RenΓ©'s URL Explorer Experiment


Title: 🚨 [security] Upgrade rails: 5.2.4.2 β†’ 6.0.6.1 (major) by depfu[bot] Β· Pull Request #272 Β· depfu/example-ruby Β· GitHub

Open Graph Title: 🚨 [security] Upgrade rails: 5.2.4.2 β†’ 6.0.6.1 (major) by depfu[bot] Β· Pull Request #272 Β· depfu/example-ruby

X Title: 🚨 [security] Upgrade rails: 5.2.4.2 β†’ 6.0.6.1 (major) by depfu[bot] Β· Pull Request #272 Β· depfu/example-ruby

Description: 🚨 Your current dependencies have known security vulnerabilities 🚨 This dependency update fixes known security vulnerabilities. Please see the details below and assess their impact carefully. We rec...

Open Graph Description: 🚨 Your current dependencies have known security vulnerabilities 🚨 This dependency update fixes known security vulnerabilities. Please see the details below and assess their impact carefully. We rec...

X Description: 🚨 Your current dependencies have known security vulnerabilities 🚨 This dependency update fixes known security vulnerabilities. Please see the details below and assess their impact carefully. We rec...

Opengraph URL: https://github.com/depfu/example-ruby/pull/272

X: @github

direct link

Domain: patch-diff.githubusercontent.com

route-pattern/_view_fragments/voltron/pull_requests/show/:user_id/:repository/:id/pull_request_layout(.:format)
route-controllervoltron_pull_requests_fragments
route-actionpull_request_layout
fetch-noncev2:8b8da70f-719d-9ef1-ebb0-703a16c3f1e7
current-catalog-service-hashae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b
request-id9F36:6537:33A715:437CEA:698D5335
html-safe-nonce9b0e5db338aecc565aa0783a26892afe03e8ea6e2044dd0d84c1b2f54861714d
visitor-payloadeyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiI5RjM2OjY1Mzc6MzNBNzE1OjQzN0NFQTo2OThENTMzNSIsInZpc2l0b3JfaWQiOiI4NTMwODM1MTA1MDQzNTM0NjQ1IiwicmVnaW9uX2VkZ2UiOiJpYWQiLCJyZWdpb25fcmVuZGVyIjoiaWFkIn0=
visitor-hmacf517c4e543f15e28bdc9cee28cc71b7b2b382322e45472352508050a17ec32f0
hovercard-subject-tagpull_request:1209196989
github-keyboard-shortcutsrepository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot
google-site-verificationApib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-urlhttps://collector.github.com/github/collect
analytics-location///voltron/pull_requests_fragments/pull_request_layout
fb:app_id1401488693436528
apple-itunes-appapp-id=1477376905, app-argument=https://github.com/_view_fragments/voltron/pull_requests/show/depfu/example-ruby/272/pull_request_layout
twitter:imagehttps://opengraph.githubassets.com/077f5b3db3d98928d5e1f90cc698de044a91e5ab0f4b83a602c673dc275ebb32/depfu/example-ruby/pull/272
twitter:cardsummary_large_image
og:imagehttps://opengraph.githubassets.com/077f5b3db3d98928d5e1f90cc698de044a91e5ab0f4b83a602c673dc275ebb32/depfu/example-ruby/pull/272
og:image:alt🚨 Your current dependencies have known security vulnerabilities 🚨 This dependency update fixes known security vulnerabilities. Please see the details below and assess their impact carefully. We rec...
og:image:width1200
og:image:height600
og:site_nameGitHub
og:typeobject
og:author:usernamedepfu[bot]
hostnamegithub.com
expected-hostnamegithub.com
Nonec0818105fa276287e9369cfdefa0a0fa7953719791ceff9b94d69623c0a4fe8a
turbo-cache-controlno-preview
go-importgithub.com/depfu/example-ruby git https://github.com/depfu/example-ruby.git
octolytics-dimension-user_id21121772
octolytics-dimension-user_logindepfu
octolytics-dimension-repository_id98635992
octolytics-dimension-repository_nwodepfu/example-ruby
octolytics-dimension-repository_publictrue
octolytics-dimension-repository_is_forkfalse
octolytics-dimension-repository_network_root_id98635992
octolytics-dimension-repository_network_root_nwodepfu/example-ruby
turbo-body-classeslogged-out env-production page-responsive
disable-turbofalse
browser-stats-urlhttps://api.github.com/_private/browser/stats
browser-errors-urlhttps://api.github.com/_private/browser/errors
releasea95a17cc440c14d4fcddc0641bc1136fa8d908f0
ui-targetfull
theme-color#1e2327
color-schemelight dark

Links:

Skip to contenthttps://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272#start-of-content
https://patch-diff.githubusercontent.com/
Sign in https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fdepfu%2Fexample-ruby%2Fpull%2F272
GitHub CopilotWrite better code with AIhttps://github.com/features/copilot
GitHub SparkBuild and deploy intelligent appshttps://github.com/features/spark
GitHub ModelsManage and compare promptshttps://github.com/features/models
MCP RegistryNewIntegrate external toolshttps://github.com/mcp
ActionsAutomate any workflowhttps://github.com/features/actions
CodespacesInstant dev environmentshttps://github.com/features/codespaces
IssuesPlan and track workhttps://github.com/features/issues
Code ReviewManage code changeshttps://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilitieshttps://github.com/security/advanced-security
Code securitySecure your code as you buildhttps://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they starthttps://github.com/security/advanced-security/secret-protection
Why GitHubhttps://github.com/why-github
Documentationhttps://docs.github.com
Bloghttps://github.blog
Changeloghttps://github.blog/changelog
Marketplacehttps://github.com/marketplace
View all featureshttps://github.com/features
Enterpriseshttps://github.com/enterprise
Small and medium teamshttps://github.com/team
Startupshttps://github.com/enterprise/startups
Nonprofitshttps://github.com/solutions/industry/nonprofits
App Modernizationhttps://github.com/solutions/use-case/app-modernization
DevSecOpshttps://github.com/solutions/use-case/devsecops
DevOpshttps://github.com/solutions/use-case/devops
CI/CDhttps://github.com/solutions/use-case/ci-cd
View all use caseshttps://github.com/solutions/use-case
Healthcarehttps://github.com/solutions/industry/healthcare
Financial serviceshttps://github.com/solutions/industry/financial-services
Manufacturinghttps://github.com/solutions/industry/manufacturing
Governmenthttps://github.com/solutions/industry/government
View all industrieshttps://github.com/solutions/industry
View all solutionshttps://github.com/solutions
AIhttps://github.com/resources/articles?topic=ai
Software Developmenthttps://github.com/resources/articles?topic=software-development
DevOpshttps://github.com/resources/articles?topic=devops
Securityhttps://github.com/resources/articles?topic=security
View all topicshttps://github.com/resources/articles
Customer storieshttps://github.com/customer-stories
Events & webinarshttps://github.com/resources/events
Ebooks & reportshttps://github.com/resources/whitepapers
Business insightshttps://github.com/solutions/executive-insights
GitHub Skillshttps://skills.github.com
Documentationhttps://docs.github.com
Customer supporthttps://support.github.com
Community forumhttps://github.com/orgs/community/discussions
Trust centerhttps://github.com/trust-center
Partnershttps://github.com/partners
GitHub SponsorsFund open source developershttps://github.com/sponsors
Security Labhttps://securitylab.github.com
Maintainer Communityhttps://maintainers.github.com
Acceleratorhttps://github.com/accelerator
Archive Programhttps://archiveprogram.github.com
Topicshttps://github.com/topics
Trendinghttps://github.com/trending
Collectionshttps://github.com/collections
Enterprise platformAI-powered developer platformhttps://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security featureshttps://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI featureshttps://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 supporthttps://github.com/premium-support
Pricinghttps://github.com/pricing
Search syntax tipshttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentationhttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fdepfu%2Fexample-ruby%2Fpull%2F272
Sign up https://patch-diff.githubusercontent.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E%2Fvoltron%2Fpull_requests_fragments%2Fpull_request_layout&source=header-repo&source_repo=depfu%2Fexample-ruby
Reloadhttps://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272
Reloadhttps://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272
Reloadhttps://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272
depfu https://patch-diff.githubusercontent.com/depfu
example-rubyhttps://patch-diff.githubusercontent.com/depfu/example-ruby
Notifications https://patch-diff.githubusercontent.com/login?return_to=%2Fdepfu%2Fexample-ruby
Fork 5 https://patch-diff.githubusercontent.com/login?return_to=%2Fdepfu%2Fexample-ruby
Star 4 https://patch-diff.githubusercontent.com/login?return_to=%2Fdepfu%2Fexample-ruby
Code https://patch-diff.githubusercontent.com/depfu/example-ruby
Issues 2 https://patch-diff.githubusercontent.com/depfu/example-ruby/issues
Pull requests 20 https://patch-diff.githubusercontent.com/depfu/example-ruby/pulls
Actions https://patch-diff.githubusercontent.com/depfu/example-ruby/actions
Projects 0 https://patch-diff.githubusercontent.com/depfu/example-ruby/projects
Security 0 https://patch-diff.githubusercontent.com/depfu/example-ruby/security
Insights https://patch-diff.githubusercontent.com/depfu/example-ruby/pulse
Code https://patch-diff.githubusercontent.com/depfu/example-ruby
Issues https://patch-diff.githubusercontent.com/depfu/example-ruby/issues
Pull requests https://patch-diff.githubusercontent.com/depfu/example-ruby/pulls
Actions https://patch-diff.githubusercontent.com/depfu/example-ruby/actions
Projects https://patch-diff.githubusercontent.com/depfu/example-ruby/projects
Security https://patch-diff.githubusercontent.com/depfu/example-ruby/security
Insights https://patch-diff.githubusercontent.com/depfu/example-ruby/pulse
Sign up for GitHub https://patch-diff.githubusercontent.com/signup?return_to=%2Fdepfu%2Fexample-ruby%2Fissues%2Fnew%2Fchoose
terms of servicehttps://docs.github.com/terms
privacy statementhttps://docs.github.com/privacy
Sign inhttps://patch-diff.githubusercontent.com/login?return_to=%2Fdepfu%2Fexample-ruby%2Fissues%2Fnew%2Fchoose
Jump to bottomhttps://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272#issue-comment-box
depfuhttps://patch-diff.githubusercontent.com/apps/depfu
masterhttps://patch-diff.githubusercontent.com/depfu/example-ruby/tree/master
depfu/update/group/rails-6.0.6.1https://patch-diff.githubusercontent.com/depfu/example-ruby/tree/depfu/update/group/rails-6.0.6.1
🚨 [security] Upgrade rails: 5.2.4.2 β†’ 6.0.6.1 (major) https://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272#top
depfuhttps://patch-diff.githubusercontent.com/apps/depfu
masterhttps://patch-diff.githubusercontent.com/depfu/example-ruby/tree/master
depfu/update/group/rails-6.0.6.1https://patch-diff.githubusercontent.com/depfu/example-ruby/tree/depfu/update/group/rails-6.0.6.1
Conversation 0 https://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272
Commits 1 https://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272/commits
Checks 0 https://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272/checks
Files changed https://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272/files
Please reload this pagehttps://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272
https://github.co/hiddenchars
https://patch-diff.githubusercontent.com/depfu/example-ruby/pull/{{ revealButtonHref }}
https://patch-diff.githubusercontent.com/apps/depfu
depfuhttps://patch-diff.githubusercontent.com/apps/depfu
Jan 18, 2023https://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272#issue-1548196087
Repohttps://github.com/rails/rails
full release noteshttps://github.com/rails/rails/releases
See the full diff on Githubhttps://github.com/rails/rails/compare/4dcc5435e9569e084f6f90fcea6e7c37d7bd2b4d...28bb76d3efc39b2ef663dfe2346f7c2621343cd6
Repohttps://github.com/rails/jbuilder
Changeloghttps://github.com/rails/jbuilder/blob/master/CHANGELOG.md
2.11.5https://github.com/rails/jbuilder/releases/tag/v2.11.5
2.11.4https://github.com/rails/jbuilder/releases/tag/v2.11.4
2.11.3https://github.com/rails/jbuilder/releases/tag/v2.11.3
2.10.1https://github.com/rails/jbuilder/releases/tag/v2.10.1
Please let us know.https://depfu.com/packages/rubygem/jbuilder/feedback
See the full diff on Githubhttps://github.com/rails/jbuilder/compare/821f514741a3e9102082a6e98eb59a08671f75d0...c6bda15cbfab1319e6449cb267522278396f73ba
Repohttps://github.com/rails/sass-rails
5.0.7https://github.com/rails/sass-rails/releases/tag/v5.0.7
Please let us know.https://depfu.com/packages/rubygem/sass-rails/feedback
See the full diff on Githubhttps://github.com/rails/sass-rails/compare/26b8e2b10e9ded6f2b22346320122d685882aff3...9c98c8431b4e426024359975d93d5c7256512489
Repohttps://github.com/rails/web-console
Changeloghttps://github.com/rails/web-console/blob/master/CHANGELOG.markdown
4.1.0https://github.com/rails/web-console/releases/tag/v4.1.0
4.0.4https://github.com/rails/web-console/releases/tag/v4.0.4
4.0.3https://github.com/rails/web-console/releases/tag/v4.0.3
4.0.2https://github.com/rails/web-console/releases/tag/v4.0.2
Please let us know.https://depfu.com/packages/rubygem/web-console/feedback
See the full diff on Githubhttps://github.com/rails/web-console/compare/a46d9ff3229e43e59623fdb8291f2ae9bb0a3be7...997a20c087890f0b77ee3802e2f14ed0db0e1e06
Repohttps://github.com/rails/rails
Changeloghttps://github.com/rails/rails/blob/v6.0.6.1/actioncable/CHANGELOG.md
full release noteshttps://github.com/rails/rails/blob/v6.0.6.1/actioncable/CHANGELOG.md
See the full diff on Githubhttps://github.com/rails/rails/compare/4dcc5435e9569e084f6f90fcea6e7c37d7bd2b4d...28bb76d3efc39b2ef663dfe2346f7c2621343cd6
Repohttps://github.com/rails/rails
Changeloghttps://github.com/rails/rails/blob/v6.0.6.1/actionmailer/CHANGELOG.md
full release noteshttps://github.com/rails/rails/blob/v6.0.6.1/actionmailer/CHANGELOG.md
See the full diff on Githubhttps://github.com/rails/rails/compare/4dcc5435e9569e084f6f90fcea6e7c37d7bd2b4d...28bb76d3efc39b2ef663dfe2346f7c2621343cd6
Repohttps://github.com/rails/rails
Changeloghttps://github.com/rails/rails/blob/v6.0.6.1/actionpack/CHANGELOG.md
🚨 Possible XSS Vulnerability in Action Packhttps://groups.google.com/g/ruby-security-ann/c/NuFRKaN5swI
🚨 Possible XSS Vulnerability in Action Packhttps://groups.google.com/g/ruby-security-ann/c/NuFRKaN5swI
🚨 Possible exposure of information vulnerability in Action Packhttps://groups.google.com/g/ruby-security-ann/c/FkTM-_7zSNA/m/K2RiMJBlBAAJ
🚨 Possible exposure of information vulnerability in Action Packhttps://groups.google.com/g/ruby-security-ann/c/FkTM-_7zSNA/m/K2RiMJBlBAAJ
🚨 Possible Open Redirect in Host Authorization Middlewarehttps://groups.google.com/g/ruby-security-ann/c/vG9gz3nk1pM/m/7-NU4MNrDAAJ
🚨 Possible Open Redirect in Host Authorization Middlewarehttps://groups.google.com/g/rubyonrails-security/c/wB5tRn7h36c
🚨 Possible Denial of Service vulnerability in Action Dispatchhttps://groups.google.com/g/rubyonrails-security/c/_5ID_ld9u1c
🚨 Possible Information Disclosure / Unintended Method Execution in Action Packhttps://groups.google.com/g/rubyonrails-security/c/NiQl-48cXYI
🚨 Possible Information Disclosure / Unintended Method Execution in Action Packhttps://groups.google.com/g/rubyonrails-security/c/NiQl-48cXYI
🚨 Possible Information Disclosure / Unintended Method Execution in Action Packhttps://groups.google.com/g/rubyonrails-security/c/NiQl-48cXYI
🚨 Possible DoS Vulnerability in Action Controller Token Authenticationhttps://groups.google.com/g/rubyonrails-security/c/Pf1TjkOBdyQ
🚨 Possible DoS Vulnerability in Action Controller Token Authenticationhttps://groups.google.com/g/rubyonrails-security/c/Pf1TjkOBdyQ
🚨 Possible DoS Vulnerability in Action Controller Token Authenticationhttps://groups.google.com/g/rubyonrails-security/c/Pf1TjkOBdyQ
🚨 Possible Open Redirect in Host Authorization Middlewarehttps://groups.google.com/g/rubyonrails-security/c/zN_3qA26l6E
🚨 Possible XSS Vulnerability in Action Pack in Development Modehttps://groups.google.com/g/rubyonrails-security/c/yQzUVfv42jk
🚨 Untrusted users able to run pending migrations in productionhttps://groups.google.com/g/rubyonrails-security/c/pAe9EV8gbM0
🚨 Possible Strong Parameters Bypass in ActionPackhttps://groups.google.com/forum/#!topic/rubyonrails-security/f6ioe4sdpbY
🚨 Possible Strong Parameters Bypass in ActionPackhttps://groups.google.com/forum/#!topic/rubyonrails-security/f6ioe4sdpbY
🚨 Ability to forge per-form CSRF tokens given a global CSRF tokenhttps://groups.google.com/forum/#!topic/rubyonrails-security/NOjKiGeXUgw
🚨 Ability to forge per-form CSRF tokens given a global CSRF tokenhttps://groups.google.com/forum/#!topic/rubyonrails-security/NOjKiGeXUgw
full release noteshttps://github.com/rails/rails/blob/v6.0.6.1/actionpack/CHANGELOG.md
See the full diff on Githubhttps://github.com/rails/rails/compare/4dcc5435e9569e084f6f90fcea6e7c37d7bd2b4d...28bb76d3efc39b2ef663dfe2346f7c2621343cd6
Repohttps://github.com/rails/rails
Changeloghttps://github.com/rails/rails/blob/v6.0.6.1/actionview/CHANGELOG.md
🚨 Possible XSS Vulnerability in Action View tag helpershttps://groups.google.com/g/ruby-security-ann/c/9wJPEDv-iRw
🚨 Possible XSS Vulnerability in Action View tag helpershttps://groups.google.com/g/ruby-security-ann/c/9wJPEDv-iRw
🚨 Potential XSS vulnerability in Action Viewhttps://groups.google.com/g/rubyonrails-security/c/b-C9kSGXYrc
🚨 Potential XSS vulnerability in Action Viewhttps://groups.google.com/g/rubyonrails-security/c/b-C9kSGXYrc
🚨 CSRF Vulnerability in rails-ujshttps://groups.google.com/forum/#!topic/rubyonrails-security/x9DixQDG9a0
🚨 CSRF Vulnerability in rails-ujshttps://groups.google.com/forum/#!topic/rubyonrails-security/x9DixQDG9a0
🚨 Possible XSS vulnerability in ActionViewhttps://groups.google.com/forum/#!topic/rubyonrails-security/55reWMM_Pg8
🚨 File Content Disclosure in Action Viewhttps://groups.google.com/forum/#!topic/rubyonrails-security/pFRKI96Sm8Q
🚨 Denial of Service Vulnerability in Action Viewhttps://groups.google.com/forum/#!topic/rubyonrails-security/GN7w9fFAQeI
full release noteshttps://github.com/rails/rails/blob/v6.0.6.1/actionview/CHANGELOG.md
See the full diff on Githubhttps://github.com/rails/rails/compare/4dcc5435e9569e084f6f90fcea6e7c37d7bd2b4d...28bb76d3efc39b2ef663dfe2346f7c2621343cd6
Repohttps://github.com/rails/rails
Changeloghttps://github.com/rails/rails/blob/v6.0.6.1/activejob/CHANGELOG.md
full release noteshttps://github.com/rails/rails/blob/v6.0.6.1/activejob/CHANGELOG.md
See the full diff on Githubhttps://github.com/rails/rails/compare/4dcc5435e9569e084f6f90fcea6e7c37d7bd2b4d...28bb76d3efc39b2ef663dfe2346f7c2621343cd6
Repohttps://github.com/rails/rails
Changeloghttps://github.com/rails/rails/blob/v6.0.6.1/activemodel/CHANGELOG.md
full release noteshttps://github.com/rails/rails/blob/v6.0.6.1/activemodel/CHANGELOG.md
See the full diff on Githubhttps://github.com/rails/rails/compare/4dcc5435e9569e084f6f90fcea6e7c37d7bd2b4d...28bb76d3efc39b2ef663dfe2346f7c2621343cd6
Repohttps://github.com/rails/rails
Changeloghttps://github.com/rails/rails/blob/v6.0.6.1/activerecord/CHANGELOG.md
🚨 Possible RCE escalation bug with Serialized Columns in Active Recordhttps://groups.google.com/g/rubyonrails-security/c/MmFO3LYQE8U
🚨 Possible RCE escalation bug with Serialized Columns in Active Recordhttps://groups.google.com/g/rubyonrails-security/c/MmFO3LYQE8U
🚨 Possible DoS Vulnerability in Active Record PostgreSQL adapterhttps://groups.google.com/g/rubyonrails-security/c/ZzUqCh9vyhI
🚨 Possible DoS Vulnerability in Active Record PostgreSQL adapterhttps://groups.google.com/g/rubyonrails-security/c/ZzUqCh9vyhI
full release noteshttps://github.com/rails/rails/blob/v6.0.6.1/activerecord/CHANGELOG.md
See the full diff on Githubhttps://github.com/rails/rails/compare/4dcc5435e9569e084f6f90fcea6e7c37d7bd2b4d...28bb76d3efc39b2ef663dfe2346f7c2621343cd6
Repohttps://github.com/rails/rails
Changeloghttps://github.com/rails/rails/blob/v6.0.6.1/activestorage/CHANGELOG.md
🚨 Possible code injection vulnerability in Rails / Active Storagehttps://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI
🚨 Possible code injection vulnerability in Rails / Active Storagehttps://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI
🚨 Circumvention of file size limits in ActiveStoragehttps://groups.google.com/forum/#!topic/rubyonrails-security/PjU3946mreQ
🚨 Circumvention of file size limits in ActiveStoragehttps://groups.google.com/forum/#!topic/rubyonrails-security/PjU3946mreQ
full release noteshttps://github.com/rails/rails/blob/v6.0.6.1/activestorage/CHANGELOG.md
See the full diff on Githubhttps://github.com/rails/rails/compare/4dcc5435e9569e084f6f90fcea6e7c37d7bd2b4d...28bb76d3efc39b2ef663dfe2346f7c2621343cd6
Repohttps://github.com/rails/rails
Changeloghttps://github.com/rails/rails/blob/v6.0.6.1/activesupport/CHANGELOG.md
🚨 Potentially unintended unmarshalling of user-provided objects in MemCacheStore and RedisCacheStorehttps://groups.google.com/forum/#!topic/rubyonrails-security/bv6fW4S0Y1c
🚨 Potentially unintended unmarshalling of user-provided objects in MemCacheStore and RedisCacheStorehttps://groups.google.com/forum/#!topic/rubyonrails-security/bv6fW4S0Y1c
full release noteshttps://github.com/rails/rails/blob/v6.0.6.1/activesupport/CHANGELOG.md
See the full diff on Githubhttps://github.com/rails/rails/compare/4dcc5435e9569e084f6f90fcea6e7c37d7bd2b4d...28bb76d3efc39b2ef663dfe2346f7c2621343cd6
Repohttps://github.com/gsamokovarov/skiptrace
See the full diff on Githubhttps://github.com/gsamokovarov/skiptrace/compare/ae5994fc82414e360e0f89f0c1804cb30dd5355b...f57e8a4e5769315f54f1d2756f912aea04a969a3
Repohttps://github.com/ruby-concurrency/concurrent-ruby
Changeloghttps://github.com/ruby-concurrency/concurrent-ruby/blob/master/CHANGELOG.md
1.1.10https://github.com/ruby-concurrency/concurrent-ruby/releases/tag/v1.1.10
Please let us know.https://depfu.com/packages/rubygem/concurrent-ruby/feedback
See the full diff on Githubhttps://github.com/ruby-concurrency/concurrent-ruby/compare/082c05f136309fd7be56e7c1b07a4edcb93968f4...c97452b194245a337daf0c651867242de9bff9c9
Repohttps://github.com/jeremyevans/erubi
Changeloghttps://github.com/jeremyevans/erubi/blob/master/CHANGELOG
Please let us know.https://depfu.com/packages/rubygem/erubi/feedback
See the full diff on Githubhttps://github.com/jeremyevans/erubi/compare/3be9947899156c45b9036c703998ebb11311e91e...733bcbd6c8e032e66595edf21b255fd14b2c0062
Repohttps://github.com/rails/execjs
2.8.1https://github.com/rails/execjs/releases/tag/v2.8.1
2.8.0https://github.com/rails/execjs/releases/tag/v2.8.0
Please let us know.https://depfu.com/packages/rubygem/execjs/feedback
See the full diff on Githubhttps://github.com/rails/execjs/compare/4f2fc87a55ea4f3195363ae3620d9d5cae47e9fc...d19a51d43a4dfb20b0f539d0c81d16ab69904e21
Repohttps://github.com/ffi/ffi
Changeloghttps://github.com/ffi/ffi/blob/master/CHANGELOG.md
full release noteshttps://github.com/ffi/ffi/blob/master/CHANGELOG.md
See the full diff on Githubhttps://github.com/ffi/ffi/compare/3d8c91c902d67f2af184b1da1b0e99323bc1c744...4b1c43ac9bffa5bc803d94d2a1ffc8cc8188bbd2
Repohttps://github.com/rails/globalid
Changeloghttps://github.com/rails/globalid/blob/main/CHANGELOG.md
1.0.0https://github.com/rails/globalid/releases/tag/v1.0.0
0.6.0https://github.com/rails/globalid/releases/tag/v0.6.0
0.5.2https://github.com/rails/globalid/releases/tag/v0.5.2
0.5.1https://github.com/rails/globalid/releases/tag/v0.5.1
Please let us know.https://depfu.com/packages/rubygem/globalid/feedback
See the full diff on Githubhttps://github.com/rails/globalid/compare/c98b8091b4199510273ef3436819529dddf8b7d4...574b99fb9a23a9c637e44c0970616dd32b68e93f
Repohttps://github.com/ruby-i18n/i18n
Changeloghttps://github.com/ruby-i18n/i18n/blob/master/CHANGELOG.md
full release noteshttps://github.com/ruby-i18n/i18n/blob/master/CHANGELOG.md
See the full diff on Githubhttps://github.com/ruby-i18n/i18n/compare/be13663f7c78564bcad70382d3cca4f9e0104aea...32c957e413f8493ccffa66e1ecce8e47e3c9153c
Repohttps://github.com/flavorjones/loofah
Changeloghttps://github.com/flavorjones/loofah/blob/main/CHANGELOG.md
🚨 Inefficient Regular Expression Complexity in Loofahhttps://bounce.depfu.com/github.com/flavorjones/loofah/security/advisories/GHSA-486f-hjj9-9vhh
🚨 Improper neutralization of data URIs may allow XSS in Loofahhttps://bounce.depfu.com/github.com/flavorjones/loofah/security/advisories/GHSA-228g-948r-83gx
🚨 Uncontrolled Recursion in Loofahhttps://bounce.depfu.com/github.com/flavorjones/loofah/security/advisories/GHSA-3x8r-x6xp-q4vm
full release noteshttps://github.com/flavorjones/loofah/blob/main/CHANGELOG.md
See the full diff on Githubhttps://github.com/flavorjones/loofah/compare/724ac1c9d689e1fdce9542816909a12632cf410f...3f8806300089135f7832a59aa2689a6674d37897
Repohttps://github.com/mikel/mail
Changeloghttps://github.com/mikel/mail/blob/master/CHANGELOG.rdoc
See the full diff on Githubhttps://github.com/mikel/mail/compare/7c43c84c16f017e0ff5e5c9962f6a1d842301ee3...10fa2e8f2c7da113b4c2435181ee3f1863b405e3
Repohttps://github.com/rails/marcel
1.0.2https://github.com/rails/marcel/releases/tag/v1.0.2
1.0.1https://github.com/rails/marcel/releases/tag/v1.0.1
1.0.0https://github.com/rails/marcel/releases/tag/v1.0.0
Please let us know.https://depfu.com/packages/rubygem/marcel/feedback
See the full diff on Githubhttps://github.com/rails/marcel/compare/3d06a6043c1acee4b1ed29283cbafdf34078a137...fc69a19d17de4fedca354b2404b04834b16eacd8
Repohttps://github.com/discourse/mini_mime
Changeloghttps://github.com/discourse/mini_mime/blob/main/CHANGELOG
See the full diff on Githubhttps://github.com/discourse/mini_mime/compare/04aee89e772bf8c892d748ed7c18d8c60c12540d...2ca79cb0f82cea337ec5f463207519650e9ca3cc
Repohttps://github.com/flavorjones/mini_portile
Changeloghttps://github.com/flavorjones/mini_portile/blob/main/CHANGELOG.md
2.8.1https://github.com/flavorjones/mini_portile/releases/tag/v2.8.1
2.8.0https://github.com/flavorjones/mini_portile/releases/tag/v2.8.0
2.7.1https://github.com/flavorjones/mini_portile/releases/tag/v2.7.1
2.7.0https://github.com/flavorjones/mini_portile/releases/tag/v2.7.0
2.6.1https://github.com/flavorjones/mini_portile/releases/tag/v2.6.1
2.6.0https://github.com/flavorjones/mini_portile/releases/tag/v2.6.0
2.5.3https://github.com/flavorjones/mini_portile/releases/tag/v2.5.3
2.5.2https://github.com/flavorjones/mini_portile/releases/tag/v2.5.2
2.5.1https://github.com/flavorjones/mini_portile/releases/tag/v2.5.1
2.5.0https://github.com/flavorjones/mini_portile/releases/tag/v2.5.0
Please let us know.https://depfu.com/packages/rubygem/mini_portile2/feedback
See the full diff on Githubhttps://github.com/flavorjones/mini_portile/compare/cf441e5a007e1721ae7d67a69a920ea761f903fe...4957df3c3494e8c5fd30babcdb8d9540c1d40b40
Repohttps://github.com/minitest/minitest
Changeloghttps://github.com/minitest/minitest/blob/master/History.rdoc
Please let us know.https://depfu.com/packages/rubygem/minitest/feedback
See the full diff on Githubhttps://github.com/minitest/minitest/compare/d6116044e6e84f99462b64b5563ddf963795061f...abdde9d03bc8292d14905466d100d2b1e8e844cd
Repohttps://github.com/socketry/nio4r
Changeloghttps://github.com/socketry/nio4r/blob/main/CHANGES.md
Please let us know.https://depfu.com/packages/rubygem/nio4r/feedback
See the full diff on Githubhttps://github.com/socketry/nio4r/compare/f4f0a72a077c3a3f955304b7fe52c1b6df425edc...68ab63a75ad0ff6710d536869f62e9b26c2c5ae8
Repohttps://github.com/sparklemotion/nokogiri
Changeloghttps://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md
🚨 Unchecked return value from xmlTextReaderExpandhttps://bounce.depfu.com/github.com/sparklemotion/nokogiri/security/advisories/GHSA-qv4q-mr5r-qprj
🚨 Improper Handling of Unexpected Data Type in Nokogirihttps://bounce.depfu.com/github.com/sparklemotion/nokogiri/security/advisories/GHSA-xh29-r2w5-wx8m
🚨 Integer Overflow or Wraparound in libxml2 affects Nokogirihttps://bounce.depfu.com/github.com/sparklemotion/nokogiri/security/advisories/GHSA-cgx6-hpwq-fhv5
🚨 Denial of Service (DoS) in Nokogiri on JRubyhttps://bounce.depfu.com/github.com/sparklemotion/nekohtml/security/advisories/GHSA-9849-p7jc-9rmv
🚨 Inefficient Regular Expression Complexity in Nokogirihttps://bounce.depfu.com/github.com/sparklemotion/nokogiri/security/advisories/GHSA-crjr-9rc5-ghw8
🚨 Out-of-bounds Write in zlib affects Nokogirihttps://bounce.depfu.com/github.com/sparklemotion/nokogiri/security/advisories/GHSA-v6gp-9mmm-c6p5
🚨 XML Injection in Xerces Java affects Nokogirihttps://bounce.depfu.com/github.com/sparklemotion/nokogiri/security/advisories/GHSA-xxx9-3xcr-gjj3
🚨 Update packaged libxml2 (2.9.12 β†’ 2.9.13) and libxslt (1.1.34 β†’ 1.1.35)https://bounce.depfu.com/github.com/sparklemotion/nokogiri/security/advisories/GHSA-fq42-c5rg-92c2
🚨 Improper Restriction of XML External Entity Reference (XXE) in Nokogiri on JRubyhttps://bounce.depfu.com/github.com/sparklemotion/nokogiri/security/advisories/GHSA-2rr5-8q37-2w7h
🚨 Update packaged dependency libxml2 from 2.9.10 to 2.9.12https://bounce.depfu.com/github.com/sparklemotion/nokogiri/security/advisories/GHSA-7rrm-v45f-jp64
🚨 Nokogiri::XML::Schema trusts input by default, exposing risk of an XXE vulnerabilityhttps://bounce.depfu.com/github.com/sparklemotion/nokogiri/security/advisories/GHSA-vr8q-g5c7-m54m
full release noteshttps://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md
See the full diff on Githubhttps://github.com/sparklemotion/nokogiri/compare/e2e191de387f854619bc8a3f9b39ca687fe0bf31...fe3643f687cba0ceb4621c543207145c273a8d6e
Repohttps://github.com/rack/rack
Changeloghttps://github.com/rack/rack/blob/main/CHANGELOG.md
🚨 Denial of Service Vulnerability in Rack Multipart Parsinghttps://groups.google.com/g/ruby-security-ann/c/L2Axto442qk
🚨 Possible shell escape sequence injection vulnerability in Rackhttps://groups.google.com/g/ruby-security-ann/c/LWB10kWzag8
🚨 Percent-encoded cookies can be used to overwrite existing prefixed cookie nameshttps://groups.google.com/g/rubyonrails-security/c/OWtmozPH9Ak
See the full diff on Githubhttps://github.com/rack/rack/compare/a5e80f01947954af76b14c1d1fdd8e79dd8337f3...2606ac5d5d180c00a8cbcaa4d634276bab06500e
Repohttps://github.com/rack/rack-test
Changeloghttps://github.com/rack/rack-test/blob/main/History.md
Please let us know.https://depfu.com/packages/rubygem/rack-test/feedback
See the full diff on Githubhttps://github.com/rack/rack-test/compare/b854dff819ae602382fedcd4b3b12dea93dabf34...5b4cd2e439ca3250d2fb9883f7ab7c8b3d526555
Repohttps://github.com/rails/rails-html-sanitizer
Changeloghttps://github.com/rails/rails-html-sanitizer/blob/master/CHANGELOG.md
🚨 Inefficient Regular Expression Complexity in rails-html-sanitizerhttps://bounce.depfu.com/github.com/rails/rails-html-sanitizer/security/advisories/GHSA-5x79-w82f-gw8w
🚨 Improper neutralization of data URIs may allow XSS in rails-html-sanitizerhttps://bounce.depfu.com/github.com/rails/rails-html-sanitizer/security/advisories/GHSA-mcvf-2q2m-x72m
🚨 Possible XSS vulnerability with certain configurations of rails-html-sanitizerhttps://bounce.depfu.com/github.com/rails/rails-html-sanitizer/security/advisories/GHSA-9h9g-93gc-623h
🚨 Possible XSS vulnerability with certain configurations of rails-html-sanitizerhttps://bounce.depfu.com/github.com/rails/rails-html-sanitizer/security/advisories/GHSA-rrfc-7g8p-99q8
🚨 Possible XSS vulnerability with certain configurations of Rails::Html::Sanitizerhttps://groups.google.com/g/rubyonrails-security/c/ce9PhUANQ6s
1.4.4https://github.com/rails/rails-html-sanitizer/releases/tag/v1.4.4
1.4.3https://github.com/rails/rails-html-sanitizer/releases/tag/v1.4.3
1.4.2https://github.com/rails/rails-html-sanitizer/releases/tag/v1.4.2
1.4.1https://github.com/rails/rails-html-sanitizer/releases/tag/v1.4.1
1.4.0https://github.com/rails/rails-html-sanitizer/releases/tag/v1.4.0
Please let us know.https://depfu.com/packages/rubygem/rails-html-sanitizer/feedback
See the full diff on Githubhttps://github.com/rails/rails-html-sanitizer/compare/51dc564c6509201070f72456bb2c13f87bb373d6...fd63deaeb22e601237d4d4d12014e7ebd410ea9b
Repohttps://github.com/rails/rails
Changeloghttps://github.com/rails/rails/blob/v6.0.6.1/railties/CHANGELOG.md
🚨 Possible Remote Code Execution Exploit in Rails Development Modehttps://groups.google.com/forum/#!topic/rubyonrails-security/IsQKvDqZdKw
full release noteshttps://github.com/rails/rails/blob/v6.0.6.1/railties/CHANGELOG.md
See the full diff on Githubhttps://github.com/rails/rails/compare/4dcc5435e9569e084f6f90fcea6e7c37d7bd2b4d...28bb76d3efc39b2ef663dfe2346f7c2621343cd6
Repohttps://github.com/ruby/rake
Changeloghttps://github.com/ruby/rake/blob/master/History.rdoc
Please let us know.https://depfu.com/packages/rubygem/rake/feedback
See the full diff on Githubhttps://github.com/ruby/rake/compare/c8251e2299616d8126e4ac7426e0bb87df7e6922...5c60da8644a9e4f655e819252e3b6ca77f42b7af
Repohttps://github.com/guard/rb-fsevent
0.11.2https://github.com/guard/rb-fsevent/releases/tag/v0.11.2
0.11.1https://github.com/guard/rb-fsevent/releases/tag/v0.11.1
0.11.0https://github.com/guard/rb-fsevent/releases/tag/v0.11.0
0.10.4https://github.com/thibaudgg/rb-fsevent/releases/tag/v0.10.4
Please let us know.https://depfu.com/packages/rubygem/rb-fsevent/feedback
See the full diff on Githubhttps://github.com/guard/rb-fsevent/compare/fcfd3397e4778aa48bffd4377b6a1b7366859f2a...623f64a7edfd2505e64aa2125f01a54ffd6166ba
Repohttps://github.com/guard/rb-inotify
See the full diff on Githubhttps://github.com/guard/rb-inotify/compare/a9f145c5301611db27eafd892b5f16b24680c421...59c2ea08bdfb3af61f720e3bd1163db5960f3ccc
Repohttps://github.com/sass/ruby-sass
See the full diff on Githubhttps://github.com/sass/ruby-sass/compare/88e52e1bb578254f8343d4d3f316a85d63cb8985...7a50eae567260a23d3bbf4d5aaf1a76db43dec32
Repohttps://github.com/rails/sprockets-rails
Changeloghttps://github.com/rails/sprockets-rails/blob/master/CHANGELOG.md
3.4.2https://github.com/rails/sprockets-rails/releases/tag/v3.4.2
3.4.1https://github.com/rails/sprockets-rails/releases/tag/v3.4.1
3.4.0https://github.com/rails/sprockets-rails/releases/tag/v3.4.0
3.3.0https://github.com/rails/sprockets-rails/releases/tag/v3.3.0
3.2.2https://github.com/rails/sprockets-rails/releases/tag/v3.2.2
Please let us know.https://depfu.com/packages/rubygem/sprockets-rails/feedback
See the full diff on Githubhttps://github.com/rails/sprockets-rails/compare/df46170c984f055743d658212f0656f2c51aab10...582e284bab79ea0663addf6b15f80b19835af351
Repohttps://github.com/rails/thor
Changeloghttps://github.com/rails/thor/blob/master/CHANGELOG.md
1.2.1https://github.com/rails/thor/releases/tag/v1.2.1
1.2.0https://github.com/rails/thor/releases/tag/v1.2.0
Please let us know.https://depfu.com/packages/rubygem/thor/feedback
See the full diff on Githubhttps://github.com/rails/thor/compare/fb625b223465692a9d8a88cc2a483e126f1a8978...6ba79014c89434de81e14c6a4ddbeb0a300022ce
Repohttps://github.com/rtomayko/tilt
Changeloghttps://github.com/rtomayko/tilt/blob/master/CHANGELOG.md
Please let us know.https://depfu.com/packages/rubygem/tilt/feedback
See the full diff on Githubhttps://github.com/rtomayko/tilt/compare/abe77eaf1b5f8da0a7e46135f2966fd294526b7a...d1999c72408abad8ff30b754fb5a8f3a682c2aac
Repohttps://github.com/tzinfo/tzinfo
Changeloghttps://github.com/tzinfo/tzinfo/blob/master/CHANGES.md
🚨 TZInfo relative path traversal vulnerability allows loading of arbitrary fileshttps://bounce.depfu.com/github.com/tzinfo/tzinfo/security/advisories/GHSA-5cm2-9h8c-rvfx
1.2.10https://github.com/tzinfo/tzinfo/releases/tag/v1.2.10
1.2.9https://github.com/tzinfo/tzinfo/releases/tag/v1.2.9
1.2.8https://github.com/tzinfo/tzinfo/releases/tag/v1.2.8
1.2.7https://github.com/tzinfo/tzinfo/releases/tag/v1.2.7
Please let us know.https://depfu.com/packages/rubygem/tzinfo/feedback
See the full diff on Githubhttps://github.com/tzinfo/tzinfo/compare/048bad7dab90f19d408a0655033ee05eaba9645b...0814dcd6195f247cc90e62a46b86ff0b76e08ed6
Repohttps://github.com/faye/websocket-driver-ruby
Changeloghttps://github.com/faye/websocket-driver-ruby/blob/main/CHANGELOG.md
Please let us know.https://depfu.com/packages/rubygem/websocket-driver/feedback
See the full diff on Githubhttps://github.com/faye/websocket-driver-ruby/compare/92334974c56f1e7f1d6b026e2f3b8ee7adc29bf4...911d14b96ae604bb0d22ef584cff5af578e6702f
Repohttps://github.com/faye/websocket-extensions-ruby
Changeloghttps://github.com/faye/websocket-extensions-ruby/blob/main/CHANGELOG.md
🚨 Regular Expression Denial of Service in websocket-extensions (RubyGem)https://bounce.depfu.com/github.com/faye/websocket-extensions-ruby/security/advisories/GHSA-g6wq-qcwm-j5g2
Please let us know.https://depfu.com/packages/rubygem/websocket-extensions/feedback
See the full diff on Githubhttps://github.com/faye/websocket-extensions-ruby/compare/242f007cb9cf4eddd33a10216a1ae31e86be42fa...402222fdd9b778beaae489827d9c52c2b630b9c2
https://camo.githubusercontent.com/01991947fb529304f3f95429486af201cd12a5379a631eb1435926ab1761d90d/68747470733a2f2f64657066752e636f6d2f6261646765732f38653033386437383164356435656134633262653031363430313331393830332f73746174732e737667
Depfuhttps://depfu.com
Please reload this pagehttps://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272
https://patch-diff.githubusercontent.com/marketplace/depfu
Update all of rails to version 6.0.6.1https://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272/commits/e92927ecba152bd52c00bcba2de262310082115a
e92927ehttps://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272/commits/e92927ecba152bd52c00bcba2de262310082115a
https://patch-diff.githubusercontent.com/apps/depfu
depfuhttps://patch-diff.githubusercontent.com/apps/depfu
depfu https://patch-diff.githubusercontent.com/depfu/example-ruby/issues?q=state%3Aopen%20label%3Adepfu
Jan 18, 2023https://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272#event-8306358060
https://patch-diff.githubusercontent.com/apps/depfu
depfuhttps://patch-diff.githubusercontent.com/apps/depfu
Jan 18, 2023 https://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272#ref-pullrequest-1368715367
🚨 [security] Upgrade all of rails: 5.2.4.2 β†’ 6.0.6 (major) #269 https://patch-diff.githubusercontent.com/depfu/example-ruby/pull/269
Sign up for freehttps://patch-diff.githubusercontent.com/join?source=comment-repo
Sign in to commenthttps://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fdepfu%2Fexample-ruby%2Fpull%2F272
depfu https://patch-diff.githubusercontent.com/depfu/example-ruby/issues?q=state%3Aopen%20label%3Adepfu
Please reload this pagehttps://patch-diff.githubusercontent.com/depfu/example-ruby/pull/272
https://github.com
Termshttps://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacyhttps://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Securityhttps://github.com/security
Statushttps://www.githubstatus.com/
Communityhttps://github.community/
Docshttps://docs.github.com/
Contacthttps://support.github.com?tags=dotcom-footer

Viewport: width=device-width

URLs of crawlers that visited me.