diff --git a/Gemfile b/Gemfile
index f1046ac0f6c8..88d232271950 100644
--- a/Gemfile
+++ b/Gemfile
@@ -129,7 +129,7 @@ gem 'rack-protection', '~> 3.0.0'
 # It allows whitelisting, blacklisting, throttling, and tracking based
 # on arbitrary properties of the request.
 # https://github.com/kickstarter/rack-attack
-gem 'rack-attack', '~> 6.6.0'
+gem 'rack-attack', '~> 6.7.0'
 
 # CSP headers
 gem 'secure_headers', '~> 6.5.0'
diff --git a/Gemfile.lock b/Gemfile.lock
index 1e49e31d9c98..1390a95d2f15 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -731,8 +731,8 @@ GEM
     rack (2.2.8)
     rack-accept (0.4.5)
       rack (>= 0.4)
-    rack-attack (6.6.1)
-      rack (>= 1.0, < 3)
+    rack-attack (6.7.0)
+      rack (>= 1.0, < 4)
     rack-cors (2.0.1)
       rack (>= 2.0.0)
     rack-mini-profiler (3.1.1)
@@ -1113,7 +1113,7 @@ DEPENDENCIES
   puffing-billy (~> 3.2.0)
   puma (~> 6.3)
   puma-plugin-statsd (~> 2.0)
-  rack-attack (~> 6.6.0)
+  rack-attack (~> 6.7.0)
   rack-cors (~> 2.0.0)
   rack-mini-profiler
   rack-protection (~> 3.0.0)