Arbitrary Code Execution in Rdoc

[sniffler-app]

Description

In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a filename.

Informations

Manifest Path: Gemfile.lock

Please look at dependabot report: https://github.com/swipely/json_controller_generator/security/dependabot/69