Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Chore/dep update #131

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
mfshao merged 11 commits into from
Feb 11, 2022
Merged

Chore/dep update #131

mfshao merged 11 commits into from
Feb 11, 2022

Conversation

@mfshao
Copy link
Contributor

@mfshao mfshao commented Feb 4, 2022
edited
Loading

Jira Ticket: FRC-35

Update dependencies to patch FedRAMP vulnerabilities

  • Upgrade tar to version 6.1.9, 5.0.10, 4.4.18 or higher.
  • Upgrade prismjs to version 1.21.0 or higher.
  • Upgrade trim-newlines to version 3.0.1, 4.0.1 or higher.
  • Upgrade object-path to version 0.11.8 or higher.
  • Upgrade ansi-regex to version 6.0.1, 5.0.1 or higher.
  • Upgrade css-what to version 5.0.1 or higher.
  • Upgrade nth-check to version 2.0.1 or higher.
  • Upgrade path-parse to version 1.0.7 or higher.
  • Upgrade tmpl to version 1.0.5 or higher.
  • Upgrade xss to version 1.0.10 or higher.

Improvements

  • use npm ci to install

Dependency updates

  • Upgrade tar to version 6.1.9, 5.0.10, 4.4.18 or higher.
  • Upgrade prismjs to version 1.21.0 or higher.
  • Upgrade trim-newlines to version 3.0.1, 4.0.1 or higher.
  • Upgrade object-path to version 0.11.8 or higher.
  • Upgrade ansi-regex to version 6.0.1, 5.0.1 or higher.
  • Upgrade css-what to version 5.0.1 or higher.
  • Upgrade nth-check to version 2.0.1 or higher.
  • Upgrade path-parse to version 1.0.7 or higher.
  • Upgrade tmpl to version 1.0.5 or higher.
  • Upgrade xss to version 1.0.10 or higher.

@mfshao mfshao marked this pull request as ready for review February 9, 2022 20:19
paulineribeyre
paulineribeyre reviewed Feb 10, 2022
View reviewed changes
Copy link
Contributor

@paulineribeyre paulineribeyre left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm, just need to update gen3-ui-component

@mfshao mfshao merged commit 45c4b15 into master Feb 11, 2022
@mfshao mfshao deleted the chore/dep-update branch February 11, 2022 18:56
@m0nhawk m0nhawk mentioned this pull request Oct 17, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@paulineribeyre paulineribeyre paulineribeyre approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@mfshao @paulineribeyre @PlanXCyborg