diff --git a/CHANGELOG.md b/CHANGELOG.md
index 0ee756ccc..23ec96aee 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -3,7 +3,9 @@
 - Refactored rake tasks to use namespaces and descriptions
 - Fix a bug: unable to create a new oAuth 2.0 provider
 - Fix a bug: application in unavailable if a SSO is active
+- Fix a security issue: dependency bootstrap < 4.3.1 has an XSS vulnerability as described in [CVE-2019-8331](https://blog.getbootstrap.com/2019/02/13/bootstrap-4-3-1-and-3-4-1/)
 - Fixed missing translations in authentication providers form
+- [TODO DEPLOY] `bundle install`
 
 ## v2.8.3 2019 January 29
 
@@ -44,7 +46,7 @@
 - Improved automated tests suite
 - Added Rubocop gem to the Gemfile (ruby syntax checking)
 - Added badges to README
-- Fix a security update: dependency ActiveJob < 4.2.11 has a vulnerability as described in [CVE-2018-16476](https://nvd.nist.gov/vuln/detail/CVE-2018-16476)
+- Fix a security issue: dependency ActiveJob < 4.2.11 has a vulnerability as described in [CVE-2018-16476](https://nvd.nist.gov/vuln/detail/CVE-2018-16476)
 - [TODO DEPLOY] `rake db:migrate`
 - [TODO DEPLOY] `bundle install`
 
diff --git a/Gemfile b/Gemfile
index d377cba3c..964fbddea 100644
--- a/Gemfile
+++ b/Gemfile
@@ -85,7 +85,7 @@ gem 'kaminari'
 
 gem 'figaro'
 
-gem 'bootstrap-sass'
+gem 'bootstrap-sass', '>= 3.4.1'
 gem 'font-awesome-rails'
 
 # Image processing ruby wrapper for ImageMagick
diff --git a/Gemfile.lock b/Gemfile.lock
index 7b689777c..22fe64557 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -60,9 +60,8 @@ GEM
       json
     arel (6.0.4)
     ast (2.4.0)
-    autoprefixer-rails (5.1.8)
+    autoprefixer-rails (9.4.9)
       execjs
-      json
     awesome_print (1.6.1)
     axiom-types (0.1.1)
       descendants_tracker (~> 0.0.4)
@@ -74,9 +73,9 @@ GEM
     bcrypt (3.1.10)
     binding_of_caller (0.7.3)
       debug_inspector (>= 0.0.1)
-    bootstrap-sass (3.3.4.1)
-      autoprefixer-rails (>= 5.0.0.1)
-      sass (>= 3.2.19)
+    bootstrap-sass (3.4.1)
+      autoprefixer-rails (>= 5.2.1)
+      sassc (>= 2.0.0)
     buftok (0.2.0)
     builder (3.2.3)
     byebug (8.2.3)
@@ -395,6 +394,9 @@ GEM
       sprockets (>= 2.8, < 4.0)
       sprockets-rails (>= 2.0, < 4.0)
       tilt (~> 1.1)
+    sassc (2.0.0)
+      ffi (~> 1.9.6)
+      rake
     sdoc (0.4.1)
       json (~> 1.7, >= 1.7.7)
       rdoc (~> 4.0)
@@ -516,7 +518,7 @@ DEPENDENCIES
   awesome_print
   axlsx!
   axlsx_rails
-  bootstrap-sass
+  bootstrap-sass (>= 3.4.1)
   byebug
   capistrano
   capistrano-maintenance (= 0.0.5)