rest-client 1.6.9 → 1.6.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. checksums.yaml +5 -5
  2. data/history.md +13 -0
  3. data/lib/restclient/version.rb +1 -1
  4. metadata +3 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
- SHA1:
3
- metadata.gz: c3926f9e19fe88aad85f1d9abd02ac6b0a1f309b
4
- data.tar.gz: b84e60ab32c96e87e6aa6c3a1c4a6739cd071f9e
2
+ SHA256:
3
+ metadata.gz: 317f1bdcf77b2dae0fe9a08a165a56c71fb9c3d79b71c8d6c5a12cb1e4868a4e
4
+ data.tar.gz: d2a662189817597ff1fca0e6685cdd5d06bdac1ca72bf9a932f1d7def456b26b
5
5
  SHA512:
6
- metadata.gz: 080b35a32f965c9ff7ab274d963ddc3349e29a3daaed79db2fa727425c5707e25969fe8107602c74d8df527c80b962d73c39113d924462bc9747455a4a759073
7
- data.tar.gz: 0e12dc1f0d9116868c1dcb0a4c7e43709b38e9ec1864d310f1ac4ad49b33dbf762e5b1062e0b487d021ee034d2d20796afafb0bb639254f20e178ee6f143e703
6
+ metadata.gz: f789e7291285e26aa719119331d0d1a6322ec618a25eb2626a1a8486e3584fb07e52d25dfb7a56972cb495e5e2cad6c67eae5f3da98d66974d51f3c4fc2566f1
7
+ data.tar.gz: cf43508dbbc1f6977b3e8ad047651591760b8f386e3daa472888fc81f262b3d2669798f847b88fdd7b6f6f77b2a44990688c88efc53e02072bb9f284459c6b41
data/history.md CHANGED
@@ -1,3 +1,16 @@
1
+ # 1.6.14
2
+
3
+ - This release is unchanged from 1.6.9. It was published in order to supersede
4
+ the malicious 1.6.10-13 versions, even for users who are still pinning to the
5
+ legacy 1.6.x series. All users are encouraged to upgrade to rest-client 2.x.
6
+
7
+ # 1.6.10, 1.6.11, 1.6.12, 1.6.13 (CVE-2019-15224)
8
+
9
+ - These versions were pushed by a malicious actor and included a backdoor permitting
10
+ remote code execution in Rails environments.
11
+ - They were live for about five days before being yanked.
12
+ https://github.com/rest-client/rest-client/issues/713
13
+
1
14
  # 1.6.9
2
15
 
3
16
  - Move rdoc to a development dependency
data/lib/restclient/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  module RestClient
2
- VERSION = '1.6.9' unless defined?(self::VERSION)
2
+ VERSION = '1.6.14' unless defined?(self::VERSION)
3
3
 
4
4
  def self.version
5
5
  VERSION
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: rest-client
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.6.9
4
+ version: 1.6.14
5
5
  platform: ruby
6
6
  authors:
7
7
  - REST Client Team
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2015-06-10 00:00:00.000000000 Z
11
+ date: 2019-08-21 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: mime-types
@@ -165,8 +165,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
165
165
  - !ruby/object:Gem::Version
166
166
  version: '0'
167
167
  requirements: []
168
- rubyforge_project:
169
- rubygems_version: 2.2.3
168
+ rubygems_version: 3.0.3
170
169
  signing_key:
171
170
  specification_version: 4
172
171
  summary: Simple HTTP and REST client for Ruby, inspired by microframework syntax for