You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
html2text depends on nokogiri "~> 1.8.5", which has a vulnerability in this version (CVE-2019-11068, see sparklemotion/nokogiri#1892). Updating nokogiri dependency to "~> 1.10.3" should resolve this issue I guess?
The text was updated successfully, but these errors were encountered:
Resolves CVE-2019-11068, issue #8https://nvd.nist.gov/vuln/detail/CVE-2019-11068
Also add bundler-audit, and connect with travis, so that we can verify
that the Gemfile.lock is not relying on any vulnerable dependencies. (Of
course, this does not impact users of the gem, who will have their own
Gemfile.lock.)
html2text depends on nokogiri "~> 1.8.5", which has a vulnerability in this version (CVE-2019-11068, see sparklemotion/nokogiri#1892). Updating nokogiri dependency to "~> 1.10.3" should resolve this issue I guess?
The text was updated successfully, but these errors were encountered: