rails-assets | The solution to assets management in Rails | Application Framework library

I have a ruby on rails app that is throwing an error when I try to run bundle install. The error is the following:

bundle stdout: Could not verify the SSL certificate for https://rails-assets.org/ There is a chance you are experiencing a man-in-the-middle attack, but most likely your system doesn't have the CA certificates needed for verification

Our SSL certificate was updated just a few days ago and we haven't changed anything in the app. It started to throw this error out of the blue.

Is there any chance we need to update the root certificates in the system? I mean like running sudo update-ca-certificates or something like that? is it safe to do that?

The app is in digitalOcean and we use capistrano gem to deploy the app

@lingYan Thanks a lot for guiding me in the right direction! I read the links you posted but in my case I had to change the steps a little bit because I am not on Centos-7. So this is exactly what I did:

• Made a backup of the certificates file in /etc/ssl/certs:

  cp ca-certificates.crt ~/certificatesBackup/ca-certificates-backup.crt

• Made a backup of the config file in /etc:

  cp ca-certificates.conf ~/certificatesBackup/ca-certificates-backup.conf

• Made a backup of the expired certificate in /etc/ssl/certs:

  cp DST_Root_CA_X3.pem ~/certificatesBackup/DST_Root_CA_X3_backup.pem

• Removed DST_Root_CA_X3.pem from ca-certificates.conf:

  I opened the file with vim and removed the line

• Removed expired certificate in /etc/ssl/certs:

  sudo rm DST_Root_CA_X3.pem

• Updated certificates:

  update-ca-certificates -f -v

• Checked if expired certificate was removed from the chain in ca-certificates.crt:

  diff ~/certificatesBackup/ca-certificates-backup.crt ca-certificates.crt

  It showed the new certificate

It was still throwing the error after doing all the steps above so I realized that I didn't have the ISRG Root CA certificate. In order to add the ISRG Root CA I did the following (which I think it is not correct or maybe I am missing something):

• Went to this page https://letsencrypt.org/certificates/ and downloaded the file called ISRG Root X1 (self-signed / pem format)
• Went to /usr/local/share/ca-certificates/
• Created a new folder called isrgrootx1
• Copied the pem file I downloaded previously into the isrgrootx1 folder
• Made sure the permissions were OK (755 for the folder, 644 for the file)
• updated the certificates with update-ca-certificates -f -v
• Checked if the certificate was added using the diff command: When I ran the diff command it didn't show any change so I guess the certificate was not added and the error is still there

Am I doing someting wrong? Are the steps above correct to add a new certificate? I am starting to feel frustrated with this :(

I have cloned an existing project and trying to run it in my system. Since this is the first time I don't have any Gemfile.lock file in my directory. I tried running bundle install and the following errors occur:

I am not sure why ok or cancel doesnt do anything, anyways I want when someone press at ok to redirect it to a link

We're using Rails Assets in our project and we're in the process of updating Ruby from 2.3.7 to 2.4.7, following this guide. I think I've resolved all the gems issues, but when I'm trying to run rspec or navigate to any admin page, I'm greeted with this error: