gelf-rb

gelf-rb copied to clipboard

Update rack requirement from < 2.0 to < 3.0

1

Updates the requirements on [rack](https://github.com/rack/rack) to permit the latest version. Commits 374f89a update changelog b8722dc bump version bbb1e85 Escape untrusted text when logging 41be3d7 Restrict broken mime parsing 5280870 bump...

dependabot[bot]

Bump nokogiri from 1.6.8 to 1.13.6

1

Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.6.8 to 1.13.6. Release notes Sourced from nokogiri's releases. 1.13.6 / 2022-05-08 Security [CRuby] Address CVE-2022-29181, improper handling of unexpected data types, related to untrusted inputs to...

dependabot[bot]

Bump git from 1.3.0 to 1.11.0

1

Bumps [git](https://github.com/ruby-git/ruby-git) from 1.3.0 to 1.11.0. Release notes Sourced from git's releases. Release v1.11.0 Full Changelog 292087e Supress unneeded test output (#570) 19dfe5e Add support for fetch options &quot;--force/-f&quot; and...

dependabot[bot]

Add IO timeout

1

So that it doesn't hang forever.

tycooon

In the logstash-output-gelf project, there is a feature request to support multiple GELF destination hosts. https://github.com/logstash-plugins/logstash-output-gelf/issues/4 The GELF::Notifier initiator and the create_sender methods in this module would need to support...

afreiberger

Updated to ruby-2.5

1

I updated and tested for stability. It's working with ruby-2.5 right now. I couldn't update rake reason for some functions inside the code. I will update again with rake 13.0.1....

bayars

Bump rdoc from 4.2.2 to 6.3.2

1

Bumps [rdoc](https://github.com/ruby/rdoc) from 4.2.2 to 6.3.2. Changelog Sourced from rdoc's changelog. === 5.1.0 / 2017-02-24 Bug fixes Fix an issue that rdoc fails when running on Windows with RUBYOPT=-U. PR...

dependabot[bot]

Bump addressable from 2.4.0 to 2.8.0

1

Bumps [addressable](https://github.com/sporkmonger/addressable) from 2.4.0 to 2.8.0. Changelog Sourced from addressable's changelog. Addressable 2.8.0 fixes ReDoS vulnerability in Addressable::Template#match no longer replaces + with spaces in queries for non-http(s) schemes fixed...

dependabot[bot]

Project Maintainers, Where Art Thou?

11

Who are the project maintainers for this project? It seems like the past maintainer(s) aren't interested in maintaining the project. That's fine, however, there are a couple of critical issues...

farvour

Securityissues

1

This PR about critical dependencies security issues (#88). I update all necessary gems and I add nokogiri in rake file and gemfile because the bundle-audit shows the old gems using...

bayars