From 286bf45d4cae7e6ea2c9164d861f020df6fa2a43 Mon Sep 17 00:00:00 2001 From: "dependabot-preview[bot]" <27856297+dependabot-preview[bot]@users.noreply.github.com> Date: Fri, 15 Nov 2019 21:51:42 +0100 Subject: [PATCH] [Security] Bump rack-cors from 1.0.3 to 1.0.6 (#12395) Bumps [rack-cors](https://github.com/cyu/rack-cors) from 1.0.3 to 1.0.6. **This update includes a security fix.** - [Release notes](https://github.com/cyu/rack-cors/releases) - [Changelog](https://github.com/cyu/rack-cors/blob/master/CHANGELOG.md) - [Commits](https://github.com/cyu/rack-cors/compare/v1.0.3...v1.0.6) Signed-off-by: dependabot-preview[bot] --- Gemfile.lock | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/Gemfile.lock b/Gemfile.lock index ceb903f609..4fa1ec5aad 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -461,7 +461,8 @@ GEM rack (2.0.7) rack-attack (6.1.0) rack (>= 1.0, < 3) - rack-cors (1.0.3) + rack-cors (1.0.6) + rack (>= 1.6.0) rack-protection (2.0.7) rack rack-proxy (0.6.5)