Skip to content

Commit

Permalink
Relax http_parse.rb version
Browse files Browse the repository at this point in the history
http_parser.rb 0.6.0 includes a garbage Gemfile.lock and it causes false
positive detection by security scanning tools. 0.7.0 fixes this issue.

See also: #3374 #3409 #3437

Signed-off-by: Takuro Ashie <ashie@clear-code.com>
  • Loading branch information
ashie committed Jul 8, 2021
1 parent c62dc31 commit 856bfac
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion fluentd.gemspec
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@ Gem::Specification.new do |gem|
gem.add_runtime_dependency("yajl-ruby", ["~> 1.0"])
gem.add_runtime_dependency("cool.io", [">= 1.4.5", "< 2.0.0"])
gem.add_runtime_dependency("serverengine", [">= 2.2.2", "< 3.0.0"])
gem.add_runtime_dependency("http_parser.rb", [">= 0.5.1", "< 0.7.0"])
gem.add_runtime_dependency("http_parser.rb", [">= 0.5.1", "< 0.8.0"])
gem.add_runtime_dependency("sigdump", ["~> 0.2.2"])
gem.add_runtime_dependency("tzinfo", [">= 1.0", "< 3.0"])
gem.add_runtime_dependency("tzinfo-data", ["~> 1.0"])
Expand Down

0 comments on commit 856bfac

Please sign in to comment.