Merge branch 'security-fj-bumping-sanitize-gem' into 'master'
[master] Update sanitize gem to 4.6.5 to fix HTML injection vulnerability See merge request gitlab/gitlabhq!2399
Showing
... | ... | @@ -230,7 +230,7 @@ gem 'ruby-fogbugz', '~> 0.2.1' |
gem 'kubeclient', '~> 3.1.0' | ||
# Sanitize user input | ||
gem 'sanitize', '~> 2.0' | ||
gem 'sanitize', '~> 4.6.5' | ||
gem 'babosa', '~> 1.0.2' | ||
# Sanitizes SVG input | ||
... | ... |
Please register or sign in to comment