-
Hi
There are lots of false positives in Dependency check because of the data pulled from NVD. I have been querying NVD database and it is a nightmare to try to flag a vulnerability against a given …
-
### Tell us about your environment
**Ruby Version:** 3.2.2
**Framework Version (RSpec, Minitest, FactoryGirl, Rails, whatever):** rspec-rails: 7.x, Rails 7.2.1
**TestProf Version:** 1.4.2
…
-
Hello!
Error when deleting the plugin.
OS : ``CentOS 8 Steam``
Redmine
```
Environment:
Redmine version 4.1.1.stable
Ruby version 2.6.6-p146 (2020-03-…
-
I have setup a simple demonstration app to show this issue: https://github.com/hunterae/rails6-1_parse-stack-issue
Essentially, when using Rails 6.1.6 (also confirmed with 6.1.7), and parse-stack 1…
-
## CVE-2019-12410 - High Severity Vulnerability
Vulnerable Library - arrow-0.10.0.tar.gz
Better dates & times for Python
Library home page: https://files.pythonhosted.org/packages/54/db/76459c4dd356…
-
## Description
Codeclimate runs bundler-audit to check for vulnerabilities
and I noticed that it incorrectly flags vulnerabilities.
e.g. when upgrading Rails from 6.0.4 to 6.0.4.6
these…
-
When Gemfile.lock includes ruby version, something like
```
RUBY VERSION
ruby 2.7.0p-1
```
than verify it for vulnerabilities.
If this is a valuable feature for this project, then I will se…
-
Hey there,
I'm a Ruby/Rails dev in Atlantia. I figured I'd fork & pull your repo to see if I could get it running locally, with an eye to contributing/offering pull requests for the project down th…
-
During spree upgrade from 4.2 to 4.4 getting the following error for **CreateStockItemStockLocationIdVariantIdCoalesceDeletedAtUniqueIndex** migration.
Reference file: https://github.com/spree/sp…
-
Hello, I'm adding this gem to a Spree 3-4-stable installation.
```
$ ruby -v
ruby 2.4.0p0 (2016-12-24 revision 57164) [x86_64-darwin15]
$ rails -v
Rails 5.1.4
```
And in my Gemfile:
```…