From 2099ac1f0d383742913d60b2d6c140a7dabec5c1 Mon Sep 17 00:00:00 2001
From: Jurre Stender <jurre@github.com>
Date: Thu, 4 Aug 2022 09:14:04 +0200
Subject: [PATCH] Downgrade bundler to 2.3.14

The latest versions of bundler has an issue where incomplete lockfiles that are
locked to "ruby" but not including exclusively gems NOT platform specific.

This causes an issue with existing lockfiles, generating a missing gem
error.

This is explained in more detail in: https://github.com/rubygems/rubygems/pull/5807

Since this is currently preventing Dependabot updates for our users,
especially around sorbet dependencies, and since we have no good way to
signal these failures to them with an explanation on how to resolve it,
I think it's best that we downgrade bundler to a version that does not
include this, until https://github.com/rubygems/rubygems/pull/5807 is
merged and we can bump to the latest version again.
---
 Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Dockerfile b/Dockerfile
index c4df58b938a..b33905ea045 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -76,7 +76,7 @@ ARG RUBYGEMS_SYSTEM_VERSION=3.2.20
 ENV DEBIAN_DISABLE_RUBYGEMS_INTEGRATION=true
 
 ARG BUNDLER_V1_VERSION=1.17.3
-ARG BUNDLER_V2_VERSION=2.3.18
+ARG BUNDLER_V2_VERSION=2.3.14
 ENV BUNDLE_SILENCE_ROOT_WARNING=1
 # Allow gem installs as the dependabot user
 ENV BUNDLE_PATH=".bundle" \