summaryrefslogtreecommitdiff
path: root/omnibus/Gemfile.lock
Commit message (Collapse)AuthorAgeFilesLines
* Update Ruby to 2.6.6, Rake to 12.3.3 and libarchive to 3.4.2bumps_15Tim Smith2020-04-011-10/+8
| | | | | | | | Ruby resolves 2 CVEs: https://www.ruby-lang.org/en/news/2020/03/31/ruby-2-6-6-released/ Rake is bundled in Ruby libarchive updated to 3.4.2 for multiple security issues including CVE-2019-19221 and CVE-2020-9308 Signed-off-by: Tim Smith <tsmith@chef.io>
* Update InSpec 4.18.100, Ohai to 15.8, and Fauxhai to 8Tim Smith2020-03-161-34/+34
| | | | | | Update many other deps as well Signed-off-by: Tim Smith <tsmith@chef.io>
* Update all deps to latestupdates_15_v2Tim Smith2020-02-101-3/+3
| | | | Signed-off-by: Tim Smith <tsmith@chef.io>
* Update inspec-core to 4.18.85Tim Smith2020-02-061-1/+4
| | | | | | Pull in the latest inspec release. Signed-off-by: Tim Smith <tsmith@chef.io>
* Update all the Chef 15 deps to the latestTim Smith2020-02-051-6/+6
| | | | | | Mostly to pull in the latest FFI Signed-off-by: Tim Smith <tsmith@chef.io>
* Adding entitlement for unsigned memory executionjm/add_unsigned_memory_entilement_15Jon Morrow2020-02-011-5/+5
| | | | | | | ffi loads c code into memory in an unsigned way and this allows workstation to work with the hardened runtime. Signed-off-by: Jon Morrow <jmorrow@chef.io>
* Update train-core and win32-serviceupdatesTim Smith2020-01-301-1/+1
| | | | | | train-core includes multiple bugfixes and win32-service includes fixes for the new FFI to prevent log spam Signed-off-by: Tim Smith <tsmith@chef.io>
* Fixes all notarization issuesJon Morrow2020-01-271-21/+23
| | | | | | | | | This changes makes the neccessary changes to enable the pkg to pass apples notarization requirements. 1. Update omnibus and omnibus-software to versions that support deep signing 2. Drop 'Developer ID Installer:' from signing key. This lets sigining pick up the correct key for what is being signed. Signed-off-by: Jon Morrow <jmorrow@chef.io>
* Update ohai to 15.7.4Tim Smith2020-01-221-2/+2
| | | | | | This fixes issues with dmi data not showing up due to changes in chef-utils. Signed-off-by: Tim Smith <tsmith@chef.io>
* Update Ohai to 15.7.4Tim Smith2020-01-211-2/+2
| | | | Signed-off-by: Tim Smith <tsmith@chef.io>
* Point at the 15-stable ohai branchTim Smith2020-01-171-2/+2
| | | | Signed-off-by: Tim Smith <tsmith@chef.io>
* Update openssl to 1.0.2uTim Smith2020-01-161-10/+10
| | | | | | This resolves a CVE. in openssl 1.0.2t Signed-off-by: Tim Smith <tsmith@chef.io>
* bump to license_scount 1.1.3Lamont Granquist2020-01-131-3/+3
| | | | Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
* Update to license_scout 1.1.2Tim Smith2020-01-131-4/+4
| | | | | | This should fix failures validating the sync gem. Signed-off-by: Tim Smith <tsmith@chef.io>
* Update all deps to currentTim Smith2020-01-131-25/+26
| | | | | | Runtime and omnibus to current Signed-off-by: Tim Smith <tsmith@chef.io>
* Update libarchive to 1.0Tim Smith2019-12-281-1/+1
| | | | Signed-off-by: Tim Smith <tsmith@chef.io>
* Update all omnibus deps to the latestTim Smith2019-12-271-23/+23
| | | | Signed-off-by: Tim Smith <tsmith@chef.io>
* bump omnibus-software + rhel6 fixLamont Granquist2019-12-061-1/+1
| | | | | | most notably pulls in the -fstack-protector-strong fix for rhel6 Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
* Update omnnibus-software to add further ruby cleanupTim Smith2019-12-051-1/+1
| | | | | | This will drop our install size on disk by 4% Signed-off-by: Tim Smith <tsmith@chef.io>
* Bump Omnibus to the latestTim Smith2019-12-041-4/+4
| | | | Signed-off-by: Tim Smith <tsmith@chef.io>
* Update Ohai and pull in Ruby perf improvementsTim Smith2019-12-041-1/+1
| | | | | | | This is a much smaller Ohai and ruby that runs --version 25% faster on windows by improving require performance Signed-off-by: Tim Smith <tsmith@chef.io>
* Bump omnibus-software to remove libtool+pkg-configLamont Granquist2019-12-041-34/+41
| | | | | | plus other changes. Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
* Revert "Bump omnibus-software to remove libtool+pkg-config"Lamont Granquist2019-12-041-41/+34
| | | | This reverts commit 6bce91fbf63bd2aa5fe48afdf13ca416d44c348f.
* Bump omnibus-software to remove libtool+pkg-configLamont Granquist2019-12-041-34/+41
| | | | | | plus other changes. Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
* Update InSpec to 4.18Tim Smith2019-11-141-8/+8
| | | | | | I increased the pin in the gemfile since bundler didn't seem to want to pull in a 4.18 build. Note this does lower our rspec dep due to the pin in InSpec. Signed-off-by: Tim Smith <tsmith@chef.io>
* Update all deps to the latest including omnibus-software with faster RubyTim Smith2019-11-131-12/+11
| | | | | | This includes the faster ruby patch in omnibus-software Signed-off-by: Tim Smith <tsmith@chef.io>
* Bump all deps to currentTim Smith2019-11-121-14/+16
| | | | Signed-off-by: Tim Smith <tsmith@chef.io>
* Update lixml2, libxslt, and nokogiri to the latestbump_lib_depsTim Smith2019-11-041-2/+2
| | | | | | Resolve multiple CVEs in these libs Signed-off-by: Tim Smith <tsmith@chef.io>
* Update omnibusJaymala Sinha2019-11-041-2/+2
| | | | Signed-off-by: Jaymala Sinha <jsinha@chef.io>
* Bump omnibus to 6.1.10Bryan McLellan2019-11-021-2/+2
| | | | | | Pull in fix https://github.com/chef/omnibus/pull/910 Signed-off-by: Bryan McLellan <btm@chef.io>
* Allow for the mixlib-authentication 3.x gemTim Smith2019-10-311-6/+6
| | | | | | | This gem is 70k smaller than the 2.x gem since it doesn't ship extra files Signed-off-by: Tim Smith <tsmith@chef.io>
* Bump all deps to the latest versionsTim Smith2019-10-311-11/+11
| | | | Signed-off-by: Tim Smith <tsmith@chef.io>
* Update train to 3.1.4 and update omnibus-software to fix AIX rubyTim Smith2019-10-151-5/+5
| | | | | | Update everything to current Signed-off-by: Tim Smith <tsmith@chef.io>
* Require train ~3.1 for bootstrapping and openssl 1.0.2tbumps_2019Tim Smith2019-10-081-2/+2
| | | | | | Somehow we missed the actual openssl 1.0.2t bump. We need this train bump to fix a bug in bootstrap that had to happen on the train side. Signed-off-by: Tim Smith <tsmith@chef.io>
* Bump Ruby to 2.6.5 to address CVEs #8951Christopher A. Snapp2019-10-021-2/+2
| | | | Signed-off-by: Christopher A. Snapp <csnapp@chef.io>
* bump omnibus gemslcg/bump-omnibus2Lamont Granquist2019-09-301-2/+2
| | | | Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
* Update inspec to 4.17.11Tim Smith2019-09-301-4/+4
| | | | Signed-off-by: Tim Smith <tsmith@chef.io>
* Require train-winrm >= 0.2.5train_winrmTim Smith2019-09-241-1/+1
| | | | | | 0.2.4 and before are entirely broken for bootstrapping. Signed-off-by: Tim Smith <tsmith@chef.io>
* bump omnibus-softwareLamont Granquist2019-09-191-3/+2
| | | | Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
* bump gemsLamont Granquist2019-09-191-8/+10
| | | | Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
* Update openssl to 1.0.2tTim Smith2019-09-111-1/+1
| | | | | | | | | Fixed a padding oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey (CVE-2019-1563) For built-in EC curves, ensure an EC_GROUP built from the curve name is used even when parsing explicit parameters Compute ECC cofactors if not provided during EC_GROUP construction (CVE-2019-1547) Document issue with installation paths in diverse Windows builds (CVE-2019-1552) Signed-off-by: Tim Smith <tsmith@chef.io>
* Update deps to bring in the new Ruby definitionTim Smith2019-09-091-8/+8
| | | | Signed-off-by: Tim Smith <tsmith@chef.io>
* Update train-winrm to 0.2.4libarchive_bumpTim Smith2019-09-041-3/+3
| | | | | | This includes the license file we need Signed-off-by: Tim Smith <tsmith@chef.io>
* Update libarchive to 3.4.0 and pin in omnibus_overrides.rbTim Smith2019-09-041-2/+2
| | | | | | | | | | | | | | | | | | May 18, 2019: Fixes for reading Android APK and JAR archives Apr 16, 2019: Support for non-recursive list and extract Apr 14, 2019: New tar option: --exclude-vcs Mar 27, 2019: Support for file and directory symlinks on Windows Mar 12, 2019: Important fixes for storing file attributes and flags Jan 20, 2019: Support for xz, lzma, ppmd8 and bzip2 decompression in ZIP files Oct 06, 2018: RAR 5.0 reader Signed-off-by: Tim Smith <tsmith@chef.io>
* Update InSpec to 4.16 and addressable to 2.7.0inspec_bump_416Tim Smith2019-08-301-4/+4
| | | | | | This also gets us the public_suffix update which we've been blocked on for a long time due to the pin in addressable Signed-off-by: Tim Smith <tsmith@chef.io>
* Update InSpec to 4.12 and Train to 3.0Tim Smith2019-08-291-10/+10
| | | | | | InSpec 4.12 pulls in Train 3.0, which removes the winrm functionality. We're adding it back via the new dep on train-winrm. The updated train also includes several bugfixes we need for bootstrapping. Signed-off-by: Tim Smith <tsmith@chef.io>
* Update omnibus build deps to the latestomnibusTim Smith2019-08-151-11/+11
| | | | | | Pull in the latest omnibus and omnibus-software updates. Signed-off-by: Tim Smith <tsmith@chef.io>
* Add artifactory to omnibus/Gemfile and update omnibus gemJeremiah Snapp2019-08-021-4/+6
| | | | | | | A new version of omnibus is required and the artifactory gem is required for the publish part of the build stage. Signed-off-by: Jeremiah Snapp <jeremiah@chef.io>
* Update Gemfile.lock to latest omnibusjsinha/add_rhel8Jaymala Sinha2019-07-301-9/+9
| | | | Signed-off-by: Jaymala Sinha <jsinha@chef.io>
* Update bzip2 from 1.0.6 -> 1.0.8 to resolve CVEsTim Smith2019-07-231-3/+3
| | | | | | | * bzip2recover: Fix use after free issue with outFile (CVE-2016-3189) * Make sure nSelectors is not out of range (CVE-2019-12900) Signed-off-by: Tim Smith <tsmith@chef.io>
View Lorry Controller Status