Skip to content

Commit 5735f69

Browse files
FryguyFryguy
committed
Bump rack to 3.1.20 for CVE-2026-22860 
1 parent 9e8766b commit 5735f69

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

manageiq-gems-pending.gemspec

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -43,7 +43,7 @@ Gem::Specification.new do |s|
4343
s.add_development_dependency "ftpd", "~> 2.1.0"
4444
s.add_development_dependency "manageiq-style", ">= 1.5.4"
4545

46-
s.add_development_dependency "rack", "~> 3.1.19" # this ensures manageiq-style's rack requirement is safe CVE-2025-61919 https://github.com/advisories/GHSA-6xw4-3v39-52mm
46+
s.add_development_dependency "rack", "~> 3.1.20" # via manageiq-style CVE-2026-22860 https://github.com/advisories/GHSA-mxw3-3hh2-x2mh
4747
s.add_development_dependency "rake", ">= 12.3.3"
4848
s.add_development_dependency "rspec", "~> 3.13"
4949
s.add_development_dependency "simplecov", ">= 0.21.2"

0 commit comments

Comments
 (0)