Skip to main content
Version: v3.0

Core Maintenance

Security

The core rhino repo rhino-project/rhino-project-template is configured to use Dependabot for security to automatically flag issues. Dependabot will open a PR when a dependency has a new version available.

Frontend

If the package is not a top level package in package.json, then find top level package and update that version. Use npm ls to find the top level package.

npm ls <lower-level-package>

Backend

If the gem is not a top level gem in Gemfile, then find top level gem and update the version there. Use bundle list to find the top level gem.

gem dependency <lower-level-gem> --reverse-dependencies

If the gem is typically installed by Rails (for instance puma) test to see if the "soft" dependency specified in Gemfile.lock is compatible with the new version. If it is, then update the version in Gemfile and run bundle install.

You can check this by running:

rails new testapp-<latest-version>

and checking the Gemfile.lock in the new app.

Documentation

This site aspires to follow the Diataxis framework for documentation. The site is organized into four sections:

  • Tutorials - A series of step-by-step guides that take the reader through the process of building a complete application.

  • How-to Guides - A series of articles that provide practical advice on how to solve a specific problem.

  • Concepts (Explanations) - A series of articles that provide background information on a specific topic.

  • API (Reference) - A series of articles that provide detailed information about a specific topic.