Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add April Monthly Update #79

Merged
merged 5 commits into from
May 12, 2021
Merged

Add April Monthly Update #79

Changes from 1 commit
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
7f6d5ba
april-monthly-update
lauragift21 May 10, 2021
722da9c
add updates and suggestions from David
lauragift21 May 10, 2021
156993e
quick fix grammer
lauragift21 May 10, 2021
674b09a
update with Aditya suggestions
lauragift21 May 10, 2021
dbbd0a3
grammer fix and added ruby toolbox section
lauragift21 May 12, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
43 changes: 43 additions & 0 deletions _posts/2021-05-09-april-rubygems-update.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,43 @@
---
title: April 2021 RubyGems Updates
layout: post
author: Gift Egwuenu
author_email: laurandidi21@gmail.com
---

Welcome to the RubyGems monthly update! As part of our efforts at [Ruby Together](http://rubytogether.org/), we publish a recap of the work that we’ve done the previous month. Read on to find out what updates were made to [RubyGems](https://github.com/rubygems/rubygems) and [RubyGems.org](https://github.com/rubygems/rubygems.org) in April.

## RubyGems News
This Month in RubyGems, we released a new version for **RubyGems(3.2.16)** and **Bundler(2.2.16)**.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We also released Rubygems 3.2.17 and Bundler 2.2.17, the 5th of May. Releases didn't fall inside April, but most of the work for them was done during April, so I guess it's worth mentioning them.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes for sure, they are indeed worth mentioning


RubyGems saw several bug fixes and updates this month, some of which include the following:

- made sure specs are fetched from the right source when materializing - [#4562](https://github.com/rubygems/rubygems/pull/4562).
- merged a PR [#2836](https://github.com/rubygems/rubygems/pull/2836) that correctly handles symlinks when building gem packages by not adding any special handling.
- improved `bundle pristine` error if `BUNDLE_GEMFILE` does not exist - [#4536](https://github.com/rubygems/rubygems/pull/4536).
- fixed CI pipeline that was broken by third party releases of development dependencies.
- fixed ``"Permission denied"`` error when running Bundler specs that resulted in finding `ruby-install + chruby` to be the fix to the error - [#3957](https://github.com/rubygems/rubygems/issues/3957).
- fixed `bundle cache` with an up-to-date lockfile and specs not already installed - [#4554](https://github.com/rubygems/rubygems/pull/4554)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

In my opinion, the updates mentioned here should only be things relevant to our users, so they should appear in the respective changelogs (https://github.com/rubygems/rubygems/blob/bb93b974100e9ddff7043e648d762e8a412be04e/bundler/CHANGELOG.md#2217-may-5-2021, https://github.com/rubygems/rubygems/blob/bb93b974100e9ddff7043e648d762e8a412be04e/CHANGELOG.md#3217--2021-05-05). In particular, the entry about "fixed CI pipeline" and the entry about "fixed Permission denied" error shouldn't be included since they are just quality of life improvements for bundler developers, but not interesting for users.

Instead, I would mention the following as "highlights" for this month:

  • We fixed an issue affecting custom sidekiq-pro gem servers, which was preventing users from upgrading their sidekiq-pro version.
  • We made bundler more secure by preventing any credentials from being logged to the screen, thus potentially preventing users from unintentionally leaking them when pasting them to a Github issue or similar situations.
  • We fixed a few resolution & materialization issues in bundler, and also improved rubygems handling of repositories including symlinks.

And I would include links to all releases made for more details.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, thanks @deivid-rodriguez. I thought it's worth checking with you about the updates I added. Totally make sense to only add relevant updates I will take them out and add these ones.

Awaiting the relevant links so I can reference them.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Great! For sidekiq-pro issue, it's this link: rubygems/rubygems#4563.

For issues of redacting credentials, these: rubygems/rubygems#4564, rubygems/rubygems#4566.

For resolution and materialization issues, these: rubygems/rubygems#4556, rubygems/rubygems#4562. and for the symlinks rubygems issue, this one: rubygems/rubygems#2836.

You can also mention the changelogs for all versions for more details:

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you!


In April, Rubygems gained [101 new commits](https://github.com/rubygems/rubygems/compare/master@%7B2021-04-01%7D...master@%7B2021-04-30%7D), contributed by 15 authors. There were 1591 additions and 391 deletions across 134 files.

## RubyGems.org News
In April, RubyGems.org saw several bug fixes and updates this month, some of which include the following:
sonalkr132 marked this conversation as resolved.
Show resolved Hide resolved

sonalkr132 marked this conversation as resolved.
Show resolved Hide resolved
- [enable auth requirement for URL purge requests to Fastly](https://github.com/rubygems/rubygems.org/commit/da99700a6c727a4381648e4b687d4d3f08f67a25).
- updated to elasticsearch 7 - [#2701](https://github.com/rubygems/rubygems.org/pull/2701).
sonalkr132 marked this conversation as resolved.
Show resolved Hide resolved
- added validation for `unconfirmed_email` regex - [#2694](https://github.com/rubygems/rubygems.org/pull/2694).
- fixed `RecordNotFound` in `OwnershipConfirmation` mailer - [#2695](https://github.com/rubygems/rubygems.org/pull/2695).
- reduced abusers rate limit to 30 rps - [#2703](https://github.com/rubygems/rubygems.org/pull/2703).
- enabled Multi-Factor Authentication(MFA) instruction only if `current_user` has MFA disabled - [#2705](https://github.com/rubygems/rubygems.org/pull/2705).

sonalkr132 marked this conversation as resolved.
Show resolved Hide resolved
For this Month, [RubyGems.org](https://github.com/rubygems/rubygems.org) gained [45 new commits](https://github.com/rubygems/rubygems.org/compare/master@%7B2021-04-01%7D...master@%7B2021-04-30%7D), contributed by 9 authors. There were 424 additions and 52 deletions across 34 files.

## Ruby Toolbox News

In April, we focused on maintenance work that involved fixing random failures in the Ruby Toolbox visual regression CI tests, dependency upgrades, fixes on a webhook reception, and renaming default git branches to main across all Ruby Toolbox repositories.

As always, we continue to fix bugs, review and merge PR’s and reply to support tickets.

---
Learn more about contributing to RubyGems by visiting the [RubyGems Contributing Guide](https://github.com/rubygems/rubygems/blob/master/CONTRIBUTING.md#how-to-contribute). We welcome all kinds of contributions, including bug fixes, feature implementation, writing and updating documentation, and bug triage.