Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
unning bundle-audit to check for insecure dependencies... Updating ruby-advisory-db ... From https://github.com/rubysec/ruby-advisory-db * branch master -> FETCH_HEAD Already up to date. Updated ruby-advisory-db ruby-advisory-db: 406 advisories Name: rubyzip Version: 1.2.3 Advisory: CVE-2019-16892 Criticality: Unknown URL: rubyzip/rubyzip#403 Title: Denial of Service in rubyzip ("zip bombs") Solution: upgrade to >= 1.3.0 Vulnerabilities found! Failed. Security vulnerabilities were found.
- Loading branch information