From b75861f57943306fdad77a63c027029ae9ed71f6 Mon Sep 17 00:00:00 2001
From: "dependabot-preview[bot]"
 <27856297+dependabot-preview[bot]@users.noreply.github.com>
Date: Fri, 7 Aug 2020 22:34:15 +0000
Subject: [PATCH 1/2] [Security] Bump kramdown from 2.1.0 to 2.3.0

Bumps [kramdown](https://github.com/gettalong/kramdown) from 2.1.0 to 2.3.0. **This update includes a security fix.**
- [Release notes](https://github.com/gettalong/kramdown/releases)
- [Changelog](https://github.com/gettalong/kramdown/blob/master/doc/news.page)
- [Commits](https://github.com/gettalong/kramdown/commits)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
---
 Gemfile.lock | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/Gemfile.lock b/Gemfile.lock
index c8f710c..b0677a8 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -39,7 +39,8 @@ GEM
     highline (2.0.3)
     jaro_winkler (1.5.4)
     json (2.3.0)
-    kramdown (2.1.0)
+    kramdown (2.3.0)
+      rexml
     librariesio-gem-parser (1.0.0)
     libv8 (3.16.14.19)
     oga (2.15)
@@ -52,6 +53,7 @@ GEM
     rainbow (3.0.0)
     rake (13.0.1)
     ref (2.0.0)
+    rexml (3.2.4)
     rspec (3.9.0)
       rspec-core (~> 3.9.0)
       rspec-expectations (~> 3.9.0)

From 3646fa0b69bfaaf2f2bd8e2df4e0a7dbd873f938 Mon Sep 17 00:00:00 2001
From: Rodrigo Fernandes <rtfrodrigo@gmail.com>
Date: Fri, 4 Sep 2020 18:44:09 +0100
Subject: [PATCH 2/2] test: Update test numbers

---
 Gemfile.lock                  | 6 +++---
 lib/dependency_spy/version.rb | 2 +-
 spec/dependency_spy_spec.rb   | 4 ++--
 3 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/Gemfile.lock b/Gemfile.lock
index b0677a8..836d033 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    dependency_spy (0.6.0)
+    dependency_spy (0.6.1)
       bibliothecary (~> 6.6)
       colorize (= 0.8.1)
       semantic_range (~> 2.2)
@@ -42,7 +42,7 @@ GEM
     kramdown (2.3.0)
       rexml
     librariesio-gem-parser (1.0.0)
-    libv8 (3.16.14.19)
+    libv8 (3.16.14.19-x86_64-linux)
     oga (2.15)
       ast
       ruby-ll (~> 2.1)
@@ -132,4 +132,4 @@ DEPENDENCIES
   simplecov
 
 BUNDLED WITH
-   2.1.2
+   2.1.4
diff --git a/lib/dependency_spy/version.rb b/lib/dependency_spy/version.rb
index 67db131..3c3341b 100644
--- a/lib/dependency_spy/version.rb
+++ b/lib/dependency_spy/version.rb
@@ -16,6 +16,6 @@
 
 module DependencySpy
 
-  VERSION = '0.6.0'
+  VERSION = '0.6.1'
 
 end
diff --git a/spec/dependency_spy_spec.rb b/spec/dependency_spy_spec.rb
index dd6ccf8..65baa72 100644
--- a/spec/dependency_spy_spec.rb
+++ b/spec/dependency_spy_spec.rb
@@ -34,7 +34,7 @@
       manifests       = detected_manifests.select { |m| m.platform == 'npm' }
       dependencies    = manifests.map(&:dependencies).flatten
       vulnerabilities = dependencies.map(&:vulnerabilities).flatten
-      expect(vulnerabilities).to have(148).items
+      expect(vulnerabilities).to have(194).items
     end
 
     it 'can read all dependencies for rubygems manifest' do
@@ -47,7 +47,7 @@
       manifests       = detected_manifests.select { |m| m.platform == 'rubygems' }
       dependencies    = manifests.map(&:dependencies).flatten
       vulnerabilities = dependencies.map(&:vulnerabilities).flatten
-      expect(vulnerabilities).to have(4).items
+      expect(vulnerabilities).to have(7).items
     end
 
     it 'can ignore vulnerabilities by id' do