Package Context

Dependency Type - Direct if the package is in your Gemfile. Indirect if it is only in your Gemfile.lock because it's being pulled in through a direct one.

Environment - the group from your Gemfile.

Risk Factors

Vulnerable - there is a security fix between your current version and the latest version of this package.

Unsupported - the current version of this package is not receiving security fixes.

Abandoned - this package is not being actively maintained. Here, Infield is looking for an “abandoned” designation in the packages readme file, or an issue that is raised and verified by the community that the package itself is not being supported.

Stale - the gap between your current version of a package and the most recently released version is at least one year. Hover over the stale badge to see how stale (in years) the package is.

Upgrade Effort

Breaking - there is at least one breaking change between your current version and the latest version of this package.

Safe - Infield did not detect any breaking changes between your current version and the latest version of this package.

👍

Packages marked as "safe" by Infield should be safe to upgrade with no additional work so long as your test suite passes.