[KNOX-2834] Take care of existing javascript upgrades by dependabot - ASF JIRA

Attach files

Attach Screenshot

Voters

Watch issue

Watchers

Create sub-task

Link

Clone

Update Comment Author

Replace String in Comment

Update Comment Visibility

Delete Comments

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 2.0.0
Fix Version/s: 2.0.0
Component/s: AdminUI, Homepage
Labels:
None

Description

Marton Balázs - as discussed offline, there is a list of open PRs generated by Apache's dependabot for our javascript-based Maven modules (*-ui) where there are some components such as angular-cli that needed to be upgraded to a higher version due to security reasons (see attached screenshot).

Please compile a table with the source/target dependency versions and make sure they are all applied in our code base within the scope of this JIRA and covered by manual testing as discussed.

Attachments

image-2022-11-04-11-12-00-500.png
04/Nov/22 10:12
709 kB
Sandor Molnar

Issue Links

Add Link

is duplicated by

KNOX-2767 Bump @angular/core from 5.2.11 to 11.0.5

Resolved

Delete this link

links to

GitHub Pull Request #683

Delete this link

Activity

Comment

This comment will be Viewable by All Users Viewable by All Users

Cancel

People

Assignee:: Marton Balázs

Reporter:: Sandor Molnar

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 04/Nov/22 10:12

Updated:: 07/Dec/22 08:04

Resolved:: 07/Dec/22 08:04

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

Take care of existing javascript upgrades by dependabot

Details

Description

Attachments

Attachments

Issue Links

Activity

People

Dates

Time Tracking

Agile

Slack

Issue deployment