yajl-ruby high severity security vulnerability
stevemoser opened this issue · comments
Steve Moser commented
I found this warning message after forking the repo.
We found a potential security vulnerability in one of your dependencies.
The yajl-ruby dependency defined in Gemfile.lock has a known high severity security vulnerability in version range < 1.3.1 and should be updated.
Shawn Erquhart commented
Would definitely take a PR for this. I spent some time trying to get a patch up, but I'm having major issues with Ruby package management (specifically getting ffi to install, even after following all of the solutions I could find).
cc/ @calavera
Shawn Erquhart commented
Fixed in #20.