From 625496145cc2165b2955589e707651736a27216a Mon Sep 17 00:00:00 2001 From: d-m-u Date: Tue, 1 Oct 2019 11:45:29 -0400 Subject: [PATCH] Bump version to 1.3.0 for CVE-2019-16892 includes rubyzip/rubyzip#403 --- manageiq-automation_engine.gemspec | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/manageiq-automation_engine.gemspec b/manageiq-automation_engine.gemspec index 392c05a8d..6be882e84 100644 --- a/manageiq-automation_engine.gemspec +++ b/manageiq-automation_engine.gemspec @@ -15,7 +15,7 @@ Gem::Specification.new do |s| s.files = Dir["{app,lib}/**/*", "LICENSE.txt", "Rakefile", "README.md"] - s.add_dependency "rubyzip", "~>1.2.2" + s.add_dependency "rubyzip", ">=1.3.0" s.add_development_dependency "codeclimate-test-reporter", "~> 1.0.0" s.add_development_dependency "simplecov"