Followed up CVE-2022-39253 for bundler examples

author: Hiroshi SHIBATA <hsbt@ruby-lang.org> 2022-10-20 14:36:06 +0900
committer: Hiroshi SHIBATA <hsbt@ruby-lang.org> 2022-10-20 14:36:06 +0900
commit: 4f1e0bfacd93c28bff549e2f3603c3b4942429a3 (patch)
tree: 3fcb5522b3e758188ca8864c1d0a01be8700ae7f /spec/bundler/update
parent: 0a43a040b4f2f08682d11e20d901ba6d8cc26cfe (diff)
download: ruby-4f1e0bfacd93c28bff549e2f3603c3b4942429a3.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/spec/bundler/update/git_spec.rb b/spec/bundler/update/git_spec.rb
index da92cab1cc..427a0bb713 100644
--- a/spec/bundler/update/git_spec.rb
+++ b/spec/bundler/update/git_spec.rb
@@ -124,6 +124,9 @@ RSpec.describe "bundle update" do
 
     describe "with submodules" do
       before :each do
+        # CVE-2022-39253: https://lore.kernel.org/lkml/xmqq4jw1uku5.fsf@gitster.g/
+        system(*%W[git config --global protocol.file.allow always])
+
         build_repo4 do
           build_gem "submodule" do |s|
             s.write "lib/submodule.rb", "puts 'GEM'"
author	Hiroshi SHIBATA <hsbt@ruby-lang.org>	2022-10-20 14:36:06 +0900
committer	Hiroshi SHIBATA <hsbt@ruby-lang.org>	2022-10-20 14:36:06 +0900
commit	4f1e0bfacd93c28bff549e2f3603c3b4942429a3 (patch)
tree	3fcb5522b3e758188ca8864c1d0a01be8700ae7f /spec/bundler/update
parent	0a43a040b4f2f08682d11e20d901ba6d8cc26cfe (diff)
download	ruby-4f1e0bfacd93c28bff549e2f3603c3b4942429a3.tar.gz