diff options
| author | André Arko <mail@arko.net> | 2015-01-23 11:48:49 -0800 |
|---|---|---|
| committer | André Arko <mail@arko.net> | 2015-01-23 11:48:49 -0800 |
| commit | f470583ade852852243aadbcfcb2d8abb3576dfe (patch) | |
| tree | 11d164224c8828963d4d6172f2eaffb65f565459 | |
| parent | d06503614fa1802aa36e5f90d1723e7df9cd01eb (diff) | |
| parent | cf581d2709b307e00034a7d7cd017b80b1daddc1 (diff) | |
| download | bundler-f470583ade852852243aadbcfcb2d8abb3576dfe.tar.gz | |
Merge pull request #3358 from tdtds/patch-1
untaint gem path loaded from github
| -rw-r--r-- | lib/bundler/rubygems_ext.rb | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/bundler/rubygems_ext.rb b/lib/bundler/rubygems_ext.rb index 3451f5a1ad..5d7177415d 100644 --- a/lib/bundler/rubygems_ext.rb +++ b/lib/bundler/rubygems_ext.rb @@ -23,7 +23,7 @@ module Gem def full_gem_path source.respond_to?(:path) ? - Pathname.new(loaded_from).dirname.expand_path(Bundler.root).to_s : + Pathname.new(loaded_from).dirname.expand_path(Bundler.root).to_s.untaint : rg_full_gem_path end |