Skip to main content

Fix example transitive vulnerability for Ruby

To fix a transitive library for Ruby, override the transitive dependency by adding the appropriately versioned dependency as a direct library to your Gemfile.

These steps provide a fix for a Session Fixation vulnerability in rest-client, version 1.7.3 in the test-ruby-gem repository.

To complete this task:

  1. Edit the Gemfile file in the root of the project and add the recommended version of the gem:

    gem 'rest-client', '1.8.0.rc1'
  2. Run this command from your terminal within the project:

    bundle update rest-client  
  3. Validate the fix.