From 14cdce111b49e1ae6072ee3fac3001e8aa7e6a56 Mon Sep 17 00:00:00 2001 From: Johann Levesque Date: Fri, 23 Oct 2020 14:14:00 -0400 Subject: [PATCH] core(security): Fix security issues raised by GitHub Closes #565 --- README.md | 6 ++++++ package-lock.json | 36 ++++++++++++++++++------------------ package.json | 14 +++++++------- 3 files changed, 31 insertions(+), 25 deletions(-) diff --git a/README.md b/README.md index 893c124c..e19b7315 100644 --- a/README.md +++ b/README.md @@ -14,6 +14,9 @@ [Documentation](https://fgpv-vpgf.github.io/fgpa-apgf/a2v2/0.1.0/index.html) +_Important: After npm install, modify angular-schema-form-bootstrap-bundled.min.js inside the node_modules folder. You need to modify this o.a.uppercase(t[0]) to t[0].toUpperCase(). +This is important because uppercase is deprecated and the application won't work_ + ## Getting Started Requirements: @@ -36,6 +39,9 @@ We use a fork and pull model for contributions, see our [contributing guidelines *Notes: Il est préférable d'utiliser Chrome ou Firefox (Internet Explorer n'est pas supporté)* +_Important: Après npm install, modifer angular-schema-form-bootstrap-bundled.min.js qui se situe dans le répertoire node_modules. Vous devez modifier ceci o.a.uppercase(t[0]) pour t[0].toUpperCase(). +Ceci est important car uppercase est déprécié et l'application de fonctionnera pas_ + ## Pour commencer Exigences: diff --git a/package-lock.json b/package-lock.json index b0852074..3f1d8928 100644 --- a/package-lock.json +++ b/package-lock.json @@ -654,19 +654,19 @@ "dev": true }, "angular": { - "version": "1.6.10", - "resolved": "https://registry.npmjs.org/angular/-/angular-1.6.10.tgz", - "integrity": "sha512-PCZ5/hVdvPQiYyH0VwsPjrErPHRcITnaXxhksceOXgtJeesKHLA7KDu4X/yvcAi+1zdGgGF+9pDxkJvghXI9Wg==" + "version": "1.8.2", + "resolved": "https://registry.npmjs.org/angular/-/angular-1.8.2.tgz", + "integrity": "sha512-IauMOej2xEe7/7Ennahkbb5qd/HFADiNuLSESz9Q27inmi32zB0lnAsFeLEWcox3Gd1F6YhNd1CP7/9IukJ0Gw==" }, "angular-animate": { - "version": "1.6.10", - "resolved": "https://registry.npmjs.org/angular-animate/-/angular-animate-1.6.10.tgz", - "integrity": "sha512-RU9ZJbTspq0W0x675H5k1DeSgKbAFfp2aiYoNGdlD+wQNKvwwMR5ho+EkDKkx9zE02a5goe8Z6EhhYPQSff9dA==" + "version": "1.8.2", + "resolved": "https://registry.npmjs.org/angular-animate/-/angular-animate-1.8.2.tgz", + "integrity": "sha512-Jbr9+grNMs9Kj57xuBU3Ju3NOPAjS1+g2UAwwDv7su1lt0/PLDy+9zEwDiu8C8xJceoTbmBNKiWGPJGBdCQLlA==" }, "angular-aria": { - "version": "1.6.10", - "resolved": "https://registry.npmjs.org/angular-aria/-/angular-aria-1.6.10.tgz", - "integrity": "sha512-QO+jSbsnGxLhULD8syFvfH0sQVCKCwDPDCd130ou11HYw4D8vAaU/NG6ufcmnh9XJHTcngAaBe3VVfZefMkiBA==" + "version": "1.8.2", + "resolved": "https://registry.npmjs.org/angular-aria/-/angular-aria-1.8.2.tgz", + "integrity": "sha512-xWT1Lm+Xug2GM6nGNMioBP4hXt3sj2eGaExa4cVCZUYSVWezgyuD1RiLgzJzwTkBGYplHQUzQaz3yDY8jVI6yQ==" }, "angular-material": { "version": "1.1.10", @@ -674,14 +674,14 @@ "integrity": "sha512-LfBt5a1AVPbtsFzbmAyyZj90Gtc1U94OGtfMEauGzwsfqTnbH/y/9dtndH84N9S65wXkBoBe3VG6kfyoQSeCVw==" }, "angular-messages": { - "version": "1.6.10", - "resolved": "https://registry.npmjs.org/angular-messages/-/angular-messages-1.6.10.tgz", - "integrity": "sha512-FpILIYqeBj2fP5U5txnO/cneeKZxdF+WqpBo7tgHXl2BmOVVWKUCEjMmByouYxwn9PFLeipBPjaaDs2/eB/m5A==" + "version": "1.8.2", + "resolved": "https://registry.npmjs.org/angular-messages/-/angular-messages-1.8.2.tgz", + "integrity": "sha512-M1qNh/30cLJi4yJJ+3YB8saPonRcavz5Dquqz0T/aUySKJhIkUoeCkmF+BcLH4SJ5PBp04yy4CZUUeNRVi7jZA==" }, "angular-sanitize": { - "version": "1.6.10", - "resolved": "https://registry.npmjs.org/angular-sanitize/-/angular-sanitize-1.6.10.tgz", - "integrity": "sha512-01i1Xoq9ykUrsoYQMSB6dWZmPp9Df5hfCqMAGGzJBWZ7L2WY0OtUphdI0YvR8ZF9lAsWtGNtsEFilObjq5nTgQ==" + "version": "1.8.2", + "resolved": "https://registry.npmjs.org/angular-sanitize/-/angular-sanitize-1.8.2.tgz", + "integrity": "sha512-OB6Goa+QN3byf5asQ7XRl7DKZejm/F/ZOqa9z1skqYVOWA2hoBxoCmt9E7+i7T/TbxZP5zYzKxNZVVJNu860Hg==" }, "angular-schema-form": { "version": "1.0.0-alpha.4", @@ -16696,9 +16696,9 @@ } }, "webpack-subresource-integrity": { - "version": "1.3.2", - "resolved": "https://registry.npmjs.org/webpack-subresource-integrity/-/webpack-subresource-integrity-1.3.2.tgz", - "integrity": "sha512-VpBtk0Ha1W0GebTzPj3Y8UqbmPDp+HqGlegRv+hS8g8/x818dw9NuEfJEOp5CF6zTPs3KF6aqknVu52Bh5h1eQ==", + "version": "1.5.1", + "resolved": "https://registry.npmjs.org/webpack-subresource-integrity/-/webpack-subresource-integrity-1.5.1.tgz", + "integrity": "sha512-uekbQ93PZ9e7BFB8Hl9cFIVYQyQqiXp2ExKk9Zv+qZfH/zHXHrCFAfw1VW0+NqWbTWrs/HnuDrto3+tiPXh//Q==", "dev": true, "requires": { "webpack-sources": "^1.3.0" diff --git a/package.json b/package.json index 6cb12441..1c7856ec 100644 --- a/package.json +++ b/package.json @@ -8,12 +8,12 @@ "license": "MIT", "dependencies": { "@flowjs/ng-flow": "2.7.8", - "angular": "1.6.10", - "angular-animate": "1.6.10", - "angular-aria": "1.6.10", + "angular": "^1.8.2", + "angular-animate": "1.8.2", + "angular-aria": "1.8.2", "angular-material": "1.1.10", - "angular-messages": "1.6.10", - "angular-sanitize": "1.6.10", + "angular-messages": "1.8.2", + "angular-sanitize": "1.8.2", "angular-schema-form-bootstrap": "^1.0.0-alpha.4", "angular-template": "^2.4.0", "angular-translate": "^2.18.1", @@ -26,8 +26,8 @@ "jquery": "^3.5.1", "jquery-ui": "1.12.1", "moment-timezone": "0.5.14", - "timepicker": "1.13.15", "pikaday": "1.8.0", + "timepicker": "1.13.15", "tv4": "1.3.0" }, "devDependencies": { @@ -71,7 +71,7 @@ "webpack-dev-server": "3.11.0", "webpack-merge": "4.2.1", "webpack-shell-plugin": "0.5.0", - "webpack-subresource-integrity": "1.3.2", + "webpack-subresource-integrity": "1.5.1", "wrapper-webpack-plugin": "2.1.0", "xml2js": "0.4.19", "xml2js-xpath": "^0.10.0",