You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Several gems are outdated. Some of them are deprecated and no longer supported. Others have been replaced by different gems. Additionally, there are some gems that are not being used.
Update the outdated gems, the deprecated and/or no longer supported should be replaced to a new suitable resolution. The gems that haven't been being used should be removed.
Below are listed all the dependencies in the Gemfile that require updates.
Inactive gems:
attachinary: no updates since 2015. The last commit in the repository was in 2016.
chronic: no updates since 2013. However, the last commit in the repository was in 2023. It is only used in one part of the application:
jquery-atwho-rails: no updates or commits since 2018.
rgb_utils: no updates or commits since 2017.
pusher: no updates or commits since 2022. There is an issue in the repository describing a deprecation warning when using this gem with Rails 7.1.
Gems requiring updates:
activeadmin: currently on version 2.13.1. Needs updating due to a vulnerability with a severity score of 7.2/10. Dependabot report.
api-pagination: currently on version 4.8.2. A new version (5.0.0) is available. This gem appears to be inactive, with no commits since 2021. However, there are no recorded vulnerabilities or bugs affecting the application.
autoprefixer-rails
better_errors
binding_of_caller
bullet
capybara
chartkick
cloudinary
cypress-on-rails
dalli
database_cleaner
devise
devise-i18n
dotenv-rails
dry-matcher
dry-monads
enumerize
factory_bot_rails
faraday
foreman
friendly_id
i18n-js
jquery-ui-rails: currently on version 6.0.1, needs updating to version 7.0.0 due to 4 alerts with moderate severity from Dependabot.
letter_opener
letter_opener_web
material_icons
newrelic_rpm
pg
pry-rails
puma: currently on version 5.6.4, needs to be updated to version >= 5.6.8 due to a critical vulnerability. Dependabot alert: Puma HTTP Request/Response Smuggling vulnerability.
pundit
pusher
pusher-fake
rack-cache
rack-cors
rack-timeout
rails-i18n
recaptcha
rollbar
rspec-active-model-mocks
rspec-rails
rubocop
rubocop-rspec
sass-rails
selenium-webdriver
shoulda-matchers
simplecov
timecop
vcr
vite_rails
webmock
sidekiq: currently on version 6.5.1, should be updated to a newer version to fix a moderate severity vulnerability: sidekiq Denial of Service vulnerability.
Deprecated gems:
compass-rails: no longer maintained. The README.md recommends that this gem not be used.
devise-authy: this gem has not been maintained since 05/30/2022. As described in the README.md, the Authy API has been replaced by the Twilio Verify API. Starting from 05/01/2023, the Authy API began returning errors for all requests, and Push and TOTP support ended in August 2023.
gravtastic: no updates since 2011. The last commit in the repository was in 2016, and it was archived in 2018.
user_impersonate2: no updates since 2018. The repository was archived in 2023.
virtus: no updates since 2021. The project has been discontinued, as described in the README.md. Successor gems include dry-type, dry-struct, and dry-schema.
letsencrypt-rails-heroku: no updates or commits since 2020. The README.md states that this gem is deprecated.
rails_12factor: no updates since 2014. The last commit was in 2022, and the repository was archived the same year. The README.md states that this gem should only be used in Rails 4 (or 3) applications and should be removed for Rails 5+.
codeclimate-test-reporter: no updates or commits since 2018. The README.md states that this gem is deprecated.
Unused gems:
sidekiq_mailer: no updates or commits since 2014. It is not being used in the project. Searches for the Sidekiq::Mailer class returned no results.
sinatra: no code utilizing this dependency was found.
platform-api
The gem kgio is neither deprecated nor outdated. However, the gem's documentation states that it is obsolete for Ruby versions higher than 2.3. The project is currently using Ruby 2.7.8.
The text was updated successfully, but these errors were encountered:
Several gems are outdated. Some of them are deprecated and no longer supported. Others have been replaced by different gems. Additionally, there are some gems that are not being used.
Update the outdated gems, the deprecated and/or no longer supported should be replaced to a new suitable resolution. The gems that haven't been being used should be removed.
Below are listed all the dependencies in the Gemfile that require updates.
Inactive gems:
cm42-central/app/models/story.rb
Line 211 in 97e423d
configuration: no updates since 2013. The last commit in the repository was in 2014.
cm42-central/app/presenters/activity_presenter.rb
Line 109 in 97e423d
Gems requiring updates:
Deprecated gems:
devise-authy: this gem has not been maintained since 05/30/2022. As described in the README.md, the Authy API has been replaced by the Twilio Verify API. Starting from 05/01/2023, the Authy API began returning errors for all requests, and Push and TOTP support ended in August 2023.
user_impersonate2: no updates since 2018. The repository was archived in 2023.
virtus: no updates since 2021. The project has been discontinued, as described in the README.md. Successor gems include dry-type, dry-struct, and dry-schema.
codeclimate-test-reporter: no updates or commits since 2018. The README.md states that this gem is deprecated.
Unused gems:
platform-api
The gem kgio is neither deprecated nor outdated. However, the gem's documentation states that it is obsolete for Ruby versions higher than 2.3. The project is currently using Ruby 2.7.8.
The text was updated successfully, but these errors were encountered: