Ominauth github returns unverified email addresses #36
Description
Github API will return unverified email addresses and omniauth github forwards this on, instead gem should check "verified" true https://developer.github.com/v3/users/emails/#list-email-addresses-for-a-user before sending back emails. Its a huge security hole cause people can easily impersonate.