From b38eff9b025c594941aa201d69d65b28b950ccbb Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 18 Feb 2025 04:30:11 +0000
Subject: [PATCH] fix: Gemfile to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-REXML-7577227
- https://snyk.io/vuln/SNYK-RUBY-RACK-8720151
- https://snyk.io/vuln/SNYK-RUBY-REXML-7814166
- https://snyk.io/vuln/SNYK-RUBY-REXML-7577228
- https://snyk.io/vuln/SNYK-RUBY-REXML-8309365
- https://snyk.io/vuln/SNYK-RUBY-REXML-6861566
- https://snyk.io/vuln/SNYK-RUBY-REXML-7462086
---
 Gemfile | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/Gemfile b/Gemfile
index b519ba55fbff..fddbc6a0d153 100644
--- a/Gemfile
+++ b/Gemfile
@@ -4,7 +4,7 @@ source 'https://rubygems.org'
 
 # core - base
 ruby '3.0.4'
-gem 'rails', '~> 6.1.0'
+gem 'rails', '~> 7.0.0'
 
 # core - rails additions
 gem 'activerecord-import'
@@ -187,7 +187,7 @@ group :development, :test do
   gem 'test-unit'
 
   # for testing Pundit authorisation policies in RSpec
-  gem 'pundit-matchers'
+  gem 'pundit-matchers', '>= 3.0.0'
 
   # UI tests w/ Selenium
   gem 'capybara'
@@ -200,9 +200,9 @@ group :development, :test do
   gem 'rubocop-faker'
   gem 'rubocop-graphql'
   gem 'rubocop-inflector'
-  gem 'rubocop-performance'
-  gem 'rubocop-rails'
-  gem 'rubocop-rspec'
+  gem 'rubocop-performance', '>= 1.24.0'
+  gem 'rubocop-rails', '>= 2.30.0'
+  gem 'rubocop-rspec', '>= 3.5.0'
 
   # generate random test data
   gem 'factory_bot_rails'