From 7fbba6141d8e2ccdd3e1bbb2fd01c0407339342b Mon Sep 17 00:00:00 2001
From: Will Binns <hello@willbinns.org>
Date: Sat, 8 Feb 2020 09:44:32 +0100
Subject: [PATCH] Gemfile: Upgrade RedCloth

This upgrades the redcloth gem to >= 4.3.0 to patch against an XSS
vulnerability and will be merged once tests pass.
---
 Gemfile      | 2 +-
 Gemfile.lock | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/Gemfile b/Gemfile
index 80bf0267..b2970794 100644
--- a/Gemfile
+++ b/Gemfile
@@ -18,7 +18,7 @@ group :development do
   gem 'json', '>= 1.9'
   gem 'less', '2.4.0'
   gem 'kramdown'
-  gem 'RedCloth'
+  gem 'RedCloth', ">= 4.3.0"
   gem 'therubyracer' # required by less
   gem 'jshintrb', '~>0.3.0'
   gem 'safe_yaml'
diff --git a/Gemfile.lock b/Gemfile.lock
index a3e5a57a..b5afa672 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -1,7 +1,7 @@
 GEM
   remote: https://rubygems.org/
   specs:
-    RedCloth (4.2.9)
+    RedCloth (4.3.2)
     addressable (2.4.0)
     colorator (0.1)
     colored (1.2)
@@ -73,7 +73,7 @@ PLATFORMS
   ruby
 
 DEPENDENCIES
-  RedCloth
+  RedCloth (>= 4.3.0)
   ffi-icu
   html-proofer (= 2.1.0)
   jekyll (~> 3.0)
@@ -89,4 +89,4 @@ RUBY VERSION
    ruby 2.4.1p111
 
 BUNDLED WITH
-   1.16.1
+   1.17.3