sikachu
commented
1 month ago I checked and we're ~> 2.0, which means >= 2.0 but < 3.0.
Are you sure that it's this gem that blocking your upgrade?
Closed john-fitzpatrick-elocal closed 1 month ago
sikachu
commented
1 month ago I checked and we're ~> 2.0, which means >= 2.0 but < 3.0.
Are you sure that it's this gem that blocking your upgrade?
john-fitzpatrick-elocal
commented
1 month ago I checked and we're
~> 2.0, which means>= 2.0but< 3.0.Are you sure that it's this gem that blocking your upgrade?
I just checked, and I had 1.0.0 installed, upgrading to 1.0.2 clears the issue. Sorry.
sikachu
commented
1 month ago No worries! Glad that we're already supporting it.
I'm going to close this issue.
A security vulnerability in omniauth-saml is documented here:
https://github.com/advisories/GHSA-cvp8-5r8g-fhvq
Fixing that requires omniauth 2.1, but your gem, which I also have installed, requires 2.0. Can you release a new version with an updated dependency?