Please support Nokogiri >= 1.10.3

[JunichiIto]

I want to update Nokogiri to 1.10.3 due to CVE-2019-11068, but this gem is preventing from it.

I understand you are a small team, but I would like you to fix it ASAP for the vulnerability.

[JunichiIto]

My pull request might solve this issue:

#45

[Younnah]

Hi @JunichiIto

When I add gem 'microsoft_graph' in the Gemfile and I run bundle install, I have this error:

I was told that your pull request was about this problem...

Here is my stack:
ruby : ruby 2.5.1p57 (2018-03-29 revision 63029) [x86_64-darwin19]
ruby on rails : 5.2.3

I would like to use the gem as in this doc : https://docs.microsoft.com/fr-fr/outlook/rest/ruby-tutorial

Thank you for your help!

---

[UPDATE]
I saw that the official ruby repo for this gem is outdated, so I include the gem since this github repo directly and I up the issue about the update of the official ruby repo

[JunichiIto]

@Younnah Your microsoft_graph version seems 0.1.1 but the latest version is 0.1.3 (ref.), and it might solve the problem. Could you try this?

# Gemfile
gem 'microsoft_graph', '~> 0.1.3'

bundle update microsoft_graph

[Younnah]

@JunichiIto thank you for your answer!
I tried, but I use the 1.10.4 nokogiri gem version and I have the same issue.

  In Gemfile:
    nokogiri (= 1.10.4)

    microsoft_graph (~> 0.1.3) was resolved to 0.1.3, which depends on
      nokogiri (~> 1.8.0)

Btw, add gem 'microsoft_graph', github: 'microsoftgraph/msgraph-sdk-ruby' solved my problem!

[JunichiIto]

@Younnah Ah, I noticed my PR has not been released yet. (0.1.3 was released in 2017!)

Btw, add gem 'microsoft_graph', github: 'microsoftgraph/msgraph-sdk-ruby' solved my problem!

Yep, your solution seems okay 👌