search

sensu-plugins / sensu-plugins-aws

This plugin provides native AWS instrumentation for monitoring and metrics collection, including: health and metrics for various AWS services, such as EC2, RDS, ELB, and more, as well as handlers for EC2, SES, and SNS.
http://sensu-plugins.io
MIT License
81 stars 143 forks source link

Address CVE-2019-5477 with nokogiri #358

Closed majormoses closed 5 years ago

majormoses commented 5 years ago

Its an upstream dependency so we are gonna manually lock it so it must work with what we are using.

Signed-off-by: Ben Abrams me@benabrams.it

Pull Request Checklist

https://github.com/sparklemotion/nokogiri/issues/1915

General

Purpose

Address known CVE reported via hackerone.com

Known Compatibility Issues

none

majormoses commented 5 years ago

released: https://github.com/sensu-plugins/sensu-plugins-aws/releases/tag/18.4.1

released: https://rubygems.org/gems/sensu-plugins-aws/versions/18.4.1

NOTE: will update this when the gem has been built on travis.