On Thu, May 28, 2015 at 5:22 PM, Sevan / Venture37 <ventur...@gmail.com> wrote:
> www/ruby-rest-client - CVE-2015-1820, CVE-2015-3448 > > https://github.com/rest-client/rest-client/issues/369 > > https://github.com/rest-client/rest-client/issues/349 Updating rest-client to 1.8.0 would require porting two new dependencies, http_cookie and netrc. rest-client is a pure-ruby gem with only one dependency, databases/ruby-couchrest, also a pure-ruby gem. couchrest was added in April 2009 and last updated in August 2009. jasper did update rest-client back in June 2013, but that was the last update since August 2009. Any OKs to remove databases/ruby-couchrest and www/ruby-rest-client? Any objections to doing so? Jeremy
