New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump ruby
to 3.2.0
#6436
Bump ruby
to 3.2.0
#6436
Conversation
Note: Ruby |
Bundler will be updated in #6303. Regarding Ruby, those regexp improvements do look appealing for us :) One issue is indeed what to do with Bundler 1. I see several options:
I think the latter may be the best course of action because it allows us to effectively get rid of Bundler 1 internally, while still being able to provide updates to lockfiles locked to Bundler 1. |
Thanks for opening this PR. I think the Bundler v1 discussion could easily become larger than just this PR, so I opened: So let's continue the discussion there about both short and long-term plans for Bundler v1? |
Sure @jeffwidman, makes total sense to split that out, you beat me to that :) |
f6f9881
to
5adf6b4
Compare
a75b319
to
7c3a844
Compare
7c3a844
to
9d1c781
Compare
We'd discussed this privately a bit already, just echo'ing that here, I have a concern around multiple sources, in bundler 2 those are split out in the lockfile. Bundler 1 might be able to handle the new format without issues, but if users were manually still upgrading using v1, they would experience massive diffs every time they update something after dependabot has touched the lockfile |
Thinking about this more, if we can reasonably remove bundler 1 I am supportive, but last time I checked it still saw quite a lot of usage, so we might feel uncomfortable doing so. If we want to keep supporting it for a bit longer, how painful would it be to run two rubies side by side? We could leverage some ruby version switcher, or just install both in different paths and invoke them separately? |
TBH, the metrics I've seen internally for So that number I'd expect to start moving more than it has, which makes me suspect something might be amiss with how we've instrumented that data. I know both myself and Deivid have looked at the code and it looks correct, but as a triple-check I've been meaning to dig a bit deeper and find some open source repos that are emitting Anyway, this is probably a conversation better had internally but wanted to mention it on this thread so we don't forget and prematurely invest a bunch of time into supporting |
Another PR managed to workaround updating Ruby w/o updating bundler: |
Bumps
ruby
to3.2.0
and bundler to 2.4.3Ruby
3.2.0
introduces two features that improve Regex expression parsing.From the
3.2.0
release notes:Improved Regexp matching algorithm
Regexp timeout