[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Best practice regarding Ruby gems installation on Buster

Hi Andrei,

Thanks for your feedback.
28 mars 2020 à 14:40 de andreimpopescu@gmail.com:

> Since you're asking on a Debian list the answer is "install from 
> packages only". By definition[1] the software versions in stable remain 
> the same (with a very few exceptions). If there are security issues the 
> fix is backported to the stable version of the package.
>
Actually, I'm totally OK with the approach.

But I'm not really talking about the ruby2.5 package and its dependencies here. I don't need a specific higher Ruby version (framework, engine...) so the Debian stable Ruby package fits my needs.

I'm rather talking about Ruby gems themselves. If I'm right, Buster seems to come with some gems installed by default with ruby2.5 but they are obsolete now. As they could introduce a security risk for example, I just want to update them. However updating seems to be less straightfoward than anticipated hence my request for advice ;)

PS: I'm not very used to Ruby so please don't hesitate to tell me if I'm wrong somewhere...
Best regards,
l0f4r0
Reply to: