Chore(): Remove broken plugin (#299)

* Chore(): Remove broken plugin * Chore(): Discourse version update to 3.3.2 * Chore(Ruby): Ruby version update for security reasons * Chore(): Revert Discourse version. Add stuff into trivyignore
canonical · Nov 26, 2024 · f182a5d · f182a5d
1 parent 4abea74
commit f182a5d
Show file tree

Hide file tree

Showing 2 changed files with 32 additions and 11 deletions.
diff --git a/.trivyignore b/.trivyignore
@@ -0,0 +1,30 @@
+# wee_alloc is Unmaintained https://github.com/advisories/GHSA-rc23-xxgq-x27g
+GHSA-rc23-xxgq-x27g
+# pebble
+CVE-2024-34156
+# shlex from ruby test
+GHSA-r7qv-8r2h-pg27
+# squoosh npm package
+CVE-2021-32810
+CVE-2022-23639
+# Ruby Gems
+CVE-2024-7254
+CVE-2015-9284
+CVE-2017-11430
+CVE-2024-45409
+GHSA-cvp8-5r8g-fhvq
+CVE-2024-49761
+CVE-2024-45409
+CVE-2024-47220
+# Python setuptools
+CVE-2024-6345
+# Nodejs
+CVE-2021-23424 # ansi-html
+CVE-2024-39338 # axios
+CVE-2024-45590 # body-parser
+CVE-2024-4068 # braces
+CVE-2024-21538 # cross-spawn
+CVE-2024-29415 # ip
+CVE-2024-45296 # path-to-regexp
+CVE-2024-37890 # ws
+private-key
diff --git a/discourse_rock/rockcraft.yaml b/discourse_rock/rockcraft.yaml
@@ -42,8 +42,8 @@ parts:
       - ARCH: "x64"
       - NODE_VERSION: "18.18.2"
       - RAILS_ENV: "production"
-      - RUBY_INSTALL_VERSION: "0.9.2"
-      - RUBY_VERSION: "3.2.2"
+      - RUBY_INSTALL_VERSION: "0.9.3"
+      - RUBY_VERSION: "3.2.6"
       - YARN_VERSION: "1.22.19"
     override-build: |
       node_uri="https://nodejs.org/dist/v${NODE_VERSION}/node-v${NODE_VERSION}-linux-${ARCH}.tar.gz"
@@ -86,14 +86,6 @@ parts:
     source: bundler
     organize:
       "*": srv/discourse/app/.bundle/
-  discourse-rad-plugin:
-    plugin: dump
-    after: [discourse, bundler-config]
-    source: https://github.com/canonical/discourse-rad-plugin.git
-    source-commit: 7fe719abd459ab2d2736d6ad2ca7810b045dd154
-    source-depth: 1
-    organize:
-      "*": srv/discourse/app/plugins/discourse-rad-plugin/
   discourse-solved:
     plugin: dump
     after: [discourse, bundler-config]
@@ -219,7 +211,6 @@ parts:
       - discourse-markdown-note
       - discourse-mermaid-theme-component
       - discourse-prometheus
-      - discourse-rad-plugin
       - discourse-saml
       - discourse-solved
       - discourse-templates