Skip to content

Commit

Permalink
Update nokogiri
Browse files Browse the repository at this point in the history 
Nokogiri < 1.11 is vulnerable to XML External Entity (XXE) Injection 
https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1055008
  • Loading branch information
@ashin-omg
ashin-omg authored Jan 5, 2021
1 parent 2c336ee commit da077e5
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion slather.gemspec
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,7 @@ Gem::Specification.new do |spec|

spec.add_dependency 'clamp', '~> 1.3'
spec.add_dependency 'xcodeproj', '~> 1.7'
spec.add_dependency 'nokogiri', '~> 1.8'
spec.add_dependency 'nokogiri', '~> 1.11'
spec.add_dependency 'CFPropertyList', '>= 2.2', '< 4'

spec.add_runtime_dependency 'activesupport'
Expand Down

0 comments on commit da077e5

Please sign in to comment.