edcommonwealth
/
sqm-dashboards
mirror of https://github.com/edcommonwealth/sqm-dashboards.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

chore: address security vulnerabilities

Browse Source
mciea-main
rebuilt 2 years ago
parent bcfb52c97a
commit 7a42d0cee7
4 changed files with 142 additions and 135 deletions
Show Stats Download Patch File Download Diff File

120
Gemfile
Unescape View File

@ -1,105 +1,105 @@
source 'https://rubygems.org' source "https://rubygems.org"
ruby '3.2.1' ruby "3.2.1"
git_source(:github) do |repo_name| git_source(:github) do |repo_name|
repo_name = "#{repo_name}/#{repo_name}" unless repo_name.include?('/') repo_name = "#{repo_name}/#{repo_name}" unless repo_name.include?("/")
"https://github.com/#{repo_name}.git" "https://github.com/#{repo_name}.git"
end end
# Bundle edge Rails instead: gem 'rails', github: 'rails/rails' # Bundle edge Rails instead: gem 'rails', github: 'rails/rails'
gem 'rails', '~> 7.0.4' gem "rails", "~> 7.0.8"
gem 'sprockets-rails' gem "sprockets-rails"
gem 'pg' gem "pg"
# Use Puma as the app server # Use Puma as the app server
gem 'puma', '>= 5.6.4' gem "puma", ">= 5.6.4"
# Use Uglifier as compressor for JavaScript assets # Use Uglifier as compressor for JavaScript assets
gem 'uglifier', '>= 1.3.0' gem "uglifier", ">= 1.3.0"
# See https://github.com/rails/execjs#readme for more supported runtimes # See https://github.com/rails/execjs#readme for more supported runtimes
# Use jquery as the JavaScript library # Use jquery as the JavaScript library
gem 'jquery-rails' gem "jquery-rails"
# Build JSON APIs with ease. Read more: https://github.com/rails/jbuilder # Build JSON APIs with ease. Read more: https://github.com/rails/jbuilder
gem 'jbuilder', '~> 2.5' gem "jbuilder", "~> 2.5"
# Use Redis adapter to run Action Cable in production # Use Redis adapter to run Action Cable in production
gem 'redis', '~> 3.0' gem "redis", "~> 3.0"
# Use ActiveModel has_secure_password # Use ActiveModel has_secure_password
# gem 'bcrypt', '~> 3.1.7' # gem 'bcrypt', '~> 3.1.7'
gem 'nokogiri', '>= 1.13.4' gem "nokogiri", ">= 1.13.4"
gem 'bootsnap', require: false gem "bootsnap", require: false
gem 'haml' gem "haml"
gem 'friendly_id', '~> 5.1.0' gem "friendly_id", "~> 5.1.0"
gem 'newrelic_rpm' gem "newrelic_rpm"
gem 'devise' gem "devise"
gem 'omniauth' gem "omniauth"
gem 'activerecord-import' gem "activerecord-import"
gem 'jsbundling-rails' gem "jsbundling-rails"
gem 'cssbundling-rails' gem "cssbundling-rails"
gem 'turbo-rails' gem "turbo-rails"
gem 'stimulus-rails' gem "stimulus-rails"
gem 'watir' gem "watir"
gem 'net-sftp' gem "net-sftp"
gem 'ed25519' gem "ed25519"
gem 'bcrypt_pbkdf' gem "bcrypt_pbkdf"
gem 'standard_deviation' gem "standard_deviation"
group :development, :test do group :development, :test do
# Call 'byebug' anywhere in the code to stop execution and get a debugger console # Call 'byebug' anywhere in the code to stop execution and get a debugger console
gem 'byebug', platform: :mri gem "byebug", platform: :mri
gem 'cypress-rails' gem "cypress-rails"
gem 'dotenv-rails' gem "dotenv-rails"
gem 'factory_bot_rails' gem "factory_bot_rails"
gem 'parallel_tests' gem "parallel_tests"
gem 'rack-mini-profiler' gem "rack-mini-profiler"
gem 'rspec-rails', '~> 5.1.0' gem "rspec-rails", "~> 5.1.0"
gem 'debug', platforms: %i[mri mingw x64_mingw] gem "debug", platforms: %i[mri mingw x64_mingw]
end end
group :development do group :development do
# Access an IRB console on exception pages or by using <%= console %> anywhere in the code. # Access an IRB console on exception pages or by using <%= console %> anywhere in the code.
gem 'brakeman' gem "brakeman"
gem 'bullet' gem "bullet"
gem 'erb_lint', require: false gem "erb_lint", require: false
gem 'erblint-github' gem "erblint-github"
gem 'guard' gem "guard"
gem 'guard-rspec', require: false gem "guard-rspec", require: false
gem 'guard-livereload', '~> 2.5', require: false gem "guard-livereload", "~> 2.5", require: false
gem 'rack-livereload' gem "rack-livereload"
gem 'listen', '~> 3.8.0' gem "listen", "~> 3.8.0"
gem 'nested_scaffold' gem "nested_scaffold"
# gem 'reek', require: false # gem 'reek', require: false
gem 'rubocop', require: false gem "rubocop", require: false
gem 'seed_dump' gem "seed_dump"
gem 'solargraph-reek' gem "solargraph-reek"
gem 'spring' gem "spring"
end end
group 'test' do group "test" do
gem 'cuprite' gem "cuprite"
gem 'capybara' gem "capybara"
gem 'database_cleaner' gem "database_cleaner"
gem 'launchy' gem "launchy"
gem 'rails-controller-testing' gem "rails-controller-testing"
gem 'simplecov', require: false gem "simplecov", require: false
gem 'timecop' gem "timecop"
end end
# Windows does not include zoneinfo files, so bundle the tzinfo-data gem # Windows does not include zoneinfo files, so bundle the tzinfo-data gem
gem 'tzinfo-data', platforms: %i[mingw mswin x64_mingw jruby] gem "tzinfo-data", platforms: %i[mingw mswin x64_mingw jruby]
gem 'reline', '~> 0.3.2' gem "reline", "~> 0.3.2"

140
Gemfile.lock
Unescape View File

@ -1,69 +1,69 @@
GEM GEM
remote: https://rubygems.org/ remote: https://rubygems.org/
specs: specs:
actioncable (7.0.6) actioncable (7.0.8)
actionpack (= 7.0.6) actionpack (= 7.0.8)
activesupport (= 7.0.6) activesupport (= 7.0.8)
nio4r (~> 2.0) nio4r (~> 2.0)
websocket-driver (>= 0.6.1) websocket-driver (>= 0.6.1)
actionmailbox (7.0.6) actionmailbox (7.0.8)
actionpack (= 7.0.6) actionpack (= 7.0.8)
activejob (= 7.0.6) activejob (= 7.0.8)
activerecord (= 7.0.6) activerecord (= 7.0.8)
activestorage (= 7.0.6) activestorage (= 7.0.8)
activesupport (= 7.0.6) activesupport (= 7.0.8)
mail (>= 2.7.1) mail (>= 2.7.1)
net-imap net-imap
net-pop net-pop
net-smtp net-smtp
actionmailer (7.0.6) actionmailer (7.0.8)
actionpack (= 7.0.6) actionpack (= 7.0.8)
actionview (= 7.0.6) actionview (= 7.0.8)
activejob (= 7.0.6) activejob (= 7.0.8)
activesupport (= 7.0.6) activesupport (= 7.0.8)
mail (~> 2.5, >= 2.5.4) mail (~> 2.5, >= 2.5.4)
net-imap net-imap
net-pop net-pop
net-smtp net-smtp
rails-dom-testing (~> 2.0) rails-dom-testing (~> 2.0)
actionpack (7.0.6) actionpack (7.0.8)
actionview (= 7.0.6) actionview (= 7.0.8)
activesupport (= 7.0.6) activesupport (= 7.0.8)
rack (~> 2.0, >= 2.2.4) rack (~> 2.0, >= 2.2.4)
rack-test (>= 0.6.3) rack-test (>= 0.6.3)
rails-dom-testing (~> 2.0) rails-dom-testing (~> 2.0)
rails-html-sanitizer (~> 1.0, >= 1.2.0) rails-html-sanitizer (~> 1.0, >= 1.2.0)
actiontext (7.0.6) actiontext (7.0.8)
actionpack (= 7.0.6) actionpack (= 7.0.8)
activerecord (= 7.0.6) activerecord (= 7.0.8)
activestorage (= 7.0.6) activestorage (= 7.0.8)
activesupport (= 7.0.6) activesupport (= 7.0.8)
globalid (>= 0.6.0) globalid (>= 0.6.0)
nokogiri (>= 1.8.5) nokogiri (>= 1.8.5)
actionview (7.0.6) actionview (7.0.8)
activesupport (= 7.0.6) activesupport (= 7.0.8)
builder (~> 3.1) builder (~> 3.1)
erubi (~> 1.4) erubi (~> 1.4)
rails-dom-testing (~> 2.0) rails-dom-testing (~> 2.0)
rails-html-sanitizer (~> 1.1, >= 1.2.0) rails-html-sanitizer (~> 1.1, >= 1.2.0)
activejob (7.0.6) activejob (7.0.8)
activesupport (= 7.0.6) activesupport (= 7.0.8)
globalid (>= 0.3.6) globalid (>= 0.3.6)
activemodel (7.0.6) activemodel (7.0.8)
activesupport (= 7.0.6) activesupport (= 7.0.8)
activerecord (7.0.6) activerecord (7.0.8)
activemodel (= 7.0.6) activemodel (= 7.0.8)
activesupport (= 7.0.6) activesupport (= 7.0.8)
activerecord-import (1.4.1) activerecord-import (1.4.1)
activerecord (>= 4.2) activerecord (>= 4.2)
activestorage (7.0.6) activestorage (7.0.8)
actionpack (= 7.0.6) actionpack (= 7.0.8)
activejob (= 7.0.6) activejob (= 7.0.8)
activerecord (= 7.0.6) activerecord (= 7.0.8)
activesupport (= 7.0.6) activesupport (= 7.0.8)
marcel (~> 1.0) marcel (~> 1.0)
mini_mime (>= 1.1.0) mini_mime (>= 1.1.0)
activesupport (7.0.6) activesupport (7.0.8)
concurrent-ruby (~> 1.0, >= 1.0.2) concurrent-ruby (~> 1.0, >= 1.0.2)
i18n (>= 1.6, < 2) i18n (>= 1.6, < 2)
minitest (>= 5.1) minitest (>= 5.1)
@ -162,8 +162,8 @@ GEM
formatador (1.1.0) formatador (1.1.0)
friendly_id (5.1.0) friendly_id (5.1.0)
activerecord (>= 4.0.0) activerecord (>= 4.0.0)
globalid (1.1.0) globalid (1.2.1)
activesupport (>= 5.0) activesupport (>= 6.1)
guard (2.18.0) guard (2.18.0)
formatador (>= 0.2.4) formatador (>= 0.2.4)
listen (>= 2.7, < 4.0) listen (>= 2.7, < 4.0)
@ -228,13 +228,13 @@ GEM
marcel (1.0.2) marcel (1.0.2)
matrix (0.4.2) matrix (0.4.2)
method_source (1.0.0) method_source (1.0.0)
mini_mime (1.1.2) mini_mime (1.1.5)
minitest (5.18.1) minitest (5.20.0)
msgpack (1.7.2) msgpack (1.7.0)
multi_json (1.15.0) multi_json (1.15.0)
nenv (0.3.0) nenv (0.3.0)
nested_scaffold (1.1.0) nested_scaffold (1.1.0)
net-imap (0.3.6) net-imap (0.3.7)
date date
net-protocol net-protocol
net-pop (0.1.2) net-pop (0.1.2)
@ -243,14 +243,14 @@ GEM
timeout timeout
net-sftp (4.0.0) net-sftp (4.0.0)
net-ssh (>= 5.0.0, < 8.0.0) net-ssh (>= 5.0.0, < 8.0.0)
net-smtp (0.3.3) net-smtp (0.4.0)
net-protocol net-protocol
net-ssh (7.1.0) net-ssh (7.1.0)
newrelic_rpm (9.3.1) newrelic_rpm (9.3.1)
nio4r (2.5.9) nio4r (2.5.9)
nokogiri (1.15.3-arm64-darwin) nokogiri (1.15.4-arm64-darwin)
racc (~> 1.4) racc (~> 1.4)
nokogiri (1.15.3-x86_64-linux) nokogiri (1.15.4-x86_64-linux)
racc (~> 1.4) racc (~> 1.4)
notiffany (0.1.3) notiffany (0.1.3)
nenv (~> 0.1) nenv (~> 0.1)
@ -270,11 +270,11 @@ GEM
pry (0.14.2) pry (0.14.2)
coderay (~> 1.1) coderay (~> 1.1)
method_source (~> 1.0) method_source (~> 1.0)
public_suffix (5.0.3) public_suffix (5.0.1)
puma (6.3.0) puma (6.4.0)
nio4r (~> 2.0) nio4r (~> 2.0)
racc (1.7.1) racc (1.7.1)
rack (2.2.7) rack (2.2.8)
rack-livereload (0.5.1) rack-livereload (0.5.1)
rack rack
rack-mini-profiler (3.1.0) rack-mini-profiler (3.1.0)
@ -283,34 +283,34 @@ GEM
rack rack
rack-test (2.1.0) rack-test (2.1.0)
rack (>= 1.3) rack (>= 1.3)
rails (7.0.6) rails (7.0.8)
actioncable (= 7.0.6) actioncable (= 7.0.8)
actionmailbox (= 7.0.6) actionmailbox (= 7.0.8)
actionmailer (= 7.0.6) actionmailer (= 7.0.8)
actionpack (= 7.0.6) actionpack (= 7.0.8)
actiontext (= 7.0.6) actiontext (= 7.0.8)
actionview (= 7.0.6) actionview (= 7.0.8)
activejob (= 7.0.6) activejob (= 7.0.8)
activemodel (= 7.0.6) activemodel (= 7.0.8)
activerecord (= 7.0.6) activerecord (= 7.0.8)
activestorage (= 7.0.6) activestorage (= 7.0.8)
activesupport (= 7.0.6) activesupport (= 7.0.8)
bundler (>= 1.15.0) bundler (>= 1.15.0)
railties (= 7.0.6) railties (= 7.0.8)
rails-controller-testing (1.0.5) rails-controller-testing (1.0.5)
actionpack (>= 5.0.1.rc1) actionpack (>= 5.0.1.rc1)
actionview (>= 5.0.1.rc1) actionview (>= 5.0.1.rc1)
activesupport (>= 5.0.1.rc1) activesupport (>= 5.0.1.rc1)
rails-dom-testing (2.1.1) rails-dom-testing (2.2.0)
activesupport (>= 5.0.0) activesupport (>= 5.0.0)
minitest minitest
nokogiri (>= 1.6) nokogiri (>= 1.6)
rails-html-sanitizer (1.6.0) rails-html-sanitizer (1.6.0)
loofah (~> 2.21) loofah (~> 2.21)
nokogiri (~> 1.14) nokogiri (~> 1.14)
railties (7.0.6) railties (7.0.8)
actionpack (= 7.0.6) actionpack (= 7.0.8)
activesupport (= 7.0.6) activesupport (= 7.0.8)
method_source method_source
rake (>= 12.2) rake (>= 12.2)
thor (~> 1.0) thor (~> 1.0)
@ -438,13 +438,13 @@ GEM
selenium-webdriver (~> 4.2) selenium-webdriver (~> 4.2)
webrick (1.8.1) webrick (1.8.1)
websocket (1.2.9) websocket (1.2.9)
websocket-driver (0.7.5) websocket-driver (0.7.6)
websocket-extensions (>= 0.1.0) websocket-extensions (>= 0.1.0)
websocket-extensions (0.1.5) websocket-extensions (0.1.5)
xpath (3.2.0) xpath (3.2.0)
nokogiri (~> 1.8) nokogiri (~> 1.8)
yard (0.9.34) yard (0.9.32)
zeitwerk (2.6.8) zeitwerk (2.6.12)
PLATFORMS PLATFORMS
arm64-darwin-21 arm64-darwin-21
@ -489,7 +489,7 @@ DEPENDENCIES
puma (>= 5.6.4) puma (>= 5.6.4)
rack-livereload rack-livereload
rack-mini-profiler rack-mini-profiler
rails (~> 7.0.4) rails (~> 7.0.8)
rails-controller-testing rails-controller-testing
redis (~> 3.0) redis (~> 3.0)
reline (~> 0.3.2) reline (~> 0.3.2)

2
package.json
Unescape View File

@ -31,8 +31,8 @@
"watch:all": "yarn watch:css & yarn build --watch" "watch:all": "yarn watch:css & yarn build --watch"
}, },
"devDependencies": { "devDependencies": {
"cypress": "^12.17.1",
"@cypress/request": "^3.0.0", "@cypress/request": "^3.0.0",
"cypress": "^12.17.1",
"eslint-plugin-cypress": "^2.13.3", "eslint-plugin-cypress": "^2.13.3",
"jest": "^29.6.1", "jest": "^29.6.1",
"jest-environment-jsdom": "^29.6.1", "jest-environment-jsdom": "^29.6.1",

15
yarn.lock
Unescape View File

@ -990,9 +990,9 @@
uuid "^8.3.2" uuid "^8.3.2"
"@cypress/request@^3.0.0": "@cypress/request@^3.0.0":
version "3.0.0" version "3.0.1"
resolved "https://registry.yarnpkg.com/@cypress/request/-/request-3.0.0.tgz#7f58dfda087615ed4e6aab1b25fffe7630d6dd85" resolved "https://registry.yarnpkg.com/@cypress/request/-/request-3.0.1.tgz#72d7d5425236a2413bd3d8bb66d02d9dc3168960"
integrity sha512-GKFCqwZwMYmL3IBoNeR2MM1SnxRIGERsQOTWeQKoYBt2JLqcqiy7JXqO894FLrpjZYqGxW92MNwRH2BN56obdQ== integrity sha512-TWivJlJi8ZDx2wGOw1dbLuHJKUYX7bWySw377nlnGOW3hP9/MUKIsEdXT/YngWxVdgNCHRBmFlBipE+5/2ZZlQ==
dependencies: dependencies:
aws-sign2 "~0.7.0" aws-sign2 "~0.7.0"
aws4 "^1.8.0" aws4 "^1.8.0"
@ -1007,7 +1007,7 @@
json-stringify-safe "~5.0.1" json-stringify-safe "~5.0.1"
mime-types "~2.1.19" mime-types "~2.1.19"
performance-now "^2.1.0" performance-now "^2.1.0"
qs "~6.10.3" qs "6.10.4"
safe-buffer "^5.1.2" safe-buffer "^5.1.2"
tough-cookie "^4.1.3" tough-cookie "^4.1.3"
tunnel-agent "^0.6.0" tunnel-agent "^0.6.0"
@ -3775,6 +3775,13 @@ pure-rand@^6.0.0:
resolved "https://registry.yarnpkg.com/pure-rand/-/pure-rand-6.0.2.tgz#a9c2ddcae9b68d736a8163036f088a2781c8b306" resolved "https://registry.yarnpkg.com/pure-rand/-/pure-rand-6.0.2.tgz#a9c2ddcae9b68d736a8163036f088a2781c8b306"
integrity sha512-6Yg0ekpKICSjPswYOuC5sku/TSWaRYlA0qsXqJgM/d/4pLPHPuTxK7Nbf7jFKzAeedUhR8C7K9Uv63FBsSo8xQ== integrity sha512-6Yg0ekpKICSjPswYOuC5sku/TSWaRYlA0qsXqJgM/d/4pLPHPuTxK7Nbf7jFKzAeedUhR8C7K9Uv63FBsSo8xQ==
qs@6.10.4:
version "6.10.4"
resolved "https://registry.yarnpkg.com/qs/-/qs-6.10.4.tgz#6a3003755add91c0ec9eacdc5f878b034e73f9e7"
integrity sha512-OQiU+C+Ds5qiH91qh/mg0w+8nwQuLjM4F4M/PbmhDOoYehPh+Fb0bDjtR1sOvy7YKxvj28Y/M0PhP5uVX0kB+g==
dependencies:
side-channel "^1.0.4"
qs@~6.10.3: qs@~6.10.3:
version "6.10.5" version "6.10.5"
resolved "https://registry.yarnpkg.com/qs/-/qs-6.10.5.tgz#974715920a80ff6a262264acd2c7e6c2a53282b4" resolved "https://registry.yarnpkg.com/qs/-/qs-6.10.5.tgz#974715920a80ff6a262264acd2c7e6c2a53282b4"

Write Preview
Loading…
Cancel
Save