4
91%
master: 91%

Ran 31 Oct 2024 04:49AM UTC

Files 436

Run time 10s

Badge

Embed ▾

Committed 31 Oct 2024 04:47AM UTC coverage: 90.878%. Remained the same

Job # 11606272810.4

Build Type

push

github

Committed by

web-flow

Commit Message

Bump rexml to >= 3.3.9 to resolve GHSA-2rxp-v6pw-ch6m (#857)

A `ReDoS vulnerability in REXML` has been identified in versions <3.3.9

Details in GitHub:
 - https://github.com/ruby/rexml/security/advisories/GHSA-2rxp-v6pw-ch6m

This is a small bump to the latest patched version. This should resolve
anybody getting the following `bundle audit` error when using
overcommit:

```
Name: rexml
Version: 3.3.8
CVE: CVE-2024-49761
GHSA: GHSA-2rxp-v6pw-ch6m
Criticality: High
URL: https://github.com/ruby/rexml/security/advisories/GHSA-2rxp-v6pw-ch6m
Title: REXML ReDoS vulnerability
Solution: update to '>= 3.3.9'
```

Run Details

6396 of 7038 relevant lines covered (90.88%)

167.89 hits per line

sds / overcommit / 11606272810 / 4
91%
master: 91%

README BADGES
x

Markdown

Textile

RDoc

HTML

Rst

Source Files on job ruby2.7-ubuntu - 11606272810.4

sds / overcommit / 11606272810 / 4 91% master: 91%

README BADGES x

Markdown

Textile

RDoc

HTML

Rst

Source Files on job ruby2.7-ubuntu - 11606272810.4

sds / overcommit / 11606272810 / 4
91%
master: 91%

README BADGES
x