ruby: update to 3.3.5 to resolve CVE-2024-39908 and CVE-2024-49761 #34769
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Copyright (c) Microsoft Corporation. | |
# Licensed under the MIT License. | |
name: Check Manifests | |
on: | |
push: | |
branches: [main, dev, 1.0*, 2.0*, 3.0*, fasttrack/*] | |
pull_request: | |
branches: [main, dev, 1.0*, 2.0*, 3.0*, fasttrack/*] | |
jobs: | |
build: | |
name: Check Manifests | |
runs-on: ubuntu-latest | |
steps: | |
- name: Check out code | |
uses: actions/checkout@v4 | |
# This PR runner uses an older Ubuntu with rpm version 4.17, which doesn't understand some newer macros like %bcond | |
- name: Define missing rpm macros | |
run: | | |
[[ -n $(rpm --eval '%bcond test 1') ]] && echo '%bcond() %[ (%{2}) ? "%{expand:%%bcond_without %{1}}" : "%{expand:%%bcond_with %{1}}" ]' > ~/.rpmmacros | |
- name: Check x86_64 manifests | |
run: | | |
echo ########## | |
echo "Ensure toolchain and pkggen manifests (./toolkit/resources/manifests/package/*) match the versions in the .spec files" | |
echo "Run './scripts/toolchain/check_manifests.sh -a "x86_64"' to validate locally" | |
echo ########## | |
pushd toolkit | |
./scripts/toolchain/check_manifests.sh -a "x86_64" | |
popd | |
- name: Check aarch64 manifests | |
run: | | |
echo ########## | |
echo "Ensure toolchain and pkggen manifests (./toolkit/resources/manifests/package/*) match the versions in the .spec files" | |
echo "Run './scripts/toolchain/check_manifests.sh -a "aarch64"' to validate locally" | |
echo ########## | |
pushd toolkit | |
./scripts/toolchain/check_manifests.sh -a "aarch64" | |
popd | |
if: always() |