sidekiq-crypt icon indicating copy to clipboard operation
sidekiq-crypt copied to clipboard

Published 20 hours ago verified publisher icon mtoygar

Metadata

an attempt to encrypt sensitive job attributes on redis(an alternative to Sidekiq::Enterprise::Crypto)

Results 17 sidekiq-crypt issues
Sort by recently updated
recently updated
newest added

Bump globalid from 0.4.2 to 1.0.1 in /test/dummy-app

Bumps [globalid](https://github.com/rails/globalid) from 0.4.2 to 1.0.1. Release notes Sourced from globalid's releases. v1.0.1 Possible ReDoS based DoS vulnerability in GlobalID There is a ReDoS based DoS vulnerability in the GlobalID...

dependabot[bot] avatar dependabot[bot]

dependencies

Bump globalid from 0.4.2 to 1.0.1

Bumps [globalid](https://github.com/rails/globalid) from 0.4.2 to 1.0.1. Release notes Sourced from globalid's releases. v1.0.1 Possible ReDoS based DoS vulnerability in GlobalID There is a ReDoS based DoS vulnerability in the GlobalID...

dependabot[bot] avatar dependabot[bot]

dependencies

Bump rack from 2.2.2 to 2.2.6.2 in /test/dummy-app

Bumps [rack](https://github.com/rack/rack) from 2.2.2 to 2.2.6.2. Changelog Sourced from rack's changelog. Changelog All notable changes to this project will be documented in this file. For info on how to format...

dependabot[bot] avatar dependabot[bot]

dependencies

Bump rails-html-sanitizer from 1.3.0 to 1.4.4

Bumps [rails-html-sanitizer](https://github.com/rails/rails-html-sanitizer) from 1.3.0 to 1.4.4. Release notes Sourced from rails-html-sanitizer's releases. 1.4.4 / 2022-12-13 Address inefficient regular expression complexity with certain configurations of Rails::Html::Sanitizer. Fixes CVE-2022-23517. See GHSA-5x79-w82f-gw8w for...

dependabot[bot] avatar dependabot[bot]

dependencies

Bump rails-html-sanitizer from 1.3.0 to 1.4.4 in /test/dummy-app

Bumps [rails-html-sanitizer](https://github.com/rails/rails-html-sanitizer) from 1.3.0 to 1.4.4. Release notes Sourced from rails-html-sanitizer's releases. 1.4.4 / 2022-12-13 Address inefficient regular expression complexity with certain configurations of Rails::Html::Sanitizer. Fixes CVE-2022-23517. See GHSA-5x79-w82f-gw8w for...

dependabot[bot] avatar dependabot[bot]

dependencies

Bump loofah from 2.3.1 to 2.19.1 in /test/dummy-app

Bumps [loofah](https://github.com/flavorjones/loofah) from 2.3.1 to 2.19.1. Release notes Sourced from loofah's releases. 2.19.1 / 2022-12-13 Security Address CVE-2022-23514, inefficient regular expression complexity. See GHSA-486f-hjj9-9vhh for more information. Address CVE-2022-23515, improper...

dependabot[bot] avatar dependabot[bot]

dependencies

Bump loofah from 2.3.1 to 2.19.1

Bumps [loofah](https://github.com/flavorjones/loofah) from 2.3.1 to 2.19.1. Release notes Sourced from loofah's releases. 2.19.1 / 2022-12-13 Security Address CVE-2022-23514, inefficient regular expression complexity. See GHSA-486f-hjj9-9vhh for more information. Address CVE-2022-23515, improper...

dependabot[bot] avatar dependabot[bot]

dependencies

Bump nokogiri from 1.10.9 to 1.13.9

Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.10.9 to 1.13.9. Release notes Sourced from nokogiri's releases. 1.13.9 / 2022-10-18 Security [CRuby] Vendored libxml2 is updated to address CVE-2022-2309, CVE-2022-40304, and CVE-2022-40303. See GHSA-2qc6-mcvw-92cw for...

dependabot[bot] avatar dependabot[bot]

dependencies

Bump nokogiri from 1.10.5 to 1.13.9 in /test/dummy-app

Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.10.5 to 1.13.9. Release notes Sourced from nokogiri's releases. 1.13.9 / 2022-10-18 Security [CRuby] Vendored libxml2 is updated to address CVE-2022-2309, CVE-2022-40304, and CVE-2022-40303. See GHSA-2qc6-mcvw-92cw for...

dependabot[bot] avatar dependabot[bot]

dependencies

Bump tzinfo from 1.2.5 to 1.2.10 in /test/dummy-app

Bumps [tzinfo](https://github.com/tzinfo/tzinfo) from 1.2.5 to 1.2.10. Release notes Sourced from tzinfo's releases. v1.2.10 Fixed a relative path traversal bug that could cause arbitrary files to be loaded with require when...

dependabot[bot] avatar dependabot[bot]

dependencies

Metadata

15
Stars
1
Forks
Watchers

Owner

verified publisher icon mtoygar

Metadata

an attempt to encrypt sensitive job attributes on redis(an alternative to Sidekiq::Enterprise::Crypto)

Back