Bump nokogiri to 1.10.4bump-nokogiri-1.10.4

This pulls in fix for CVE-2019-5477, where usage of Nokogiri::CSS::Tokenizer#load_file leads to potential command injection.
author: Thong Kuah <tkuah@gitlab.com> 2019-08-12 12:18:06 +1200
committer: Thong Kuah <tkuah@gitlab.com> 2019-08-12 12:25:15 +1200
commit: 2d58eba11134d2f3013d2ab45d93ae0581893be7 (patch)
tree: cd92bab4c0b0eb1d4c9f37226b24920acaa6ef94 /qa/Gemfile
parent: 7daf1f41bee701b17a2f276b41f2f96a364cf03d (diff)
download: gitlab-ce-2d58eba11134d2f3013d2ab45d93ae0581893be7.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/qa/Gemfile b/qa/Gemfile
index 53e7cc497e2..6abc0d622ad 100644
--- a/qa/Gemfile
+++ b/qa/Gemfile
@@ -8,7 +8,7 @@ gem 'rake', '~> 12.3.0'
 gem 'rspec', '~> 3.7'
 gem 'selenium-webdriver', '~> 3.12'
 gem 'airborne', '~> 0.2.13'
-gem 'nokogiri', '~> 1.10.3'
+gem 'nokogiri', '~> 1.10.4'
 gem 'rspec-retry', '~> 0.6.1'
 gem 'rspec_junit_formatter', '~> 0.4.1'
 gem 'faker', '~> 1.6', '>= 1.6.6'
author	Thong Kuah <tkuah@gitlab.com>	2019-08-12 12:18:06 +1200
committer	Thong Kuah <tkuah@gitlab.com>	2019-08-12 12:25:15 +1200
commit	2d58eba11134d2f3013d2ab45d93ae0581893be7 (patch)
tree	cd92bab4c0b0eb1d4c9f37226b24920acaa6ef94 /qa/Gemfile
parent	7daf1f41bee701b17a2f276b41f2f96a364cf03d (diff)
download	gitlab-ce-2d58eba11134d2f3013d2ab45d93ae0581893be7.tar.gz