You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@taverna.apache.org by "Stian Soiland-Reyes (JIRA)" <ji...@apache.org> on 2018/01/22 14:35:00 UTC

[jira] [Assigned] (TAVERNA-1032) Update nokogiri dependency - security vulnerability

     [ https://issues.apache.org/jira/browse/TAVERNA-1032?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Stian Soiland-Reyes reassigned TAVERNA-1032:
--------------------------------------------

    Assignee: Stian Soiland-Reyes

> Update nokogiri dependency - security vulnerability
> ---------------------------------------------------
>
>                 Key: TAVERNA-1032
>                 URL: https://issues.apache.org/jira/browse/TAVERNA-1032
>             Project: Apache Taverna
>          Issue Type: Bug
>          Components: Taverna Databundle Viewer
>            Reporter: Stian Soiland-Reyes
>            Assignee: Stian Soiland-Reyes
>            Priority: Major
>
> GitHub has notified us that incubator-taverna-databundle-viewer has:
> {quote}
> Known * critical severity* security vulnerability detected in nokogiri <
> 1.8.1 defined in Gemfile.lock
> {quote}
> We don't have a incubator-taverna-databundle-viewer release yet (why?) -- so it should be easy enough to update the nokogiri version. Might have to check if other bundle dependencies also need updated.
> Any Ruby volunteers..?



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)