Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Ignore CVE-2023-26141 (Sidekiq) from bundler audit #27037

Merged
merged 1 commit into from
Sep 22, 2023
Merged

Ignore CVE-2023-26141 (Sidekiq) from bundler audit #27037

merged 1 commit into from
Sep 22, 2023

Conversation

renchap
Copy link
Sponsor Member

@renchap renchap commented Sep 21, 2023

The fix is in Sidekiq 7, which we can not easily upgrade to at the moment.

Sidekiq 6.5.10 should be released at some point with the fix, but until then let's ignore it so every PR does not fail checks.

@renchap
Ignore CVE-2023-26141 (Sidekiq) from bundler audit
776208b 
The fix is in Sidekiq 7, which we can not easily upgrade to at the moment.

Sidekiq 6.5.10 should be released at some point with the fix, but until then let's ignore it so every PR does not fail checks.
@ClearlyClaire ClearlyClaire merged commit a011d3a into mastodon:main Sep 22, 2023
32 checks passed
renchap added a commit to renchap/mastodon that referenced this pull request Sep 22, 2023
@renchap
Ignore CVE-2023-26141 (Sidekiq) from bundler audit (mastodon#27037)
9ca4e44
ClearlyClaire pushed a commit that referenced this pull request Oct 3, 2023
@renchap @ClearlyClaire
Ignore CVE-2023-26141 (Sidekiq) from bundler audit (#27037)
4f49a52
audiodude pushed a commit to audiodude/mastodon that referenced this pull request Oct 23, 2023
@renchap @audiodude
Ignore CVE-2023-26141 (Sidekiq) from bundler audit (mastodon#27037)
a9d4d92
000hen pushed a commit to thenapnetwork/nap-mastodon that referenced this pull request Dec 6, 2023
@renchap @000hen
Ignore CVE-2023-26141 (Sidekiq) from bundler audit (mastodon#27037)
210e094
vmstan pushed a commit to vmstan/mastodon that referenced this pull request Jan 5, 2024
@renchap @vmstan
Ignore CVE-2023-26141 (Sidekiq) from bundler audit (mastodon#27037)
1d24e83
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ykzts ykzts ykzts approved these changes

@ClearlyClaire ClearlyClaire ClearlyClaire approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@renchap @ykzts @ClearlyClaire