Commit graph

21 commits

Author SHA1 Message Date
Clinton Wolfe
11784ceb5d
Fix omnibus build which is picking ruby 2.7.4 which has vulnerability (#6341)
Signed-off-by: Vasu1105 <vasundhara.jagdale@chef.io>

Signed-off-by: Vasu1105 <vasundhara.jagdale@chef.io>
Co-authored-by: Vasu1105 <vasundhara.jagdale@chef.io>
2023-01-03 10:02:48 -05:00
jayashri garud
1d309c4fe8 Pin openssl to 1.1.1m
Signed-off-by: jayashri garud <jgarud@msystechnologies.com>
2022-02-16 11:35:51 +05:30
Tim Smith
19f74c9c88 Update OpenSSL on macOS to 1.1.l
1.1.1k is no longer there

Signed-off-by: Tim Smith <tsmith@chef.io>
2021-10-02 16:33:23 -07:00
Clinton Wolfe
8763b6e2ea Use ruby 2.7.4
Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
2021-07-21 20:47:14 -04:00
Clinton Wolfe
b7103d25ca
Merge pull request #5492 from inspec/new_ruby
Update Ruby in omnibus packages to 2.7.3
2021-05-02 20:37:18 -04:00
Tim Smith
a0d15f2908 Update openssl to 1.1.1k on macos
This resolves several CVEs

Signed-off-by: Tim Smith <tsmith@chef.io>
2021-04-30 12:20:01 -07:00
Tim Smith
05782c665f Update Ruby in omnibus packages to 2.7.3
This resolves a large number of bugs and fixes several CVEs

Signed-off-by: Tim Smith <tsmith@chef.io>
2021-04-30 12:18:38 -07:00
Clinton Wolfe
3bfc6d33bc Use openssl 1.1.1 on all MacOS, not just arm
Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
2021-03-17 13:12:57 -04:00
Clinton Wolfe
3e88bfdcb2 Conditionally use openssl 1.1.1j on m1
Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
2021-03-04 10:36:31 -05:00
Tim Smith
b25f13cd56 Update Ruby to 2.7.2
Now that Ruby 2.7.2 no longer throws deprecation warnings left and right
we should update InSpec to use the latest and greatest Ruby that we use
in Chef Infra Client and Workstation.

Signed-off-by: Tim Smith <tsmith@chef.io>
2020-10-16 10:53:59 -07:00
Tim Smith
07a5cfafc0 Update omnibus builds to Ruby 2.6.6
2.6.5 has 2 CVEs in it:

    CVE-2020-10663: Unsafe Object Creation Vulnerability in JSON (Additional fix)
    CVE-2020-10933: Heap exposure vulnerability in the socket library

Signed-off-by: Tim Smith <tsmith@chef.io>
2020-08-13 13:47:13 -07:00
Bryan McLellan
356e67720e Remove comment about the omnibus lock in overrides file
The comment about running `bundle exec rake dependencies:update_omnibus_gemfile_lock`
is copy-pasta from chef/chef. The inspec project does not commit any
Gemfile.lock files, including omnibus/Gemfile.lock, due to
`Gemfile.lock` being in the `.gitignore` file.

Signed-off-by: Bryan McLellan <btm@loftninjas.org>
2020-05-11 18:34:45 -04:00
tyler-ball
0dd05af06e No longer need to include rubygems or bundler software dep
Recent versions of Ruby have included Rubygems and Bundler, which they
did not always do. We also recently fixed some issues in Appbundler so
these software dependencies are no longer needed.

Signed-off-by: tyler-ball <tball@chef.io>
2020-05-08 16:40:51 -07:00
Tim Smith
6dc6c0826d Update Ruby to 2.6.5
This resolves multiple CVEs in ruby

https://www.ruby-lang.org/en/news/2019/10/01/ruby-2-6-5-released/
https://www.ruby-lang.org/en/news/2019/08/28/ruby-2-6-4-released/

Signed-off-by: Tim Smith <tsmith@chef.io>
2019-12-17 13:06:41 -08:00
Jaymala Sinha
4294866c62 Pin bundler to currently what ships in Ruby (1.17.2)
This will avoid double bundle versions

Signed-off-by: Jaymala Sinha <jsinha@chef.io>
2019-07-16 11:32:33 -04:00
Ryan Davis
a5309ea392 blindly applied chefstyle -a
Signed-off-by: Ryan Davis <zenspider@chef.io>
2019-06-11 18:52:03 -07:00
Tim Smith
ab7aabaf96 Upgrade to Ruby 2.6.3
It has a few bugfixes and support for the new Japanese cal.

Signed-off-by: Tim Smith <tsmith@chef.io>
2019-05-15 14:26:25 -07:00
Tim Smith
366245b398 Update to Ruby 2.6.2 and Rubygems 3.0.3
We thought we were riding the latest, but actually the overrides file wasn't wired up the same way it is in Chef. This properly sources that file and does a few other syncs from the chef config so we can diff things more easily.

Signed-off-by: Tim Smith <tsmith@chef.io>
2019-04-29 10:06:36 -07:00
Tim Smith
93b7f68448 Remove the omnibus override to use train 1.X
We don't want this anymore

Signed-off-by: Tim Smith <tsmith@chef.io>
2019-04-11 14:28:46 -07:00
Clinton Wolfe
6e141a5511 Linting
Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
2019-03-01 18:48:35 -05:00
Clinton Wolfe
04bfe5cc4c Force omnibus to link to train 1.7.4
Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
2019-03-01 13:25:17 -05:00