diff --git a/Changelog.md b/Changelog.md
index 6e6057f3f..00c13b184 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -1,3 +1,7 @@
+# 0.0.2.3
+
+* Upgrade to Devise 2.1.3 [Read more](http://blog.plataformatec.com.br/2013/01/security-announcement-devise-v2-2-3-v2-1-3-v2-0-5-and-v1-5-3-released/)
+
 # 0.0.2.2
 
 * Upgrade to Rails 3.2.11 (CVE-2012-0155, CVE-2012-0156). [Read more](http://weblog.rubyonrails.org/2013/1/8/Rails-3-2-11-3-1-10-3-0-19-and-2-3-15-have-been-released/)
diff --git a/Gemfile b/Gemfile
index 47170d042..040b71f87 100644
--- a/Gemfile
+++ b/Gemfile
@@ -18,7 +18,7 @@ gem 'rack-protection', '1.2'
 
 # authentication
 
-gem 'devise', '2.1.2'
+gem 'devise', '2.1.3'
 
 gem 'remotipart', '1.0.2'
 
diff --git a/Gemfile.lock b/Gemfile.lock
index d0262c302..a981e70bc 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -110,7 +110,7 @@ GEM
     debugger-linecache (1.1.2)
       debugger-ruby_core_source (>= 1.1.1)
     debugger-ruby_core_source (1.1.4)
-    devise (2.1.2)
+    devise (2.1.3)
       bcrypt-ruby (~> 3.0)
       orm_adapter (~> 0.1)
       railties (~> 3.1)
@@ -273,7 +273,7 @@ GEM
       coderay (~> 1.0.5)
       method_source (~> 0.8)
       slop (~> 3.3.1)
-    rack (1.4.3)
+    rack (1.4.4)
     rack-cache (1.2)
       rack (>= 0.4)
     rack-cors (0.2.7)
@@ -386,7 +386,7 @@ GEM
       tilt (~> 1.1, != 1.3.0)
     subexec (0.2.2)
     sys-proctable (0.9.2)
-    thor (0.16.0)
+    thor (0.17.0)
     tilt (1.3.3)
     timecop (0.5.3)
     treetop (1.4.12)
@@ -436,7 +436,7 @@ DEPENDENCIES
   cucumber-rails (= 1.3.0)
   database_cleaner (= 0.9.1)
   debugger (= 1.2.1)
-  devise (= 2.1.2)
+  devise (= 2.1.3)
   factory_girl_rails (= 4.1.0)
   faraday (= 0.8.4)
   faraday_middleware (= 0.9.0)