Update Puma to version 5.5.2
It addresses CVE-2021-41136 which we're not vulnerable to under our default configuration. Changelog: security
Showing
... | @@ -185,7 +185,7 @@ gem 'rack', '~> 2.2.3' | ... | @@ -185,7 +185,7 @@ gem 'rack', '~> 2.2.3' |
gem 'rack-timeout', '~> 0.5.1', require: 'rack/timeout/base' | gem 'rack-timeout', '~> 0.5.1', require: 'rack/timeout/base' | ||
group :puma do | group :puma do | ||
gem 'puma', '~> 5.3.1', require: false | gem 'puma', '~> 5.5.2', require: false | ||
gem 'puma_worker_killer', '~> 0.3.1', require: false | gem 'puma_worker_killer', '~> 0.3.1', require: false | ||
gem 'sd_notify', '~> 0.1.0', require: false | gem 'sd_notify', '~> 0.1.0', require: false | ||
end | end | ||
... | ... |
Please register or sign in to comment