Ask Your Question

What version of Rails/activerecord should I run with Puppet?

asked 2013-02-08 13:11:49 -0500

ramindk gravatar image

With all the CVEs around Rails, what version of activerecord should I upgrade to.

edit retag flag offensive close merge delete

1 answer

Sort by ยป oldest newest most voted

answered 2013-02-08 13:33:50 -0500

ramindk gravatar image

updated 2013-02-08 13:36:55 -0500

It's best to be conservative with the version of activerecord. Rails releases 2.3, 3.0, 3.1, and 3.2 have each changed a fair amount of code in activerecord. This means code that works against activerecord-2.3.x usually will not work if you swap in activerecord-3.0.x and even less likely if you upgrade all the way to 3.1.x or 3.2.x.

Puppet generally works best when combined with the Rails that was current at the time of the Puppet release. The matrix looks like this

puppet   --  activerecord
0.25         2.3 ...
edit flag offensive delete link more


While not directly addressing the question, can't the whole issue be avoided by simply switching to PuppetDB - and thus avoiding the need for activerecord all together?

llowder gravatar imagellowder ( 2013-02-09 11:17:57 -0500 )edit

Sure, but I'll let you tell people that they should swap out major parts of their infrastructure when a two minute upgrade will fix their current security problems.

ramindk gravatar imageramindk ( 2013-02-09 12:06:38 -0500 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools


Asked: 2013-02-08 13:11:49 -0500

Seen: 181 times

Last updated: Feb 08 '13