Bump rmagick to 5.3.0 #21008
Bump rmagick to 5.3.0 #21008
Conversation
Generated by 🚫 Danger |
|
|
Yeah our screenshots automation is reguarly broken because no one maintains it and it's not run frequently enough (like, we update the screenshots once a year if not less… and even when we do somethings the Design team just generates them for all locales via Sketch manually instead so we don't even use the automation to create the screenshots from the UI tests…) So short of fixing the automation (which would be a big project on its own), I'm not sure how we can properly test this. The only thing I'd suggest checking is:
In any case, given this fixes a security issue, and that if we want to use the automation to create screenshots we'll need to revisit the automation code and |
|
 |
App Name |  WordPress |
| Flavor | Jalapeno | |
| Build Type | Debug | |
| Version | pr21008-04bec8e | |
| Commit | 04bec8e | |
| Direct Download | wordpress-prototype-build-pr21008-04bec8e.apk |
|
 |
App Name |  Jetpack |
| Flavor | Jalapeno | |
| Build Type | Debug | |
| Version | pr21008-04bec8e | |
| Commit | 04bec8e | |
| Direct Download | jetpack-prototype-build-pr21008-04bec8e.apk |
|
Thank you for all the context @AliSoftware 🙏 I was confused how and when this is executed.
I see - this is not very encouraging to start working on fixing the lane. It sounds like high effort / low gain work, at least at this moment. I read more about the security vulnerability, and I came to a conclusion that I'll just close it, as it's about a possible DOS attack - something we're not prone to in the context of build tools for a mobile app. Sorry for taking your time 😅 |
Yep. I remember already spending a lot of time around 2 years ago (see paaHJt-3wL-p2) trying to fix this, and got to a point where they were nearly working again, with just a small set of limitations and leftovers to fix… but I don't think we've used the lane since I fixed it, so now it (mostly the UI Tests that this lane uses to pilot the app's UI and take the right screenshots) has likely already drifted away again even more as the UI of the app has evolved more while that UI Test was never really maintained in sync.
Sounds good 👍 |
Update rmagick to address https://github.com/wordpress-mobile/WordPress-Android/security/dependabot/24
Testing
I've tried to test it with
fastlane android screenshots app:wordpressbut the operation fails withjunit.framework.AssertionFailedError: Unable to continue – expectation wasn't satisfied quickly enough. It's not related to rmagick (this fails also ontrunk).So I don't know how to test it, do you have an idea?