From bff92115f60683952fdace0f2d45e02d2103f2df Mon Sep 17 00:00:00 2001 From: Chris Lowis Date: Mon, 5 Nov 2018 20:45:24 +0000 Subject: [PATCH] Update nokogiri 1.8.0 -> 1.8.5 I ran `bundle update nokogiri` to patch CVE-2017-9050[1] in libxml2. [1] https://nvd.nist.gov/vuln/detail/CVE-2017-9050 --- Gemfile.lock | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/Gemfile.lock b/Gemfile.lock index 75c10e2..0b4662e 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -158,14 +158,14 @@ GEM rb-fsevent (>= 0.9.3) rb-inotify (>= 0.9.7) mercenary (0.3.6) - mini_portile2 (2.2.0) + mini_portile2 (2.3.0) minima (2.1.1) jekyll (~> 3.3) minitest (5.10.2) multipart-post (2.0.0) net-dns (0.8.0) - nokogiri (1.8.0) - mini_portile2 (~> 2.2.0) + nokogiri (1.8.5) + mini_portile2 (~> 2.3.0) octokit (4.7.0) sawyer (~> 0.8.0, >= 0.5.3) pathutil (0.14.0) @@ -196,4 +196,4 @@ DEPENDENCIES github-pages BUNDLED WITH - 1.15.1 + 1.17.1