From 4e9c359b37fc494ea2cbeef8aceb912d3949d9e8 Mon Sep 17 00:00:00 2001
From: Ben Abrams <me@benabrams.it>
Date: Fri, 23 Mar 2018 13:34:19 -0700
Subject: [PATCH] [CVE-2017-17042] update vulnerable `yard` dependency

Signed-off-by: Ben Abrams <me@benabrams.it>
---
 CHANGELOG.md                         | 5 +++++
 sensu-plugins-network-checks.gemspec | 2 +-
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 9441404..d354088 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -4,6 +4,11 @@ This project adheres to [Semantic Versioning](http://semver.org/).
 This CHANGELOG follows the format listed  [here](https://github.com/sensu-plugins/community/blob/master/HOW_WE_CHANGELOG.md)
 
 ## [Unreleased]
+
+### Security
+- updated yard dependency to `~> 0.9.11` per: https://nvd.nist.gov/vuln/detail/CVE-2017-17042 (@majormoses)
+
+## [3.1.0] - 2018-03-17
 ### Changed
 - check-netfilter-conntrack.rb: ditch the associated shellscript and turned into pure Ruby.
 
diff --git a/sensu-plugins-network-checks.gemspec b/sensu-plugins-network-checks.gemspec
index b3ef2db..8a96eaf 100644
--- a/sensu-plugins-network-checks.gemspec
+++ b/sensu-plugins-network-checks.gemspec
@@ -49,5 +49,5 @@ Gem::Specification.new do |s| # rubocop:disable Metrics/BlockLength
   s.add_development_dependency 'redcarpet',                 '~> 3.2'
   s.add_development_dependency 'rspec',                     '~> 3.1'
   s.add_development_dependency 'rubocop',                   '~> 0.51.0'
-  s.add_development_dependency 'yard',                      '~> 0.8'
+  s.add_development_dependency 'yard',                      '~> 0.9.11'
 end