Skip to content

Httparty (< 0.21.0) contains security issues #12

Open
Open
Httparty (< 0.21.0) contains security issues#12
@badosu

Description

@badosu
badosu
opened on Jun 8, 2023

We get this on our build system:

ruby-advisory-db:
  advisories:	756 advisories
  last updated:	2023-06-07 16:22:34 -0700
  commit:	ff9f77dfe8548a683eb12a4d316a77764c0d3ffd
Name: httparty
Version: 0.20.0
GHSA: GHSA-5pq7-52mg-hr42
Criticality: Medium
URL: https://github.com/jnunemaker/httparty/security/advisories/GHSA-5pq7-52mg-hr42
Title: httparty has multipart/form-data request tampering vulnerability
Solution: upgrade to '>= 0.21.0'

Proposed solution:

Update httparty to a version >= 0.21.0.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions