V3.0.16 Release

.github/workflows/brakeman.yml

@@ -5,10 +5,10 @@ on: [push, pull_request]
 jobs:
   brakeman:
 
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-20.04
 
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v3
 
     # Will run Brakeman checks on dependencies
     #   https://github.com/marketplace/actions/brakeman-action

.github/workflows/danger.yml

@@ -4,10 +4,10 @@ on: [push, pull_request]
 
 jobs:
   danger:
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-20.04
 
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v3
 
     - name: 'Determine Ruby and Bundler Versions from Gemfile.lock'
       run: |
@@ -16,7 +16,7 @@ jobs:
 
     # Install Ruby - using the version found in the Gemfile.lock
     - name: 'Install Ruby'
-      uses: actions/setup-ruby@v1
+      uses: ruby/setup-ruby@v1
       with:
         ruby-version: ${{ env.RUBY_VERSION }}
 

.github/workflows/docker-push-image.yml

@@ -12,10 +12,10 @@ on:
 jobs:
   push_to_registry:
     name: Push Docker image to Docker Hub
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-20.04
     steps:
       - name: Check out the repo
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
 
       - name: Log in to Docker Hub
         uses: docker/login-action@f054a8b539a109f9f41c372932f1ae047eff08c9

.github/workflows/eslint.yml

@@ -5,10 +5,10 @@ on: [push, pull_request]
 jobs:
   eslint:
 
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-20.04
 
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v3
     - name: Install modules
       run: yarn
     - name: Run ESLint

.github/workflows/mysql.yml

@@ -4,7 +4,7 @@ on: [pull_request]
 
 jobs:
   mysql:
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-20.04
 
     env:
       DB_ADAPTER: mysql2
@@ -13,7 +13,7 @@ jobs:
 
     steps:
     # Checkout the repo
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v3
       with:
         fetch-depth: 1
 
@@ -30,7 +30,7 @@ jobs:
         echo "BUNDLER_VERSION=`cat ./Gemfile.lock | grep -A 1 'BUNDLED WITH' | grep -oE '[0-9]\.[0-9]'`" >> $GITHUB_ENV
 
     - name: 'Install Ruby'
-      uses: actions/setup-ruby@v1
+      uses: ruby/setup-ruby@v1
       with:
         ruby-version: ${{ env.RUBY_VERSION }}
 

.github/workflows/postgres.yml

@@ -4,7 +4,7 @@ on: [push, pull_request]
 
 jobs:
   postgresql:
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-20.04
 
     services:
       # Postgres installation
@@ -29,7 +29,7 @@ jobs:
 
     steps:
     # Checkout the repo
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v3
       with:
         fetch-depth: 1
 
@@ -45,7 +45,7 @@ jobs:
 
     # Install Ruby - using the version found in the Gemfile.lock
     - name: 'Install Ruby'
-      uses: actions/setup-ruby@v1
+      uses: ruby/setup-ruby@v1
       with:
         ruby-version: ${{ env.RUBY_VERSION }}
 

.github/workflows/rubocop.yml

@@ -4,10 +4,10 @@ on: [push, pull_request]
 
 jobs:
   rubocop:
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-20.04
 
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v3
 
     - name: 'Determine Ruby and Bundler Versions from Gemfile.lock'
       run: |
@@ -16,7 +16,7 @@ jobs:
 
     # Install Ruby - using the version found in the Gemfile.lock
     - name: 'Install Ruby'
-      uses: actions/setup-ruby@v1
+      uses: ruby/setup-ruby@v1
       with:
         ruby-version: ${{ env.RUBY_VERSION }}
 

.github/workflows/ruby.yml

@@ -15,7 +15,7 @@ on:
 
 jobs:
   test:
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-20.04
 
     env:
       DB_ADAPTER: mysql2
@@ -24,7 +24,7 @@ jobs:
 
     steps:
     # Checkout the repo
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v3
       with:
         fetch-depth: 1
 
@@ -41,7 +41,7 @@ jobs:
         echo "BUNDLER_VERSION=`cat ./Gemfile.lock | grep -A 1 'BUNDLED WITH' | grep -oE '[0-9]\.[0-9]'`" >> $GITHUB_ENV
 
     - name: 'Install Ruby'
-      uses: actions/setup-ruby@v1
+      uses: ruby/setup-ruby@v1
       with:
         ruby-version: ${{ env.RUBY_VERSION }}
 

CHANGELOG.md

@@ -1,5 +1,23 @@
 # Changelog
 
+## [3.0.4+portage-3.0.16] - 2022-12-14
+
+### Changed
+
+- Upgrade rails-html-sanitizer to 1.4.4 and loofah to 2.19.1 to prevent possible XSS vulnerability attack and other security problems(https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-mcvf-2q2m-x72m, https://github.com/flavorjones/loofah/security/advisories/GHSA-486f-hjj9-9vhh)
+
+- Upgrade rubocop-rails_config to 1.12.0
+
+- Upgrade selenium-webdriver to 4.7.1
+
+### Fixed
+
+- Fixed Github action ruby 'version not valid' issue [#265](https://github.com/portagenetwork/roadmap/issues/265)
+
+- Fixed Dangerfile configuration issue (https://github.com/DMPRoadmap/roadmap/pull/3263)
+
+- Fixed spec_helper.rb file to remove undefined Capybara::Webmock method
+
 ## [3.0.4+portage-3.0.15] - 2022-11-04
 
 ### Changed

Dangerfile

@@ -1,6 +1,6 @@
 # Make sure non-trivial amounts of code changes come with corresponding tests
 has_app_changes = !git.modified_files.grep(/lib/).empty? || !git.modified_files.grep(/app/).empty?
-has_test_changes = !git.modified_files.grep(/test/).empty?
+has_test_changes = !git.modified_files.grep(/spec/).empty?
 
 if  git.lines_of_code > 50 && has_app_changes && !has_test_changes
   warn('There are code changes, but no corresponding tests. '\
@@ -23,5 +23,5 @@ warn("PR is classed as Work in Progress") if github.pr_title.include? "[WIP]"
 declared_trivial = (github.pr_title + github.pr_body).include?("#trivial") || !has_app_changes
 
 if !git.modified_files.include?("CHANGELOG.md") && !declared_trivial
-  fail("Please include a CHANGELOG entry. \nYou can find it at [CHANGELOG.md](https://github.com/portagenetwork/roadmap/blob/deployment-portage/CHANGELOG.md).", sticky: false)
+  failure("Please include a CHANGELOG entry. \nYou can find it at [CHANGELOG.md](https://github.com/portagenetwork/roadmap/blob/deployment-portage/CHANGELOG.md).", sticky: false)
 end