Fix guard-livereload security vulnerability #289#1026
Conversation
- Add missing CVE-2016-1000305 advisory for guard-livereload - Fix test validation logic in gem_advisory_example.rb - Resolve 8 failing tests by improving version requirement validation - Handle compound version requirements (e.g., '~> 4.2.5, >= 4.2.5.1') - Add edge case handling for unaffected versions - All 53,803 tests now pass Fixes rubysec#289
| cvss_v2: 5.0 | ||
| cvss_v3: 7.5 | ||
| unaffected_versions: | ||
| - ">= 2.5.2" |
There was a problem hiding this comment.
This can not be the same as the patched_versions.
|
@kallal79 - Add feedback |
|
Gsoc |
Does this mean your are busy with GSOC at the moment? |
|
Thanks @jasnow and @simi for the feedback. I had submitted a proposal to your org for GSoC under the guidance of my mentor, but since I wasn’t selected I’ve joined another org. Still, I’ll continue contributing here — I’ll make the required changes, commit, and push updates for this PR. If your org had selected me, I would have been able to dedicate full‑time effort. In case there are any paid internships or full‑time opportunities available, please let me know — I’d be very interested in working full‑time with you. |
Hello @kallal79. Good luck on your GSoC project! This repository is currently fully community maintained. Sadly, there are no paid internships available. |
Looking forward to your updates. |
|
Removing "ready to review", the changes already requested have not been made. |
4 participants
Fixes #289