davidor
commented
4 years ago I ran bundle update activesupport. All the gems updated are dependencies of activesupport. The only one that's also a dependency of other gems is concurrent-ruby, but it's fine, it's not a major bump. The tests pass and everything looks good.
This version fixes https://github.com/advisories/GHSA-2p68-f74v-9wc6 apisonator is not affected by the CVE.