Logstash:8/GHSA-2rxp-v6pw-ch6m fix (#34917)

Version bump of sinatra dependency to resolve CVE GHSA-2rxp-v6pw-ch6m
wolfi-dev · Nov 21, 2024 · 55f6d83 · 55f6d83
1 parent 5e141d2
commit 55f6d83
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/logstash-8.yaml b/logstash-8.yaml
@@ -17,7 +17,7 @@
 package:
   name: logstash-8
   version: 8.16.0
-  epoch: 1
+  epoch: 2
   description: Logstash - transport and process your logs, events, or other data
   copyright:
     - license: Apache-2.0
@@ -80,6 +80,7 @@ pipeline:
       echo "gem 'fugit', '1.11.1'" >> Gemfile.template
       echo "gem 'rexml', '3.3.9'" >> Gemfile.template
       echo "gem 'puma', '6.4.3'" >> Gemfile.template
+      echo "gem 'sinatra', '4.1.0'" >> Gemfile.template
       echo "gem 'logstash-integration-kafka', '11.5.2'" >> Gemfile.template
       # Disable the logstash-integration-jdbc plugin download as we build and
       # package it separately