Enhancing isitfedoraruby
Achilleas Pipinellis
axilleaspi at ymail.com
Fri Apr 25 12:25:17 UTC 2014
On 04/22/2014 02:21 PM, Josef Stribny wrote:
>> Your project have been accepted for GSoC. Congrats!
>
> Congrats from me as well!
>
> Regarding the ideas about isitfedoraruby, I once told Vit I would really like
> to see checks that our gems are properly patched against released CVEs
> (so that nobody says "oh you have rails 3.2.8, everybody knows its vulnerable"),
The check part I guess could be achieved with a little web scrapping and
checking against rawhide.
> but the proper solution would be to have all the reproducers and do real checks
> so you can be sure no regression was introduced.
>
Are you talking about something like Continuous Integration? I had a
talk with Vit about it, to integrate Fedora in http://rubyci.org/ as a
side project.
--
FAS : axilleas
GPG : 0xABF99BE5
Blog: http://axilleas.me
More information about the ruby-sig
mailing list