Update bundle-audit ignore issues due to current version of Ruby on R…

…ails
zeeshansarwar38 · Apr 29, 2022 · 95ac8c9 · 95ac8c9
1 parent 630f5c4
commit 95ac8c9
Show file tree

Hide file tree

Showing 3 changed files with 4 additions and 4 deletions.
diff --git a/.circleci/config.yml b/.circleci/config.yml
@@ -102,7 +102,7 @@ jobs:
           paths:
             - codeclimate.backend.json
       # Remove ignore values when we upgrade to Ruby 3 + Rails 7
-      - run: bundle exec bundle-audit check --ignore CVE-2015-9284 CVE-2021-22942 CVE-2022-23633 CVE-2021-44528 CVE-2022-21831 --update
+      - run: bundle exec bundle-audit check --ignore CVE-2015-9284 CVE-2021-22942 CVE-2022-23633 CVE-2021-44528 CVE-2022-21831 CVE-2022-22577 CVE-2022-27777 --update
       - store_test_results:
           path: /tmp/circleci-test-results
       - store_artifacts:

diff --git a/Gemfile b/Gemfile
@@ -95,7 +95,7 @@ group :development, :test do
 
   gem 'webdrivers', '>= 4.6.1'
 
-  gem 'actionview', '>= 6.0.3.3'
+  gem 'actionview', '>= 6.0.3.7'
 end
 
 group :test do

diff --git a/Gemfile.lock b/Gemfile.lock
@@ -207,7 +207,7 @@ GEM
       addressable (~> 2.7)
     letter_opener (1.7.0)
       launchy (~> 2.2)
-    loofah (2.16.0)
+    loofah (2.17.0)
       crass (~> 1.0.2)
       nokogiri (>= 1.5.9)
     mail (2.7.1)
@@ -536,7 +536,7 @@ PLATFORMS
   ruby
 
 DEPENDENCIES
-  actionview (>= 6.0.3.3)
+  actionview (>= 6.0.3.7)
   activerecord-import
   annotate (~> 2.7)
   bcrypt (= 3.1.13)