We just released a new version of the ‘localeapp’ gem, which includes a bugfix a a few security safeguards.
Last released version introduced a bug when you didn’t explicitely configured `blacklisted_keys_pattern` option. This is now fixed 🔧
We dropped support for several legacy dependencies (which explains the major version bump), but it shouldn’t impact you much since most of them have been obsolete for at least 4 years now:
- `i18n` must now be `>= 0.7` to prevent CVE-2013-4492
- `json` must now be `>= 1.7.7` to prevent OSVDB-101157 and CVE-2013-0269
- `rest-client` must now be `>= 1.8.0` to prevent CVE-2015-3448 and CVE-2015-1820
We hope that it will keep you safe 🛡
Happy translating 🙂