From 108fcefdf4983e204a11204a33de278b37de2fd3 Mon Sep 17 00:00:00 2001
From: Matthew Keeler <mkeeler@launchdarkly.com>
Date: Fri, 21 Mar 2025 15:06:21 -0400
Subject: [PATCH 1/2] chore: Fix security vulnerability for contract tests

---
 contract-tests/Gemfile | 11 +++++------
 1 file changed, 5 insertions(+), 6 deletions(-)

diff --git a/contract-tests/Gemfile b/contract-tests/Gemfile
index 0d7f27a2..5bf3d7c4 100644
--- a/contract-tests/Gemfile
+++ b/contract-tests/Gemfile
@@ -2,18 +2,17 @@ source 'https://rubygems.org'
 
 gem 'launchdarkly-server-sdk', path: '..'
 
-gem 'sinatra', '~> 2.1'
-# Sinatra can work with several server frameworks. In JRuby, we have to use glassfish (which
-# is only available in JRuby). Otherwise we use thin (which is not available in JRuby).
-gem 'glassfish', :platforms => :jruby
 gem 'http', '~> 5.1'
 gem 'json'
+gem "puma", "~> 6.6"
+gem "rackup", "~> 2.2"
+gem 'sinatra', '>= 4.1'
+
 gem 'rubocop', '~> 1.37', group: 'development'
 gem 'rubocop-performance', '~> 1.15', group: 'development'
-gem 'thin', :platforms => :ruby
 
-gem "redis", "~> 5.3"
 gem "connection_pool", "~> 2.4"
+gem "redis", "~> 5.3"
 
 gem "diplomat", "~> 2.6"
 

From ef567a2d3a0fcb1478ba5f476c37f8845dc01da5 Mon Sep 17 00:00:00 2001
From: Matthew Keeler <mkeeler@launchdarkly.com>
Date: Fri, 28 Mar 2025 16:12:15 -0400
Subject: [PATCH 2/2] require ostruct

---
 lib/ldclient-rb/impl/integrations/consul_impl.rb | 1 +
 1 file changed, 1 insertion(+)

diff --git a/lib/ldclient-rb/impl/integrations/consul_impl.rb b/lib/ldclient-rb/impl/integrations/consul_impl.rb
index 099bb3c8..105f88de 100644
--- a/lib/ldclient-rb/impl/integrations/consul_impl.rb
+++ b/lib/ldclient-rb/impl/integrations/consul_impl.rb
@@ -10,6 +10,7 @@ module Consul
         class ConsulFeatureStoreCore
           begin
             require "diplomat"
+            require "ostruct"
             CONSUL_ENABLED = true
           rescue ScriptError, StandardError
             CONSUL_ENABLED = false