Skip to content

Commit

Permalink
Upgrade nokogiri to fix vulnerabilities
Browse files Browse the repository at this point in the history 
Upgrading nokogiri to 1.16.2 fixes a vulnerability in the included
version of libxml2.

See:

- https://github.com/gma/nesta/security/dependabot/22
- https://gitlab.gnome.org/GNOME/libxml2/-/issues/604
  • Loading branch information
@gma
gma committed Feb 6, 2024
1 parent 08b45d1 commit c1170f6
Showing 1 changed file with 4 additions and 4 deletions.
8 changes: 4 additions & 4 deletions Gemfile.lock
View file
Original file line number Diff line number Diff line change
Expand Up @@ -41,7 +41,7 @@ GEM
rb-inotify (>= 0.9)
rb-kqueue (>= 0.2)
mini_mime (1.1.2)
mini_portile2 (2.8.1)
mini_portile2 (2.8.5)
minitest (5.18.0)
minitest-reporters (1.6.0)
ansi
Expand All @@ -55,11 +55,11 @@ GEM
unicorn (>= 4.5)
mustermann (3.0.0)
ruby2_keywords (~> 0.0.1)
nokogiri (1.14.3)
mini_portile2 (~> 2.8.0)
nokogiri (1.16.2)
mini_portile2 (~> 2.8.2)
racc (~> 1.4)
public_suffix (5.0.1)
racc (1.6.2)
racc (1.7.3)
rack (2.2.6.4)
rack-protection (3.1.0)
rack (~> 2.2, >= 2.2.4)
Expand Down

0 comments on commit c1170f6

Please sign in to comment.