puppetlabs/vmpooler
2
0
Fork 0
mirror of https://github.com/puppetlabs/vmpooler.git synced 2026-01-26 01:58:41 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

(POOLER-101) Update nokogiri and net-ldap

Browse source 
This commit updates nokogiri and net-ldap to versions that have fixed known vulnerabilities. Without this change vmpooler requires versions of each gem that contain known vulnerabilities.
This commit is contained in:
kirby@puppetlabs.com 2018-04-19 15:30:45 -07:00 committed by mattkirby
parent 10245321bf
commit 356c541fdc
1 changed files with 2 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

7
Gemfile
View file

@ -8,24 +8,21 @@ gem 'rack', '~> 1.6'
gem 'rake', '>= 10.4' gem 'rake', '>= 10.4'
gem 'rbvmomi', '>= 1.8' gem 'rbvmomi', '>= 1.8'
gem 'sinatra', '>= 1.4' gem 'sinatra', '>= 1.4'
gem 'net-ldap', '<= 0.12.1' # keep compatibility w/ jruby & mri-1.9.3 gem 'net-ldap', '>= 0.16.1'
gem 'statsd-ruby', '>= 1.3.0', :require => 'statsd' gem 'statsd-ruby', '>= 1.3.0', :require => 'statsd'
gem 'connection_pool', '>= 2.2.1' gem 'connection_pool', '>= 2.2.1'
gem 'nokogiri', '>= 1.8.2'
# Pin gems against Ruby version # Pin gems against Ruby version
# Note we can't use platform restrictions easily so use # Note we can't use platform restrictions easily so use
# lowest version range any platform # lowest version range any platform
# ---- # ----
# nokogiri
# redis # redis
if RUBY_VERSION =~ /^2\.[1]/ if RUBY_VERSION =~ /^2\.[1]/
gem 'nokogiri', '~> 1.7.0'
gem 'redis', '~> 3.0' gem 'redis', '~> 3.0'
elsif RUBY_VERSION =~ /^2\.2\.[01]/ elsif RUBY_VERSION =~ /^2\.2\.[01]/
gem 'nokogiri', "~> 1.7"
gem 'redis', '~> 3.0' gem 'redis', '~> 3.0'
else else
gem 'nokogiri', "~> 1.7"
gem 'redis', '>= 3.2' gem 'redis', '>= 3.2'
end end