Hi!
We’ve released another small patch release to Chef 12, 12.21.10, with a security fix to address the recent RubyGems vulnerability as well as some some backported performance improvements to node attributes.
Chef Client 12.21.10 includes RubyGems 2.6.13 to fix the following CVEs:
- CVE-2017-0899
- CVE-2017-0900
- CVE-2017-0901
- CVE-2017-0902
See the full changelog for more details.