On Thu, May 28, 2015 at 07:19:30PM -0700, Jeremy Evans wrote:
> On Thu, May 28, 2015 at 5:22 PM, Sevan / Venture37 <ventur...@gmail.com>
> wrote:
>
> > www/ruby-rest-client - CVE-2015-1820, CVE-2015-3448
> >
> > https://github.com/rest-client/rest-client/issues/369
> >
> > https://github.com/rest-client/rest-client/issues/349
>
>
> Updating rest-client to 1.8.0 would require porting two new dependencies,
> http_cookie and netrc. rest-client is a pure-ruby gem with only one
> dependency, databases/ruby-couchrest, also a pure-ruby gem. couchrest was
> added in April 2009 and last updated in August 2009. jasper did update
> rest-client back in June 2013, but that was the last update since August
> 2009.
>
> Any OKs to remove databases/ruby-couchrest and www/ruby-rest-client? Any
> objections to doing so?
>
> Jeremy
Certainly no objections.
--
jasper
