Skip to content

Commit

Permalink
Updated rexml dependency version to resolve the DoS vulnerability.
Browse files Browse the repository at this point in the history
  • Loading branch information
@bad-vegan @yolk
bad-vegan authored and yolk committed Jul 9, 2024
1 parent c80a47a commit 50758ec
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 1 deletion.
2 changes: 2 additions & 0 deletions CHANGES.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,8 @@

[full changelog](http://github.com/yolk/valvat/compare/v1.4.1...master)

* Resolved [rexml security vulnerability](https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh) by [Riana Ferreira](https://github.com/bad-vegan)

### 1.4.1 / 2024-01-08

[full changelog](http://github.com/yolk/valvat/compare/v1.4.0...v1.4.1)
Expand Down
2 changes: 1 addition & 1 deletion valvat.gemspec
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,5 +24,5 @@ Gem::Specification.new do |s|
'rubygems_mfa_required' => 'true'
}

s.add_runtime_dependency('rexml', '>= 3.2', '< 4.0')
s.add_runtime_dependency('rexml', '>= 3.3.1', '< 4.0.0')
end

0 comments on commit 50758ec

Please sign in to comment.