Upgrade vulnerable Gems (!30) · Merge requests · University Libraries Digital Library Development / geoblacklight · GitLab

Paul Mather requested to merge LIBTD-1251 into master May 18, 2018

Created by: pmather

The existing versions of "loofah" and "rails-html-sanitizer" Gems have XSS vulnerabilities (see https://github.com/flavorjones/loofah/issues/144 and https://nvd.nist.gov/vuln/detail/CVE-2018-3741). This change updates the Gems to address these vulnerabilities.