[CVE-2017-17042] update vulnerable yard dependency

majormoses · majormoses · commit e43aa6712b20 · 2018-03-27T12:46:49.000-07:00
Signed-off-by: Ben Abrams &lt;me@benabrams.it&gt;
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -6,6 +6,10 @@ This CHANGELOG follows the format listed [here](https://github.com/sensu-plugins
 
 ## [Unreleased]
 
+### Security
+- updated yard dependency to `~> 0.9.11` per: https://nvd.nist.gov/vuln/detail/CVE-2017-17042 (@majormoses)
+
+## [3.0.1] - 2018-03-17
 ### Fixed
 - check-process.rb: fixed an issue introduced in #61 (@majormoses)
 
diff --git a/sensu-plugins-process-checks.gemspec b/sensu-plugins-process-checks.gemspec
@@ -43,5 +43,5 @@ Gem::Specification.new do |s| # rubocop: disable Metrics/BlockLength
   s.add_development_dependency 'redcarpet',                 '~> 3.2'
   s.add_development_dependency 'rspec',                     '~> 3.1'
   s.add_development_dependency 'rubocop',                   '~> 0.51.0'
-  s.add_development_dependency 'yard',                      '~> 0.8'
+  s.add_development_dependency 'yard',                      '~> 0.9.11'
 end
