Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Bump activerecord to address CVE-2016-6317
As reported by `bundler-audit`: > Name: activerecord > Version: 4.2.6 > Advisory: CVE-2016-6317 > Criticality: Unknown > URL: https://groups.google.com/forum/#!topic/rubyonrails-security/rgO20zYW33s > Title: Unsafe Query Generation Risk in Active Record > Solution: upgrade to >= 4.2.7.1 Ref: <https://github.com/rails/rails/blob/v4.2.10/activemodel/CHANGELOG.md#rails-4210-september-27-2017> Ref: <https://github.com/rails/rails/blob/v4.2.10/activerecord/CHANGELOG.md#rails-4210-september-27-2017> Ref: <https://github.com/rails/rails/blob/v4.2.10/activesupport/CHANGELOG.md#rails-4210-september-27-2017>