labml icon indicating copy to clipboard operation
labml copied to clipboard
verified publisher icon labmlai

Treats "jruby-10.0.2.0" in .ruby-version as outdated Ruby 0.0.2

Open rammpeter opened this issue 4 months ago • 0 comments

Background

Brakeman version: 7.1.0 Rails version: 8.0.2.1 Ruby version: jruby-10.0.2.0

Link to Rails application code: ?

Issue

Brakeman does not recognize the used ruby version and reports an high vulnerability due to very old Ruby version 0.0.2

The content of .ruby-version is

jruby-10.0.2.0

Output of brakeman is

== Warnings ==

Confidence: High
Category: Unmaintained Dependency
Check: EOLRuby
Message: Support for Ruby 0.0.2 ended on 2015-02-23
File: .ruby-version
Line: 1

Other Error

Run Brakeman with --debug to see the full stack trace.

Stack trace:

?

rammpeter avatar Aug 27 '25 07:08 rammpeter