Skip to content

Upgrade RUBY on supplejack_common #112

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
boost-tim merged 3 commits into from
Jun 16, 2025
Merged

Upgrade RUBY on supplejack_common #112

boost-tim merged 3 commits into from
Jun 16, 2025

Conversation

@boost-tim
Copy link
Contributor

@boost-tim boost-tim commented Jun 13, 2025

As Dan, I want Ruby up to date on the supplejack_common, so that we are safe and secure from CVE's

Acceptance Criteria
-Rails is running on the latest Ruby (3.4.5 at the time of writing)
-The app using the latest Alpine version available for that ruby version
-NodeJS is upgraded to the version available on that Alpine version

Risks
?

Notes
-Upgrading Ruby will upgrade the Alpine version we're on and the NodeJS version too. This will help to avoid CVEs
-This might be the previous upgrade 157787

@boost-tim boost-tim requested a review from hapiben June 13, 2025 01:52
@github-actions
Copy link

github-actions bot commented Jun 13, 2025

Code quality score

Lovely, the code quality is unchanged for this PR 😊

Ruby file count Similarity score (flay) ABC complexity (flog) Code smells (reek) TOTALS
base 62 0.16 6.0 20.0 26.16
this branch 62 0.16 6.0 20.0 26.16
difference 0 0.0 0.0 0.0 0.0

@hapiben
Copy link
Member

hapiben commented Jun 13, 2025

There might be other areas where we use 3.2.2 for example: https://github.com/DigitalNZ/supplejack_common/blob/main/.github/workflows/test.yml

paul-mesnilgrente
paul-mesnilgrente reviewed Jun 16, 2025
View reviewed changes
@boost-tim boost-tim merged commit 491d088 into main Jun 16, 2025
8 checks passed
@boost-tim boost-tim deleted the tw/upgrade-ruby branch June 16, 2025 22:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@hapiben hapiben hapiben approved these changes

@paul-mesnilgrente paul-mesnilgrente paul-mesnilgrente approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@boost-tim @hapiben @paul-mesnilgrente