From f7f2e83cfb96ce8cfb63e7f7118c838a26d68e9b Mon Sep 17 00:00:00 2001 From: Robin Ward Date: Wed, 21 Jan 2015 13:57:03 -0500 Subject: [PATCH] SECURITY: Don't whitelist codepen as it is a potential vector for abuse --- Gemfile.lock | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Gemfile.lock b/Gemfile.lock index 0f56e0cbc1a..0badd315027 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -222,7 +222,7 @@ GEM omniauth-twitter (1.0.1) multi_json (~> 1.3) omniauth-oauth (~> 1.0) - onebox (1.5.5) + onebox (1.5.7) moneta (~> 0.7) multi_json (~> 1.7) mustache (~> 0.99)