Skip to content

Bump rack from 2.2.3 to 2.2.6.2 #32

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
dependabot wants to merge 1 commit into from
Closed

Bump rack from 2.2.3 to 2.2.6.2 #32

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion Gemfile.lock
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -86,7 +86,7 @@ GEM
coderay (~> 1.1)
method_source (~> 1.0)
racc (1.5.2)
rack (2.2.3)
rack (2.2.6.2)
Copy link

@bridgecrew bridgecrew bot Jan 18, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

activerecord 5.2.4.5 / Gemfile.lock

Total vulnerabilities: 1

Critical: 1High: 0Medium: 0Low: 0
Vulnerability ID Severity CVSSFixed in Status
CVE-2022-32224 CRITICAL CRITICAL9.8-Open

Copy link

@bridgecrew bridgecrew bot Jan 18, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nokogiri 1.11.1 / Gemfile.lock

Total vulnerabilities: 7

Critical: 0High: 6Medium: 1Low: 0
Vulnerability ID Severity CVSSFixed in Status
CVE-2018-25032 HIGH HIGH7.5-Open
CVE-2021-41098 HIGH HIGH7.5-Open
CVE-2021-30560 HIGH HIGH8.8-Open
CVE-2022-24839 HIGH HIGH7.5-Open
CVE-2022-24836 HIGH HIGH7.5-Open
CVE-2022-29181 HIGH HIGH8.2-Open
CVE-2022-23437 MEDIUM MEDIUM6.5-Open

Copy link

@bridgecrew bridgecrew bot Jan 18, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

activestorage 5.2.4.5 / Gemfile.lock

Total vulnerabilities: 1

Critical: 1High: 0Medium: 0Low: 0
Vulnerability ID Severity CVSSFixed in Status
CVE-2022-21831 CRITICAL CRITICAL9.8-Open

Copy link

@bridgecrew bridgecrew bot Jan 18, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nokogiri 1.11.1-x86_64-darwin / Gemfile.lock

Total vulnerabilities: 7

Critical: 0High: 6Medium: 1Low: 0
Vulnerability ID Severity CVSSFixed in Status
CVE-2018-25032 HIGH HIGH7.5-Open
CVE-2021-41098 HIGH HIGH7.5-Open
CVE-2021-30560 HIGH HIGH8.8-Open
CVE-2022-24839 HIGH HIGH7.5-Open
CVE-2022-24836 HIGH HIGH7.5-Open
CVE-2022-29181 HIGH HIGH8.2-Open
CVE-2022-23437 MEDIUM MEDIUM6.5-Open

Copy link

@bridgecrew bridgecrew bot Jan 18, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

loofah 2.9.0 / Gemfile.lock

Total vulnerabilities: 3

Critical: 0High: 2Medium: 1Low: 0
Vulnerability ID Severity CVSSFixed in Status
CVE-2022-23516 HIGH HIGH7.5-Open
CVE-2022-23514 HIGH HIGH7.5-Open
CVE-2022-23515 MEDIUM MEDIUM6.1-Open

Copy link

@bridgecrew bridgecrew bot Jan 18, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

actionpack 5.2.4.5 / Gemfile.lock

Total vulnerabilities: 4

Critical: 0High: 2Medium: 2Low: 0
Vulnerability ID Severity CVSSFixed in Status
CVE-2021-22904 HIGH HIGH7.5-Open
CVE-2021-22885 HIGH HIGH7.5-Open
CVE-2022-23633 MEDIUM MEDIUM5.9-Open
CVE-2022-22577 MEDIUM MEDIUM6.1-Open

Copy link

@bridgecrew bridgecrew bot Jan 18, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

rdoc 4.3.0 / Gemfile.lock

Total vulnerabilities: 1

Critical: 0High: 1Medium: 0Low: 0
Vulnerability ID Severity CVSSFixed in Status
CVE-2021-31799 HIGH HIGH7-Open

Copy link

@bridgecrew bridgecrew bot Jan 18, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

actionview 5.2.4.5 / Gemfile.lock

Total vulnerabilities: 1

Critical: 0High: 0Medium: 1Low: 0
Vulnerability ID Severity CVSSFixed in Status
CVE-2022-27777 MEDIUM MEDIUM6.1-Open

Copy link

@bridgecrew bridgecrew bot Jan 18, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

tzinfo 1.2.9 / Gemfile.lock

Total vulnerabilities: 1

Critical: 0High: 1Medium: 0Low: 0
Vulnerability ID Severity CVSSFixed in Status
CVE-2022-31163 HIGH HIGH8.1-Open

Copy link

@bridgecrew bridgecrew bot Jan 18, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

rails-html-sanitizer 1.3.0 / Gemfile.lock

Total vulnerabilities: 5

Critical: 0High: 1Medium: 4Low: 0
Vulnerability ID Severity CVSSFixed in Status
CVE-2022-23517 HIGH HIGH7.5-Open
CVE-2022-32209 MEDIUM MEDIUM6.1-Open
CVE-2022-23520 MEDIUM MEDIUM6.1-Open
CVE-2022-23519 MEDIUM MEDIUM6.1-Open
CVE-2022-23518 MEDIUM MEDIUM6.1-Open

Copy link

@bridgecrew bridgecrew bot Jan 18, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

json 1.8.6 / Gemfile.lock

Total vulnerabilities: 1

Critical: 0High: 1Medium: 0Low: 0
Vulnerability ID Severity CVSSFixed in Status
CVE-2020-10663 HIGH HIGH7.5-Open

rack-test (1.1.0)
rack (>= 1.0, < 3)
rails (5.2.4.5)
Expand Down