mirror of
https://github.com/edcommonwealth/sqm-dashboards.git
synced 2026-03-09 15:38:21 -07:00
chore: address security vulnerabilities
This commit is contained in:
rebuilt
parent
bcfb52c97a
commit
7a42d0cee7
4 changed files with 142 additions and 135 deletions
120
Gemfile
120
Gemfile
|
|
@ -1,105 +1,105 @@
|
|||
source 'https://rubygems.org'
|
||||
ruby '3.2.1'
|
||||
source "https://rubygems.org"
|
||||
ruby "3.2.1"
|
||||
|
||||
git_source(:github) do |repo_name|
|
||||
repo_name = "#{repo_name}/#{repo_name}" unless repo_name.include?('/')
|
||||
repo_name = "#{repo_name}/#{repo_name}" unless repo_name.include?("/")
|
||||
"https://github.com/#{repo_name}.git"
|
||||
end
|
||||
|
||||
# Bundle edge Rails instead: gem 'rails', github: 'rails/rails'
|
||||
gem 'rails', '~> 7.0.4'
|
||||
gem 'sprockets-rails'
|
||||
gem "rails", "~> 7.0.8"
|
||||
gem "sprockets-rails"
|
||||
|
||||
gem 'pg'
|
||||
gem "pg"
|
||||
|
||||
# Use Puma as the app server
|
||||
gem 'puma', '>= 5.6.4'
|
||||
gem "puma", ">= 5.6.4"
|
||||
# Use Uglifier as compressor for JavaScript assets
|
||||
gem 'uglifier', '>= 1.3.0'
|
||||
gem "uglifier", ">= 1.3.0"
|
||||
# See https://github.com/rails/execjs#readme for more supported runtimes
|
||||
# Use jquery as the JavaScript library
|
||||
gem 'jquery-rails'
|
||||
gem "jquery-rails"
|
||||
# Build JSON APIs with ease. Read more: https://github.com/rails/jbuilder
|
||||
gem 'jbuilder', '~> 2.5'
|
||||
gem "jbuilder", "~> 2.5"
|
||||
# Use Redis adapter to run Action Cable in production
|
||||
gem 'redis', '~> 3.0'
|
||||
gem "redis", "~> 3.0"
|
||||
# Use ActiveModel has_secure_password
|
||||
# gem 'bcrypt', '~> 3.1.7'
|
||||
|
||||
gem 'nokogiri', '>= 1.13.4'
|
||||
gem "nokogiri", ">= 1.13.4"
|
||||
|
||||
gem 'bootsnap', require: false
|
||||
gem "bootsnap", require: false
|
||||
|
||||
gem 'haml'
|
||||
gem "haml"
|
||||
|
||||
gem 'friendly_id', '~> 5.1.0'
|
||||
gem "friendly_id", "~> 5.1.0"
|
||||
|
||||
gem 'newrelic_rpm'
|
||||
gem "newrelic_rpm"
|
||||
|
||||
gem 'devise'
|
||||
gem "devise"
|
||||
|
||||
gem 'omniauth'
|
||||
gem "omniauth"
|
||||
|
||||
gem 'activerecord-import'
|
||||
gem "activerecord-import"
|
||||
|
||||
gem 'jsbundling-rails'
|
||||
gem "jsbundling-rails"
|
||||
|
||||
gem 'cssbundling-rails'
|
||||
gem "cssbundling-rails"
|
||||
|
||||
gem 'turbo-rails'
|
||||
gem "turbo-rails"
|
||||
|
||||
gem 'stimulus-rails'
|
||||
gem "stimulus-rails"
|
||||
|
||||
gem 'watir'
|
||||
gem "watir"
|
||||
|
||||
gem 'net-sftp'
|
||||
gem 'ed25519'
|
||||
gem 'bcrypt_pbkdf'
|
||||
gem "net-sftp"
|
||||
gem "ed25519"
|
||||
gem "bcrypt_pbkdf"
|
||||
|
||||
gem 'standard_deviation'
|
||||
gem "standard_deviation"
|
||||
|
||||
group :development, :test do
|
||||
# Call 'byebug' anywhere in the code to stop execution and get a debugger console
|
||||
gem 'byebug', platform: :mri
|
||||
gem 'cypress-rails'
|
||||
gem 'dotenv-rails'
|
||||
gem 'factory_bot_rails'
|
||||
gem 'parallel_tests'
|
||||
gem 'rack-mini-profiler'
|
||||
gem 'rspec-rails', '~> 5.1.0'
|
||||
gem 'debug', platforms: %i[mri mingw x64_mingw]
|
||||
gem "byebug", platform: :mri
|
||||
gem "cypress-rails"
|
||||
gem "dotenv-rails"
|
||||
gem "factory_bot_rails"
|
||||
gem "parallel_tests"
|
||||
gem "rack-mini-profiler"
|
||||
gem "rspec-rails", "~> 5.1.0"
|
||||
gem "debug", platforms: %i[mri mingw x64_mingw]
|
||||
end
|
||||
|
||||
group :development do
|
||||
# Access an IRB console on exception pages or by using <%= console %> anywhere in the code.
|
||||
gem 'brakeman'
|
||||
gem 'bullet'
|
||||
gem 'erb_lint', require: false
|
||||
gem 'erblint-github'
|
||||
gem 'guard'
|
||||
gem 'guard-rspec', require: false
|
||||
gem 'guard-livereload', '~> 2.5', require: false
|
||||
gem 'rack-livereload'
|
||||
gem 'listen', '~> 3.8.0'
|
||||
gem 'nested_scaffold'
|
||||
gem "brakeman"
|
||||
gem "bullet"
|
||||
gem "erb_lint", require: false
|
||||
gem "erblint-github"
|
||||
gem "guard"
|
||||
gem "guard-rspec", require: false
|
||||
gem "guard-livereload", "~> 2.5", require: false
|
||||
gem "rack-livereload"
|
||||
gem "listen", "~> 3.8.0"
|
||||
gem "nested_scaffold"
|
||||
# gem 'reek', require: false
|
||||
gem 'rubocop', require: false
|
||||
gem 'seed_dump'
|
||||
gem 'solargraph-reek'
|
||||
gem 'spring'
|
||||
gem "rubocop", require: false
|
||||
gem "seed_dump"
|
||||
gem "solargraph-reek"
|
||||
gem "spring"
|
||||
end
|
||||
|
||||
group 'test' do
|
||||
gem 'cuprite'
|
||||
gem 'capybara'
|
||||
gem 'database_cleaner'
|
||||
gem 'launchy'
|
||||
gem 'rails-controller-testing'
|
||||
gem 'simplecov', require: false
|
||||
gem 'timecop'
|
||||
group "test" do
|
||||
gem "cuprite"
|
||||
gem "capybara"
|
||||
gem "database_cleaner"
|
||||
gem "launchy"
|
||||
gem "rails-controller-testing"
|
||||
gem "simplecov", require: false
|
||||
gem "timecop"
|
||||
end
|
||||
|
||||
# Windows does not include zoneinfo files, so bundle the tzinfo-data gem
|
||||
gem 'tzinfo-data', platforms: %i[mingw mswin x64_mingw jruby]
|
||||
gem "tzinfo-data", platforms: %i[mingw mswin x64_mingw jruby]
|
||||
|
||||
gem 'reline', '~> 0.3.2'
|
||||
gem "reline", "~> 0.3.2"
|
||||
|
|
|
|||
140
Gemfile.lock
140
Gemfile.lock
|
|
@ -1,69 +1,69 @@
|
|||
GEM
|
||||
remote: https://rubygems.org/
|
||||
specs:
|
||||
actioncable (7.0.6)
|
||||
actionpack (= 7.0.6)
|
||||
activesupport (= 7.0.6)
|
||||
actioncable (7.0.8)
|
||||
actionpack (= 7.0.8)
|
||||
activesupport (= 7.0.8)
|
||||
nio4r (~> 2.0)
|
||||
websocket-driver (>= 0.6.1)
|
||||
actionmailbox (7.0.6)
|
||||
actionpack (= 7.0.6)
|
||||
activejob (= 7.0.6)
|
||||
activerecord (= 7.0.6)
|
||||
activestorage (= 7.0.6)
|
||||
activesupport (= 7.0.6)
|
||||
actionmailbox (7.0.8)
|
||||
actionpack (= 7.0.8)
|
||||
activejob (= 7.0.8)
|
||||
activerecord (= 7.0.8)
|
||||
activestorage (= 7.0.8)
|
||||
activesupport (= 7.0.8)
|
||||
mail (>= 2.7.1)
|
||||
net-imap
|
||||
net-pop
|
||||
net-smtp
|
||||
actionmailer (7.0.6)
|
||||
actionpack (= 7.0.6)
|
||||
actionview (= 7.0.6)
|
||||
activejob (= 7.0.6)
|
||||
activesupport (= 7.0.6)
|
||||
actionmailer (7.0.8)
|
||||
actionpack (= 7.0.8)
|
||||
actionview (= 7.0.8)
|
||||
activejob (= 7.0.8)
|
||||
activesupport (= 7.0.8)
|
||||
mail (~> 2.5, >= 2.5.4)
|
||||
net-imap
|
||||
net-pop
|
||||
net-smtp
|
||||
rails-dom-testing (~> 2.0)
|
||||
actionpack (7.0.6)
|
||||
actionview (= 7.0.6)
|
||||
activesupport (= 7.0.6)
|
||||
actionpack (7.0.8)
|
||||
actionview (= 7.0.8)
|
||||
activesupport (= 7.0.8)
|
||||
rack (~> 2.0, >= 2.2.4)
|
||||
rack-test (>= 0.6.3)
|
||||
rails-dom-testing (~> 2.0)
|
||||
rails-html-sanitizer (~> 1.0, >= 1.2.0)
|
||||
actiontext (7.0.6)
|
||||
actionpack (= 7.0.6)
|
||||
activerecord (= 7.0.6)
|
||||
activestorage (= 7.0.6)
|
||||
activesupport (= 7.0.6)
|
||||
actiontext (7.0.8)
|
||||
actionpack (= 7.0.8)
|
||||
activerecord (= 7.0.8)
|
||||
activestorage (= 7.0.8)
|
||||
activesupport (= 7.0.8)
|
||||
globalid (>= 0.6.0)
|
||||
nokogiri (>= 1.8.5)
|
||||
actionview (7.0.6)
|
||||
activesupport (= 7.0.6)
|
||||
actionview (7.0.8)
|
||||
activesupport (= 7.0.8)
|
||||
builder (~> 3.1)
|
||||
erubi (~> 1.4)
|
||||
rails-dom-testing (~> 2.0)
|
||||
rails-html-sanitizer (~> 1.1, >= 1.2.0)
|
||||
activejob (7.0.6)
|
||||
activesupport (= 7.0.6)
|
||||
activejob (7.0.8)
|
||||
activesupport (= 7.0.8)
|
||||
globalid (>= 0.3.6)
|
||||
activemodel (7.0.6)
|
||||
activesupport (= 7.0.6)
|
||||
activerecord (7.0.6)
|
||||
activemodel (= 7.0.6)
|
||||
activesupport (= 7.0.6)
|
||||
activemodel (7.0.8)
|
||||
activesupport (= 7.0.8)
|
||||
activerecord (7.0.8)
|
||||
activemodel (= 7.0.8)
|
||||
activesupport (= 7.0.8)
|
||||
activerecord-import (1.4.1)
|
||||
activerecord (>= 4.2)
|
||||
activestorage (7.0.6)
|
||||
actionpack (= 7.0.6)
|
||||
activejob (= 7.0.6)
|
||||
activerecord (= 7.0.6)
|
||||
activesupport (= 7.0.6)
|
||||
activestorage (7.0.8)
|
||||
actionpack (= 7.0.8)
|
||||
activejob (= 7.0.8)
|
||||
activerecord (= 7.0.8)
|
||||
activesupport (= 7.0.8)
|
||||
marcel (~> 1.0)
|
||||
mini_mime (>= 1.1.0)
|
||||
activesupport (7.0.6)
|
||||
activesupport (7.0.8)
|
||||
concurrent-ruby (~> 1.0, >= 1.0.2)
|
||||
i18n (>= 1.6, < 2)
|
||||
minitest (>= 5.1)
|
||||
|
|
@ -162,8 +162,8 @@ GEM
|
|||
formatador (1.1.0)
|
||||
friendly_id (5.1.0)
|
||||
activerecord (>= 4.0.0)
|
||||
globalid (1.1.0)
|
||||
activesupport (>= 5.0)
|
||||
globalid (1.2.1)
|
||||
activesupport (>= 6.1)
|
||||
guard (2.18.0)
|
||||
formatador (>= 0.2.4)
|
||||
listen (>= 2.7, < 4.0)
|
||||
|
|
@ -228,13 +228,13 @@ GEM
|
|||
marcel (1.0.2)
|
||||
matrix (0.4.2)
|
||||
method_source (1.0.0)
|
||||
mini_mime (1.1.2)
|
||||
minitest (5.18.1)
|
||||
msgpack (1.7.2)
|
||||
mini_mime (1.1.5)
|
||||
minitest (5.20.0)
|
||||
msgpack (1.7.0)
|
||||
multi_json (1.15.0)
|
||||
nenv (0.3.0)
|
||||
nested_scaffold (1.1.0)
|
||||
net-imap (0.3.6)
|
||||
net-imap (0.3.7)
|
||||
date
|
||||
net-protocol
|
||||
net-pop (0.1.2)
|
||||
|
|
@ -243,14 +243,14 @@ GEM
|
|||
timeout
|
||||
net-sftp (4.0.0)
|
||||
net-ssh (>= 5.0.0, < 8.0.0)
|
||||
net-smtp (0.3.3)
|
||||
net-smtp (0.4.0)
|
||||
net-protocol
|
||||
net-ssh (7.1.0)
|
||||
newrelic_rpm (9.3.1)
|
||||
nio4r (2.5.9)
|
||||
nokogiri (1.15.3-arm64-darwin)
|
||||
nokogiri (1.15.4-arm64-darwin)
|
||||
racc (~> 1.4)
|
||||
nokogiri (1.15.3-x86_64-linux)
|
||||
nokogiri (1.15.4-x86_64-linux)
|
||||
racc (~> 1.4)
|
||||
notiffany (0.1.3)
|
||||
nenv (~> 0.1)
|
||||
|
|
@ -270,11 +270,11 @@ GEM
|
|||
pry (0.14.2)
|
||||
coderay (~> 1.1)
|
||||
method_source (~> 1.0)
|
||||
public_suffix (5.0.3)
|
||||
puma (6.3.0)
|
||||
public_suffix (5.0.1)
|
||||
puma (6.4.0)
|
||||
nio4r (~> 2.0)
|
||||
racc (1.7.1)
|
||||
rack (2.2.7)
|
||||
rack (2.2.8)
|
||||
rack-livereload (0.5.1)
|
||||
rack
|
||||
rack-mini-profiler (3.1.0)
|
||||
|
|
@ -283,34 +283,34 @@ GEM
|
|||
rack
|
||||
rack-test (2.1.0)
|
||||
rack (>= 1.3)
|
||||
rails (7.0.6)
|
||||
actioncable (= 7.0.6)
|
||||
actionmailbox (= 7.0.6)
|
||||
actionmailer (= 7.0.6)
|
||||
actionpack (= 7.0.6)
|
||||
actiontext (= 7.0.6)
|
||||
actionview (= 7.0.6)
|
||||
activejob (= 7.0.6)
|
||||
activemodel (= 7.0.6)
|
||||
activerecord (= 7.0.6)
|
||||
activestorage (= 7.0.6)
|
||||
activesupport (= 7.0.6)
|
||||
rails (7.0.8)
|
||||
actioncable (= 7.0.8)
|
||||
actionmailbox (= 7.0.8)
|
||||
actionmailer (= 7.0.8)
|
||||
actionpack (= 7.0.8)
|
||||
actiontext (= 7.0.8)
|
||||
actionview (= 7.0.8)
|
||||
activejob (= 7.0.8)
|
||||
activemodel (= 7.0.8)
|
||||
activerecord (= 7.0.8)
|
||||
activestorage (= 7.0.8)
|
||||
activesupport (= 7.0.8)
|
||||
bundler (>= 1.15.0)
|
||||
railties (= 7.0.6)
|
||||
railties (= 7.0.8)
|
||||
rails-controller-testing (1.0.5)
|
||||
actionpack (>= 5.0.1.rc1)
|
||||
actionview (>= 5.0.1.rc1)
|
||||
activesupport (>= 5.0.1.rc1)
|
||||
rails-dom-testing (2.1.1)
|
||||
rails-dom-testing (2.2.0)
|
||||
activesupport (>= 5.0.0)
|
||||
minitest
|
||||
nokogiri (>= 1.6)
|
||||
rails-html-sanitizer (1.6.0)
|
||||
loofah (~> 2.21)
|
||||
nokogiri (~> 1.14)
|
||||
railties (7.0.6)
|
||||
actionpack (= 7.0.6)
|
||||
activesupport (= 7.0.6)
|
||||
railties (7.0.8)
|
||||
actionpack (= 7.0.8)
|
||||
activesupport (= 7.0.8)
|
||||
method_source
|
||||
rake (>= 12.2)
|
||||
thor (~> 1.0)
|
||||
|
|
@ -438,13 +438,13 @@ GEM
|
|||
selenium-webdriver (~> 4.2)
|
||||
webrick (1.8.1)
|
||||
websocket (1.2.9)
|
||||
websocket-driver (0.7.5)
|
||||
websocket-driver (0.7.6)
|
||||
websocket-extensions (>= 0.1.0)
|
||||
websocket-extensions (0.1.5)
|
||||
xpath (3.2.0)
|
||||
nokogiri (~> 1.8)
|
||||
yard (0.9.34)
|
||||
zeitwerk (2.6.8)
|
||||
yard (0.9.32)
|
||||
zeitwerk (2.6.12)
|
||||
|
||||
PLATFORMS
|
||||
arm64-darwin-21
|
||||
|
|
@ -489,7 +489,7 @@ DEPENDENCIES
|
|||
puma (>= 5.6.4)
|
||||
rack-livereload
|
||||
rack-mini-profiler
|
||||
rails (~> 7.0.4)
|
||||
rails (~> 7.0.8)
|
||||
rails-controller-testing
|
||||
redis (~> 3.0)
|
||||
reline (~> 0.3.2)
|
||||
|
|
|
|||
|
|
@ -31,8 +31,8 @@
|
|||
"watch:all": "yarn watch:css & yarn build --watch"
|
||||
},
|
||||
"devDependencies": {
|
||||
"cypress": "^12.17.1",
|
||||
"@cypress/request": "^3.0.0",
|
||||
"cypress": "^12.17.1",
|
||||
"eslint-plugin-cypress": "^2.13.3",
|
||||
"jest": "^29.6.1",
|
||||
"jest-environment-jsdom": "^29.6.1",
|
||||
|
|
|
|||
15
yarn.lock
15
yarn.lock
|
|
@ -990,9 +990,9 @@
|
|||
uuid "^8.3.2"
|
||||
|
||||
"@cypress/request@^3.0.0":
|
||||
version "3.0.0"
|
||||
resolved "https://registry.yarnpkg.com/@cypress/request/-/request-3.0.0.tgz#7f58dfda087615ed4e6aab1b25fffe7630d6dd85"
|
||||
integrity sha512-GKFCqwZwMYmL3IBoNeR2MM1SnxRIGERsQOTWeQKoYBt2JLqcqiy7JXqO894FLrpjZYqGxW92MNwRH2BN56obdQ==
|
||||
version "3.0.1"
|
||||
resolved "https://registry.yarnpkg.com/@cypress/request/-/request-3.0.1.tgz#72d7d5425236a2413bd3d8bb66d02d9dc3168960"
|
||||
integrity sha512-TWivJlJi8ZDx2wGOw1dbLuHJKUYX7bWySw377nlnGOW3hP9/MUKIsEdXT/YngWxVdgNCHRBmFlBipE+5/2ZZlQ==
|
||||
dependencies:
|
||||
aws-sign2 "~0.7.0"
|
||||
aws4 "^1.8.0"
|
||||
|
|
@ -1007,7 +1007,7 @@
|
|||
json-stringify-safe "~5.0.1"
|
||||
mime-types "~2.1.19"
|
||||
performance-now "^2.1.0"
|
||||
qs "~6.10.3"
|
||||
qs "6.10.4"
|
||||
safe-buffer "^5.1.2"
|
||||
tough-cookie "^4.1.3"
|
||||
tunnel-agent "^0.6.0"
|
||||
|
|
@ -3775,6 +3775,13 @@ pure-rand@^6.0.0:
|
|||
resolved "https://registry.yarnpkg.com/pure-rand/-/pure-rand-6.0.2.tgz#a9c2ddcae9b68d736a8163036f088a2781c8b306"
|
||||
integrity sha512-6Yg0ekpKICSjPswYOuC5sku/TSWaRYlA0qsXqJgM/d/4pLPHPuTxK7Nbf7jFKzAeedUhR8C7K9Uv63FBsSo8xQ==
|
||||
|
||||
qs@6.10.4:
|
||||
version "6.10.4"
|
||||
resolved "https://registry.yarnpkg.com/qs/-/qs-6.10.4.tgz#6a3003755add91c0ec9eacdc5f878b034e73f9e7"
|
||||
integrity sha512-OQiU+C+Ds5qiH91qh/mg0w+8nwQuLjM4F4M/PbmhDOoYehPh+Fb0bDjtR1sOvy7YKxvj28Y/M0PhP5uVX0kB+g==
|
||||
dependencies:
|
||||
side-channel "^1.0.4"
|
||||
|
||||
qs@~6.10.3:
|
||||
version "6.10.5"
|
||||
resolved "https://registry.yarnpkg.com/qs/-/qs-6.10.5.tgz#974715920a80ff6a262264acd2c7e6c2a53282b4"
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue