This repository has been archived by the owner on Dec 2, 2024. It is now read-only.
v1.2.4
·
94 commits
to main
since this release
v1.2.4
doodlesbykumbi
Kumbirai Tanekha
This tag was signed with the committer’s verified signature.
doodlesbykumbi
Kumbirai Tanekha
Changelog
Security
- Upgrade nokogiri to 1.13.4 to resolve CVE-2022-24836, CVE-2018-25032,
CVE-2022-24839, and CVE-2022-23437 (not vulnerable to all)
cyberark/conjur-service-broker#273 - Upgraded puma to 5.6.4 to resolve CVE-2022-24790
cyberark/conjur-service-broker#271 - Upgraded rails components to 5.2.6.2 and puma to 5.6.2 to resolve CVE-2022-23633 and
CVE-2022-23634 cyberark/conjur-service-broker#270 - Updated puma to 5.5.1
cyberark/conjur-service-broker#267 - Update rails components to 5.2.7.1 to resolve CVE-2022-22577 and CVE-2022-27777
cyberark/conjur-service-broker#274
Fixed
- Unpin the Ruby Buildpack in the service broker's
manifest.ymland update the pinned
Ruby version in the service broker'sGemfileto~> 2.7. This captures the idea that
the service broker works for all 2.x Ruby versions from 2.7 and up, anything less has reached end of life.
cyberark/conjur-service-broker#266