Updated bootstrap and sqlite3 in order to solve some concerns with security (#385)

2019-03-04 16:54:11 -05:00 · 2019-03-04 16:54:11 -05:00 · 49779b2dd1
parent 79bb782319
commit 49779b2dd1
2 changed files with 25 additions and 18 deletions
--- a/6
+++ b/6
@ -14,7 +14,7 @@ gem 'rails', '~> 5.0.7'
 gem 'puma', '~> 3.0'

 # Use SQLite as the primary database.
-gem 'sqlite3'
+gem 'sqlite3', '~> 1.3'

 # Use SCSS for stylesheets
 gem 'sass-rails', '~> 5.0'
@ -26,7 +26,7 @@ gem 'uglifier', '>= 1.3.0'
 gem 'coffee-rails', '~> 4.2'

 # See https://github.com/rails/execjs#readme for more supported runtimes
-gem 'therubyracer', platforms: :ruby
+gem 'mini_racer', platforms: :ruby

 # Use jquery as the JavaScript library
 gem 'jquery-rails'
@ -55,7 +55,7 @@ gem 'omniauth-bn-launcher', '~> 0.1.0'
 gem 'bigbluebutton-api-ruby'

 # Front-end.
-gem 'bootstrap', '~> 4.1.3'
+gem 'bootstrap', '~> 4.3.1'
 gem 'tabler-rubygem'

 # For detecting the users preferred language.
--- a/Gemfile.lock
+++ b/Gemfile.lock
@ -44,16 +44,16 @@ GEM
      public_suffix (>= 2.0.2, < 4.0)
    arel (7.1.4)
    ast (2.4.0)
-    autoprefixer-rails (8.6.4)
+    autoprefixer-rails (9.4.9)
      execjs
    bcrypt (3.1.12)
    bigbluebutton-api-ruby (1.7.0)
      xml-simple (~> 1.1)
    bindex (0.5.0)
-    bootstrap (4.1.3)
-      autoprefixer-rails (>= 6.0.3)
-      popper_js (>= 1.12.9, < 2)
-      sass (>= 3.5.2)
+    bootstrap (4.3.1)
+      autoprefixer-rails (>= 9.1.0)
+      popper_js (>= 1.14.3, < 2)
+      sassc-rails (>= 2.0.0)
    builder (3.2.3)
    byebug (10.0.2)
    coffee-rails (4.2.2)
@ -114,7 +114,7 @@ GEM
      thor (>= 0.14, < 2.0)
    json (2.1.0)
    jwt (1.5.6)
-    libv8 (3.16.14.19)
+    libv8 (6.7.288.46.1)
    listen (3.0.8)
      rb-fsevent (~> 0.9, >= 0.9.4)
      rb-inotify (~> 0.9, >= 0.9.7)
@ -129,6 +129,8 @@ GEM
    mime-types-data (3.2018.0812)
    mini_mime (1.0.0)
    mini_portile2 (2.3.0)
+    mini_racer (0.2.4)
+      libv8 (>= 6.3)
    minitest (5.11.3)
    multi_json (1.13.1)
    multi_xml (0.6.0)
@ -176,7 +178,7 @@ GEM
    parser (2.5.1.0)
      ast (~> 2.4.0)
    pg (0.21.0)
-    popper_js (1.14.3)
+    popper_js (1.14.5)
    powerpack (0.1.2)
    public_suffix (3.0.3)
    puma (3.11.4)
@ -218,7 +220,6 @@ GEM
      ffi (>= 0.5.0, < 2)
    redcarpet (3.4.0)
    redis (3.3.5)
-    ref (2.0.0)
    rest-client (2.0.2)
      http-cookie (>= 1.0.2, < 2.0)
      mime-types (>= 1.16, < 4.0)
@ -262,6 +263,15 @@ GEM
      sprockets (>= 2.8, < 4.0)
      sprockets-rails (>= 2.0, < 4.0)
      tilt (>= 1.1, < 3)
+    sassc (2.0.1)
+      ffi (~> 1.9)
+      rake
+    sassc-rails (2.1.0)
+      railties (>= 4.0.0)
+      sassc (>= 2.0)
+      sprockets (> 3.0)
+      sprockets-rails
+      tilt
    shoulda-matchers (3.1.2)
      activesupport (>= 4.0.0)
    simplecov (0.16.1)
@ -286,9 +296,6 @@ GEM
      autoprefixer-rails (>= 6.0.3)
    term-ansicolor (1.6.0)
      tins (~> 1.0)
-    therubyracer (0.12.3)
-      libv8 (~> 3.16.14.15)
-      ref
    thor (0.20.0)
    thread_safe (0.3.6)
    tilt (2.0.8)
@ -325,7 +332,7 @@ DEPENDENCIES
  action-cable-testing
  bcrypt (~> 3.1.7)
  bigbluebutton-api-ruby
-  bootstrap (~> 4.1.3)
+  bootstrap (~> 4.3.1)
  byebug
  coffee-rails (~> 4.2)
  coveralls
@ -337,6 +344,7 @@ DEPENDENCIES
  jbuilder (~> 2.5)
  jquery-rails
  listen (~> 3.0.5)
+  mini_racer
  omniauth
  omniauth-bn-launcher (~> 0.1.0)
  omniauth-google-oauth2
@ -355,9 +363,8 @@ DEPENDENCIES
  shoulda-matchers (~> 3.1)
  spring
  spring-watcher-listen (~> 2.0.0)
-  sqlite3
+  sqlite3 (~> 1.3)
  tabler-rubygem
-  therubyracer
  turbolinks (~> 5)
  tzinfo-data
  uglifier (>= 1.3.0)
@ -365,4 +372,4 @@ DEPENDENCIES
  webmock

 BUNDLED WITH
-   1.16.4
+   1.17.1