Skip to content

CHEF-28672 Remove old rexml bundled gems#7653

Merged
Nik08 merged 2 commits intoinspec-5from
nm/rexml-old-gems
Dec 9, 2025
Merged

CHEF-28672 Remove old rexml bundled gems#7653
Nik08 merged 2 commits intoinspec-5from
nm/rexml-old-gems

Conversation

@Nik08
Copy link
Copy Markdown
Contributor

@Nik08 Nik08 commented Dec 3, 2025
edited
Loading

Description

Dependency management and security improvements:

  • Added a new remove-old-gems software definition (omnibus/config/software/remove-old-gems.rb) that removes all versions of the rexml gem older than 3.4.2 during the build, ensuring only safe versions are present.
  • Updated the inspec.rb project configuration to include the remove-old-gems dependency, integrating this cleanup step into the build process.

Related Issue

Types of changes

  • Bug fix (non-breaking change which fixes an issue)
  • New content (non-breaking change)
  • Breaking change (a content change which would break existing functionality or processes)

Checklist:

  • I have read the CONTRIBUTING document.

@Nik08
Remove vulnerable rexml bundle gems
1d28e54 
Signed-off-by: Nik08 <nikita.mathur@progress.com>
@Nik08 Nik08 changed the title Remove vulnerable rexml bundled gems CHEF-28672 Remove vulnerable rexml bundled gems Dec 3, 2025
@Nik08
Changes in option for removal of gems
06a2c4c 
Signed-off-by: Nik08 <nikita.mathur@progress.com>
@Nik08
Copy link
Copy Markdown
Contributor Author

Nik08 commented Dec 8, 2025
edited
Loading

Adhoc builds:
-https://buildkite.com/chef/inspec-inspec-inspec-5-omnibus-adhoc/builds/219#_
-https://buildkite.com/chef/inspec-inspec-inspec-5-omnibus-adhoc/builds/226

@Nik08 Nik08 marked this pull request as ready for review December 8, 2025 14:16
@Nik08 Nik08 requested a review from a team as a code owner December 8, 2025 14:16
@Nik08 Nik08 requested review from balasubramanian-s and clintoncwolfe and removed request for a team December 8, 2025 14:16
@Nik08 Nik08 merged commit 6be7128 into inspec-5 Dec 9, 2025
36 checks passed
@Nik08 Nik08 deleted the nm/rexml-old-gems branch December 9, 2025 07:56
@Nik08 Nik08 changed the title CHEF-28672 Remove vulnerable rexml bundled gems CHEF-28672 Remove old rexml bundled gems Dec 10, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@balasubramanian-s balasubramanian-s balasubramanian-s approved these changes

@clintoncwolfe clintoncwolfe Awaiting requested review from clintoncwolfe clintoncwolfe is a code owner automatically assigned from inspec/inspec-core-team

+1 more reviewer

@sathish-progress sathish-progress sathish-progress approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@Nik08 Nik08

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@Nik08 @balasubramanian-s @sathish-progress