Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update omnibus builds to Ruby 2.6.6 #5198

Merged
merged 2 commits into from Aug 17, 2020
Merged

Update omnibus builds to Ruby 2.6.6 #5198

merged 2 commits into from Aug 17, 2020

Conversation

tas50
Copy link
Contributor

@tas50 tas50 commented Aug 12, 2020

2.6.5 has 2 CVEs in it:

CVE-2020-10663: Unsafe Object Creation Vulnerability in JSON (Additional fix)
CVE-2020-10933: Heap exposure vulnerability in the socket library

Signed-off-by: Tim Smith tsmith@chef.io

@tas50 tas50 requested a review from a team as a code owner August 12, 2020 20:17
@netlify
Copy link

netlify bot commented Aug 12, 2020
edited

Deploy preview for chef-inspec ready!

Built with commit 6bf4319

https://deploy-preview-5198--chef-inspec.netlify.app

@chef-expeditor
Copy link
Contributor

Hello tas50! Thanks for the pull request!

Here is what will happen next:

  1. Your PR will be reviewed by the maintainers.
  2. Possible Outcomes
    a. If everything looks good, one of them will approve it, and your PR will be merged.
    b. The maintainer may request follow-on work (e.g. code fix, linting, etc). We would encourage you to address this work in 2-3 business days to keep the conversation going and to get your contribution in sooner.
    c. Cases exist where a PR is neither aligned to Chef InSpec's product roadmap, or something the team can own or maintain long-term. In these cases, the maintainer will provide justification and close out the PR.

Thank you for contributing!

@tas50
Update omnibus builds to Ruby 2.6.6
07a5cfa 
2.6.5 has 2 CVEs in it:

    CVE-2020-10663: Unsafe Object Creation Vulnerability in JSON (Additional fix)
    CVE-2020-10933: Heap exposure vulnerability in the socket library

Signed-off-by: Tim Smith <tsmith@chef.io>
@tas50
Update the habitat tests to run on Ruby 2.6.6 as well
6bf4319 
Signed-off-by: Tim Smith <tsmith@chef.io>
@tas50 tas50 merged commit 0e96da6 into master Aug 17, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@clintoncwolfe clintoncwolfe clintoncwolfe approved these changes

@Schwad Schwad Schwad approved these changes

@stevendanna stevendanna Awaiting requested review from stevendanna

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@tas50 @clintoncwolfe @Schwad