Update nokogiri to 1.6.8 to fix its security issue

The security issue is fixed in this version. See also sparklemotion/nokogiri#1473
satoryu · Jul 6, 2016 · 8d23a5c · 8d23a5c
1 parent cc88584
commit 8d23a5c
Show file tree

Hide file tree

Showing 2 changed files with 13 additions and 5 deletions.
diff --git a/Gemfile b/Gemfile
@@ -7,4 +7,6 @@ gem 'selenium-webdriver'
 gem 'rakuten_web_service'
 gem 'dotenv'
 
-# gem "rails"
+# This version dependency is required to resolve this install issue:
+#   https://github.com/flori/json/issues/229
+gem 'json', '~> 1.8.2'
diff --git a/Gemfile.lock b/Gemfile.lock
@@ -18,13 +18,15 @@ GEM
     faraday_middleware (0.9.0)
       faraday (>= 0.7.4, < 0.9)
     ffi (1.9.0)
-    json (1.8.0)
+    json (1.8.3)
     mime-types (1.24)
-    mini_portile (0.5.1)
+    mini_portile2 (2.1.0)
     multi_json (1.7.9)
     multipart-post (1.2.0)
-    nokogiri (1.6.0)
-      mini_portile (~> 0.5.0)
+    nokogiri (1.6.8)
+      mini_portile2 (~> 2.1.0)
+      pkg-config (~> 1.1.7)
+    pkg-config (1.1.7)
     rack (1.5.2)
     rack-test (0.6.2)
       rack (>= 1.0)
@@ -48,5 +50,9 @@ DEPENDENCIES
   capybara
   capybara-webkit
   dotenv
+  json (~> 1.8.2)
   rakuten_web_service
   selenium-webdriver
+
+BUNDLED WITH
+   1.10.6