[FuzzyDunlop]

Or reference HTTParty from git, which has been fixed, in your Gemfile:

https://github.com/jnunemaker/httparty/commit/53a812426dd321...

Correction: Although this might not have much to do with multi_xml if that security risk isn't mitigated.

[fowlduck]

YAML can still be loaded from XML response bodies, it just doesn't parse response bodies that are pure YAML anymore. Something like <tag type="yaml">yaml here</tag>.