Skip to content

Upgrade to rails 4.2.7.1 #283

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Jan 26, 2018
Merged

Upgrade to rails 4.2.7.1 #283

merged 2 commits into from
Jan 26, 2018

Conversation

sauloperez
Copy link
Collaborator

@sauloperez sauloperez commented Jan 11, 2018
edited
Loading

This will solve the most severe of the security vulnerabilities highlighted by GitHub. They are related to ActionView and ActiveRecord so we would be better off upgrading. You can see the full list of changes in rails/rails@v4.2.5.2...v4.2.7.1. Besides, as we all know it's a good practice to keep up to date ASAP.

The upgrade should be harmless as the changes are very limited. As soon as this passes CI, I'd give a general testing round and merge if we're happy with it.

@sauloperez
Upgrade from Rails 4.2.5.2 to 4.2.7.1
2fed22d 
There are a couple known security vulnerabilities related to ActiveView
and ActiveRecord.
@sauloperez sauloperez force-pushed the upgrade-to-rails4.2.7.1 branch from 6651497 to 2fed22d Compare January 11, 2018 11:09
@sauloperez
Upgrade rspec-rails from 3.4.0 to 3.5.2
1e1a66c 
The upgrade to 3.5 fixes the failure ruby/rake#116
@sauloperez
Copy link
Collaborator Author

sauloperez commented Jan 11, 2018
edited
Loading

I had to upgrade RSpec Rails as well in order to get rid of this well known failure ruby/rake#116. Basically, The RSpec rails version we were using calls a rake method that no longer exists.

@sauloperez
Copy link
Collaborator Author

sauloperez commented Jan 11, 2018
edited
Loading

#273 goes a bit further and upgrades Rails to 4.2.10 among other dependencies. I suggest we merge this one first so that then #273 it's a smaller change #conservative. Thoughts? cc @enricostano @sseerrggii

@sseerrggii
Copy link
Contributor

Tested 👍

@sauloperez sauloperez merged commit 78b5a8b into develop Jan 26, 2018
@sauloperez sauloperez deleted the upgrade-to-rails4.2.7.1 branch January 26, 2018 15:52
@sauloperez sauloperez mentioned this pull request Jan 30, 2018
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@enricostano enricostano enricostano approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@sauloperez @sseerrggii @enricostano