Bump shlex from 1.1.0 to 1.3.0 in /yjit/bindgen (#10985)
yjit-bindgen isn't run to build Ruby releases at all, but people might be running security scanners on the source tarball. Upgrade this dependency to calm the scanners.
yjit-bindgen
Backport of https://github.com/ruby/ruby/pull/9652. See: https://github.com/ruby/ruby/pull/10980
Added by alanwu (Alan Wu) about 1 year ago
Bump shlex from 1.1.0 to 1.3.0 in /yjit/bindgen (#10985)
yjit-bindgenisn't run to build Ruby releases at all, but people mightbe running security scanners on the source tarball. Upgrade this
dependency to calm the scanners.
Backport of https://github.com/ruby/ruby/pull/9652.
See: https://github.com/ruby/ruby/pull/10980