Is this a critical security issue?
Describe the Bug
jruby-openssl was added as a vendored gem in #325 to solve #322.
When JRuby is bumped to 10.0.6.0+, we will no longer need to include it. Also JRuby 9.4.15.0 includes it as a dependency.
Expected Behavior
No longer include jruby-openssl as a vendored gem.
Steps to Reproduce
tar tzvf openvox-server-8.14.0-1.el9.noarch.rpm | grep jruby-openssl.*.jar
-rw-r--r-- 1 0 0 1185874 Jun 12 15:22 ./opt/puppetlabs/server/data/puppetserver/vendored-jruby-gems/gems/jruby-openssl-0.16.0-java/lib/jopenssl.jar
-rw-r--r-- 1 0 0 1165716 Jun 12 15:22 ./opt/puppetlabs/server/data/puppetserver/vendored-jruby-gems/gems/jruby-openssl-0.16.0-java/lib/org/bouncycastle/bcpkix-jdk18on/1.84/bcpkix-jdk18on-1.84.jar
-rw-r--r-- 1 0 0 8919063 Jun 12 15:22 ./opt/puppetlabs/server/data/puppetserver/vendored-jruby-gems/gems/jruby-openssl-0.16.0-java/lib/org/bouncycastle/bcprov-jdk18on/1.84/bcprov-jdk18on-1.84.jar
-rw-r--r-- 1 0 0 1488756 Jun 12 15:22 ./opt/puppetlabs/server/data/puppetserver/vendored-jruby-gems/gems/jruby-openssl-0.16.0-java/lib/org/bouncycastle/bctls-jdk18on/1.84/bctls-jdk18on-1.84.jar
-rw-r--r-- 1 0 0 707499 Jun 12 15:22 ./opt/puppetlabs/server/data/puppetserver/vendored-jruby-gems/gems/jruby-openssl-0.16.0-java/lib/org/bouncycastle/bcutil-jdk18on/1.84/bcutil-jdk18on-1.84.jar
Environment
Version 8.14.0
Platform EL 9
Additional Context
No response
Relevant log output
Is this a critical security issue?
Describe the Bug
jruby-opensslwas added as a vendored gem in #325 to solve #322.When JRuby is bumped to 10.0.6.0+, we will no longer need to include it. Also JRuby 9.4.15.0 includes it as a dependency.
Expected Behavior
No longer include
jruby-opensslas a vendored gem.Steps to Reproduce
Environment
Version 8.14.0
Platform EL 9
Additional Context
No response
Relevant log output