With the new composite action, we have to explicitly install Ruby. Dev who want to use Brakeman are extremely likely to be very familiar with ruby/setup-ruby and will want to install their dependencies from the Gemfile & take advantage of the action's caching support:
The script ignores the installed bundle and reinstalls the gem; fortunately, Gem is smart and sees it's already installed. But it would be nice to skip over the version checking and installing if the gem is already available in the bundle.
mgrachev
commented
10 months ago
With the new composite action, we have to explicitly install Ruby. Dev who want to use Brakeman are extremely likely to be very familiar with
ruby/setup-rubyand will want to install their dependencies from the Gemfile & take advantage of the action's caching support:The script ignores the installed bundle and reinstalls the gem; fortunately, Gem is smart and sees it's already installed. But it would be nice to skip over the version checking and installing if the gem is already available in the bundle.