Update Puma to version 5.5.2

It addresses CVE-2021-41136 which we're not vulnerable to under our default configuration. Changelog: security

Update Puma to version 5.5.2
It addresses CVE-2021-41136 which we're not vulnerable to under our default configuration. Changelog: security
32d23747 · dcouture · Dominic Couture · f11ca956 · 32d23747 · 32d23747
Commit 32d23747 authored Dec 01, 2021 by dcouture Committed by Dominic Couture Dec 07, 2021
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 3 deletions

Gemfile Gemfile +1 -1

Gemfile.lock Gemfile.lock +2 -2

No files found.
--- a/Gemfile
+++ b/Gemfile
@@ -185,7 +185,7 @@ gem 'rack', '~> 2.2.3'
 gem 'rack-timeout', '~> 0.5.1', require: 'rack/timeout/base'

 group :puma do
-  gem 'puma', '~> 5.3.1', require: false
+  gem 'puma', '~> 5.5.2', require: false
  gem 'puma_worker_killer', '~> 0.3.1', require: false
  gem 'sd_notify', '~> 0.1.0', require: false
 end

--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -945,7 +945,7 @@ GEM
      tty-markdown
      tty-prompt
    public_suffix (4.0.6)
-    puma (5.3.2)
+    puma (5.5.2)
      nio4r (~> 2.0)
    puma_worker_killer (0.3.1)
      get_process_mem (~> 0.2)
@@ -1581,7 +1581,7 @@ DEPENDENCIES
  pry-byebug
  pry-rails (~> 0.3.9)
  pry-shell (~> 0.5.0)
-  puma (~> 5.3.1)
+  puma (~> 5.5.2)
  puma_worker_killer (~> 0.3.1)
  rack (~> 2.2.3)
  rack-attack (~> 6.3.0)