-
Committer:
John Leach
-
Author(s):
Samuel Giddins
-
Date:
2018-01-16 13:44:48 UTC
-
Revision ID:
git-v1:7d0d4c1b5ff7192f1bbfa96159251347f6101284
Validate specification names when installing
This prevents a malicious user from crafting a gem that could write to an arbitrary directory, outside of the gems directory, by using metacharacters such as `..`