sqlint: update deps to eliminate vulnerable dependency

See NixOS#351833 Gemfile: ./pkgs/development/tools/sqlint/Gemfile.lock Name: google-protobuf Version: 3.25.0 CVE: CVE-2024-7254 GHSA: GHSA-735f-pc8j-v9w8 Criticality: High URL: GHSA-735f-pc8j-v9w8 Title: protobuf-java has potential Denial of Service issue Solution: upgrade to '~> 3.25.5', '~> 4.27.5', '>= 4.28.2'
Shawn8901 · Nov 3, 2024 · 01f2267 · 01f2267
1 parent 38e2c53
commit 01f2267
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 3 deletions.
diff --git a/pkgs/development/tools/sqlint/Gemfile.lock b/pkgs/development/tools/sqlint/Gemfile.lock
@@ -1,7 +1,7 @@
 GEM
   remote: https://rubygems.org/
   specs:
-    google-protobuf (3.25.0)
+    google-protobuf (3.25.5)
     pg_query (4.2.3)
       google-protobuf (>= 3.22.3)
     sqlint (0.3.0)

diff --git a/pkgs/development/tools/sqlint/gemset.nix b/pkgs/development/tools/sqlint/gemset.nix
@@ -4,10 +4,10 @@
     platforms = [];
     source = {
       remotes = ["https://rubygems.org"];
-      sha256 = "18d1w5j7vjaza3v1ig9j7zyis04kxqdkb1272vbgncxn03ck45mm";
+      sha256 = "0fanhdf3vzghma51w1hqpp8s585mwzxgqkwvxj5is4q9j0pgwcs3";
       type = "gem";
     };
-    version = "3.25.0";
+    version = "3.25.5";
   };
   pg_query = {
     dependencies = ["google-protobuf"];