Hello, I am looking into CVE-2023-33460 and I am not sure that ruby-yajl is affected. There is no direct dependency on yajl, where the vulnerability was detected.
Should ruby-yajl be unmarked as affected by this CVE? Thank you Anton
- CVE-2023-33460, ruby-yajl affected? Anton Gladky
- Re: CVE-2023-33460, ruby-yajl affected? Bastien Roucariès
- Re: CVE-2023-33460, ruby-yajl affected? Tobias Frost
- Re: CVE-2023-33460, ruby-yajl affected? Anton Gladky
- Re: CVE-2023-33460, ruby-yajl affected? Tobias Frost
