net-misc/mikutter uses dev-ruby/json:0. This version is obsolete, and now also contains a security bug (see blocker). I noticed that the Gemfile in mikutter references 'json_pure', '~> 1.8'. My suggestion would be to change that to 'json', '~> 2.0' json_pure is never needed on Gentoo because we can always provide the compiled variant, and 2.0 should be compatible with 1.8 in terms of API.
Given that there has been no activity on this bug at all I'm going to mask mikutter for removal along with the vulnerable json version later this week.
Ah, sorry for long silence. I'll proceed the ruby-gnome2 stuff and fix this be too in this week.
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f417257a3009152d20ec385fc6c467c5cd6cbac1 commit f417257a3009152d20ec385fc6c467c5cd6cbac1 Author: Naohiro Aota <naota@gentoo.org> AuthorDate: 2020-08-04 18:12:30 +0000 Commit: Naohiro Aota <naota@gentoo.org> CommitDate: 2020-08-04 18:14:51 +0000 net-misc/mikutter: version bump and drop old This bump also added ruby26 support and moved to newer dev-ruby/json slot. Closes: https://bugs.gentoo.org/575186 Closes: https://bugs.gentoo.org/699228 Closes: https://bugs.gentoo.org/713480 Package-Manager: Portage-2.3.103, Repoman-2.3.23 Signed-off-by: Naohiro Aota <naota@gentoo.org> net-misc/mikutter/Manifest | 2 +- net-misc/mikutter/files/mikutter | 2 +- ...mikutter-3.8.6.ebuild => mikutter-4.0.6.ebuild} | 49 +++++++++++----------- net-misc/mikutter/mikutter-9999.ebuild | 49 +++++++++++----------- 4 files changed, 50 insertions(+), 52 deletions(-)
(In reply to Larry the Git Cow from comment #3) > net-misc/mikutter: version bump and drop old > > This bump also added ruby26 support and moved to newer dev-ruby/json > slot. Thanks!