Sign upLogin

datacite/levriero

View on GitHub
Star
Gemfile.lock

Summary

Maintainability
Test Coverage

Potential remote code execution in ruby-git
Open

    git (1.10.2)
Severity: Minor
Found in Gemfile.lock by bundler-audit

Advisory: CVE-2022-46648

Criticality: Medium

URL: https://github.com/ruby-git/ruby-git/pull/602

Solution: upgrade to >= 1.13.0

JMESPath for Ruby using JSON.load instead of JSON.parse
Open

    jmespath (1.5.0)
Severity: Minor
Found in Gemfile.lock by bundler-audit

Advisory: CVE-2022-32511

Criticality: Critical

URL: https://github.com/jmespath/jmespath.rb/pull/55

Solution: upgrade to >= 1.6.1

Code injection in ruby git
Open

    git (1.10.2)
Severity: Critical
Found in Gemfile.lock by bundler-audit

Advisory: CVE-2022-47318

Criticality: High

URL: https://github.com/ruby-git/ruby-git/pull/602

Solution: upgrade to >= 1.13.0

Command injection in ruby-git
Open

    git (1.10.2)
Severity: Minor
Found in Gemfile.lock by bundler-audit

Advisory: CVE-2022-25648

Criticality: Critical

URL: https://github.com/ruby-git/ruby-git/pull/569

Solution: upgrade to >= 1.11.0

There are no issues that match your filters.

Category
Status