From 8f2e11a8a0f2dfdf1bc6cd6902885ad28a25cb0d Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 14 Jul 2025 10:39:47 +0000 Subject: [PATCH] fix: Gemfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-RACK-6274385 - https://snyk.io/vuln/SNYK-RUBY-RACK-72567 - https://snyk.io/vuln/SNYK-RUBY-RACK-8720151 - https://snyk.io/vuln/SNYK-RUBY-RACK-9058602 - https://snyk.io/vuln/SNYK-RUBY-RACK-9398129 - https://snyk.io/vuln/SNYK-RUBY-RAILS-1071903 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-22025 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-2935879 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168316 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168646 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168647 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168648 - https://snyk.io/vuln/SNYK-RUBY-RAILTIES-20454 - https://snyk.io/vuln/SNYK-RUBY-RAKE-552000 - https://snyk.io/vuln/SNYK-RUBY-RDOC-1279617 - https://snyk.io/vuln/SNYK-RUBY-RDOC-1316279 - https://snyk.io/vuln/SNYK-RUBY-RDOC-6476871 - https://snyk.io/vuln/SNYK-RUBY-REDISSTORE-20452 - https://snyk.io/vuln/SNYK-RUBY-ROTP-6457147 - https://snyk.io/vuln/SNYK-RUBY-SIDEKIQ-5885107 - https://snyk.io/vuln/SNYK-RUBY-SPROCKETS-22032 - https://snyk.io/vuln/SNYK-RUBY-TZINFO-2958048 - https://snyk.io/vuln/SNYK-RUBY-WEBSOCKETEXTENSIONS-570830 - https://snyk.io/vuln/SNYK-RUBY-ACTIONVIEW-569156 - https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-569598 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20432 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-10674179 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-10674176 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-10674184 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-10674192 - https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-2960802 - https://snyk.io/vuln/SNYK-RUBY-RACK-2848599 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1293239 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-6056551 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-6056552 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-6056553 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-6056554 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-6056555 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-7164639 - https://snyk.io/vuln/SNYK-RUBY-JSON-560838 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-8732769 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-8732779 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-534637 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20367 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20368 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-22014 - https://snyk.io/vuln/SNYK-RUBY-OMNIAUTH-174820 - https://snyk.io/vuln/SNYK-RUBY-RACK-10074187 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-569599 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-569600 - https://snyk.io/vuln/SNYK-RUBY-ACTIONVIEW-560837 - https://snyk.io/vuln/SNYK-RUBY-HTTPARTY-3188560 - https://snyk.io/vuln/SNYK-RUBY-RACK-572377 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-10494060 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-10494063 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2840634 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2413994 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-459107 - https://snyk.io/vuln/SNYK-RUBY-RACK-1061917 - https://snyk.io/vuln/SNYK-RUBY-FFI-22037 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-552159 - https://snyk.io/vuln/SNYK-RUBY-OAUTH-1012727 - https://snyk.io/vuln/SNYK-RUBY-ACTIONVIEW-2803851 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-1290052 - https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-1080913 - https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-20270 - https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-3237239 - https://snyk.io/vuln/SNYK-RUBY-ADDRESSABLE-1316242 - https://snyk.io/vuln/SNYK-RUBY-I18N-72582 - https://snyk.io/vuln/SNYK-RUBY-LOOFAH-3168317 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1726792 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20277 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-22013 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2620374 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2630623 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2630898 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-3052880 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-72433 - https://snyk.io/vuln/SNYK-RUBY-OMNIAUTH-22012 - https://snyk.io/vuln/SNYK-RUBY-OMNIAUTH-2987513 - https://snyk.io/vuln/SNYK-RUBY-RACK-2848600 - https://snyk.io/vuln/SNYK-RUBY-RACK-3356639 - https://snyk.io/vuln/SNYK-RUBY-RACK-569066 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-1290051 - https://snyk.io/vuln/SNYK-RUBY-ACTIONVIEW-569601 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-2400638 - https://snyk.io/vuln/SNYK-RUBY-LOOFAH-474102 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20299 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-9510795 - https://snyk.io/vuln/SNYK-RUBY-ACTIONMAILER-8220269 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-8220162 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-8220268 - https://snyk.io/vuln/SNYK-RUBY-EXCON-20404 - https://snyk.io/vuln/SNYK-RUBY-DEVISE-465098 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1583442 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-3357693 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-6228056 - https://snyk.io/vuln/SNYK-RUBY-ACTIONVIEW-20271 - https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-3360028 - https://snyk.io/vuln/SNYK-RUBY-LOOFAH-22023 - https://snyk.io/vuln/SNYK-RUBY-EXCON-537866 - https://snyk.io/vuln/SNYK-RUBY-HAML-20341 - https://snyk.io/vuln/SNYK-RUBY-LOOFAH-72548 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-3237231 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-3237232 - https://snyk.io/vuln/SNYK-RUBY-ACTIVEJOB-72640 - https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-3237242 - https://snyk.io/vuln/SNYK-RUBY-GLOBALID-3237234 - https://snyk.io/vuln/SNYK-RUBY-RACK-3237240 - https://snyk.io/vuln/SNYK-RUBY-RACK-538324 - https://snyk.io/vuln/SNYK-RUBY-RACK-6274383 - https://snyk.io/vuln/SNYK-RUBY-RACK-6274384 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-9510789 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-5741907 - https://snyk.io/vuln/SNYK-RUBY-ACTIONVIEW-632514 - https://snyk.io/vuln/SNYK-RUBY-DEVISE-173787 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-9789079 - https://snyk.io/vuln/SNYK-RUBY-ERUBIS-20482 - https://snyk.io/vuln/SNYK-RUBY-HAML-20362 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-10674188 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1055008 - https://snyk.io/vuln/SNYK-RUBY-RACK-10074188 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-8453714 --- Gemfile | 158 ++++++++++++++++++++++++++++---------------------------- 1 file changed, 79 insertions(+), 79 deletions(-) diff --git a/Gemfile b/Gemfile index b897dc0a7412c..b637cf7b498ea 100644 --- a/Gemfile +++ b/Gemfile @@ -1,41 +1,41 @@ source "https://rubygems.org" -gem 'rails', '4.2.6' -gem 'rails-deprecated_sanitizer', '~> 1.0.3' +gem 'rails', '7.1.0' +gem 'rails-deprecated_sanitizer', '~> 1.0.4' # Responders respond_to and respond_with -gem 'responders', '~> 2.0' +gem 'responders', '~> 3.0', '>= 3.0.0' # Specify a sprockets version due to increased performance # See https://gitlab.com/gitlab-org/gitlab-ce/issues/6069 -gem 'sprockets', '~> 3.6.0' +gem 'sprockets', '~> 4.2.0' # Default values for AR models -gem "default_value_for", "~> 3.0.0" +gem "default_value_for", "~> 3.4.0" # Supported DBs gem "mysql2", '~> 0.3.16', group: :mysql gem "pg", '~> 0.18.2', group: :postgres # Authentication libraries -gem 'devise', '~> 3.5.4' -gem 'doorkeeper', '~> 3.1' -gem 'devise-async', '~> 0.9.0' -gem 'omniauth', '~> 1.3.1' -gem 'omniauth-auth0', '~> 1.4.1' -gem 'omniauth-azure-oauth2', '~> 0.0.6' +gem 'devise', '~> 4.7.0' +gem 'doorkeeper', '~> 4.0', '>= 4.0.0' +gem 'devise-async', '~> 1.0.0' +gem 'omniauth', '~> 2.1.0' +gem 'omniauth-auth0', '~> 1.4.2' +gem 'omniauth-azure-oauth2', '~> 0.0.8' gem 'omniauth-bitbucket', '~> 0.0.2' -gem 'omniauth-cas3', '~> 1.1.2' -gem 'omniauth-facebook', '~> 3.0.0' -gem 'omniauth-github', '~> 1.1.1' -gem 'omniauth-gitlab', '~> 1.0.0' -gem 'omniauth-google-oauth2', '~> 0.2.0' -gem 'omniauth-kerberos', '~> 0.3.0', group: :kerberos -gem 'omniauth-saml', '~> 1.5.0' -gem 'omniauth-shibboleth', '~> 1.2.0' -gem 'omniauth-twitter', '~> 1.2.0' -gem 'omniauth_crowd', '~> 2.2.0' -gem 'rack-oauth2', '~> 1.2.1' +gem 'omniauth-cas3', '~> 1.1.4' +gem 'omniauth-facebook', '~> 4.0.0' +gem 'omniauth-github', '~> 2.0.0' +gem 'omniauth-gitlab', '~> 3.0.0' +gem 'omniauth-google-oauth2', '~> 0.3.0' +gem 'omniauth-kerberos', '~> 0.4.0', group: :kerberos +gem 'omniauth-saml', '~> 2.0.0' +gem 'omniauth-shibboleth', '~> 1.3.0' +gem 'omniauth-twitter', '~> 1.3.0' +gem 'omniauth_crowd', '~> 2.3.0' +gem 'rack-oauth2', '~> 1.2.2' gem 'jwt' # Spam and anti-bot protection @@ -43,7 +43,7 @@ gem 'recaptcha', require: 'recaptcha/rails' gem 'akismet', '~> 2.0' # Two-factor authentication -gem 'devise-two-factor', '~> 2.0.0' +gem 'devise-two-factor', '~> 4.0.0' gem 'rqrcode-rails3', '~> 0.1.7' gem 'attr_encrypted', '~> 1.3.4' @@ -52,50 +52,50 @@ gem "browser", '~> 1.0.0' # Extracting information from a git repository # Provide access to Gitlab::Git library -gem "gitlab_git", '~> 10.0' +gem "gitlab_git", "~> 10.1", ">= 10.1.1" # LDAP Auth # GitLab fork with several improvements to original library. For full list of changes # see https://github.com/intridea/omniauth-ldap/compare/master...gitlabhq:master -gem 'gitlab_omniauth-ldap', '~> 1.2.1', require: "omniauth-ldap" +gem 'gitlab_omniauth-ldap', '~> 2.2.0', require: "omniauth-ldap" # Git Wiki # Required manually in config/initializers/gollum.rb to control load order -gem 'gollum-lib', '~> 4.1.0', require: false +gem 'gollum-lib', '~> 5.0.0', require: false gem 'gollum-rugged_adapter', '~> 0.4.2', require: false # Language detection gem "github-linguist", "~> 4.7.0", require: "linguist" # API -gem 'grape', '~> 0.13.0' +gem 'grape', '~> 0.14.0' gem 'grape-entity', '~> 0.4.2' gem 'rack-cors', '~> 0.4.0', require: 'rack/cors' # Pagination -gem "kaminari", "~> 0.16.3" +gem "kaminari", "~> 1.0.0" # HAML -gem "haml-rails", '~> 0.9.0' +gem "haml-rails", "~> 2.1.0" # Files attachments -gem "carrierwave", '~> 0.10.0' +gem "carrierwave", "~> 0.11.0" # Drag and Drop UI -gem 'dropzonejs-rails', '~> 0.7.1' +gem 'dropzonejs-rails', '~> 0.7.3' # for aws storage -gem "fog", "~> 1.36.0" +gem "fog", "~> 1.37.0" gem "unf", '~> 0.1.4' # Authorization gem "six", '~> 0.2.0' # Seed data -gem "seed-fu", '~> 2.3.5' +gem "seed-fu", "~> 2.3.6" # Markdown and HTML processing -gem 'html-pipeline', '~> 1.11.0' +gem 'html-pipeline', '~> 3.0.0' gem 'task_list', '~> 1.0.2', require: 'task_list/railtie' gem 'github-markup', '~> 1.3.1' gem 'redcarpet', '~> 3.3.3' @@ -117,11 +117,11 @@ gem 'diffy', '~> 3.0.3' # Application server group :unicorn do gem "unicorn", '~> 4.9.0' - gem 'unicorn-worker-killer', '~> 0.4.2' + gem 'unicorn-worker-killer', '~> 0.4.5' end # State machine -gem "state_machines-activerecord", '~> 0.4.0' +gem "state_machines-activerecord", "~> 0.6.0" # Run events after state machine commits gem 'after_commit_queue' @@ -129,9 +129,9 @@ gem 'after_commit_queue' gem 'acts-as-taggable-on', '~> 3.4' # Background jobs -gem 'sinatra', '~> 1.4.4', require: nil +gem 'sinatra', '~> 2.0.0', require: nil gem 'sidekiq', '~> 4.0' -gem 'sidekiq-cron', '~> 0.4.0' +gem 'sidekiq-cron', '~> 0.4.1' gem 'redis-namespace' # HTTP requests @@ -148,7 +148,7 @@ gem 'settingslogic', '~> 2.0.9' gem 'version_sorter', '~> 2.0.0' # Cache -gem "redis-rails", '~> 4.0.0' +gem "redis-rails", "~> 5.0.2" # Redis gem 'redis', '~> 3.2' @@ -158,7 +158,7 @@ gem 'connection_pool', '~> 2.0' gem 'tinder', '~> 1.10.0' # HipChat integration -gem 'hipchat', '~> 1.5.0' +gem 'hipchat', '~> 1.5.3' # Flowdock integration gem "gitlab-flowdock-git-hook", "~> 1.0.1" @@ -170,29 +170,29 @@ gem "gemnasium-gitlab-service", "~> 0.2" gem "slack-notifier", "~> 1.2.0" # Asana integration -gem 'asana', '~> 0.4.0' +gem 'asana', '~> 0.5.0' # FogBugz integration gem 'ruby-fogbugz', '~> 0.2.1' # d3 -gem 'd3_rails', '~> 3.5.0' +gem 'd3_rails', '~> 3.5.12' # underscore-rails gem "underscore-rails", "~> 1.8.0" # Sanitize user input -gem "sanitize", '~> 2.0' +gem "sanitize", "~> 2.1", ">= 2.1.1" gem 'babosa', '~> 1.0.2' # Sanitizes SVG input -gem "loofah", "~> 2.0.3" +gem "loofah", "~> 2.1.0" # Working with license gem 'licensee', '~> 8.0.0' # Protect against bruteforcing -gem "rack-attack", '~> 4.3.1' +gem "rack-attack", "~> 4.4.0" # Ace editor gem 'ace-rails-ap', '~> 4.0.2' @@ -203,20 +203,20 @@ gem 'mousetrap-rails', '~> 1.4.6' # Detect and convert string character encoding gem 'charlock_holmes', '~> 0.7.3' -gem "sass-rails", '~> 5.0.0' -gem "coffee-rails", '~> 4.1.0' +gem "sass-rails", "~> 6.0.0" +gem "coffee-rails", "~> 4.2.2" gem "uglifier", '~> 2.7.2' -gem 'turbolinks', '~> 2.5.0' +gem 'turbolinks', '~> 5.0.0' gem 'jquery-turbolinks', '~> 2.1.0' gem 'addressable', '~> 2.3.8' -gem 'bootstrap-sass', '~> 3.3.0' -gem 'font-awesome-rails', '~> 4.2' +gem 'bootstrap-sass', '~> 3.3.7' +gem 'font-awesome-rails', '~> 4.7', '>= 4.7.0.8' gem 'gitlab_emoji', '~> 0.3.0' -gem 'gon', '~> 6.0.1' +gem 'gon', '~> 6.1.0' gem 'jquery-atwho-rails', '~> 1.3.2' -gem 'jquery-rails', '~> 4.1.0' -gem 'jquery-ui-rails', '~> 5.0.0' +gem 'jquery-rails', '~> 4.2.0' +gem 'jquery-ui-rails', '~> 6.0.0' gem 'raphael-rails', '~> 2.1.2' gem 'request_store', '~> 1.3.0' gem 'select2-rails', '~> 3.5.9' @@ -227,7 +227,7 @@ gem 'base32', '~> 0.3.0' # Sentry integration gem 'sentry-raven', '~> 0.15' -gem 'premailer-rails', '~> 1.9.0' +gem 'premailer-rails', '~> 1.10.3' # Metrics group :metrics do @@ -240,22 +240,22 @@ group :development do gem "foreman" gem 'brakeman', '~> 3.2.0', require: false - gem 'letter_opener_web', '~> 1.3.0' - gem 'quiet_assets', '~> 1.0.2' - gem 'rerun', '~> 0.11.0' - gem 'bullet', require: false + gem 'letter_opener_web', '~> 1.3.1' + gem 'quiet_assets', '~> 1.1.0' + gem 'rerun', '~> 0.12.0' + gem 'bullet', '>= 5.1.0', require: false gem 'rblineprof', platform: :mri, require: false - gem 'web-console', '~> 2.0' + gem 'web-console', '~> 3.0', '>= 3.0.0' # Better errors handler gem 'better_errors', '~> 1.0.1' gem 'binding_of_caller', '~> 0.7.2' # Docs generator - gem "sdoc", '~> 0.3.20' + gem "sdoc", "~> 1.0.0" # thin instead webrick - gem 'thin', '~> 1.6.1' + gem 'thin', '~> 2.0.0' end group :development, :test do @@ -266,11 +266,11 @@ group :development, :test do gem 'fuubar', '~> 2.0.0' gem 'database_cleaner', '~> 1.4.0' - gem 'factory_girl_rails', '~> 4.6.0' - gem 'rspec-rails', '~> 3.4.0' + gem 'factory_girl_rails', '~> 4.7.0' + gem 'rspec-rails', '~> 3.5.0' gem 'rspec-retry' gem 'spinach-rails', '~> 0.2.1' - gem 'spinach-rerun-reporter', '~> 0.0.2' + gem 'spinach-rerun-reporter', '~> 1.0.0' # Prevent occasions where minitest is not bundled in packaged versions of ruby (see #3826) gem 'minitest', '~> 5.7.0' @@ -278,12 +278,12 @@ group :development, :test do # Generate Fake data gem 'ffaker', '~> 2.0.0' - gem 'capybara', '~> 2.6.2' - gem 'capybara-screenshot', '~> 1.0.0' - gem 'poltergeist', '~> 1.9.0' + gem 'capybara', '~> 2.7.0' + gem 'capybara-screenshot', '~> 1.0.12' + gem 'poltergeist', '~> 1.10.0' - gem 'teaspoon', '~> 1.1.0' - gem 'teaspoon-jasmine', '~> 2.2.0' + gem 'teaspoon', '~> 1.2.0' + gem 'teaspoon-jasmine', '~> 2.3.4' gem 'spring', '~> 1.7.0' gem 'spring-commands-rspec', '~> 1.0.4' @@ -293,7 +293,7 @@ group :development, :test do gem 'rubocop', '~> 0.40.0', require: false gem 'rubocop-rspec', '~> 1.5.0', require: false gem 'scss_lint', '~> 0.47.0', require: false - gem 'coveralls', '~> 0.8.2', require: false + gem 'coveralls', '~> 0.8.14', require: false gem 'simplecov', '~> 0.11.0', require: false gem 'flog', require: false gem 'flay', require: false @@ -303,11 +303,11 @@ group :development, :test do end group :test do - gem 'shoulda-matchers', '~> 2.8.0', require: false - gem 'email_spec', '~> 1.6.0' + gem 'shoulda-matchers', '~> 3.0.0', require: false + gem 'email_spec', '~> 2.0.0' gem 'webmock', '~> 1.21.0' - gem 'test_after_commit', '~> 0.4.2' - gem 'sham_rack' + gem 'test_after_commit', '~> 0.5.0' + gem 'sham_rack', '>= 1.4.0' end group :production do @@ -316,21 +316,21 @@ end gem "newrelic_rpm", '~> 3.14' -gem 'octokit', '~> 4.3.0' +gem 'octokit', '~> 4.6.0' gem "mail_room", "~> 0.7" gem 'email_reply_parser', '~> 0.5.8' ## CI -gem 'activerecord-session_store', '~> 1.0.0' +gem 'activerecord-session_store', '~> 2.1.0' gem "nested_form", '~> 0.3.2' # OAuth -gem 'oauth2', '~> 1.0.0' +gem 'oauth2', '~> 1.4.11' # Soft deletion -gem "paranoia", "~> 2.0" +gem "paranoia", "~> 2.4", ">= 2.4.3" # Health check -gem 'health_check', '~> 1.5.1' +gem 'health_check', '~> 1.7.2'