From 2231422b6f122fac8535a01caf0aa4670e4dcf81 Mon Sep 17 00:00:00 2001
From: "dependabot-preview[bot]"
 <27856297+dependabot-preview[bot]@users.noreply.github.com>
Date: Mon, 2 Aug 2021 09:13:58 +0000
Subject: [PATCH] [Security] Bump loofah from 2.3.0 to 2.11.0

Bumps [loofah](https://github.com/flavorjones/loofah) from 2.3.0 to 2.11.0. **This update includes a security fix.**
- [Release notes](https://github.com/flavorjones/loofah/releases)
- [Changelog](https://github.com/flavorjones/loofah/blob/main/CHANGELOG.md)
- [Commits](https://github.com/flavorjones/loofah/compare/v2.3.0...v2.11.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
---
 Gemfile.lock | 16 ++++++++++------
 1 file changed, 10 insertions(+), 6 deletions(-)

diff --git a/Gemfile.lock b/Gemfile.lock
index 41a344c..9c485fa 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -751,7 +751,7 @@ GEM
     byebug (10.0.2)
     coderay (1.1.2)
     concurrent-ruby (1.1.5)
-    crass (1.0.4)
+    crass (1.0.6)
     debug_inspector (0.0.3)
     discard (1.1.0)
       activerecord (>= 4.2, < 7)
@@ -772,7 +772,7 @@ GEM
       rb-fsevent (~> 0.9, >= 0.9.4)
       rb-inotify (~> 0.9, >= 0.9.7)
       ruby_dep (~> 1.2)
-    loofah (2.3.0)
+    loofah (2.11.0)
       crass (~> 1.0.2)
       nokogiri (>= 1.5.9)
     mail (2.7.1)
@@ -780,15 +780,18 @@ GEM
     marcel (0.3.3)
       mimemagic (~> 0.3.2)
     method_source (0.9.2)
-    mimemagic (0.3.3)
+    mimemagic (0.3.10)
+      nokogiri (~> 1)
+      rake
     mini_mime (1.0.2)
-    mini_portile2 (2.4.0)
+    mini_portile2 (2.5.3)
     minitest (5.12.2)
     msgpack (1.2.4)
     multi_json (1.13.1)
     nio4r (2.5.2)
-    nokogiri (1.10.4)
-      mini_portile2 (~> 2.4.0)
+    nokogiri (1.11.7)
+      mini_portile2 (~> 2.5.0)
+      racc (~> 1.4)
     ordinare (0.4.0)
     pagy (3.5.1)
     parallel (1.17.0)
@@ -799,6 +802,7 @@ GEM
       trollop
     pg (1.1.4)
     puma (3.12.0)
+    racc (1.5.2)
     rack (2.0.7)
     rack-mini-profiler (1.0.2)
       rack (>= 1.2.0)