Skip to content

Commit 9b7bca1

Browse files
orbisai0securityclaude
orbisai0security
and
claude
committed
fix: upgrade activesupport to 7.2.3.1 in all Gemfiles (CVE-2026-33176)
Address code review feedback by updating activesupport in packages/rn-tester/Gemfile, private/helloworld/Gemfile, and private/helloworld/Gemfile.lock to match the fix already applied to the root Gemfile. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
1 parent 12ae301 commit 9b7bca1

3 files changed

Lines changed: 17 additions & 7 deletions

File tree

packages/rn-tester/Gemfile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -7,7 +7,7 @@ ruby ">= 2.6.10"
77
# bound in the template on Cocoapods with next React Native release.
88
gem 'cocoapods', '~> 1.13', '!= 1.15.0', '!= 1.15.1'
99
gem 'rexml'
10-
gem 'activesupport', '>= 6.1.7.5', '< 7.1.0'
10+
gem 'activesupport', '7.2.3.1'
1111
gem 'xcodeproj', '< 1.26.0'
1212
gem 'concurrent-ruby', '<= 1.3.4'
1313

private/helloworld/Gemfile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -3,7 +3,7 @@ source 'https://rubygems.org'
33
ruby ">= 2.6.10"
44

55
gem 'cocoapods', '~> 1.13', '!= 1.15.0', '!= 1.15.1'
6-
gem 'activesupport', '>= 6.1.7.5', '< 7.1.0'
6+
gem 'activesupport', '7.2.3.1'
77
gem 'xcodeproj', '< 1.26.0'
88
gem 'concurrent-ruby', '<= 1.3.4'
99

private/helloworld/Gemfile.lock

Lines changed: 15 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -5,11 +5,18 @@ GEM
55
base64
66
nkf
77
rexml
8-
activesupport (7.0.8.4)
9-
concurrent-ruby (~> 1.0, >= 1.0.2)
8+
activesupport (7.2.3.1)
9+
base64
10+
benchmark (>= 0.3)
11+
bigdecimal
12+
concurrent-ruby (~> 1.0, >= 1.3.1)
13+
connection_pool (>= 2.2.5)
14+
drb
1015
i18n (>= 1.6, < 2)
11-
minitest (>= 5.1)
12-
tzinfo (~> 2.0)
16+
logger (>= 1.4.2)
17+
minitest (>= 5.1, < 6)
18+
securerandom (>= 0.3)
19+
tzinfo (~> 2.0, >= 2.0.5)
1320
addressable (2.8.7)
1421
public_suffix (>= 2.0.2, < 7.0)
1522
algoliasearch (1.27.5)
@@ -59,6 +66,8 @@ GEM
5966
cocoapods-try (1.2.0)
6067
colored2 (3.1.2)
6168
concurrent-ruby (1.3.4)
69+
connection_pool (3.0.2)
70+
drb (2.2.3)
6271
escape (0.0.4)
6372
ethon (0.16.0)
6473
ffi (>= 1.15.0)
@@ -81,6 +90,7 @@ GEM
8190
public_suffix (4.0.7)
8291
rexml (3.4.1)
8392
ruby-macho (2.5.1)
93+
securerandom (0.4.1)
8494
typhoeus (1.4.1)
8595
ethon (>= 0.9.0)
8696
tzinfo (2.0.6)
@@ -97,7 +107,7 @@ PLATFORMS
97107
ruby
98108

99109
DEPENDENCIES
100-
activesupport (>= 6.1.7.5, < 7.1.0)
110+
activesupport (= 7.2.3.1)
101111
benchmark
102112
bigdecimal
103113
cocoapods (~> 1.13, != 1.15.1, != 1.15.0)

0 commit comments

Comments
 (0)