Bump mini_magick from 4.9.3 to 4.9.4
Bumps mini_magick from 4.9.3 to 4.9.4.
Release notes
Sourced from mini_magick's releases.
v4.9.4
- Fixed a remote shell execution vulnerability when using
MiniMagick::Image.open
with URL coming from unsanitized user input (thanks to @rootxharsh)- Fixed some Ruby warnings (thanks to @koic)
Commits
-
293f9bb
Bump to 4.9.4 -
4cd5081
Don't allow remote shell execution -
152d33a
Fix test failure -
87e9059
Merge pull request #427 from koic/suppress_deprecation_warnings_in_production... -
b5ce047
Suppresswarning: instance variable [@​processor_path](https://github.com/processor_path) not initialized
-
a74b73e
Suppresswarning: instance variable [@​cli_path](https://github.com/cli_path) not initialized
-
6fca405
Suppresswarning: instance variable [@​cli](https://github.com/cli) not initialized
-
64560f5
Suppresswarning: method redefined; discarding old debug=
-
563cc61
Suppresswarning: method redefined; discarding old cli_path
-
2965e55
Suppresswarning: method redefined; discarding old cli and cli=
- Additional commits viewable in compare view