[AB2D-6321] Address Security Vulnerabilities (#55)

## 🎫 Ticket https://jira.cms.gov/browse/AB2D-6321 ## 🛠 Changes Run a bundle update to update dependencies specifically targeting an upgrade to REXML ## ℹ️ Context Update dependencies, with a specific goal to address rexml to patch security vulnerabilities ## 🧪 Validation Site was ran and tested locally after updates were performed
CMSgov · Oct 7, 2024 · f41e8ac · f41e8ac
1 parent 08a447d
commit f41e8ac
Show file tree

Hide file tree

Showing 2 changed files with 9 additions and 4 deletions.
diff --git a/Gemfile b/Gemfile
@@ -13,6 +13,7 @@ gem "jekyll", "~> 3.9.0"
 # This is the default theme for new Jekyll sites. You may change this to anything you like.
 gem "minima", "~> 2.5", ">= 2.5.1"
 
+gem "rexml", "~> 3.3.6"
 gem "kramdown-parser-gfm"
 
 # If you want to use GitHub Pages, remove the "gem "jekyll"" above and
@@ -32,3 +33,5 @@ gem "wdm", "~> 0.1.0" if Gem.win_platform?
 
 gem 'jekyll-redirect-from', '>= 0.15.0'
 
+
+gem "webrick", "~> 1.8"
diff --git a/Gemfile.lock b/Gemfile.lock
@@ -37,7 +37,7 @@ GEM
       jekyll (>= 3.8, < 5.0)
     jekyll-watch (2.2.1)
       listen (~> 3.0)
-    kramdown (2.3.1)
+    kramdown (2.4.0)
       rexml
     kramdown-parser-gfm (1.1.0)
       kramdown (~> 2.0)
@@ -56,18 +56,18 @@ GEM
     rb-fsevent (0.10.4)
     rb-inotify (0.10.1)
       ffi (~> 1.0)
-    rexml (3.2.8)
-      strscan (>= 3.0.9)
+    rexml (3.3.8)
     rouge (3.26.0)
     safe_yaml (1.0.5)
     sass (3.7.4)
       sass-listen (~> 4.0.0)
     sass-listen (4.0.0)
       rb-fsevent (~> 0.9, >= 0.9.4)
       rb-inotify (~> 0.9, >= 0.9.7)
-    strscan (3.1.0)
+    webrick (1.8.1)
 
 PLATFORMS
+  arm64-darwin-21
   ruby
   x86_64-darwin-19
 
@@ -77,7 +77,9 @@ DEPENDENCIES
   jekyll-redirect-from (>= 0.15.0)
   kramdown-parser-gfm
   minima (~> 2.5, >= 2.5.1)
+  rexml (~> 3.3.6)
   tzinfo-data
+  webrick (~> 1.8)
 
 BUNDLED WITH
    2.2.0