From 10fdd48861514a7937b6242aa74eba447f56c788 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 14 Jul 2025 20:27:17 +0000
Subject: [PATCH] fix:
 builders/testdata/ruby/functions/with_dependencies/Gemfile &
 builders/testdata/ruby/functions/with_dependencies/Gemfile.lock to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-PUMA-8062124
- https://snyk.io/vuln/SNYK-RUBY-RACK-2848599
- https://snyk.io/vuln/SNYK-RUBY-PUMA-2437090
- https://snyk.io/vuln/SNYK-RUBY-GOOGLEPROTOBUF-9398545
- https://snyk.io/vuln/SNYK-RUBY-RACK-10074187
- https://snyk.io/vuln/SNYK-RUBY-RACK-9398129
- https://snyk.io/vuln/SNYK-RUBY-RACK-1061917
- https://snyk.io/vuln/SNYK-RUBY-PUMA-2400629
- https://snyk.io/vuln/SNYK-RUBY-GOOGLEPROTOBUF-2331705
- https://snyk.io/vuln/SNYK-RUBY-PUMA-1291014
- https://snyk.io/vuln/SNYK-RUBY-RACK-2848600
- https://snyk.io/vuln/SNYK-RUBY-RACK-3356639
- https://snyk.io/vuln/SNYK-RUBY-RACK-6274385
- https://snyk.io/vuln/SNYK-RUBY-PUMA-5846204
- https://snyk.io/vuln/SNYK-RUBY-RACK-8720151
- https://snyk.io/vuln/SNYK-RUBY-RACK-9058602
- https://snyk.io/vuln/SNYK-RUBY-PUMA-6146928
- https://snyk.io/vuln/SNYK-RUBY-GOOGLEPROTOBUF-3040282
- https://snyk.io/vuln/SNYK-RUBY-RACK-3237233
- https://snyk.io/vuln/SNYK-RUBY-RACK-3237237
- https://snyk.io/vuln/SNYK-RUBY-RACK-3237240
- https://snyk.io/vuln/SNYK-RUBY-RACK-3360233
- https://snyk.io/vuln/SNYK-RUBY-RACK-6274383
- https://snyk.io/vuln/SNYK-RUBY-RACK-6274384
- https://snyk.io/vuln/SNYK-RUBY-PUMA-1730572
- https://snyk.io/vuln/SNYK-RUBY-RACK-10074188
---
 .../ruby/functions/with_dependencies/Gemfile  |  4 +--
 .../functions/with_dependencies/Gemfile.lock  | 32 ++++++++++---------
 2 files changed, 19 insertions(+), 17 deletions(-)

diff --git a/builders/testdata/ruby/functions/with_dependencies/Gemfile b/builders/testdata/ruby/functions/with_dependencies/Gemfile
index cf23ed2ca..2be94e071 100644
--- a/builders/testdata/ruby/functions/with_dependencies/Gemfile
+++ b/builders/testdata/ruby/functions/with_dependencies/Gemfile
@@ -13,5 +13,5 @@
 # limitations under the License.
 
 source "https://rubygems.org"
-gem "functions_framework", "~> 0.7"
-gem "grpc", "~> 1.32"
+gem "functions_framework", "~> 1.3", ">= 1.3.0"
+gem "grpc", "~> 1.34", ">= 1.34.0"
diff --git a/builders/testdata/ruby/functions/with_dependencies/Gemfile.lock b/builders/testdata/ruby/functions/with_dependencies/Gemfile.lock
index 61d445eea..bdf79d38a 100644
--- a/builders/testdata/ruby/functions/with_dependencies/Gemfile.lock
+++ b/builders/testdata/ruby/functions/with_dependencies/Gemfile.lock
@@ -1,28 +1,30 @@
 GEM
   remote: https://rubygems.org/
   specs:
-    cloud_events (0.1.2)
-    functions_framework (0.7.0)
-      cloud_events (~> 0.1)
-      puma (~> 4.3)
-      rack (~> 2.1)
-    google-protobuf (3.13.0)
-    googleapis-common-protos-types (1.0.5)
-      google-protobuf (~> 3.11)
-    grpc (1.32.0)
-      google-protobuf (~> 3.13)
+    cloud_events (0.7.1)
+    functions_framework (1.5.1)
+      cloud_events (>= 0.7.0, < 2.a)
+      puma (>= 4.3.0, < 7.a)
+      rack (>= 2.1, < 4.a)
+    google-protobuf (4.26.1)
+      rake (>= 13)
+    googleapis-common-protos-types (1.18.0)
+      google-protobuf (>= 3.18, < 5.a)
+    grpc (1.65.2)
+      google-protobuf (>= 3.25, < 5.0)
       googleapis-common-protos-types (~> 1.0)
-    nio4r (2.5.4)
-    puma (4.3.6)
+    nio4r (2.7.4)
+    puma (6.6.0)
       nio4r (~> 2.0)
-    rack (2.2.3)
+    rack (3.1.16)
+    rake (13.3.0)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
-  functions_framework (~> 0.7)
-  grpc (~> 1.32)
+  functions_framework (~> 1.3, >= 1.3.0)
+  grpc (~> 1.34, >= 1.34.0)
 
 BUNDLED WITH
    2.1.4