This repository has been archived by the owner on Jun 3, 2020. It is now read-only.

[Snyk] Fix for 12 vulnerabilities #1

Open

snyk-bot wants to merge 1 commit into master from snyk-fix-8e92a041

snyk-bot commented Sep 13, 2017

This pull request fixes one or more vulnerable gems in the dependencies of this project. See the Snyk test report for this project for details.

The PR includes:

Changes to Gemfile and Gemfile.lock to upgrade the vulnerable dependencies to a fixed version.

Vulnerabilities that will be fixed

With an upgrade:

SNYK-RUBY-NOKOGIRI-20157
SNYK-RUBY-NOKOGIRI-20214
SNYK-RUBY-NOKOGIRI-20245
SNYK-RUBY-NOKOGIRI-20253
SNYK-RUBY-NOKOGIRI-20268
SNYK-RUBY-NOKOGIRI-20277
SNYK-RUBY-NOKOGIRI-20292
SNYK-RUBY-NOKOGIRI-20367
SNYK-RUBY-NOKOGIRI-20368
SNYK-RUBY-RACK-20230 - potentially breaking change
SNYK-RUBY-RACK-20399 - potentially breaking change
SNYK-RUBY-RACK-20400 - potentially breaking change

Check the changes in this PR to ensure they won't cause issues with your project.

Stay secure,
The Snyk team


          fix: Gemfile & Gemfile.lock to reduce vulnerabilities

4e4f065

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20157
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20214
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20245
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20253
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20268
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20277
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20292
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20367
- https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20368
- https://snyk.io/vuln/SNYK-RUBY-RACK-20230
- https://snyk.io/vuln/SNYK-RUBY-RACK-20399
- https://snyk.io/vuln/SNYK-RUBY-RACK-20400

Latest report for telegraph/cti:
https://snyk.io/test/github/telegraph/cti

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Labels

None yet