From 5404b3a0cc0424a61750f3aa7c339a689e629e0f Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 14 Oct 2025 12:04:53 +0000
Subject: [PATCH] fix: Gemfile to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-RACK-13378928
- https://snyk.io/vuln/SNYK-RUBY-RACK-13378930
- https://snyk.io/vuln/SNYK-RUBY-RACK-13378932
- https://snyk.io/vuln/SNYK-RUBY-RACK-13535097
- https://snyk.io/vuln/SNYK-RUBY-RACK-13524628
- https://snyk.io/vuln/SNYK-RUBY-URI-13506785
---
 Gemfile | 22 +++++++++++-----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/Gemfile b/Gemfile
index e0c3cd8d18..cc3924dfc9 100644
--- a/Gemfile
+++ b/Gemfile
@@ -2,13 +2,13 @@ source 'https://rubygems.org'
 
 # core
 gem 'active_interaction', '~> 4.0'
-gem 'apipie-rails', '~> 0.6.0'
+gem 'apipie-rails', '~> 0.7.0'
 gem 'bootsnap', '>= 1.1.0', require: false
 gem 'iso8601', '0.13.0' # for dates and times
 gem 'mimemagic', '0.4.3'
 gem 'mime-types-data'
 gem 'puma'
-gem 'rails', '~> 6.1.4'
+gem 'rails', '~> 6.1.7', '>= 6.1.7.10'
 gem 'rest-client'
 gem 'rubyzip', require: 'zip'
 gem 'uglifier'
@@ -17,7 +17,7 @@ gem 'uglifier'
 gem 'figaro', '~> 1.2'
 
 # model related
-gem 'paper_trail', '~> 14.0'
+gem 'paper_trail', '~> 15.0', '>= 15.0.0'
 gem 'pg', '1.5.9'
 # 1.8 is for Rails < 5.0
 gem 'ransack', '~> 4.0.0'
@@ -32,18 +32,18 @@ gem 'nokogiri', '~> 1.16.0'
 gem 'bootstrap-sass', '~> 3.4'
 gem 'cancancan'
 gem 'coffee-rails', '>= 5.0'
-gem 'devise', '~> 4.8'
-gem 'jquery-rails'
+gem 'devise', '~> 4.8', '>= 4.8.1'
+gem 'jquery-rails', '>= 4.5.0'
 gem 'kaminari'
 gem 'sass-rails'
 gem 'select2-rails', '4.0.13' # for autocomplete
 gem 'selectize-rails', '0.12.6' # include selectize.js for select
 
 # registry specfic
-gem 'data_migrate', '~> 9.0'
+gem 'data_migrate', '~> 9.1', '>= 9.1.0'
 gem 'dnsruby', '~> 1.61'
 gem 'isikukood' # for EE-id validation
-gem 'money-rails'
+gem 'money-rails', '>= 1.15.0'
 gem 'simpleidn', '0.2.3' # For punycode
 gem 'whenever', '1.0.0', require: false
 
@@ -57,7 +57,7 @@ gem 'digidoc_client',
     ref: '1645e83a5a548addce383f75703b0275c5310c32'
 
 # TARA
-gem 'omniauth-rails_csrf_protection'
+gem 'omniauth-rails_csrf_protection', '>= 1.0.0'
 gem 'omniauth-tara', github: 'internetee/omniauth-tara'
 # gem 'omniauth-tara', path: 'vendor/gems/omniauth-tara'
 
@@ -69,12 +69,12 @@ gem 'e_invoice', github: 'internetee/e_invoice', branch: :master
 gem 'epp', github: 'internetee/epp', branch: :master
 gem 'epp-xml', '1.2.0', github: 'internetee/epp-xml', branch: :master
 gem 'haml', '~> 6.0'
-gem 'jquery-ui-rails', '6.0.1'
+gem 'jquery-ui-rails', '7.0.0'
 gem 'lhv', github: 'internetee/lhv', branch: 'master'
 gem 'pdfkit'
 gem 'redis'
 gem 'rexml'
-gem 'sidekiq', '~> 7.0'
+gem 'sidekiq', '~> 7.1', '>= 7.1.5'
 gem 'strong_migrations'
 gem 'dry-types'
 gem 'dry-struct'
@@ -100,7 +100,7 @@ end
 gem 'aws-sdk-sesv2', '~> 1.19'
 gem 'newrelic-infinite_tracing'
 gem 'newrelic_rpm'
-gem 'ruby-openai'
+gem 'ruby-openai', '>= 8.2.0'
 
 # profiles
 gem 'pghero'