Skip to content

Bump concurrent-ruby to 1.3.7 (fixes CVE-2026-54906)#798

Open
rsarv3006 wants to merge 1 commit into
inferno-framework:mainfrom
rsarv3006:main
Open

Bump concurrent-ruby to 1.3.7 (fixes CVE-2026-54906)#798
rsarv3006 wants to merge 1 commit into
inferno-framework:mainfrom
rsarv3006:main

Conversation

@rsarv3006

Copy link
Copy Markdown

Summary

Bumped concurrent-ruby to 1.3.7 (fixes CVE-2026-54906). Originally was pinned to 1.3.4 to deal with a rails issue which has been fixed.

Bundle install also performed unrelated patch level updates. Sorry y'all.

Testing Guidance

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant