-
**Is your feature request related to a problem? Please describe.**
A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
Source | URL
-- | --
nvd and Mitre |…
-
Just a todo list I figured I should put somewhere more public... Need to add advisories for all these:
ruby_rncryptor / ruby_rncryptor_secured -- https://srcclr.com/security/timing-attacks/ruby/s-193…
-
### vulnerability info
After the default deployment of Fluentd-ui, it is not mandatory to change the password and there is a default password.
```
$ sudo /usr/sbin/td-agent-ui start
Puma 2.9.2 sta…
-
Hi!
I work on the Google [Open Source Vulnerabilities](https://github.com/google/osv) project, and we've been working with the Go security team and other vulnerability database maintainers to try t…
-
Hairtrigger version: 0.2.23
Ruby version: 2.6.2
Rails version: 6.0.0.rc1
Whenever I run a migration, it ends with an error (stack trace below):
```
** Execute db:load_config
** Execute db:migr…
-
Add cvss (cvss_v2, cvss_v3, cvss_v4) values back in as needed using external data in github_advisory_sync.rb.
* ~Rest API Example: https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2019-10…
-
GitHub announced some new security features today which, as far as I understand, are language agnostic in their execution for the most part. One of those is the ability for maintainers of a project to…
-
Because of the Dir.chdir in lib/bundler/audit/database.rb, the gem itself is not threadsafe
I believe that this should do the trick:
``` ruby
module Bundler
module Audit
# Represents the direc…
-
### Summary: initial_setup rake aborted, StandardError
### Steps to reproduce:
1.run the command RAILS_ENV=production bundle exec rake db:initial_setup
Command Output:
undefined metho…
-
Hey,
I'm using the support-v2 branch, creating the migrations for a rails 3.2.20 app.
Creation works fine, but migrating doesnt work:
I dont use the queue-classic-later gem and there are no duplicat…