From 1b41187a0327074b4273594bf57c622485ce539f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 9 Oct 2025 09:54:31 +0100
Subject: [PATCH] Bump rack from 3.1.16 to 3.1.17 uri from 1.0.3 to 1.0.4
 (#3113)

* Bump rack from 3.1.16 to 3.1.17

Bumps [rack](https://github.com/rack/rack) from 3.1.16 to 3.1.17.
- [Release notes](https://github.com/rack/rack/releases)
- [Changelog](https://github.com/rack/rack/blob/main/CHANGELOG.md)
- [Commits](https://github.com/rack/rack/compare/v3.1.16...v3.1.17)

---
updated-dependencies:
- dependency-name: rack
  dependency-version: 3.1.17
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump uri from 1.0.3 to 1.0.4

https://www.ruby-lang.org/en/news/2025/10/07/uri-cve-2025-61594/

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Samuel Young <samuel.young@softwire.com>
---
 Gemfile.lock | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Gemfile.lock b/Gemfile.lock
index cd480e881..c154d331d 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -343,7 +343,7 @@ GEM
       activesupport (>= 3.0.0)
     raabro (1.4.0)
     racc (1.8.1)
-    rack (3.1.16)
+    rack (3.1.17)
     rack-attack (6.7.0)
       rack (>= 1.0, < 4)
     rack-mini-profiler (3.3.1)
@@ -511,7 +511,7 @@ GEM
     unicode-display_width (2.5.0)
     unread (0.14.0)
       activerecord (>= 6.1)
-    uri (1.0.3)
+    uri (1.0.4)
     useragent (0.16.11)
     view_component (3.10.0)
       activesupport (>= 5.2.0, < 8.0)