From 996953f83b9cbf90677433faa10e268adfa7f4cf Mon Sep 17 00:00:00 2001
From: Beth Skurrie <beth@bethesque.com>
Date: Thu, 15 Nov 2018 16:54:17 +1100
Subject: [PATCH] fix: ensure latest version of rack is used to avoid
 vulnerability CVE-2018-16471

---
 pact_broker.gemspec | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pact_broker.gemspec b/pact_broker.gemspec
index 0dac04c0c..fe1ab5583 100644
--- a/pact_broker.gemspec
+++ b/pact_broker.gemspec
@@ -29,7 +29,7 @@ Gem::Specification.new do |gem|
   gem.add_runtime_dependency 'sequel', '~> 5.6'
   gem.add_runtime_dependency 'webmachine', '1.5.0'
   gem.add_runtime_dependency 'semver2', '~> 3.4.2'
-  gem.add_runtime_dependency 'rack', '~>2.0'
+  gem.add_runtime_dependency 'rack', '>= 2.0.6', '~>2.0'
   gem.add_runtime_dependency 'redcarpet', '>=3.3.2', '~>3.3'
   gem.add_runtime_dependency 'pact-support'
   gem.add_runtime_dependency 'padrino-core', '>= 0.14.3', '~> 0.14'