- Bumped Docker base image from Ruby 3.2.3-slim-bullseye to 3.2.6-slim-bullseye, via PR #108 from @jonasbn
-
Bumped Docker base image from Ruby 3.2.2-slim-bullseye to 3.2.3-slim-bullseye, via PR #82 from @snyk-bot
-
Cleaned up dependencies after multiple tests and updates, dependencies might be older, but the build works.
-
Changes to build to be based on
Gemfile.lock
instead ofGemfile
so the build is more predictable
-
Bumped dependencies:
- sanitize from version 6.0.1 to 6.0.2
- nokogiri to 1.15.3
- racc to 1.7.1
- mini_portile2 to 2.8.2
- All via PR #63 from @dependabot
-
Bumped dependency: nokogiri from version 1.14.0 to 1.14.3, via PR #60 from @dependabot
- Bumped from Ruby 3.2.1-slim-bullseye to 3.2.2-slim-bullseye, via PR #59 from @dependabot
-
Bumped from Ruby 3.2.0-slim-bullseye to 3.2.1-slim-bullseye, via PR #56 from @dependabot
-
Bumped dependency: sanitize from version 6.0.0 to 6.0.1, via PR #55 from @dependabot
-
Bumped from Ruby 3.1.3-slim-bullseye to 3.2.0-slim-bullseye, via PR #52 from @dependabot
-
Added
Gemfile.lock
to Docker image generation -
Bumped Bundler version in
Gemfile.lock
-
Renamed example file from
samble.rb
tosample.rb
, thanks to @suredream who patched cheatset via PR #39, I believe I am the one who introduced this spelling error, both in my own repository and in the cheatset repository
-
Bumped from Ruby 3.1.2-slim-bullseye to 3.1.3-slim-bullseye, via PR #49 from @dependabot
-
Bumped from Ruby 3.1.1-slim-bullseye to 3.1.2-slim-bullseye, via PR #38 from @dependabot
- Bumped from Ruby 3.1.0-slim-bullseye to 3.1.1-slim-bullseye, via PR #32 from @dependabot
-
cheatset
has been updated with a bug fix release: 1.4.6 for details please see the GitHub repository - thanks @dependabot -
The Docker base image has been changed to a slim variation, which reduces the image size significantly
cheatset
has been updated with a bug fix release: 1.4.5 for details please see the GitHub repository - thanks @dependabot
- Changed Docker base image from from Ruby 3.1.0-buster to 3.1.0-bullseye. Meaning we are changing from Debian 10 to Debian 11. This aims to decrease the exposure to number of known vulnerabilities.
Data from Snyk
- ruby.3.1.0-buster (388 vulnerabilities), by severity
- 6 critical
- 42 high
- 68 medium
- 272 low
Report from Snyk, 29 days old at the time of writing
- ruby:3.1.0-bullseye (196), by severity
- 29 high
- 35 medium
- 132 low
Manual scan:
- ruby:3.1.0-bullseye (196), by severity
- 11 critical
- 18 high
- 35 medium
- 132 low
This does increase the number of critical issues, but it decreases the total of vulnerabilities.
- Bumped from Ruby 3.0.3-buster to 3.1.0-buster, via PR #24 from @dependabot
- Bumped from Ruby 3.0.2-buster to 3.0.3-buster, via PR #19 from @dependabot
-
cheatset
gem updated to version 1.4.3. My upstream PR was accepted and the deprecated URI andcheatset
now works with Ruby 3 -
Pinned the version of
cheatset
as recommended in this blog post by Florin Lipan -
@dependabot provided a PR #12 updating Ruby base image from 2.7-buster to 3.0.2-buster
-
Bumped from Ruby 2.6.6-stretch to 2.7-buster, via PR #3
-
Warnings on URI being deprecated, have created a PR upstream exchanging URI for CGI as per recommendation from the documentation.
cheatset
version 1.4.2 does not work with Ruby 3
- @dependabot provided a PR #1 updating Ruby base image from 2.5-stretch to 2.6.6-stretch
- Initial release
- Basic use case for generation of documentation sets implemented, meaning support for the
generate
command