Skip to content

nokogiri vulnerabilities #164

New issue
New issue
Open
Open
nokogiri vulnerabilities#164
@r-kanai

Description

@r-kanai
r-kanai
opened on Oct 20, 2021

mimemagic/mimemagic.gemspec

Line 22 in af5a9b1

s.add_dependency('nokogiri', '~> 1')

Version nokogiri before 1.12.5 is vulnerable and violates dependabot. So I ask you to increase the version to 1.12.5.
https://snyk.io/vuln/rubygems:nokogiri

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions