fix: upgrade Rack for vulnerability CVE-2020-8184

pact-foundation · Jun 15, 2020 · 99b78b3 · 99b78b3
1 parent fd2e81f
commit 99b78b3
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/pact_broker.gemspec b/pact_broker.gemspec
@@ -51,7 +51,7 @@ Gem::Specification.new do |gem|
   gem.add_runtime_dependency 'sequel', '~> 5.28'
   gem.add_runtime_dependency 'webmachine', '1.5.0'
   gem.add_runtime_dependency 'semver2', '~> 3.4.2'
-  gem.add_runtime_dependency 'rack', '~> 2.2'
+  gem.add_runtime_dependency 'rack', '~> 2.2', '>= 2.2.3'
   gem.add_runtime_dependency 'redcarpet', '>=3.3.2', '~>3.3'
   gem.add_runtime_dependency 'pact-support', '~> 1.14', '>= 1.14.1'
   gem.add_runtime_dependency 'padrino-core', '>= 0.14.3', '~> 0.14'