From 367b7fbda3b7fbbfd128cc130522a17cad08be48 Mon Sep 17 00:00:00 2001 From: Gary Holtz Date: Tue, 18 Jan 2022 17:19:39 -0600 Subject: [PATCH] Bump rouge version to fix a security issue Changelog: security --- ruby/Gemfile | 1 + ruby/Gemfile.lock | 1 + 2 files changed, 2 insertions(+) diff --git a/ruby/Gemfile b/ruby/Gemfile index 70dd9c594c9..b2f0a36524c 100644 --- a/ruby/Gemfile +++ b/ruby/Gemfile @@ -10,6 +10,7 @@ gem 'gitlab-gollum-rugged_adapter', '~> 0.4.4.4.gitlab.1', require: false gem 'grpc', '~> 1.42.0' # keep in lock-step with grpc-tools gem 'sentry-raven', '~> 3.0', require: false gem 'faraday', '~> 1.0' +gem 'rouge', '~> 3.27.0' gem 'rbtrace', require: false # Labkit provides observability functionality diff --git a/ruby/Gemfile.lock b/ruby/Gemfile.lock index fd0dea027e0..6e9f68b2772 100644 --- a/ruby/Gemfile.lock +++ b/ruby/Gemfile.lock @@ -241,6 +241,7 @@ DEPENDENCIES pry (~> 0.12.2) rbtrace rdoc (~> 6.0) + rouge (~> 3.27.0) rspec rspec-parameterized rubocop (~> 0.69) -- GitLab