Depends on vulnerable version of omniauth-oauth2

Open vprotsan opened this issue 7 years ago • 0 comments

Hello, github has notified me that pinterest-api is depending on a vulnerable version of the omniauth-oauth2 gem. You can find the vulnerability of omniauth-oauth2 here: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6134

Is there a way to upgrade the version?

Mar 22 '18 20:03 vprotsan