Skip to content

Security: bump erb#76

Merged
technicalpickles merged 1 commit into
mainfrom
security/dep-sweep
Jun 23, 2026
Merged

Security: bump erb#76
technicalpickles merged 1 commit into
mainfrom
security/dep-sweep

Conversation

@technicalpickles

@technicalpickles technicalpickles commented Jun 18, 2026

Copy link
Copy Markdown
Contributor

Security Updates

Gem Old → New Vulnerability Severity
erb 6.0.2 → 6.0.4 GHSA-q339-8rmv-2mhv High

Summary

Bumps erb from 6.0.2 to 6.0.4 to address a critical ERB template injection vulnerability.

Test Results

  • rspec: 88 runs, 142 assertions, 0 failures
  • rubocop: passed

@technicalpickles @claude
Security: bump erb
8babda9 
Bump erb from 6.0.2 to 6.0.4 to address GHSA-q339-8rmv-2mhv.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
@github-project-automation github-project-automation Bot moved this to Triage in Modularity Jun 18, 2026
@technicalpickles technicalpickles marked this pull request as ready for review June 23, 2026 15:58
@technicalpickles technicalpickles requested a review from a team as a code owner June 23, 2026 15:58
@technicalpickles technicalpickles merged commit 5763b83 into main Jun 23, 2026
7 checks passed
@technicalpickles technicalpickles deleted the security/dep-sweep branch June 23, 2026 21:12
@github-project-automation github-project-automation Bot moved this from Triage to Done in Modularity Jun 23, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ashleywillard ashleywillard ashleywillard approved these changes

Assignees

No one assigned

Labels

None yet

Projects

Modularity
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@technicalpickles @ashleywillard