{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":64560648,"defaultBranch":"master","name":"ruby-advisory-db","ownerLogin":"jasnow","currentUserCanPush":false,"isFork":true,"isEmpty":false,"createdAt":"2016-07-30T19:23:49.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/43523?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1726913835.0","currentOid":""},"activityList":{"items":[{"before":null,"after":"9be0839b9be066c6d84928be5ddaaffdf480f504","ref":"refs/heads/ghsa-syncbot-2024-09-21-06_11_26","pushedAt":"2024-09-21T10:17:15.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 brand new and 1 modified advisory","shortMessageHtmlLink":"GHSA SYNC: 1 brand new and 1 modified advisory"}},{"before":"5e77a68ffb3efbe1f4de93cf3ee2c7b74521cc62","after":"23ff48f9647d556df378e4e28fe0a52e7b21c550","ref":"refs/heads/master","pushedAt":"2024-09-21T10:11:26.000Z","pushType":"push","commitsCount":6,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"Added missing `cve:` to `GHSA-cvp8-5r8g-fhvq`.","shortMessageHtmlLink":"Added missing cve: to GHSA-cvp8-5r8g-fhvq."}},{"before":"31ad5b1e99fbfd17206ba4238dec5a99820486de","after":"8b8dff3bac471808149538500bab68d6b3a9922f","ref":"refs/heads/ghsa-syncbot-2024-09-20-12_43_06","pushedAt":"2024-09-20T18:44:59.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Remove trailing double quote from CVE-2024-45614.yml","shortMessageHtmlLink":"Remove trailing double quote from CVE-2024-45614.yml"}},{"before":null,"after":"31ad5b1e99fbfd17206ba4238dec5a99820486de","ref":"refs/heads/ghsa-syncbot-2024-09-20-12_43_06","pushedAt":"2024-09-20T18:19:23.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GHSA SYNC: 2 brand new advisories","shortMessageHtmlLink":"GHSA SYNC: 2 brand new advisories"}},{"before":"2780bcd33ee26cc4577cbc5ec7c59a5be07b2fac","after":"5e77a68ffb3efbe1f4de93cf3ee2c7b74521cc62","ref":"refs/heads/master","pushedAt":"2024-09-19T11:30:31.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 brand new advisory","shortMessageHtmlLink":"GHSA SYNC: 1 brand new advisory"}},{"before":null,"after":"d2d17650fd4979b3b6e0977ebc129d457f47d3ad","ref":"refs/heads/ghsa-syncbot-2024-09-18-08_14_15","pushedAt":"2024-09-18T18:18:09.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 brand new advisory","shortMessageHtmlLink":"GHSA SYNC: 1 brand new advisory"}},{"before":"a49ad8b16072bb3ee3a5d9dd4ea68ceaae2bf9ad","after":"2780bcd33ee26cc4577cbc5ec7c59a5be07b2fac","ref":"refs/heads/master","pushedAt":"2024-09-18T12:14:15.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GHSA SYNC: 3 brand new advisories","shortMessageHtmlLink":"GHSA SYNC: 3 brand new advisories"}},{"before":null,"after":"3fba4405a3378b31ebc08556ee6bb7872ee3baad","ref":"refs/heads/ghsa-syncbot-2024-09-17-07_28_24","pushedAt":"2024-09-17T13:19:41.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GHSA SYNC: 3 brand new advisories","shortMessageHtmlLink":"GHSA SYNC: 3 brand new advisories"}},{"before":"46096c9b5591c25b89f83a182bde875a62fe5387","after":"a49ad8b16072bb3ee3a5d9dd4ea68ceaae2bf9ad","ref":"refs/heads/master","pushedAt":"2024-09-15T13:02:38.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 brand new advisory","shortMessageHtmlLink":"GHSA SYNC: 1 brand new advisory"}},{"before":null,"after":"ff44d305b15485580ed3847e2a8747caeb76de19","ref":"refs/heads/ghsa-syncbot-2024-09-13-07_30_30","pushedAt":"2024-09-13T13:05:10.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 brand new advisory","shortMessageHtmlLink":"GHSA SYNC: 1 brand new advisory"}},{"before":"9a88f501a73e9d55c5142286dac075732d8febb0","after":"46096c9b5591c25b89f83a182bde875a62fe5387","ref":"refs/heads/master","pushedAt":"2024-09-13T11:30:30.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"Add CVE-2024-45409 for ruby-saml and omniauth-saml","shortMessageHtmlLink":"Add CVE-2024-45409 for ruby-saml and omniauth-saml"}},{"before":"33907c16654555cb6089d8a41c6bd20ce8da2698","after":"9a88f501a73e9d55c5142286dac075732d8febb0","ref":"refs/heads/master","pushedAt":"2024-08-27T12:28:32.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"Re-add `>= 7.2.0.beta2` to patched versions for CVE-2024-28103 / CVE-2024-32464.\n\n* While the original advisories do not mention 7.2.0.beta2 as being\n patched, the GHSA advisories do, however.\n * https://github.com/rails/rails/security/advisories/GHSA-fwhr-88qx-h9g7\n * https://github.com/rails/rails/security/advisories/GHSA-prjp-h48f-jgf6","shortMessageHtmlLink":"Re-add >= 7.2.0.beta2 to patched versions for CVE-2024-28103 / CVE-…"}},{"before":"1f32ea5ffe106eca937948d1159ed2ad331244cd","after":"33907c16654555cb6089d8a41c6bd20ce8da2698","ref":"refs/heads/master","pushedAt":"2024-08-25T12:13:02.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GSHA SYNC: 1 brand new advisory","shortMessageHtmlLink":"GSHA SYNC: 1 brand new advisory"}},{"before":null,"after":"e9ddb3acef5f04bba7d8ed574feb5004bd743d8f","ref":"refs/heads/ghsa-syncbot-2024-08-24-07_26_34","pushedAt":"2024-08-24T11:57:08.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GSHA SYNC: 1 brand new advisory","shortMessageHtmlLink":"GSHA SYNC: 1 brand new advisory"}},{"before":"3a4007eb274e3489c0c553a6da69e1590a65ef2e","after":"1f32ea5ffe106eca937948d1159ed2ad331244cd","ref":"refs/heads/master","pushedAt":"2024-08-24T11:26:34.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GSHA SYNC: 1 brand new advisory","shortMessageHtmlLink":"GSHA SYNC: 1 brand new advisory"}},{"before":null,"after":"0eeaa2422c92146482e50a29f15d254f4f205aac","ref":"refs/heads/ghsa-syncbot-2024-08-23-07_09_12","pushedAt":"2024-08-23T11:19:31.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GSHA SYNC: 1 brand new advisory","shortMessageHtmlLink":"GSHA SYNC: 1 brand new advisory"}},{"before":"e38cfdd4a646821224272f3a4d404171d34dc9ce","after":"3a4007eb274e3489c0c553a6da69e1590a65ef2e","ref":"refs/heads/master","pushedAt":"2024-08-22T11:59:03.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GHSA SYNC: Added cvss_v3 field to 1 advisory","shortMessageHtmlLink":"GHSA SYNC: Added cvss_v3 field to 1 advisory"}},{"before":null,"after":"9859045f73a3a3bfdb63e55a5df3c789ea07f0fa","ref":"refs/heads/ghsa-syncbot-2024-08-21-07_28_42","pushedAt":"2024-08-21T11:33:13.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GHSA SYNC: Added cvss_v3 field to 1 advisory","shortMessageHtmlLink":"GHSA SYNC: Added cvss_v3 field to 1 advisory"}},{"before":"b5e80a635bcc4d85d6e9f5b741510fb63a05150f","after":"e38cfdd4a646821224272f3a4d404171d34dc9ce","ref":"refs/heads/master","pushedAt":"2024-08-21T11:28:41.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GSHA SYNC: 1 brand new advisory (#802)\n\n---------\r\n\r\nCo-authored-by: Postmodern ","shortMessageHtmlLink":"GSHA SYNC: 1 brand new advisory (rubysec#802)"}},{"before":"740e169382bd18dba57fc187eb0f8638df4fa1be","after":"fb3e736bde02b70fb5d784496bc25a3f546a5698","ref":"refs/heads/ghsa-syncbot-2024-08-20-07_23_27","pushedAt":"2024-08-20T21:51:39.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Remove References section from `description` text.","shortMessageHtmlLink":"Remove References section from description text."}},{"before":null,"after":"740e169382bd18dba57fc187eb0f8638df4fa1be","ref":"refs/heads/ghsa-syncbot-2024-08-20-07_23_27","pushedAt":"2024-08-20T11:54:13.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GSHA SYNC: 1 brand new advisory","shortMessageHtmlLink":"GSHA SYNC: 1 brand new advisory"}},{"before":"c397acb102af20388447b6e5c3d1f78fb14f08c8","after":"b5e80a635bcc4d85d6e9f5b741510fb63a05150f","ref":"refs/heads/master","pushedAt":"2024-08-19T11:11:06.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"Lint the YAML syntax before linting the contents of the YAML files.","shortMessageHtmlLink":"Lint the YAML syntax before linting the contents of the YAML files."}},{"before":"3f2952b7fd694022225eb502be77a9b8b4b5676a","after":"c397acb102af20388447b6e5c3d1f78fb14f08c8","ref":"refs/heads/master","pushedAt":"2024-08-15T11:42:06.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GSHA SYNC: 2 brand new advisories","shortMessageHtmlLink":"GSHA SYNC: 2 brand new advisories"}},{"before":null,"after":"9760791a6ee05227522e074fc27ade2f9bfe3939","ref":"refs/heads/ghsa-syncbot-2024-08-14-07_50_34","pushedAt":"2024-08-14T13:54:06.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GSHA SYNC: 2 brand new advisories","shortMessageHtmlLink":"GSHA SYNC: 2 brand new advisories"}},{"before":"446f84809ca2f370b7e2880065e066b7c4cb3465","after":"3f2952b7fd694022225eb502be77a9b8b4b5676a","ref":"refs/heads/master","pushedAt":"2024-08-04T12:16:00.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 modified advisory; 1 brand new advisory","shortMessageHtmlLink":"GHSA SYNC: 1 modified advisory; 1 brand new advisory"}},{"before":null,"after":"283832556c706b3504afa4588249a873a5643560","ref":"refs/heads/ghsa-syncbot-2024-08-03-07_56_00","pushedAt":"2024-08-03T13:38:45.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GHSA SYNC: 1 modified advisory; 1 brand new advisory","shortMessageHtmlLink":"GHSA SYNC: 1 modified advisory; 1 brand new advisory"}},{"before":"74cb95f7ca90abf9f93a1a1a1fb37c48229a285b","after":"446f84809ca2f370b7e2880065e066b7c4cb3465","ref":"refs/heads/master","pushedAt":"2024-08-03T11:56:00.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GHSA SYNC: 3 modified and 8 brand new advisories (#799)\n\n* Added `patched_versions` to `gems/bootstrap/CVE-2024-6531.yml`.\r\n According to the [CVE-2024-6531 blog post][1] the affected versions are\r\n `>= 4.0.0, <= 4.6.2`, and the [bootstrap gem] has versions after 4.6.2 which\r\n contain newer versions of the bootstrap JavaScript library.\r\n* Added `patched_versions` to `gems/bootstrap/CVE-2024-6484.yml`.\r\n According to the [CVE-2024-6484 blog post][2], the affected versions are\r\n `>= 2.0.0, <= 3.4.1`, but the [bootstrap gem] has versions after 3.4.1\r\n containing newer versions of the bootstrap JavaScript library.\r\n\r\n[1]: https://www.herodevs.com/vulnerability-directory/cve-2024-6531\r\n[2]: https://www.herodevs.com/vulnerability-directory/cve-2024-6484\r\n[bootstrap gem]: https://rubygems.org/gems/bootstrap/versions\r\n\r\n---------\r\n\r\nCo-authored-by: Postmodern ","shortMessageHtmlLink":"GHSA SYNC: 3 modified and 8 brand new advisories (rubysec#799)"}},{"before":"647c390bd1968cc1311f04f618ae1b1a885b2b75","after":"4ef0e78d56567561c91cf845e97235dfaed23c13","ref":"refs/heads/ghsa-syncbot-2024-08-02-07_07_12","pushedAt":"2024-08-03T02:12:46.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Added `patched_versions` to `gems/bootstrap/CVE-2024-6484.yml`\n\n* According to the [blog post][1], the affected versions are `>= 2.0.0, <= 3.4.1`, but the [bootstrap gem] has versions after 3.4.1 containing newer versions of the bootstrap JavaScript library.\r\n\r\n[1]: https://www.herodevs.com/vulnerability-directory/cve-2024-6484\r\n[bootstrap gem]: https://rubygems.org/gems/bootstrap/versions","shortMessageHtmlLink":"Added patched_versions to gems/bootstrap/CVE-2024-6484.yml"}},{"before":"67310145cce250006a0edb74969adddfd64891ef","after":"647c390bd1968cc1311f04f618ae1b1a885b2b75","ref":"refs/heads/ghsa-syncbot-2024-08-02-07_07_12","pushedAt":"2024-08-03T02:07:59.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"postmodern","name":"Postmodern","path":"/postmodern","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/12671?s=80&v=4"},"commit":{"message":"Added `patched_versions` to gems/bootstrap/CVE-2024-6531.yml\n\n* According to the [blog post][1] the affected versions are `>= 4.0.0, <= 4.6.2`, and the [bootstrap gem] has versions after 4.6.2 which contain newer versions of the bootstrap JavaScript library.\r\n\r\n[1]: https://www.herodevs.com/vulnerability-directory/cve-2024-6531\r\n[bootstrap gem]: https://rubygems.org/gems/bootstrap/versions","shortMessageHtmlLink":"Added patched_versions to gems/bootstrap/CVE-2024-6531.yml"}},{"before":null,"after":"67310145cce250006a0edb74969adddfd64891ef","ref":"refs/heads/ghsa-syncbot-2024-08-02-07_07_12","pushedAt":"2024-08-02T17:40:13.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"jasnow","name":"Al Snow","path":"/jasnow","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/43523?s=80&v=4"},"commit":{"message":"GHSA SYNC: 3 modified and 8 brand new advisories","shortMessageHtmlLink":"GHSA SYNC: 3 modified and 8 brand new advisories"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"Y3Vyc29yOnYyOpK7MjAyNC0wOS0yMVQxMDoxNzoxNS4wMDAwMDBazwAAAAS8peco","startCursor":"Y3Vyc29yOnYyOpK7MjAyNC0wOS0yMVQxMDoxNzoxNS4wMDAwMDBazwAAAAS8peco","endCursor":"Y3Vyc29yOnYyOpK7MjAyNC0wOC0wMlQxNzo0MDoxMy4wMDAwMDBazwAAAASQaGu4"}},"title":"Activity · jasnow/ruby-advisory-db"}