search

codeforamerica / follow-all

Follow all the members of a Twitter list with a single click
http://follow-all.herokuapp.com/
BSD 3-Clause "New" or "Revised" License
81 stars 31 forks source link

Update Gemfile #17

Closed tjade273 closed 10 years ago

tjade273 commented 10 years ago

Security bug in 4.1.0

monfresh commented 10 years ago

The app is already using 4.1.1. You can verify by looking in Gemfile.lock. You can also check the commit history and you'll see that it was updated about a month ago.

In the Gemfile, ~> 4.1.0 means greater than or equal to 4.1.0, but less than 4.2. That means that every time you run bundle update rails, it will install the latest version between 4.1.0 and 4.2, without needing to specify the last digit every time a new version comes out.

tjade273 commented 10 years ago

ok, thanks, Im pretty new to ruby, used to Java

On Thu, Jun 5, 2014 at 8:02 PM, Moncef Belyamani notifications@github.com wrote:

The app is already using 4.1.1. You can verify by looking in Gemfile.lock https://github.com/codeforamerica/follow-all/blob/master/Gemfile.lock#L100. You can also check the commit history and you'll see that it was updated about a month ago https://github.com/codeforamerica/follow-all/commit/2d8cc28953bcb0786503ae54cfbf65f5ec5ae3bd .

In the Gemfile, ~> 4.1.0 means greater than or equal to 4.1.0, but less than 4.2. That means that every time you run bundle update rails, it will install the latest version between 4.1.0 and 4.2, without needing to specify the last digit every time a new version comes out.

— Reply to this email directly or view it on GitHub https://github.com/codeforamerica/follow-all/pull/17#issuecomment-45298673 .