From 286bf45d4cae7e6ea2c9164d861f020df6fa2a43 Mon Sep 17 00:00:00 2001
From: "dependabot-preview[bot]"
 <27856297+dependabot-preview[bot]@users.noreply.github.com>
Date: Fri, 15 Nov 2019 21:51:42 +0100
Subject: [PATCH] [Security] Bump rack-cors from 1.0.3 to 1.0.6 (#12395)

Bumps [rack-cors](https://github.com/cyu/rack-cors) from 1.0.3 to 1.0.6. **This update includes a security fix.**
- [Release notes](https://github.com/cyu/rack-cors/releases)
- [Changelog](https://github.com/cyu/rack-cors/blob/master/CHANGELOG.md)
- [Commits](https://github.com/cyu/rack-cors/compare/v1.0.3...v1.0.6)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
---
 Gemfile.lock | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/Gemfile.lock b/Gemfile.lock
index ceb903f609..4fa1ec5aad 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -461,7 +461,8 @@ GEM
     rack (2.0.7)
     rack-attack (6.1.0)
       rack (>= 1.0, < 3)
-    rack-cors (1.0.3)
+    rack-cors (1.0.6)
+      rack (>= 1.6.0)
     rack-protection (2.0.7)
       rack
     rack-proxy (0.6.5)
-- 
GitLab