Merge pull request Shopify#349 from mikeyhew/fixed-size-secure-compare

Use fixed-size `secure_compare` in `WebhookVerification#hmac_valid?`

lib/shopify_app/webhook_verification.rb

@@ -22,7 +22,7 @@ def verify_request
     def hmac_valid?(data)
       secret = ShopifyApp.configuration.secret
       digest = OpenSSL::Digest.new('sha256')
-      ActiveSupport::SecurityUtils.variable_size_secure_compare(
+      ActiveSupport::SecurityUtils.secure_compare(
         shopify_hmac,
         Base64.encode64(OpenSSL::HMAC.digest(digest, secret, data)).strip
       )