Gemfile.lock from expressly/expressly-plugin-sdk-ruby-core

Gemfile.lock

Summary

Maintainability

Test Coverage

json Gem for Ruby Unsafe Object Creation Vulnerability (additional fix)
Open

    json (1.8.1)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Advisory: CVE-2020-10663

Criticality: High

URL: https://www.ruby-lang.org/en/news/2020/03/19/json-dos-cve-2020-10663/

Solution: upgrade to >= 2.3.0

RDoc OS command injection vulnerability
Open

    rdoc (3.12.2)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Advisory: CVE-2021-31799

Criticality: High

URL: https://www.ruby-lang.org/en/news/2021/05/02/os-command-injection-in-rdoc/

Solution: upgrade to ~> 6.1.2.1, ~> 6.2.1.1, >= 6.3.1

OS Command Injection in Rake
Open

    rake (10.4.2)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Advisory: CVE-2020-8130

Criticality: High

URL: https://github.com/advisories/GHSA-jppv-gw3r-w3q8

Solution: upgrade to >= 12.3.3

Insecure Source URI found: http://rubygems.org/
Open

  remote: http://rubygems.org/

Found in Gemfile.lock by bundler-audit

Exclude checks
- Disable engine
- Disable check

ruby-ffi DDL loading issue on Windows OS
Open

    ffi (1.9.3)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Advisory: CVE-2018-1000201

Criticality: High

URL: https://github.com/ffi/ffi/releases/tag/1.9.24

Solution: upgrade to >= 1.9.24

ruby-ffi DDL loading issue on Windows OS
Open

    ffi (1.9.3)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Advisory: CVE-2018-1000201

Criticality: High

URL: https://github.com/ffi/ffi/releases/tag/1.9.24

Solution: upgrade to >= 1.9.24

expressly/expressly-plugin-sdk-ruby-core

Summary

Maintainability

Test Coverage

json Gem for Ruby Unsafe Object Creation Vulnerability (additional fix)
Open

RDoc OS command injection vulnerability
Open

OS Command Injection in Rake
Open

Insecure Source URI found: http://rubygems.org/
Open

ruby-ffi DDL loading issue on Windows OS
Open

ruby-ffi DDL loading issue on Windows OS
Open

There are no issues that match your filters.

Category

Status

expressly/expressly-plugin-sdk-ruby-core

Summary

Maintainability

Test Coverage

json Gem for Ruby Unsafe Object Creation Vulnerability (additional fix) Open

RDoc OS command injection vulnerability Open

OS Command Injection in Rake Open

Insecure Source URI found: http://rubygems.org/ Open

ruby-ffi DDL loading issue on Windows OS Open

ruby-ffi DDL loading issue on Windows OS Open

There are no issues that match your filters.

Category

Status

json Gem for Ruby Unsafe Object Creation Vulnerability (additional fix)
Open

RDoc OS command injection vulnerability
Open

OS Command Injection in Rake
Open

Insecure Source URI found: http://rubygems.org/
Open

ruby-ffi DDL loading issue on Windows OS
Open

ruby-ffi DDL loading issue on Windows OS
Open