Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Backend security updated #1203

Open
1 of 2 tasks
andrewbiang888 opened this issue May 16, 2022 · 0 comments
Open
1 of 2 tasks

Backend security updated #1203

andrewbiang888 opened this issue May 16, 2022 · 0 comments
Assignees
@pirtleshell @andrewbiang888
Labels
api dependencies Pull requests that update a dependency file

Comments

@andrewbiang888
Copy link
Collaborator

andrewbiang888 commented May 16, 2022
edited by pirtleshell
Loading

  • run npm audit fix on existing codebase
  • start going through remaining security issues while addressing breaking changes
@andrewbiang888 andrewbiang888 added api dependencies Pull requests that update a dependency file labels May 16, 2022
pirtleshell added a commit that referenced this issue May 16, 2022
@pirtleshell
fix patch version security vulnerabilities
d199cc8 
fixes the lowest of hanging fruit vulnerabilities. brings total number
of api audit vulnerabilities from 70 to 21.

[gh-1203]
@pirtleshell pirtleshell mentioned this issue May 16, 2022
Merged
pirtleshell added a commit that referenced this issue May 21, 2022
@pirtleshell
fix patch version security vulnerabilities
bff6097 
fixes the lowest of hanging fruit vulnerabilities. brings total number
of api audit vulnerabilities from 70 to 21.

[gh-1203]
pirtleshell added a commit that referenced this issue May 21, 2022
@pirtleshell
fix patch version security vulnerabilities (#1204)
0aea476 
* use chalk in place of react-dev-tools/chalk

* fix patch version security vulnerabilities

fixes the lowest of hanging fruit vulnerabilities. brings total number
of api audit vulnerabilities from 70 to 21.

[gh-1203]

* revert change to libxmljs

has problem with latest build.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@pirtleshell pirtleshell

@andrewbiang888 andrewbiang888

Labels
api dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@pirtleshell @andrewbiang888