From 55f6d83fb19a599158caf6c8df1b14821bfbb037 Mon Sep 17 00:00:00 2001
From: jamie-albert <jamie.albert@chainguard.dev>
Date: Thu, 21 Nov 2024 15:25:45 -0800
Subject: [PATCH] Logstash:8/GHSA-2rxp-v6pw-ch6m fix (#34917)

Version bump of sinatra dependency to resolve CVE GHSA-2rxp-v6pw-ch6m
---
 logstash-8.yaml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/logstash-8.yaml b/logstash-8.yaml
index d665dc809b0..62ffbadc2da 100644
--- a/logstash-8.yaml
+++ b/logstash-8.yaml
@@ -17,7 +17,7 @@
 package:
   name: logstash-8
   version: 8.16.0
-  epoch: 1
+  epoch: 2
   description: Logstash - transport and process your logs, events, or other data
   copyright:
     - license: Apache-2.0
@@ -80,6 +80,7 @@ pipeline:
       echo "gem 'fugit', '1.11.1'" >> Gemfile.template
       echo "gem 'rexml', '3.3.9'" >> Gemfile.template
       echo "gem 'puma', '6.4.3'" >> Gemfile.template
+      echo "gem 'sinatra', '4.1.0'" >> Gemfile.template
       echo "gem 'logstash-integration-kafka', '11.5.2'" >> Gemfile.template
       # Disable the logstash-integration-jdbc plugin download as we build and
       # package it separately