Skip to content

Bump rack from 2.2.3 to 2.2.6.4 #35

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump rack from 2.2.3 to 2.2.6.4 #35

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion Gemfile.lock
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -86,7 +86,7 @@ GEM
coderay (~> 1.1)
method_source (~> 1.0)
racc (1.5.2)
rack (2.2.3)
rack (2.2.6.4)
Copy link

@bridgecrew bridgecrew bot Mar 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

json 1.8.6 / Gemfile.lock

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2020-10663 HIGH HIGH 7.5 - Open

Copy link

@bridgecrew bridgecrew bot Mar 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

tzinfo 1.2.9 / Gemfile.lock

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2022-31163 HIGH HIGH 8.1 - Open

Copy link

@bridgecrew bridgecrew bot Mar 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

globalid 0.4.2 / Gemfile.lock

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2023-22799 HIGH HIGH 7.5 - Open

Copy link

@bridgecrew bridgecrew bot Mar 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

actionpack 5.2.4.5 / Gemfile.lock

Total vulnerabilities: 6

Critical: 0 High: 4 Medium: 2 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-22885 HIGH HIGH 7.5 - Open
CVE-2021-22904 HIGH HIGH 7.5 - Open
CVE-2023-22792 HIGH HIGH 7.5 - Open
CVE-2023-22795 HIGH HIGH 7.5 - Open
CVE-2022-23633 MEDIUM MEDIUM 5.9 - Open
CVE-2022-22577 MEDIUM MEDIUM 6.1 - Open

Copy link

@bridgecrew bridgecrew bot Mar 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

rdoc 4.3.0 / Gemfile.lock

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-31799 HIGH HIGH 7 - Open

Copy link

@bridgecrew bridgecrew bot Mar 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

actionview 5.2.4.5 / Gemfile.lock

Total vulnerabilities: 1

Critical: 0 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2022-27777 MEDIUM MEDIUM 6.1 - Open

Copy link

@bridgecrew bridgecrew bot Mar 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

activesupport 5.2.4.5 / Gemfile.lock

Total vulnerabilities: 2

Critical: 0 High: 1 Medium: 0 Low: 1
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2023-22796 HIGH HIGH 7.5 - Open
CVE-2023-28120 LOW LOW - - Open

Copy link

@bridgecrew bridgecrew bot Mar 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

loofah 2.9.0 / Gemfile.lock

Total vulnerabilities: 3

Critical: 0 High: 2 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2022-23514 HIGH HIGH 7.5 - Open
CVE-2022-23516 HIGH HIGH 7.5 - Open
CVE-2022-23515 MEDIUM MEDIUM 6.1 - Open

Copy link

@bridgecrew bridgecrew bot Mar 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nokogiri 1.11.1-x86_64-darwin / Gemfile.lock

Total vulnerabilities: 8

Critical: 0 High: 7 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2018-25032 HIGH HIGH 7.5 - Open
CVE-2021-41098 HIGH HIGH 7.5 - Open
CVE-2021-30560 HIGH HIGH 8.8 - Open
CVE-2022-24836 HIGH HIGH 7.5 - Open
CVE-2022-24839 HIGH HIGH 7.5 - Open
CVE-2022-29181 HIGH HIGH 8.2 - Open
CVE-2021-3517 HIGH HIGH 8.6 - Open
CVE-2022-23437 MEDIUM MEDIUM 6.5 - Open

Copy link

@bridgecrew bridgecrew bot Mar 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

rails-html-sanitizer 1.3.0 / Gemfile.lock

Total vulnerabilities: 5

Critical: 0 High: 1 Medium: 4 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2022-23517 HIGH HIGH 7.5 - Open
CVE-2022-32209 MEDIUM MEDIUM 6.1 - Open
CVE-2022-23519 MEDIUM MEDIUM 6.1 - Open
CVE-2022-23520 MEDIUM MEDIUM 6.1 - Open
CVE-2022-23518 MEDIUM MEDIUM 6.1 - Open

Copy link

@bridgecrew bridgecrew bot Mar 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

activestorage 5.2.4.5 / Gemfile.lock

Total vulnerabilities: 1

Critical: 1 High: 0 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2022-21831 CRITICAL CRITICAL 9.8 - Open

Copy link

@bridgecrew bridgecrew bot Mar 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

activerecord 5.2.4.5 / Gemfile.lock

Total vulnerabilities: 2

Critical: 1 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2022-32224 CRITICAL CRITICAL 9.8 - Open
CVE-2022-44566 HIGH HIGH 7.5 - Open

Copy link

@bridgecrew bridgecrew bot Mar 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nokogiri 1.11.1 / Gemfile.lock

Total vulnerabilities: 8

Critical: 0 High: 7 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2018-25032 HIGH HIGH 7.5 - Open
CVE-2021-41098 HIGH HIGH 7.5 - Open
CVE-2021-30560 HIGH HIGH 8.8 - Open
CVE-2022-24836 HIGH HIGH 7.5 - Open
CVE-2022-24839 HIGH HIGH 7.5 - Open
CVE-2022-29181 HIGH HIGH 8.2 - Open
CVE-2021-3517 HIGH HIGH 8.6 - Open
CVE-2022-23437 MEDIUM MEDIUM 6.5 - Open

rack-test (1.1.0)
rack (>= 1.0, < 3)
rails (5.2.4.5)
Expand Down