nixpkgs/Gemfile.lock at 9444b574fcb82bd4dbdfa51c7bfdf35d19ac1fae - nixpkgs - nordic-dev.net

nordic-dev.net/nixpkgs

mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-25 16:33:15 +00:00

Steve Purcell da2a5cfa94 sqlint: update deps to eliminate vulnerable dependency

See #351833

Gemfile: ./pkgs/development/tools/sqlint/Gemfile.lock
Name: google-protobuf
Version: 3.25.0
CVE: CVE-2024-7254
GHSA: GHSA-735f-pc8j-v9w8
Criticality: High
URL: https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-735f-pc8j-v9w8
Title: protobuf-java has potential Denial of Service issue
Solution: upgrade to '~> 3.25.5', '~> 4.27.5', '>= 4.28.2'

2024-10-28 17:20:58 +00:00

18 lines

235 B

Plaintext

Raw Blame History

 GEM
   remote: https://rubygems.org/
   specs:
     google-protobuf (3.25.5)
     pg_query (4.2.3)
       google-protobuf (>= 3.22.3)
     sqlint (0.3.0)
       pg_query (>= 1)
 PLATFORMS
   ruby
 DEPENDENCIES
   sqlint
 BUNDLED WITH
 .4.20