Bump devise

2016-01-21 20:55:46 +01:00 · 2016-01-21 20:55:46 +01:00 · a8008571b3
commit a8008571b3
parent f7d42fa83d
3 changed files with 5 additions and 4 deletions
--- a/Changelog.md
+++ b/Changelog.md
@ -1,6 +1,7 @@
 # 0.5.6.1

 * Fix Nokogiri CVE-2015-7499
+* Fix unsafe "Remember me" cookies in Devise

 # 0.5.6.0

--- a/2
+++ b/2
@ -22,7 +22,7 @@ gem "json-schema", "2.5.2"

 # Authentication

-gem "devise", "3.5.3"
+gem "devise", "3.5.4"
 gem "devise_lastseenable", "0.0.6"
 gem "devise-token_authenticatable", "~> 0.4.0"

--- a/Gemfile.lock
+++ b/Gemfile.lock
@ -131,7 +131,7 @@ GEM
      nokogiri (~> 1.5)
      rails (>= 3, < 5)
    database_cleaner (1.5.1)
-    devise (3.5.3)
+    devise (3.5.4)
      bcrypt (~> 3.0)
      orm_adapter (~> 0.1)
      railties (>= 3.2.6, < 5)
@ -607,7 +607,7 @@ GEM
      thor (>= 0.18.1, < 2.0)
    rainbow (2.0.0)
    raindrops (0.15.0)
-    rake (10.4.2)
+    rake (10.5.0)
    rb-fsevent (0.9.6)
    rb-inotify (0.9.5)
      ffi (>= 0.5.0)
@ -788,7 +788,7 @@ DEPENDENCIES
  configurate (= 0.3.1)
  cucumber-rails (= 1.4.2)
  database_cleaner (= 1.5.1)
-  devise (= 3.5.3)
+  devise (= 3.5.4)
  devise-token_authenticatable (~> 0.4.0)
  devise_lastseenable (= 0.0.6)
  diaspora-vines (~> 0.2.0.develop)