Skip to content
This repository has been archived by the owner. It is now read-only.
Permalink
Branch: master
Find file Copy path
Find file Copy path
Fetching contributors…
Cannot retrieve contributors at this time
144 lines (143 sloc) 4.46 KB
{
"min_version": "1.0.sorry.its.not.maintained.anymore.see.github.issues",
"vulnerabilities": [
{
"gems": {
"rails": ["4.1.3", "4.0.7", "3.2.19"]
},
"url": "http://weblog.rubyonrails.org/2014/7/2/Rails_3_2_19_4_0_7_and_4_1_3_have_been_released/",
"date": "2014-07-02T17:13Z"
},
{
"gems": {
"rails": ["4.1.1", "4.0.5", "3.2.18"]
},
"url": "http://weblog.rubyonrails.org/2014/5/6/Rails_3_2_18_4_0_5_and_4_1_1_have_been_released/",
"date": "2014-05-06T17:17Z"
},
{
"gems": {
"rails": ["4.1.0.beta2", "4.0.3", "3.2.17"]
},
"url": "http://weblog.rubyonrails.org/2014/2/18/Rails_3_2_17_4_0_3_and_4_1_0_beta2_have_been_released/",
"date": "2014-02-18T19:17Z"
},
{
"gems": {
"rails": ["4.0.2", "3.2.16"]
},
"url": "http://weblog.rubyonrails.org/2013/12/3/Rails_3_2_16_and_4_0_2_have_been_released/",
"date": "2013-12-03T19:05Z"
},
{
"gems": {
"rails": [ "3.2.15", "2.0" ]
},
"url": "http://weblog.rubyonrails.org/2013/10/16/Rails-3-2-15-has-been-released/",
"date": "2013-10-16T00:00Z"
},
{
"gems": {
"devise": ["3.0.1", "2.2.5"]
},
"url": "http://blog.plataformatec.com.br/2013/08/csrf-token-fixation-attacks-in-devise/",
"date": "2013-08-02T18:33Z"
},
{
"gems": {
"rails": ["3.2.13", "3.1.12", "2.3.18"]
},
"url": "http://weblog.rubyonrails.org/2013/3/18/SEC-ANN-Rails-3-2-13-3-1-12-and-2-3-18-have-been-released/",
"date": "2013-03-18T17:21Z",
"note": "Warning: there are several issues with Rails 3.2.13, affecting view performance and other things; see http://blog.bugsnag.com/2013/03/20/rails-3-2-13-performance-regressions-major-bugs/ for more info."
},
{
"gems": {
"ftpd": ["0.2.2"]
},
"url": "http://seclists.org/bugtraq/2013/Mar/10",
"date": "2013-03-03T05:45Z"
},
{
"gems": {
"dragonfly": ["0.9.14"]
},
"url": "https://groups.google.com/d/msg/dragonfly-users/3c3WIU3VQTo/ccasejdDjcAJ",
"date": "2013-02-19T08:39Z"
},
{
"gems": {
"rails": ["3.2.12", "3.1.11", "2.3.17"]
},
"url": "http://weblog.rubyonrails.org/2013/2/11/SEC-ANN-Rails-3-2-12-3-1-11-and-2-3-17-have-been-released/",
"date": "2013-02-11T18:40Z"
},
{
"gems": {
"json": ["1.7.7", "1.6.8", "1.5.5"],
"json_pure": ["1.7.7", "1.6.8", "1.5.5"]
},
"url": "https://groups.google.com/forum/?fromgroups=#!topic/rubyonrails-security/4_YvCpLzL58",
"date": "2013-02-11T18:26Z"
},
{
"gems": {
"rack": ["1.5.2", "1.4.5", "1.3.10", "1.2.8", "1.1.6"]
},
"url": "http://rack.github.com/",
"date": "2013-02-08T03:14Z"
},
{
"gems": {
"rdoc": ["4.0.0.rc.2", "3.12.1", "3.9.5"]
},
"url": "http://rdoc.rubyforge.org/CVE-2013-0256_rdoc.html",
"date": "2013-02-07T05:49Z"
},
{
"gems": {
"rails": ["3.0.20", "2.3.16"]
},
"url": "http://weblog.rubyonrails.org/2013/1/28/Rails-3-0-20-and-2-3-16-have-been-released/",
"date": "2013-01-28T21:08Z"
},
{
"gems": {
"devise": ["2.2.3", "2.1.3", "2.0.5", "1.5.4", "1.3.0", "1.2.0"]
},
"url": "http://blog.plataformatec.com.br/2013/01/security-announcement-devise-v2-2-3-v2-1-3-v2-0-5-and-v1-5-3-released/",
"date": "2013-01-28T15:03Z"
},
{
"gems": {
"httparty": ["0.10.0"],
"extlib": ["0.9.16"],
"crack": ["0.3.2"],
"nori": ["2.0.3", "1.1.4", "1.0.3"]
},
"url": "https://support.cloud.engineyard.com/entries/22915701-January-14-2013-Security-vulnerabilities-httparty-extlib-crack-nori-Update-these-gems-immediately",
"date": "2013-01-15T13:10Z"
},
{
"gems": {
"multi_xml": ["0.5.2"]
},
"url": "https://twitter.com/sferik/status/289640482420695040",
"date": "2013-01-11T07:50Z"
},
{
"gems": {
"rails": ["3.2.11", "3.1.10", "3.0.19", "2.3.15"]
},
"url": "http://weblog.rubyonrails.org/2013/1/8/Rails-3-2-11-3-1-10-3-0-19-and-2-3-15-have-been-released/",
"date": "2013-01-08T20:26Z"
},
{
"gems": {
"rails": ["3.2.10", "3.1.9", "3.0.18", "2.3.15"]
},
"url": "http://weblog.rubyonrails.org/2013/1/2/Rails-3-2-10--3-1-9--and-3-0-18-have-been-released/",
"date": "2013-01-02T21:39Z"
}
]
}
You can’t perform that action at this time.