[Security] Update nokogiri to 1.11.0.rc4

2026-06-16 04:34:56 +02:00 · 2021-01-01 21:06:44 +01:00 · 2021-01-01 21:06:44 +01:00 · b0cec410e0
commit b0cec410e0
parent 336ea90c0f
2 changed files with 8 additions and 4 deletions
--- a/3
+++ b/3
@ -9,4 +9,5 @@ gem "kramdown", ">= 2.3.0"
 # security vulnerability - https://github.com/advisories/GHSA-j96r-xvjq-r9pg
 gem "activesupport", ">= 4.1.11"

-
+# security vulnerability - https://github.com/advisories/GHSA-vr8q-g5c7-m54m
+gem "nokogiri", ">= 1.11.0.rc4"
--- a/Gemfile.lock
+++ b/Gemfile.lock
@ -203,21 +203,23 @@ GEM
      rb-fsevent (~> 0.10, >= 0.10.3)
      rb-inotify (~> 0.9, >= 0.9.10)
    mercenary (0.3.6)
-    mini_portile2 (2.4.0)
+    mini_portile2 (2.5.0)
    minima (2.5.1)
      jekyll (>= 3.5, < 5.0)
      jekyll-feed (~> 0.9)
      jekyll-seo-tag (~> 2.1)
    minitest (5.14.2)
    multipart-post (2.1.1)
-    nokogiri (1.10.10)
-      mini_portile2 (~> 2.4.0)
+    nokogiri (1.11.0.rc4)
+      mini_portile2 (~> 2.5.0)
+      racc (~> 1.4)
    octokit (4.20.0)
      faraday (>= 0.9)
      sawyer (~> 0.8.0, >= 0.5.3)
    pathutil (0.16.2)
      forwardable-extended (~> 2.6)
    public_suffix (3.1.1)
+    racc (1.5.2)
    rb-fsevent (0.10.4)
    rb-inotify (0.10.1)
      ffi (~> 1.0)
@ -260,6 +262,7 @@ DEPENDENCIES
  activesupport (>= 4.1.11)
  github-pages
  kramdown (>= 2.3.0)
+  nokogiri (>= 1.11.0.rc4)
  tzinfo-data

 BUNDLED WITH