Deploy log cleanup / hardening
The casa-qa Heroku build (v3413, Heroku-26 stack) succeeds and deploys, but the build log surfaces several warnings worth cleaning up. Full TODO plan gist: https://gist.github.com/compwron/56813f4c5a6665d6d284c7d50b3d8f07
Items inline below, roughly in priority order.
High priority (real impact)
Medium priority (hygiene)
Low priority (noise / optional)
Notes
- The one-time cache purge (
Changing stack from heroku-22 to heroku-26) explains this build's slowness. Subsequent builds should be cached again — no action needed.
Deploy log cleanup / hardening
The
casa-qaHeroku build (v3413, Heroku-26 stack) succeeds and deploys, but the build log surfaces several warnings worth cleaning up. Full TODO plan gist: https://gist.github.com/compwron/56813f4c5a6665d6d284c7d50b3d8f07Items inline below, roughly in priority order.
High priority (real impact)
config.assets.compile = truein production. Assets are already precompiled at build time (rake assets:precompileruns fine), so on-demand compile only adds request latency and load. → Setconfig.assets.compile = falseinconfig/environments/production.rb.ffi-1.17.2platform-specific gem is installed but the lockfile only has the generic ruby version. → Runbundle lock --normalize-platforms(orbundle lock --add-platform x86_64-linux) and commit the updatedGemfile.lock.Medium priority (hygiene)
4 vulnerabilities (3 moderate, 1 high)in the full tree;1 moderateremains in production deps after pruning. → Runnpm audit, thennpm audit fix. Note EOL/vulnerable build tooling:eslint@8.57.1,glob@10.5.0.ruby-4.0.3; Heroku recommends4.0.5(security + bug fixes). → Update.ruby-versionto4.0.5, test, redeploy.this new release will not be available until the command succeeds); the log ends before showing its output. → Confirm the release/migration step passed in the release-phase logs.Low priority (noise / optional)
rimraf@3,glob@7/glob@10.5.0,inflight@1.0.6(memory leak),coffee-script,lodash.template,whatwg-encoding@3.1.1. Runtime unaffected — candidate for a dependency refresh.esbuild@0.28.1andunrs-resolver@1.12.2have install scripts not yet onallowScripts. Build works; review/approve only if hardening the supply chain.Notes
Changing stack from heroku-22 to heroku-26) explains this build's slowness. Subsequent builds should be cached again — no action needed.