From 480f9c5382f618c2b8d75a2c0771364897c3ade6 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 9 Dec 2024 18:55:43 +0000
Subject: [PATCH] fix: pkgs/tools/audio/mpdcron/Gemfile &
 pkgs/tools/audio/mpdcron/Gemfile.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-8453714
---
 pkgs/tools/audio/mpdcron/Gemfile      |  2 +-
 pkgs/tools/audio/mpdcron/Gemfile.lock | 10 ++++++----
 2 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/pkgs/tools/audio/mpdcron/Gemfile b/pkgs/tools/audio/mpdcron/Gemfile
index e0814bc4ddab9..e157487841d29 100644
--- a/pkgs/tools/audio/mpdcron/Gemfile
+++ b/pkgs/tools/audio/mpdcron/Gemfile
@@ -1,2 +1,2 @@
 source "https://rubygems.org"
-gem "nokogiri"
+gem "nokogiri", ">= 1.15.7"
diff --git a/pkgs/tools/audio/mpdcron/Gemfile.lock b/pkgs/tools/audio/mpdcron/Gemfile.lock
index 603a9cfdafb12..c0efa2e81cfbc 100644
--- a/pkgs/tools/audio/mpdcron/Gemfile.lock
+++ b/pkgs/tools/audio/mpdcron/Gemfile.lock
@@ -1,15 +1,17 @@
 GEM
   remote: https://rubygems.org/
   specs:
-    mini_portile2 (2.4.0)
-    nokogiri (1.10.3)
-      mini_portile2 (~> 2.4.0)
+    mini_portile2 (2.8.8)
+    nokogiri (1.15.7)
+      mini_portile2 (~> 2.8.2)
+      racc (~> 1.4)
+    racc (1.8.1)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
-  nokogiri
+  nokogiri (>= 1.15.7)
 
 BUNDLED WITH
    2.1.4