conjur-api 5.4.1 → 6.0.0.pre.94

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 95f3eee20794e6ae05f4392c3fd8b9131fcfb0fe30c6f7feb26b14dec96c6152
-  data.tar.gz: fdf08384b730b3f70e75e2b52498c801335ff124a9a8652f88565678b23dde33
+  metadata.gz: 12ce978d5cb26691a74513c1197065c11a7bab6281149288232cffc223402656
+  data.tar.gz: 88439b9a02e9e2e21061c3cc6af56af8cd7a67a576e16702ba3df59dda638879
 SHA512:
-  metadata.gz: e114ef3b941a2e65587c1f4c4294caecd31852fa3f88cbbe5fa7c803c5811641a98fa9222f85746c30a52cf787a4767ca098ed7b4629b6716bdf8f38fd3b781b
-  data.tar.gz: 83ce2703e3f69d488b642aee98d6a6ca7f827e04f91b582ccc3414b03bd252843886a13f130c1402d1ed1d7761175f8a6beffcf81eb39cf6f6e26681cfa435ff
+  metadata.gz: 25319c2ecf51a6b6a7e10051d0c8140b14f71ef41a5d1183b4c9e768194a2137c2e5b5691beeebb85b11bae85b96f9813895d20846e9dc92705322844cd5aab5
+  data.tar.gz: 38307b2e705826bb924404654f62a9aed257011664c8712d638fa271c3791305e20f5abf7ebaa879152d996631e1244eaa0438777ca18a68c89d6cf494aa16ac

data/.github/CODEOWNERS

@@ -1,10 +1,10 @@
-* @cyberark/community-and-integrations-team @conjurinc/community-and-integrations-team @conjurdemos/community-and-integrations-team
+* @cyberark/community-and-integrations-team @conjurinc/community-and-integrations-team @conjurdemos/community-and-integrations-team @conjur-enterprise/community-and-integrations
 
 # Changes to .trivyignore require Security Architect approval
-.trivyignore @cyberark/security-architects @conjurinc/security-architects @conjurdemos/security-architects
+.trivyignore @cyberark/security-architects @conjurinc/security-architects @conjurdemos/security-architects @conjur-enterprise/conjur-security
 
 # Changes to .codeclimate.yml require Quality Architect approval
-.codeclimate.yml @cyberark/quality-architects @conjurinc/quality-architects @conjurdemos/quality-architects
+.codeclimate.yml @cyberark/quality-architects @conjurinc/quality-architects @conjurdemos/quality-architects @conjur-enterprise/conjur-quality
 
 # Changes to SECURITY.md require Security Architect approval
-SECURITY.md @cyberark/security-architects @conjurinc/security-architects @conjurdemos/security-architects
+SECURITY.md @cyberark/security-architects @conjurinc/security-architects @conjurdemos/security-architects @conjur-enterprise/conjur-security

data/.rubocop_todo.yml

@@ -309,8 +309,7 @@ Lint/UnneededSplatExpansion:
 Lint/UnusedMethodArgument:
   Exclude:
     - 'lib/conjur/api.rb'
-    - 'lib/conjur/api/router/v4.rb'
-    - 'lib/conjur/api/router/v5.rb'
+    - 'lib/conjur/api/router.rb'
     - 'lib/conjur/base_object.rb'
     - 'lib/conjur/cache.rb'
     - 'lib/conjur/has_attributes.rb'
@@ -538,7 +537,7 @@ Style/MethodDefParentheses:
     - 'lib/conjur/acts_as_rolsource.rb'
     - 'lib/conjur/acts_as_user.rb'
     - 'lib/conjur/api.rb'
-    - 'lib/conjur/api/router/v5.rb'
+    - 'lib/conjur/api/router.rb'
     - 'lib/conjur/configuration.rb'
     - 'lib/conjur/escape.rb'
     - 'lib/conjur/has_attributes.rb'
@@ -552,8 +551,7 @@ Style/MethodDefParentheses:
 # SupportedStyles: module_function, extend_self
 Style/ModuleFunction:
   Exclude:
-    - 'lib/conjur/api/router/v4.rb'
-    - 'lib/conjur/api/router/v5.rb'
+    - 'lib/conjur/api/router.rb'
 
 # Offense count: 1
 Style/MultilineBlockChain:

data/CHANGELOG.md

@@ -9,6 +9,11 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
 - Nothing should go in this section, please add to the latest unreleased version
   (and update the corresponding date), or add a new version.
 
+## [6.0.0] - 2023-12-28
+
+### Removed
+- Remove support for Conjur V4 (CNJR-2935)
+
 ## [5.4.1] - 2023-06-14
 
 ### Added
@@ -384,7 +389,8 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
 
 ## [2.0.0] - 2013-13-12
 
-[Unreleased]: https://github.com/cyberark/conjur-api-ruby/compare/v5.4.1...HEAD
+[Unreleased]: https://github.com/cyberark/conjur-api-ruby/compare/v6.0.0...HEAD
+[6.0.0]: https://github.com/cyberark/conjur-api-ruby/compare/v5.4.1...v6.0.0
 [5.4.1]: https://github.com/cyberark/conjur-api-ruby/compare/v5.4.0...v5.4.1
 [5.4.0]: https://github.com/cyberark/conjur-api-ruby/compare/v5.3.7...v5.4.0
 [5.3.7]: https://github.com/cyberark/conjur-api-ruby/compare/v5.3.6...v5.3.7

data/CONTRIBUTING.md

@@ -7,26 +7,29 @@ For general contribution and community guidelines, please see the [community rep
 1. [Fork the project](https://help.github.com/en/github/getting-started-with-github/fork-a-repo)
 2. [Clone your fork](https://help.github.com/en/github/creating-cloning-and-archiving-repositories/cloning-a-repository)
 3. Make local changes to your fork by editing files
-3. [Commit your changes](https://help.github.com/en/github/managing-files-in-a-repository/adding-a-file-to-a-repository-using-the-command-line)
-4. [Push your local changes to the remote server](https://help.github.com/en/github/using-git/pushing-commits-to-a-remote-repository)
-5. [Create new Pull Request](https://help.github.com/en/github/collaborating-with-issues-and-pull-requests/creating-a-pull-request-from-a-fork)
+4. [Commit your changes](https://help.github.com/en/github/managing-files-in-a-repository/adding-a-file-to-a-repository-using-the-command-line)
+5. [Push your local changes to the remote server](https://help.github.com/en/github/using-git/pushing-commits-to-a-remote-repository)
+6. [Create new Pull Request](https://help.github.com/en/github/collaborating-with-issues-and-pull-requests/creating-a-pull-request-from-a-fork)
 
 From here your pull request will be reviewed and once you've responded to all
 feedback it will be merged into the project. Congratulations, you're a
 contributor!
 
+## Development
 
-## Development (V5)
-To develop and run tests against Conjur V5, use the `start` and `stop` scripts in the `dev` folder. The start script brings up an open source Conjur (and Postgres database), CLI container, and a "work" container, with the gem code mounted into the working directory.
+To develop and run tests against Conjur, use the `start` and `stop` scripts in the `dev` folder. The start script brings up an open source Conjur (and Postgres database), CLI container, and a "work" container, with the gem code mounted into the working directory.
 
 ### Starting a Shell
+
 To begin:
+
 ```sh
 $ cd dev
 $ ./start
 ...
 root@9df0ac10ada2:/src/conjur-api#
 ```
+
 You'll be dropped into development container upon completion. From there, install the development gems:
 
 ```sh
@@ -34,20 +37,19 @@ root@9df0ac10ada2:/src/conjur-api# bundle
 ```
 
 #### Running Tests
-*NOTE*: There are some existing challenges around running tests from the development console.  For now, run tests
-by using the `./test.sh` script utilized for Jenkins Pipelines.
-
-<!--
-Commented out until I can get tests running locally
 
 Tests can be run with:
+
 ```sh
 root@9df0ac10ada2:/src/conjur-api# bundle exec cucumber features
 root@9df0ac10ada2:/src/conjur-api# bundle exec rspec
 ```
--->
+
+Note: At the moment some of the cucumber tests are failing when run in the development container.
+You can use the CI script, `test.sh` to run the full test suite instead.
 
 #### Stopping & Environment Cleanup
+
 Once you're done, exit the shell, and stop the containers:
 
 ```sh
@@ -55,59 +57,10 @@ root@9df0ac10ada2:/src/conjur-api# exit
 $ ./stop
 ```
 
-## Development (V4)
-
-The file `docker-compose.yml` is a self-contained development environment for the project.
-
-### Starting
-
-To bring it up, run:
-
-```sh-session
-$ docker-compose build
-$ docker-compose up -d pg conjur_4 conjur_5
-```
-
-Then configure the v4 and v5 servers:
-
-```sh-session
-$ ./ci/configure_v4.sh
-...
-$ ./ci/configure_v5.sh
-...
-```
-
-### Using
-
-Obtain the API key for the v5 admin user:
-
-```
-$ docker-compose exec conjur_5 rake 'role:retrieve-key[cucumber:user:admin]'
-3aezp05q3wkem3hmegymwzz8wh3bs3dr6xx3y3m2q41k5ymebkc
-```
-
-The password of the v4 admin user is "secret".
-
-Now you can run the client `dev` container:
-
-```sh-session
-$ docker-compose run --rm dev
-```
-
-This gives you a shell session with `conjur_4` and `conjur_5` available as linked containers.
-
 ### Demos
 
-For a v5 demo, run:
-
 ```sh-session
-$ bundle exec ./example/demo_v5.rb <admin-api-key>
-```
-
-For a v4 demo, run:
-
-```sh-session
-$ bundle exec ./example/demo_v4.rb
+bundle exec ./example/demo.rb <admin-api-key>
 ```
 
 ### Stopping
@@ -115,7 +68,7 @@ $ bundle exec ./example/demo_v4.rb
 To bring it down, run:
 
 ```sh-session
-$ docker-compose down
+docker compose down
 ```
 
 ## Releasing
@@ -123,16 +76,19 @@ $ docker-compose down
 ### Update the version and changelog
 
 1. Create a new branch for the version bump.
+1. Based on the changelog content, determine the new version number and update.
+1. Review the [changelog](CHANGELOG.md) to make sure all relevant changes since
+   the last release have been captured. You may find it helpful to look at the
+   list of commits since the last release.
+
+   This is also a good time to make sure all entries conform to our
+   [changelog guidelines](https://github.com/cyberark/community/blob/main/Conjur/CONTRIBUTING.md#changelog-guidelines).
 1. Commit these changes - `Bump version to x.y.z` is an acceptable commit message - and open a PR
    for review. Your PR should include updates to `CHANGELOG.md`.
 
-### Add a git tag
-
-1. Once your changes have been **reviewed and merged into main**, tag the version
-   using `git tag -a "vx.y.z" -m "vx.y.z release"`. Note this requires you to be able to sign releases.
-   Consult the [github documentation on signing commits](https://help.github.com/articles/signing-commits-with-gpg/)
-   on how to set this up. `vx.y.z release` is an acceptable tag message.
-1. Push the tag: `git push vx.y.z` (or `git push origin vx.y.z` if you are working
-   from your local machine).
+### Release and Promote
 
-After pushing the tag, a matching version will be published to [RubyGems](https://rubygems.org/gems/conjur-api/versions)!
+1. Jenkins build parameters can be utilized to release and promote successful builds.
+1. Merging into main/master branches will automatically trigger a release.
+1. Reference the [internal automated release doc](https://github.com/conjurinc/docs/blob/master/reference/infrastructure/automated_releases.md#release-and-promotion-process)
+   for releasing and promoting.

data/Jenkinsfile

@@ -1,5 +1,7 @@
 #!/usr/bin/env groovy
 
+@Library("product-pipelines-shared-library") _
+
 // Automated release, promotion and dependencies
 properties([
   release.addParams()
@@ -9,11 +11,14 @@ if (params.MODE == "PROMOTE") {
   release.promote(params.VERSION_TO_PROMOTE) { sourceVersion, targetVersion, assetDirectory ->
     sh './publish.sh'
   }
+
+  // Copy Github Enterprise release to Github
+  release.copyEnterpriseRelease(params.VERSION_TO_PROMOTE)
   return
 }
 
 pipeline {
-  agent { label 'executor-v2' }
+  agent { label 'conjur-enterprise-common-agent' }
 
   options {
     timestamps()
@@ -42,18 +47,26 @@ pipeline {
         }
       }
     }
+
+    stage('Get InfraPool Agent') {
+      steps {
+        script {
+          INFRAPOOL_EXECUTORV2_AGENT_0 = getInfraPoolAgent.connected(type: "ExecutorV2", quantity: 1, duration: 1)[0]
+        }
+      }
+    }
+
     stage('Validate Changelog and set version') {
       steps {
-        parseChangelog()
-        updateVersion("CHANGELOG.md", "${BUILD_NUMBER}")
+        parseChangelog(INFRAPOOL_EXECUTORV2_AGENT_0)
+        updateVersion(INFRAPOOL_EXECUTORV2_AGENT_0, "CHANGELOG.md", "${BUILD_NUMBER}")
       }
     }
 
     stage('Prepare CC Report Dir'){
       steps {
         script {
-          ccCoverage.dockerPrep()
-          sh 'mkdir -p coverage'
+          INFRAPOOL_EXECUTORV2_AGENT_0.agentSh 'mkdir -p coverage'
         }
       }
     }
@@ -63,13 +76,14 @@ pipeline {
         RUBY_VERSION = '3.0'
       }
       steps {
-        sh("./test.sh")
+        script {
+          INFRAPOOL_EXECUTORV2_AGENT_0.agentSh "./test.sh"
+          INFRAPOOL_EXECUTORV2_AGENT_0.agentStash name: 'reports3.0', includes: '**/reports/*.xml'
+        }
       }
       post {
         always {
-          junit 'spec/reports/*.xml'
-          junit 'features/reports/*.xml'
-          junit 'features_v4/reports/*.xml'
+          unstash 'reports3.0'
         }
       }
     }
@@ -79,13 +93,14 @@ pipeline {
         RUBY_VERSION = '3.1'
       }
       steps {
-        sh("./test.sh")
+        script {
+          INFRAPOOL_EXECUTORV2_AGENT_0.agentSh "./test.sh"
+          INFRAPOOL_EXECUTORV2_AGENT_0.agentStash name: 'reports3.1', includes: '**/reports/*.xml'
+        }
       }
       post {
         always {
-          junit 'spec/reports/*.xml'
-          junit 'features/reports/*.xml'
-          junit 'features_v4/reports/*.xml'
+          unstash 'reports3.1'
         }
       }
     }
@@ -95,27 +110,49 @@ pipeline {
         RUBY_VERSION = '3.2'
       }
       steps {
-        sh("./test.sh")
+        script {
+          INFRAPOOL_EXECUTORV2_AGENT_0.agentSh "./test.sh"
+          INFRAPOOL_EXECUTORV2_AGENT_0.agentStash name: 'reports3.2', includes: '**/reports/*.xml'
+        }
       }
       post {
         always {
-          junit 'spec/reports/*.xml'
-          junit 'features/reports/*.xml'
-          junit 'features_v4/reports/*.xml'
+          unstash 'reports3.2'
         }
       }
     }
 
     stage('Submit Coverage Report'){
       steps{
-        sh 'ci/submit-coverage'
+        script {
+          INFRAPOOL_EXECUTORV2_AGENT_0.agentStash name: 'coverage', includes: '**/coverage/**'
+        }
+        unstash 'coverage'
+
+        cobertura autoUpdateHealth: false,
+          autoUpdateStability: false,
+          coberturaReportFile: 'coverage/coverage.xml',
+          conditionalCoverageTargets: '70, 0, 0',
+          failUnhealthy: false,
+          failUnstable: false,
+          maxNumberOfBuilds: 0,
+          lineCoverageTargets: '70, 0, 0',
+          methodCoverageTargets: '70, 0, 0',
+          onlyStable: false,
+          sourceEncoding: 'ASCII',
+          zoomCoverageChart: false
+
         publishHTML([reportDir: 'coverage', reportFiles: 'index.html', reportName: 'Coverage Report', reportTitles: '',
           allowMissing: false, alwaysLinkToLastBuild: true, keepAll: true])
+        codacy action: 'reportCoverage', filePath: "coverage/coverage.xml"
       }
 
       post {
         always {
-          archiveArtifacts artifacts: "coverage/.resultset.json", fingerprint: false
+          // only call junit once to submit all reports, otherwise it will only submit reports
+          // from the last junit call as it overwrites the previously submitted reports
+          junit '**/reports/*.xml'
+          archiveArtifacts artifacts: "coverage/coverage.xml", fingerprint: false
         }
       }
     }
@@ -128,16 +165,18 @@ pipeline {
       }
 
       steps {
-        release {
-          // Clean up all but the calculated VERSION
-          sh '''docker run -i --rm -v $(pwd):/src -w /src --entrypoint /bin/sh alpine/git \
-                -c "git config --global --add safe.directory /src && \
-                    git clean -fdx \
-                      -e VERSION \
-                      -e bom-assets/ \
-                      -e release-assets" '''
-          sh './publish.sh'
-          sh 'cp conjur-api-*.gem release-assets/.'
+        script {
+          release(INFRAPOOL_EXECUTORV2_AGENT_0) {
+            // Clean up all but the calculated VERSION
+            INFRAPOOL_EXECUTORV2_AGENT_0.agentSh '''docker run -i --rm -v $(pwd):/src -w /src --entrypoint /bin/sh alpine/git \
+                  -c "git config --global --add safe.directory /src && \
+                      git clean -fdx \
+                        -e VERSION \
+                        -e bom-assets/ \
+                        -e release-assets" '''
+            INFRAPOOL_EXECUTORV2_AGENT_0.agentSh './publish.sh'
+            INFRAPOOL_EXECUTORV2_AGENT_0.agentSh 'cp conjur-api-*.gem release-assets/.'
+          }
         }
       }
     }
@@ -145,7 +184,7 @@ pipeline {
 
   post {
     always {
-      cleanupAndNotify(currentBuild.currentResult)
+      releaseInfraPoolAgent(".infrapool/release_agents")
     }
   }
 }

data/README.md

@@ -4,26 +4,6 @@ Programmatic Ruby access to the Conjur API.
 
 RDocs are available from the through the [Ruby Gem details page](https://rubygems.org/gems/conjur-api)
 
-# Server Versions
-
-The Conjur server comes in two major versions:
-
-* **4.x** Conjur 4 is a commercial, non-open-source product, which is documented at [https://developer.conjur.net/](https://developer.conjur.net/).
-* **5.x** Conjur 5 is open-source software, hosted and documented at [https://www.conjur.org/](https://www.conjur.org/).
-
-You can use the `main` branch of this project, which is `conjur-api` version `5.x`, to do all of the following things against either type of Conjur server:
-
-* Authenticate
-* Fetch secrets
-* Check permissions
-* List roles, resources, members, memberships and permitted roles.
-* Create hosts using host factory
-* Rotate API keys
-
-Use the configuration setting `Conjur.configuration.version` to select your server version, or set the environment variable `CONJUR_VERSION`. In either case, the valid values are `4` and `5`; the default is `5`.
-
-If you are using Conjur server version `4.x`, you can also choose to use the `conjur-api` version `4.x`. In this case, the `Configuration.version` setting is not required (actually, it doesn't exist).
-
 ## Using conjur-api-ruby with Conjur Open Source 
 
 Are you using this project with [Conjur Open Source](https://github.com/cyberark/conjur)? Then we 
@@ -33,7 +13,7 @@ Conjur maintainers perform additional testing on the suite release versions to e
 compatibility. When possible, upgrade your Conjur version to match the 
 [latest suite release](https://docs.conjur.org/Latest/en/Content/ReleaseNotes/ConjurOSS-suite-RN.htm); 
 when using integrations, choose the latest suite release that matches your Conjur version. For any 
-questions, please contact us on [Discourse](https://discuss.cyberarkcommons.org/c/conjur/5).
+questions, please contact us on [Discourse](https://discuss.cyberarkcommons.org/).
 
 # Installation
 

data/Rakefile

@@ -23,11 +23,7 @@ begin
   require 'cucumber'
   require 'cucumber/rake/task'
 
-  Cucumber::Rake::Task.new(:cucumber_4) do |t|
-    t.cucumber_opts = "--tags ~@wip --format pretty --format junit --out features_v4/reports -r features_v4/step_definitions/ -r features_v4/support/ features_v4/"
-  end
-
-  Cucumber::Rake::Task.new(:cucumber_5) do |t|
+  Cucumber::Rake::Task.new(:cucumber) do |t|
     t.cucumber_opts = "--tags ~@wip --format pretty --format junit --out features/reports"
   end
 
@@ -36,8 +32,7 @@ begin
     desc "Run the spec and cucumber suites, compute the test results and coverage statistics, build Yard docs"
     task :jenkins_init => [ :init_coverage, :cuke_report_cleanup ]
     task :jenkins_spec => [ :"ci:setup:rspec", :spec ]
-    task :jenkins_cucumber_v4 => [ :cucumber_4 ]
-    task :jenkins_cucumber_v5 => [ :cucumber_5 ]
+    task :jenkins_cucumber => [ :cucumber ]
   rescue LoadError
     warn "ci_reporter_rspec not found, jenkins task will be unavailable"
   end

data/VERSION

@@ -1 +1 @@
-5.4.1
+6.0.0-94

data/ci/{configure_v5.sh → configure.sh}

@@ -2,7 +2,7 @@
 
 source ./ci/oauth/keycloak/keycloak_functions.sh
 
-cat << "CONFIGURE" | docker exec -i $(docker-compose ps -q conjur_5) bash
+cat << "CONFIGURE" | docker exec -i $(docker compose ps -q conjur) bash
 set -e
 
 for _ in $(seq 20); do

data/ci/oauth/keycloak/fetch_certificate

@@ -12,7 +12,3 @@ openssl s_client \
   openssl x509 \
     -outform PEM \
     >/etc/ssl/certs/keycloak.pem
-
-hash=$(openssl x509 -hash -in /etc/ssl/certs/keycloak.pem -out /dev/null)
-
-ln -s /etc/ssl/certs/keycloak.pem "/etc/ssl/certs/${hash}.0"

data/ci/oauth/keycloak/keycloak_functions.sh

@@ -12,7 +12,7 @@ function _hydrate_keycloak_env_args() {
     set -o pipefail
     # Note: This prints all lines that look like:
     # KEYCLOAK_XXX=someval
-    docker-compose exec -T ${KEYCLOAK_SERVICE_NAME} printenv | awk '/KEYCLOAK/'
+    docker compose exec -T ${KEYCLOAK_SERVICE_NAME} printenv | awk '/KEYCLOAK/'
   )
 
   # shellcheck disable=SC2034
@@ -30,14 +30,14 @@ function _hydrate_keycloak_env_args() {
 # _create_keycloak_user '$APP_USER' '$APP_PW' '$APP_EMAIL'
 #
 # This is because those variables are not available to this script. They are
-# available to bash commands run via "docker-compose exec keycloak bash
+# available to bash commands run via "docker compose exec keycloak bash
 # -c...", since they're defined in the docker-compose.yml.
 function _create_keycloak_user() {
   local user_var=$1
   local pw_var=$2
   local email_var=$3
 
-  docker-compose exec -T \
+  docker compose exec -T \
     ${KEYCLOAK_SERVICE_NAME} \
     bash -c "/scripts/create_user \"$user_var\" \"$pw_var\" \"$email_var\""
 }
@@ -45,7 +45,7 @@ function _create_keycloak_user() {
 function create_keycloak_users() {
   echo "Defining keycloak client"
 
-  docker-compose exec -T ${KEYCLOAK_SERVICE_NAME} /scripts/create_client
+  docker compose exec -T ${KEYCLOAK_SERVICE_NAME} /scripts/create_client
 
   echo "Creating user 'alice' in Keycloak"
 
@@ -58,7 +58,7 @@ function create_keycloak_users() {
 }
 
 function wait_for_keycloak_server() {
-  docker-compose exec -T \
+  docker compose exec -T \
     ${KEYCLOAK_SERVICE_NAME} /scripts/wait_for_server
 }
 
@@ -66,6 +66,6 @@ function fetch_keycloak_certificate() {
   # there's a dep on the docker-compose.yml volumes.
   # Fetch SSL cert to communicate with keycloak (OIDC provider).
   echo "Initialize keycloak certificate in conjur server"
-  docker-compose exec -T \
-    conjur_5 /scripts/fetch_certificate
+  docker compose exec -T \
+    conjur /scripts/fetch_certificate
 }

data/conjur-api.gemspec

@@ -32,6 +32,7 @@ Gem::Specification.new do |gem|
   gem.add_development_dependency 'cucumber', '~> 2.99'
   gem.add_development_dependency 'ci_reporter_rspec'
   gem.add_development_dependency 'simplecov', '~> 0.17', '< 0.18'
+  gem.add_development_dependency 'simplecov-cobertura'
   gem.add_development_dependency 'io-grab'
   gem.add_development_dependency 'rdoc'
   gem.add_development_dependency 'yard'

data/dev/docker-compose.yml

@@ -1,27 +1,21 @@
 version: '3'
 services:
   pg:
-    image: postgres:9.3
+    image: postgres:15
+    environment:
+      POSTGRES_HOST_AUTH_METHOD: trust
 
-  conjur_5:
+  conjur:
     image: cyberark/conjur
     command: server -a cucumber
     environment:
       DATABASE_URL: postgres://postgres@pg/postgres
       CONJUR_DATA_KEY: 'WMfApcDBtocRWV+ZSUP3Tjr5XNU+Z2FdBb6BEezejIs='
     volumes:
-      - authn_local_5:/run/authn-local
+      - authn_local:/run/authn-local
     depends_on:
       - pg
 
-  conjur_4:
-    image: registry2.itci.conjur.net/conjur-appliance-cuke-master:4.9-stable
-    security_opt:
-      - seccomp:unconfined
-    volumes:
-      - ../features_v4/support/policy.yml:/etc/policy.yml
-      - authn_local_4:/run/authn-local
-
   gem:
     build:
       context: ../
@@ -29,28 +23,25 @@ services:
     entrypoint: sleep
     command: infinity
     environment:
-      CONJUR_APPLIANCE_URL: http://conjur_5
-      CONJUR_VERSION: 5
+      CONJUR_APPLIANCE_URL: http://conjur
       CONJUR_ACCOUNT: cucumber
     links:
-      - conjur_5:conjur_5
-      - conjur_4:conjur_4
+      - conjur:conjur
     volumes:
       - ..:/src/conjur-api
-      - authn_local_4:/run/authn-local-4
-      - authn_local_5:/run/authn-local-5
+      - authn_local:/run/authn-local
 
   client:
+    # TODO: Upgrade to V8
     image: conjurinc/cli5
     entrypoint: sleep
     command: infinity
     environment:
-      CONJUR_APPLIANCE_URL: http://conjur_5
+      CONJUR_APPLIANCE_URL: http://conjur
       CONJUR_ACCOUNT: cucumber
       CONJUR_AUTHN_LOGIN: admin
     links:
-    - conjur_5:conjur_5
+    - conjur:conjur
 
 volumes:
-  authn_local_5:
-  authn_local_4:
+  authn_local: