From ac1d72fd77c9c725b35a16f284b70323f5ff60d1 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 15 Jul 2025 01:15:34 +0000
Subject: [PATCH] fix:
 builders/testdata/ruby/fail_version_pinned_gemfile/Gemfile &
 builders/testdata/ruby/fail_version_pinned_gemfile/Gemfile.lock to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-RACK-10074187
- https://snyk.io/vuln/SNYK-RUBY-RACK-9398129
- https://snyk.io/vuln/SNYK-RUBY-RACK-3356639
- https://snyk.io/vuln/SNYK-RUBY-RACK-6274385
- https://snyk.io/vuln/SNYK-RUBY-RACK-8720151
- https://snyk.io/vuln/SNYK-RUBY-RACK-9058602
- https://snyk.io/vuln/SNYK-RUBY-RACK-3237233
- https://snyk.io/vuln/SNYK-RUBY-RACK-3237237
- https://snyk.io/vuln/SNYK-RUBY-RACK-3237240
- https://snyk.io/vuln/SNYK-RUBY-RACK-3360233
- https://snyk.io/vuln/SNYK-RUBY-RACK-6274383
- https://snyk.io/vuln/SNYK-RUBY-RACK-6274384
---
 .../ruby/fail_version_pinned_gemfile/Gemfile  |  2 +-
 .../fail_version_pinned_gemfile/Gemfile.lock  | 22 ++++++++++---------
 2 files changed, 13 insertions(+), 11 deletions(-)

diff --git a/builders/testdata/ruby/fail_version_pinned_gemfile/Gemfile b/builders/testdata/ruby/fail_version_pinned_gemfile/Gemfile
index 471d38a3a..f9d7ab282 100644
--- a/builders/testdata/ruby/fail_version_pinned_gemfile/Gemfile
+++ b/builders/testdata/ruby/fail_version_pinned_gemfile/Gemfile
@@ -13,5 +13,5 @@
 # limitations under the License.
 
 source "https://rubygems.org"
-gem "sinatra", "~> 2.0"
+gem "sinatra", "~> 2.0", ">= 2.0.5"
 ruby ">= 2.5.3", "< 2.5.20"
diff --git a/builders/testdata/ruby/fail_version_pinned_gemfile/Gemfile.lock b/builders/testdata/ruby/fail_version_pinned_gemfile/Gemfile.lock
index c35e5ece2..d956e70b7 100644
--- a/builders/testdata/ruby/fail_version_pinned_gemfile/Gemfile.lock
+++ b/builders/testdata/ruby/fail_version_pinned_gemfile/Gemfile.lock
@@ -1,25 +1,27 @@
 GEM
   remote: https://rubygems.org/
   specs:
-    mustermann (1.0.3)
-    rack (2.0.6)
-    rack-protection (2.0.4)
+    mustermann (2.0.2)
+      ruby2_keywords (~> 0.0.1)
+    rack (2.2.17)
+    rack-protection (2.2.4)
       rack
-    sinatra (2.0.4)
-      mustermann (~> 1.0)
-      rack (~> 2.0)
-      rack-protection (= 2.0.4)
+    ruby2_keywords (0.0.5)
+    sinatra (2.2.4)
+      mustermann (~> 2.0)
+      rack (~> 2.2)
+      rack-protection (= 2.2.4)
       tilt (~> 2.0)
-    tilt (2.0.8)
+    tilt (2.6.1)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
-  sinatra (~> 2.0)
+  sinatra (~> 2.0, >= 2.0.5)
 
 RUBY VERSION
    ruby 2.5.7p206
 
 BUNDLED WITH
-   1.17.1
+   1.17.3