hcl-checker 1.1.0 → 1.1.1

Sign up to get free protection for your applications and to get access to all the features.
Files changed (5) hide show
  1. checksums.yaml +4 -4
  2. data/Gemfile +10 -0
  3. data/Gemfile.lock +5 -4
  4. data/lib/hcl/checker/version.rb +1 -1
  5. metadata +1 -1
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 9b7ce027ea644e153d4072b9f1347e0f6a20a431e9176cfdb9cf9ca77921fcfc
4
- data.tar.gz: bc4c91e49a9daaca42350708e833cf14a6a6e0600201470be8403d7f03b39bf4
3
+ metadata.gz: dba14fa38ca8a55c4d6fff75c7f0fea2de7a8bc5e21dc4aaa2d0812e4dc0483e
4
+ data.tar.gz: bc3cd480f8edb04c18d1ffabdbea3f6234ca39e2d2518e6aedfcbf590537bb91
5
5
  SHA512:
6
- metadata.gz: 25f9138ab082cfa2a6b4975c13b8ce366659983af37177b60d8b0dbf5832714a16260442f27f9e28acb2e37b1a2dd97ab1a710db3b0ce35fb066bbeb27f4f8b7
7
- data.tar.gz: 8f08c32861de7a06be458d070aa88160779a0f46f4ff1acc817c7b73f5f51b397a8e21cf96055d1f779b973203e87f822704e2a6badd4487f90d8018a8695ad5
6
+ metadata.gz: 5ba8f95741ad1409547546af252178b7ab96dcf5111934fa1f5391610a96ec1d199211c2912006a043106cb3c40f12e35440830ddc5b9f64589e550f7057bb3a
7
+ data.tar.gz: f27f4fb782b3a47a788ea5f966f5d38a54becb71dbec6a564a3d9623c7cee1b0050b906b51c7ac86b192e74c15bd4a2c5fa3bc9705d74c1543ab98db12168f12
data/Gemfile CHANGED
@@ -1,5 +1,15 @@
1
1
  source "https://rubygems.org"
2
2
 
3
+ # This is needed due https://nvd.nist.gov/vuln/detail/CVE-2018-14404
4
+ # A NULL pointer dereference vulnerability exists in the xpath.c:xmlXPathCompOpEval()
5
+ # function of libxml2 through 2.9.8 when parsing an invalid XPath expression in the
6
+ # XPATH_OP_AND or XPATH_OP_OR case. Applications processing untrusted XSL format inputs
7
+ # with the use of the libxml2 library may be vulnerable to a denial of service attack due
8
+ # to a crash of the application.
9
+ # Nokogiri >= 1.8.5 solves this problem
10
+ gem "nokogiri", ">= 1.8.5"
11
+
12
+
3
13
  git_source(:github) {|repo_name| "https://github.com/#{repo_name}" }
4
14
 
5
15
  # Specify your gem's dependencies in hcl-checker.gemspec
data/Gemfile.lock CHANGED
@@ -1,7 +1,7 @@
1
1
  PATH
2
2
  remote: .
3
3
  specs:
4
- hcl-checker (1.1.0)
4
+ hcl-checker (1.1.1)
5
5
 
6
6
  GEM
7
7
  remote: https://rubygems.org/
@@ -12,9 +12,9 @@ GEM
12
12
  rkelly-remix
13
13
  json (2.0.4)
14
14
  metasm (1.0.3)
15
- mini_portile2 (2.3.0)
16
- nokogiri (1.8.2)
17
- mini_portile2 (~> 2.3.0)
15
+ mini_portile2 (2.4.0)
16
+ nokogiri (1.10.1)
17
+ mini_portile2 (~> 2.4.0)
18
18
  racc (1.4.14)
19
19
  rake (10.4.2)
20
20
  rb-readline (0.5.5)
@@ -47,6 +47,7 @@ PLATFORMS
47
47
  DEPENDENCIES
48
48
  bundler (~> 1.16)
49
49
  hcl-checker!
50
+ nokogiri (>= 1.8.5)
50
51
  racc (= 1.4.14)
51
52
  rake (~> 10.0)
52
53
  rex (= 2.0.12)
data/lib/hcl/checker/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  module HCL
2
2
  module Checker
3
- VERSION = '1.1.0'
3
+ VERSION = '1.1.1'
4
4
  end
5
5
  end
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: hcl-checker
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.1.0
4
+ version: 1.1.1
5
5
  platform: ruby
6
6
  authors:
7
7
  - Marcelo Castellani