You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@knox.apache.org by "Marton Balázs (Jira)" <ji...@apache.org> on 2022/12/07 08:05:00 UTC
[jira] [Resolved] (KNOX-2834) Take care of existing javascript upgrades by dependabot
[ https://issues.apache.org/jira/browse/KNOX-2834?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Marton Balázs resolved KNOX-2834.
---------------------------------
Resolution: Fixed
> Take care of existing javascript upgrades by dependabot
> -------------------------------------------------------
>
> Key: KNOX-2834
> URL: https://issues.apache.org/jira/browse/KNOX-2834
> Project: Apache Knox
> Issue Type: Improvement
> Components: AdminUI, Homepage
> Affects Versions: 2.0.0
> Reporter: Sandor Molnar
> Assignee: Marton Balázs
> Priority: Major
> Fix For: 2.0.0
>
> Attachments: image-2022-11-04-11-12-00-500.png
>
> Time Spent: 40m
> Remaining Estimate: 0h
>
> [~MrtnBalazs] - as discussed offline, there is a list of open PRs generated by Apache's dependabot for our javascript-based Maven modules (*-ui) where there are some components such as angular-cli that needed to be upgraded to a higher version due to security reasons (see attached screenshot).
> Please compile a table with the source/target dependency versions and make sure they are all applied in our code base within the scope of this JIRA and covered by manual testing as discussed.
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)