Update Rails project template with BUNDLE_FROZEN (!90503) · Merge requests · GitLab.org / GitLab

João Alexandre Cunha requested to merge jcunha-update-project-templates into master Jun 17, 2022

What does this MR do and why?

Following the work done on gitlab-org/project-templates/rails!29 (merged). This updates the Rails template, which includes BUNDLE_FROZEN=true to guarantee that when the gitpod loads, it does not update the environment gems to untrusted gem versions.

Screenshots or screen recordings

How to set up and validate locally

Create a new project on GDK from the Ruby on Rails template.
Validate that the .gitpod.yml file calls BUNDLE_FROZEN=true bundle install.
For a more thorough test, start a gitpod instance for this project and verify that the command above is called properly on the screen printed logs.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Jun 17, 2022 by João Alexandre Cunha

Update Rails project template with BUNDLE_FROZEN

What does this MR do and why?

Screenshots or screen recordings

How to set up and validate locally

MR acceptance checklist

Merge request reports