Versions Compared

Old Version 21

changes.mady.by.user Juliet Hardesty

Saved on

compared with

New Version 22

changes.mady.by.user James Griffin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

...

  • Community Projects

    • Docker Hub and GitHub releases

      • fcrepo is maintained by mbklein on Docker Hub

      • Otherwise there are Docker images on GitHub

    • Desire to publish NPM packages is there for Samvera contributors

  • Deprecate the Hierarchy of Promises

    • This can be archived

  • DataCite Documentation Request

    • Heather had outreach from DataCite folks

    • Interested in documentation for Samvera/DataCite integration support by community members who are actively using DataCite

    • Is there any existing DataCite documentation?

    • Not many attending the call are experienced in using DataCite integration

    • https://github.com/samvera/hyrax/pull/4465

      • Chris Colvard may have more significant experience

    • https://github.com/samvera/hyrax/pull/4458

      • Same code, just ported into different branches

  • Hyrax Documentation Reorganization

    • /.github directory has some duplicate Markdown files

    • Documentation as Markdown or text files should be moved to the root (/) of the repository

    • GitHub has an updated workflow for creating workflow templates

      • Addressing this just requires that the ISSUE_TEMPLATE.md be moved to a different directory (/.github)

    • /documentation directory also exists, but GitHub does not parse this as a supported documentation directory

      • No opposition to retaining this, but GitHub does support /docs

      • Changing /documentation to /docs might still be desirable

  • Rails CVE

    • Vulnerability for Rails 7.0.3.1, 6.1.6.1, 6.0.5.1, 5.2.8.1

    • This was discussed within the Hyrax IG

      • If you use #serialize in ActiveRecord, there is the possibility of a RCE attack

      • This is not used in Hyrax, but it is invoked within Blacklight

    • Solution is to upgrade Rails, and this also breaks YAML serialization for Blacklight upstream

    • Rails community should offer new patch versions fairly soon

      • In turn, Blacklight patch releases should also be released in the near future

    • bulkrax and allison_flex also call the afflicted method

    • A volunteer shall create issues on Hyrax, bulkrax, and allison_flex addressing these issues

    • Please also monitor the #blacklight Channel in the Code4Lib Slack

  • valkyrie-shrine 1.0 release

    • Thank you from Brendan Quinn!

  • Next Scheduled Samvera Tech Call (07/20/22)

  • Support Requests (Slack)

    • None unresolved

  • Pull Request Review

    (To be added)

    • No reviews were requested for any existing pull requests

Call concluded at 09:33 PDT/12:33 EDT