Bump ruby dependencies
What does this MR do and why?
Describe in detail what merge request is being backported and why
MR acceptance checklist
This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.
-
This MR is backporting a bug fix, documentation update, or spec fix, previously merged in the default branch. -
The MR that fixed the bug on the default branch has been deployed to GitLab.com (not applicable for documentation or spec changes). -
This MR has a severity label assigned (if applicable). -
Set the milestone of the merge request to match the target backport branch version. -
This MR has been approved by a maintainer (only one approval is required). -
Ensure the e2e:test-on-omnibus-ee
job has either succeeded or been approved by a Software Engineer in Test.
Note to the merge request author and maintainer
If you have questions about the patch release process, please:
- Refer to the patch release runbook for engineers and maintainers for guidance.
- Ask questions on the
#releases
Slack channel (internal only).
Merge request reports
Activity
changed milestone to %17.2
added groupauthentication maintenancedependency typemaintenance labels
assigned to @atevans
added pipelinetier-1 label
added devopsgovern sectionsec labels
- Resolved by Aboobacker MK
Dependency change review report
Please wait to merge until below tasks are completed by @gitlab-com/gl-security/appsec
- Review metadata report and resolve this thread. Review guidelines are at handbook page
Click to view metadata analysis report
Modified Dependency: omniauth-saml (2.2.1) Location:
Gemfile.lock
Version diffsChecks passed: 6/6
-
️ Latest version: 2.2.1 released on: 2024-09-11. URL: https://rubygems.org/gems/omniauth-saml -
Latest version is in use. -
Total downloads: 45538701 -
Reverse dependencies: 11 -
Total number of releases: 26 -
Latest version age (months): 0 -
Source project in Github not archived. -
️ Maintainer emails are private. Email domain check skipped.
Modified Dependency: ruby-saml (1.17.0) Location:
Gemfile.lock
Version diffsChecks passed: 6/6
-
️ Latest version: 1.17.0 released on: 2024-09-10. URL: https://rubygems.org/gems/ruby-saml -
Latest version is in use. -
Total downloads: 91301789 -
Reverse dependencies: 19 -
Total number of releases: 86 -
Latest version age (months): 0 -
Source project in Github not archived. -
️ Maintainer emails are private. Email domain check skipped.
This automation is under testing, please leave your feedback in the issue.
requested review from @tachyons-gitlab
added pipeline:mr-approved label
added pipelinetier-3 pipeline:run-e2e-omnibus-once labels and removed pipelinetier-1 label
Before you set this MR to auto-merge
This merge request will progress on pipeline tiers until it reaches the last tier: pipelinetier-3. We will trigger a new pipeline for each transition to a higher tier.
Before you set this MR to auto-merge, please check the following:
- You are the last maintainer of this merge request
- The latest pipeline for this merge request is pipelinetier-3 (You can find which tier it is in the pipeline name)
- This pipeline is recent enough (created in the last 8 hours)
If all the criteria above apply, please set auto-merge for this merge request.
See pipeline tiers and merging a merge request for more details.
- Resolved by Mayra Cabrera
@tachyons-gitlab
, thanks for approving this merge request.This is the first time the merge request has been approved. Please ensure the
e2e:test-on-omnibus-ee
job has succeeded. If there is a failure, a Software Engineer in Test (SET) needs to confirm the failures are unrelated to the merge request. If there's no SET assigned to this team, ask for assistance on the#test-platform
Slack channel.
- A deleted user
added backend label
2 Warnings Backporting to older releases requires an exception request process The e2e:package-and-test-ee
job needs to succeed or have approval from a Software Engineer in Test.
Read the "QA e2e:package-and-test-ee" section for more details.1 Message CHANGELOG missing: If this merge request needs a changelog entry, add the
Changelog
trailer to the commit message you want to add to the changelog.If this merge request doesn't need a CHANGELOG entry, feel free to ignore this message.
Reviewer roulette
Category Reviewer Maintainer backend @SamWord
(UTC-4, 3 hours ahead of author)
@dbalexandre
(UTC+0, 7 hours ahead of author)
Please refer to documentation page for guidance on how you can benefit from the Reviewer Roulette, or use the GitLab Review Workload Dashboard to find other available reviewers.
Rubygems
This merge request adds, or changes a Rubygems dependency. Please review the Gemfile guidelines.
QA
e2e:package-and-test-ee
@atevans, the
package-and-test
job must complete before merging this merge request.*If there are failures on the
package-and-test
pipeline, ping your team's associated Software Engineer in Test (SET) to confirm the failures are unrelated to the merge request. If there's no SET assigned, ask for assistance on the#test-platform
Slack channel.If needed, you can retry the
danger-review
job that generated this comment.Generated by
Dangeradded typebug label and removed typemaintenance label
removed maintenancedependency label
E2E Test Result Summary
allure-report-publisher
generated test report!e2e-package-and-test:
test report for 51c53e28expand test summary
+---------------------------------------------------------------------+ | suites summary | +----------------+--------+--------+---------+-------+-------+--------+ | | passed | failed | skipped | flaky | total | result | +----------------+--------+--------+---------+-------+-------+--------+ | Systems | 7 | 0 | 0 | 0 | 7 | ✅ | | Govern | 109 | 0 | 8 | 2 | 117 | ✅ | | Plan | 90 | 0 | 9 | 0 | 99 | ✅ | | Verify | 51 | 0 | 15 | 0 | 66 | ✅ | | Create | 425 | 0 | 48 | 0 | 473 | ✅ | | Package | 30 | 1 | 14 | 0 | 45 | ❌ | | GitLab Metrics | 2 | 0 | 1 | 0 | 3 | ✅ | | Manage | 30 | 0 | 15 | 3 | 45 | ✅ | | Monitor | 12 | 0 | 13 | 0 | 25 | ✅ | | Analytics | 3 | 0 | 0 | 0 | 3 | ✅ | | Fulfillment | 4 | 0 | 7 | 0 | 11 | ✅ | | Data Stores | 43 | 0 | 14 | 0 | 57 | ✅ | | Secure | 3 | 0 | 2 | 0 | 5 | ✅ | | Configure | 1 | 0 | 3 | 0 | 4 | ✅ | | Ai-powered | 1 | 0 | 1 | 0 | 2 | ✅ | | Release | 5 | 0 | 1 | 0 | 6 | ✅ | | Growth | 0 | 0 | 2 | 0 | 2 | ➖ | | ModelOps | 0 | 0 | 1 | 0 | 1 | ➖ | +----------------+--------+--------+---------+-------+-------+--------+ | Total | 816 | 1 | 154 | 5 | 971 | ❌ | +----------------+--------+--------+---------+-------+-------+--------+
removed pipeline:run-e2e-omnibus-once label
- Resolved by Adil Farrukh
@atevans Thee2e:package-and-test-ee
job has failed.-
e2e:package-and-test-ee
pipeline: https://gitlab.com/gitlab-org/gitlab/-/pipelines/1452433769
e2e:package-and-test-ee
pipeline is allowed to fail due its flakiness. Failures should be investigated to guarantee this backport complies with the Quality standards.Ping your team's associated Software Engineer in Test (SET) to confirm the failures are unrelated to the merge request. If there's no SET assigned, ask for assistance on the
#test-platform
Slack channel. -
assigned to @mayra-cabrera
unassigned @mayra-cabrera
mentioned in commit 5b618608