Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/gui/legacy-rails-cve-2020-5267-patch

Patch CVE-2020-5267 for Rails 4 and Rails 3
https://github.com/gui/legacy-rails-cve-2020-5267-patch

Last synced: 16 days ago
JSON representation

Patch CVE-2020-5267 for Rails 4 and Rails 3

Host: GitHub
URL: https://github.com/gui/legacy-rails-cve-2020-5267-patch
Owner: GUI
License: mit
Created: 2020-03-23T16:16:39.000Z (over 4 years ago)
Default Branch: master
Last Pushed: 2022-12-14T10:29:41.000Z (almost 2 years ago)
Last Synced: 2024-10-07T18:38:24.895Z (about 1 month ago)
Language: Ruby
Size: 23.4 KB
Stars: 1
Watchers: 3
Forks: 1
Open Issues: 4
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- License: LICENSE.txt

Awesome Lists containing this project

README

# legacy-rails-CVE-2020-5267-patch

[![CI](https://github.com/GUI/legacy-rails-CVE-2020-5267-patch/workflows/CI/badge.svg)](https://github.com/GUI/legacy-rails-CVE-2020-5267-patch/actions?workflow=CI)

A patch for [CVE-2020-5267](https://github.com/advisories/GHSA-65cv-r6x7-79hv) for Rails 4 and Rails 3. Upgrading Rails would definitely be better, but in the meantime if you're stuck on older versions of Rails, this provides the monkey patch noted in the security advisory packaged and tested as a gem.

## Installation

Add this line to your application's Gemfile:

```ruby
gem 'legacy-rails-CVE-2020-5267-patch'
```

And then execute:

```
$ bundle install
```