[Snyk] Fix for 1 vulnerabilities #11

Open

snyk-bot wants to merge 1 commit from snyk-fix-4f67487b4ddf01e3351237a422e552f0 into master

pull from: snyk-fix-4f67487b4ddf01e3351237a422e552f0

merge into: atomaka:master

atomaka:master

atomaka:snyk-fix-93bbbca6fb961a4beaf62abc97b8c696

atomaka:snyk-fix-a4839c2a6aae1ff319e44bdf74db36ea

atomaka:dependabot/bundler/activerecord-6.1.7.1

atomaka:dependabot/bundler/sinatra-3.0.4

atomaka:snyk-fix-b746414b5cff8b0da5ad1d3bc8942719

atomaka:snyk-fix-ce6b1bed511762c7663072e425eabb5c

atomaka:dependabot/bundler/nokogiri-1.13.9

atomaka:dependabot/bundler/addressable-2.8.1

atomaka:snyk-fix-9cf156b6f6fbd07c3092c14e5dd8d6de

atomaka:snyk-fix-13036e608c3ff04a91e56945351c2ad5

atomaka:dependabot/bundler/tzinfo-1.2.10

atomaka:dependabot/bundler/jmespath-1.6.1

atomaka:snyk-fix-466639bbdb017c3afadbc6565c55eb97

atomaka:snyk-fix-f861dd85e2c6aa6c13a4ad583a97d77f

atomaka:snyk-fix-7c28e189245c91ab25dde24dbcdda54c

atomaka:snyk-fix-dec3ab50d67b2df824a2b06f69f36594

atomaka:snyk-fix-5809b442593801e225b5b5ab04e91be7

atomaka:snyk-fix-5bdef8c547fc1e381448daffdadfddcc

atomaka:snyk-fix-1ef81a45e777b69b6c8bedd4ca39be04

atomaka:snyk-fix-33c7007ed54835d9273f6416463d268a

atomaka:snyk-fix-860764c6e2cda3d4dd36808d5008003e

atomaka:snyk-fix-1f5072891d8234260f56531be3224cdf

atomaka:snyk-fix-f1285d29fc134e64e0286a2897f756d9

atomaka:snyk-fix-de64ee4bc5b62e888d479a5649464440

atomaka:dependabot/bundler/rack-2.2.3

atomaka:snyk-fix-1125126ac6e8d74da6f24a5445cf1826

atomaka:dependabot/bundler/websocket-extensions-0.1.5

atomaka:snyk-fix-dd1ce670a0e9da6d4bcffddb8bfdf8cb

atomaka:snyk-fix-5475120628d4b60a1054f0375b7421f6

atomaka:snyk-fix-9e06ba1c5abd4ac66d437d7ec5359573

atomaka:snyk-fix-125a57af16b1f02630d0e5624a8bcfdf

atomaka:dependabot/bundler/rake-12.3.3

atomaka:snyk-fix-bf8d52731d33734943fabb90f59a1190

atomaka:snyk-fix-7fd6798f313bf8f59be961043921e3ca

atomaka:snyk-fix-35605dde0341734bb44abc29afab0bba

atomaka:feature/actions-1

atomaka:feature/actions

atomaka:snyk-fix-b2e5bcce51d7e2e2a1164c5342eff5c9

atomaka:snyk-fix-ntnzaz

atomaka:snyk-fix-ezkfjn

atomaka:snyk-fix-305z6l

atomaka:snyk-fix-zkg3j5

atomaka:feature/poltergeist

atomaka:feature/gem-updates

Conversation 0 Commits 1 Files changed 2 +25 -23

snyk-bot commented 2019-11-25 22:51:43 -05:00 (Migrated from github.com)

Copy link

Snyk has created this PR to fix one or more vulnerable packages in the rubygems dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • Gemfile
  • Gemfile.lock

Vulnerabilities that will be fixed

With an upgrade:

Severity	Title	Issue ID	Breaking Change
	Uncontrolled Memory Allocation	SNYK-RUBY-NOKOGIRI-534637

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:

🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Snyk has created this PR to fix one or more vulnerable packages in the `rubygems` dependencies of this project. #### Changes included in this PR - Changes to the following files to upgrade the vulnerable dependencies to a fixed version: - Gemfile - Gemfile.lock #### Vulnerabilities that will be fixed ##### With an upgrade: Severity | Title | Issue ID | Breaking Change :-------------------------:|:-------------------------|:-------------------------|:-------------------------|  | Uncontrolled Memory Allocation | [SNYK-RUBY-NOKOGIRI-534637](https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-534637) | Check the changes in this PR to ensure they won't cause issues with your project. ------------ **Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.* For more information: 🧐 [View latest project report](https://app.snyk.io/org/atomaka/project/39f5769a-2ee8-4777-a1bb-509dcee65a10) 🛠 [Adjust project settings](https://app.snyk.io/org/atomaka/project/39f5769a-2ee8-4777-a1bb-509dcee65a10/settings) 📚 [Read more about Snyk's upgrade and patch logic](https://snyk.io/docs/fixing-vulnerabilities/) [//]: # (snyk:metadata:{"type":"auto","packageManager":"rubygems","vulns":["SNYK-RUBY-NOKOGIRI-534637"],"patch":[],"upgrade":["SNYK-RUBY-NOKOGIRI-534637"],"isBreakingChange":false,"env":"prod","dependencies":[{"name":"poltergeist","from":"1.16.0","to":"1.16.0"}],"prType":"fix"})

This pull request can be merged automatically.

You are not authorized to merge this pull request.

View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.

git fetch -u origin snyk-fix-4f67487b4ddf01e3351237a422e552f0:snyk-fix-4f67487b4ddf01e3351237a422e552f0

git checkout snyk-fix-4f67487b4ddf01e3351237a422e552f0

Merge

Merge the changes and update on Forgejo.

git checkout master

git merge --no-ff snyk-fix-4f67487b4ddf01e3351237a422e552f0

git checkout master

git merge --ff-only snyk-fix-4f67487b4ddf01e3351237a422e552f0

git checkout snyk-fix-4f67487b4ddf01e3351237a422e552f0

git rebase master

git checkout master

git merge --no-ff snyk-fix-4f67487b4ddf01e3351237a422e552f0

git checkout master

git merge --squash snyk-fix-4f67487b4ddf01e3351237a422e552f0

git checkout master

git merge --ff-only snyk-fix-4f67487b4ddf01e3351237a422e552f0

git checkout master

git merge snyk-fix-4f67487b4ddf01e3351237a422e552f0

git push origin master

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Reference: atomaka/link-share#11

No description provided.