Skip to content

Instantly share code, notes, and snippets.

Created September 24, 2018 07:08
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
Star You must be signed in to star a gist
What would you like to do?
$ bundle audit check --update
Updating ruby-advisory-db ...
* branch master -> FETCH_HEAD
Already up to date.
Updated ruby-advisory-db
ruby-advisory-db: 322 advisories
Name: omniauth-oauth2
Version: 1.0.2
Advisory: CVE-2012-6134
Criticality: High
Title: Ruby on Rails omniauth-oauth2 Gem CSRF vulnerability
Solution: upgrade to >= 1.1.1
Name: rubyzip
Version: 1.2.1
Advisory: CVE-2018-1000544
Criticality: Unknown
Title: Directory Traversal in rubyzip
Solution: upgrade to >= 1.2.2
Vulnerabilities found!
require 'bundler/audit/task'
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment