{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":8154497,"defaultBranch":"master","name":"ruby-advisory-db","ownerLogin":"rubysec","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2013-02-12T07:10:30.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/3538974?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1711327649.0","currentOid":""},"activityList":{"items":[{"before":"33eda203d98c3315967b9719f7ced8c4adcaecac","after":"343e45a5c72afeb9c654621f1ae889efdfba31b7","ref":"refs/heads/master","pushedAt":"2024-05-16T23:28:23.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 brand new advisory","shortMessageHtmlLink":"GHSA SYNC: 1 brand new advisory"}},{"before":"7ef0ac6eeaedc63eb3a43ac7039ab195b958feaa","after":"33eda203d98c3315967b9719f7ced8c4adcaecac","ref":"refs/heads/master","pushedAt":"2024-05-14T21:24:41.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 brand new advisory","shortMessageHtmlLink":"GHSA SYNC: 1 brand new advisory"}},{"before":"82e741bfb536fb72d57104e0401c5f833892645b","after":"7ef0ac6eeaedc63eb3a43ac7039ab195b958feaa","ref":"refs/heads/master","pushedAt":"2024-05-04T23:48:45.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"GHSA SYNC: Added cvss_v3 field","shortMessageHtmlLink":"GHSA SYNC: Added cvss_v3 field"}},{"before":"e97ec3fecb8c15a86ac15b55ecfdc0e61142c366","after":"82e741bfb536fb72d57104e0401c5f833892645b","ref":"refs/heads/master","pushedAt":"2024-05-02T22:30:29.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 brand new advisory (#778)\n\n---------\r\n\r\nCo-authored-by: Postmodern <postmodern.mod3@gmail.com>","shortMessageHtmlLink":"GHSA SYNC: 1 brand new advisory (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2276573246\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/778\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/rubysec/ruby-advisory-db/pull/778/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/pull/778\">#778</a>)"}},{"before":"bc3e9f0c3c0e07a2ae3c58738f765c476777493d","after":"e97ec3fecb8c15a86ac15b55ecfdc0e61142c366","ref":"refs/heads/master","pushedAt":"2024-04-27T17:53:07.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Correct example reflected XSS exploit URL.","shortMessageHtmlLink":"Correct example reflected XSS exploit URL."}},{"before":"2b58e06609a927d4f980b4d8b67806133a9fabd8","after":"bc3e9f0c3c0e07a2ae3c58738f765c476777493d","ref":"refs/heads/master","pushedAt":"2024-04-27T17:46:14.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Remove unnecessary quoting and trailing whitespace from the title.","shortMessageHtmlLink":"Remove unnecessary quoting and trailing whitespace from the title."}},{"before":"764be08b56ab6ed0b55484739ab3bacbc5875eb5","after":"2b58e06609a927d4f980b4d8b67806133a9fabd8","ref":"refs/heads/master","pushedAt":"2024-04-25T12:02:18.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"CVE-2024-0227 was withdrawn/REJECTED (closes #777).\n\n* https://github.com/advisories/GHSA-chcr-x7hc-8fp8\n* https://nvd.nist.gov/vuln/detail/CVE-2024-0227","shortMessageHtmlLink":"<a title=\"CVE-2024-0227\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-chcr-x7hc-8fp8/hovercard\" href=\"https://github.com/advisories/GHSA-chcr-x7hc-8fp8\">CVE-2024-0227</a> was withdrawn/REJECTED (<span class=\"issue-keyword tooltipped tooltipped-se\" aria-label=\"This commit closes issue #777.\">closes</span> <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2262932329\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/777\" data-hovercard-type=\"issue\" data-hovercard-url=\"/rubysec/ruby-advisory-db/issues/777/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/issues/777\">#777</a>)."}},{"before":"b6d7ca2cab69838e1ebbe17fd38fc811971bc21a","after":"764be08b56ab6ed0b55484739ab3bacbc5875eb5","ref":"refs/heads/master","pushedAt":"2024-04-25T02:29:22.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Added CVE-2024-27282.","shortMessageHtmlLink":"Added <a title=\"CVE-2024-27282\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-63cq-cj6g-qfr2/hovercard\" href=\"https://github.com/advisories/GHSA-63cq-cj6g-qfr2\">CVE-2024-27282</a>."}},{"before":"0a224791869b137c1cddbf843ccb1e0453d0ee8c","after":"b6d7ca2cab69838e1ebbe17fd38fc811971bc21a","ref":"refs/heads/master","pushedAt":"2024-04-19T19:25:11.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Added the CVE ID to `gems/phlex/GHSA-g7xq-xv8c-h98c.yml` and renamed it.","shortMessageHtmlLink":"Added the CVE ID to <code>gems/phlex/<a title=\"GHSA-g7xq-xv8c-h98c\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-g7xq-xv8c-h98c/hovercard\" href=\"https://github.com/advisories/GHSA-g7xq-xv8c-h98c\">GHSA-g7xq-xv8c-h98c</a>.yml</code> and renamed it."}},{"before":"9920c496ab9e87be6928ae702e631cd9cb6b5001","after":"0a224791869b137c1cddbf843ccb1e0453d0ee8c","ref":"refs/heads/master","pushedAt":"2024-04-17T12:52:51.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Add phlex/GHSA-g7xq-xv8c-h98c (#775)\n\n---------\r\n\r\nCo-authored-by: Postmodern <postmodern.mod3@gmail.com>","shortMessageHtmlLink":"Add phlex/<a title=\"GHSA-g7xq-xv8c-h98c\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-g7xq-xv8c-h98c/hovercard\" href=\"https://github.com/advisories/GHSA-g7xq-xv8c-h98c\">GHSA-g7xq-xv8c-h98c</a> (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2247729311\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/775\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/rubysec/ruby-advisory-db/pull/775/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/pull/775\">#775</a>)"}},{"before":"840f21aeeb8a06a93a3c3bf1e2a92d7167029992","after":"9920c496ab9e87be6928ae702e631cd9cb6b5001","ref":"refs/heads/master","pushedAt":"2024-04-10T23:15:18.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 brand new advisory (#774)\n\n* Added `patched_versions` to `gems/katello/CVE-2012-3503.yml`.\r\n\r\n  The vulnerability was patched in commit https://github.com/Katello/katello/commit/1fd91b1dc855ba4b593f3d4c3fe3a850c4e79f23, which was tagged by the `katello-1.0.6-1` and `katello-1.1.7-1` release tags. However, the first gem version of katello published to https://rubygems.org is 1.5.0. I suspect that prior to the katello-1.5.0 gem, katello was installed directly from git.\r\n\r\n---------\r\n\r\nCo-authored-by: Postmodern <postmodern.mod3@gmail.com>","shortMessageHtmlLink":"GHSA SYNC: 1 brand new advisory (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2236517376\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/774\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/rubysec/ruby-advisory-db/pull/774/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/pull/774\">#774</a>)"}},{"before":"bfa1f3a9140823e6ebf814aa2833a174a284d38b","after":"840f21aeeb8a06a93a3c3bf1e2a92d7167029992","ref":"refs/heads/master","pushedAt":"2024-03-26T23:27:16.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 new advisory","shortMessageHtmlLink":"GHSA SYNC: 1 new advisory"}},{"before":"30c801002efb9a5e26f04031a2a7191949e3ba98","after":"bfa1f3a9140823e6ebf814aa2833a174a284d38b","ref":"refs/heads/master","pushedAt":"2024-03-26T18:10:55.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"GHSA SYNC: Added ghsa: fields to 2 advisories","shortMessageHtmlLink":"GHSA SYNC: Added ghsa: fields to 2 advisories"}},{"before":"519298c72ac893def4337186770c762404e6cc33","after":"30c801002efb9a5e26f04031a2a7191949e3ba98","ref":"refs/heads/master","pushedAt":"2024-03-25T00:53:14.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Added CVE-2024-27281 for the rdoc gem (issue #769).","shortMessageHtmlLink":"Added <a title=\"CVE-2024-27281\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-592j-995h-p23j/hovercard\" href=\"https://github.com/advisories/GHSA-592j-995h-p23j\">CVE-2024-27281</a> for the rdoc gem (issue <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2204166718\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/769\" data-hovercard-type=\"issue\" data-hovercard-url=\"/rubysec/ruby-advisory-db/issues/769/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/issues/769\">#769</a>)."}},{"before":"f86ac1d6e388497900cb562b6d2c95237ee8560d","after":"9077cff27e2a5ed78b0a5beb255db4c480847032","ref":"refs/heads/CVE-2024-27281","pushedAt":"2024-03-25T00:50:59.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Added CVE-2024-27281 for the rdoc gem (issue #769).","shortMessageHtmlLink":"Added <a title=\"CVE-2024-27281\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-592j-995h-p23j/hovercard\" href=\"https://github.com/advisories/GHSA-592j-995h-p23j\">CVE-2024-27281</a> for the rdoc gem (issue <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2204166718\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/769\" data-hovercard-type=\"issue\" data-hovercard-url=\"/rubysec/ruby-advisory-db/issues/769/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/issues/769\">#769</a>)."}},{"before":null,"after":"f86ac1d6e388497900cb562b6d2c95237ee8560d","ref":"refs/heads/CVE-2024-27281","pushedAt":"2024-03-25T00:47:29.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Added CVE-2024-27281 for the rdoc gem (issue #769).","shortMessageHtmlLink":"Added <a title=\"CVE-2024-27281\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-592j-995h-p23j/hovercard\" href=\"https://github.com/advisories/GHSA-592j-995h-p23j\">CVE-2024-27281</a> for the rdoc gem (issue <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2204166718\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/769\" data-hovercard-type=\"issue\" data-hovercard-url=\"/rubysec/ruby-advisory-db/issues/769/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/issues/769\">#769</a>)."}},{"before":"040177d18844ee876fbd759e89bfc1c208f2ae58","after":"519298c72ac893def4337186770c762404e6cc33","ref":"refs/heads/master","pushedAt":"2024-03-25T00:46:11.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Consolidate `patched_versions`.\n\n* 3.0.1.1 and 3.0.1.2 both belong to the 3.0.1 version family.","shortMessageHtmlLink":"Consolidate <code>patched_versions</code>."}},{"before":"e6ff41fb47c2b9c455ec06375bbf44be4e6d1efe","after":"040177d18844ee876fbd759e89bfc1c208f2ae58","ref":"refs/heads/master","pushedAt":"2024-03-25T00:38:36.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Added CVE-2024-27280 for the stringio gem (issue #769).","shortMessageHtmlLink":"Added <a title=\"CVE-2024-27280\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-v5h6-c2hv-hv3r/hovercard\" href=\"https://github.com/advisories/GHSA-v5h6-c2hv-hv3r\">CVE-2024-27280</a> for the stringio gem (issue <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2204166718\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/769\" data-hovercard-type=\"issue\" data-hovercard-url=\"/rubysec/ruby-advisory-db/issues/769/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/issues/769\">#769</a>)."}},{"before":"d4a9665eef6cb3dcfea2b7c69ae4b94285669164","after":"0118886e158d75cb9e1cb1214b8056827dfbb7d3","ref":"refs/heads/CVE-2024-27280","pushedAt":"2024-03-25T00:35:39.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Added CVE-2024-27280 for the stringio gem (issue #769).","shortMessageHtmlLink":"Added <a title=\"CVE-2024-27280\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-v5h6-c2hv-hv3r/hovercard\" href=\"https://github.com/advisories/GHSA-v5h6-c2hv-hv3r\">CVE-2024-27280</a> for the stringio gem (issue <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2204166718\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/769\" data-hovercard-type=\"issue\" data-hovercard-url=\"/rubysec/ruby-advisory-db/issues/769/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/issues/769\">#769</a>)."}},{"before":null,"after":"d4a9665eef6cb3dcfea2b7c69ae4b94285669164","ref":"refs/heads/CVE-2024-27280","pushedAt":"2024-03-25T00:30:39.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Added CVE-2024-27280 for the stringio gem (issue #769).","shortMessageHtmlLink":"Added <a title=\"CVE-2024-27280\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-v5h6-c2hv-hv3r/hovercard\" href=\"https://github.com/advisories/GHSA-v5h6-c2hv-hv3r\">CVE-2024-27280</a> for the stringio gem (issue <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2204166718\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/769\" data-hovercard-type=\"issue\" data-hovercard-url=\"/rubysec/ruby-advisory-db/issues/769/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/issues/769\">#769</a>)."}},{"before":"35ca69bb256418b4cec81327e659ed6c0257d25b","after":"e6ff41fb47c2b9c455ec06375bbf44be4e6d1efe","ref":"refs/heads/master","pushedAt":"2024-03-19T16:40:29.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Removed duplicate/invalid GHSA advisory (issue #768).","shortMessageHtmlLink":"Removed duplicate/invalid GHSA advisory (issue <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2193639333\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/768\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/rubysec/ruby-advisory-db/pull/768/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/pull/768\">#768</a>)."}},{"before":"359a9f2a7fde6da2376e440754b49629a981ee6b","after":"35ca69bb256418b4cec81327e659ed6c0257d25b","ref":"refs/heads/master","pushedAt":"2024-03-19T02:03:51.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"GHSA SYNC: 2 brand new advisories","shortMessageHtmlLink":"GHSA SYNC: 2 brand new advisories"}},{"before":"81353c449ddc4e7ec37ea0fcac30a818f4dd0f03","after":"359a9f2a7fde6da2376e440754b49629a981ee6b","ref":"refs/heads/master","pushedAt":"2024-03-18T03:40:47.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 brand new advisory (#767)\n\n---------\r\n\r\nCo-authored-by: Postmodern <postmodern.mod3@gmail.com>","shortMessageHtmlLink":"GHSA SYNC: 1 brand new advisory (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2190786225\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/767\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/rubysec/ruby-advisory-db/pull/767/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/pull/767\">#767</a>)"}},{"before":"5dd464ecd5b8342a827c0f197b387ff312c33770","after":"81353c449ddc4e7ec37ea0fcac30a818f4dd0f03","ref":"refs/heads/master","pushedAt":"2024-03-16T23:21:23.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 brand new advisory (#766)\n\n---------\r\n\r\nCo-authored-by: Postmodern <postmodern.mod3@gmail.com>","shortMessageHtmlLink":"GHSA SYNC: 1 brand new advisory (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2190230287\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/766\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/rubysec/ruby-advisory-db/pull/766/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/pull/766\">#766</a>)"}},{"before":"50708080724d896430aa46b05140aee982471c36","after":"5dd464ecd5b8342a827c0f197b387ff312c33770","ref":"refs/heads/master","pushedAt":"2024-03-16T14:45:09.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"update GHSA-xc9x-jj77-9p9J (#765)\n\n* update to include nokogiri v1.15.6 information (just released)\r\n* add Impact section\r\n* update title to be more accurate and descriptive\r\n\r\nCo-authored-by: Postmodern <postmodern.mod3@gmail.com>","shortMessageHtmlLink":"update <a title=\"GHSA-xc9x-jj77-9p9j\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-xc9x-jj77-9p9j/hovercard\" href=\"https://github.com/advisories/GHSA-xc9x-jj77-9p9j\">GHSA-xc9x-jj77-9p9j</a> (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2189971928\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/765\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/rubysec/ruby-advisory-db/pull/765/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/pull/765\">#765</a>)"}},{"before":"ff710b9dff3b17cabad830a8011f49b9fa14ec81","after":"50708080724d896430aa46b05140aee982471c36","ref":"refs/heads/master","pushedAt":"2024-03-15T23:03:52.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"GHSA SYNC: Modified 1 advisory (#764)","shortMessageHtmlLink":"GHSA SYNC: Modified 1 advisory (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2188422506\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/764\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/rubysec/ruby-advisory-db/pull/764/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/pull/764\">#764</a>)"}},{"before":"f455e04ded80f3a61e740547601d20b48d9a0fb7","after":"ff710b9dff3b17cabad830a8011f49b9fa14ec81","ref":"refs/heads/master","pushedAt":"2024-03-14T00:35:01.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 brand new advisory","shortMessageHtmlLink":"GHSA SYNC: 1 brand new advisory"}},{"before":"2626a46a23e5cfb2e6d636abfcd8cdc0c9f6c520","after":"f455e04ded80f3a61e740547601d20b48d9a0fb7","ref":"refs/heads/master","pushedAt":"2024-03-07T01:46:19.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Update CVE-2023-51774 with patch version for 1.15.3\n\nSee https://github.com/nov/json-jwt/issues/121 and https://github.com/nov/json-jwt/commits/v1.15.3/ for the code","shortMessageHtmlLink":"Update <a title=\"CVE-2023-51774\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-c8v6-786g-vjx6/hovercard\" href=\"https://github.com/advisories/GHSA-c8v6-786g-vjx6\">CVE-2023-51774</a> with patch version for 1.15.3"}},{"before":"d7edb7c40894247c00553e35f94e428ddf0c9dd9","after":"2626a46a23e5cfb2e6d636abfcd8cdc0c9f6c520","ref":"refs/heads/master","pushedAt":"2024-03-05T19:20:20.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Update with further details for CVE-2024-27285","shortMessageHtmlLink":"Update with further details for <a title=\"CVE-2024-27285\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-8mq4-9jjh-9xrc/hovercard\" href=\"https://github.com/advisories/GHSA-8mq4-9jjh-9xrc\">CVE-2024-27285</a>"}},{"before":"b9044073701dd16f4cb6153d2668494b09ff288d","after":"d7edb7c40894247c00553e35f94e428ddf0c9dd9","ref":"refs/heads/master","pushedAt":"2024-03-04T22:42:13.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Mark rack-cors 2.0.2 as resolving CVE-2024-27456 (#760)\n\n* https://github.com/cyu/rack-cors/issues/274","shortMessageHtmlLink":"Mark rack-cors 2.0.2 as resolving <a title=\"CVE-2024-27456\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-785g-282q-pwvx/hovercard\" href=\"https://github.com/advisories/GHSA-785g-282q-pwvx\">CVE-2024-27456</a> (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2167303750\" data-permission-text=\"Title is private\" data-url=\"https://github.com/rubysec/ruby-advisory-db/issues/760\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/rubysec/ruby-advisory-db/pull/760/hovercard\" href=\"https://github.com/rubysec/ruby-advisory-db/pull/760\">#760</a>)"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAETCWuSgA","startCursor":null,"endCursor":null}},"title":"Activity · rubysec/ruby-advisory-db"}