From 4b9a0026f0913fddf0298de06b47e08c3cc6c561 Mon Sep 17 00:00:00 2001
From: Jesus Federico <jesus@123it.ca>
Date: Tue, 2 Jan 2024 16:28:40 -0500
Subject: [PATCH] [Snyk] Security upgrade omniauth from 2.1.1 to 2.1.2 (#258)

* fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-RACK-1061917

* Update Gemfile.lock

---------

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
---
 Gemfile      | 2 +-
 Gemfile.lock | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/Gemfile b/Gemfile
index 4f14ce2e..e3353cce 100644
--- a/Gemfile
+++ b/Gemfile
@@ -90,7 +90,7 @@ gem 'bigbluebutton-api-ruby', '~> 1.9.1'
 
 gem 'rest-client'
 
-gem 'omniauth', '>= 2.1.1'
+gem 'omniauth', '>= 2.1.2'
 gem 'omniauth-oauth2', '>= 1.8.0'
 gem 'omniauth-rails_csrf_protection', '~> 1.0.1'
 gem 'repost', '~> 0.4.1'
diff --git a/Gemfile.lock b/Gemfile.lock
index 84ad7c60..8920e96a 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -204,7 +204,7 @@ GEM
       rack (>= 1.2, < 4)
       snaky_hash (~> 2.0)
       version_gem (~> 1.1)
-    omniauth (2.1.1)
+    omniauth (2.1.2)
       hashie (>= 3.4.6)
       rack (>= 2.2.3)
       rack-protection
@@ -433,7 +433,7 @@ DEPENDENCIES
   lograge (~> 0.14.0)
   minitest
   net-smtp
-  omniauth (>= 2.1.1)
+  omniauth (>= 2.1.2)
   omniauth-bbbltibroker!
   omniauth-oauth2 (>= 1.8.0)
   omniauth-rails_csrf_protection (~> 1.0.1)