From beae5a016a8a4e88ee8f00b95a8cf20f7ae77101 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 6 Apr 2022 14:52:45 -0400
Subject: [PATCH 1/2] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-YAJLRUBY-2441253
---
 Gemfile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Gemfile b/Gemfile
index 8815970..68743a0 100644
--- a/Gemfile
+++ b/Gemfile
@@ -1,7 +1,7 @@
 source :rubygems
 
 gem 'chef', '~> 10.12.0'
-gem 'chefspec', '~>0.9.0'
+gem 'chefspec', '~> 0.9.0'
 gem 'fauxhai', '~> 0.1.1'
-gem 'foodcritic', '~>1.7.0'
+gem 'foodcritic', '~> 4.0.0'
 gem 'rake', '~> 0.9.2.2'

From d9c3d2a6fba7353f4372b4214a9824c337a62861 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 6 Apr 2022 14:52:46 -0400
Subject: [PATCH 2/2] fix: Gemfile & Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-YAJLRUBY-2441253
---
 Gemfile.lock | 135 +++++++++++++++++++++++++++++++--------------------
 1 file changed, 82 insertions(+), 53 deletions(-)

diff --git a/Gemfile.lock b/Gemfile.lock
index 816b730..cd74375 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -1,8 +1,13 @@
 GEM
   remote: http://rubygems.org/
   specs:
-    builder (3.1.4)
-    bunny (0.8.0)
+    addressable (2.8.0)
+      public_suffix (>= 2.0.2, < 5.0)
+    amq-protocol (2.3.2)
+    builder (3.2.4)
+    bunny (2.19.0)
+      amq-protocol (~> 2.3, >= 2.3.1)
+      sorted_set (~> 1, >= 1.0.2)
     chef (10.12.0)
       bunny (>= 0.6.0)
       erubis
@@ -21,77 +26,93 @@ GEM
       treetop (~> 1.4.9)
       uuidtools
       yajl-ruby (~> 1.1)
+    chef-config (16.17.51)
+      addressable
+      chef-utils (= 16.17.51)
+      fuzzyurl
+      mixlib-config (>= 2.2.12, < 4.0)
+      mixlib-shellout (>= 2.0, < 4.0)
+      tomlrb (~> 1.2)
+    chef-utils (16.17.51)
     chefspec (0.9.0)
       chef (>= 0.9.12)
       erubis
       minitest-chef-handler (~> 0.6.0)
       rspec (~> 2.11.0)
-    ci_reporter (1.8.4)
+    ci_reporter (2.0.0)
       builder (>= 2.1.2)
-    coderay (1.0.8)
     diff-lcs (1.1.3)
     erubis (2.7.0)
     fauxhai (0.1.1)
       chef
       httparty
       net-ssh
-    foodcritic (1.7.0)
+    ffi (1.15.5)
+    ffi-yajl (2.4.0)
+      libyajl2 (>= 1.2)
+    foodcritic (4.0.0)
       erubis
-      gherkin (~> 2.11.1)
-      gist (~> 3.1.0)
-      nokogiri (~> 1.5.4)
-      pry (~> 0.9.8.4)
-      rak (~> 1.4)
-      treetop (~> 1.4.10)
-      yajl-ruby (~> 1.1.0)
-    gherkin (2.11.5)
-      json (>= 1.4.6)
-    gist (3.1.1)
-    highline (1.6.13)
-    httparty (0.10.2)
-      multi_json (~> 1.0)
+      gherkin (~> 2.11)
+      nokogiri (~> 1.5)
+      rake
+      rufus-lru (~> 1.0)
+      treetop (~> 1.4)
+      yajl-ruby (~> 1.1)
+    fuzzyurl (0.9.0)
+    gherkin (2.12.2)
+      multi_json (~> 1.3)
+    highline (2.0.3)
+    httparty (0.16.2)
       multi_xml (>= 0.5.2)
-    ipaddress (0.8.0)
+    ipaddress (0.8.3)
     json (1.6.1)
-    method_source (0.7.1)
-    mime-types (1.19)
-    minitest (4.6.0)
-    minitest-chef-handler (0.6.7)
+    libyajl2 (2.1.0)
+    mime-types (1.25.1)
+    mini_portile2 (2.8.0)
+    minitest (5.15.0)
+    minitest-chef-handler (0.6.9)
       chef
       ci_reporter
       minitest
-    mixlib-authentication (1.1.4)
-      mixlib-log
-    mixlib-cli (1.2.2)
-    mixlib-config (1.1.2)
-    mixlib-log (1.4.1)
-    mixlib-shellout (1.0.0)
-    moneta (0.6.0)
-    multi_json (1.5.0)
-    multi_xml (0.5.3)
+    mixlib-authentication (3.0.10)
+    mixlib-cli (2.1.8)
+    mixlib-config (3.0.9)
+      tomlrb
+    mixlib-log (3.0.9)
+    mixlib-shellout (3.2.7)
+      chef-utils
+    moneta (1.5.0)
+    multi_json (1.15.0)
+    multi_xml (0.6.0)
     net-ssh (2.2.2)
     net-ssh-gateway (1.1.0)
       net-ssh (>= 1.99.1)
     net-ssh-multi (1.1)
       net-ssh (>= 2.1.4)
       net-ssh-gateway (>= 0.99.0)
-    nokogiri (1.5.6)
-    ohai (6.14.0)
+    nokogiri (1.13.3)
+      mini_portile2 (~> 2.8.0)
+      racc (~> 1.4)
+    ohai (16.5.6)
+      chef-config (>= 12.8, < 17)
+      chef-utils (>= 16.0, < 17)
+      ffi (~> 1.9)
+      ffi-yajl (~> 2.2)
       ipaddress
-      mixlib-cli
-      mixlib-config
-      mixlib-log
-      systemu
-      yajl-ruby
-    polyglot (0.3.3)
-    pry (0.9.8.4)
-      coderay (~> 1.0.5)
-      method_source (~> 0.7.1)
-      slop (>= 2.4.4, < 3)
-    rak (1.4)
+      mixlib-cli (>= 1.7.0)
+      mixlib-config (>= 2.0, < 4.0)
+      mixlib-log (>= 2.0.1, < 4.0)
+      mixlib-shellout (>= 2.0, < 4.0)
+      plist (~> 3.1)
+      wmi-lite (~> 1.0)
+    plist (3.6.0)
+    polyglot (0.3.5)
+    public_suffix (4.0.6)
+    racc (1.6.0)
     rake (0.9.2.2)
-    rest-client (1.6.7)
-      mime-types (>= 1.16)
+    rbtree (0.4.5)
+    rest-client (1.6.14)
+      mime-types (~> 1.16)
     rspec (2.11.0)
       rspec-core (~> 2.11.0)
       rspec-expectations (~> 2.11.0)
@@ -100,13 +121,18 @@ GEM
     rspec-expectations (2.11.3)
       diff-lcs (~> 1.1.3)
     rspec-mocks (2.11.3)
-    slop (2.4.4)
-    systemu (2.5.2)
-    treetop (1.4.10)
+    rufus-lru (1.1.0)
+    set (1.0.2)
+    sorted_set (1.0.3)
+      rbtree
+      set (~> 1.0)
+    tomlrb (1.3.0)
+    treetop (1.4.15)
       polyglot
       polyglot (>= 0.3.1)
-    uuidtools (2.1.3)
-    yajl-ruby (1.1.0)
+    uuidtools (2.2.0)
+    wmi-lite (1.0.7)
+    yajl-ruby (1.4.2)
 
 PLATFORMS
   ruby
@@ -115,5 +141,8 @@ DEPENDENCIES
   chef (~> 10.12.0)
   chefspec (~> 0.9.0)
   fauxhai (~> 0.1.1)
-  foodcritic (~> 1.7.0)
+  foodcritic (~> 4.0.0)
   rake (~> 0.9.2.2)
+
+BUNDLED WITH
+   2.1.4