Update Devise gem to fix security issue

Cyril Mougel
1 parent c9f1742a
Showing 2 changed files with 9 additions and 9 deletions Show diff stats
Gemfile
Gemfile.lock
@@ -5,7 +5,7 @@ gem &#39;mongoid&#39;, &#39;~&gt; 2.7.1&#39;
  
 # Mongoid rails migration > 0.0.14 is not compatible to Mongoid 2.x
 gem 'mongoid_rails_migrations', '~> 0.0.14'
-gem 'devise'
+gem 'devise', '~> 2.2.6' # Last version supporting ruby 1.8.7
 gem 'haml'
 gem 'htmlentities'
 gem 'rack-ssl', :require => 'rack/ssl'   # force SSL
@@ -103,8 +103,8 @@ GEM
       debugger-ruby_core_source (~> 1.2.3)
     debugger-linecache (1.2.0)
     debugger-ruby_core_source (1.2.3)
-    decent_exposure (2.2.0)
-    devise (2.2.4)
+    decent_exposure (2.2.1)
+    devise (2.2.6)
       bcrypt-ruby (~> 3.0)
       orm_adapter (~> 0.1)
       railties (~> 3.1)
@@ -195,8 +195,8 @@ GEM
       bundler (>= 1.0.0)
       rails (>= 3.0.0)
       railties (>= 3.0.0)
-    multi_json (1.7.7)
-    multi_xml (0.5.4)
+    multi_json (1.7.8)
+    multi_xml (0.5.5)
     multipart-post (1.2.0)
     net-scp (1.1.2)
       net-ssh (>= 2.6.5)
@@ -294,9 +294,9 @@ GEM
       mime-types (>= 1.16)
     ri_cal (0.8.8)
     rspec-core (2.14.4)
-    rspec-expectations (2.14.0)
+    rspec-expectations (2.14.1)
       diff-lcs (>= 1.1.3, < 2.0)
-    rspec-mocks (2.14.2)
+    rspec-mocks (2.14.3)
     rspec-rails (2.14.0)
       actionpack (>= 3.0)
       activesupport (>= 3.0)
@@ -316,7 +316,7 @@ GEM
       json
       rest-client
     safe_yaml (0.9.5)
-    selenium-webdriver (2.33.0)
+    selenium-webdriver (2.34.0)
       childprocess (>= 0.2.5)
       multi_json (~> 1.0)
       rubyzip
@@ -399,7 +399,7 @@ DEPENDENCIES
   database_cleaner (~> 0.9.0)
   debugger
   decent_exposure
-  devise
+  devise (~> 2.2.6)
   email_spec
   execjs
   fabrication (~> 1.3.0)
...	...	@@ -5,7 +5,7 @@ gem 'mongoid', '~> 2.7.1'
5	5
6	6	# Mongoid rails migration > 0.0.14 is not compatible to Mongoid 2.x
7	7	gem 'mongoid_rails_migrations', '~> 0.0.14'
8		-gem 'devise'
	8	+gem 'devise', '~> 2.2.6' # Last version supporting ruby 1.8.7
9	9	gem 'haml'
10	10	gem 'htmlentities'
11	11	gem 'rack-ssl', :require => 'rack/ssl' # force SSL
...	...
...	...	@@ -103,8 +103,8 @@ GEM
103	103	debugger-ruby_core_source (~> 1.2.3)
104	104	debugger-linecache (1.2.0)
105	105	debugger-ruby_core_source (1.2.3)
106		- decent_exposure (2.2.0)
107		- devise (2.2.4)
	106	+ decent_exposure (2.2.1)
	107	+ devise (2.2.6)
108	108	bcrypt-ruby (~> 3.0)
109	109	orm_adapter (~> 0.1)
110	110	railties (~> 3.1)
...	...	@@ -195,8 +195,8 @@ GEM
195	195	bundler (>= 1.0.0)
196	196	rails (>= 3.0.0)
197	197	railties (>= 3.0.0)
198		- multi_json (1.7.7)
199		- multi_xml (0.5.4)
	198	+ multi_json (1.7.8)
	199	+ multi_xml (0.5.5)
200	200	multipart-post (1.2.0)
201	201	net-scp (1.1.2)
202	202	net-ssh (>= 2.6.5)
...	...	@@ -294,9 +294,9 @@ GEM
294	294	mime-types (>= 1.16)
295	295	ri_cal (0.8.8)
296	296	rspec-core (2.14.4)
297		- rspec-expectations (2.14.0)
	297	+ rspec-expectations (2.14.1)
298	298	diff-lcs (>= 1.1.3, < 2.0)
299		- rspec-mocks (2.14.2)
	299	+ rspec-mocks (2.14.3)
300	300	rspec-rails (2.14.0)
301	301	actionpack (>= 3.0)
302	302	activesupport (>= 3.0)
...	...	@@ -316,7 +316,7 @@ GEM
316	316	json
317	317	rest-client
318	318	safe_yaml (0.9.5)
319		- selenium-webdriver (2.33.0)
	319	+ selenium-webdriver (2.34.0)
320	320	childprocess (>= 0.2.5)
321	321	multi_json (~> 1.0)
322	322	rubyzip
...	...	@@ -399,7 +399,7 @@ DEPENDENCIES
399	399	database_cleaner (~> 0.9.0)
400	400	debugger
401	401	decent_exposure
402		- devise
	402	+ devise (~> 2.2.6)
403	403	email_spec
404	404	execjs
405	405	fabrication (~> 1.3.0)
...	...