publify_core 9.2.3 → 9.2.4
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of publify_core might be problematic. Click here for more details.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/lib/publify_core/version.rb +1 -1
- data/lib/spam_protection.rb +7 -9
- metadata +17 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 1a656e67eabdbc775b90db037ea087c2bc27b179f7d2078ce24eee88d24db874
|
|
4
|
+
data.tar.gz: b241a29fbb8b5a942acac80e5a774271f31298d0d5add64b77134988902daf3b
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: f201fcc55b9caa48cee99651b6820aeecbf8d5fc655ce475da6d4b42d9e1741222d2611428bf98f5952e8a0df21d47ecba1733dd864eea9851fda3f996d7ec85
|
|
7
|
+
data.tar.gz: 749dea0ae5d68830f3de9a49ae216465be1d9542656fb9980896e029e74089aa9335559214ce05eb8f8646e17bc609fe2f626e0b599ae081278649b16bc915b3
|
data/CHANGELOG.md
CHANGED
|
@@ -1,5 +1,10 @@
|
|
|
1
1
|
# Changelog
|
|
2
2
|
|
|
3
|
+
## 9.2.4 / 2021-10-02
|
|
4
|
+
|
|
5
|
+
* Explicitly require at least version 1.12.5 of nokogiri to avoid a security issue
|
|
6
|
+
* Drop support for Ruby 2.4 since it is incompatible with nokogiri 1.12.5
|
|
7
|
+
|
|
3
8
|
## 9.2.3 / 2021-05-22
|
|
4
9
|
|
|
5
10
|
* Bump Rails dependency to 5.2.6
|
data/lib/publify_core/version.rb
CHANGED
data/lib/spam_protection.rb
CHANGED
|
@@ -82,16 +82,14 @@ class SpamProtection
|
|
|
82
82
|
def query_rbls(rbls, *subdomains)
|
|
83
83
|
rbls.each do |rbl|
|
|
84
84
|
subdomains.uniq.each do |d|
|
|
85
|
-
|
|
86
|
-
|
|
87
|
-
|
|
88
|
-
|
|
89
|
-
"#{rbl} positively resolved subdomain #{d} => #{response}"
|
|
90
|
-
end
|
|
91
|
-
rescue SocketError
|
|
92
|
-
# NXDOMAIN response => negative: d is not in RBL
|
|
93
|
-
next
|
|
85
|
+
response = IPSocket.getaddress([d, rbl].join("."))
|
|
86
|
+
if response.start_with?("127.0.0.")
|
|
87
|
+
throw :hit,
|
|
88
|
+
"#{rbl} positively resolved subdomain #{d} => #{response}"
|
|
94
89
|
end
|
|
90
|
+
rescue SocketError
|
|
91
|
+
# NXDOMAIN response => negative: d is not in RBL
|
|
92
|
+
next
|
|
95
93
|
end
|
|
96
94
|
end
|
|
97
95
|
false
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: publify_core
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 9.2.
|
|
4
|
+
version: 9.2.4
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Matijs van Zuijlen
|
|
@@ -11,7 +11,7 @@ authors:
|
|
|
11
11
|
autorequire:
|
|
12
12
|
bindir: bin
|
|
13
13
|
cert_chain: []
|
|
14
|
-
date: 2021-
|
|
14
|
+
date: 2021-10-02 00:00:00.000000000 Z
|
|
15
15
|
dependencies:
|
|
16
16
|
- !ruby/object:Gem::Dependency
|
|
17
17
|
name: aasm
|
|
@@ -221,6 +221,20 @@ dependencies:
|
|
|
221
221
|
- - ">="
|
|
222
222
|
- !ruby/object:Gem::Version
|
|
223
223
|
version: 4.9.4
|
|
224
|
+
- !ruby/object:Gem::Dependency
|
|
225
|
+
name: nokogiri
|
|
226
|
+
requirement: !ruby/object:Gem::Requirement
|
|
227
|
+
requirements:
|
|
228
|
+
- - ">="
|
|
229
|
+
- !ruby/object:Gem::Version
|
|
230
|
+
version: 1.12.5
|
|
231
|
+
type: :runtime
|
|
232
|
+
prerelease: false
|
|
233
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
234
|
+
requirements:
|
|
235
|
+
- - ">="
|
|
236
|
+
- !ruby/object:Gem::Version
|
|
237
|
+
version: 1.12.5
|
|
224
238
|
- !ruby/object:Gem::Dependency
|
|
225
239
|
name: rack
|
|
226
240
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -992,7 +1006,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
|
|
|
992
1006
|
requirements:
|
|
993
1007
|
- - ">="
|
|
994
1008
|
- !ruby/object:Gem::Version
|
|
995
|
-
version: 2.
|
|
1009
|
+
version: 2.5.0
|
|
996
1010
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
|
997
1011
|
requirements:
|
|
998
1012
|
- - ">="
|