diff options
author | Gannon McGibbon <gannon.mcgibbon@gmail.com> | 2018-11-06 14:17:23 -0500 |
---|---|---|
committer | Gannon McGibbon <gannon.mcgibbon@gmail.com> | 2018-11-06 14:25:36 -0500 |
commit | 1c11688b5624394c3792d1bb37599fd1e3452c9c (patch) | |
tree | a269734b95d9c887f4c7d7ba441f2e8787852938 /activemodel/activemodel.gemspec | |
parent | 212c28ac86fec0f2baf57fbc21ceb8696092fe47 (diff) | |
download | rails-1c11688b5624394c3792d1bb37599fd1e3452c9c.tar.gz rails-1c11688b5624394c3792d1bb37599fd1e3452c9c.tar.bz2 rails-1c11688b5624394c3792d1bb37599fd1e3452c9c.zip |
Add CVE note to security guide and gemspecs
[ci skip]
Diffstat (limited to 'activemodel/activemodel.gemspec')
-rw-r--r-- | activemodel/activemodel.gemspec | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/activemodel/activemodel.gemspec b/activemodel/activemodel.gemspec index 7be466dc4c..22ca37071c 100644 --- a/activemodel/activemodel.gemspec +++ b/activemodel/activemodel.gemspec @@ -2,6 +2,9 @@ version = File.read(File.expand_path("../RAILS_VERSION", __dir__)).strip +# NOTE: There's no need to update dependencies for CVEs in minor +# releases when users can simply run `bundle update vulnerable_gem`. + Gem::Specification.new do |s| s.platform = Gem::Platform::RUBY s.name = "activemodel" |