Hello Ravish, On 30/10/23 08:55 AM, Ravish BC wrote: > Hi, > > The following package is updated to 0.23.10 and ready to be uploaded and is > requ > ired for Gitlab 16.2.8 update. > > Could you please sponsor the following new package? > > > ruby-commonmarker 0.23.10-1 > ([1]https://salsa.debian.org/ravish0007/ruby-commonmarker/)
I see that Praveen have uploaded this package. There are couple of open CVEs[1] in ruby-commonmarker. Can you check whether latest upstream fixed any of those. If it so please do a MR against the Debian security tracker[2]. [1] - https://security-tracker.debian.org/tracker/source-package/ruby-commonmarker [2] - https://salsa.debian.org/security-tracker-team/security-tracker --abhijith