Merge pull request #1672 from houdiniproject/dependabot/bundler/date-…

…3.3.4 Bump date from 3.3.3 to 3.3.4
houdiniproject · Nov 13, 2023 · d9b742e · d9b742e
2 parents 17d180c + bdd7c8e
commit d9b742e
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 3 deletions.
diff --git a/Gemfile b/Gemfile
@@ -15,7 +15,7 @@ gem 'webpacker', '~> 5.4.4'
 gem 'good_job', '~> 3.20'
 
 # fix for https://www.ruby-lang.org/en/news/2021/11/15/date-parsing-method-regexp-dos-cve-2021-41817/
-gem "date", "~> 3.3.3"
+gem "date", "~> 3.3.4"
 
 gem 'httparty', '~> 0.21.0' # https://github.com/jnunemaker/httparty
 gem 'sprockets', '~> 3.7'

diff --git a/Gemfile.lock b/Gemfile.lock
@@ -151,7 +151,7 @@ GEM
     database_cleaner-active_record (1.99.0)
       activerecord
       database_cleaner (~> 1.99.0)
-    date (3.3.3)
+    date (3.3.4)
     debug (1.8.0)
       irb (>= 1.5.0)
       reline (>= 0.3.1)
@@ -493,7 +493,7 @@ DEPENDENCIES
   colorize (~> 0.8.1)
   countries (~> 4.2)
   database_cleaner-active_record
-  date (~> 3.3.3)
+  date (~> 3.3.4)
   debug
   devise (~> 4.9)
   devise-async (~> 1.0)