From f9bdbef16f481f82f9a2bf29af4a5ddfd6b3daed Mon Sep 17 00:00:00 2001
From: Sam Saffron <sam.saffron@gmail.com>
Date: Tue, 1 Oct 2019 16:55:58 +1000
Subject: [PATCH] SECURITY: update rack-mini-profiler to latest to correct XSS

This corrects an XSS in ?pp=help.

Also removes the jQuery dependency from rack-mini-profiler and restricts
memory sensitive profiling methods development only.
---
 Gemfile.lock | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Gemfile.lock b/Gemfile.lock
index 64fd90002c..a5d039f758 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -270,7 +270,7 @@ GEM
     puma (3.12.1)
     r2 (0.2.7)
     rack (2.0.7)
-    rack-mini-profiler (1.0.2)
+    rack-mini-profiler (1.1.0)
       rack (>= 1.2.0)
     rack-openid (1.3.1)
       rack (>= 1.1.0)