The pe-bundler
package was historically included in order to support the web-based installer which was launched via bundle exec
. Recently, this installer component was re-built to remove the bundler dependency which also led to the pe-bundler
package being removed as well. One additional factor that led to this remove was an unresolved security vulnerability in Bundler:
http://collectiveidea.com/blog/archiv...
PE never used Bundler in a way that exposed this vulnerability, but the presence of the package was tripping vulnerability scans conducted as part of security audits in some environments.