Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Fixed
Priority: Unknown
Fix Version/s: 2.19.0
Affects Version/s: None
Component/s: None
Labels:
None

Confidence Status:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Link:
None
Goal Name(s):
None

Mongoid, MongoDB Ruby Driver, and BSON Ruby are loading a gem called "rspec-mocks-diag".

This is an out-of-date hack of the rspec-mocks gem which adds additional logging. It was done my a former MongoDB employee. The gem appears to still be under the former employee's control, i.e. not released officially by MongoDB. Fortunately the gem is not loaded in production, but certainly this goes against security best practices and should be cleaned up on all projects where it's used.

clones

MONGOID-5581 Remove rspec-mocks-diag gem

Closed

depends on

RUBY-3232 Switch to Supported Build Hosts

Closed

is cloned by

RUBY-3248 BSON - Remove rspec-mocks-diag gem

Closed

Assignee:: Dmitry Rybakov
Reporter:: Johnny Shields
Votes:: 0 Vote for this issue
Watchers:: 1 Start watching this issue

Created:: May 01 2023 01:55:42 PM UTC
Updated:: Oct 28 2023 11:11:10 AM UTC
Resolved:: May 12 2023 08:21:39 AM UTC
Confidence Status Last Update:: 01/May/23 1:56 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates