[Maintenance] Configure bundle audit to ignore CVE-2021-41098 (!1133) · Merge requests · CoFE / comm-cofe-reference · GitLab

Alexandru Lupu - Tremend requested to merge maintenance/configure-bundle-audit into qa Sep 28, 2021

Maintenance

Change log

Added: Bundle audit configuration file, to ignore 2 different CVE's ... the latest one is: Improper Restriction of XML External Entity Reference (XXE) in Nokogiri on JRuby, which affects Jruby. We are using CRuby, which is not affected.
Changed:
Deprecated:
Removed:
Fixed:
Security:

Edited Sep 28, 2021 by Nelson Matias