mstdn.y-zu.org/mastodon
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request from GHSA-3fjr-858r-92rw

Browse Source 
* Fix insufficient origin validation

* Bump version to v4.1.13
This commit is contained in:
Claire
2024-02-01 15:56:46 +01:00
committed by GitHub
parent fc4e2eca9f
commit 5799bc4af7
20 changed files with 48 additions and 47 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
spec/lib/activitypub/linked_data_signature_spec.rb
View File

@@ -58,7 +58,7 @@ RSpec.describe ActivityPub::LinkedDataSignature do
allow(ActivityPub::FetchRemoteKeyService).to receive(:new).and_return(service_stub)
allow(service_stub).to receive(:call).with('http://example.com/alice', id: false) do
allow(service_stub).to receive(:call).with('http://example.com/alice') do
sender.update!(public_key: old_key)
sender
end
@@ -66,7 +66,7 @@ RSpec.describe ActivityPub::LinkedDataSignature do
it 'fetches key and returns creator' do
expect(subject.verify_actor!).to eq sender
expect(service_stub).to have_received(:call).with('http://example.com/alice', id: false).once
expect(service_stub).to have_received(:call).with('http://example.com/alice').once
end
end