From 1c5b3466773513c90a9f9fbb3909425c7891834c Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 21 Sep 2024 02:02:50 +0000
Subject: [PATCH] fix: pact_broker/Gemfile & pact_broker/Gemfile.lock to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-PUMA-8062124
---
 pact_broker/Gemfile      | 2 +-
 pact_broker/Gemfile.lock | 8 +++++---
 2 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/pact_broker/Gemfile b/pact_broker/Gemfile
index 8ecdc430..b59dd63c 100644
--- a/pact_broker/Gemfile
+++ b/pact_broker/Gemfile
@@ -2,6 +2,6 @@ source 'https://rubygems.org'
 
 gem "pact_broker"
 gem "pg", "~>1.0"
-gem "puma", "~> 3.12"
+gem "puma", "~> 5.6", ">= 5.6.9"
 gem "mysql2", "~>0.3"
 gem "sqlite3", "~>1.3"
diff --git a/pact_broker/Gemfile.lock b/pact_broker/Gemfile.lock
index a0315965..d689b255 100644
--- a/pact_broker/Gemfile.lock
+++ b/pact_broker/Gemfile.lock
@@ -61,6 +61,7 @@ GEM
     multi_xml (0.6.0)
     mustermann (1.0.3)
     mysql2 (0.5.2)
+    nio4r (2.7.3)
     pact-support (1.11.0)
       awesome_print (~> 1.1)
       find_a_port (~> 1.0.1)
@@ -96,7 +97,8 @@ GEM
       thor (~> 0.18)
     padrino-support (0.14.4)
     pg (1.1.4)
-    puma (3.12.1)
+    puma (5.6.9)
+      nio4r (~> 2.0)
     rack (2.0.7)
     rack-protection (2.0.7)
       rack
@@ -156,8 +158,8 @@ DEPENDENCIES
   mysql2 (~> 0.3)
   pact_broker
   pg (~> 1.0)
-  puma (~> 3.12)
+  puma (~> 5.6, >= 5.6.9)
   sqlite3 (~> 1.3)
 
 BUNDLED WITH
-   2.0.2
+   2.1.4