Update rack from 2.2.3 to 2.2.4 (!6255) · Merge requests · GitLab.org / omnibus-gitlab · GitLab

Takuya Noguchi requested to merge tnir-update-rack-to-2.2.4 into master Aug 06, 2022

What does this MR do?

Updates rack from 2.2.3 to 2.2.4 to address CVE-2022-30122 and CVE-2022-30123.

rack gem is required by chef-zero and rubocop-rails.

graph TD
  subgraph test
    chefspec
  end
  subgraph rubocop
    gitlab-styles --> rubocop-rails
  end
  subgraph default
    chefspec --> chef-cli
    chef-cli --> chef
    chef --> chef-zero
    chef-zero --> rack
    chefspec --> chef
    rubocop-rails --> rack
  end

Related issues

n/a

Checklist

See Definition of done.

For anything in this list which will not be completed, please provide a reason in the MR discussion

Required

Merge Request Title, and Description are up to date, accurate, and descriptive
MR targeting the appropriate branch
MR has a green pipeline on GitLab.com
[n/a] Pipeline is green on dev.gitlab.org if the change is touching anything besides documentation or internal cookbooks
trigger-package has a green pipeline running against latest commit

Expected (please provide an explanation if not completing)

[n/a] Test plan indicating conditions for success has been posted and passes
[n/a] Documentation created/updated
[n/a] Tests added
[n/a] Integration tests added to GitLab QA
[n/a] Equivalent MR/issue for the GitLab Chart opened

Edited Aug 06, 2022 by Takuya Noguchi