Skip to content

Commit 3f9ecb1

Browse files
jrafaniejrafanie
committed
Require URI ~>1.0.4
Replaces #2326
1 parent 77bc642 commit 3f9ecb1

File tree

1 file changed

+1
-2
lines changed

1 file changed

+1
-2
lines changed

Gemfile

Lines changed: 1 addition & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -88,8 +88,7 @@ gem "wim_parser", "~>1.0", :require => false
8888
# gems to resolve security issues
8989
gem "cgi", "~> 0.4.2" # CVE-2025-27219: https://github.com/advisories/GHSA-gh9q-2xrm-x6qv
9090
gem "time", "~> 0.2.2" # CVE-2023-28756: https://github.com/advisories/GHSA-fg7x-g82r-94qc; ruby 3.1.4+
91-
gem "uri", "~> 0.13.3" # CVE-2025-61594: https://www.ruby-lang.org/en/news/2025/10/07/uri-cve-2025-61594/
92-
# Avoid URI 1.0.0 for now due to: https://github.com/ruby/uri/issues/125
91+
gem "uri", "~> 1.0.4" # CVE-2025-61594: https://www.ruby-lang.org/en/news/2025/10/07/uri-cve-2025-61594/
9392
gem "thor", ">= 1.4.0" # CVE-2025-54314: https://github.com/advisories/GHSA-mqcp-p2hv-vw6x
9493

9594
# Custom gem that replaces mime-types in order to redirect mime-types calls to mini_mime

0 commit comments

Comments
 (0)