> 5.x)
|
activemodel (> 5.x)
|
||||||
activesupport (> 5.x)
|
activesupport (> 5.x)
|
||||||
builder (~> 3.1)
|
builder (~> 3.1)
|
||||||
activerecord (6.0.3.1)
|
activerecord (6.0.3.2)
|
||||||
activemodel (= 6.0.3.1)
|
activemodel (= 6.0.3.2)
|
||||||
activesupport (= 6.0.3.1)
|
activesupport (= 6.0.3.2)
|
||||||
activerecord-hierarchical_query (1.2.3)
|
activerecord-hierarchical_query (1.2.3)
|
||||||
activerecord (>= 5.0, < 6.1)
|
activerecord (>= 5.0, < 6.1)
|
||||||
pg (>= 0.21, < 1.3)
|
pg (>= 0.21, < 1.3)
|
||||||
activestorage (6.0.3.1)
|
activestorage (6.0.3.2)
|
||||||
actionpack (= 6.0.3.1)
|
actionpack (= 6.0.3.2)
|
||||||
activejob (= 6.0.3.1)
|
activejob (= 6.0.3.2)
|
||||||
activerecord (= 6.0.3.1)
|
activerecord (= 6.0.3.2)
|
||||||
marcel (~> 0.3.1)
|
marcel (~> 0.3.1)
|
||||||
activesupport (6.0.3.1)
|
activesupport (6.0.3.2)
|
||||||
concurrent-ruby (~> 1.0, >= 1.0.2)
|
concurrent-ruby (~> 1.0, >= 1.0.2)
|
||||||
i18n (>= 0.7, < 2)
|
i18n (>= 0.7, < 2)
|
||||||
minitest (~> 5.1)
|
minitest (~> 5.1)
|
||||||
@@ -184,7 +184,7 @@ GEM
|
|||||||
listen (3.2.1)
|
listen (3.2.1)
|
||||||
rb-fsevent (~> 0.10, >= 0.10.3)
|
rb-fsevent (~> 0.10, >= 0.10.3)
|
||||||
rb-inotify (~> 0.9, >= 0.9.10)
|
rb-inotify (~> 0.9, >= 0.9.10)
|
||||||
loofah (2.5.0)
|
loofah (2.6.0)
|
||||||
crass (~> 1.0.2)
|
crass (~> 1.0.2)
|
||||||
nokogiri (>= 1.5.9)
|
nokogiri (>= 1.5.9)
|
||||||
mail (2.7.1)
|
mail (2.7.1)
|
||||||
@@ -280,29 +280,29 @@ GEM
|
|||||||
rack
|
rack
|
||||||
rack-test (1.1.0)
|
rack-test (1.1.0)
|
||||||
rack (>= 1.0, < 3)
|
rack (>= 1.0, < 3)
|
||||||
rails (6.0.3.1)
|
rails (6.0.3.2)
|
||||||
actioncable (= 6.0.3.1)
|
actioncable (= 6.0.3.2)
|
||||||
actionmailbox (= 6.0.3.1)
|
actionmailbox (= 6.0.3.2)
|
||||||
actionmailer (= 6.0.3.1)
|
actionmailer (= 6.0.3.2)
|
||||||
actionpack (= 6.0.3.1)
|
actionpack (= 6.0.3.2)
|
||||||
actiontext (= 6.0.3.1)
|
actiontext (= 6.0.3.2)
|
||||||
actionview (= 6.0.3.1)
|
actionview (= 6.0.3.2)
|
||||||
activejob (= 6.0.3.1)
|
activejob (= 6.0.3.2)
|
||||||
activemodel (= 6.0.3.1)
|
activemodel (= 6.0.3.2)
|
||||||
activerecord (= 6.0.3.1)
|
activerecord (= 6.0.3.2)
|
||||||
activestorage (= 6.0.3.1)
|
activestorage (= 6.0.3.2)
|
||||||
activesupport (= 6.0.3.1)
|
activesupport (= 6.0.3.2)
|
||||||
bundler (>= 1.3.0)
|
bundler (>= 1.3.0)
|
||||||
railties (= 6.0.3.1)
|
railties (= 6.0.3.2)
|
||||||
sprockets-rails (>= 2.0.0)
|
sprockets-rails (>= 2.0.0)
|
||||||
rails-dom-testing (2.0.3)
|
rails-dom-testing (2.0.3)
|
||||||
activesupport (>= 4.2.0)
|
activesupport (>= 4.2.0)
|
||||||
nokogiri (>= 1.6)
|
nokogiri (>= 1.6)
|
||||||
rails-html-sanitizer (1.3.0)
|
rails-html-sanitizer (1.3.0)
|
||||||
loofah (~> 2.3)
|
loofah (~> 2.3)
|
||||||
railties (6.0.3.1)
|
railties (6.0.3.2)
|
||||||
actionpack (= 6.0.3.1)
|
actionpack (= 6.0.3.2)
|
||||||
activesupport (= 6.0.3.1)
|
activesupport (= 6.0.3.2)
|
||||||
method_source
|
method_source
|
||||||
rake (>= 0.8.7)
|
rake (>= 0.8.7)
|
||||||
thor (>= 0.20.3, < 2.0)
|
thor (>= 0.20.3, < 2.0)
|
||||||
|
|||||||
Reference in New Issue
Block a user