From e2f73360f2a167432721b3abe4a1c0e4fac9671c Mon Sep 17 00:00:00 2001
From: Joshua Burke <burke.joshua.james@gmail.com>
Date: Sun, 19 May 2019 17:56:22 -0400
Subject: [PATCH] Redcarpet has a XSS vulnerability in versions < 3.2.2

See the details of the report for the vulnerability OSVDB-120415:
http://danlec.com/blog/bug-in-sundown-and-redcarpet

This update is a drop in replacement and all tests within Deck.rb pass.
---
 deck.gemspec | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/deck.gemspec b/deck.gemspec
index 5a1c528..9fcdb75 100644
--- a/deck.gemspec
+++ b/deck.gemspec
@@ -20,7 +20,7 @@ deck.js (http://imakewebthings.github.com/deck.js) is a JavaScript library for b
   s.extra_rdoc_files = %w[README.md]
 
   s.add_dependency "erector", ">= 0.9.0"
-  s.add_dependency "redcarpet", "~> 2"
+  s.add_dependency "redcarpet", "~> 3.4"
   s.add_dependency "rack", ">= 1.4.1"
   s.add_dependency "thin"  # forget webrick
   s.add_dependency "trollop"