From 4e8ef332618ee05b4c9a47902931f976cfbf7c11 Mon Sep 17 00:00:00 2001 From: "dependabot-preview[bot]" <27856297+dependabot-preview[bot]@users.noreply.github.com> Date: Thu, 18 Jun 2020 05:30:42 +0000 Subject: [PATCH] [Security] Bump loofah from 2.2.3 to 2.6.0 Bumps [loofah](https://github.com/flavorjones/loofah) from 2.2.3 to 2.6.0. **This update includes a security fix.** - [Release notes](https://github.com/flavorjones/loofah/releases) - [Changelog](https://github.com/flavorjones/loofah/blob/master/CHANGELOG.md) - [Commits](https://github.com/flavorjones/loofah/compare/v2.2.3...v2.6.0) Signed-off-by: dependabot-preview[bot] --- Gemfile.lock | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/Gemfile.lock b/Gemfile.lock index 5485dbe..9458f28 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -116,7 +116,7 @@ GEM zip-zip (~> 0.3) cqm-validators (0.1.1) nokogiri (~> 1.10.3) - crass (1.0.4) + crass (1.0.6) daemons (1.3.1) delayed_job (4.1.5) activesupport (>= 3.0, < 5.3) @@ -178,7 +178,7 @@ GEM activesupport (>= 4) railties (>= 4) request_store (~> 1.0) - loofah (2.2.3) + loofah (2.6.0) crass (~> 1.0.2) nokogiri (>= 1.5.9) macaddr (1.7.2) @@ -226,7 +226,7 @@ GEM mustache (1.1.0) netrc (0.11.0) newrelic_rpm (6.2.0.354) - nokogiri (1.10.4) + nokogiri (1.10.9) mini_portile2 (~> 2.4.0) non-stupid-digest-assets (1.0.9) sprockets (>= 2.0)