Y
Hacker News
new
|
ask
|
show
|
jobs
by
thewillcole
4904 days ago
Heroku apps rely on Heroku's version of Rails gems (right?), so how does one tell if Heroku has patched these vulnerabilities yet?
1 comments
willlll
4904 days ago
Heroku runs whatever version you say in your Gemfile. You must update your apps yourself; There is nothing Heroku can do to update your app for you.
link
thewillcole
4904 days ago
But am I protected if I'm currently using a fixed version of Rails? (3.2.11, 3.1.10, 3.0.19, or 2.3.15)
link
willlll
4904 days ago
yes
link